openconnect-8.20/0000755000076400007640000000000014204510554015530 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/iconv.c0000644000076400007640000000402614067426206017023 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include static char *convert_str(struct openconnect_info *vpninfo, iconv_t ic, char *instr) { ICONV_CONST char *ic_in; char *ic_out, *outstr; size_t insize, outsize; int addq = 0; if (ic == (iconv_t)-1) return instr; iconv(ic, NULL, NULL, NULL, NULL); insize = strlen(instr) + 1; ic_in = instr; outsize = insize; ic_out = outstr = malloc(outsize); if (!outstr) return instr; while (insize) { if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == EILSEQ) { do { ic_in++; insize--; } while (insize && (ic_in[0] & 0xc0) == 0x80); addq = 1; } if (!outsize || errno == E2BIG) { int outlen = ic_out - outstr; realloc_inplace(outstr, outlen + 10); if (!outstr) return instr; ic_out = outstr + outlen; outsize = 10; } else if (errno != EILSEQ) { /* Should never happen */ free(outstr); return instr; } if (addq) { addq = 0; *(ic_out++) = '?'; outsize--; } } } return outstr; } char *openconnect_legacy_to_utf8(struct openconnect_info *vpninfo, const char *legacy) { return convert_str(vpninfo, vpninfo->ic_legacy_to_utf8, (char *)legacy); } char *openconnect_utf8_to_legacy(struct openconnect_info *vpninfo, const char *utf8) { return convert_str(vpninfo, vpninfo->ic_utf8_to_legacy, (char *)utf8); } openconnect-8.20/compile0000755000076400007640000001635013603173140017111 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Wrapper for compilers which do not understand '-c -o'. scriptversion=2018-03-07.03; # UTC # Copyright (C) 1999-2020 Free Software Foundation, Inc. # Written by Tom Tromey . # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # This file is maintained in Automake, please report # bugs to or send patches to # . nl=' ' # We need space, tab and new line, in precisely that order. Quoting is # there to prevent tools from complaining about whitespace usage. IFS=" "" $nl" file_conv= # func_file_conv build_file lazy # Convert a $build file to $host form and store it in $file # Currently only supports Windows hosts. If the determined conversion # type is listed in (the comma separated) LAZY, no conversion will # take place. func_file_conv () { file=$1 case $file in / | /[!/]*) # absolute file, and not a UNC file if test -z "$file_conv"; then # lazily determine how to convert abs files case `uname -s` in MINGW*) file_conv=mingw ;; CYGWIN* | MSYS*) file_conv=cygwin ;; *) file_conv=wine ;; esac fi case $file_conv/,$2, in *,$file_conv,*) ;; mingw/*) file=`cmd //C echo "$file " | sed -e 's/"\(.*\) " *$/\1/'` ;; cygwin/* | msys/*) file=`cygpath -m "$file" || echo "$file"` ;; wine/*) file=`winepath -w "$file" || echo "$file"` ;; esac ;; esac } # func_cl_dashL linkdir # Make cl look for libraries in LINKDIR func_cl_dashL () { func_file_conv "$1" if test -z "$lib_path"; then lib_path=$file else lib_path="$lib_path;$file" fi linker_opts="$linker_opts -LIBPATH:$file" } # func_cl_dashl library # Do a library search-path lookup for cl func_cl_dashl () { lib=$1 found=no save_IFS=$IFS IFS=';' for dir in $lib_path $LIB do IFS=$save_IFS if $shared && test -f "$dir/$lib.dll.lib"; then found=yes lib=$dir/$lib.dll.lib break fi if test -f "$dir/$lib.lib"; then found=yes lib=$dir/$lib.lib break fi if test -f "$dir/lib$lib.a"; then found=yes lib=$dir/lib$lib.a break fi done IFS=$save_IFS if test "$found" != yes; then lib=$lib.lib fi } # func_cl_wrapper cl arg... # Adjust compile command to suit cl func_cl_wrapper () { # Assume a capable shell lib_path= shared=: linker_opts= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. eat=1 case $2 in *.o | *.[oO][bB][jJ]) func_file_conv "$2" set x "$@" -Fo"$file" shift ;; *) func_file_conv "$2" set x "$@" -Fe"$file" shift ;; esac ;; -I) eat=1 func_file_conv "$2" mingw set x "$@" -I"$file" shift ;; -I*) func_file_conv "${1#-I}" mingw set x "$@" -I"$file" shift ;; -l) eat=1 func_cl_dashl "$2" set x "$@" "$lib" shift ;; -l*) func_cl_dashl "${1#-l}" set x "$@" "$lib" shift ;; -L) eat=1 func_cl_dashL "$2" ;; -L*) func_cl_dashL "${1#-L}" ;; -static) shared=false ;; -Wl,*) arg=${1#-Wl,} save_ifs="$IFS"; IFS=',' for flag in $arg; do IFS="$save_ifs" linker_opts="$linker_opts $flag" done IFS="$save_ifs" ;; -Xlinker) eat=1 linker_opts="$linker_opts $2" ;; -*) set x "$@" "$1" shift ;; *.cc | *.CC | *.cxx | *.CXX | *.[cC]++) func_file_conv "$1" set x "$@" -Tp"$file" shift ;; *.c | *.cpp | *.CPP | *.lib | *.LIB | *.Lib | *.OBJ | *.obj | *.[oO]) func_file_conv "$1" mingw set x "$@" "$file" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -n "$linker_opts"; then linker_opts="-link$linker_opts" fi exec "$@" $linker_opts exit 1 } eat= case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: compile [--help] [--version] PROGRAM [ARGS] Wrapper for compilers which do not understand '-c -o'. Remove '-o dest.o' from ARGS, run PROGRAM with the remaining arguments, and rename the output as expected. If you are trying to build a whole package this is not the right script to run: please start by reading the file 'INSTALL'. Report bugs to . EOF exit $? ;; -v | --v*) echo "compile $scriptversion" exit $? ;; cl | *[/\\]cl | cl.exe | *[/\\]cl.exe | \ icl | *[/\\]icl | icl.exe | *[/\\]icl.exe ) func_cl_wrapper "$@" # Doesn't return... ;; esac ofile= cfile= for arg do if test -n "$eat"; then eat= else case $1 in -o) # configure might choose to run compile as 'compile cc -o foo foo.c'. # So we strip '-o arg' only if arg is an object. eat=1 case $2 in *.o | *.obj) ofile=$2 ;; *) set x "$@" -o "$2" shift ;; esac ;; *.c) cfile=$1 set x "$@" "$1" shift ;; *) set x "$@" "$1" shift ;; esac fi shift done if test -z "$ofile" || test -z "$cfile"; then # If no '-o' option was seen then we might have been invoked from a # pattern rule where we don't need one. That is ok -- this is a # normal compilation that the losing compiler can handle. If no # '.c' file was seen then we are probably linking. That is also # ok. exec "$@" fi # Name of file we expect compiler to create. cofile=`echo "$cfile" | sed 's|^.*[\\/]||; s|^[a-zA-Z]:||; s/\.c$/.o/'` # Create the lock directory. # Note: use '[/\\:.-]' here to ensure that we don't use the same name # that we are using for the .o file. Also, base the name on the expected # object file name, since that is what matters with a parallel build. lockdir=`echo "$cofile" | sed -e 's|[/\\:.-]|_|g'`.d while true; do if mkdir "$lockdir" >/dev/null 2>&1; then break fi sleep 1 done # FIXME: race condition here if user kills between mkdir and trap. trap "rmdir '$lockdir'; exit 1" 1 2 15 # Run the compile. "$@" ret=$? if test -f "$cofile"; then test "$cofile" = "$ofile" || mv "$cofile" "$ofile" elif test -f "${cofile}bj"; then test "${cofile}bj" = "$ofile" || mv "${cofile}bj" "$ofile" fi rmdir "$lockdir" exit $ret # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.20/lzo.c0000644000076400007640000001367714067426206016525 0ustar00dwoodhoudwoodhou00000000000000/* * LZO 1x decompression * Copyright (c) 2006 Reimar Doeffinger * * This file is part of FFmpeg. * * FFmpeg is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public * License as published by the Free Software Foundation; either * version 2.1 of the License, or (at your option) any later version. * * FFmpeg is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General Public * License along with FFmpeg; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ //#include "avutil.h" //#include "avassert.h" //#include "common.h" //#include "intreadwrite.h" #include "lzo.h" #include #include /// Define if we may write up to 12 bytes beyond the output buffer. #define OUTBUF_PADDED 1 /// Define if we may read up to 8 bytes beyond the input buffer. #define INBUF_PADDED 1 typedef struct LZOContext { const uint8_t *in, *in_end; uint8_t *out_start, *out, *out_end; int error; } LZOContext; /** * @brief Reads one byte from the input buffer, avoiding an overrun. * @return byte read */ static inline int get_byte(LZOContext *c) { if (c->in < c->in_end) return *c->in++; c->error |= AV_LZO_INPUT_DEPLETED; return 1; } #ifdef INBUF_PADDED #define GETB(c) (*(c).in++) #else #define GETB(c) get_byte(&(c)) #endif /** * @brief Decodes a length value in the coding used by lzo. * @param x previous byte value * @param mask bits used from x * @return decoded length value */ static inline int get_len(LZOContext *c, int x, int mask) { int cnt = x & mask; if (!cnt) { while (!(x = get_byte(c))) { if (cnt >= INT_MAX - 1000) { c->error |= AV_LZO_ERROR; break; } cnt += 255; } cnt += mask + x; } return cnt; } /** * @brief Copies bytes from input to output buffer with checking. * @param cnt number of bytes to copy, must be >= 0 */ static inline void copy(LZOContext *c, int cnt) { register const uint8_t *src = c->in; register uint8_t *dst = c->out; /* Should never happen */ if (cnt < 0) { c->error |= AV_LZO_ERROR; return; } if (cnt > c->in_end - src) { cnt = FFMAX(c->in_end - src, 0); c->error |= AV_LZO_INPUT_DEPLETED; } if (cnt > c->out_end - dst) { cnt = FFMAX(c->out_end - dst, 0); c->error |= AV_LZO_OUTPUT_FULL; } #if defined(INBUF_PADDED) && defined(OUTBUF_PADDED) AV_COPY32U(dst, src); src += 4; dst += 4; cnt -= 4; if (cnt > 0) #endif memcpy(dst, src, cnt); c->in = src + cnt; c->out = dst + cnt; } /** * @brief Copies previously decoded bytes to current position. * @param back how many bytes back we start, must be > 0 * @param cnt number of bytes to copy, must be > 0 * * cnt > back is valid, this will copy the bytes we just copied, * thus creating a repeating pattern with a period length of back. */ static inline void copy_backptr(LZOContext *c, int back, int cnt) { register uint8_t *dst = c->out; /* Should never happen */ if (cnt <= 0) { c->error |= AV_LZO_ERROR; return; } if (dst - c->out_start < back) { c->error |= AV_LZO_INVALID_BACKPTR; return; } if (cnt > c->out_end - dst) { cnt = FFMAX(c->out_end - dst, 0); c->error |= AV_LZO_OUTPUT_FULL; } av_memcpy_backptr(dst, back, cnt); c->out = dst + cnt; } int av_lzo1x_decode(void *out, int *outlen, const void *in, int *inlen) { int state = 0; int x; LZOContext c; if (*outlen <= 0 || *inlen <= 0) { int res = 0; if (*outlen <= 0) res |= AV_LZO_OUTPUT_FULL; if (*inlen <= 0) res |= AV_LZO_INPUT_DEPLETED; return res; } c.in = in; c.in_end = (const uint8_t *)in + *inlen; c.out = c.out_start = out; c.out_end = (uint8_t *)out + *outlen; c.error = 0; x = GETB(c); if (x > 17) { copy(&c, x - 17); x = GETB(c); if (x < 16) c.error |= AV_LZO_ERROR; } if (c.in > c.in_end) c.error |= AV_LZO_INPUT_DEPLETED; while (!c.error) { int cnt, back; if (x > 15) { if (x > 63) { /* cccbbbnn BBBBBBBB */ cnt = (x >> 5) - 1; back = (GETB(c) << 3) + ((x >> 2) & 7) + 1; } else if (x > 31) { /* 001ccccc (cccccccc...) bbbbbbnn BBBBBBBB */ cnt = get_len(&c, x, 31); x = GETB(c); back = (GETB(c) << 6) + (x >> 2) + 1; } else { /* 0001bccc (cccccccc...) bbbbbbnn BBBBBBBB */ cnt = get_len(&c, x, 7); back = (1 << 14) + ((x & 8) << 11); x = GETB(c); back += (GETB(c) << 6) + (x >> 2); if (back == (1 << 14)) { if (cnt != 1) c.error |= AV_LZO_ERROR; break; } } } else if (!state) { /* 0000llll (llllllll...) { literal... } ( 0000bbnn BBBBBBBB ) */ cnt = get_len(&c, x, 15); copy(&c, cnt + 3); x = GETB(c); if (x > 15) continue; cnt = 1; back = (1 << 11) + (GETB(c) << 2) + (x >> 2) + 1; } else { /* 0000bbnn BBBBBBBB ) */ cnt = 0; back = (GETB(c) << 2) + (x >> 2) + 1; } copy_backptr(&c, back, cnt + 2); state = cnt = x & 3; copy(&c, cnt); x = GETB(c); } *inlen = c.in_end - c.in; if (c.in > c.in_end) *inlen = 0; *outlen = c.out_end - c.out; return c.error; } openconnect-8.20/http-auth.c0000644000076400007640000002050114100007334017600 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include static int basic_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { struct oc_text_buf *text; const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { /* Need to parse this out of the URL */ return -EINVAL; } if (!user || !pass) return -EINVAL; if (auth_state->state == AUTH_IN_PROGRESS) { auth_state->state = AUTH_FAILED; return -EAGAIN; } text = buf_alloc(); buf_append(text, "%s:%s", user, pass); if (buf_error(text)) return buf_free(text); buf_append(hdrbuf, "%sAuthorization: Basic ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, text->data, text->pos, 0); buf_append(hdrbuf, "\r\n"); memset(text->data, 0, text->pos); buf_free(text); if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP Basic authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP Basic authentication to server '%s'\n"), vpninfo->hostname); auth_state->state = AUTH_IN_PROGRESS; return 0; } static int bearer_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { const char *bearer_token = vpninfo->bearer_token; if (proxy) { return -EINVAL; } if (!bearer_token) return -EINVAL; if (auth_state->state == AUTH_IN_PROGRESS) { auth_state->state = AUTH_FAILED; return -EAGAIN; } buf_append(hdrbuf, "Authorization: Bearer %s\r\n", bearer_token); vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP Bearer authentication to server '%s'\n"), vpninfo->hostname); auth_state->state = AUTH_IN_PROGRESS; return 0; } #if !defined(HAVE_GSSAPI) && !defined(_WIN32) static int no_gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { /* This comes last so just complain. We're about to bail. */ vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without GSSAPI support\n")); auth_state->state = AUTH_FAILED; return -ENOENT; } #endif struct auth_method { int state_index; const char *name; int (*authorization)(struct openconnect_info *, int, struct http_auth_state *, struct oc_text_buf *); void (*cleanup)(struct openconnect_info *, struct http_auth_state *); } auth_methods[] = { #if defined(HAVE_GSSAPI) || defined(_WIN32) { AUTH_TYPE_GSSAPI, "Negotiate", gssapi_authorization, cleanup_gssapi_auth }, #endif { AUTH_TYPE_NTLM, "NTLM", ntlm_authorization, cleanup_ntlm_auth }, { AUTH_TYPE_DIGEST, "Digest", digest_authorization, NULL }, { AUTH_TYPE_BASIC, "Basic", basic_authorization, NULL }, { AUTH_TYPE_BEARER, "Bearer", bearer_authorization, NULL }, #if !defined(HAVE_GSSAPI) && !defined(_WIN32) { AUTH_TYPE_GSSAPI, "Negotiate", no_gssapi_authorization, NULL } #endif }; /* Generate Proxy-Authorization: header for request if appropriate */ int gen_authorization_hdr(struct openconnect_info *vpninfo, int proxy, struct oc_text_buf *buf) { int ret; int i; for (i = 0; i < ARRAY_SIZE(auth_methods); i++) { struct http_auth_state *auth_state; if (proxy) auth_state = &vpninfo->proxy_auth[auth_methods[i].state_index]; else auth_state = &vpninfo->http_auth[auth_methods[i].state_index]; if (auth_state->state == AUTH_DEFAULT_DISABLED) { if (proxy) vpn_progress(vpninfo, PRG_ERR, _("Proxy requested Basic authentication which is disabled by default\n")); else vpn_progress(vpninfo, PRG_ERR, _("Server '%s' requested Basic authentication which is disabled by default\n"), vpninfo->hostname); auth_state->state = AUTH_FAILED; return -EINVAL; } if (auth_state->state > AUTH_UNSEEN) { ret = auth_methods[i].authorization(vpninfo, proxy, auth_state, buf); if (ret == -EAGAIN || !ret) return ret; } } vpn_progress(vpninfo, PRG_INFO, _("No more authentication methods to try\n")); if (vpninfo->retry_on_auth_fail) { /* Try again without the X-Support-HTTP-Auth: header */ vpninfo->try_http_auth = 0; return 0; } return -ENOENT; } /* Returns non-zero if it matched */ static int handle_auth_proto(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, struct auth_method *method, char *hdr) { struct http_auth_state *auth = &auth_states[method->state_index]; int l = strlen(method->name); if (auth->state <= AUTH_FAILED) return 0; if (strncmp(method->name, hdr, l)) return 0; if (hdr[l] != ' ' && hdr[l] != 0) return 0; if (auth->state == AUTH_UNSEEN) auth->state = AUTH_AVAILABLE; free(auth->challenge); if (hdr[l]) auth->challenge = strdup(hdr + l + 1); else auth->challenge = NULL; return 1; } int proxy_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val) { int i; if (!strcasecmp(hdr, "Proxy-Connection") || !strcasecmp(hdr, "Connection")) { if (!strcasecmp(val, "close")) vpninfo->proxy_close_during_auth = 1; return 0; } if (strcasecmp(hdr, "Proxy-Authenticate")) return 0; for (i = 0; i < ARRAY_SIZE(auth_methods); i++) { /* Return once we've found a match */ if (handle_auth_proto(vpninfo, vpninfo->proxy_auth, &auth_methods[i], val)) return 0; } return 0; } int http_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val) { int i; if (!strcasecmp(hdr, "X-HTTP-Auth-Support") && !strcasecmp(val, "fallback")) { vpninfo->retry_on_auth_fail = 1; return 0; } if (strcasecmp(hdr, "WWW-Authenticate")) return 0; for (i = 0; i < ARRAY_SIZE(auth_methods); i++) { /* Return once we've found a match */ if (handle_auth_proto(vpninfo, vpninfo->http_auth, &auth_methods[i], val)) return 0; } return 0; } void clear_auth_states(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, int reset) { int i; for (i = 0; i < ARRAY_SIZE(auth_methods); i++) { struct http_auth_state *auth = &auth_states[auth_methods[i].state_index]; /* The 'reset' argument is set when we're connected successfully, to fully reset the state to allow another connection to start again. Otherwise, we need to remember which auth methods have been tried and should not be attempted again. */ if (reset && auth_methods[i].cleanup) auth_methods[i].cleanup(vpninfo, auth); free(auth->challenge); auth->challenge = NULL; /* If it *failed* don't try it again even next time */ if (auth->state <= AUTH_FAILED) continue; if (reset || auth->state == AUTH_AVAILABLE) auth->state = AUTH_UNSEEN; } } static int set_authmethods(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, const char *methods) { int i, len; const char *p; for (i = 0; i < ARRAY_SIZE(auth_methods); i++) auth_states[auth_methods[i].state_index].state = AUTH_DISABLED; while (methods) { p = strchr(methods, ','); if (p) { len = p - methods; p++; } else len = strlen(methods); for (i = 0; i < ARRAY_SIZE(auth_methods); i++) { if (strprefix_match(methods, len, auth_methods[i].name) || (auth_methods[i].state_index == AUTH_TYPE_GSSAPI && strprefix_match(methods, len, "gssapi"))) { auth_states[auth_methods[i].state_index].state = AUTH_UNSEEN; break; } } methods = p; } return 0; } int openconnect_set_http_auth(struct openconnect_info *vpninfo, const char *methods) { return set_authmethods(vpninfo, vpninfo->http_auth, methods); } int openconnect_set_proxy_auth(struct openconnect_info *vpninfo, const char *methods) { return set_authmethods(vpninfo, vpninfo->proxy_auth, methods); } openconnect-8.20/json/0000755000076400007640000000000014204510554016501 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/json/json.c0000644000076400007640000007367514176202121017634 0ustar00dwoodhoudwoodhou00000000000000/* vim: set et ts=3 sw=3 sts=3 ft=c: * * Copyright (C) 2012, 2013, 2014 James McLaughlin et al. All rights reserved. * https://github.com/udp/json-parser * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ #include "json.h" #ifdef _MSC_VER #ifndef _CRT_SECURE_NO_WARNINGS #define _CRT_SECURE_NO_WARNINGS #endif #include #endif const struct _json_value json_value_none; #include #include #include #include #include typedef unsigned int json_uchar; /* There has to be a better way to do this */ static const json_int_t JSON_INT_MAX = sizeof(json_int_t) == 1 ? INT8_MAX : (sizeof(json_int_t) == 2 ? INT16_MAX : (sizeof(json_int_t) == 4 ? INT32_MAX : INT64_MAX)); static unsigned char hex_value (json_char c) { if (isdigit(c)) return c - '0'; switch (c) { case 'a': case 'A': return 0x0A; case 'b': case 'B': return 0x0B; case 'c': case 'C': return 0x0C; case 'd': case 'D': return 0x0D; case 'e': case 'E': return 0x0E; case 'f': case 'F': return 0x0F; default: return 0xFF; } } static int would_overflow (json_int_t value, json_char b) { return ((JSON_INT_MAX - (b - '0')) / 10 ) < value; } typedef struct { unsigned long used_memory; unsigned int uint_max; unsigned long ulong_max; json_settings settings; int first_pass; const json_char * ptr; unsigned int cur_line, cur_col; } json_state; static void * default_alloc (size_t size, int zero, void * user_data) { (void)user_data; return zero ? calloc (1, size) : malloc (size); } static void default_free (void * ptr, void * user_data) { (void)user_data; free (ptr); } static void * json_alloc (json_state * state, unsigned long size, int zero) { if ((state->ulong_max - state->used_memory) < size) return 0; if (state->settings.max_memory && (state->used_memory += size) > state->settings.max_memory) { return 0; } return state->settings.mem_alloc (size, zero, state->settings.user_data); } static int new_value (json_state * state, json_value ** top, json_value ** root, json_value ** alloc, json_type type) { json_value * value; int values_size; char **temp1; char *temp2; if (!state->first_pass) { value = *top = *alloc; *alloc = (*alloc)->_reserved.next_alloc; if (!*root) *root = value; switch (value->type) { case json_array: if (value->u.array.length == 0) break; if (! (value->u.array.values = (json_value **) json_alloc (state, value->u.array.length * sizeof (json_value *), 0)) ) { return 0; } value->u.array.length = 0; break; case json_object: if (value->u.object.length == 0) break; values_size = sizeof (*value->u.object.values) * value->u.object.length; if (! (value->u.object.values = (json_object_entry *) json_alloc (state, values_size + ((uintptr_t) value->u.object.values), 0)) ) { return 0; } temp1 = (char**)&value->u.object.values; temp2 = *temp1 + values_size; value->_reserved.object_mem = temp2; value->u.object.length = 0; break; case json_string: if (! (value->u.string.ptr = (json_char *) json_alloc (state, (value->u.string.length + 1) * sizeof (json_char), 0)) ) { return 0; } value->u.string.length = 0; break; default: break; }; return 1; } if (! (value = (json_value *) json_alloc (state, sizeof (json_value) + state->settings.value_extra, 1))) { return 0; } if (!*root) *root = value; value->type = type; value->parent = *top; #ifdef JSON_TRACK_SOURCE value->line = state->cur_line; value->col = state->cur_col; #endif if (*alloc) (*alloc)->_reserved.next_alloc = value; *alloc = *top = value; return 1; } #define whitespace \ case '\n': ++ state.cur_line; state.cur_col = 0; /* FALLTHRU */ \ case ' ': /* FALLTHRU */ case '\t': /* FALLTHRU */ case '\r' #define string_add(b) \ do { if (!state.first_pass) string [string_length] = b; ++ string_length; } while (0); #define line_and_col \ state.cur_line, state.cur_col static const long flag_next = 1 << 0, flag_reproc = 1 << 1, flag_need_comma = 1 << 2, flag_seek_value = 1 << 3, flag_escaped = 1 << 4, flag_string = 1 << 5, flag_need_colon = 1 << 6, flag_done = 1 << 7, flag_num_negative = 1 << 8, flag_num_zero = 1 << 9, flag_num_e = 1 << 10, flag_num_e_got_sign = 1 << 11, flag_num_e_negative = 1 << 12, flag_line_comment = 1 << 13, flag_block_comment = 1 << 14, flag_num_got_decimal = 1 << 15; json_value * json_parse_ex (json_settings * settings, const json_char * json, size_t length, char * error_buf) { json_char error [json_error_max]; const json_char * end; json_value * top, * root, * alloc = 0; json_state state = { 0 }; long flags = 0; size_t num_digits = 0; double num_e = 0; double num_fraction = 0; /* Skip UTF-8 BOM */ if (length >= 3 && ((unsigned char) json [0]) == 0xEF && ((unsigned char) json [1]) == 0xBB && ((unsigned char) json [2]) == 0xBF) { json += 3; length -= 3; } error[0] = '\0'; end = (json + length); memcpy (&state.settings, settings, sizeof (json_settings)); if (!state.settings.mem_alloc) state.settings.mem_alloc = default_alloc; if (!state.settings.mem_free) state.settings.mem_free = default_free; memset (&state.uint_max, 0xFF, sizeof (state.uint_max)); memset (&state.ulong_max, 0xFF, sizeof (state.ulong_max)); state.uint_max -= 8; /* limit of how much can be added before next check */ state.ulong_max -= 8; for (state.first_pass = 1; state.first_pass >= 0; -- state.first_pass) { json_uchar uchar; unsigned char uc_b1, uc_b2, uc_b3, uc_b4; json_char * string = 0; unsigned int string_length = 0; top = root = 0; flags = flag_seek_value; state.cur_line = 1; for (state.ptr = json ;; ++ state.ptr) { json_char b = (state.ptr == end ? 0 : *state.ptr); if (flags & flag_string) { if (!b) { sprintf (error, "Unexpected EOF in string (at %d:%d)", line_and_col); goto e_failed; } if (string_length > state.uint_max) goto e_overflow; if (flags & flag_escaped) { flags &= ~ flag_escaped; switch (b) { case 'b': string_add ('\b'); break; case 'f': string_add ('\f'); break; case 'n': string_add ('\n'); break; case 'r': string_add ('\r'); break; case 't': string_add ('\t'); break; case 'u': if (end - state.ptr <= 4 || (uc_b1 = hex_value (*++ state.ptr)) == 0xFF || (uc_b2 = hex_value (*++ state.ptr)) == 0xFF || (uc_b3 = hex_value (*++ state.ptr)) == 0xFF || (uc_b4 = hex_value (*++ state.ptr)) == 0xFF) { sprintf (error, "Invalid character value `%c` (at %d:%d)", b, line_and_col); goto e_failed; } uc_b1 = (uc_b1 << 4) | uc_b2; uc_b2 = (uc_b3 << 4) | uc_b4; uchar = (uc_b1 << 8) | uc_b2; if ((uchar & 0xF800) == 0xD800) { json_uchar uchar2; if (end - state.ptr <= 6 || (*++ state.ptr) != '\\' || (*++ state.ptr) != 'u' || (uc_b1 = hex_value (*++ state.ptr)) == 0xFF || (uc_b2 = hex_value (*++ state.ptr)) == 0xFF || (uc_b3 = hex_value (*++ state.ptr)) == 0xFF || (uc_b4 = hex_value (*++ state.ptr)) == 0xFF) { sprintf (error, "Invalid character value `%c` (at %d:%d)", b, line_and_col); goto e_failed; } uc_b1 = (uc_b1 << 4) | uc_b2; uc_b2 = (uc_b3 << 4) | uc_b4; uchar2 = (uc_b1 << 8) | uc_b2; uchar = 0x010000 | ((uchar & 0x3FF) << 10) | (uchar2 & 0x3FF); } if (sizeof (json_char) >= sizeof (json_uchar) || (uchar <= 0x7F)) { string_add ((json_char) uchar); break; } if (uchar <= 0x7FF) { if (state.first_pass) string_length += 2; else { string [string_length ++] = 0xC0 | (uchar >> 6); string [string_length ++] = 0x80 | (uchar & 0x3F); } break; } if (uchar <= 0xFFFF) { if (state.first_pass) string_length += 3; else { string [string_length ++] = 0xE0 | (uchar >> 12); string [string_length ++] = 0x80 | ((uchar >> 6) & 0x3F); string [string_length ++] = 0x80 | (uchar & 0x3F); } break; } if (state.first_pass) string_length += 4; else { string [string_length ++] = 0xF0 | (uchar >> 18); string [string_length ++] = 0x80 | ((uchar >> 12) & 0x3F); string [string_length ++] = 0x80 | ((uchar >> 6) & 0x3F); string [string_length ++] = 0x80 | (uchar & 0x3F); } break; default: string_add (b); }; continue; } if (b == '\\') { flags |= flag_escaped; continue; } if (b == '"') { if (!state.first_pass) string [string_length] = 0; flags &= ~ flag_string; string = 0; switch (top->type) { case json_string: top->u.string.length = string_length; flags |= flag_next; break; case json_object: if (state.first_pass) { json_char **temp1 = (json_char **) &top->u.object.values; *temp1 += string_length + 1; } else { top->u.object.values [top->u.object.length].name = (json_char *) top->_reserved.object_mem; top->u.object.values [top->u.object.length].name_length = string_length; (*(json_char **) &top->_reserved.object_mem) += string_length + 1; } flags |= flag_seek_value | flag_need_colon; continue; default: break; }; } else { string_add (b); continue; } } if (state.settings.settings & json_enable_comments) { if (flags & (flag_line_comment | flag_block_comment)) { if (flags & flag_line_comment) { if (b == '\r' || b == '\n' || !b) { flags &= ~ flag_line_comment; -- state.ptr; /* so null can be reproc'd */ } continue; } if (flags & flag_block_comment) { if (!b) { sprintf (error, "%d:%d: Unexpected EOF in block comment", line_and_col); goto e_failed; } if (b == '*' && state.ptr < (end - 1) && state.ptr [1] == '/') { flags &= ~ flag_block_comment; ++ state.ptr; /* skip closing sequence */ } continue; } } else if (b == '/') { if (! (flags & (flag_seek_value | flag_done)) && top->type != json_object) { sprintf (error, "%d:%d: Comment not allowed here", line_and_col); goto e_failed; } if (++ state.ptr == end) { sprintf (error, "%d:%d: EOF unexpected", line_and_col); goto e_failed; } switch (b = *state.ptr) { case '/': flags |= flag_line_comment; continue; case '*': flags |= flag_block_comment; continue; default: sprintf (error, "%d:%d: Unexpected `%c` in comment opening sequence", line_and_col, b); goto e_failed; }; } } if (flags & flag_done) { if (!b) break; switch (b) { whitespace: continue; default: sprintf (error, "%d:%d: Trailing garbage: `%c`", state.cur_line, state.cur_col, b); goto e_failed; }; } if (flags & flag_seek_value) { switch (b) { whitespace: continue; case ']': if (top && top->type == json_array) flags = (flags & ~ (flag_need_comma | flag_seek_value)) | flag_next; else { sprintf (error, "%d:%d: Unexpected ]", line_and_col); goto e_failed; } break; default: if (flags & flag_need_comma) { if (b == ',') { flags &= ~ flag_need_comma; continue; } else { sprintf (error, "%d:%d: Expected , before %c", state.cur_line, state.cur_col, b); goto e_failed; } } if (flags & flag_need_colon) { if (b == ':') { flags &= ~ flag_need_colon; continue; } else { sprintf (error, "%d:%d: Expected : before %c", state.cur_line, state.cur_col, b); goto e_failed; } } flags &= ~ flag_seek_value; switch (b) { case '{': if (!new_value (&state, &top, &root, &alloc, json_object)) goto e_alloc_failure; continue; case '[': if (!new_value (&state, &top, &root, &alloc, json_array)) goto e_alloc_failure; flags |= flag_seek_value; continue; case '"': if (!new_value (&state, &top, &root, &alloc, json_string)) goto e_alloc_failure; flags |= flag_string; string = top->u.string.ptr; string_length = 0; continue; case 't': if ((end - state.ptr) < 3 || *(++ state.ptr) != 'r' || *(++ state.ptr) != 'u' || *(++ state.ptr) != 'e') { goto e_unknown_value; } if (!new_value (&state, &top, &root, &alloc, json_boolean)) goto e_alloc_failure; top->u.boolean = 1; flags |= flag_next; break; case 'f': if ((end - state.ptr) < 4 || *(++ state.ptr) != 'a' || *(++ state.ptr) != 'l' || *(++ state.ptr) != 's' || *(++ state.ptr) != 'e') { goto e_unknown_value; } if (!new_value (&state, &top, &root, &alloc, json_boolean)) goto e_alloc_failure; flags |= flag_next; break; case 'n': if ((end - state.ptr) < 3 || *(++ state.ptr) != 'u' || *(++ state.ptr) != 'l' || *(++ state.ptr) != 'l') { goto e_unknown_value; } if (!new_value (&state, &top, &root, &alloc, json_null)) goto e_alloc_failure; flags |= flag_next; break; default: if (isdigit (b) || b == '-') { if (!new_value (&state, &top, &root, &alloc, json_integer)) goto e_alloc_failure; if (!state.first_pass) { while (isdigit (b) || b == '+' || b == '-' || b == 'e' || b == 'E' || b == '.') { if ( (++ state.ptr) == end) { break; } b = *state.ptr; } flags |= flag_next | flag_reproc; break; } flags &= ~ (flag_num_negative | flag_num_e | flag_num_e_got_sign | flag_num_e_negative | flag_num_zero); num_digits = 0; num_fraction = 0; num_e = 0; if (b != '-') { flags |= flag_reproc; break; } flags |= flag_num_negative; continue; } else { sprintf (error, "%d:%d: Unexpected %c when seeking value", line_and_col, b); goto e_failed; } }; }; } else { switch (top->type) { case json_object: switch (b) { whitespace: continue; case '"': if (flags & flag_need_comma) { sprintf (error, "%d:%d: Expected , before \"", line_and_col); goto e_failed; } flags |= flag_string; string = (json_char *) top->_reserved.object_mem; string_length = 0; break; case '}': flags = (flags & ~ flag_need_comma) | flag_next; break; case ',': if (flags & flag_need_comma) { flags &= ~ flag_need_comma; break; } /* FALLTHRU */ default: sprintf (error, "%d:%d: Unexpected `%c` in object", line_and_col, b); goto e_failed; }; break; case json_integer: case json_double: if (isdigit (b)) { ++ num_digits; if (top->type == json_integer || flags & flag_num_e) { if (! (flags & flag_num_e)) { if (flags & flag_num_zero) { sprintf (error, "%d:%d: Unexpected `0` before `%c`", line_and_col, b); goto e_failed; } if (num_digits == 1 && b == '0') flags |= flag_num_zero; } else { flags |= flag_num_e_got_sign; num_e = (num_e * 10) + (b - '0'); continue; } if (would_overflow(top->u.integer, b)) { double dbl = (double)top->u.integer; -- num_digits; -- state.ptr; top->type = json_double; top->u.dbl = dbl; continue; } top->u.integer = (top->u.integer * 10) + (b - '0'); continue; } if (flags & flag_num_got_decimal) num_fraction = (num_fraction * 10) + (b - '0'); else top->u.dbl = (top->u.dbl * 10) + (b - '0'); continue; } if (b == '+' || b == '-') { if ( (flags & flag_num_e) && !(flags & flag_num_e_got_sign)) { flags |= flag_num_e_got_sign; if (b == '-') flags |= flag_num_e_negative; continue; } } else if (b == '.' && top->type == json_integer) { double dbl = (double)top->u.integer; if (!num_digits) { sprintf (error, "%d:%d: Expected digit before `.`", line_and_col); goto e_failed; } top->type = json_double; top->u.dbl = dbl; flags |= flag_num_got_decimal; num_digits = 0; continue; } if (! (flags & flag_num_e)) { if (top->type == json_double) { if (!num_digits) { sprintf (error, "%d:%d: Expected digit after `.`", line_and_col); goto e_failed; } top->u.dbl += num_fraction / pow (10.0, num_digits); } if (b == 'e' || b == 'E') { flags |= flag_num_e; if (top->type == json_integer) { double dbl = (double) top->u.integer; top->type = json_double; top->u.dbl = dbl; } num_digits = 0; flags &= ~ flag_num_zero; continue; } } else { if (!num_digits) { sprintf (error, "%d:%d: Expected digit after `e`", line_and_col); goto e_failed; } top->u.dbl *= pow (10.0, (flags & flag_num_e_negative ? - num_e : num_e)); } if (flags & flag_num_negative) { if (top->type == json_integer) top->u.integer = - top->u.integer; else top->u.dbl = - top->u.dbl; } flags |= flag_next | flag_reproc; break; default: break; }; } if (flags & flag_reproc) { flags &= ~ flag_reproc; -- state.ptr; } if (flags & flag_next) { flags = (flags & ~ flag_next) | flag_need_comma; if (!top->parent) { /* root value done */ flags |= flag_done; continue; } if (top->parent->type == json_array) flags |= flag_seek_value; if (!state.first_pass) { json_value * parent = top->parent; switch (parent->type) { case json_object: parent->u.object.values [parent->u.object.length].value = top; break; case json_array: parent->u.array.values [parent->u.array.length] = top; break; default: break; }; } if ( (++ top->parent->u.array.length) > state.uint_max) goto e_overflow; top = top->parent; continue; } } alloc = root; } return root; e_unknown_value: sprintf (error, "%d:%d: Unknown value", line_and_col); goto e_failed; e_alloc_failure: strcpy (error, "Memory allocation failure"); goto e_failed; e_overflow: sprintf (error, "%d:%d: Too long (caught overflow)", line_and_col); goto e_failed; e_failed: if (error_buf) { if (*error) strcpy (error_buf, error); else strcpy (error_buf, "Unknown error"); } if (state.first_pass) alloc = root; while (alloc) { top = alloc->_reserved.next_alloc; state.settings.mem_free (alloc, state.settings.user_data); alloc = top; } if (!state.first_pass) json_value_free_ex (&state.settings, root); return 0; } json_value * json_parse (const json_char * json, size_t length) { json_settings settings = { 0 }; return json_parse_ex (&settings, json, length, 0); } void json_value_free_ex (json_settings * settings, json_value * value) { json_value * cur_value; if (!value) return; value->parent = 0; while (value) { switch (value->type) { case json_array: if (!value->u.array.length) { settings->mem_free (value->u.array.values, settings->user_data); break; } value = value->u.array.values [-- value->u.array.length]; continue; case json_object: if (!value->u.object.length) { settings->mem_free (value->u.object.values, settings->user_data); break; } value = value->u.object.values [-- value->u.object.length].value; continue; case json_string: settings->mem_free (value->u.string.ptr, settings->user_data); break; default: break; }; cur_value = value; value = value->parent; settings->mem_free (cur_value, settings->user_data); } } void json_value_free (json_value * value) { json_settings settings = { 0 }; settings.mem_free = default_free; json_value_free_ex (&settings, value); } openconnect-8.20/json/LICENSE0000644000076400007640000000250114062600131017475 0ustar00dwoodhoudwoodhou00000000000000 Copyright (C) 2012, 2013 James McLaughlin et al. All rights reserved. Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: 1. Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. 2. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. openconnect-8.20/json/json.h0000644000076400007640000001434614176202121017627 0ustar00dwoodhoudwoodhou00000000000000 /* vim: set et ts=3 sw=3 sts=3 ft=c: * * Copyright (C) 2012, 2013, 2014 James McLaughlin et al. All rights reserved. * https://github.com/udp/json-parser * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ #ifndef _JSON_H #define _JSON_H #ifndef json_char #define json_char char #endif #ifndef json_int_t #ifndef _MSC_VER #include #define json_int_t int64_t #else #define json_int_t __int64 #endif #endif #include #ifdef __cplusplus #include extern "C" { #endif typedef struct { unsigned long max_memory; int settings; /* Custom allocator support (leave null to use malloc/free) */ void * (* mem_alloc) (size_t, int zero, void * user_data); void (* mem_free) (void *, void * user_data); void * user_data; /* will be passed to mem_alloc and mem_free */ size_t value_extra; /* how much extra space to allocate for values? */ } json_settings; #define json_enable_comments 0x01 typedef enum { json_none, json_object, json_array, json_integer, json_double, json_string, json_boolean, json_null } json_type; extern const struct _json_value json_value_none; typedef struct _json_object_entry { json_char * name; unsigned int name_length; struct _json_value * value; } json_object_entry; typedef struct _json_value { struct _json_value * parent; json_type type; union { int boolean; json_int_t integer; double dbl; struct { unsigned int length; json_char * ptr; /* null terminated */ } string; struct { unsigned int length; json_object_entry * values; #if defined(__cplusplus) && __cplusplus >= 201103L decltype(values) begin () const { return values; } decltype(values) end () const { return values + length; } #endif } object; struct { unsigned int length; struct _json_value ** values; #if defined(__cplusplus) && __cplusplus >= 201103L decltype(values) begin () const { return values; } decltype(values) end () const { return values + length; } #endif } array; } u; union { struct _json_value * next_alloc; void * object_mem; } _reserved; #ifdef JSON_TRACK_SOURCE /* Location of the value in the source JSON */ unsigned int line, col; #endif /* Some C++ operator sugar */ #ifdef __cplusplus public: inline _json_value () { memset (this, 0, sizeof (_json_value)); } inline const struct _json_value &operator [] (int index) const { if (type != json_array || index < 0 || ((unsigned int) index) >= u.array.length) { return json_value_none; } return *u.array.values [index]; } inline const struct _json_value &operator [] (const char * index) const { if (type != json_object) return json_value_none; for (unsigned int i = 0; i < u.object.length; ++ i) if (!strcmp (u.object.values [i].name, index)) return *u.object.values [i].value; return json_value_none; } inline operator const char * () const { switch (type) { case json_string: return u.string.ptr; default: return ""; }; } inline operator json_int_t () const { switch (type) { case json_integer: return u.integer; case json_double: return (json_int_t) u.dbl; default: return 0; }; } inline operator bool () const { if (type != json_boolean) return false; return u.boolean != 0; } inline operator double () const { switch (type) { case json_integer: return (double) u.integer; case json_double: return u.dbl; default: return 0; }; } #endif } json_value; json_value * json_parse (const json_char * json, size_t length); #define json_error_max 128 json_value * json_parse_ex (json_settings * settings, const json_char * json, size_t length, char * error); void json_value_free (json_value *); /* Not usually necessary, unless you used a custom mem_alloc and now want to * use a custom mem_free. */ void json_value_free_ex (json_settings * settings, json_value *); #ifdef __cplusplus } /* extern "C" */ #endif #endif openconnect-8.20/json/AUTHORS0000644000076400007640000000050114176202121017541 0ustar00dwoodhoudwoodhou00000000000000All contributors arranged by first commit: James McLaughlin Alex Gartrell Peter Scott Mathias Kaerlev Emiel Mols Czarek Tomczak Nicholas Braden Ivan Kozub Árpád Goretity Igor Gnatenko Haïkel Guémar Tobias Waldekranz Patrick Donnelly Wilmer van der Gaast Jin Wei François Cartegnie Matthijs Boelstra Richard Selneck openconnect-8.20/COPYING.LGPL0000644000076400007640000006350014067426206017333 0ustar00dwoodhoudwoodhou00000000000000 GNU LESSER GENERAL PUBLIC LICENSE Version 2.1, February 1999 Copyright (C) 1991, 1999 Free Software Foundation, Inc. 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA Everyone is permitted to copy and distribute verbatim copies of this license document, but changing it is not allowed. [This is the first released version of the Lesser GPL. It also counts as the successor of the GNU Library Public License, version 2, hence the version number 2.1.] Preamble The licenses for most software are designed to take away your freedom to share and change it. By contrast, the GNU General Public Licenses are intended to guarantee your freedom to share and change free software--to make sure the software is free for all its users. This license, the Lesser General Public License, applies to some specially designated software packages--typically libraries--of the Free Software Foundation and other authors who decide to use it. You can use it too, but we suggest you first think carefully about whether this license or the ordinary General Public License is the better strategy to use in any particular case, based on the explanations below. When we speak of free software, we are referring to freedom of use, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for this service if you wish); that you receive source code or can get it if you want it; that you can change the software and use pieces of it in new free programs; and that you are informed that you can do these things. To protect your rights, we need to make restrictions that forbid distributors to deny you these rights or to ask you to surrender these rights. These restrictions translate to certain responsibilities for you if you distribute copies of the library or if you modify it. For example, if you distribute copies of the library, whether gratis or for a fee, you must give the recipients all the rights that we gave you. You must make sure that they, too, receive or can get the source code. If you link other code with the library, you must provide complete object files to the recipients, so that they can relink them with the library after making changes to the library and recompiling it. And you must show them these terms so they know their rights. We protect your rights with a two-step method: (1) we copyright the library, and (2) we offer you this license, which gives you legal permission to copy, distribute and/or modify the library. To protect each distributor, we want to make it very clear that there is no warranty for the free library. Also, if the library is modified by someone else and passed on, the recipients should know that what they have is not the original version, so that the original author's reputation will not be affected by problems that might be introduced by others. Finally, software patents pose a constant threat to the existence of any free program. We wish to make sure that a company cannot effectively restrict the users of a free program by obtaining a restrictive license from a patent holder. Therefore, we insist that any patent license obtained for a version of the library must be consistent with the full freedom of use specified in this license. Most GNU software, including some libraries, is covered by the ordinary GNU General Public License. This license, the GNU Lesser General Public License, applies to certain designated libraries, and is quite different from the ordinary General Public License. We use this license for certain libraries in order to permit linking those libraries into non-free programs. When a program is linked with a library, whether statically or using a shared library, the combination of the two is legally speaking a combined work, a derivative of the original library. The ordinary General Public License therefore permits such linking only if the entire combination fits its criteria of freedom. The Lesser General Public License permits more lax criteria for linking other code with the library. We call this license the "Lesser" General Public License because it does Less to protect the user's freedom than the ordinary General Public License. It also provides other free software developers Less of an advantage over competing non-free programs. These disadvantages are the reason we use the ordinary General Public License for many libraries. However, the Lesser license provides advantages in certain special circumstances. For example, on rare occasions, there may be a special need to encourage the widest possible use of a certain library, so that it becomes a de-facto standard. To achieve this, non-free programs must be allowed to use the library. A more frequent case is that a free library does the same job as widely used non-free libraries. In this case, there is little to gain by limiting the free library to free software only, so we use the Lesser General Public License. In other cases, permission to use a particular library in non-free programs enables a greater number of people to use a large body of free software. For example, permission to use the GNU C Library in non-free programs enables many more people to use the whole GNU operating system, as well as its variant, the GNU/Linux operating system. Although the Lesser General Public License is Less protective of the users' freedom, it does ensure that the user of a program that is linked with the Library has the freedom and the wherewithal to run that program using a modified version of the Library. The precise terms and conditions for copying, distribution and modification follow. Pay close attention to the difference between a "work based on the library" and a "work that uses the library". The former contains code derived from the library, whereas the latter must be combined with the library in order to run. GNU LESSER GENERAL PUBLIC LICENSE TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION 0. This License Agreement applies to any software library or other program which contains a notice placed by the copyright holder or other authorized party saying it may be distributed under the terms of this Lesser General Public License (also called "this License"). Each licensee is addressed as "you". A "library" means a collection of software functions and/or data prepared so as to be conveniently linked with application programs (which use some of those functions and data) to form executables. The "Library", below, refers to any such software library or work which has been distributed under these terms. A "work based on the Library" means either the Library or any derivative work under copyright law: that is to say, a work containing the Library or a portion of it, either verbatim or with modifications and/or translated straightforwardly into another language. (Hereinafter, translation is included without limitation in the term "modification".) "Source code" for a work means the preferred form of the work for making modifications to it. For a library, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the library. Activities other than copying, distribution and modification are not covered by this License; they are outside its scope. The act of running a program using the Library is not restricted, and output from such a program is covered only if its contents constitute a work based on the Library (independent of the use of the Library in a tool for writing it). Whether that is true depends on what the Library does and what the program that uses the Library does. 1. You may copy and distribute verbatim copies of the Library's complete source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice and disclaimer of warranty; keep intact all the notices that refer to this License and to the absence of any warranty; and distribute a copy of this License along with the Library. You may charge a fee for the physical act of transferring a copy, and you may at your option offer warranty protection in exchange for a fee. 2. You may modify your copy or copies of the Library or any portion of it, thus forming a work based on the Library, and copy and distribute such modifications or work under the terms of Section 1 above, provided that you also meet all of these conditions: a) The modified work must itself be a software library. b) You must cause the files modified to carry prominent notices stating that you changed the files and the date of any change. c) You must cause the whole of the work to be licensed at no charge to all third parties under the terms of this License. d) If a facility in the modified Library refers to a function or a table of data to be supplied by an application program that uses the facility, other than as an argument passed when the facility is invoked, then you must make a good faith effort to ensure that, in the event an application does not supply such function or table, the facility still operates, and performs whatever part of its purpose remains meaningful. (For example, a function in a library to compute square roots has a purpose that is entirely well-defined independent of the application. Therefore, Subsection 2d requires that any application-supplied function or table used by this function must be optional: if the application does not supply it, the square root function must still compute square roots.) These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Library, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works. But when you distribute the same sections as part of a whole which is a work based on the Library, the distribution of the whole must be on the terms of this License, whose permissions for other licensees extend to the entire whole, and thus to each and every part regardless of who wrote it. Thus, it is not the intent of this section to claim rights or contest your rights to work written entirely by you; rather, the intent is to exercise the right to control the distribution of derivative or collective works based on the Library. In addition, mere aggregation of another work not based on the Library with the Library (or with a work based on the Library) on a volume of a storage or distribution medium does not bring the other work under the scope of this License. 3. You may opt to apply the terms of the ordinary GNU General Public License instead of this License to a given copy of the Library. To do this, you must alter all the notices that refer to this License, so that they refer to the ordinary GNU General Public License, version 2, instead of to this License. (If a newer version than version 2 of the ordinary GNU General Public License has appeared, then you can specify that version instead if you wish.) Do not make any other change in these notices. Once this change is made in a given copy, it is irreversible for that copy, so the ordinary GNU General Public License applies to all subsequent copies and derivative works made from that copy. This option is useful when you wish to copy part of the code of the Library into a program that is not a library. 4. You may copy and distribute the Library (or a portion or derivative of it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange. If distribution of object code is made by offering access to copy from a designated place, then offering equivalent access to copy the source code from the same place satisfies the requirement to distribute the source code, even though third parties are not compelled to copy the source along with the object code. 5. A program that contains no derivative of any portion of the Library, but is designed to work with the Library by being compiled or linked with it, is called a "work that uses the Library". Such a work, in isolation, is not a derivative work of the Library, and therefore falls outside the scope of this License. However, linking a "work that uses the Library" with the Library creates an executable that is a derivative of the Library (because it contains portions of the Library), rather than a "work that uses the library". The executable is therefore covered by this License. Section 6 states terms for distribution of such executables. When a "work that uses the Library" uses material from a header file that is part of the Library, the object code for the work may be a derivative work of the Library even though the source code is not. Whether this is true is especially significant if the work can be linked without the Library, or if the work is itself a library. The threshold for this to be true is not precisely defined by law. If such an object file uses only numerical parameters, data structure layouts and accessors, and small macros and small inline functions (ten lines or less in length), then the use of the object file is unrestricted, regardless of whether it is legally a derivative work. (Executables containing this object code plus portions of the Library will still fall under Section 6.) Otherwise, if the work is a derivative of the Library, you may distribute the object code for the work under the terms of Section 6. Any executables containing that work also fall under Section 6, whether or not they are linked directly with the Library itself. 6. As an exception to the Sections above, you may also combine or link a "work that uses the Library" with the Library to produce a work containing portions of the Library, and distribute that work under terms of your choice, provided that the terms permit modification of the work for the customer's own use and reverse engineering for debugging such modifications. You must give prominent notice with each copy of the work that the Library is used in it and that the Library and its use are covered by this License. You must supply a copy of this License. If the work during execution displays copyright notices, you must include the copyright notice for the Library among them, as well as a reference directing the user to the copy of this License. Also, you must do one of these things: a) Accompany the work with the complete corresponding machine-readable source code for the Library including whatever changes were used in the work (which must be distributed under Sections 1 and 2 above); and, if the work is an executable linked with the Library, with the complete machine-readable "work that uses the Library", as object code and/or source code, so that the user can modify the Library and then relink to produce a modified executable containing the modified Library. (It is understood that the user who changes the contents of definitions files in the Library will not necessarily be able to recompile the application to use the modified definitions.) b) Use a suitable shared library mechanism for linking with the Library. A suitable mechanism is one that (1) uses at run time a copy of the library already present on the user's computer system, rather than copying library functions into the executable, and (2) will operate properly with a modified version of the library, if the user installs one, as long as the modified version is interface-compatible with the version that the work was made with. c) Accompany the work with a written offer, valid for at least three years, to give the same user the materials specified in Subsection 6a, above, for a charge no more than the cost of performing this distribution. d) If distribution of the work is made by offering access to copy from a designated place, offer equivalent access to copy the above specified materials from the same place. e) Verify that the user has already received a copy of these materials or that you have already sent this user a copy. For an executable, the required form of the "work that uses the Library" must include any data and utility programs needed for reproducing the executable from it. However, as a special exception, the materials to be distributed need not include anything that is normally distributed (in either source or binary form) with the major components (compiler, kernel, and so on) of the operating system on which the executable runs, unless that component itself accompanies the executable. It may happen that this requirement contradicts the license restrictions of other proprietary libraries that do not normally accompany the operating system. Such a contradiction means you cannot use both them and the Library together in an executable that you distribute. 7. You may place library facilities that are a work based on the Library side-by-side in a single library together with other library facilities not covered by this License, and distribute such a combined library, provided that the separate distribution of the work based on the Library and of the other library facilities is otherwise permitted, and provided that you do these two things: a) Accompany the combined library with a copy of the same work based on the Library, uncombined with any other library facilities. This must be distributed under the terms of the Sections above. b) Give prominent notice with the combined library of the fact that part of it is a work based on the Library, and explaining where to find the accompanying uncombined form of the same work. 8. You may not copy, modify, sublicense, link with, or distribute the Library except as expressly provided under this License. Any attempt otherwise to copy, modify, sublicense, link with, or distribute the Library is void, and will automatically terminate your rights under this License. However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance. 9. You are not required to accept this License, since you have not signed it. However, nothing else grants you permission to modify or distribute the Library or its derivative works. These actions are prohibited by law if you do not accept this License. Therefore, by modifying or distributing the Library (or any work based on the Library), you indicate your acceptance of this License to do so, and all its terms and conditions for copying, distributing or modifying the Library or works based on it. 10. Each time you redistribute the Library (or any work based on the Library), the recipient automatically receives a license from the original licensor to copy, distribute, link with or modify the Library subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. You are not responsible for enforcing compliance by third parties with this License. 11. If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Library at all. For example, if a patent license would not permit royalty-free redistribution of the Library by all those who receive copies directly or indirectly through you, then the only way you could satisfy both it and this License would be to refrain entirely from distribution of the Library. If any portion of this section is held invalid or unenforceable under any particular circumstance, the balance of the section is intended to apply, and the section as a whole is intended to apply in other circumstances. It is not the purpose of this section to induce you to infringe any patents or other property right claims or to contest validity of any such claims; this section has the sole purpose of protecting the integrity of the free software distribution system which is implemented by public license practices. Many people have made generous contributions to the wide range of software distributed through that system in reliance on consistent application of that system; it is up to the author/donor to decide if he or she is willing to distribute software through any other system and a licensee cannot impose that choice. This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License. 12. If the distribution and/or use of the Library is restricted in certain countries either by patents or by copyrighted interfaces, the original copyright holder who places the Library under this License may add an explicit geographical distribution limitation excluding those countries, so that distribution is permitted only in or among countries not thus excluded. In such case, this License incorporates the limitation as if written in the body of this License. 13. The Free Software Foundation may publish revised and/or new versions of the Lesser General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns. Each version is given a distinguishing version number. If the Library specifies a version number of this License which applies to it and "any later version", you have the option of following the terms and conditions either of that version or of any later version published by the Free Software Foundation. If the Library does not specify a license version number, you may choose any version ever published by the Free Software Foundation. 14. If you wish to incorporate parts of the Library into other free programs whose distribution conditions are incompatible with these, write to the author to ask for permission. For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this. Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally. NO WARRANTY 15. BECAUSE THE LIBRARY IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY FOR THE LIBRARY, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE LIBRARY "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE LIBRARY IS WITH YOU. SHOULD THE LIBRARY PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION. 16. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE LIBRARY AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE LIBRARY (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE LIBRARY TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. END OF TERMS AND CONDITIONS How to Apply These Terms to Your New Libraries If you develop a new library, and you want it to be of the greatest possible use to the public, we recommend making it free software that everyone can redistribute and change. You can do so by permitting redistribution under these terms (or, alternatively, under the terms of the ordinary General Public License). To apply these terms, attach the following notices to the library. It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. Copyright (C) This library is free software; you can redistribute it and/or modify it under the terms of the GNU Lesser General Public License as published by the Free Software Foundation; either version 2.1 of the License, or (at your option) any later version. This library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details. You should have received a copy of the GNU Lesser General Public License along with this library; if not, write to the Free Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA Also add information on how to contact you by electronic and paper mail. You should also get your employer (if you work as a programmer) or your school, if any, to sign a "copyright disclaimer" for the library, if necessary. Here is a sample; alter the names: Yoyodyne, Inc., hereby disclaims all copyright interest in the library `Frob' (a library for tweaking knobs) written by James Random Hacker. , 1 April 1990 Ty Coon, President of Vice That's all there is to it! openconnect-8.20/depcomp0000755000076400007640000005602013603173140017106 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # depcomp - compile a program generating dependencies as side-effects scriptversion=2018-03-07.03; # UTC # Copyright (C) 1999-2020 Free Software Foundation, Inc. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # Originally written by Alexandre Oliva . case $1 in '') echo "$0: No command. Try '$0 --help' for more information." 1>&2 exit 1; ;; -h | --h*) cat <<\EOF Usage: depcomp [--help] [--version] PROGRAM [ARGS] Run PROGRAMS ARGS to compile a file, generating dependencies as side-effects. Environment variables: depmode Dependency tracking mode. source Source file read by 'PROGRAMS ARGS'. object Object file output by 'PROGRAMS ARGS'. DEPDIR directory where to store dependencies. depfile Dependency file to output. tmpdepfile Temporary file to use when outputting dependencies. libtool Whether libtool is used (yes/no). Report bugs to . EOF exit $? ;; -v | --v*) echo "depcomp $scriptversion" exit $? ;; esac # Get the directory component of the given path, and save it in the # global variables '$dir'. Note that this directory component will # be either empty or ending with a '/' character. This is deliberate. set_dir_from () { case $1 in */*) dir=`echo "$1" | sed -e 's|/[^/]*$|/|'`;; *) dir=;; esac } # Get the suffix-stripped basename of the given path, and save it the # global variable '$base'. set_base_from () { base=`echo "$1" | sed -e 's|^.*/||' -e 's/\.[^.]*$//'` } # If no dependency file was actually created by the compiler invocation, # we still have to create a dummy depfile, to avoid errors with the # Makefile "include basename.Plo" scheme. make_dummy_depfile () { echo "#dummy" > "$depfile" } # Factor out some common post-processing of the generated depfile. # Requires the auxiliary global variable '$tmpdepfile' to be set. aix_post_process_depfile () { # If the compiler actually managed to produce a dependency file, # post-process it. if test -f "$tmpdepfile"; then # Each line is of the form 'foo.o: dependency.h'. # Do two passes, one to just change these to # $object: dependency.h # and one to simply output # dependency.h: # which is needed to avoid the deleted-header problem. { sed -e "s,^.*\.[$lower]*:,$object:," < "$tmpdepfile" sed -e "s,^.*\.[$lower]*:[$tab ]*,," -e 's,$,:,' < "$tmpdepfile" } > "$depfile" rm -f "$tmpdepfile" else make_dummy_depfile fi } # A tabulation character. tab=' ' # A newline character. nl=' ' # Character ranges might be problematic outside the C locale. # These definitions help. upper=ABCDEFGHIJKLMNOPQRSTUVWXYZ lower=abcdefghijklmnopqrstuvwxyz digits=0123456789 alpha=${upper}${lower} if test -z "$depmode" || test -z "$source" || test -z "$object"; then echo "depcomp: Variables source, object and depmode must be set" 1>&2 exit 1 fi # Dependencies for sub/bar.o or sub/bar.obj go into sub/.deps/bar.Po. depfile=${depfile-`echo "$object" | sed 's|[^\\/]*$|'${DEPDIR-.deps}'/&|;s|\.\([^.]*\)$|.P\1|;s|Pobj$|Po|'`} tmpdepfile=${tmpdepfile-`echo "$depfile" | sed 's/\.\([^.]*\)$/.T\1/'`} rm -f "$tmpdepfile" # Avoid interferences from the environment. gccflag= dashmflag= # Some modes work just like other modes, but use different flags. We # parameterize here, but still list the modes in the big case below, # to make depend.m4 easier to write. Note that we *cannot* use a case # here, because this file can only contain one case statement. if test "$depmode" = hp; then # HP compiler uses -M and no extra arg. gccflag=-M depmode=gcc fi if test "$depmode" = dashXmstdout; then # This is just like dashmstdout with a different argument. dashmflag=-xM depmode=dashmstdout fi cygpath_u="cygpath -u -f -" if test "$depmode" = msvcmsys; then # This is just like msvisualcpp but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvisualcpp fi if test "$depmode" = msvc7msys; then # This is just like msvc7 but w/o cygpath translation. # Just convert the backslash-escaped backslashes to single forward # slashes to satisfy depend.m4 cygpath_u='sed s,\\\\,/,g' depmode=msvc7 fi if test "$depmode" = xlc; then # IBM C/C++ Compilers xlc/xlC can output gcc-like dependency information. gccflag=-qmakedep=gcc,-MF depmode=gcc fi case "$depmode" in gcc3) ## gcc 3 implements dependency tracking that does exactly what ## we want. Yay! Note: for some reason libtool 1.4 doesn't like ## it if -MD -MP comes after the -MF stuff. Hmm. ## Unfortunately, FreeBSD c89 acceptance of flags depends upon ## the command line argument order; so add the flags where they ## appear in depend2.am. Note that the slowdown incurred here ## affects only configure: in makefiles, %FASTDEP% shortcuts this. for arg do case $arg in -c) set fnord "$@" -MT "$object" -MD -MP -MF "$tmpdepfile" "$arg" ;; *) set fnord "$@" "$arg" ;; esac shift # fnord shift # $arg done "$@" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi mv "$tmpdepfile" "$depfile" ;; gcc) ## Note that this doesn't just cater to obsosete pre-3.x GCC compilers. ## but also to in-use compilers like IMB xlc/xlC and the HP C compiler. ## (see the conditional assignment to $gccflag above). ## There are various ways to get dependency output from gcc. Here's ## why we pick this rather obscure method: ## - Don't want to use -MD because we'd like the dependencies to end ## up in a subdir. Having to rename by hand is ugly. ## (We might end up doing this anyway to support other compilers.) ## - The DEPENDENCIES_OUTPUT environment variable makes gcc act like ## -MM, not -M (despite what the docs say). Also, it might not be ## supported by the other compilers which use the 'gcc' depmode. ## - Using -M directly means running the compiler twice (even worse ## than renaming). if test -z "$gccflag"; then gccflag=-MD, fi "$@" -Wp,"$gccflag$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The second -e expression handles DOS-style file names with drive # letters. sed -e 's/^[^:]*: / /' \ -e 's/^['$alpha']:\/[^:]*: / /' < "$tmpdepfile" >> "$depfile" ## This next piece of magic avoids the "deleted header file" problem. ## The problem is that when a header file which appears in a .P file ## is deleted, the dependency causes make to die (because there is ## typically no way to rebuild the header). We avoid this by adding ## dummy dependencies for each header file. Too bad gcc doesn't do ## this for us directly. ## Some versions of gcc put a space before the ':'. On the theory ## that the space means something, we add a space to the output as ## well. hp depmode also adds that space, but also prefixes the VPATH ## to the object. Take care to not repeat it in the output. ## Some versions of the HPUX 10.20 sed can't process this invocation ## correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e "s|.*$object$||" -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; sgi) if test "$libtool" = yes; then "$@" "-Wp,-MDupdate,$tmpdepfile" else "$@" -MDupdate "$tmpdepfile" fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" if test -f "$tmpdepfile"; then # yes, the sourcefile depend on other files echo "$object : \\" > "$depfile" # Clip off the initial element (the dependent). Don't try to be # clever and replace this with sed code, as IRIX sed won't handle # lines with more than a fixed number of characters (4096 in # IRIX 6.2 sed, 8192 in IRIX 6.5). We also remove comment lines; # the IRIX cc adds comments like '#:fec' to the end of the # dependency line. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' \ | tr "$nl" ' ' >> "$depfile" echo >> "$depfile" # The second pass generates a dummy entry for each header file. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^.*\.o://' -e 's/#.*$//' -e '/^$/ d' -e 's/$/:/' \ >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" ;; xlc) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; aix) # The C for AIX Compiler uses -M and outputs the dependencies # in a .u file. In older versions, this file always lives in the # current directory. Also, the AIX compiler puts '$object:' at the # start of each line; $object doesn't have directory information. # Version 6 uses the directory in both cases. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.u tmpdepfile2=$base.u tmpdepfile3=$dir.libs/$base.u "$@" -Wc,-M else tmpdepfile1=$dir$base.u tmpdepfile2=$dir$base.u tmpdepfile3=$dir$base.u "$@" -M fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done aix_post_process_depfile ;; tcc) # tcc (Tiny C Compiler) understand '-MD -MF file' since version 0.9.26 # FIXME: That version still under development at the moment of writing. # Make that this statement remains true also for stable, released # versions. # It will wrap lines (doesn't matter whether long or short) with a # trailing '\', as in: # # foo.o : \ # foo.c \ # foo.h \ # # It will put a trailing '\' even on the last line, and will use leading # spaces rather than leading tabs (at least since its commit 0394caf7 # "Emit spaces for -MD"). "$@" -MD -MF "$tmpdepfile" stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each non-empty line is of the form 'foo.o : \' or ' dep.h \'. # We have to change lines of the first kind to '$object: \'. sed -e "s|.*:|$object :|" < "$tmpdepfile" > "$depfile" # And for each line of the second kind, we have to emit a 'dep.h:' # dummy dependency, to avoid the deleted-header problem. sed -n -e 's|^ *\(.*\) *\\$|\1:|p' < "$tmpdepfile" >> "$depfile" rm -f "$tmpdepfile" ;; ## The order of this option in the case statement is important, since the ## shell code in configure will try each of these formats in the order ## listed in this file. A plain '-MD' option would be understood by many ## compilers, so we must ensure this comes after the gcc and icc options. pgcc) # Portland's C compiler understands '-MD'. # Will always output deps to 'file.d' where file is the root name of the # source file under compilation, even if file resides in a subdirectory. # The object file name does not affect the name of the '.d' file. # pgcc 10.2 will output # foo.o: sub/foo.c sub/foo.h # and will wrap long lines using '\' : # foo.o: sub/foo.c ... \ # sub/foo.h ... \ # ... set_dir_from "$object" # Use the source, not the object, to determine the base name, since # that's sadly what pgcc will do too. set_base_from "$source" tmpdepfile=$base.d # For projects that build the same source file twice into different object # files, the pgcc approach of using the *source* file root name can cause # problems in parallel builds. Use a locking strategy to avoid stomping on # the same $tmpdepfile. lockdir=$base.d-lock trap " echo '$0: caught signal, cleaning up...' >&2 rmdir '$lockdir' exit 1 " 1 2 13 15 numtries=100 i=$numtries while test $i -gt 0; do # mkdir is a portable test-and-set. if mkdir "$lockdir" 2>/dev/null; then # This process acquired the lock. "$@" -MD stat=$? # Release the lock. rmdir "$lockdir" break else # If the lock is being held by a different process, wait # until the winning process is done or we timeout. while test -d "$lockdir" && test $i -gt 0; do sleep 1 i=`expr $i - 1` done fi i=`expr $i - 1` done trap - 1 2 13 15 if test $i -le 0; then echo "$0: failed to acquire lock after $numtries attempts" >&2 echo "$0: check lockdir '$lockdir'" >&2 exit 1 fi if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" # Each line is of the form `foo.o: dependent.h', # or `foo.o: dep1.h dep2.h \', or ` dep3.h dep4.h \'. # Do two passes, one to just change these to # `$object: dependent.h' and one to simply `dependent.h:'. sed "s,^[^:]*:,$object :," < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this invocation # correctly. Breaking it into two sed invocations is a workaround. sed 's,^[^:]*: \(.*\)$,\1,;s/^\\$//;/^$/d;/:$/d' < "$tmpdepfile" \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; hp2) # The "hp" stanza above does not work with aCC (C++) and HP's ia64 # compilers, which have integrated preprocessors. The correct option # to use with these is +Maked; it writes dependencies to a file named # 'foo.d', which lands next to the object file, wherever that # happens to be. # Much of this is similar to the tru64 case; see comments there. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then tmpdepfile1=$dir$base.d tmpdepfile2=$dir.libs/$base.d "$@" -Wc,+Maked else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d "$@" +Maked fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" do test -f "$tmpdepfile" && break done if test -f "$tmpdepfile"; then sed -e "s,^.*\.[$lower]*:,$object:," "$tmpdepfile" > "$depfile" # Add 'dependent.h:' lines. sed -ne '2,${ s/^ *// s/ \\*$// s/$/:/ p }' "$tmpdepfile" >> "$depfile" else make_dummy_depfile fi rm -f "$tmpdepfile" "$tmpdepfile2" ;; tru64) # The Tru64 compiler uses -MD to generate dependencies as a side # effect. 'cc -MD -o foo.o ...' puts the dependencies into 'foo.o.d'. # At least on Alpha/Redhat 6.1, Compaq CCC V6.2-504 seems to put # dependencies in 'foo.d' instead, so we check for that too. # Subdirectories are respected. set_dir_from "$object" set_base_from "$object" if test "$libtool" = yes; then # Libtool generates 2 separate objects for the 2 libraries. These # two compilations output dependencies in $dir.libs/$base.o.d and # in $dir$base.o.d. We have to check for both files, because # one of the two compilations can be disabled. We should prefer # $dir$base.o.d over $dir.libs/$base.o.d because the latter is # automatically cleaned when .libs/ is deleted, while ignoring # the former would cause a distcleancheck panic. tmpdepfile1=$dir$base.o.d # libtool 1.5 tmpdepfile2=$dir.libs/$base.o.d # Likewise. tmpdepfile3=$dir.libs/$base.d # Compaq CCC V6.2-504 "$@" -Wc,-MD else tmpdepfile1=$dir$base.d tmpdepfile2=$dir$base.d tmpdepfile3=$dir$base.d "$@" -MD fi stat=$? if test $stat -ne 0; then rm -f "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" exit $stat fi for tmpdepfile in "$tmpdepfile1" "$tmpdepfile2" "$tmpdepfile3" do test -f "$tmpdepfile" && break done # Same post-processing that is required for AIX mode. aix_post_process_depfile ;; msvc7) if test "$libtool" = yes; then showIncludes=-Wc,-showIncludes else showIncludes=-showIncludes fi "$@" $showIncludes > "$tmpdepfile" stat=$? grep -v '^Note: including file: ' "$tmpdepfile" if test $stat -ne 0; then rm -f "$tmpdepfile" exit $stat fi rm -f "$depfile" echo "$object : \\" > "$depfile" # The first sed program below extracts the file names and escapes # backslashes for cygpath. The second sed program outputs the file # name when reading, but also accumulates all include files in the # hold buffer in order to output them again at the end. This only # works with sed implementations that can handle large buffers. sed < "$tmpdepfile" -n ' /^Note: including file: *\(.*\)/ { s//\1/ s/\\/\\\\/g p }' | $cygpath_u | sort -u | sed -n ' s/ /\\ /g s/\(.*\)/'"$tab"'\1 \\/p s/.\(.*\) \\/\1:/ H $ { s/.*/'"$tab"'/ G p }' >> "$depfile" echo >> "$depfile" # make sure the fragment doesn't end with a backslash rm -f "$tmpdepfile" ;; msvc7msys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; #nosideeffect) # This comment above is used by automake to tell side-effect # dependency tracking mechanisms from slower ones. dashmstdout) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout, regardless of -o. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done test -z "$dashmflag" && dashmflag=-M # Require at least two characters before searching for ':' # in the target name. This is to cope with DOS-style filenames: # a dependency such as 'c:/foo/bar' could be seen as target 'c' otherwise. "$@" $dashmflag | sed "s|^[$tab ]*[^:$tab ][^:][^:]*:[$tab ]*|$object: |" > "$tmpdepfile" rm -f "$depfile" cat < "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process this sed invocation # correctly. Breaking it into two sed invocations is a workaround. tr ' ' "$nl" < "$tmpdepfile" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; dashXmstdout) # This case only exists to satisfy depend.m4. It is never actually # run, as this mode is specially recognized in the preamble. exit 1 ;; makedepend) "$@" || exit $? # Remove any Libtool call if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # X makedepend shift cleared=no eat=no for arg do case $cleared in no) set ""; shift cleared=yes ;; esac if test $eat = yes; then eat=no continue fi case "$arg" in -D*|-I*) set fnord "$@" "$arg"; shift ;; # Strip any option that makedepend may not understand. Remove # the object too, otherwise makedepend will parse it as a source file. -arch) eat=yes ;; -*|$object) ;; *) set fnord "$@" "$arg"; shift ;; esac done obj_suffix=`echo "$object" | sed 's/^.*\././'` touch "$tmpdepfile" ${MAKEDEPEND-makedepend} -o"$obj_suffix" -f"$tmpdepfile" "$@" rm -f "$depfile" # makedepend may prepend the VPATH from the source file name to the object. # No need to regex-escape $object, excess matching of '.' is harmless. sed "s|^.*\($object *:\)|\1|" "$tmpdepfile" > "$depfile" # Some versions of the HPUX 10.20 sed can't process the last invocation # correctly. Breaking it into two sed invocations is a workaround. sed '1,2d' "$tmpdepfile" \ | tr ' ' "$nl" \ | sed -e 's/^\\$//' -e '/^$/d' -e '/:$/d' \ | sed -e 's/$/ :/' >> "$depfile" rm -f "$tmpdepfile" "$tmpdepfile".bak ;; cpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi # Remove '-o $object'. IFS=" " for arg do case $arg in -o) shift ;; $object) shift ;; *) set fnord "$@" "$arg" shift # fnord shift # $arg ;; esac done "$@" -E \ | sed -n -e '/^# [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ -e '/^#line [0-9][0-9]* "\([^"]*\)".*/ s:: \1 \\:p' \ | sed '$ s: \\$::' > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" cat < "$tmpdepfile" >> "$depfile" sed < "$tmpdepfile" '/^$/d;s/^ //;s/ \\$//;s/$/ :/' >> "$depfile" rm -f "$tmpdepfile" ;; msvisualcpp) # Important note: in order to support this mode, a compiler *must* # always write the preprocessed file to stdout. "$@" || exit $? # Remove the call to Libtool. if test "$libtool" = yes; then while test "X$1" != 'X--mode=compile'; do shift done shift fi IFS=" " for arg do case "$arg" in -o) shift ;; $object) shift ;; "-Gm"|"/Gm"|"-Gi"|"/Gi"|"-ZI"|"/ZI") set fnord "$@" shift shift ;; *) set fnord "$@" "$arg" shift shift ;; esac done "$@" -E 2>/dev/null | sed -n '/^#line [0-9][0-9]* "\([^"]*\)"/ s::\1:p' | $cygpath_u | sort -u > "$tmpdepfile" rm -f "$depfile" echo "$object : \\" > "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::'"$tab"'\1 \\:p' >> "$depfile" echo "$tab" >> "$depfile" sed < "$tmpdepfile" -n -e 's% %\\ %g' -e '/^\(.*\)$/ s::\1\::p' >> "$depfile" rm -f "$tmpdepfile" ;; msvcmsys) # This case exists only to let depend.m4 do its work. It works by # looking at the text of this script. This case will never be run, # since it is checked for above. exit 1 ;; none) exec "$@" ;; *) echo "Unknown depmode $depmode" 1>&2 exit 1 ;; esac exit 0 # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.20/ABOUT-NLS0000644000076400007640000026713312424411475016777 0ustar00dwoodhoudwoodhou000000000000001 Notes on the Free Translation Project *************************************** Free software is going international! The Free Translation Project is a way to get maintainers of free software, translators, and users all together, so that free software will gradually become able to speak many languages. A few packages already provide translations for their messages. If you found this `ABOUT-NLS' file inside a distribution, you may assume that the distributed package does use GNU `gettext' internally, itself available at your nearest GNU archive site. But you do _not_ need to install GNU `gettext' prior to configuring, installing or using this package with messages translated. Installers will find here some useful hints. These notes also explain how users should proceed for getting the programs to use the available translations. They tell how people wanting to contribute and work on translations can contact the appropriate team. 1.1 INSTALL Matters =================== Some packages are "localizable" when properly installed; the programs they contain can be made to speak your own native language. Most such packages use GNU `gettext'. Other packages have their own ways to internationalization, predating GNU `gettext'. By default, this package will be installed to allow translation of messages. It will automatically detect whether the system already provides the GNU `gettext' functions. Installers may use special options at configuration time for changing the default behaviour. The command: ./configure --disable-nls will _totally_ disable translation of messages. When you already have GNU `gettext' installed on your system and run configure without an option for your new package, `configure' will probably detect the previously built and installed `libintl' library and will decide to use it. If not, you may have to to use the `--with-libintl-prefix' option to tell `configure' where to look for it. Internationalized packages usually have many `po/LL.po' files, where LL gives an ISO 639 two-letter code identifying the language. Unless translations have been forbidden at `configure' time by using the `--disable-nls' switch, all available translations are installed together with the package. However, the environment variable `LINGUAS' may be set, prior to configuration, to limit the installed set. `LINGUAS' should then contain a space separated list of two-letter codes, stating which languages are allowed. 1.2 Using This Package ====================== As a user, if your language has been installed for this package, you only have to set the `LANG' environment variable to the appropriate `LL_CC' combination. If you happen to have the `LC_ALL' or some other `LC_xxx' environment variables set, you should unset them before setting `LANG', otherwise the setting of `LANG' will not have the desired effect. Here `LL' is an ISO 639 two-letter language code, and `CC' is an ISO 3166 two-letter country code. For example, let's suppose that you speak German and live in Germany. At the shell prompt, merely execute `setenv LANG de_DE' (in `csh'), `export LANG; LANG=de_DE' (in `sh') or `export LANG=de_DE' (in `bash'). This can be done from your `.login' or `.profile' file, once and for all. You might think that the country code specification is redundant. But in fact, some languages have dialects in different countries. For example, `de_AT' is used for Austria, and `pt_BR' for Brazil. The country code serves to distinguish the dialects. The locale naming convention of `LL_CC', with `LL' denoting the language and `CC' denoting the country, is the one use on systems based on GNU libc. On other systems, some variations of this scheme are used, such as `LL' or `LL_CC.ENCODING'. You can get the list of locales supported by your system for your language by running the command `locale -a | grep '^LL''. Not all programs have translations for all languages. By default, an English message is shown in place of a nonexistent translation. If you understand other languages, you can set up a priority list of languages. This is done through a different environment variable, called `LANGUAGE'. GNU `gettext' gives preference to `LANGUAGE' over `LANG' for the purpose of message handling, but you still need to have `LANG' set to the primary language; this is required by other parts of the system libraries. For example, some Swedish users who would rather read translations in German than English for when Swedish is not available, set `LANGUAGE' to `sv:de' while leaving `LANG' to `sv_SE'. Special advice for Norwegian users: The language code for Norwegian bokma*l changed from `no' to `nb' recently (in 2003). During the transition period, while some message catalogs for this language are installed under `nb' and some older ones under `no', it's recommended for Norwegian users to set `LANGUAGE' to `nb:no' so that both newer and older translations are used. In the `LANGUAGE' environment variable, but not in the `LANG' environment variable, `LL_CC' combinations can be abbreviated as `LL' to denote the language's main dialect. For example, `de' is equivalent to `de_DE' (German as spoken in Germany), and `pt' to `pt_PT' (Portuguese as spoken in Portugal) in this context. 1.3 Translating Teams ===================== For the Free Translation Project to be a success, we need interested people who like their own language and write it well, and who are also able to synergize with other translators speaking the same language. Each translation team has its own mailing list. The up-to-date list of teams can be found at the Free Translation Project's homepage, `http://translationproject.org/', in the "Teams" area. If you'd like to volunteer to _work_ at translating messages, you should become a member of the translating team for your own language. The subscribing address is _not_ the same as the list itself, it has `-request' appended. For example, speakers of Swedish can send a message to `sv-request@li.org', having this message body: subscribe Keep in mind that team members are expected to participate _actively_ in translations, or at solving translational difficulties, rather than merely lurking around. If your team does not exist yet and you want to start one, or if you are unsure about what to do or how to get started, please write to `coordinator@translationproject.org' to reach the coordinator for all translator teams. The English team is special. It works at improving and uniformizing the terminology in use. Proven linguistic skills are praised more than programming skills, here. 1.4 Available Packages ====================== Languages are not equally supported in all packages. The following matrix shows the current state of internationalization, as of June 2010. The matrix shows, in regard of each package, for which languages PO files have been submitted to translation coordination, with a translation percentage of at least 50%. Ready PO files af am an ar as ast az be be@latin bg bn_IN bs ca +--------------------------------------------------+ a2ps | [] [] | aegis | | ant-phone | | anubis | | aspell | [] [] | bash | | bfd | | bibshelf | [] | binutils | | bison | | bison-runtime | [] | bluez-pin | [] [] | bombono-dvd | | buzztard | | cflow | | clisp | | coreutils | [] [] | cpio | | cppi | | cpplib | [] | cryptsetup | | dfarc | | dialog | [] [] | dico | | diffutils | [] | dink | | doodle | | e2fsprogs | [] | enscript | [] | exif | | fetchmail | [] | findutils | [] | flex | [] | freedink | | gas | | gawk | [] [] | gcal | [] | gcc | | gettext-examples | [] [] [] [] | gettext-runtime | [] [] | gettext-tools | [] [] | gip | [] | gjay | | gliv | [] | glunarclock | [] [] | gnubiff | | gnucash | [] | gnuedu | | gnulib | | gnunet | | gnunet-gtk | | gnutls | | gold | | gpe-aerial | | gpe-beam | | gpe-bluetooth | | gpe-calendar | | gpe-clock | [] | gpe-conf | | gpe-contacts | | gpe-edit | | gpe-filemanager | | gpe-go | | gpe-login | | gpe-ownerinfo | [] | gpe-package | | gpe-sketchbook | | gpe-su | [] | gpe-taskmanager | [] | gpe-timesheet | [] | gpe-today | [] | gpe-todo | | gphoto2 | | gprof | [] | gpsdrive | | gramadoir | | grep | | grub | [] [] | gsasl | | gss | | gst-plugins-bad | [] | gst-plugins-base | [] | gst-plugins-good | [] | gst-plugins-ugly | [] | gstreamer | [] [] [] | gtick | | gtkam | [] | gtkorphan | [] | gtkspell | [] [] [] | gutenprint | | hello | [] | help2man | | hylafax | | idutils | | indent | [] [] | iso_15924 | | iso_3166 | [] [] [] [] [] [] [] | iso_3166_2 | | iso_4217 | | iso_639 | [] [] [] [] | iso_639_3 | | jwhois | | kbd | | keytouch | [] | keytouch-editor | | keytouch-keyboa... | [] | klavaro | [] | latrine | | ld | [] | leafpad | [] [] | libc | [] [] | libexif | () | libextractor | | libgnutls | | libgpewidget | | libgpg-error | | libgphoto2 | | libgphoto2_port | | libgsasl | | libiconv | [] | libidn | | lifelines | | liferea | [] [] | lilypond | | linkdr | [] | lordsawar | | lprng | | lynx | [] | m4 | | mailfromd | | mailutils | | make | | man-db | | man-db-manpages | | minicom | | mkisofs | | myserver | | nano | [] [] | opcodes | | parted | | pies | | popt | | psmisc | | pspp | [] | pwdutils | | radius | [] | recode | [] [] | rosegarden | | rpm | | rush | | sarg | | screem | | scrollkeeper | [] [] [] | sed | [] [] | sharutils | [] [] | shishi | | skencil | | solfege | | solfege-manual | | soundtracker | | sp | | sysstat | | tar | [] | texinfo | | tin | | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] | vice | | vmm | | vorbis-tools | | wastesedge | | wdiff | | wget | [] [] | wyslij-po | | xchat | [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] | +--------------------------------------------------+ af am an ar as ast az be be@latin bg bn_IN bs ca 6 0 1 2 3 19 1 10 3 28 3 1 38 crh cs da de el en en_GB en_ZA eo es et eu fa +-------------------------------------------------+ a2ps | [] [] [] [] [] [] [] | aegis | [] [] [] | ant-phone | [] () | anubis | [] [] | aspell | [] [] [] [] [] | bash | [] [] [] | bfd | [] | bibshelf | [] [] [] | binutils | [] | bison | [] [] | bison-runtime | [] [] [] [] | bluez-pin | [] [] [] [] [] [] | bombono-dvd | [] | buzztard | [] [] [] | cflow | [] [] | clisp | [] [] [] [] | coreutils | [] [] [] [] | cpio | | cppi | | cpplib | [] [] [] | cryptsetup | [] | dfarc | [] [] [] | dialog | [] [] [] [] [] | dico | | diffutils | [] [] [] [] [] [] | dink | [] [] [] | doodle | [] | e2fsprogs | [] [] [] | enscript | [] [] [] | exif | () [] [] | fetchmail | [] [] () [] [] [] | findutils | [] [] [] | flex | [] [] | freedink | [] [] [] | gas | [] | gawk | [] [] [] | gcal | [] | gcc | [] [] | gettext-examples | [] [] [] [] | gettext-runtime | [] [] [] [] | gettext-tools | [] [] [] | gip | [] [] [] [] | gjay | [] | gliv | [] [] [] | glunarclock | [] [] | gnubiff | () | gnucash | [] () () () () | gnuedu | [] [] | gnulib | [] [] | gnunet | | gnunet-gtk | [] | gnutls | [] [] | gold | [] | gpe-aerial | [] [] [] [] | gpe-beam | [] [] [] [] | gpe-bluetooth | [] [] | gpe-calendar | [] | gpe-clock | [] [] [] [] | gpe-conf | [] [] [] | gpe-contacts | [] [] [] | gpe-edit | [] [] | gpe-filemanager | [] [] [] | gpe-go | [] [] [] [] | gpe-login | [] [] | gpe-ownerinfo | [] [] [] [] | gpe-package | [] [] [] | gpe-sketchbook | [] [] [] [] | gpe-su | [] [] [] [] | gpe-taskmanager | [] [] [] [] | gpe-timesheet | [] [] [] [] | gpe-today | [] [] [] [] | gpe-todo | [] [] [] | gphoto2 | [] [] () [] [] [] | gprof | [] [] [] | gpsdrive | [] [] [] | gramadoir | [] [] [] | grep | [] | grub | [] [] | gsasl | [] | gss | | gst-plugins-bad | [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] () [] | gtkam | [] [] () [] [] | gtkorphan | [] [] [] [] | gtkspell | [] [] [] [] [] [] [] | gutenprint | [] [] [] | hello | [] [] [] [] | help2man | [] | hylafax | [] [] | idutils | [] [] | indent | [] [] [] [] [] [] [] | iso_15924 | [] () [] [] | iso_3166 | [] [] [] [] () [] [] [] () | iso_3166_2 | () | iso_4217 | [] [] [] () [] [] | iso_639 | [] [] [] [] () [] [] | iso_639_3 | [] | jwhois | [] | kbd | [] [] [] [] [] | keytouch | [] [] | keytouch-editor | [] [] | keytouch-keyboa... | [] | klavaro | [] [] [] [] | latrine | [] () | ld | [] [] | leafpad | [] [] [] [] [] [] | libc | [] [] [] [] | libexif | [] [] () | libextractor | | libgnutls | [] | libgpewidget | [] [] | libgpg-error | [] [] | libgphoto2 | [] () | libgphoto2_port | [] () [] | libgsasl | | libiconv | [] [] [] [] [] | libidn | [] [] [] | lifelines | [] () | liferea | [] [] [] [] [] | lilypond | [] [] [] | linkdr | [] [] [] | lordsawar | [] | lprng | | lynx | [] [] [] [] | m4 | [] [] [] [] | mailfromd | | mailutils | [] | make | [] [] [] | man-db | | man-db-manpages | | minicom | [] [] [] [] | mkisofs | | myserver | | nano | [] [] [] | opcodes | [] [] | parted | [] [] | pies | | popt | [] [] [] [] [] | psmisc | [] [] [] | pspp | [] | pwdutils | [] | radius | [] | recode | [] [] [] [] [] [] | rosegarden | () () () | rpm | [] [] [] | rush | | sarg | | screem | | scrollkeeper | [] [] [] [] [] | sed | [] [] [] [] [] [] | sharutils | [] [] [] [] | shishi | | skencil | [] () [] | solfege | [] [] [] | solfege-manual | [] [] | soundtracker | [] [] [] | sp | [] | sysstat | [] [] [] | tar | [] [] [] [] | texinfo | [] [] [] | tin | [] [] | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] [] [] [] | vice | () () | vmm | [] | vorbis-tools | [] [] | wastesedge | [] | wdiff | [] [] | wget | [] [] [] | wyslij-po | | xchat | [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] [] [] [] | +-------------------------------------------------+ crh cs da de el en en_GB en_ZA eo es et eu fa 5 64 105 117 18 1 8 0 28 89 18 19 0 fi fr ga gl gu he hi hr hu hy id is it ja ka kn +----------------------------------------------------+ a2ps | [] [] [] [] | aegis | [] [] | ant-phone | [] [] | anubis | [] [] [] [] | aspell | [] [] [] [] | bash | [] [] [] [] | bfd | [] [] [] | bibshelf | [] [] [] [] [] | binutils | [] [] [] | bison | [] [] [] [] | bison-runtime | [] [] [] [] [] [] | bluez-pin | [] [] [] [] [] [] [] [] | bombono-dvd | [] | buzztard | [] | cflow | [] [] [] | clisp | [] | coreutils | [] [] [] [] [] | cpio | [] [] [] [] | cppi | [] [] | cpplib | [] [] [] | cryptsetup | [] [] [] | dfarc | [] [] [] | dialog | [] [] [] [] [] [] [] | dico | | diffutils | [] [] [] [] [] [] [] [] [] | dink | [] | doodle | [] [] | e2fsprogs | [] [] | enscript | [] [] [] [] | exif | [] [] [] [] [] [] | fetchmail | [] [] [] [] | findutils | [] [] [] [] [] [] | flex | [] [] [] | freedink | [] [] [] | gas | [] [] | gawk | [] [] [] [] () [] | gcal | [] | gcc | [] | gettext-examples | [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] | gettext-tools | [] [] [] [] | gip | [] [] [] [] [] [] | gjay | [] | gliv | [] () | glunarclock | [] [] [] [] | gnubiff | () [] () | gnucash | () () () () () [] | gnuedu | [] [] | gnulib | [] [] [] [] [] [] | gnunet | | gnunet-gtk | [] | gnutls | [] [] | gold | [] [] | gpe-aerial | [] [] [] | gpe-beam | [] [] [] [] | gpe-bluetooth | [] [] [] [] | gpe-calendar | [] [] | gpe-clock | [] [] [] [] [] | gpe-conf | [] [] [] [] | gpe-contacts | [] [] [] [] | gpe-edit | [] [] [] | gpe-filemanager | [] [] [] [] | gpe-go | [] [] [] [] [] | gpe-login | [] [] [] | gpe-ownerinfo | [] [] [] [] [] | gpe-package | [] [] [] | gpe-sketchbook | [] [] [] [] | gpe-su | [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] | gpe-timesheet | [] [] [] [] [] | gpe-today | [] [] [] [] [] [] [] | gpe-todo | [] [] [] | gphoto2 | [] [] [] [] [] [] | gprof | [] [] [] [] | gpsdrive | [] [] [] | gramadoir | [] [] [] | grep | [] [] | grub | [] [] [] [] | gsasl | [] [] [] [] [] | gss | [] [] [] [] [] | gst-plugins-bad | [] [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] [] [] [] [] | gtkam | [] [] [] [] [] | gtkorphan | [] [] [] | gtkspell | [] [] [] [] [] [] [] [] [] | gutenprint | [] [] [] [] | hello | [] [] [] | help2man | [] [] | hylafax | [] | idutils | [] [] [] [] [] [] | indent | [] [] [] [] [] [] [] [] | iso_15924 | [] () [] [] | iso_3166 | [] () [] [] [] [] [] [] [] [] [] [] | iso_3166_2 | () [] [] [] | iso_4217 | [] () [] [] [] [] | iso_639 | [] () [] [] [] [] [] [] [] | iso_639_3 | () [] [] | jwhois | [] [] [] [] [] | kbd | [] [] | keytouch | [] [] [] [] [] [] | keytouch-editor | [] [] [] [] [] | keytouch-keyboa... | [] [] [] [] [] | klavaro | [] [] | latrine | [] [] [] | ld | [] [] [] [] | leafpad | [] [] [] [] [] [] [] () | libc | [] [] [] [] [] | libexif | [] | libextractor | | libgnutls | [] [] | libgpewidget | [] [] [] [] | libgpg-error | [] [] | libgphoto2 | [] [] [] | libgphoto2_port | [] [] [] | libgsasl | [] [] [] [] [] | libiconv | [] [] [] [] [] [] | libidn | [] [] [] [] | lifelines | () | liferea | [] [] [] [] | lilypond | [] [] | linkdr | [] [] [] [] [] | lordsawar | | lprng | [] | lynx | [] [] [] [] [] | m4 | [] [] [] [] [] [] | mailfromd | | mailutils | [] [] | make | [] [] [] [] [] [] [] [] [] | man-db | [] [] | man-db-manpages | [] | minicom | [] [] [] [] [] | mkisofs | [] [] [] [] | myserver | | nano | [] [] [] [] [] [] | opcodes | [] [] [] [] | parted | [] [] [] [] | pies | | popt | [] [] [] [] [] [] [] [] [] | psmisc | [] [] [] | pspp | | pwdutils | [] [] | radius | [] [] | recode | [] [] [] [] [] [] [] [] | rosegarden | () () () () () | rpm | [] [] | rush | | sarg | [] | screem | [] [] | scrollkeeper | [] [] [] [] | sed | [] [] [] [] [] [] [] [] | sharutils | [] [] [] [] [] [] [] | shishi | [] | skencil | [] | solfege | [] [] [] [] | solfege-manual | [] [] | soundtracker | [] [] | sp | [] () | sysstat | [] [] [] [] [] | tar | [] [] [] [] [] [] [] | texinfo | [] [] [] [] | tin | [] | unicode-han-tra... | | unicode-transla... | [] [] | util-linux-ng | [] [] [] [] [] [] | vice | () () () | vmm | [] | vorbis-tools | [] | wastesedge | () () | wdiff | [] | wget | [] [] [] [] [] [] [] [] | wyslij-po | [] [] [] | xchat | [] [] [] [] [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] [] [] | +----------------------------------------------------+ fi fr ga gl gu he hi hr hu hy id is it ja ka kn 105 121 53 20 4 8 3 5 53 2 120 5 84 67 0 4 ko ku ky lg lt lv mk ml mn mr ms mt nb nds ne +-----------------------------------------------+ a2ps | [] | aegis | | ant-phone | | anubis | [] [] | aspell | [] | bash | | bfd | | bibshelf | [] [] | binutils | | bison | [] | bison-runtime | [] [] [] [] [] | bluez-pin | [] [] [] [] [] | bombono-dvd | | buzztard | | cflow | | clisp | | coreutils | [] | cpio | | cppi | | cpplib | | cryptsetup | | dfarc | [] | dialog | [] [] [] [] [] | dico | | diffutils | [] [] | dink | | doodle | | e2fsprogs | | enscript | | exif | [] | fetchmail | | findutils | | flex | | freedink | [] | gas | | gawk | | gcal | | gcc | | gettext-examples | [] [] [] [] | gettext-runtime | [] | gettext-tools | [] | gip | [] [] | gjay | | gliv | | glunarclock | [] | gnubiff | | gnucash | () () () () | gnuedu | | gnulib | | gnunet | | gnunet-gtk | | gnutls | [] | gold | | gpe-aerial | [] | gpe-beam | [] | gpe-bluetooth | [] [] | gpe-calendar | [] | gpe-clock | [] [] [] [] [] | gpe-conf | [] [] | gpe-contacts | [] [] | gpe-edit | [] | gpe-filemanager | [] [] | gpe-go | [] [] [] | gpe-login | [] | gpe-ownerinfo | [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] | gpe-su | [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] [] | gpe-timesheet | [] [] | gpe-today | [] [] [] [] | gpe-todo | [] [] | gphoto2 | | gprof | [] | gpsdrive | | gramadoir | | grep | | grub | | gsasl | | gss | | gst-plugins-bad | [] [] [] [] | gst-plugins-base | [] [] | gst-plugins-good | [] [] | gst-plugins-ugly | [] [] [] [] [] | gstreamer | | gtick | | gtkam | [] | gtkorphan | [] [] | gtkspell | [] [] [] [] [] [] [] | gutenprint | | hello | [] [] [] | help2man | | hylafax | | idutils | | indent | | iso_15924 | [] [] | iso_3166 | [] [] () [] [] [] [] [] | iso_3166_2 | | iso_4217 | [] [] | iso_639 | [] [] | iso_639_3 | [] | jwhois | [] | kbd | | keytouch | [] | keytouch-editor | [] | keytouch-keyboa... | [] | klavaro | [] | latrine | [] | ld | | leafpad | [] [] [] | libc | [] | libexif | | libextractor | | libgnutls | [] | libgpewidget | [] [] | libgpg-error | | libgphoto2 | | libgphoto2_port | | libgsasl | | libiconv | | libidn | | lifelines | | liferea | | lilypond | | linkdr | | lordsawar | | lprng | | lynx | | m4 | | mailfromd | | mailutils | | make | [] | man-db | | man-db-manpages | | minicom | [] | mkisofs | | myserver | | nano | [] [] | opcodes | | parted | | pies | | popt | [] [] [] | psmisc | | pspp | | pwdutils | | radius | | recode | | rosegarden | | rpm | | rush | | sarg | | screem | | scrollkeeper | [] [] | sed | | sharutils | | shishi | | skencil | | solfege | [] | solfege-manual | | soundtracker | | sp | | sysstat | [] | tar | [] | texinfo | [] | tin | | unicode-han-tra... | | unicode-transla... | | util-linux-ng | | vice | | vmm | | vorbis-tools | | wastesedge | | wdiff | | wget | [] | wyslij-po | | xchat | [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] | +-----------------------------------------------+ ko ku ky lg lt lv mk ml mn mr ms mt nb nds ne 20 5 10 1 13 48 4 2 2 4 24 10 20 3 1 nl nn or pa pl ps pt pt_BR ro ru rw sk sl sq sr +---------------------------------------------------+ a2ps | [] [] [] [] [] [] [] [] | aegis | [] [] [] | ant-phone | [] [] | anubis | [] [] [] | aspell | [] [] [] [] [] | bash | [] [] | bfd | [] | bibshelf | [] [] | binutils | [] [] | bison | [] [] [] | bison-runtime | [] [] [] [] [] [] [] | bluez-pin | [] [] [] [] [] [] [] [] | bombono-dvd | [] () | buzztard | [] [] | cflow | [] | clisp | [] [] | coreutils | [] [] [] [] [] [] | cpio | [] [] [] | cppi | [] | cpplib | [] | cryptsetup | [] | dfarc | [] | dialog | [] [] [] [] | dico | [] | diffutils | [] [] [] [] [] [] | dink | () | doodle | [] [] | e2fsprogs | [] [] | enscript | [] [] [] [] [] | exif | [] [] [] () [] | fetchmail | [] [] [] [] | findutils | [] [] [] [] [] | flex | [] [] [] [] [] | freedink | [] [] | gas | | gawk | [] [] [] [] | gcal | | gcc | [] | gettext-examples | [] [] [] [] [] [] [] [] | gettext-runtime | [] [] [] [] [] [] [] [] [] | gettext-tools | [] [] [] [] [] [] | gip | [] [] [] [] [] | gjay | | gliv | [] [] [] [] [] [] | glunarclock | [] [] [] [] [] | gnubiff | [] () | gnucash | [] () () () | gnuedu | [] | gnulib | [] [] [] [] | gnunet | | gnunet-gtk | | gnutls | [] [] | gold | | gpe-aerial | [] [] [] [] [] [] [] | gpe-beam | [] [] [] [] [] [] [] | gpe-bluetooth | [] [] | gpe-calendar | [] [] [] [] | gpe-clock | [] [] [] [] [] [] [] [] | gpe-conf | [] [] [] [] [] [] [] | gpe-contacts | [] [] [] [] [] | gpe-edit | [] [] [] | gpe-filemanager | [] [] [] | gpe-go | [] [] [] [] [] [] [] [] | gpe-login | [] [] | gpe-ownerinfo | [] [] [] [] [] [] [] [] | gpe-package | [] [] | gpe-sketchbook | [] [] [] [] [] [] [] | gpe-su | [] [] [] [] [] [] [] [] | gpe-taskmanager | [] [] [] [] [] [] [] [] | gpe-timesheet | [] [] [] [] [] [] [] [] | gpe-today | [] [] [] [] [] [] [] [] | gpe-todo | [] [] [] [] [] | gphoto2 | [] [] [] [] [] [] [] [] | gprof | [] [] [] | gpsdrive | [] [] | gramadoir | [] [] | grep | [] [] [] [] | grub | [] [] [] | gsasl | [] [] [] [] | gss | [] [] [] | gst-plugins-bad | [] [] [] [] [] [] | gst-plugins-base | [] [] [] [] [] | gst-plugins-good | [] [] [] [] [] | gst-plugins-ugly | [] [] [] [] [] [] | gstreamer | [] [] [] [] [] | gtick | [] [] [] | gtkam | [] [] [] [] [] [] | gtkorphan | [] | gtkspell | [] [] [] [] [] [] [] [] [] [] | gutenprint | [] [] | hello | [] [] [] [] | help2man | [] [] | hylafax | [] | idutils | [] [] [] [] [] | indent | [] [] [] [] [] [] [] | iso_15924 | [] [] [] [] | iso_3166 | [] [] [] [] [] () [] [] [] [] [] [] [] [] | iso_3166_2 | [] [] [] | iso_4217 | [] [] [] [] [] [] [] [] | iso_639 | [] [] [] [] [] [] [] [] [] | iso_639_3 | [] [] | jwhois | [] [] [] [] | kbd | [] [] [] | keytouch | [] [] [] | keytouch-editor | [] [] [] | keytouch-keyboa... | [] [] [] | klavaro | [] [] | latrine | [] [] | ld | | leafpad | [] [] [] [] [] [] [] [] [] | libc | [] [] [] [] | libexif | [] [] () [] | libextractor | | libgnutls | [] [] | libgpewidget | [] [] [] | libgpg-error | [] [] | libgphoto2 | [] [] | libgphoto2_port | [] [] [] [] [] | libgsasl | [] [] [] [] [] | libiconv | [] [] [] [] [] | libidn | [] [] | lifelines | [] [] | liferea | [] [] [] [] [] () () [] | lilypond | [] | linkdr | [] [] [] | lordsawar | | lprng | [] | lynx | [] [] [] | m4 | [] [] [] [] [] | mailfromd | [] | mailutils | [] | make | [] [] [] [] | man-db | [] [] [] | man-db-manpages | [] [] [] | minicom | [] [] [] [] | mkisofs | [] [] [] | myserver | | nano | [] [] [] [] | opcodes | [] [] | parted | [] [] [] [] | pies | [] | popt | [] [] [] [] | psmisc | [] [] [] | pspp | [] [] | pwdutils | [] | radius | [] [] [] | recode | [] [] [] [] [] [] [] [] | rosegarden | () () | rpm | [] [] [] | rush | [] [] | sarg | | screem | | scrollkeeper | [] [] [] [] [] [] [] [] | sed | [] [] [] [] [] [] [] [] [] | sharutils | [] [] [] [] | shishi | [] | skencil | [] [] | solfege | [] [] [] [] | solfege-manual | [] [] [] | soundtracker | [] | sp | | sysstat | [] [] [] [] | tar | [] [] [] [] | texinfo | [] [] [] [] | tin | [] | unicode-han-tra... | | unicode-transla... | | util-linux-ng | [] [] [] [] [] | vice | [] | vmm | [] | vorbis-tools | [] [] | wastesedge | [] | wdiff | [] [] | wget | [] [] [] [] [] [] [] | wyslij-po | [] [] [] | xchat | [] [] [] [] [] [] [] [] [] | xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] [] [] [] [] | xkeyboard-config | [] [] [] | +---------------------------------------------------+ nl nn or pa pl ps pt pt_BR ro ru rw sk sl sq sr 135 10 4 7 105 1 29 62 47 91 3 54 46 9 37 sv sw ta te tg th tr uk vi wa zh_CN zh_HK zh_TW +---------------------------------------------------+ a2ps | [] [] [] [] [] | 27 aegis | [] | 9 ant-phone | [] [] [] [] | 9 anubis | [] [] [] [] | 15 aspell | [] [] [] | 20 bash | [] [] [] | 12 bfd | [] | 6 bibshelf | [] [] [] | 16 binutils | [] [] | 8 bison | [] [] | 12 bison-runtime | [] [] [] [] [] [] | 29 bluez-pin | [] [] [] [] [] [] [] [] | 37 bombono-dvd | [] | 4 buzztard | [] | 7 cflow | [] [] [] | 9 clisp | | 10 coreutils | [] [] [] [] | 22 cpio | [] [] [] [] [] [] | 13 cppi | [] [] | 5 cpplib | [] [] [] [] [] [] | 14 cryptsetup | [] [] | 7 dfarc | [] | 9 dialog | [] [] [] [] [] [] [] | 30 dico | [] | 2 diffutils | [] [] [] [] [] [] | 30 dink | | 4 doodle | [] [] | 7 e2fsprogs | [] [] [] | 11 enscript | [] [] [] [] | 17 exif | [] [] [] | 16 fetchmail | [] [] [] | 17 findutils | [] [] [] [] [] | 20 flex | [] [] [] [] | 15 freedink | [] | 10 gas | [] | 4 gawk | [] [] [] [] | 18 gcal | [] [] | 5 gcc | [] [] [] | 7 gettext-examples | [] [] [] [] [] [] [] | 34 gettext-runtime | [] [] [] [] [] [] [] | 29 gettext-tools | [] [] [] [] [] [] | 22 gip | [] [] [] [] | 22 gjay | [] | 3 gliv | [] [] [] | 14 glunarclock | [] [] [] [] [] | 19 gnubiff | [] [] | 4 gnucash | () [] () [] () | 10 gnuedu | [] [] | 7 gnulib | [] [] [] [] | 16 gnunet | [] | 1 gnunet-gtk | [] [] [] | 5 gnutls | [] [] [] | 10 gold | [] | 4 gpe-aerial | [] [] [] | 18 gpe-beam | [] [] [] | 19 gpe-bluetooth | [] [] [] | 13 gpe-calendar | [] [] [] [] | 12 gpe-clock | [] [] [] [] [] | 28 gpe-conf | [] [] [] [] | 20 gpe-contacts | [] [] [] | 17 gpe-edit | [] [] [] | 12 gpe-filemanager | [] [] [] [] | 16 gpe-go | [] [] [] [] [] | 25 gpe-login | [] [] [] | 11 gpe-ownerinfo | [] [] [] [] [] | 25 gpe-package | [] [] [] | 13 gpe-sketchbook | [] [] [] | 20 gpe-su | [] [] [] [] [] | 30 gpe-taskmanager | [] [] [] [] [] | 29 gpe-timesheet | [] [] [] [] [] | 25 gpe-today | [] [] [] [] [] [] | 30 gpe-todo | [] [] [] [] | 17 gphoto2 | [] [] [] [] [] | 24 gprof | [] [] [] | 15 gpsdrive | [] [] [] | 11 gramadoir | [] [] [] | 11 grep | [] [] [] | 10 grub | [] [] [] | 14 gsasl | [] [] [] [] | 14 gss | [] [] [] | 11 gst-plugins-bad | [] [] [] [] | 26 gst-plugins-base | [] [] [] [] [] | 24 gst-plugins-good | [] [] [] [] | 24 gst-plugins-ugly | [] [] [] [] [] | 29 gstreamer | [] [] [] [] | 22 gtick | [] [] [] | 13 gtkam | [] [] [] | 20 gtkorphan | [] [] [] | 14 gtkspell | [] [] [] [] [] [] [] [] [] | 45 gutenprint | [] | 10 hello | [] [] [] [] [] [] | 21 help2man | [] [] | 7 hylafax | [] | 5 idutils | [] [] [] [] | 17 indent | [] [] [] [] [] [] | 30 iso_15924 | () [] () [] [] | 16 iso_3166 | [] [] () [] [] () [] [] [] () | 53 iso_3166_2 | () [] () [] | 9 iso_4217 | [] () [] [] () [] [] | 26 iso_639 | [] [] [] () [] () [] [] [] [] | 38 iso_639_3 | [] () | 8 jwhois | [] [] [] [] [] | 16 kbd | [] [] [] [] [] | 15 keytouch | [] [] [] | 16 keytouch-editor | [] [] [] | 14 keytouch-keyboa... | [] [] [] | 14 klavaro | [] | 11 latrine | [] [] [] | 10 ld | [] [] [] [] | 11 leafpad | [] [] [] [] [] [] | 33 libc | [] [] [] [] [] | 21 libexif | [] () | 7 libextractor | [] | 1 libgnutls | [] [] [] | 9 libgpewidget | [] [] [] | 14 libgpg-error | [] [] [] | 9 libgphoto2 | [] [] | 8 libgphoto2_port | [] [] [] [] | 14 libgsasl | [] [] [] | 13 libiconv | [] [] [] [] | 21 libidn | () [] [] | 11 lifelines | [] | 4 liferea | [] [] [] | 21 lilypond | [] | 7 linkdr | [] [] [] [] [] | 17 lordsawar | | 1 lprng | [] | 3 lynx | [] [] [] [] | 17 m4 | [] [] [] [] | 19 mailfromd | [] [] | 3 mailutils | [] | 5 make | [] [] [] [] | 21 man-db | [] [] [] | 8 man-db-manpages | | 4 minicom | [] [] | 16 mkisofs | [] [] | 9 myserver | | 0 nano | [] [] [] [] | 21 opcodes | [] [] [] | 11 parted | [] [] [] [] [] | 15 pies | [] [] | 3 popt | [] [] [] [] [] [] | 27 psmisc | [] [] | 11 pspp | | 4 pwdutils | [] [] | 6 radius | [] [] | 9 recode | [] [] [] [] | 28 rosegarden | () | 0 rpm | [] [] [] | 11 rush | [] [] | 4 sarg | | 1 screem | [] | 3 scrollkeeper | [] [] [] [] [] | 27 sed | [] [] [] [] [] | 30 sharutils | [] [] [] [] [] | 22 shishi | [] | 3 skencil | [] [] | 7 solfege | [] [] [] [] | 16 solfege-manual | [] | 8 soundtracker | [] [] [] | 9 sp | [] | 3 sysstat | [] [] | 15 tar | [] [] [] [] [] [] | 23 texinfo | [] [] [] [] [] | 17 tin | | 4 unicode-han-tra... | | 0 unicode-transla... | | 2 util-linux-ng | [] [] [] [] | 20 vice | () () | 1 vmm | [] | 4 vorbis-tools | [] | 6 wastesedge | | 2 wdiff | [] [] | 7 wget | [] [] [] [] [] | 26 wyslij-po | [] [] | 8 xchat | [] [] [] [] [] [] | 36 xdg-user-dirs | [] [] [] [] [] [] [] [] [] [] | 63 xkeyboard-config | [] [] [] | 22 +---------------------------------------------------+ 85 teams sv sw ta te tg th tr uk vi wa zh_CN zh_HK zh_TW 178 domains 119 1 3 3 0 10 65 51 155 17 98 7 41 2618 Some counters in the preceding matrix are higher than the number of visible blocks let us expect. This is because a few extra PO files are used for implementing regional variants of languages, or language dialects. For a PO file in the matrix above to be effective, the package to which it applies should also have been internationalized and distributed as such by its maintainer. There might be an observable lag between the mere existence a PO file and its wide availability in a distribution. If June 2010 seems to be old, you may fetch a more recent copy of this `ABOUT-NLS' file on most GNU archive sites. The most up-to-date matrix with full percentage details can be found at `http://translationproject.org/extra/matrix.html'. 1.5 Using `gettext' in new packages =================================== If you are writing a freely available program and want to internationalize it you are welcome to use GNU `gettext' in your package. Of course you have to respect the GNU Library General Public License which covers the use of the GNU `gettext' library. This means in particular that even non-free programs can use `libintl' as a shared library, whereas only free software can use `libintl' as a static library or use modified versions of `libintl'. Once the sources are changed appropriately and the setup can handle the use of `gettext' the only thing missing are the translations. The Free Translation Project is also available for packages which are not developed inside the GNU project. Therefore the information given above applies also for every other Free Software Project. Contact `coordinator@translationproject.org' to make the `.pot' files available to the translation teams. openconnect-8.20/xml.c0000644000076400007640000001000614067426206016500 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include static char *fetch_and_trim(xmlNode *node) { char *str = (char *)xmlNodeGetContent(node), *p; int i, len; if (!str) return NULL; len = strlen(str); for (i = len-1; i >= 0; i--) { if (isspace((int)(unsigned char)str[i])) str[i] = 0; else break; } for (p = str; isspace((int)(unsigned char)*p); p++) ; if (p == str) return str; p = strdup(p); free(str); return p; } int config_lookup_host(struct openconnect_info *vpninfo, const char *host) { int i; ssize_t size; char *xmlfile; unsigned char sha1[SHA1_SIZE]; xmlDocPtr xml_doc; xmlNode *xml_node, *xml_node2; if (!vpninfo->xmlconfig) return 0; size = openconnect_read_file(vpninfo, vpninfo->xmlconfig, &xmlfile); if (size == -ENOENT) { fprintf(stderr, _("Treating host \"%s\" as a raw hostname\n"), host); return 0; } else if (size <= 0) { return size; } if (openconnect_sha1(sha1, xmlfile, size)) { fprintf(stderr, _("Failed to SHA1 existing file\n")); free(xmlfile); return -1; } for (i = 0; i < SHA1_SIZE; i++) snprintf(&vpninfo->xmlsha1[i*2], 3, "%02x", sha1[i]); vpn_progress(vpninfo, PRG_DEBUG, _("XML config file SHA1: %s\n"), vpninfo->xmlsha1); xml_doc = xmlReadMemory(xmlfile, size, "noname.xml", NULL, 0); free(xmlfile); if (!xml_doc) { fprintf(stderr, _("Failed to parse XML config file %s\n"), vpninfo->xmlconfig); fprintf(stderr, _("Treating host \"%s\" as a raw hostname\n"), host); return 0; } xml_node = xmlDocGetRootElement(xml_doc); for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type == XML_ELEMENT_NODE && !strcmp((char *)xml_node->name, "ServerList")) { for (xml_node = xml_node->children; xml_node && !vpninfo->hostname; xml_node = xml_node->next) { if (xml_node->type == XML_ELEMENT_NODE && !strcmp((char *)xml_node->name, "HostEntry")) { int match = 0; for (xml_node2 = xml_node->children; match >= 0 && xml_node2; xml_node2 = xml_node2->next) { if (xml_node2->type != XML_ELEMENT_NODE) continue; if (!match && !strcmp((char *)xml_node2->name, "HostName")) { char *content = fetch_and_trim(xml_node2); if (content && !strcmp(content, host)) match = 1; else match = -1; free(content); } else if (match && !strcmp((char *)xml_node2->name, "HostAddress")) { char *content = fetch_and_trim(xml_node2); if (content && !openconnect_parse_url(vpninfo, content)) { printf(_("Host \"%s\" has address \"%s\"\n"), host, content); } free(content); } else if (match && !strcmp((char *)xml_node2->name, "UserGroup")) { char *content = fetch_and_trim(xml_node2); if (content) { free(vpninfo->urlpath); vpninfo->urlpath = content; printf(_("Host \"%s\" has UserGroup \"%s\"\n"), host, content); } } } } } break; } } xmlFreeDoc(xml_doc); if (!vpninfo->hostname) { fprintf(stderr, _("Host \"%s\" not listed in config; treating as raw hostname\n"), host); } return 0; } openconnect-8.20/test-driver0000755000076400007640000001104213603173140017722 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # test-driver - basic testsuite driver script. scriptversion=2018-03-07.03; # UTC # Copyright (C) 2011-2020 Free Software Foundation, Inc. # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. # This file is maintained in Automake, please report # bugs to or send patches to # . # Make unconditional expansion of undefined variables an error. This # helps a lot in preventing typo-related bugs. set -u usage_error () { echo "$0: $*" >&2 print_usage >&2 exit 2 } print_usage () { cat <$log_file 2>&1 estatus=$? if test $enable_hard_errors = no && test $estatus -eq 99; then tweaked_estatus=1 else tweaked_estatus=$estatus fi case $tweaked_estatus:$expect_failure in 0:yes) col=$red res=XPASS recheck=yes gcopy=yes;; 0:*) col=$grn res=PASS recheck=no gcopy=no;; 77:*) col=$blu res=SKIP recheck=no gcopy=yes;; 99:*) col=$mgn res=ERROR recheck=yes gcopy=yes;; *:yes) col=$lgn res=XFAIL recheck=no gcopy=yes;; *:*) col=$red res=FAIL recheck=yes gcopy=yes;; esac # Report the test outcome and exit status in the logs, so that one can # know whether the test passed or failed simply by looking at the '.log' # file, without the need of also peaking into the corresponding '.trs' # file (automake bug#11814). echo "$res $test_name (exit status: $estatus)" >>$log_file # Report outcome to console. echo "${col}${res}${std}: $test_name" # Register the test result, and other relevant metadata. echo ":test-result: $res" > $trs_file echo ":global-test-result: $res" >> $trs_file echo ":recheck: $recheck" >> $trs_file echo ":copy-in-global-log: $gcopy" >> $trs_file # Local Variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.20/po/0000755000076400007640000000000014204510554016146 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/po/id.po0000644000076400007640000054221714204456071017120 0ustar00dwoodhoudwoodhou00000000000000# Translation of network-manager-openconnect into Indonesian # Copyright (C) 2009 THE network-manager-openconnect'S COPYRIGHT HOLDER # This file is distributed under the same license as the network-manager-openconnect package. # # Andika Triwidada , 2009-2014. # Dirgita , 2011. msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-07-13 07:34+0700\n" "Last-Translator: Andika Triwidada \n" "Language-Team: Indonesian \n" "Language: id\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 2.2.1\n" "Plural-Forms: nplurals=2; plural=n!=1;\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "Tidak ditemukan cookie ANsession\n" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie '%s' tak valid\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Ditemukan server DNS %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "Memperoleh domain pencarian '%s'\n" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "Elemen konfig Larik tak dikenal: '%s'\n" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "Konfigurasi awal: Terowongan kecepatan %d, enc %d, DPD %d\n" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "Penulisan pendek dalam negosiasi JSON Larik\n" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "Gagal membaca respon JSON Larik\n" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" "Respons yang tidak diharapkan ke permintaan Array JSON\n" "\n" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "Gagal mengurai respon Array JSON\n" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "Kesalahan saat membuat permintaaan negosiasi larik\n" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Hasil %d yang tak diharapkan dari server\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" "Kesalahan saat membangun paket negosiasi Array DTLS\n" "\n" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "Penulisan singkat dalam negosiasi larik\n" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" "Gagal membaca respon negosiasi UDP\n" "\n" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "DTLS difungsikan pada port %d\n" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "Menolak terowongan UDP non-DTLS\n" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "Gagal membaca respon ipff\n" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Alokasi gagal\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Diterima paket pendek (%d byte)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Menerima paket kontrol dengan tipe %x:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Diterima paket data %d byte\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL menulis terlalu sedikit byte! Minta %d, dikirimi %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Kunci ulang CSTP jatuh tempo\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Jabat tangan ulang gagal; mencoba tunnel baru\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "TCP Dead Peer Detection mendeteksi pasangan yang mati!\n" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "Penyambungan ulang TCP gagal\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Kirim TCP DPD\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Kirim TCP Keepalive\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Mengirim paket DTLS off\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Mengirim paket data tak terkompresi %d byte\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Mencoba koneksi DTLS baru\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "Gagal menerima respon autentikasi dari DTLS\n" #: array.c:1084 msgid "DTLS session established\n" msgstr "Sesi DTLS terjalin\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "Diterima IP Legacy melalui DTLS; mengasumsikan terjalin\n" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "Diterima IPv6 melalui DTLS; mengasumsikan terjalin\n" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "Diterima paket DTLS yang tak dikenal\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "Galat saat membuat permintaan sambungan untuk sesi DTLS\n" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "Gagal menulis permintaan sambungkan ke sesi DTLS\n" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Diterima paket DTLS 0x%02x dari %d byte\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Kunci ulang DTLS jatuh tempo\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Jabat tangan ulang DTLS gagal; menyambung ulang.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Pendeteksi Pasangan Mati DTLS mendeteksi pasangan yang mati!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Kirim DPD DTLS\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Gagal mengirim permintaan DPD. Mengharapkan pemutusan koneksi\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Dikirim paket DTLS %d byte; DTLS send mengembalikan %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Log keluar gagal.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Log keluar sukses.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Ruas formulir tujuan %s ditetapkan; dengan asumsi autentikasi %s SAML " "selesai.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "Autentikasi SAML %s diperlukan melalui %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "Autentikasi SAML %s diperlukan melalui skrip eksternal.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Ketika autentikasi SAML selesai, tentukan ruas formulir tujuan dengan " "menambahkan :field_name ke URL login.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Masukkan nama pengguna dan kata sandi Anda" #: auth-globalprotect.c:159 msgid "Username" msgstr "Nama pengguna" #: auth-globalprotect.c:174 msgid "Password" msgstr "Kata sandi" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Challenge: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "Login GlobalProtect mengembalikan nilai argumen tak terduga arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Login GlobalProtect mengembalikan %s=%s (diharapkan %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Login GlobalProtect mengembalikan kosong atau kurang %s\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Login GlobalProtect mengembalikan %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Silakan laporkan %d nilai tak terduga di atas (yang %d fatal) ke " "\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Silakan pilih gateway GlobalProtect." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "GATEWAY:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Mengabaikan interval laporan HIP portal (%d menit), karena interval sudah " "ditetapkan ke %d menit.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Portal mengatur interval laporan HIP ke %d menit).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d server gateway yang tersedia:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "Konfigurasi portal GlobalProtect tidak mendaftar server gateway.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Gagal menjangkitkan kode token OTP: menonaktifkan token\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Server bukan portal GlobalProtect maupun gateway.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Mengabaikan butir kirim formulir tak dikenal '%s'\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Mengabaikan tipe masukan formulir '%s' yang tak dikenal\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Membuang opsi duplikat '%s'\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Tak bisa menangani method='%s', action='%s' milik form\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Ruas textarea tak dikenal: '%s'\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Gagal mengalokasikan memori untuk komunikasi dengan TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Gagal mengirim perintah ke TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Dukungan TNCC belum diimplementasikan pada Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Tidak ada cookie DSPREAUTH; tidak mencoba TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Gagal exec skrip TNCC %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Pengiriman dimulai; menunggu respon dari TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Gagal membaca respon dari TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Diterima respon %s yang tidak sukses dari TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "Respon TNCC 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Baris kedua respon TNCC: '%s'\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Mendapat cookie DSPREAUTH baru dari TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Mendapatkan interval reauth dari TNCC: %d detik\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "Baris tidak kosong yang tak diharapkan dari TNCC setelah cookie DSPREAUTH: " "'%s'\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Terlalu banyak baris non-kosong dari TNCC setelah cookie DSPREAUTH\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Gagal mengurai dokumen HTML\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Gagal temukan atau uraikan form web dalam halaman log masuk\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Menemui form tanpa 'name' atau 'id'\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Form tidak dikenal (nama '%s', id '%s')\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Mencurahkan form HTML yang tak dikenal:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Pilihan form tak punya nama\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "nama %s bukan masukan\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Tak ada tipe masukan dalam form\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Tak ada nama masukan dalam form\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipe masukan %s tak dikenal dalam form\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Respon kosong dari server\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Gagal mengurai respon server\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Respon adalah:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Diterima ketika tak mengharapkannya.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Respon XML tak memiliki node \"auth\"\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Meminta sandi tapi '--no-passwd' ditata\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" "Sertifikat klien hilang atau tidak benar (Kegagalan Validasi Sertifikat)" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Tak mengunduh profil XML karena SHA1 telah cocok\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Gagal membuka koneksi HTTPS ke %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Gagal mengirim permintaan GET untuk konfig baru\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Konfig yang diunduh tak cocok dengan SHA1 yang dikehendaki\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Mengunduh profil XML baru\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Galat: Menjalankan trojan 'Cisco Secure Desktop' pada platform ini belum " "diimplementasi.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Gagal menata gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Gagal menata grup ke %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Gagal menata uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Pengguna uid=%ld tidak valid: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Gagal mengubah ke direktori rumah CSD '%s': %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Galat: Server meminta kita menjalankan hostscan CSD.\n" "Anda perlu menyediakan agrumen --csd-wrapper yang sesuai.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Galat: Server meminta kita untuk mengunduh dan menjalankan suatu trojan " "'Cisco Secure Desktop'.\n" "Fasilitas ini dinonaktifkan secara baku untuk alasan keamanan, maka Anda " "mungkin ingin memfungsikannya.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Direktori temporer '%s' tidak dapat ditulisi: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Gagal membuka berkas skrip CSD temporer: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Gagal menulis berkas skrip CSD sementara: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "Skrip CSD '%s' berhenti secara abnormal\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "Skrip CSD '%s' mengembalikan status bukan nol: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Autentikasi mungkin gagal. Jika skrip Anda tidak mengembalikan nol, " "perbaiki.\n" "Versi masa depan openconnect akan menggugurkan pada kesalahan ini.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "Skrip CSD '%s' berhasil diselesaikan.\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Peringatan: Anda sedang menjalankan kode CSD yang tak aman dengan hak root\n" "\t Gunakan opsi baris perintah \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Gagal exec skrip CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Respon tak dikenal dari server\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server meminta sertifikat klien SSL setelah satu disediakan\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server meminta sertifikat klien SSL; tak ada yang dikonfigurasi\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST difungsikan\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Tidak dapat mengambil stub CSD. Tetap melanjutkan skrip pembungkus CSD.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Menyegarkan %s setelah 1 detik...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(galat 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Galat ketika menjelaskan kesalahan!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GALAT: Tak bisa menginisialisasi soket\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "GALAT KRITIS: Rahasia induk DTLS tak terinisialisasi. Harap laporkan ini.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Galat saat membuat permintaan HTTPS CONNECT\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Galat saat mengambil respon HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Layanan VPN tak tersedia; alasan: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Mendapat respon HTTP CONNECT yang tak sepantasnya: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Mendapat respon CONNECT: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Tak ada memori bagi opsi\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID bukan 64 karakter; yaitu: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID tidak valid; yaitu: \"%s\"\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "DTLS-Content-Encoding %s tak dikenal\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s tak dikenal\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "MTU tak diterima. Menggugurkan\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP tersambung. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Penyiapan kompresi gagal\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Alokasi penyangga deflate gagal\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "inflate gagal\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Dekompresi LZS gagal: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Dekompresi LZ4 gagal\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipe kompresi %d tak dikenal\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Diterima %s paket data terkompresi %d byte (sebelumnya %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "deflate gagal %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Panjang paket tak diharapkan. SSL_read mengembalikan %d tapi paket\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Mendapat permintaan CSTP DPD\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Mendapat respon CSTP DPD\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Mendapat CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Diterima paket data tak terkompresi %d byte\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Diterima pemutusan server: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Diterima pemutusan server\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Paket terkompresi diterima dalam mode !deflate\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "menerima paket terminasi server\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paket tak dikenal %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Pendeteksi Pasangan Mati CSTP mendeteksi pasangan yang mati!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Sambung ulang gagal\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Kirim DPD CSTP\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Kirim Keepalive CSTP\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Mengirim paket data terkompresi %d byte (sebelumnya %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Kirim paket BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Short write saat menulis paket BYE\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Mencoba autentikasi digest ke proksi\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Mencoba autentikasi Digest ke server '%s'\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Koneksi DTLS dicoba dengan fd yang ada\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Tak ada alamat DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server tak menawarkan opsi cipher DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Tak ada DTLS ketika tersambung lewat proksi\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS diinisialisasi. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Paket tidak dikenal (len %d) diterima: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS ini: %d, TOS terakhir: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Mendapat permintaan DTLS DPD\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Gagal mengirim respon DPD. Mengharapkan pemutusan koneksi\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Mendapat respon DTLS DPD\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Mendapat DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Paket DTLS terkompresi diterima ketika kompresi tidak difungsikan\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipe paket DTLS tidak dikenal %02x, len %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Kirim Keepalive DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Gagal mengirim permintaan keepalive. Mengharapkan pemutusan koneksi\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Mengawali deteksi MTU (min=%d, maks=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Mengirim probe DPD MTU (%u byte)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Gagal mengirim permintaan DPD (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Terlalu lama dalam loop deteksi MTU; mengasumsikan MTU yang dinegosiasikan.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Terlalu lama dalam loop deteksi MTU; MTU ditata ke %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Diterima paket yang tak diharapkan (%.2x) dalam deteksi MTU; melewati.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "Tidak ada respon terhadap ukuran %u setelah %d percobaan; menyatakan MTU " "adalah %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Gagal recv permintaan DPD (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Diterima probe DPD MTU (%u byte)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "MTU terdeteksi %d byte (sebelumnya %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Tidak ada perubahan MTU setelah deteksi (sebelumnya %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Menerima paket ESP yang diharapkan dengan seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Menerima paket ESP yang lebih lambat dari yang diharapkan dengan seq %u " "(diharapkan %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Membuang paket ESP kuno dengan seq %u (diharapkan %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Mentoleransi paket ESP kuno dengan seq %u (diharapkan %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Membuang paket ESP yang terkirim ulang dengan seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Mentoleransi paket ESP yang terkirim ulang dengan seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Menerima paket ESP diluar urutan dengan seq %u (diharapkan %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parameter untuk ESP %s: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Tipe enkripsi ESP %s kunci 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Autentikasi ESP tipe %s kunci 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "masuk" #: esp.c:94 msgid "outgoing" msgstr "keluar" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Kirim probe ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Diterima paket ESP dari SPI lama 0x%x, seq %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Diterima paket ESP dengan SPI tak valid 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "Diterima paket IP Legacy ESP %d byte\n" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "Diterima paket ESP Legacy IP %d byte (terkompresi LZO)\n" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "Diterima paket ESP IPv6 %d byte\n" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "Diterima paket ESP %d byte dengan tipe muatan tak dikenal %02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Panjang pad %02x tak valid dalam ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Byte pad tidak valid dalam ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Sesi ESP terjalin dengan server\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Gagal mengalokasikan memori untuk mendekripsi paket ESP\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Dekompresi LZO atas paket ESP gagal\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO %d byte terdekompresi menjadi %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Rekey tidak diimplementasikan bagi ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP mendeteksi pasangan yang mati\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Kirim probe ESP bagi DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive tidak diimplementasikan bagi ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Mengantrikan ulang pengiriman ESP yang gagal: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Gagal mengirim paket ESP: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "Dikirim paket ESP IPv%d %d byte\n" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Gagal membuat kunci acak bagi ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Gagal membuat IV awal untuk ESP\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" "PERINGATAN: tidak ada formulir login HTML yang ditemukan; mengasumsikan " "bidang nama pengguna dan kata sandi\n" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "ID form '%s' tak dikenal (diharapkan 'auth_form')\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Gagal mengurai respon profil F5\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Gagal menemukan parameter profil VPN\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Gagal mengurai respons opsi F5\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "Tenggat waktu mengganggur adalah %d menit\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Memperoleh rute baku\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Mendapat nilai SplitTunneling0 %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Mendapat server DNS %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Mendapat server WINS/NBNS %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Mendapat domain pencarian %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "DTLS difungsikan pada port %d\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" "PERINGATAN: Server mengaktifkan DTLS, tetapi juga memerlukan HDLC. " "Menonaktifkan DTLS,\n" " karena HDLC mencegah penentuan MTU yang efisien dan konsisten.\n" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Gagal menemukan opsi VPN\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Mendapat alamat IP Warisan %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Mendapat alamat IPv6 %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Mendapat parameter profil '%s'\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Mendapat ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Galat saat menjalin sambungan F5\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Mendapat realm login '%s'\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "Gagal mengurai konfig XML Fortinet\n" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Tenggat waktu mengganggur adalah %d menit.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "Platform yang dilaporkan adalah %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Mendapat server DNS IPv%d %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "PERINGATAN: Mendapat domain split-DNS %s (belum diimplementasikan)\n" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "PERINGATAN: Mendapat server split-DNS %s (belum diimplementasikan)\n" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "Mendapat rute IPv%d %s\n" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "Tidak ada cookie bernama SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "Galat saat menjalin koneksi Fortinet\n" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "Tidak menerima respon svrhello yang diharapkan.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "status svrhello adalah \"%.*s\" daripada \"ok\"\n" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Menunda melanjutkan DTLS sampai CSTP membuat suatu PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Gagal membuat string prioritas DTLS\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Gagal menata prioritas DTLS: '%s': %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Gagal mengalokasikan kredensial: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Gagal membuat kunci DTLS: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Gagal menata kunci DTLS: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Gagal menata kredensial PSK DTLS: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Parameter DTLS tak dikenal bagi CipherSuite '%s' yang diminta\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Gagal menata parameter sesi DTLS: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS menggunakan %d byte acak ClientHello; ini seharusnya tidak pernah " "terjadi\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS mengirim acak ClientHello yang tidak aman. Tingkatkan ke 3.6.13 atau " "yang lebih baru.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Gagal menginisialisasi DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU peer %d terlalu kecil untuk memungkinkan DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "MTU DTLS dikurangi menjadi %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Pelanjutan sesi DTLS gagal; mungkin serangan MITM. Menonaktifkan DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Gagal menata MTU DTLS: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Terjalink koneksi DTLS (memakai GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Kompresi koneksi DTLS memakai %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Habis waktu jabat tangan DTLS\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Jabat tangan DTLS gagal: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Apakah sebuah firewall mencegah Anda mengirim paket-paket UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Gagal menginisialisasi cipher ESP: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Gagal menginisialisasi HMAC ESP: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Gagal menghitung HMAC bagi paket ESP: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Diterima paket ESP dengan HMAC yang tak valid\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Gagal mendekripsi paket ESP: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Gagal mengenkripsi paket ESP: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Kegagalan select() untuk TLS" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "TLS/DTLS write dibatalkan\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Gagal menulis ke soket TLS/DTLS: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "Gagal select() untuk TLS/DTLS" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "TLS/DTLS read dibatalkan\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "Soket TLS/DTLS ditutup tak secara bersih\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Gagal membaca dari soket TLS/DTLS: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Mencoba membaca dari sesi %s yang tidak ada\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "Galat baca pada sesi %s: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "Mencoba menulis ke sesi %s yang tidak ada\n" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Galat tulis pada sesi %s: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Tidak bisa mengekstrak waktu kedaluarsa dari sertifikat\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Sertifikat klien telah kedaluarsa pada" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "Sertifikat klien sekunder telah kedaluwarsa pada" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Sertifikat klien segera kedaluarsa pada" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "Sertifikat klien sekunder segera kedaluwarsa pada" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Gagal memuat butir '%s' dari penyimpanan kunci: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Gagal membuka berkas kunci/sertifikat %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Gagal men-stat berkas kunci/sertifikat %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Gagal mengalokasikan penyangga sertifikat\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Gagal membaca sertifikat ke dalam memori: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Gagal menyiapkan struktur data PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Gagal mendekripsi berkas sertifikat PKCS#12\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Masukkan frasa sandi PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "Masukkan frasa sandi PKCS#12 sekunder:" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Gagal memroses berkas PKCS#12: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Gagal memuat sertifikat PKCS#12: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "Gagal memuat sertifikat PKCS#12 sekunder: %s\n" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Tak bisa menginisialisasi hash MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Galat hash MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Kurang DEK-Info: header dari kunci terenkripsi OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Tidak bisa menentukan tipe enkripsi PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipe enkripsi PEM yang tak didukung: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Salt tak valid dalam berkas PEM yang terenkripsi\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Galat saat mengawa kode base64 berkas PEM terenkripsi: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Berkas PEM terenkripsi terlalu pendek\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Gagal menginisialisasi cipher untuk pendekripsian berkas PEM: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Gagal mendekripsi kunci PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Pendekripsian kunci PEM gagal\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Masukkan frasa sandi PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "Masukkan frasa sandi PEM sekunder:" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Biner ini dibangun tanpa dukungan kunci sistem\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Biner ini dibangun tanpa dukungan PKCS#12\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Memakai sertifikat PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Memakai sertifikat sistem %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Galat saat memuat sertifikat dari PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Galat saat memuat sertifikat sistem: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Memakai berkas sertifikat %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "Memakai berkas sertifikat sekunder %s\n" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "Berkas PKCS#11 tak memuat sertifikat\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Tidak ditemukan sertifikat dalam berkas" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Pemuatan sertifikat gagal: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "Pemuatan sertifikat sekunder gagal: %s\n" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Memakai kunci sistem %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "Memakai kunci sistem sekunder %s\n" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Galat saat menginisialisasi struktur kunci pribadi: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Galat saat mengimpor kunci sistem %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Mencoba URL PKCS#11 %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Galat saat menginisialisasi struktur kunci PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Galat saat mengimpor URL PKCS#11 %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Memakai kunci PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Galat saat mengimpor kunci PKCS#11 ke struktur kunci pribadi: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Memakai berkas kunci pribadi %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Gagal mengintepretasi berkas PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Gagal memuat kunci privat PKCS#1: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Gagal memuat kunci privat sebagai PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Gagal mendekripsi berkas sertifikat PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Gagal menentukan jenis kunci privat %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Masukkan frasa sandi PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Gagal memperoleh ID kunci: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Galat saat menandatangani data uji dengan kunci privat: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Galat saat memvalidasi tanda tangan terhadap sertifikat: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Tak ditemukan sertifikat SSL yang cocok dengan kunci privat\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "Tak ditemukan sertifikat sekunder yang cocok dengan kunci privat\n" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "kondisi got_key tidak dipenuhi!\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "Galat saat membuat suatu privkey abstrak dari /x509_privkey: %s\n" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Memakai sertifikat klien '%s'\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "Memakai sertifikat sekunder '%s'\n" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Gagal mengalokasikan memori untuk sertifikat\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Tidak memperoleh penerbit dari PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Mendapat CA berikutnya '%s' dari PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Gagal mengalokasikan memori untuk sertifikat pendukung\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Menambah dukungan CA '%s'\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Pengimporan sertifikat X509 gagal: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Penataan sertifikat PKCS#12 gagal: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Pengaturan daftar pencabutan sertifikat gagal: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Kunci privat tampaknya tidak mendukung RSA-PSS. Menonaktifkan TLSv 1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Penataan sertifikat gagal: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server tak menyajikan sertifikat\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Galat ketika membandingkan sert server saat jabat tangan ulang: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Server menyajikan sertifikat lain saat jabat tangan ulang\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Server menyajikan sertifikat yang identik saat jabat tangan ulang\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Galat saat menginisialisasi struktur sert X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Galat ketika mengimpor sert server\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Tidak bisa menghitung hash dari sertifikat server\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Galat saat memeriksa status sert server\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "sertifikat dicabut" #: gnutls.c:2098 msgid "signer not found" msgstr "penandatangan tak ditemukan" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "penandatangan bukan suatu sertifikat CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "algoritma tak aman" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "sertifikat belum diaktifkan" #: gnutls.c:2106 msgid "certificate expired" msgstr "sertifikat kadaluarsa" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "verifikasi tandatangan gagal" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "sertifikat tak cocok dengan nama host" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Gagal verifikasi sertifikat server: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Gagal mengalokasikan memori untuk sert cafile\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Gagal baca sert dari cafile: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Gagal membuka berkas CA '%s': %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Pemuatan sertifikat gagal. Menggugurkan.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "Gagal menyusun string prioritas GnuTLS\n" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Gagal mengatur string prioritas GnuTLS (\"%s\"): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negosiasi SSL dengan %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Koneksi SSL dibatalkan\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Kegagalan koneksi SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS kembalian tak fatal selama jabat tangan: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Terhubung ke HTTPS pada %s dengan ciphersuite %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "Melakukan negosiasi ulang SSL pada %s dengan ciphersuite %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Diperlukan PIN untuk %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "PIN salah" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Ini adalah percobaan terakhir sebelum penguncian!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Hanya beberapa percobaan tersisa sebelum mengunci!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Masukkan PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritma HMAC OATH tak didukung\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Gagal menghitung HMAC OATH: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "Tidak bisa menata ciphersuite: %s\n" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Terjalin sesi EAP-TTLS\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Fungsi tanda tangan TPM dipanggil untuk %d byte.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Gagal membuat objek hash TPM: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Gagal menata nilai dalam objek hash TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Tandatangan hash TPM gagal: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Galat saat mengawa kode blob kunci TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Galat dalam blob kunci TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Gagal membuat konteks TPM: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Gagal menyambung konteks TPM: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Gagal memuat kunci SRK TPM: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Gagal memuat objek kebijakan SRK TPM: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Gagal menata PIN TPM: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Gagal memuat blob kunci TPM: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Masukkan PIN SRK TPM:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Gagal membuat objek kebijakan kunci: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Gagal menugaskan kebijakan ke kunci: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Masukkan PIN kunci TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "Masukkan PIN TPM kunci sekunder:" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Gagal menata PIN kunci: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Ukuran digest %d TPM2 EC tidak diketahui\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Galat saat mendekode blob kunci TSS2: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Gagal membuat tipe ASN.1 untuk TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Gagal mendekode kunci ASN.1 TPM2: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Gagal mengurai OID tipe kunci TPM2: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Kunci TPM2 memiliki OID tipe %s yang tak diketahui bukan %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Gagal mengurai induk kunci TPM2: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Gagal mengurai elemen pubkey TPM2\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Gagal mengurai elemen privkey TPM2\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Kunci TPM2 terurai dengan induk %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Digest TPM2 terlalu besar: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "Kata sandi TPM2 terlalu panjang; memenggal\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "pemilik" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "dukungan" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Membuat kunci primer di bawah hirarki %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Masukkan kata sandi hirarki TPM2 %s:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth gagal: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary auth pemilik gagal\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary gagal: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Menjalin sambungan dengan TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize gagal: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "TPM2 sudah dimulai sehingga kegagalan false positive di log tpm2tss.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup gagal: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic gagal untuk handle 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Masukkan sandi kunci induk TPM2:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "Masukkan kata sandi kunci induk TPM2 sekunder:" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Loading blob kunci TPM2, induk %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2 Esys_Load auth gagal\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load gagal: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext untuk primer yang dihasilkan gagal: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Masukkan sandi kunci TPM2:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "Masukkan kata sandi kunci TPM2 sekunder:" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt auth gagal\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 gagal menghasilkan tanda tangan RSA: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Fungsi tanda tangan TPM2 EC dipanggil dengan %d byte.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Auth TPM2 Esys_Sign gagal\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Handle induk TPM2 tidak valid 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Gagal untuk mengimpor data kunci privat TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Gagal untuk mengimpor data kunci publik TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Jenis kunci TPM2 tidak didukung %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2 operasi %s gagal (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Challenge: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Respon adalah:%s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Path tunnel SSL non-standar: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tenggat waktu tunnel (interval rekey) adalah %d menit.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Alamat gateway di konfig XML (%s) berbeda dari alamat gateway eksternal " "(%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" "Alamat gateway IPv6 di konfig XML (%s) berbeda dari alamat gateway eksternal " "(%s).\n" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "GlobalProtect config mengirim ipsec-mode=%s (diharapkan esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Mengabaikan kunci ESP karena dukungan ESP tak tersedia pada build ini\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Tag konfig GlobalProtect tak dikenal <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" "Dukungan IPv6 GlobalProtect adalah eksperimental. Silakan laporkan hasil ke " "\n" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP dinonaktifkan" #: gpst.c:661 msgid "No ESP keys received" msgstr "Tidak ada kunci ESP yang diterima" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "Dukungan ESP tidak tersedia dalam build ini" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Tidak ada MTU yang diterima. Dihitung %d untuk %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Menyambung ke titik akhir tunnel HTTPS ...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Kesalahan saat mengambil respon GET-Tunnel HTTPS.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway terputus seketika setelah permintaan GET-tunnel.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "Mendapat respon HTTP yang tak diharapkan: %.*s\n" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "PERINGATAN: Server meminta kami untuk mengirimkan laporan HIP dengan md5sum " "%s.\n" " Konektivitas VPN mungkin dinonaktifkan atau dibatasi tanpa pengiriman " "laporan HIP.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Namun, menjalankan skrip pengiriman laporan HIP pada platform ini belum " "diterapkan." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Anda perlu memberikan argumen --csd-wrapper dengan skrip pengajuan laporan " "HIP." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Galat: Menjalankan skrip 'Laporan HIP' pada platform ini belum diterapkan.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "Gagal membuat pipa bagi skrip HIP\n" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "Gagal mem-fork untuk skrip HIP\n" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "Skrip HIP '%s' keluar secara tidak normal\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "Skrip HIP '%s' mengembalikan status bukan nol: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "Skrip HIP '%s' berhasil dengan sukses (laporan %d byte).\n" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Pengiriman laporan HIP gagal.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "Laporan HIP berhasil dikirim.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Gagal exec skrip HIP %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Gateway mengatakan pengajuan laporan HIP diperlukan.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Gateway mengatakan pengajuan laporan HIP tidak diperlukan.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Tunnel ESP terhubung; keluar dari mainloop HTTPS.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" "Gagal untuk menghubungkan tunnel ESP; menggunakan HTTPS sebagai gantinya.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Galat penerimaan paket: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Panjang paket tak diharapkan. SSL_read mengembalikan %d (termasuk 16 header " "byte) tetapi payload_len header %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Mendapat respon GPST DPD/keepalive\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Mengharapkan 0000000000000000 sebagai 8 byte terakhir header paket DPD/" "keepalive, tetapi mendapat:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Diterima paket data IPv%d %d byte\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Mengharapkan 0100000000000000 sebagai 8 byte terakhir header paket data, " "tetapi mendapat:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Paket tak dikenal. Dump header mengikuti:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "Saatnya pemeriksaan HIP GlobalProtect\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "Cek atau laporan HIP gagal\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "Saatnya rekey Globalprotect\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection mendeteksi peer yang mati!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Kirim permintaan GPST DPD/keepalive\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Mengirim paket data IPv%d %d byte\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Gagal mengirim probe ESP\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Galat saat mengimpor nama GSSAPI untuk autentikasi\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Galat saat menjangkitkan respons GSSAPI\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Mencoba autentikasi GSSAPI ke proksi\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Mencoba autentikasi GSSAPI ke server '%s'\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Autentikasi GSSAPI telah lengkap\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI terlalu besar (%zd byte)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Sedang mengirim token GSSAPI berukuran %zu byte\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Gagal mengirim token autentikasi GSSAPI ke proksi: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Gagal menerima token autentikasi GSSAPI dari proksi: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Server SOCKS melaporkan kegagalan konteks GSSAPI\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Respons status GSSAPI yang tak dikenal (0x%02x) dari server SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat token GSSAPI berukuran %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Mengirim negosiasi proteksi GSSAPI %zu byte\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Gagal mengirim respons proteksi GSSAPI ke proksi: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Gagal menerima respons proteksi GSSAPI dari proksi: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat respons proteksi GSSAPI %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Respons proteksi GSSAPI yang tak valid dari proksi (%zu byte)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Proksi SOCKS menuntut integritas pesan, yang tak didukung\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proksi SOCKS menuntut kerahasiaan pesan, yang tak didukung\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proksi SOCKS menuntuk proteksi yang tak dikenal bertipe 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Mencoba autentikasi Dasar HTTP ke proksi\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Mencoba autentikasi Dasar HTTP ke server '%s'\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Mencoba autentikasi HTTP Bearer ke server '%s'\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proksi meminta autentikasi Dasar yang secara baku dinonaktifkan\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "Server '%s' meminta autentikasi Dasar yang secara baku dinonaktifkan\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Tak ada lagi metoda autentikasi yang dapat dicoba\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Tak ada memori untuk mengalokasikan cookie\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Galat saat membaca respons HTTP: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Gagal mengurai tanggapan HTTP '%s'\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Mendapat respon HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Mengabaikan baris respon HTTP tak dikenal '%s'\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie yang tak valid ditawarkan: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Autentikasi sertifikat SSL gagal\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Tubuh respon punya ukuran negatif (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transfer-Encoding tak dikenal: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Galat saat membaca tubuh respon HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Galat saat mengambil tajuk penggalan\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "Panjang potongan HTTP negatif (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "Panjang chunk HTTP terlalu besar (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Galat saat mengambil tubuh respon HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Tak bisa menerima tubuh HTTP 1.0 tanpa menutup koneksi\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Gagal mengurai URL terbelokkan '%s': %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Tak bisa mengikuti pengalihan ke URL bukan https '%s'\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Gagal mengalokasikan path baru bagi pengalihan relatif: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "Soket HTTPS ditutup oleh peer; membuka kembali\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Mencoba kembali permintaan %s yang gagal pada sambungan baru\n" #: http.c:1002 msgid "request granted" msgstr "permintaan diberikan" #: http.c:1003 msgid "general failure" msgstr "kegagalan umum" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "koneksi tidak diijinkan oleh ruleset" #: http.c:1005 msgid "network unreachable" msgstr "jaringan tak dapat dijangkau" #: http.c:1006 msgid "host unreachable" msgstr "host tak dapat dihubungi" #: http.c:1007 msgid "connection refused by destination host" msgstr "koneksi ditolak oleh host tujuan" #: http.c:1008 msgid "TTL expired" msgstr "TTL kadaluarsa" #: http.c:1009 msgid "command not supported / protocol error" msgstr "perintah tidak didukung / galat protokol" #: http.c:1010 msgid "address type not supported" msgstr "tipe alamat tidak didukung" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "Server SOCKS meminta nama pengguna/sandi tapi kami tak punya\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Nama pengguna dan sandi untuk autentikasi SOCKS mesti < 255 byte\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Galat saat menulis permintaan auth ke proksi SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Galat saat membaca respon auth dari proksi SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Respon auth yang tak diharapkan dari proksi SOCKS: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Terautentikasi ke server SOCKS memakai sandi\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Autentikasi sandi ke server SOCKS gagal\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Server SOCKS meminta autentikasi GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "Server SOCKS meminta autentikasi sandi\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "Server SOCKS memerlukan autentikasi\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Server SOCKS meminta autentikasi yang tak dikenal bertipe %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Meminta koneksi proksi SOCKS ke %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Galat saat menulis permintaan koneksi ke proksi SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Galat saat membaca respon koneksi dari proksi SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Respon koneksi yang tak diharapkan dari proksi SOCKS: %02x %02x\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Galat proksi SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Galat proksi SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipe alamat yang tak diharapkan %02x dalam respon koneksi SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Meminta koneksi proksi HTTP ke %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Pengiriman permintaan proksi gagal: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Permintaan CONNECT proksi gagal: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipe proksi '%s' tak dikenal\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Gagal mengurai proksi '%s'\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Hanya proksi http atau socks(5) yang didukung\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect atau openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel dengan Cisco AnyConnect SSL VPN, serta ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Kompatibel dengan Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibel dengan SSL VPN GlobalProtect Palo Alto Networks (PAN)" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Kompatibel dengan Pulse Connect Secure SSL VPN" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Kompatibel dengan VPN SSL F5 BIG-IP" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "VPN SSL Fortinet" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Kompatibel dengan VPN SSL FortiGate" #: library.c:244 msgid "PPP over TLS" msgstr "PPP di atas TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "VPN SSL Array" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "Kompatibel dengan VPN SSL Array Networks" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protokol VPN '%s' tak dikenal\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Dibangun terhadap pustaka SSL tanpa dukungan DTLS Cisco\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Alamat IP tak diterima. Menggugurkan\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Menyambung ulang memberi alamat IP Legacy yang berbeda (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Menyambung ulang memberi netmask IP Legacy yang berbeda (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Menyambung ulang memberi alamat IPv6 yang berbeda (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Menyambung ulang memberi netmask IPv6 yang berbeda (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Konfigurasi IPv6 diterima tapi MTU %d terlalu kecil.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Gagal mengurai URL server '%s\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Hanya https:// yang diijinkan bagi URL server\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Hash sertifikat tidak dikenal: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Ukuran dari sidik jari yang disediakan kurang dari minimum yang diperlukan " "(%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Tak ada penangan formulir; tak bisa mengautentikasi.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() gagal: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Galat fatal dalam penanganan baris perintah\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() gagal: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() gagal: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Galat saat mengonversi masukan konsol: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Kegagalan alokasi bagi string dari stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Untuk bantuan atas OpenConnect, harap lihat halaman web di\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Menggunakan %s. Fitur yang ada:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "MESIN OpenSSL tak ada" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "PERINGATAN: Biner ini tidak memiliki dukungan DTLS dan/atau ESP. Kinerja " "akan terganggu.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Protokol yang didukung:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (baku)" #: main.c:743 msgid "Set VPN protocol" msgstr "Atur protokol VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Tak bisa memroses path executable \"%s\" ini" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokasi bagi path vpnc-script gagal\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Timpa nama host '%s' menjadi '%s'\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Cara pakai: openconnect [opsi] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Klien terbuka bagi beberapa protokol VPN, versi %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Baca opsi dari berkas konfig" #: main.c:914 msgid "Report version number" msgstr "Laporkan nomor versi" #: main.c:915 msgid "Display help text" msgstr "Tampilkan teks bantuan" #: main.c:919 msgid "Authentication" msgstr "Autentikasi" #: main.c:920 msgid "Set login username" msgstr "Tata nama log masuk" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Matikan autentikasi sandi/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Jangan mengharapkan masukan pengguna; keluar bila itu diperlukan" #: main.c:923 msgid "Read password from standard input" msgstr "Baca kata sandi dari masukan standar" #: main.c:924 msgid "Choose authentication login selection" msgstr "Pilih autentikasi log masuk" #: main.c:925 msgid "Provide authentication form responses" msgstr "Memberikan respons formulir otentikasi" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Pakai sertifikat klien SSL SERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Pakai berkas kunci pribadi SSL KUNCI" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Peringatkan ketika masa hidup sertifikat < HARI" #: main.c:929 msgid "Set login usergroup" msgstr "Tata grup log masuk" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Atur frasa sandi kunci atau PIN TPM SRK" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Frasa sandi kunci adalah fsid dari sistem berkas" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Tipe token perangkat lunak: rsa, totp, hotp, atau oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Rahasia token perangkat lunak atau token oidc" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(CATATAN: libstoken (RSA SecurID) dimatikan dalam build ini)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(CATATAN: OATH YubiKey dimatikan dalam build ini)" #: main.c:941 msgid "Server validation" msgstr "Validasi server" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Nonaktifkan certificate authority sistem baku" #: main.c:944 msgid "Cert file for server verification" msgstr "Berkas cert bagi verifikasi server" #: main.c:946 msgid "Internet connectivity" msgstr "Konektivitas internet" #: main.c:947 msgid "Set VPN server" msgstr "Tata server VPN" #: main.c:948 msgid "Set proxy server" msgstr "Tata server proksi" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Atur metoda autentikasi proksi" #: main.c:950 msgid "Disable proxy" msgstr "Matikan proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Pakai libproxy untuk menata proksi secara otomatis" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(CATATAN: libproxy dimatikan dalam build ini)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Tenggat waktu coba ulang koneksi dalam detik" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Pakai IP ketika menyambung ke HOST" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Salin ruas TOS / TCLASS ke dalam paket DTLS dan ESP" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Setel port lokal untuk datagram DTLS dan ESP" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Autentikasi (dua fase)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Menggunakan cookie autentikasi COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Baca cookie dari masukan standar" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Hanya autentikasi dan cetak info log masuk" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Ambil dan cetak cookie saja; jangan menyambung" #: main.c:965 msgid "Print cookie before connecting" msgstr "Mencetak cookie sebelum menyambung" #: main.c:968 msgid "Process control" msgstr "Kendali proses" #: main.c:969 msgid "Continue in background after startup" msgstr "Lanjutkan di latar belakang setelah awal mula" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Tulis PID daemon ke berkas ini" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Lepas privilese setelah menyambung" #: main.c:974 msgid "Logging (two-phase)" msgstr "Logging (dua fase)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Pakai syslog untuk pesan-pesan kemajuan" #: main.c:978 msgid "More output" msgstr "Lebih banyak keluaran" #: main.c:979 msgid "Less output" msgstr "Keluaran lebih sedikit" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Curahkan trafik autentikasi HTTP (mengimplikasikan --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Sisipkan tanda waktu ke pesan-pesan kemajuan" #: main.c:983 msgid "VPN configuration script" msgstr "Skrip konfigurasi VPN" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Pakai IFNAME untuk antar muka terowongan" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Baris perintah shell untuk memakai skrip konfig kompatibel vpnc" #: main.c:986 msgid "default" msgstr "baku" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Lewatkan trafik ke program 'skrip', bukan tun" #: main.c:991 msgid "Tunnel control" msgstr "Kontrol tunnel" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Jangan meminta konektivitas IPv6" #: main.c:993 msgid "XML config file" msgstr "Berkas konfig XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Minta MTU dari server (hanya server legacy)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indikasikan MTU path dari/ke server" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Aktifkan kompresi stateful (default adalah hanya stateless)" #: main.c:997 msgid "Disable all compression" msgstr "Nonaktifkan semua kompresi" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Persyaratkan perfect forward secrecy" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Nonaktifkan DTLS dan ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cipher OpenSSL yang didukung untuk DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Atur batas antrian paket ke LEN paket" #: main.c:1004 msgid "Local system information" msgstr "Informasi sistem lokal" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-Agent: field" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Nama host yang diumumkan ke server" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "string versi yang dilaporkan selama autentikasi" #: main.c:1010 msgid "default:" msgstr "baku:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Eksekusi biner trojan (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Drop hak istimewa selama eksekusi trojan" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Jalankan SKRIP sebagai pengganti biner trojan" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Bug server" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Nonfungsikan pemakaian ulang koneksi HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Jangan coba autentikasi XML POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Gagal mengalokasikan string\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Gagal memperoleh baris dari berkas konfigurasi: '%s'\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opsi tak dikenal di baris %d: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opsi '%s' tak meminta argumen pada baris %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opsi '%s' memerlukan argumen pada baris %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Pengguna tidak valid \"%s\": %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID pengguna tidak valid \"%d\": %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Pelengkapan otomatis yang tidak tertangani untuk opsi %d '--%s'. Silakan " "laporkan.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "terhubung" #: main.c:1507 msgid "disconnected" msgstr "terputus" #: main.c:1511 msgid "unsuccessful" msgstr "tidak sukses" #: main.c:1516 msgid "in progress" msgstr "sedang berlangsung" #: main.c:1519 msgid "disabled" msgstr "dinonaktifkan" #: main.c:1525 msgid "established" msgstr "terjalin" #: main.c:1528 msgid "unknown" msgstr "tidak diketahui" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "keluarga cipher %s: %s\n" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "Rekey SSL selanjutnya dalam %ld detik\n" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "Rekey %s selanjutnya dalam %ld detik\n" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Gagal membuka '%s' untuk menulis: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Menlanjutkan di latar belakang; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "PERINGATAN: Tidak dapat mengatur lokal: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "PERINGATAN: Versi openconnect ini dibangun tanpa dukungan\n" " iconv tapi nampaknya Anda memakai set karakter legasi\n" " \"%s\". Bersiaplah mengalami keanehan.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "PERINGATAN: Versi openconnect ini adalah %s tapi\n" " pustaka libopenconnect adalah %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Gagal mengalokasikan struktur vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Tak bisa memakai opsi 'config' di dalam berkas konfig\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Tak bisa membuka berkas konfig '%s': %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Mode kompresi '%s' yang tak valid\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" "Tidak bisa memfungsikan cipher 3DES atau RC4 yang tidak aman, karena " "pustaka\n" "%s tidak mendukung mereka lagi.\n" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Gagal mengalokasikan memori\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Kurang titik dua dalam opsi resolve\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d terlalu kecil\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Mematikan penggunaan ulang semua koneksi HTTP karena opsi --no-http-" "keepalive.\n" "Bila ini membantu, harap laporkan ke .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Opsi --no-cert-check tidak aman dan telah dihapus.\n" "Perbaiki sertifikat server Anda atau gunakan --servercert untuk " "mempercayainya.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Panjang antrian nol tak diijinkan; memakai 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versi %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Mode token perangkat lunak yang tak valid \"%s\"\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "Peringatan: Anda menyatakan %s. Ini mestinya tidak\n" " perlu; silakan laporkan kasus dimana penimpaan string\n" " prioritas diperlukan untuk menyambung ke server\n" " ke .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumen terlalu banyak pada baris perintah\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Tak ada server yang dinyatakan\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Versi openconnect ini dibangun tanpa dukungan libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Pembuatan koneksi SSL gagal\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Menyiapkan UDP gagal; menggunakan SSL sebagai gantinya\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Tak ada argumen --script yang diberikan; DNS dan routing tak ditata\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Lihat https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Pengguna meminta sambung ulang\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "Cookie ditolak oleh server; keluar.\n" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sesi diakhiri oleh server; keluar.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "Pengguna membatalkan (%s); keluar.\n" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Galat tak dikenal; keluar.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Gagal membuka %s untuk menulis: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Gagal menulis konfig ke %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Sertifikat dari server VPN \"%s\" gagal verifikasi.\n" "Alasan: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Untuk mempercayai server ini di masa mendatang, mungkin tambahkan ini ke " "baris perintah Anda:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Masukkan '%s' untuk menerima, '%s' untuk menggugurkan; sebarang yang lain " "untuk menilik: " #: main.c:2464 main.c:2483 msgid "no" msgstr "tidak" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ya" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Hash kunci server: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Pilihan auth \"%s\" cocok dengan opsi berganda\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Pilihan auth \"%s\" tak tersedia\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Masukan pengguna diperlukan dalam mode non interaktif\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Gagal membuka berkas token untuk menulis: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Gagal menulis token: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "String token lunak tak valid\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Tak bisa membuka berkas stoken\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Tak bisa membuka berkas ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect tak dibangun dengan dukungan libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Kegagalan umum dalam libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect tak dibangun dengan dukungan liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Kegagalan umum dalam liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Token YubiKey tak ditemukan\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect tak dibangun dengan dukungan YubiKey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Kegagalan umum Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Tak bisa membuka berkas oidc\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Kegagalan umum dalam token oidc\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Penyiapan skrip tun gagal\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Penyiapan perangkat tun gagal\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Pemanggil mengistirahatkan koneksi\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Tak ada pekerjaan; tidur selama %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects gagal: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Kegagalan select() di mainloop" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "Setelah menghapus header %s/IPv%d, MTU dari %d\n" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() gagal: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() gagal: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Galat saat berkomunikasi dengan pembantu ntlm_auth\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Mencoba autentikasi NTLM HTTP ke proksi (single-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Mencoba autentikasi NTLM HTTP ke server '%s' (single-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Mencoba autentikasi NTLMv%d HTTP ke proksi\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Mencoba autentikasi NTLMv%d HTTP ke server '%s'\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "Mengakhiri karena nullppp telah mencapai status jaringan.\n" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "String token base32 tak valid\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Gagal mengalokasikan memori untuk dekode rahasia OATH\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Ok untuk menjangkitkan tokencode INITIAL\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Ok untuk menjangkitkan tokencode NEXT\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server menolak token lunak; berpindah ke entri manual\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Menjangkitkan kode token OATH TOTP\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Menjangkitkan kode token OATH HOTP\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Panjang %d yang tak diharapkan untuk TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Diterima MTU %d dari server\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Diterima server DNS %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Diterima domain pencarian DNS %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Diterima alamat IP internal %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Diterima netmask %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Diterima alamat gateway internal %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Menerima split termasuk route %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Menerima split tidak termasuk route %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Diterima server WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Enkripsi ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "HMAC ESP: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Kompresi ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Seumur hidup kunci ESP: %u byte\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Seumur hidup kunci ESP: %u detik\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Fallback ESP ke SSL: %u detik\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Perlindungan putar ulang ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "SPI ESP (ke luar): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d byte rahasia ESP\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grup TLV %d tak dikenal attr %d len %d: %s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Gagal mengurai header KMP\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Gagal mengurai pesan KMP\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Mendapat KMP pesan %d berukuran %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Diterima TLV non-ESP (grup %d) dalam KMP negosiasi ESP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Kesalahan saat membuat permintaaan negosiasi oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Tulis pendek dalam negosiasi oNCP\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Baca %d byte dari record SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Respon tak diharapkan berukuran %d setelah paket nama host\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Respon server ke paket nama host salah 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Hal ini tampaknya menunjukkan bahwa server telah menonaktifkan\n" "dukungan untuk Protokol oNCP Juniper yang lama, dan hanya \n" "mengizinkan koneksi menggunakan protokol Junos Pulse yang lebih\n" "baru. Versi OpenConnect ini memiliki dukungan EKSPERIMENTAL untuk\n" "Pulse menggunakan --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Paket tak valid saat menunggu KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Mengharapkan pesan KMP 301 dari server tapi memperoleh %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Pesan 301 KMP dari server terlalu besar (%d byte)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Mendapat pesan KMP 301 sepanjang %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Gagal membaca panjang rekaman lanjutan\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Catatan tambahan %d byte terlalu besar; akan membuat %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Gagal membaca rekaman lanjutan sepanjang %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Membaca tambahan %d byte KMP pesan 301\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Kesalahan saat menegosiasi kunci ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Permintaan negosiasi oNCP ke luar:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "masuk baru" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "keluar baru" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Membaca hanya 1 byte ruas panjang oNCP\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Server mengakhiri koneksi (sesi kedaluarsa)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "Server mengakhiri koneksi (habis waktu menganggur)\n" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server mengakhiri koneksi (alasan: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Server mengirim rekaman oNCP panjang-nol\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "KMP masuk pesan %d berukuran %d (mendapat %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Melanjutkan memroses KMP pesan %d kini ukuran %d (mendapat %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Paket data tak dikenal\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Gagal untuk menyiapkan ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Pesan KMP %d tak dikenal berukuran %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d byte lagi belum diterima\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Paket keluar:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Mengirim paket kendali fungsikan ESP\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GALAT: %s() dipanggil dengan UTF-8 yang tak valid bagi argumen '%s'\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Tidak mampu menghitung overhead DTLS untuk %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Gagal untuk menghasilkan kunci acak\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Gagal membuat SSL_SESSION ASN.1 untuk OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL gagal mengurai SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Inisialisasi sesi DTLSv1 gagal\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Ukuran ID aplikasi terlalu besar\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "callback PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inisialisasi DTLSv1 CTX gagal\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Gagal menata versi CTX DTLS\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Gagal membuat kunci DTLS\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Penataan daftar cipher DTLS gagal\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Cipher DTLS '%s' tak ditemukan\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() gagal\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "Koneksi DTLS terjalin (menggunakan OpenSSL). Ciphersuite %s-%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ini mungkin karena OpenSSL Anda rusak\n" "Lihat http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Jabat tangan DTLS gagal: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Gagal menginisialisasi cipher ESP:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Gagal menginisialisasi HMAC ESP\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Gagal menyiapkan konteks dekripsi bagi paket ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Gagal mendekripsi paket ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Gagal mengenkripsi paket ESP:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Gagal menjalin konteks PKCS#11 libp11:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Gagal memuat modul penyedia PKCS#11 (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN terkunci\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN kedaluarsa\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Pengguna lain telah log masuk\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Galat tak dikenal saat log masuk ke token PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Log masuk ke slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Gagal meng-enumerasi cert dalam slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Menemukan %d cert dalam slot '%s'\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Gagal mengurai URI PKCS#11 '%s'\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Gagal meng-enumerasi slot PKCS#11\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Log masuk ke slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Gagal menemukan cert PKCS#11 '%s'\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Isi X.509 sertifikat tidak diambil oleh libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "Memakai sertifikat PKCS#11 sekunder %s\n" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Gagal meng-enumerasi kunci dalam slot PKCS#11 '%s'\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Menemukan %d kunci dalam slot '%s'\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Sertifikat tidak punya kunci publik\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "Sertifikat sekunder tidak punya kunci publik\n" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Sertifikat tidak cocok dengan kunci privat\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "Sertifikat sekunder tidak cocok dengan kunci privat\n" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Memeriksa kunci EC cocok cert\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Gagal mengalokasikan penyangga tanda tangan\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Gagal menandatangani data dummy untuk memvalidasi kunci EC\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Gagal menemukan kunci PKCS#11 '%s'\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "Memakai kunci PKCS#11 sekunder %s\n" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Versi OpenConnect ini dibangun tanpa dukungan PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "Gagal menulis ke soket TLS/DTLS\n" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "Gagal membaca dari soket TLS/DTLS\n" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Galat baca pada sesi %s: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Galat tulis pada sesi %s: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Permintaan UI SSL tak tertangani bertipe %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Kata sandi PEM terlalu panjang (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "Kehilangan kunci atau sertifikat klien\n" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Memuat kunci privat gagal\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Gagal memasang sertifikat dalam konteks OpenSSL\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Sertifikat ekstra dari %s: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Mengurai PKCS#12 gagal (lihat galat di atas)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 tak memuat sertifikat!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "PKCS#12 sekunder tidak memuat sertifikat!\n" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 tak memuat kunci privat!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "PKCS#12 sekunder tidak memuat kunci privat!\n" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Tak bisa memuat mesin TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Gagal init mesin TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Gagal menata kata sandi SRK TPM\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Gagal memuat kunci privat TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "Gagal memuat kunci privat TPM sekunder\n" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Gagal membuka berkas sertifikat %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "Gagal membuka berkas sertifikat sekunder %s: %s\n" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Pemuatan sertifikat gagal\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Gagal memroses semua sertifikat pendukung. Tetap mencoba...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "Gagal memroses sertifikat pendukung sekunder. Tetap mencoba...\n" #: openssl.c:840 msgid "PEM file" msgstr "berkas PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Gagal membuat BIO bagi butir penyimpanan kunci '%s'\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Memuat kunci privat gagal (kata sandi salah?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "Memuat kunci privat sekunder gagal (frasa sandi salah?)\n" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Memuat kunci privat gagal (lihat galat di atas)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "Memuat kunci privat sekunder gagal (lihat galat di atas)\n" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Gagal memuat sertifikat X509 dari penyimpanan kunci\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Gagal membuka berkas kunci pribadi %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "Memuat kunci privat sekunder gagal\n" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "Gagal mendekripsi berkas sertifikat PKCS#8 sekunder\n" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "Masukkan frasa sandi PKCS#8 sekunder:" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Gagal mengonversi PKCS#8 ke OpenSSL EVP_PKEY\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Gagal mengonversi PKCS#8 sekunder ke OpenSSL EVP_PKEY\n" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Gagal mengidentifikasi tipe kunci privat dalam '%s'\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Altname DNS cocok '%s'\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Tak ada yang cocok dengan altname '%s'\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Sertifikat memiliki altname GEN_IPADD dengan panjang palsu %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Cocok alamat %s '%s'\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Tak ada kecocokan bagi alamat %s '%s'\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' mengandung path tak kosong; mengabaikan\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Cocok URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Tidak ada yang cocok untuk URI '%s'\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Tak ada altname dalam sert pasangan cocok dengan '%s'\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Tak ada nama subjek dalam sert pasangan!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Gagal mengurai nama subjek dalam sert pasangan\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Subjek sert pasangan tak cocok ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Nama subjek sertifikat pasangan cocok '%s'\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Sert ekstra dari cafile: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Galat dalam sert klien ruas notAfter\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "Galat dalam sertifikat klien sekunder ruas notAfter\n" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "Sertifikat SSL dan kunci tidak cocok\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Gagal baca sert dari berkas CA '%s'\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Gagal membuka berkas CA '%s'\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Membuat CTX TLSv1 gagal\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "Gagal mengkonstruksi daftar cipher OpenSSL\n" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Gagal mengatur daftar cipher OpenSSL (\"%s\")\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Kegagalan koneksi SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Gagal menghitung HMAC OATH\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negosiasi EAP-TTLS dengan %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Kegagalan koneksi EAP-TTLS %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" " masuk: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" " keluar: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" "Diterima MRU %d dari server. Nak-offering MRU %d yang lebih besar (MTU " "kita)\n" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "Diterima MTU %d dari server. Menata MTU kita agar cocok.\n" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "Diterima asyncmap 0x%08x dari server\n" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "Diterima bilangan magic 0x%08x dari server\n" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "Diterima kompresi ruas protokol dari server\n" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "Diterima kompresi ruas kontrol dan alamat dari server\n" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" "Diterima Alamat IP yang tidak digunakan lagi dari server, mengabaikan\n" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "Diterima kompresi TCP/IP Van Jacobson dari server\n" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "Diterima alamat IPv4 peer %s dari server\n" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "Diterima alamat link-local IPv6 %s dari server\n" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" "Diterima TLV %s yang tidak dikenal (tag %d, panjang %d+2) dari server:\n" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "Diterima %ld byte tambahan di akhir Config-Request:\n" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "Menolak konfig %s/id %d dari server\n" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "Meminta MTU terhitung %d\n" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "Diterima %ld byte tambahan di akhir Config-Reject:\n" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "Diterima %s/id %d %s dari server\n" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "Server mengakhiri dengan alasan: %s\n" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "Server menolak permintaan kita untuk mengonfigurasi IPv%d\n" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "Muatan PPP melebihi penyangga penerimaan\n" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "Diterima paket pendek (%d byte). Menunggu lebih banyak.\n" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "Muatan PPP panjang %d melebihi penyangga penerimaan %d\n" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" "Paket PPP tidak lengkap. Diterima %d byte di kabel (termasuk %d encap) tapi " "payload_len header %d. Menunggu lebih banyak.\n" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Enkapsulasi PPP tidak valid\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" "Paket berisi %d byte setelah muatan. Mengasumsikan paket yang disambung.\n" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "Paket IPv%d yang tidak diharapkan dalam keadaan PPP %s.\n" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "Diterima paket data IPv%d %d byte melalui %s\n" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "Diharapkan %d byte header PPP tetapi mendapat %ld, menggeser muatan.\n" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "Gagal menjalin PPP\n" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "Mengirim permintaan buang PPP sebagai keepalive\n" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "Mengirim permintaan echo PPP sebagai DPD\n" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "Mengirim paket %s %s PPP melalui %s (id %d, %d total byte)\n" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "Mengirim paket %s PPP melalui %s (%d total byte)\n" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "Keadaan DTLS tidak valid %d\n" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "Me-reset PPP gagal\n" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "Gagal mengautentikasi sesi DTLS\n" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Diterima alamat IP internal Warisan %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Gagal menangani alamat IPv6\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Diterima alamat IPv6 internal %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Menerima split include IPv6 %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Menerima split exclude IPv6 %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Panjang %d yang tak diharapkan untuk attr 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Enkripsi ESP: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "HMAC ESP: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Hanya ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Attr 0x%x tak dikenal pjg %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Baca %d byte dari record IF-T/TLS\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Menulis singkat ke IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Galat saat membuat paket IF-T\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Galat saat membuat paket EAP\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Tantangan otentikasi IF-T/TLS yang tak terduga:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Payload EAP-TTLS yang tidak terduga:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Masukkan realm pengguna Pulse:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Realm:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Pilih realm pengguna Pulse:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Gagal mengurai AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Batas sesi tercapai. Pilih sesi untuk dibunuh:\n" #: pulse.c:875 msgid "Session:" msgstr "Sesi:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Gagal mengurai daftar sesi\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Masukkan kredensial sekunder:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Masukkan kredensial pengguna:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Nama pengguna sekunder:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Nama pengguna:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Kata Sandi:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Kata sandi sekunder:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Kata sandi kedaluwarsa. Silakan ganti kata sandi:" #: pulse.c:1085 msgid "Current password:" msgstr "Kata sandi sekarang:" #: pulse.c:1090 msgid "New password:" msgstr "Kata sandi baru:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Verifikasi kata sandi baru:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Kata sandi tidak disediakan.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Kata sandi tidak cocok.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Kata sandi saat ini terlalu panjang.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Kata sandi baru terlalu panjang.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Permintaan kode token:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Harap masukkan respon:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Harap masukkan kode sandi:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Harap masukkan informasi token sekunder Anda:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Galat saat membuat permintaan sambungan Pulse\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Respons tak terduga untuk negosiasi versi IF-T/TLS:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Versi IF-T/TLS dari server:%d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Gagal menjalin sesi EAP-TTLS\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "PERINGATAN: MD5 sertifikat yang disediakan oleh server tidak cocok dengan " "sertifikat yang sebenarnya.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Kegagalan autentikasi: Akun terkunci\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "Kegagalan autentikasi: Diperlukan sertifikat klien\n" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Kegagalan autentikasi: Kode 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Nilai sapaan D73 yang tak dikenal 0x%x. Akan meminta nama pengguna dan kata " "sandi.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Harap laporkan nilai ini dan perilaku klien resmi.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Kegagalan autentikasi: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Server Pulse meminta Host Checker; belum didukung\n" "Cobalah mode juniper (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "Paket otentikasi Pulse tidak ditangani, atau kegagalan otentikasi\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Cookie autentikasi Pulse tidak diterima\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Entri realm Pulse\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Pilihan realm Pulse\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Permintaan otentikasi kata sandi Pulse, kode 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" "Permintaan kata sandi Pulse dengan kode yang tidak diketahui 0x%02x. Silakan " "laporkan.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Permintaan kode token umum kata sandi Pulse\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Batas sesi Pulsa, sesi %d\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Permintaan auth Pulse yang tak tertangani\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Respons yang tidak terduga bukannya IF-T/TLS otentikasi sukses:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" "Kegagalan EAP-TTLS: Menggelontor keluaran dengan byte masukan tertunda\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Galat saat membuat penyangga EAP-TTLS\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Gagal membaca Acknowledge EAP-TTLS: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Baca %d byte dari record IF-T/TLS EAP-TTLS\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Paket Acknowledge EAP-TTLS yang Buruk\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Paket EAP-TTLS Buruk (pjg %d, sisa %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Paket config Pulse yang tak diharapkan:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Menerima rute dengan tipe yang tidak dikenal 0x%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Paket config ESP tidak valid:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Penyiapan ESP tidak valid\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Paket IF-T/TLS yang buruk saat mengharapkan konfigurasi:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Paket IF-T/TLS yang tak diduga ketika mengharapkan konfigurasi.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "Konfigurasi tidak mencukupi ditemukan\n" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "Rekey ESP gagal\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "Kesalahan fatal Pulse (alasan: %ld): %s\n" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Paket Pulse tak dikenal\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Mengirim paket data IF-T/TLS %d byte\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Buang split buruk termasuk: \"%s\"\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Buang split buruk selain: \"%s\"\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "PERINGATAN: Split termasuk \"%s\" memiliki bit host yang ditetapkan, " "menggantikan dengan \"%s/%d\".\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "PERINGATAN: Split tidak termasuk \"%s\" memiliki bit host yang ditetapkan, " "menggantikan dengan \"%s/%d\".\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Mengabaikan jaringan lama karena alamat \"%s\" tidak valid.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "Mengabaikan jaringan warisan karena netmask \"%s\" tidak valid.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Gagal spawn skrip '%s' bagi %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skrip '%s' berhenti secara abnormal (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skrip '%s' mengembalikan galat %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Kegagalan select() untuk connect soket" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Koneksi soket dibatalkan\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Setockopt(TCP_NODELAY) yang gagal pada soket TLS:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Gagal menyambung ulang ke proksi %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Gagal menyambung ulang ke host %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proksi dari libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo gagal untuk host '%s': %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Menyambung ulang ke server DynDNS memakai alamat IP yang sebelumnya " "tersinggah\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Sedang mencoba menyambung ke proksi %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Sedang mencoba menyambung ke server %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Tersambung ke %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Gagal mengalokasikan penyimpanan sockaddr\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Gagal menyambung ke %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Melupakan alamat pasangan sebelumnya yang tak berfungsi\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Gagal menyambung ke host %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Menyambung ulang ke proksi %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Tak bisa memperoleh ID sistem berkas bagi frasa sandi\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Gagal membuka berkas kunci pribadi '%s': %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Tanpa galat" #: ssl.c:727 msgid "Keystore locked" msgstr "Penyimpanan kunci terkunci" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Penyimpanan kunci tak terinisialisasi" #: ssl.c:729 msgid "System error" msgstr "Galat sistem" #: ssl.c:730 msgid "Protocol error" msgstr "Galat protokol" #: ssl.c:731 msgid "Permission denied" msgstr "Ijin ditolak" #: ssl.c:732 msgid "Key not found" msgstr "Kunci tak ditemukan" #: ssl.c:733 msgid "Value corrupted" msgstr "Nilai rusak" #: ssl.c:734 msgid "Undefined action" msgstr "Aksi yang tak didefinisikan" #: ssl.c:738 msgid "Wrong password" msgstr "Sandi salah" #: ssl.c:739 msgid "Unknown error" msgstr "Galat tak dikenal" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Kegagalan select() untuk soket perintah" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Gagal membuka %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Gagal fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Berkas %s kosong\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "Berkas %s memiliki ukuran mencurigakan %\n" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Gagal mengalokasikan %d byte untuk %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Gagal baca %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Keluarga protokol %d tak dikenal. Tak bisa membuat alamat server UDP\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Buka soket UDP" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Keluarga protokol %d tak dikenal. Tak bisa memakai transport UDP\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Ikatkan soket UDP" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Membuat soket UDP non-blocking" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie tak valid lagi, mengakhiri sesi\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "tidur %dd, tenggang waktu tersisa %dd\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Kegagalan select() untuk send soket" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Kegagalan select() untuk recv soket" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI terlalu besar (%ld byte)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Mengirim token SSPI berukuran %lu byte\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Gagal mengirim token autentikasi SSPI ke proksi: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Gagal menerima token autentikasi SSPI dari proksi: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "Server SOCKS melaporkan kegagalan konteks SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Respons status SSPI yang tak dikenal (0x%02x) dari server SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Mendapat token SSPI %lu byte: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() gagal: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() gagal: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Hasil EncryptMessage() terlalu besar (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Mengirim negosiasi proteksi SSPI %u byte\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Gagal mengirim respons proteksi SSPI ke proksi: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Gagal menerima respons proteksi SSPI dari proksi: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Mendapat respons proteksi SSPI %d byte: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage gagal: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Respons proteksi SSPI yang tak valid dari proksi (%lu byte)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Masukkan kredensial untuk membuka kunci token perangkat lunak." #: stoken.c:107 msgid "Device ID:" msgstr "ID Perangkat:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Pengguna mem-bypass token lunak.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Semua ruas diperlukan; coba lagi.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Kegagalan umum dalam libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Kata sandi atau ID perangkat tak benar; coba lagi.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Init token lunak sukses.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Masukkan PIN token perangkat lunak." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Format PIN tak valid; coba lagi.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Menjangkitkan kode token RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Galat saat mengakses kunci registri bagi adaptor jaringan\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Tidak dapat membaca %s\\%s atau bukan string\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "%s\\ComponentId tidak dikenal '%s'\n" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Ditemukan %s di %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Tidak dapat membuka kunci registri %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "Tidak dapat membaca kunci registri %s\\%s atau bukan string\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() failed: %s\n" "Memakai cadangan GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() gagal: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Gagal membuka %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Gagal memperoleh versi driver TAP: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Galat: Diperlukan driver TAP-Windows v9.9 atau lebih (ditemukan %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Gagal menata alamat IP TAP: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Gagal menata status media TAP: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "Mengabaikan antarmuka yang tidak cocok \"%S\"\n" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "Tak bisa mengonversi nama antarmuka menjadi UTF-8\n" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "Menggunakan %s peranti '%s', indeks %d\n" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "Tak bisa membangun nama antarmuka\n" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Perangkat TAP menggugurkan ketersambungan. Memutus.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Gagal membaca dari perangkat TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Gagal melengkapi baca dari perangkat TAP: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Menulis %ld byte ke tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Menunggun menulis tun…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Menulis %ld byte ke tun setelah menunggu\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Gagal menulis ke perangkat TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Span skrip tunnel belum didukung pada Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Tak bisa membuka /dev/tun untuk plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Tak bisa push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Tak bisa menata ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Tak bisa plumb %s untuk IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "buka /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Gagal membuat tun baru" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Gagal meletakkan deskriptor berkas tun ke dalam mode message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "Perangkat tun tak didukung pada plaform ini\n" #: tun.c:205 msgid "open net" msgstr "buka net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Gagal membuka perangkat tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Gagal mengikat perangkat tun lokal (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Untuk mengatur konfigurasi jejaring lokal, openconnect mesti dijalankan " "sebagai root\n" "Lihat https://www.infradead.org/openconnect/nonroot.html untuk informasi " "lebih lanjut\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nama antar muka '%s' tak valid; mesti sesuai pola 'utun%%d' atau 'tun%%d'\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Gagal membuka soket SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Gagal meng-kuiri id kendali utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Gagal mengalokasikan nama perangkat utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Gagal menyambung unit utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nama antar muka '%s' tak valid; mesti sesuai pola 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Tak bisa membuka '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Gagal untuk membuat soket tun nonblocking: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair gagal: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork gagal: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(skrip)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Gagal menulis paket datang: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "Tak bisa memuat wintun.dll\n" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "Tak bisa mengurai fungsi dari wintun.dll\n" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Memperlakukan host \"%s\" sebagai nama host mentah\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Gagal menghitung SHA1 berkas yang ada\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 berkas konfig XML: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Gagal mengurai berkas konfig XML %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" memiliki alamat \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" memiliki UserGroup \"%s\"\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Host \"%s\" tidak terdaftar dalam konfig; memperlakukan sebagai nama host " "mentah\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Gagal mengirim \"%s\" ke aplet ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Respon pendek yang tak valid ke \"%s\" dari aplet ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Gagal merespon ke \"%s\": %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "pilih perintah aplet" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Respon yang tak dikenal dari aplet ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Menemukan aplet ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Diperlukan PIN untuk aplet OATH Yubikey" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Gagal menghitung respon buka kunci Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "perintah buka kunci" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Mencoba varian PBKBF2 truncated-char dari PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Gagal menjalin konteks PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Terjalin konteks PC/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Gagal mengkuiri daftar pembaca: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Gagal menyambung ke pembaca PC/SC '%s': %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Tersambung pembaca PC/SC '%s'\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Gagal memperoleh akses eksklusif ke pembaca '%s': %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "perintah daftar kunci" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Ditemukan %s/%s kunci '%s' pada '%s'\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Token '%s' tak ditemukan pada Yubikey '%s'. Mencari Yubikey lain...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server menolak token Yubikey; berpindah ke entri manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Menjangkitkan kode token Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Gagal memperoleh akses eksklusif ke Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "menghitung perintah" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Respons tak dikenal dari Yubikey ketika membuat kode token\n" openconnect-8.20/po/ca.po0000644000076400007640000054456014204456067017117 0ustar00dwoodhoudwoodhou00000000000000# Catalan translations for network-manager-openconnect package # Traduccions al català del paquet «network-manager-openconnect». # Copyright (C) 2009 THE network-manager-openconnect'S COPYRIGHT HOLDER # This file is distributed under the same license as the network-manager-openconnect package. # # David Planella , 2009, 2011. # Jordi Estrada , 2010. # Carles Ferrando Garcia , 2015, 2017, 2018. # Walter Garcia-Fontes , 2016. # Jordi Serratosa , 2017. msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2020-09-08 13:07+0200\n" "Last-Translator: Miquel-Àngel Burgos i Fradeja \n" "Language-Team: Catalan \n" "Language: ca\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=n != 1;\n" "X-Generator: Poedit 2.3\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Galeta «%s» no vàlida\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "S'ha trobat el servidor DNS %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultat %d inesperat del servidor\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "L'assignació ha fallat\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "S'ha rebut un paquet petit (%d bytes)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Rep el paquet de control del tipus %x:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "S'ha rebut el paquet de dades de %d bytes\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL ha escrit molt pocs bytes! S'ha preguntat per %d, s'ha enviat %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "S'espera la reclau CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Reencaixada errònia; s'està intentant un túnel nou\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "Ha fallat la reconnexió TCP\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Envia TCP DPD\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Envia TCP Keepalive\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "S'està enviant DTLS fora del paquet\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "S'està enviant un paquet de dades descomprimides de %d bytes\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Intenta una connexió nova DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "Sessió DTLS establerta\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "S'ha rebut un paquet DTLS desconegut\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Rebuts 0x%02x paquets DTLS de %d bytes\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "S'espera la reclau DTLS\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Reencaixat DTLS fallat; s'està reconnectant.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "El detector de parells morts DTLS ha detectat un parell mort!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Envia DPD DTLS\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Error en enviar la sol·licitud DPD. S'esperava la desconnexió\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "S'ha enviat el paquet DTLS de %d bytes; DTLS envia %d retornats\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Sortida de sessió errònia.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Sortida de sessió amb èxit.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "S'ha especificat el camp del formulari de destinació %s; ha finalitzat " "l'autenticació SAML %s.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "L'autenticació SAML %s és necessària mitjançant %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "L'autenticació SAML %s és necessària mitjançant un script extern.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Quan ha finalitzat l'autenticació SAML, especifiqueu el camp del formulari " "de destinació afegint :nom_camp a l'URL d'inici de sessió.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Introduïu el vostre nom d'usuari i contrasenya" #: auth-globalprotect.c:159 msgid "Username" msgstr "Nom d'usuari" #: auth-globalprotect.c:174 msgid "Password" msgstr "Contrasenya" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Desafiament: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "L'inici de sessió GlobalProtect ha retornat el valor d'argument inesperat " "arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Nom d'usuari retornat GlobalProtect %s=%s (esperat %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "El nom d'usuari retornat GlobalProtect està buit o s'ha perdut %s\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Nom d'usuari retornat GlobalProtect %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Informeu dels %d valors inesperats anteriors (dels quals %d fatals) a " "\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Seleccioneu passarel·la Globalprotect." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "PASSAREL·LA:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "S'està ignorant l'interval de l'informe HIP del portal (%d minuts), perquè " "l'interval ja està establert a %d minuts.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "El portal estableix l'interval de l'informe HIP a %d minuts).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d servidors de passarel·la disponibles:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" "La configuració del portal GlobalProtect no llista cap servidor de " "passarel·la.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" "Error en generar el codi de testimoni OTP; s'està inhabilitant el testimoni\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "El servidor no és ni un portal GlobalProtect ni una passarel·la.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "S'està ignorant l'element desconegut «%s» enviat pel formulari\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "S'està ignorant el tipus d'entrada desconeguda «%s» al formulari\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "S'està descartant l'opció duplicada «%s»\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "No es pot gestionar el mètode = «%s» al formulari, acció = «%s»\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Camp desconegut d'àrea de text: «%s»\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Error en assignar memòria per a comunicar-se amb TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Error en enviar l'ordre d'inici a TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "El suport TNCC no està implementat encara en Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Sense la galeta DSPREAUTH; no s'intentarà TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Error en executar el script TNCC %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "S'ha enviat l'inici; espereu la resposta des de TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Error en llegir la resposta des de TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "S'ha rebut la resposta incorrecta %s des de TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "Resposta TNCC 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Segona línia de la resposta TNCC: «%s»\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "S'ha obtingut la nova galeta DSPREAUTH des de TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "S'ha obtingut un interval de reautenticació de TNCC: %d segons\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "Línia no buida inesperada de TNCC després de la galeta DSPREAUTH: «%s»\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Massa línies no buides de TNCC després de la galeta DSPREAUTH\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Error en analitzar el document d'HTML\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Error en trobar o analitzar el formulari web a la pàgina d'accés\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "S'està bolcant el formulari HTML desconegut:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "El formulari triat no té nom\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "nom %s sense entrada\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Formulari sense tipus d'entrada\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Formulari sense nom d'entrada\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipus d'entrada desconegut %s al formulari\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Resposta buida des del servidor\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Error en analitzar la resposta del servidor\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "La resposta ha estat: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "S'ha rebut quan no s'esperava.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "La resposta XML no té el node «auth»\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "S'ha preguntat per la contrasenya però està configurat «--no-passwd»\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "No s'està descarregant el perfil XML, ja que SHA1 concorda realment\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Error en obrir la connexió HTTPS amb %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Error en enviar una sol·licitud GET per una configuració nova\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "El fitxer de configuració descarregat no concorda amb la SHA1 desitjada\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Perfil XML nou descarregat\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Error: L'execució del cavall de Troia «Cisco Secure Desktop» no està " "implementada encara.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "No s'ha pogut establir el gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "No s'han pogut establir els grups a %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "No s'ha pogut establir l'uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Usuari no vàlid uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Error en canviar al directori d'inici CSD «%s»: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Error: El servidor us ha preguntat per a executar l'escàner d'amfitrions " "CSD.\n" "Cal que proporcioneu un argument «--csd-wrapper» adequat.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: El servidor us ha preguntat per a descarregar i executar el cavall de " "Troia «Cisco Secure Desktop».\n" "Aquesta opció està desactivada per defecte per raons de seguretat, però " "podeu habilitar-la.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "El directori temporal «%s» no té permisos d'escriptura: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Error en obrir temporalment el fitxer script CSD: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Error en escriure temporalment al fitxer script CSD: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "El script CSD «%s» ha acabat de forma anòmala\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "El script CSD «%s» ha retornat un estat diferent de zero: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Pot fallar l'autenticació. Si el vostre script no torna zero, corregiu-lo.\n" "Les versions futures d'openconnect s'aturaran amb aquest error.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "AVÍS: Esteu executant codi no segur CSD amb privilegis d'administrador\n" "\t Utilitzeu l'opció de la línia d'ordres «--csd-user»\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Error en executar el script CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Resposta desconeguda des del servidor\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "El servidor ha demanat el certificat de client SSL després que el primer fou " "enviat\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "El servidor ha demanat el certificat de client SSL; cap certificat ha estat " "configurat\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "POST XML habilitat\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "No s'ha pogut obtenir el stub del CSD. S'està procedint de totes maneres amb " "l'script d'embolcall del CSD.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "S'està refrescant %s després d'1 segon...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(Error 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Error mentre es descrivia l'error!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ERROR: No es poden inicialitzar els sòcols\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "ERROR CRÍTIC: el secret mestre DTLS no està inicialitzat. Informeu-ne.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Error mentre es crea la sol·licitud CONNEXIÓ HTTPS\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Error en recollir la resposta HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Servei VPN no disponible; motiu: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "S'ha obtingut la resposta inapropiada CONNEXIÓ HTTP: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "S'ha obtingut la resposta CONNEXIÓ: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "No hi ha memòria per a les opcions\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID no són 64 caràcters; són: «%s»\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID és no vàlid; és: «%s»\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Desconegut DTLS-Content-Encoding %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Desconegut CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Cap MTU rebut. S'està avortant\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connectat. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "La configuració de la compressió ha fallat\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "L'assignació de la memòria intermèdia de desinflat ha fallat\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "la inflació ha fallat\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "La descompressió LZS ha fallat: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "La descompressió LZ4 ha fallat\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipus de compressió desconegut %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "S'han rebut %s paquets de dades comprimides de %d bytes (eren %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "la deflació ha fallat %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Paquet gran inesperat. SSL_read mostra %d però el paquet és\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "S'ha rebut la petició DPD CSTP\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "S'ha rebut la resposta DPD CSTP\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "S'ha rebut Keepalive CSTP\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "S'ha rebut paquet de dades descomprimides de %d bytes\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "S'ha rebut una desconnexió del servidor: %02x «%s»\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "S'ha rebut una desconnexió del servidor\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "S'ha rebut paquet comprimit! Mode desinflat\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "s'ha rebut el paquet de terminació del servidor\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquet desconegut %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "El detector de parells morts CSTP ha detectat un parell mort!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Reconnexió errònia\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Envia DPD CSTP\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Envia Keepalive CSTP\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "S'està enviant un paquet de dades comprimides de %d bytes (eren %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Envia paquet BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Escriptura incompleta escrivint un paquet BYE\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "S'està intentant autenticar el resum per al servidor intermediari\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "S'està intentant autenticar el resum per al servidor «%s»\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Connexió DTLS intentada amb un FD\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Sense adreça DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "El servidor no ha oferit cap opció de xifrat DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Sense DTLS quan es connecta amb un servidor intermediari\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicialitzades. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" "S'ha rebut un paquet desconegut (longitud %d): %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS aquest: %d, TOS últim: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "S'ha obtingut la petició DPD DTLS\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Error en enviar la resposta DPD. S'esperava desconnexió\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "S'ha obtingut la resposta DPD DTLS\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "S'ha obtingut Keepalive DTLS\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "S'ha rebut paquet DTLS comprimit quan la compressió no està habilitada\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Paquet desconegut DTLS de tipus %02x, longitud %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Envia Keepalive DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Error en enviar la sol·licitud keepalive. S'esperava desconnexió\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "S'està iniciant la detecció de la MTU (min=%d, max=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "S'està enviant la sonda DPD MTU (%u bytes)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "No s'ha pogut enviar la demanda DPD (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Temps massa llarg al bucle de detecció del MTU; s'està assumint la MTU " "negociada.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" "Temps massa llarg al bucle de detecció del MTU; es configura MTU com %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "S'ha rebut un paquet inesperat (%.2x) a la detecció del MTU; s'ignorarà.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "No hi ha cap resposta a la mida %u després de %d intents; declarar que la " "MTU és %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "No s'ha pogut rebre la demanda DPD (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Rebuda la sonda DPD MTU (%u bytes)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "S'ha detectat MTU de %d bytes (era %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Cap canvi al MTU després de la detecció (era %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "S'està acceptant el paquet esperat ESP amb seqüència %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "S'està acceptant el paquet ESP més tard del que s'esperava amb seqüència %u " "(s'esperava %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "S'està descartant el paquet antic ESP amb seqüència %u (s'esperava " "%)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "S'està tolerant el paquet antic ESP amb seqüència %u (s'esperava %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "S'està descartant el paquet repetit ESP amb seqüència %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "S'està tolerant el paquet repetit ESP amb seqüència %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "S'està acceptant el paquet ESP fora de rang amb seqüència %u (s'esperava " "%)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Paràmetres per a ESP %s: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Xifrat ESP del tipus %s clau 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Autenticació ESP del tipus %s clau 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "entrant" #: esp.c:94 msgid "outgoing" msgstr "sortint" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Envia sondejos ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "S'ha rebut paquet ESP amb un antic SPI 0x%x, amb seqüència %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "S'ha rebut paquet ESP amb no vàlida SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Longitud de farciment %02x no reconeguda en ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de farciment no vàlids en ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Sessió ESP establerta amb el servidor\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Error en assignar memòria per a desxifrar el paquet ESP\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Error en la descompressió LZO del paquet ESP\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "Descompressió LZO de %d bytes dintre %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Reclau no implementada per a ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP ha detectat parell mort\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Envia sondejos ESP a DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive no està implementat per a ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "S'està tornant a posar en cua l'enviament ESP que ha fallat: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Error en enviar el paquet ESP: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "No s'han pogut generar claus aleatòries per a ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "No s'ha pogut generar el IV inicial per a ESP\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "El temps d'espera és %d minuts.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Posposa la reactivació de DTLS fins que CSTP generi un PSK \n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Error en generar la cadena de prioritat DTLS\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Error en establir la prioritat DTLS: «%s»: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Error en assignar credencials: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Error en generar la clau DTLS: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Error en establir la clau DTLS: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Error en establir les credencials PSK DTLS: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Paràmetres DTLS desconeguts en l'entorn de xifrat demanat «%s»\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Error en establir els paràmetres de la sessió DTLS: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS utilitzat per %d ClientHello bytes aleatoris; això mai hauria de " "passar\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS ha enviat un ClientHello aleatori. Actualitzeu a la 3.6.13 o més " "recent.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Error en inicialitzar DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Parell MTU %d massa petit per a permetre DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "MTU DTLS reduït a %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Ha fallat la continuació de la sessió DTLS; possible atac MITM. S'està " "inhabilitant DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Error en establir MTU DTLS: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Establerta la connexió DTLS (usant GnuTLS). Entorn de xifrat %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compressió de connexió DTLS usant %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "L'encaixada DTLS ha expirat\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Error d'encaixat DTLS: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Un tallafoc impedeix que envieu paquets UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Error en inicialitzar el xifrat de ESP: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Error en inicialitzar HMAC ESP: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Error en calcular HMAC per al paquet ESP: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "S'ha rebut el paquet ESP amb una HMAC no vàlida\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "El desxifrat del paquet ESP ha fallat: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Error en xifrar el paquet ESP: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Ha fallat select() per TLS" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "No es pot extraure la data de caducitat del certificat\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "El certificat ha caducat a" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "El certificat del client caducarà aviat a" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Error en carregar l'element «%s» del magatzem de claus: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Error en obrir el fitxer %s de clau/certificat: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Error en fer «stat» al fitxer %s de clau/certificat: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Error en assignar la memòria intermèdia del certificat\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Error en llegir el certificat dins la memòria: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Error en configurar l'estructura de dades PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Error en desxifrar el certificat del fitxer PKCS#12\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Introduïu la contrasenya PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Error en processar el fitxer PKCS#12: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Error en carregar el certificat PKCS#12: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "No es pot inicialitzar el resum MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Error al resum MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "S'ha perdut DEK-Info: capçalera de la clau xifrada d'OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "No es pot determinar el tipus de xifrat PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipus de xifrat PEM no suportat: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Sal no vàlida al fitxer PEM xifrat\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error de base64 en descodificar el fitxer PEM xifrat: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Fitxer PEM xifrat massa curt\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Error en inicialitzar el xifrat per a desxifrar el fitxer PEM: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Error en desxifrar la clau PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "El desxifrat de la clau PEM ha fallat\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Introduïu la contrasenya PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Aquest binari està muntat sense suport de claus de sistema\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Aquest binari està muntat sense suport de PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "S'està utilitzant el certificat %s PKCS#11\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "S'està usant el certificat de sistema %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error en carregar el certificat de PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Error en carregar el certificat de sistema: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "S'està usant el certificat del fitxer %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "El fitxer PKCS#11 no conté cap certificat\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "No s'ha trobat cap certificat al fitxer" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "La càrrega del certificat ha fallat: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "S'està usant la clau de sistema %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error en inicialitzar l'estructura de la clau privada: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Error en importar la clau de sistema %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "S'està intentant PKCS#11 de clau URL %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error inicialitzant PKCS#11 d'estructura de clau: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error en importar PKCS#11 URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "S'està usant PKCS#11 clau %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Error en importar clau PKCS#11 dins de l'estructura de clau privada: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "S'està usant el fitxer de clau privada %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport de TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport de TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Error en interpretar el fitxer PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Error en carregar la clau privada PKCS#1: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Error en carregar la clau privada com PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Error en desxifrar el fitxer del certificat PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Error en determinar el tipus de clau privada %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Introduïu la contrasenya PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Error en obtenir la identificació de la clau: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error de dades de la prova de signatura amb la clau privada: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error en validar la signatura del certificat: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "No s'ha trobat cap certificat SSL que concordi amb la clau privada\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "S'està usant el certificat del client «%s»\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Error en assignar memòria per al certificat\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "No s'ha obtingut l'emissor de PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "S'ha obtingut el següent CA «%s» de PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Error en assignar memòria per als certificats suportats\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "S'està afegint el suport CA «%s»\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "La importació del certificat X509 ha fallat: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "La configuració del certificat PKCS#11 ha fallat: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" "La configuració de la llista de recuperació del certificat ha fallat: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "La clau privada sembla no suportar RSA-PSS. S'està inhabilitant TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "La configuració del certificat ha fallat: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "El servidor no ha presentat cap certificat\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "S'ha produït un error quan s'estava comparant el certificat del servidor a " "la reencaixada: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "El servidor ha presentat un certificat diferent a la reencaixada\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "El servidor ha presentat un certificat idèntic a la reencaixada\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Error en inicialitzar l'estructura de certificat X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Error en importar el certificat del servidor\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "No es pot calcular el resum del certificat del servidor\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Error en comprovar l'estat del certificat del servidor\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certificat revocat" #: gnutls.c:2098 msgid "signer not found" msgstr "signant no trobat" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "signant sense certificat CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "algoritme insegur" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certificat no activat encara" #: gnutls.c:2106 msgid "certificate expired" msgstr "certificat expirat" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "la verificació de la signatura ha fallat" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "el certificat no concorda amb el nom de l'amfitrió" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "La verificació del certificat el servidor ha fallat: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Error en assignar memòria per al certificat de fitxer CA\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Error en llegir certificats del fitxer CA: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Error en obrir el fitxer CA «%s»: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "La càrrega del certificat ha fallat. S'està avortant.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "No s'ha pogut establir la cadena de prioritat GnuTLS («%s»): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociació SSL amb %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Connexió SSL cancel·lada\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Connexió SSL fallada: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS retorna no fatal durant la reencaixada: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Connectat a HTTPS a %s amb ciphersuite %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "SSL renegociat a %s amb ciphersuite %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Cal PIN en %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "PIN incorrecte" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Aquest és l'últim intent abans de bloquejar-ho!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Només alguns intents abans de bloquejar-ho!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Introduïu el PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritme HMAC OATH no suportat\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Error en calcular HMAC OATH: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Establerta sessió EAP-TTLS\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "La funció de signatura TPM ha cridat a %d bytes.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Error en crear l'objecte resum TPM: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Error en configurar el valor en l'objecte resum TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "La signatura resum TPM ha fallat: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error en descodificar la bombolla clau TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Error en la bombolla clau TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Errada per a crear el context TPM: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Errada per a connectar el context TPM: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Errada per a carregar la clau SRK TPM: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Errada per a carregar l'objecte de política SRK TPM: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Errada per a configurar PIN TPM: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Errada per a carregar la bombolla de clau TPM: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Introduïu el PIN SRK TPM:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Errada per a crear l'objecte de política clau: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Errada per a assignar la política a la clau: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Introduïu la clau PIN de TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Errada per a configurar la clau PIN: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Resum TPM2 EC desconegut de mida %d:\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Error en descodificar la bombolla clau TSS2: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Error en crear el tipus ASN.1 per a TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Errada per a descodificar la clau TPM2 ASN.1: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Error en analitzar el tipus de clau TPM2 OID: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "La clau TPM2 té un tipus desconegut OID %s no %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Errada per a analitzar la clau TPM2 pare: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Error en analitzar l'element TPM2 de la clau pública\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Error en analitzar l'element TPM2 de la clau privada\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "S'ha analitzat la clau TPM2 amb pare %x, autenticació buida %d \n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Resum TPM2 massa gran: %d > %d \n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "Contrasenya TPM2 massa gran; s'està tallant\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "propietari" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "nul" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "suport" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "plataforma" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "S'està creant la clau primària sota la jerarquia %s. \n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Introduïu la contrasenya de jerarquia %s TPM2:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Ha fallat Esys_TR_SetAuth TPM2 : 0x%x \n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Ha fallat l'autenticació del propietari Esys_CreatePrimary TPM2 \n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Ha fallat Esys_CreatePrimary TPM2: 0x%x \n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Connexió establida amb TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "Ha fallat Esys_Initialize TPM2: 0x%x \n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 es va iniciar per això hi ha un fals positiu en la fallada de registre " "tpm2tss. \n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" "Ha fallat Esys_Startup TPM2: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Ha fallat Esys_TR_FromTPMPublic per a gestionar 0x%x: 0x%x \n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Introduïu la contrasenya de la clau pare TPM2:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "S'està carregant la bombolla clau TPM2, pare %x. \n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "Ha fallat l'autenticació Esys_Load TPM2\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" "Ha fallat Esys_Load TPM2: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "Ha fallat Esys_FlushContext TPM2 per al primari generat: 0x%x \n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Introduïu la contrasenya TPM2:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Ha fallat l'autenticació Esys_RSA_Decrypt TPM2\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" "TPM2 ha fallat en generar la signatura RSA: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "La funció de signatura TPM2 EC ha cridat a %d bytes.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Ha fallat l'autenticació Esys_Sign TPM2 \n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Gestor pare TPM2 no vàlid 0x%08x \n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Error en importar les dades de la clau privada TPM2: 0x%x \n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" "Errada per a importar les dades de la clau pública TPM2: 0x%x \n" "\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" "Tipus de clau TPM2 no suportat %d \n" "\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "L'operació TPM2 %s ha fallat (%d): %s%s%s \n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Desafiament: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Camí al túnel SSL no estàndard: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "El temps d'espera del túnel (interval de reclau) és %d minuts.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "L'adreça de la passarel·la al fitxer de configuració XML (%s) difereix de " "l'adreça de la passarel·la externa (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "La configuració GlobalProtect ha enviat ipsec-mode=%s (s'esperava esp-" "tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "S'estan ignorant les claus ESP mentre el suport ESP no estigui disponible " "per a aquest muntatge\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Etiqueta de configuració de GlobalProtect desconeguda <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP Inhabilitat" #: gpst.c:661 msgid "No ESP keys received" msgstr "No s'han rebut claus ESP" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "El suport a ESP no està disponible en aquesta compilació" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Cap MTU rebut. Calculat %d per a %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "S'està connectant al final del túnel HTTPS...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Error en recollir la resposta del túnel-GET HTTPS.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" "Passarel·la desconnectada immediatament després de la petició GET-túnel.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "AVÍS: El servidor ens ha demanat que presentem un informe HIP amb el md5sum " "%s.\n" " La connectivitat VPN pot ser inhabilitada o limitada sense la tramesa " "d'informe HIP.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "No obstant això, encara no s'ha implementat l'execució de l'script de " "tramesa de l'informe HIP en aquesta plataforma." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Heu de proporcionar un argument --csd-wrapper amb l'script de tramesa de " "l'informe HIP." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Error: L'execució del script «informe HIP» no està implementada encara en " "aquesta plataforma.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "El script HIP «%s» ha acabat de forma anòmala\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "El script HIP «%s» ha retornat l'error no-zero: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "L'enviament de l'informe HIP ha fallat.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "L'enviament de l'informe HIP ha estat un èxit.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Error en executar el script HIP %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "La passarel·la diu que l'enviament de l'informe HIP és necessari.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "La passarel·la diu que l'enviament de l'informe HIP no és necessari.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" "El túnel ESP està connectat; s'està sortint del bucle principal HTTPS.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Error en connectar el túnel ESP;s'està usant al seu lloc HTTPS.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Error de recepció de paquets: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Paquet gran inesperat. SSL_read mostra %d (inclou capçalera de 16 bytes) " "però payload_len de la capçalera és %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "S'ha rebut la resposta GPST DPD/keepalive.\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "S'esperava 0000000000000000 als darrers 8 bytes de la capçalera del paquet " "DPD/keepalive però teniu: \n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "S'ha rebut un paquet de dades IPv%d de %d bytes\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "S'esperava 0100000000000000 als darrers 8 bytes de la capçalera del paquet " "de dades però teniu: \n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Paquet desconegut. Segueix el bolcat de la capçalera:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "Propera comprovació HIP de GlobalProtect\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "Ha fallat la comprovació o l'informe HIP\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "Venciment de la reclau GlobalProtect\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "El detector de parells morts GPST ha detectat un parell mort!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Envia petició GPST DPD/keepalive\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "S'està enviant el paquet de dades IPv%d de %d bytes\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Ha fallat en enviar la sonda ESP\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Error en importar el nom GSSAPI per autenticació:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Error en generar la resposta GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "S'està intentant l'autenticació GSSAPI al servidor intermediari\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "S'està intentant l'autenticació GSSAPI al servidor «%s»\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Autenticació GSSAPI completada\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Testimoni GSSAPI massa gran (%zd bytes)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "S'està enviant el testimoni GSSAPI de %zu bytes\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Errada per a enviar el testimoni de l'autenticació GSSAPI al servidor " "intermediari: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Errada per a rebre el testimoni de l'autenticació GSSAPI del servidor " "intermediari: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "El servidor SOCKS ha informat de context GSSAPI erroni\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta d'estat GSSAPI desconeguda (0x%02x) del servidor SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "S'ha obtingut el testimoni GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "S'està enviant protecció GSSAPI en la negociació de %zu bytes\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" "Errada per a enviar la resposta de protecció GSSAPI al servidor " "intermediari: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" "Errada per a rebre la resposta de protecció GSSAPI del servidor " "intermediari: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "S'ha obtingut la resposta de protecció GSSAPI de %zu bytes: %02x %02x %02x " "%02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" "Resposta de protecció GSSAPI no vàlida del servidor intermediari (%zu " "bytes)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Servidor intermediari SOCKS demana la integritat del missatge, que no està " "suportada\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "Servidor intermediari SOCKS demana la confidencialitat del missatge, que no " "està suportada\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" "Servidor intermediari SOCKS demana la protecció del tipus desconegut 0x" "%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "S'està intentant l'autenticació bàsica HTTP al servidor intermediari\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "S'està intentant l'autenticació bàsica HTTP al servidor «%s»\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "S'està intentant l'autenticació del portador HTTP al servidor «%s»\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "El servidor intermediari ha demanat autenticació bàsica que està " "inhabilitada per defecte\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "El servidor «%s» ha demanat per autenticació bàsica que està inhabilitada " "per defecte\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "No hi ha més mètodes d'autenticació per a provar\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "No hi ha memòria per a assignar galetes\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "S'ha produït un error en llegir la resposta HTTP: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Error per a analitzar la resposta HTTP «%s»\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "S'ha obtingut la resposta HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "S'està ignorant la resposta HTTP desconeguda de línia «%s»\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Galeta oferida no vàlida: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "L'autenticació del certificat SSL ha fallat\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "La resposta del cos té una mida negativa (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificació de transferència desconeguda: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Cos HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Error en llegir el cos de la resposta HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Error en recollir un fragment de capçalera\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "La longitud del tros HTTP és negativa (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "La longitud del tros HTTP és massa gran (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Error en recollir el cos de la resposta HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "No es pot rebre el cos HTTP 1.0 sense tancar la connexió\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Error per a analitzar la redirecció URL «%s»: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "No es pot seguir la redirecció a l'URL no https «%s»\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "S'està assignant el nou camí per la redirecció relativa errònia: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "Sòcol HTTPS tancat pel parell; s'està reobrint\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "S'està reintentant la sol·licitud %s fallada en una connexió nova\n" #: http.c:1002 msgid "request granted" msgstr "petició concedida" #: http.c:1003 msgid "general failure" msgstr "errada general" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "connexió no permesa per configurador de regles" #: http.c:1005 msgid "network unreachable" msgstr "xarxa no disponible" #: http.c:1006 msgid "host unreachable" msgstr "servidor no disponible" #: http.c:1007 msgid "connection refused by destination host" msgstr "connexió rebutjada pel servidor de destí" #: http.c:1008 msgid "TTL expired" msgstr "TTL caducada" #: http.c:1009 msgid "command not supported / protocol error" msgstr "ordre no suportada / error de protocol" #: http.c:1010 msgid "address type not supported" msgstr "tipus d'adreça no suportada" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "Servidor SOCKS ha preguntat per nom d'usuari / contrasenya però no n'hi ha\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "El nom d'usuari i la contrasenya per a l'autenticació SOCKS cal que sigui < " "255 bytes\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Error en escriure la sol·licitud d'autenticació per al servidor intermediari " "SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Error en llegir la resposta de l'autenticació per al servidor intermediari " "SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Resposta d'autenticació desconeguda del servidor intermediari SOCKS: %02x " "%02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticat al servidor SOCKS utilitzant la contrasenya\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Contrasenya d'autenticació al servidor SOCKS errònia\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "El servidor SOCKS ha preguntat per autenticació GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "El servidor SOCKS ha preguntat per autenticació de contrasenya\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "El servidor SOCKS demana autenticació\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" "El servidor SOCKS ha demanat per autenticació del tipus desconegut %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" "S'està sol·licitant connexió al servidor intermediari SOCKS per %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Error en escriure la sol·licitud de connexió al servidor intermediari SOCKS: " "%s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Error en llegir la resposta de connexió al servidor intermediari SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Resposta de connexió inesperada al servidor intermediari SOCKS:%02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Error al servidor intermediari SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Error al servidor intermediari SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipus d'adreça inesperada %02x a la resposta de connexió SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" "S'està sol·licitant la connexió al servidor intermediari HTTP per %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "L'enviament de la sol·licitud al servidor intermediari ha fallat: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "La sol·licitud de CONNEXIÓ al servidor intermediari ha fallat: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipus de servidor intermediari desconegut «%s»\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Ha fallat l'anàlisi del servidor intermediari «%s»\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Sols estan suportats http o servidors intermediaris socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect o openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatible amb VPN SSL Cisco AnyConnect així com amb ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Compatible amb Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatible amb Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Compatible amb VPN SSL segura Pulse Connect" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protocol VPN desconegut «%s»\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Muntatge de la biblioteca SSL sense suport DTLS Cisco\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Cap adreça IP rebuda. S'està avortant\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Torneu a connectar i doneu una adreça IP antiga diferent (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Torneu a connectar i doneu una màscara de xarxa IP antiga diferent (%s != " "%s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Torneu a connectar i doneu una adreça IPv6 diferent (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "Torneu a connectar i doneu una màscara de xarxa IPv6 diferent (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "S'ha rebut la configuració IPv6 però MTU %d és massa petit.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Error en analitzar el servidor URL «%s»\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Sols està permès https:// per a l'URL del servidor\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Suma del certificat desconeguda: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "La mida de l'empremta digital proporcionada és menor que el mínim requerit " "(%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Sense formulari gestor; no es pot autenticar.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() ha fallat: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Error fatal en la gestió de la línia d'ordres\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() ha fallat: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() ha fallat: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Error en convertir l'entrada de consola: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Assignació errònia de la cadena de l'entrada estàndard\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Per assistència amb OpenConnect, consulteu la pàgina web a\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "S'està utilitzant %s. Característiques presents:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "L'OpenSSL ENGINE no està present" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "AVÍS: Sense suport DTLS i/o ESP en aquest binari. Es veurà perjudicat el " "rendiment.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Protocols suportats:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (per defecte)" #: main.c:743 msgid "Set VPN protocol" msgstr "Estableix el protocol VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "No es pot processar aquest camí executable «%s»" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "L'assignació del camí per a vpnc-script ha fallat\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Sobreescriu el nom de l'ordinador de «%s» a «%s»\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Ús: openconnect [opcions] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Client obert per a múltiples protocols VPN, versió %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Llegeix les opcions del fitxer de configuració" #: main.c:914 msgid "Report version number" msgstr "Informa del nombre de versió" #: main.c:915 msgid "Display help text" msgstr "Mostra text d'ajuda" #: main.c:919 msgid "Authentication" msgstr "Autentificació" #: main.c:920 msgid "Set login username" msgstr "Configura el nom d'usuari d'entrada" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Inhabilita l'autenticació de la contrasenya/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "No esperis entrada de l'usuari; surt si aquesta és requerida" #: main.c:923 msgid "Read password from standard input" msgstr "Llegeix la contrasenya de l'entrada estàndard" #: main.c:924 msgid "Choose authentication login selection" msgstr "Trieu la selecció d'autenticació de l'entrada de sessió" #: main.c:925 msgid "Provide authentication form responses" msgstr "Proporciona respostes a formularis d'autenticació" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Usa el certificat CERT del client SSL" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Usa la clau privada SSL al fitxer KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisa quan la vida del certificat < DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "Configura l'entrada del grup d'usuaris" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Configura la contrasenya de la clau o PIN SRK TPM" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "La contrasenya de la clau és fsid del sistema de fitxers" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Tipus de testimoni de programari: rsa, totp, hotp o oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Testimoni de programari secret o testimoni oidc" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libstoken (RSA SecurID) inhabilitada en aquest muntatge)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey OATH inhabilitada en aquest muntatge)" #: main.c:941 msgid "Server validation" msgstr "Validació del servidor" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "Accepta només el certificat del servidor amb aquesta empremta digital" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Inhabilita per defecte els certificats d'autoritats del sistema" #: main.c:944 msgid "Cert file for server verification" msgstr "Fitxer CERT per la verificació del servidor" #: main.c:946 msgid "Internet connectivity" msgstr "Connectivitat d'Internet" #: main.c:947 msgid "Set VPN server" msgstr "Configura el servidor VPN" #: main.c:948 msgid "Set proxy server" msgstr "Configura el servidor intermediari" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Configura els mètodes d'autenticació del servidor intermediari" #: main.c:950 msgid "Disable proxy" msgstr "Inhabilita el servidor intermediari" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" "Utilitza libproxy per a configurar de forma automàtica el servidor " "intermediari" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy inhabilitat en aquest muntatge)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Temps d'espera en segons per a reintentar la connexió" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Usa la IP quan et connectis a HOST" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Copia el camp TOS / TCLASS als paquets DTLS i ESP" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Configura el port per als datagrames DTLS i ESP" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Autenticació (dues fases)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Usa galeta d'autenticació COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Llegeix la galeta de l'entrada estàndard" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Autentica sols i imprimeix la informació de l'entrada de sessió" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Sols obteniu i imprimiu la galeta; no connecteu" #: main.c:965 msgid "Print cookie before connecting" msgstr "Imprimiu la galeta abans de connectar-vos" #: main.c:968 msgid "Process control" msgstr "Control de procés" #: main.c:969 msgid "Continue in background after startup" msgstr "Continua al fons després de l'inici" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Escriu els PID dels dimonis per aquest fitxer" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Descarta els privilegis després de la connexió" #: main.c:974 msgid "Logging (two-phase)" msgstr "Registre (dues fases)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Usa registres de sistema per al progrés dels missatges" #: main.c:978 msgid "More output" msgstr "Més sortida" #: main.c:979 msgid "Less output" msgstr "Menys sortida" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Bolca el trànsit d'autenticació HTTP (implica --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Avantposa la marca horària per al progrés dels missatges" #: main.c:983 msgid "VPN configuration script" msgstr "Script de configuració VPN" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Usa IFNAME per la interfície de túnel" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Terminal de la línia d'ordres per a utilitzar un vpnc compatible amb el " "script de configuració" #: main.c:986 msgid "default" msgstr "per defecte" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Passa el trànsit a l'«script» del programa, no al controlador de xarxa" #: main.c:991 msgid "Tunnel control" msgstr "Control del túnel" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "No pregunteu per la connectivitat IPv6" #: main.c:993 msgid "XML config file" msgstr "Fitxer de configuració XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Demana del MTU al servidor (sols servidors antics)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indica el camí MTU a / des del servidor" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Habilita la compressió amb estat (per defecte és sols sense estat)" #: main.c:997 msgid "Disable all compression" msgstr "Inhabilita tota la compressió" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Requereix una confidencialitat de redirecció perfecta" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Inhabilita DTLS i ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Xifrat OpenSSL per a suportar a DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Configura el límit de la cua del paquet a LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "Informació del sistema local" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Capçalera HTTP de l'usuari-agent: camp" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Nom d'amfitrió local per a publicitar al servidor" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "cadena de versió informada durant l'autenticació" #: main.c:1010 msgid "default:" msgstr "per defecte:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Execució (CSD) del binari troià" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Descarta els privilegis durant l'execució del troià" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Executa SCRIPT en lloc de binari troià" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Errors de programari del servidor" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Inhabilita la reutilització de la connexió HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "No intentis l'autenticació POST XML" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Error en assignar la cadena\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Error en obtenir la línia del fitxer de configuració: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opció no reconeguda a la línia %d: «%s»\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "L'opció «%s» no té argument a la línia %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "L'opció «%s» requereix un argument a la línia %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Usuari no vàlid «%s»: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID d'usuari no vàlid «%d»: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "Autocompleció no gestionada per a l'opció %d «--%s». Informeu-ne.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "connectat" #: main.c:1507 msgid "disconnected" msgstr "desconnectat" #: main.c:1511 msgid "unsuccessful" msgstr "sense èxit" #: main.c:1516 msgid "in progress" msgstr "en progrés" #: main.c:1519 msgid "disabled" msgstr "inhabilitat" #: main.c:1525 msgid "established" msgstr "establert" #: main.c:1528 msgid "unknown" msgstr "desconegut" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Errada per a obrir «%s» per a escriure: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "S'està continuant al fons; PID %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "AVÍS: No es pot configurar la localització: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "AVÍS: Aquesta versió d'openconnect ha estat muntada sense suport\n" " per iconv però sembla que esteu utilitzant un caràcter antic\n" " establert com a «%s». S'esperen coses estranyes.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "AVÍS: Aquesta versió d'openconnect és %s però\n" " la biblioteca libopenconnect és %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Error en assignar l'estructura vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "No es pot utilitzar l'opció «config» dins del fitxer de configuració\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "No es pot obrir el fitxer de configuració «%s»: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Mode de compressió no vàlid «%s»\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "No s'ha pogut assignar memòria\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Falten els dos punts a l'opció resolve\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d massa petit\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Deshabiliteu la reutilització de totes les connexions HTTP degut a \n" "l'opció --no-http-keepalive. Si això ajuda, informeu .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "L'opció --no-cert-check era no segura i ha estat suprimida.\n" "Fixeu els vostres certificats dels servidors o useu --servercert per a " "confiar-hi.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Longitud de cua zero no permesa; s'està usant 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Versió d'OpenConnect %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Mode de testimoni de programari «%s» no vàlid\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "AVÍS: Heu especificat %s. Això no hauria de ser\n" " necessari; informeu dels casos en què una substitució de cadena\n" " prioritària és necessària per a connectar amb un servidor\n" " a .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Massa arguments a la línia d'ordres\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "No heu especificat servidor\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Aquesta versió d'openconnect ha estat muntada sense suport per libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "La creació de la connexió SSL ha fallat\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "La configuració de UDP ha fallat; s'està usant SSL al seu lloc\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Cap argument --script proporcionat; DNS i encaminament no estan configurats\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Consulteu https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Torna a connectar la sol·licitud de l'usuari\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sessió acabada pel servidor; s'està sortint.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Error desconegut; s'està sortint.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Error per a obrir %s per a escriure: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Error en escriure a config %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "El certificat del servidor VPN «%s» ha fallat la verificació.\n" "Motiu: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Per a confiar en aquest servidor en el futur, potser afegiu això a la línia " "d'ordres:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Introduïu «%s» per a acceptar, «%s» per a avortar; qualsevol altra cosa per " "a veure: " #: main.c:2464 main.c:2483 msgid "no" msgstr "no" #: main.c:2464 main.c:2470 msgid "yes" msgstr "sí" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Resum de la clau del servidor: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "La tria d'autenticació «%s» concorda amb múltiples opcions\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "La tria d'autenticació «%s» no està disponible\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "L'entrada de l'usuari és requerida en mode no interactiu\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Error en obrir el fitxer testimoni per escriptura: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Error en escriure el testimoni: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "El testimoni tou de la cadena és no vàlid\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "No es pot obrir el fitxer stoken\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "No es pot obrir el fitxer ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect ha sigut muntat sense suport per libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Errada general en libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect ha sigut muntat sense suport per liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Errada general en liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "El testimoni Yubikey no s'ha trobat\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect ha sigut muntat sense suport per Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Errada general en Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "No es pot obrir el fitxer oidc\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Error general al testimoni oidc\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "La configuració del script del controlador de xarxa ha fallat\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "La configuració del dispositiu del controlador de xarxa ha fallat\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "S'està retardant la pausa.\n" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "El cridador ha aturat la connexió\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Sense treball a fer; dormint durant %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects ha fallat: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Ha fallat select() al bucle principal" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() ha fallat: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() ha fallat: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Error en comunicar amb l'ajuda ntlm_auth\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "S'està intentant l'autenticació NTLM HTTP amb el servidor intermediari " "(inici-sessió-única)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "S'està intentant l'autenticació NTLM HTTP amb el servidor «%s» (inici-sessió-" "única)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" "S'està intentant l'autenticació NTLMv%d HTTP amb el servidor intermediari \n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "S'està intentant l'autenticació NTLMv%d HTTP amb el servidor «%s»\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Cadena testimoni de base32 no vàlida\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Error en assignar memòria per a descodificar el secret OATH\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Aquesta versió d'OpenConnect ha estat muntada sense suport PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "D'acord per a generar el codi testimoni INICIAL\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "D'acord per a generar el codi testimoni SEGÜENT\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "El servidor està rebutjant el testimoni tou; s'està canviant a entrada " "manual\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "S'està generant el codi testimoni TOTP OATH\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "S'està generant el codi testimoni HOTP OATH\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Longitud inesperada %d per TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "S'ha rebut MTU %d del servidor\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "S'ha rebut el servidor DNS %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Rebuda la cerca de dominis DNS %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Rebuda l'adreça IP interna %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Rebuda la màscara de xarxa %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Rebuda l'adreça interna de passarel·la %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Rebuda ruta inclosa en la divisió %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Rebut divisió exclosa la ruta %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Rebut el servidor WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Xifrat ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Compressió ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Vida de la clau ESP: %u bytes\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Temps de vida de la clau ESP: %u segons\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP al SSL alternatiu: %u segons\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Protecció de repetició ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "SPI ESP (sortida): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de secrets ESP\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grup TLV desconegut %d attr %d len %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Error en analitzar la capçalera KMP\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Error en analitzar el missatge KMP\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "S'ha obtingut el missatge KMP %d de mida %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Rebuts no-ESP TLVs (grup %d) en la negociació ESP KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Error en crear la sol·licitud de negociació oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Escrit curt en la negociació oNCP\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Llegits %d bytes del registre SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" "Resposta inesperada de mida %d després del paquet de nom de l'amfitrió\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" "La resposta del servidor al paquet de nom de l'amfitrió és l'error 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Això sembla indicar que el servidor ha desactivat la compatibilitat del\n" "protocol oNCP de Juniper i només permet connexions mitjançant\n" "el nou protocol Junos Pulse. Aquesta versió de l'OpenConnect té\n" "compatibilitat experimental amb el Pulse mitjançant --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Paquet no vàlid mentre s'està esperant a KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Esperat el missatge 301 KMP del servidor però s'ha obtingut %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "El missatge 301 de KMP del servidor és massa gran (%d bytes)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "S'ha obtingut el missatge 301 de KMP de mida %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "No s'ha pogut llegir la longitud del registre de continuació\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "El registre de %d bytes addicionals és massa gran; es farà de %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "No s'ha pogut llegir el registre de continuació de longitud %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Llegeix %d bytes addicionals del missatge 301 de KMP\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Error en negociar les claus ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Sol·licitud de negociació oNCP sortint:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "entrada nova" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "sortida nova" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Llegeix sols 1 byte del camp de longitud oNCP\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "La connexió del servidor ha acabat (sessió expirada)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "La connexió del servidor ha acabat (motiu: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "El servidor ha enviat un registre oNCP de longitud zero\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "S'està rebent un missatge %d d'entrada KMP de mida %d (rebut %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "S'està continuant al missatge %d KMP de procés amb mida %d (rebut %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Paquet de dades no reconegudes\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Ha fallat la configuració de l'ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Missatge KMP %d desconegut de mida %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d bytes més sense rebre\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Paquet de sortida:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "S'ha enviat habilitació ESP de control de paquets\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ERROR: %s() cridada amb UTF-8 no vàlida per a l'argument «%s»\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "No es pot calcular la sobrecàrrega DTLS per a %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Error en generar claus aleatòries\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Error en crear ASN.1 SSL_SESSION per a OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL ha fallat en analitzar ASN.1 SSL_SESSION\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "La inicialització de la sessió DTLSv1 ha fallat\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "La mida de l'identificador és massa gran\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Crida de retorn PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "La inicialització de CTX DTLSv1 ha fallat\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "L'establiment de la versió DTLS CTX ha fallat\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Error en generar la clau DTLS\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "La configuració de la llista de xifrat DTLS ha fallat\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "El xifrat DTLS «%s» no es troba\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "Ha fallat SSL_set_session() \n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "Connexió DTLS establerta (utilitza OpenSSL). Ciphersuite %s-%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Això és degut al fet que el vostre OpenSSL està trencat\n" "Consulteu http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "L'encaixada DTLS ha fallat: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Error en inicialitzar el xifrat ESP:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Error en inicialitzar HMAC ESP\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Error en configurar el context de desxifrat per al paquet ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Error en desxifrar el paquet ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Error en xifrar el paquet ESP:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Error en establir el context PKCS#11 libp11:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Error en carregar el mòdul que proporciona PKCS#11 (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN bloquejat\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN caducat\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Un altre usuari està realment connectat\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Error desconegut en registrar-se al testimoni PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Registrat en PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Error en enumerar certificats de PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "S'han trobat %d certificats a la ranura «%s»\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Error en analitzar PKCS#11 URI «%s»\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Error en enumerar les ranures PKCS#11\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "S'està registrant en PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Error en cercar el certificat PKCS#11 «%s»\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Contingut del certificat X.509 no recuperat per libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Error en enumerar les claus al PKCS#11 ranura «%s»\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "S'han trobat %d claus a la ranura «%s»\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "El certificat no té clau pública\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "El certificat no coincideix amb la clau privada\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "S'està comprovant la coincidència de la clau EC amb el certificat\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Error en assignar la memòria intermèdia de la signatura\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Error en signar les dates simulades per a validar la clau EC\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Error en cercar la clau PKCS#11 «%s»\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Aquesta versió d'OpenConnect ha sigut muntada sense suport PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipus %d de sol·licitud UI SSL no gestionat\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Contrasenya PEM massa gran (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "La càrrega de la clau privativa ha fallat\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Error en instal·lar el certificat al context OpenSSL\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert de %s: «%s»\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "L'anàlisi PKCS#12 ha fallat (mireu amunt els errors)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 no conté cap certificat!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 no conté cap clau privada!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "No es pot carregar l'enginy TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Error en iniciar l'enginy TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Error en configurar la contrasenya SRK TPM\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Error en carregar la clau privada TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Error en obrir el fitxer certificat %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "La càrrega del certificat ha fallat\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Error en processar tots els certificats suportats. S'està intentant de tota " "manera...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "Fitxer PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Error en crear BIO per a l'element «%s» del magatzem de claus\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "La càrrega de la clau privada ha fallat (contrasenya dolenta? )\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "La càrrega de la clau privada ha fallat (mireu amunt els errors)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Error en carregar el certificat X509 del magatzem de claus\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Error en obrir el fitxer %s de la clau privativa: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "No s'ha pogut convertir PKCS#8 a OpenSSL EVP_PKEY\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Errada en identificar el tipus de clau privativa en «%s»\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Coincideix el nom alternatiu DNS «%s»\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "No hi ha concordances per al nom alternatiu «%s»\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "El certificat té un nom alternatiu GEN_IPADD amb la longitud amb errors %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Coincideix %s amb l'adreça «%s»\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "No hi ha concordances per l'adreça %s amb «%s»\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI «%s» no té un camí buit; s'està ignorant\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Coincideix URI «%s»\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "No hi ha concordances per URI «%s»\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No hi ha nom alternatiu al certificat parell trobat «%s»\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "No hi ha nom de l'assumpte al certificat del parell!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Error en analitzar el nom de l'assumpte al certificat del parell\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "L'assumpte del certificat del parell no coincideix («%s» != «%s»)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "El nom de l'assumpte del certificat del parell coincideix «%s»\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert del certificat del fitxer: «%s»\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Error al camp notAfter del certificat del client\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "El certificat SSL i la clau no coincideixen\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Error en llegir certificats del fitxer CA «%s»\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Error en obrir el fitxer CA «%s»\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Ha fallat la creació de TLSv1 CTX\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "No s'ha pogut establir la llista de xifratge OpenSSL («%s»)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "La connexió SSL ha fallat\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Error en calcular HMAC OATH\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negociació EAP-TTLS amb %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Ha fallat la connexió EAP-TTLS %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "S'ha rebut l'adreça IP antiga interna %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "No s'ha pogut gestionar l'adreça IPv6\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "S'ha rebut l'adreça IPv6 interna %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "S'ha rebut la inclusió de la divisió IPv6 %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "S'ha rebut l'exclusió de la divisió IPv6 %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Longitud inesperada %d de l'atribut 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Encriptació ESP: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Només ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Es desconeix de l'atribut 0x%x la longitud %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "S'han llegit %d bytes del registre IF-T/TLS\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Escriptura incompleta a IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "S'ha produït un error en crear el paquet IF-T\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "S'ha produït un error en crear el paquet EAP\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "S'ha produït un repte inesperat d'autenticació IF-T/TLS:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Càrrega útil EAP-TTLS inesperada:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Introduïu el domini d'usuari Pulse:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Domini:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Trieu el domini d'usuari Pulse:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "No s'ha pogut analitzar l'AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "S'ha arribat al límit de sessions. Trieu una sessió a finalitzar:\n" #: pulse.c:875 msgid "Session:" msgstr "Sessió:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "No s'ha pogut analitzar la llista de sessions\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Introduïu les credencials secundàries:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Introduïu les credencials de l'usuari:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Nom d'usuari secundari:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Nom d'usuari:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Contrasenya:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Contrasenya secundària:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "La contrasenya ha caducat. Canvieu la contrasenya:" #: pulse.c:1085 msgid "Current password:" msgstr "Contrasenya actual:" #: pulse.c:1090 msgid "New password:" msgstr "Contrasenya nova:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Confirmeu la contrasenya nova:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "No s'han proporcionat contrasenyes.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Les contrasenyes no coincideixen.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "La contrasenya actual és massa llarga.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "La contrasenya nova és massa llarga.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Sol·licitud de codi de testimoni:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Introduïu la resposta:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Introduïu el vostre codi d'accés:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Introduïu la vostra informació de testimoni secundari:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "S'ha produït un error en crear la sol·licitud de connexió Pulse\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Resposta inesperada a la negociació de versió IF-T/TLS:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Versió IF-T/TLS del servidor: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "No s'ha pogut establir la sessió EAP-TTLS\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "AVÍS: El certificat proporcionat pel servidor MD5 no coincideix amb el " "certificat real.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Error d'autenticació: el compte està bloquejat\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Error d'autenticació: Codi 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Valor desconegut de sol·licitud D73 0x%x. Se sol·licitarà tant el nom " "d'usuari com la contrasenya.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Informeu d'aquest valor i del comportament del client oficial.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Error d'autenticació: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "El servidor Pulse ha sol·licitat el comprovador d'amfitrions, que encara no " "és compatible\n" "Proveu el mode Juniper (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "No s'ha gestionat el paquet d'autenticació Pulse o ha fallat l'autenticació\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "No s'ha acceptat la galeta d'autenticació Pulse\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Entrada del domini Pulse\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Opció del domini del Pulse\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Sol·licitud d'autenticació de contrasenya Pulse. Codi 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" "Sol·licitud de contrasenya Pulse amb codi desconegut 0x%02x. Informeu-ne.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Sol·licitud de codi de testimoni general de contrasenya del Pulse\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Límit de sessions del Pulse. %d sessions\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Sol·licitud d'autenticació Pulse no gestionada\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Resposta inesperada en lloc d'autenticació correcta IF-T/TLS:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" "Error EAP-TTLS: s'està esborrant la sortida amb bytes d'entrada pendents\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "S'ha produït un error en crear la memòria intermèdia EAP-TTLS\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "No s'ha pogut llegir el reconeixement EAP-TTLS: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "S'han llegit %d bytes del registre IF-T/TLS EAP-TTLS\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Paquet de reconeixement EAP-TTLS incorrecte\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Paquet EAP-TTLS incorrecte (longitud %d, restant %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Paquet de configuració del Pulse inesperat:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Rep ruta de tipus desconegut 0x%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Paquet de configuració ESP no vàlid:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Configuració ESP no vàlida\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Paquet IF-T/TLS incorrecte esperant la configuració:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "S'ha trobat un paquet IF-T/TLS inesperat esperant la configuració.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "Ha fallat la reclau ESP\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Paquet Pulse desconegut\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "S'està enviant un paquet de dades IF-T/TLS de %d bytes\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descarta la divisió dolenta inclosa: «%s»\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descarta la divisió dolenta exclosa: «%s»\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "Avís: la divisió inclou «%s» té el conjunt de bits de l'amfitrió. S'està " "substituint per «%s/%d».\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "Avís: l'exclusió de la divisió «%s» té el conjunt de bits de l'amfitrió. " "S'està substituint per «%s/%d».\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "S'està ignorant la xarxa antiga perquè l'adreça «%s» no és vàlida.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" "S'està ignorant la xarxa antiga perquè la màscara de xarxa «%s» no és " "vàlida.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Error en engendrar el script «%s» per %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "El script «%s» ha acabat de forma anòmala (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "El script «%s» ha retornat l'error %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Ha fallat select() per a la connexió al sòcol" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "S'ha cancel·lat la connexió del sòcol\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Ha fallat setsockopt(TCP_NODELAY) al sòcol TLS:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "No s'ha pogut tornar a connectar amb el servidor intermediari %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "No s'ha pogut tornar a connectar amb l'amfitrió %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Servidor intermediari de libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo ha fallat per a l'amfitrió «%s»: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "S'està tornant a connectar amb el servidor DynDNS utilitzant l'adreça IP " "amagada prèviament\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "S'està intentant connectar amb el servidor intermediari %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "S'està intentant connectar amb el servidor %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Connectat a %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Error en assignar el magatzem sockaddr\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "No s'ha pogut connectar a %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "S'estan oblidant les adreces parelles prèvies no funcionals\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Error en connectar amb l'amfitrió %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "S'està tornant a connectar amb el servidor intermediari %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "No es pot obtenir la identificació del sistema de fitxers per la " "contrasenya\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Error en obrir el fitxer de clau privada «%s»: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Sense errors" #: ssl.c:727 msgid "Keystore locked" msgstr "Magatzem de claus bloquejat" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Magatzem de claus no inicialitzat" #: ssl.c:729 msgid "System error" msgstr "Error de sistema" #: ssl.c:730 msgid "Protocol error" msgstr "Error de protocol" #: ssl.c:731 msgid "Permission denied" msgstr "Permís denegat" #: ssl.c:732 msgid "Key not found" msgstr "Clau no trobada" #: ssl.c:733 msgid "Value corrupted" msgstr "Valor corrupte" #: ssl.c:734 msgid "Undefined action" msgstr "Acció no definida" #: ssl.c:738 msgid "Wrong password" msgstr "Contrasenya dolenta" #: ssl.c:739 msgid "Unknown error" msgstr "Error desconegut" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Ha fallat select() per al sòcol d'ordres" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Error en obrir %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Errada a fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "El fitxer %s és buit\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Error en assignar %d bytes per %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Error en llegir %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Família %d de protocol desconegut. No es pot crear l'adreça del servidor " "UDP\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Sòcol UDP obert" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Família %d de protocol desconegut. No es pot usar el transport UDP\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Sòcol UDP d'enllaç" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Fa que el sòcol UDP no es bloquegi" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "La galeta no és ja vàlida, s'està acabant la sessió\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormint %ds, temps restant %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Ha fallat select() per a enviar el sòcol" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Ha fallat select() per al sòcol de rebuda" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Testimoni SSPI massa gran (%ld bytes)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "S'està enviant el testimoni SSPI de %lu bytes\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Errada per a enviar el testimoni d'autenticació SSPI al servidor " "intermediari: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Errada per a rebre el testimoni d'autenticació SSPI del servidor " "intermediari: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "El servidor SOCKS ha informat de fallades de context SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta d'estat SSPI desconeguda (0x%02x) del servidor SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "S'ha rebut testimoni SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() ha fallat: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() ha fallat: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "L'EncryptMessage() ha resultat massa gran (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "S'està enviant la negociació de protecció SSPI de %u bytes\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" "Error en enviar la resposta de protecció SSPI al servidor intermediari: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" "Error en rebre la resposta de protecció SSPI del servidor intermediari: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "S'ha rebut la resposta de protecció SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage ha fallat: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" "La resposta de protecció SSPI del servidor intermediari és no vàlida (%lu " "bytes)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" "Introduïu les credencials per a desbloquejar el testimoni del programari." #: stoken.c:107 msgid "Device ID:" msgstr "Identificació del dispositiu:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "L'usuari ha omès el testimoni tou.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Es requereixen tots els camps; torneu-ho a intentar.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Fallada general en libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" "Identificació o contrasenya de dispositiu no correctes; torneu-ho a " "intentar.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "La inicialització del testimoni tou ha sigut un èxit.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Introduïu el PIN del testimoni de programari." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Format de PIN no vàlid; torneu a intentar.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "S'està generant el codi de testimoni RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Error en accedir a la clau de registre per als adaptadors de xarxa\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "No es pot llegir %s\\%s o no és una cadena\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Trobat %s al %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "No es pot obrir la clau de registre %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "No es pot obrir la clau de registre %s\\%s o no és una cadena\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() ha fallat: %s\n" "Alternativament, s'utilitzarà GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() ha fallat: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Error en obrir %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Error en obtenir la versió del controlador TAP: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: El controlador TAP de Windows v9.9 o superior és requerit (s'ha " "trobat %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Error en configurar l'adreça IP TAP: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Error en configurar l'estat del medi TAP: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "El dispositiu TAP ha avortat la connectivitat. S'està desconnectant.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Error en llegir del dispositiu TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Error en completar la lectura des del dispositiu TAP: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escrits %ld bytes al controlador de xarxa\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "S'està esperant l'escriptura del controlador de xarxa...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escrits %ld bytes al controlador de xarxa després d'esperar\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Error en escriure al dispositiu TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "La generació de scripts de túnel no està encara suportat en Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "No es pot obrir /dev/tun per a fer canonades" #: tun.c:92 msgid "Can't push IP" msgstr "No es pot empènyer IP" #: tun.c:102 msgid "Can't set ifname" msgstr "No es pot configurar «ifname»" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "No es pot fer la canonada %s a IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "obre /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Error per a crear un controlador de xarxa nou" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Error en posar el descriptor del fitxer del controlador de xarxa al mode " "descarrega-missatge" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "el dispositiu tun no té suport a aquesta plataforma\n" #: tun.c:205 msgid "open net" msgstr "obre la xarxa" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Error en obrir el dispositiu controlador de xarxa: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" "Error en vincular el dispositiu controlador de xarxa local (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Per a configurar la xarxa local, openconnect cal que sigui executat com a " "root\n" "Consulteu https://www.infradead.org/openconnect/nonroot.html per més " "informació\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nom d'interfície no vàlida «%s»; hauria de coincidir 'utun%%d' o 'tun%%d'\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Error en obrir el sòcol SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Error en consultar la identificació de control «utun»: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Error en assignar el nom al dispositiu «utun»\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Error en connectar la unitat «utun»: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nom d'interfície no vàlida «%s»; hauria de concordar «tun%%d»\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "No es pot obrir «%s»: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "No s'ha pogut fer que el sòcol TUN no bloquegi: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "«socketpair» ha fallat: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "«fork» ha fallat: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Error en escriure al paquet d'entrada: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "S'està tractant l'amfitrió «%s» com un nom d'amfitrió en brut\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Error al fitxer SHA1 que existeix\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 del fitxer de configuració XML: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Error en analitzar el fitxer de configuració XML %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "L'amfitrió «%s» té l'adreça «%s»\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "L'amfitrió «%s» té el grup d'usuari «%s»\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "L'amfitrió «%s» no està llistat al fitxer de configuració; es tractarà com " "un nom d'amfitrió en brut\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Error en enviar «%s» a la miniaplicació ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Resposta curta no vàlida a «%s» de la miniaplicació ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Error en la resposta a «%s»: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "selecciona ordre de la miniaplicació" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Resposta no reconeguda de la miniaplicació ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "S'ha trobat miniaplicació ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN requerit per la miniaplicació OATH Yubikey" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Error en calcular la resposta de desbloqueig Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "ordre de desbloqueig" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "S'està intentant la cadena truncada PBKBF2 variant del PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Error en establir el context PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Establert el context PC/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Error en consultar la llista de lectura: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Error en connectar al lector PC/SC «%s»: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Connectat el lector PC/SC «%s»\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Error en obtenir accés exclusiu al lector «%s»: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "llista d'ordres clau" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "S'ha trobat %s/%s clau «%s» en «%s»\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Testimoni «%s» no trobat en Yubikey «%s». S'està cercant una altra " "Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "El servidor està rebutjant el testimoni Yubikey, s'està canviant a l'entrada " "manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "S'està generant el codi testimoni Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Error en obtenir l'accés exclusiu a Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "ordre calcula" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" "Resposta no reconeguda de Yubikey mentre s'està generant el codi testimoni\n" openconnect-8.20/po/zh_CN.po0000644000076400007640000047106614204456076017535 0ustar00dwoodhoudwoodhou00000000000000# Chinese (China) translation for NetworkManager-openconnect. # Copyright (C) 2009-2018 NetworkManager-openconnect's COPYRIGHT HOLDER # This file is distributed under the same license as the NetworkManager-openconnect package. # weitao , 2009. # Lele Long , 2011. # Dingzhong Chen , 2016, 2018. # msgid "" msgstr "" "Project-Id-Version: NetworkManager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2018-07-07 23:19+0800\n" "Last-Translator: Dingzhong Chen \n" "Language-Team: Chinese (China) \n" "Language: zh_CN\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Gtranslator 2.91.7\n" "Plural-Forms: nplurals=1; plural=0;\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "无效的 cookie \"%s\"\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "来自服务器的非预期 %d 结果\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "分配失败\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "接收到短包(%d 字节)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" "接收到 %d 字节的数据包\n" "\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL 写入的字节过少!请求 %d,已发送 %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP 密钥更新到期\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "重新握手失败;正在尝试新隧道\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "正在发送大小为 %d 字节的未压缩数据包\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "尝试新的 DTLS 连接\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "接收到 %2$d 字节的 DTLS 包 0x%1$02x\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS 密钥更新到期\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS 重新握手失败;正在重连。\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS 失效对等体检测检测到失效!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "发送 DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "发送 DPD 请求失败。需要断开连接\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "已发送 %d 字节的DTLS 包;DTLS 发送返回了 %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "登出失败。\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "登出成功。\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "请输入您的用户名和密码" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "密码" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect 登录返回了 %s=%s(期望的是 %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect 登录返回空值或缺失(期望的是 %s)\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect 登录返回了 %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "请选择 GlobalProtect 网关。" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "网关:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d 个网关服务器可用:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s(%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "生成 OTP 令牌码失败;正在禁用令牌\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "服务器既不是 GlobalProtect 入口(portal)也不是网关。\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "正在忽略未知的表单提交项目 \"%s\"\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "正在忽略未知的表单输入类型 \"%s\"\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "正在丢弃重复的选项 \"%s\"\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "无法处理表单 method=\"%s\"、action=\"%s\"\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "未知的文本区域字段:\"%s\"\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "为与 TNCC 通信而分配内存失败\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "在 Windows 上还未实现对 TNCC 的支持\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "没有 DSPREAUTH cookie;不会尝试 TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "执行 TNCC 脚本 %s 失败:%s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "已发送开始命令;正等待来自 TNCC 的响应\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" "读取来自 TNCC 的响应失败\n" "\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "接收到来自 TNCC 的未成功 %s 响应\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "从 TNCC 得到了新的 DSPREAUTH cookie:%s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" "解析 HTML 文档失败\n" "\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "在登录页面查找或解析网页表单失败\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "正在转储未知的 HTML 表单:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "表单选择没有名字\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "名称 %s 不是输入\n" #: auth.c:195 msgid "No input type in form\n" msgstr "表单中没有输入类型\n" #: auth.c:207 msgid "No input name in form\n" msgstr "表单中没有输入名称\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "表单中有未知的输入类型 %s\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "服务器空响应\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "解析服务器响应失败\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "响应为:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "接收到未预期的 。\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML 响应没有 \"auth\" 节点\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "询问密码,但设定了 \"--no-password\"\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "未在下载 XML 配置文件因为 SHA1 已匹配\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "打开到 %s 的 HTTPS 连接失败\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "发送 GET 请求以获取新配置失败\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "下载的配置文件不匹配预期的 SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "已下载新的 XML 配置文件\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "错误:在此平台上运行 \"Cisco 安全桌面\" 木马的操作还未执行。\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "设定 gid %ld 失败:%s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "设定组为 %ld 失败:%s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "设定 uid %ld 失败:%s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "无效的用户 uid=%ld:%s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "更改为 CSD 主目录 \"%s\" 失败:%s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "错误:服务器要求我们运行 CSD 主机扫描。\n" "你需要提供合适的 --csd-wrapper 参数。\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "错误:服务器要求我们下载并运行 \"思科安全桌面\" 木马。\n" "出于安全原因这个工具被默认禁用,因此你可能希望启用它。\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "临时目录 \"%s\" 不可写入:%s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "打开临时 CSD 脚本文件失败:%s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "写入临时 CSD 脚本文件失败:%s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "警告:你正在使用 root 权限运行不安全的 CSD 代码\n" "\t 使用命令行选项 \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "执行 CSD 脚本 %s 失败\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "未知的服务器响应\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "服务器在已被提供了一个 SSL 客户端证书后又请求了证书\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "服务器请求了 SSL 客户端证书;还未配置\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST 已启用\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 秒钟后刷新 %s……\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(错误 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(描述错误时发生错误!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "错误:无法初始化套接字\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_信息 接收 MSS %d,发送 MSS %d,通告 MSS %d,路径 MTU %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_最大分段大小 %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "严重错误:DTLS 主密钥还未初始化。请报告此项。\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "创建 HTTPS CONNECT 请求时出错\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "获取 HTTPS 响应出错\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN 服务不可用;原因:%s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "得到了不正确的 HTTP CONNECT 响应:%s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "得到了 CONNECT 响应:%s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "选项的内存不足\n" #: cstp.c:416 http.c:313 msgid "" msgstr "<已省略>" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID 不为 64 个字符;为:\"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID 无效;为:\"%s\"\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "未知的 DSTP-Content-Encoding %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "未知的 CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "未接收到 MTU。正在中止\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP 已连接。DPD %d,持久连接(Keepalive)%d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "压缩设置失败\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "deflate 编码缓存分配失败\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "inflate 解码失败\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS 解压缩失败:%s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZ4 解压缩失败:%s\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "未知的压缩类型 %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "接收到 %2$d 字节的 %1$s 压缩数据包(之前为 %3$d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "deflate 编码失败 %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "包长度不对。SSL_read 返回了 %d 但包长是\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "得到了 CSTP DPD 请求\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "得到了 CSTP DPD 响应\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "得到了 CSTP 持久连接(Keepalive)\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "接收到未压缩的数据包,长度 %d 字节\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "接收到服务器断开:%02x \"%s\"\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "接收到服务器断开\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "在非 deflate 模式下收到了压缩包\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "接收到服务器终止包\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "未知的包 %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP 失效对等体检测检测到失效!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "重连失败\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "发送 CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "发送 CSTP 持久连接(Keepalive)\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "正在发送 %d 字节的压缩数据包(之前为 %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "发送 BYE 包:%s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "正在尝试摘要验证以代理\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "正在尝试摘要验证到服务器 \"%s\"\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS 连接已尝试使用现有的文件描述符\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "没有 DTLS 地址\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "服务器未提供 DTLS 加密选项\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "当通过代理连接时不使用 DTLS\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "CSTP 已初始化。DPD %d,持久连接 %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "接收到未知的包(长度 %d):%02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS 此处:%d,TOS 最后:%d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "得到了 DTLS DPD 请求\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "发送 DPD 响应失败。需要断开连接\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "得到了 DTLS DPD 响应\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "得到了 DTLS 持久连接(Keepalive)\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "在未启用压缩的情况下收到了压缩的 DTLS 包\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "未知的 DTLS 包类型 %02x,长度 %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "发送 DTLS 持久连接(Keepalive)\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "发送持久连接 (keepalive) 请求失败。需要断开连接\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "正在发送 MTU DPD 探测(%u 字节)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "发送 DPD 请求失败(%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "MTU 检测回路时间太长;正在假定已协商的 MTU。\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "MTU 检测回路时间太长;MTU 设为 %d。\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "在 MTU 检测中接收到未预期的包(%.2x);正在跳过。\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "接收 DPD 请求失败(%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "接收到 MTU DPD 探测(%u 字节)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "检测到 MTU 为 %d 字节(之前为 %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "在检测后未改变 MTU(之前为 %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "正在接受预期的 ESP 包,序号 %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "正在接受晚于预期的 ESP 包,序号 %u(应为 %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "正在丢弃 ESP 旧包,序号 %u(应为 %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "正在容许 ESP 旧包,序号 %u(应为 %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "正在丢弃被重放的 ESP 包,序号 %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "正在容许被重放的 ESP 包,序号 %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "正在接受错序的 ESP 包,序号 %u(应为 %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "用于 %s ESP 的参数:SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP 加密类型 %s 密钥 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP 验证类型 %s 密钥 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "传入" #: esp.c:94 msgid "outgoing" msgstr "传出" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "已发送 ESP 探测\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "接收到来自旧 SPI 0x%x 的 ESP 包,序号 %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "接收到带着无效 SPI 0x%08x 的 ESP 包\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "ESP 里有无效的填充长度 %02x\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "ESP 里有无效的填充字节\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP 会话已与服务器建立\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "无法分配内存来解密 ESP 包\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" "ESP 包的 LZO 解压缩失败\n" "\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO 解压缩 %d 字节成 %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "还未为 ESP 执行密钥更新(rekey)\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP 检测到了失效对等体\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "为 DPD 发送了 ESP 探测\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "还未为 ESP 执行持久连接(keepalive)\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "发送 ESP 包失败:%s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "推迟 DTLS 恢复直到 CSTP 生成 PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "生成 DTLS 优先级字符串失败\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "设定 DTLS 优先级失败:\"%s\": %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" "分配凭据失败:%s\n" "\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "生成 DTLS 密钥失败:%s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" "设定 DTLS 密钥失败:%s\n" "\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "设定 DTLS PSK 凭据失败:%s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "未知的 DTLS 参数对于请求的密码套件 \"%s\"\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "设定 DTLS 会话参数失败:%s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "初始化 DTLS 失败:%s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "对等端 MTU %d 太小不允许 DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU 已降低到 %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "DTLS 会话恢复失败;可能有 MITM 攻击。正在禁用 DTLS。\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "设定 DTLS MTU 失败:%s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "已建立 DTLS 连接(使用 GnuTLS)。密码套件 %s。\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS 连接压缩正使用 %s。\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS 握手超时\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS 握手失败:%s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(是防火墙正在阻止你发送 UDP 包吗?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "初始化 ESP 加密失败:%s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "初始化 ESP HMAC 失败:%s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "为 ESP 包计算 HMAC 失败:%s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "接收到带无效 HMAC 的 ESP 包\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "解密 ESP 包时出错:%s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "加密 ESP 包失败:%s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "无法提取证书的到期时间\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "客户端证书已到期于" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "客户端证书快到期于" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "从密钥库加载项目 \"%s\" 失败:%s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "打开密钥/证书文件 %s 失败:%s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "查询(stat)密钥/证书文件 %s 的状态失败:%s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "分配证书的缓存失败\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "读取证书到内存失败:%s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "设置 PKCS#12 数据结构体失败:%s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "解密 PKCS#12 证书文件失败\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "输入 PKCS#12 密码短语:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "处理 PKCS#12 文件失败:%s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "加载 PKCS#12 证书失败:%s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "无法初始化 MD5 散列:%s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 散列错误:%s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "缺少来自 OpenSSL 加密密钥的 DEK-Info: 首部\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "无法确定 PEM 加密类型\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "不支持的 PEM 加密类型:%s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "加密的 PEM 文件里有无效的加盐值\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "以 base64 解码加密的 PEM 文件时出错:%s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "解密的 PEM 文件太短\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "初始化加密以解密 PEM 文件失败:%s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "解密 PEM 密钥失败:%s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "解密 PEM 密钥失败\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "输入 PEM 密码短语:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "此二进制程序的构建没有系统密钥支持\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "此二进制程序的构建没有 PKCS#11 支持\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "正使用 PKCS#11 证书 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "正使用系统证书 %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "从 PKCS#11 加载证书时出错:%s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "加载系统证书时出错:%s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "正使用证书文件 %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 文件未包含证书\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "未在文件里找到证书" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "加载证书失败:%s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "正使用系统密钥 %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "初始化私钥结构体时出错:%s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "导入系统密钥 %s 时出错:%s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "正在尝试 PKCS#11 密钥 URL %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "初始化 PKCS#11 结构体时出错:%s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "导入 PKCS#11 URL %s 时出错:%s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "正使用 PKCS#11 密钥 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "导入 PKCS#11 密钥到私钥结构体时出错:%s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "正使用私钥文件 %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "此版本的 OpenConnect 的构建没有 TPM 支持\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "解析 PEM 文件失败\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" "加载 PKCS#1 私钥失败:%s\n" "\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "加载私钥为 PKCS#8 失败:%s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "解密 PKCS#8 证书文件失败\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "确定私钥类型 %s 失败\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "输入 PKCS#8 密码短语:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "获取密钥 ID 失败:%s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "使用私钥签署测试数据时出错:%s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "根据证书验证签名时出错:%s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "未找到匹配私钥的 SSL 证书\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "正使用客户端证书 \"%s\"\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "为证书分配内存失败\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "未从 PKCS#11 得到发布者\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "为支持的证书分配内存失败\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "正在添加支持的 CA \"%s\"\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "导入 X509 证书失败:%s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "设置 PKCS#11 证书失败:%s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "设置证书吊销列表失败:%s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "设置证书失败:%s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "服务器没有提供证书\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "重新握手时比较服务器的证书出错:%s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "重新握手时服务器提供了不同的证书\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "重新握手时服务器提供了相同的证书\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "初始化 X509 证书结构体时出错\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "导入服务器证书时出错\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "无法计算服务器证书的散列值\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "检查服务器证书状态时出错\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "证书被吊销" #: gnutls.c:2098 msgid "signer not found" msgstr "未找到签署者" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "签署者不是 CA 证书" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "不安全的算法" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "证书尚未激活" #: gnutls.c:2106 msgid "certificate expired" msgstr "证书已过期" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "签名验证失败" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "证书与主机名不匹配" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "服务器证书验证失败:%s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "为 CA 文件的证书分配内存失败\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "从 CA 文件读取证书失败:%s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "打开 CA 文件 \"%s\" 失败:%s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "加载证书失败。正在中止。\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL 与 %s 协商\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SLL 连接已取消\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL 连接失败:%s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "在握手时 GnuTLS 非致命返回:%s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "%s 需要的 PIN" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "错误的 PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "这是锁定前的最后一次尝试机会!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "在锁定前只剩下几次尝试机会!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "输入 PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "未支持的 OATH HMAC 算法\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "计算 OATH HMAC 失败:%s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "已调用对 %d 字节的 TPM 签名功能。\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "创建 TPM 散列对象失败:%s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "设置 TPM 散列对象里的数值失败:%s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM 散列签名失败:%s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "解码 TSS 密钥比特块(blob)时出错:%s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "TSS 密钥比特块(blob)里有错误\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "创建 TPM 上下文失败:%s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "连接 TPM 上下文失败:%s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "加载 TPM SRK 密钥失败:%s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "加载 TPM SRK 策略对象失败:%s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "设置 TPM PIN 失败:%s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "加载 TPM 密钥比特块(blob)失败:%s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "输入 TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "创建密钥策略对象失败:%s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "签署策略到密钥失败:%s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "输入 TPM 密钥 PIN:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "设置密钥 PIN 失败:%s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "询问:%s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "非标准的 SSL 隧道路径:%s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "隧道超时(密钥更新间隔)为 %d 分钟。\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "配置 XML(%s)里的网关地址与外部网关地址(%s)不同。\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "GlobalProtect 已发送 ipsec-mode=%s(应为 esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "正在忽略 ESP 密钥,因为此构建中没有 ESP 支持\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP 已禁用" #: gpst.c:661 msgid "No ESP keys received" msgstr "未收到 ESP 密钥" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "此构建版本中没有 ESP 支持" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "未收到 MTU。计算的 %d 用于 %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" "正在连接到 HTTPS 隧道端点……\n" "\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "提取 GET-tunnel HTTPS 响应时出错。\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "GET-tunnel 请求后立即停止网关连接。\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "错误:在此平台运行 \"HIP 报告\" 脚本的操作还未执行。\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "HIP 报告提交失败。\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "HIP 报告提交成功。\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "执行 HIP 脚本 %s 失败\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "网关告知需要 HIP 报告提交。\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "网关告知不需要 HIP 报告提交。\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP 隧道已连接;退出 HTTPS 主循环。\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "连接 ESP 隧道失败;使用 HTTPS 以代替。\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "数据包接收出错:%s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "未预期的包长度。SSL 读取返回了 %d(包括 16 个首部字节)但首部载荷长度为 %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "得到了 GPST DPD/持久连接(keepalive)响应\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "期望 0000000000000000 作为 DPD/持久连接(keepalive)包首部的最后 8 个字节,但" "得到了:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "期望 0000000000000000 作为数据包首部的最后 8 个字节,但得到了:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "未知包。首部转储跟随着:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect 密钥更新到期\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "CSTP 失效对等体检测检测到失效!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "发送 GPST DPD/持久连接(keepalive)请求\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "导入用于验证的 GSSAPI 名称时出错:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "生成 GSSAPI 响应时出错:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "正在尝试 GSSAPI 验证到代理\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "正在尝试 GSSAPI 验证到服务器 \"%s\"\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI 验证已完成\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI 令牌太大(%zd 字节)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "正在发送 %zu 字节的 GSSAPI 令牌\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "发送 GSSAPI 验证令牌以代理失败:%s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "从代理接收 GSSAPI 验证令牌失败:%s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS 服务器报告了 GSSAPI 上下文失败\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "来自 SOCKS 服务器的未知 GSSAPI 状态响应(0x%02x)\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "得到了 %zu 字节的 GSSAPI 令牌:%02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "正在发送 %zu 字节的 GSSAPI 保护协商\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" "发送 GSSAPI 保护协商响应到代理:%s\n" "\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "从代理接收 GSSAPI 保护响应失败:%s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "得到了 %zu 字节的 GSSAPI 保护响应:%02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "来自代理的无效 GSSAPI 保护响应(%zu 字节)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS 代理要求消息完整性,但不支持\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS 代理要求消息保密性,但不支持\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS 代理要求保护未知类型 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "正在为代理尝试 HTTP 基础验证\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "正在尝试 HTTP 基础验证到服务器 \"%s\"\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "此版本的 OpenConnect 的构建没有 GSSAPI 支持\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "代理请求的基础验证已被默认禁用\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "服务器 \"%s\" 请求的基础验证已被默认禁用\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "没有更多验证方法可以尝试\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "没有内存用于分配 cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "解析 HTTP 响应 \"%s\" 失败\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "得到了 HTTP 响应:%s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "正在忽略未知的 HTTP 响应行 \"%s\"\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "提供了无效的 cookie:%s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL 证书验证失败\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "响应主体有负的大小(%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "未知的转换编码:%s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP 主体 %s(%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "读取 HTTP 响应主体时出错\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "提取分块头部时出错\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "提取 HTTP 响应主体时出错\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "无法不在关闭连接时接收 HTTP 1.0 主体\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "解析重定向的 URL \"%s\" 失败:%s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "无法跟随重定向到非 https URL \"%s\"\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "分配用于相对重定向的新路径失败:%s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "请求已批准" #: http.c:1003 msgid "general failure" msgstr "一般错误" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "连接不被规则集允许" #: http.c:1005 msgid "network unreachable" msgstr "网络不可达" #: http.c:1006 msgid "host unreachable" msgstr "主机不可达" #: http.c:1007 msgid "connection refused by destination host" msgstr "连接被目标主机拒绝" #: http.c:1008 msgid "TTL expired" msgstr "TTL 过期" #: http.c:1009 msgid "command not supported / protocol error" msgstr "命令不支持/协议错误" #: http.c:1010 msgid "address type not supported" msgstr "不支持的地址类型" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOCKS 服务器请求了用户名/密码,但是我们都没有\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "用于 SOCKS 验证的用户名和密码必须小于 255 字节\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "写入验证请求到 SOCKS 代理时出错:%s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "从 SOCKS 代理读取验证响应时出错:%s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "来自 SOCKS 服务器的未预期验证响应:%02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "已使用密码验证到 SOCKS 服务器\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "到 SOCKS 服务器的密码验证失败\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS 服务器请求了 GSSAPI 验证\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS 服务器请求了密码验证\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS 服务器需要验证\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS 服务器请求了未知的验证类型 %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "正在请求 SOCKS 代理连接到 %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "写入连接请求到 SOCKS 代理时出错:%s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "从 SOCKS 代理读取连接响应时出错:%s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "来自 SOCKS 代理的未预期连接响应:%02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS 代理错误 %02x:%s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" "SOCKS 代理错误 %02x\n" "\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "SOCKS 连接相应有未预期的地址类型 %02x\n" # 感觉是要保留半角冒号。 #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "正在请求 HTTP 代理连接到 %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "发送的代理请求失败:%s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "代理 CONNECT 请求失败:%d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "未知的代理类型 \"%s\"\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "只支持 http 或 socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "思科 AnyConnect 或 openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "兼容于思科 AnyConnect SSL VPN,以及 ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "瞻博网络连接(Juniper Network Connect)" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "兼容于 Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "未知的 VPN 协议 \"%s\"\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "构建使用的 SSL 库没有思科 DTLS 支持\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "未接收到 IP 地址。正在中止\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "重连给出了不同的旧 IP 地址(%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "重连给出了不同的旧 IP 网络掩码(%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "重连给出了不同的旧 IPv6 地址(%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "重连给出了不同的旧 IPv6 网络掩码(%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "接收到 IPv6 配置但 MTU %d 太小了。\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "解析服务器 URL \"%s\" 失败\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "对于服务器 URL 只允许 https://\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "未知的证书散列:%s。\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "所提供的数字指纹大小小于最小需求(%u)。\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "没有表单处理程序;无法验证。\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() 失败:%s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "处理命令行时发生致命错误\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() 失败:%s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() 失败:%s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "转换控制台输入时出错:%s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "分配来自标准输入的字符串失败\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "为了帮助 OpenConnect,请查看网页于\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL 引擎(ENGINE)不存在" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "警告:此二进制程序不支持 DTLS 和/或 ESP。性能将被削弱。\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "支持的协议:" #: main.c:728 main.c:746 msgid " (default)" msgstr "(默认)" #: main.c:743 msgid "Set VPN protocol" msgstr "设定 VPN 协议" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (标准输入)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "无法处理此执行路径 \"%s\"" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "vpnc 脚本路径分配失败\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "改写主机名 \"%s\" 为 \"%s\"\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "用法:openconnect [选项] <服务器>\n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "打开多 VPN 协议客户端,版本 %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "从配置文件读取选项" #: main.c:914 msgid "Report version number" msgstr "报告版本号" #: main.c:915 msgid "Display help text" msgstr "显示帮助文本" #: main.c:919 msgid "Authentication" msgstr "身份验证" #: main.c:920 msgid "Set login username" msgstr "设定登录用户名" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "禁用密码/SecurID 验证" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "不期望用户输入;如果需要就退出" #: main.c:923 msgid "Read password from standard input" msgstr "从标准输入读取密码" #: main.c:924 msgid "Choose authentication login selection" msgstr "选择验证登录选择项" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "使用 SSL 客户端证书 CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "使用 SSL 私钥文件 KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "当证书有效期小于 DAYS 时提示" #: main.c:929 msgid "Set login usergroup" msgstr "设定登录的用户组" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "设定密钥密码短语或 TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "密钥密码短语是文件系统的 fsid" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(注意:libstoken(RSA SecurID) 在此构建版本中已禁用)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(注意:Yubikey OATH 在此构建版本中已禁用)" #: main.c:941 msgid "Server validation" msgstr "服务器验证" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "禁用系统默认的证书颁发机构" #: main.c:944 msgid "Cert file for server verification" msgstr "用于服务器验证的证书文件" #: main.c:946 msgid "Internet connectivity" msgstr "互联网连接性" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "设定代理服务器" #: main.c:949 msgid "Set proxy authentication methods" msgstr "设定代理验证方法" #: main.c:950 msgid "Disable proxy" msgstr "禁用代理" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "使用 libproxy 来自动配置代理" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(注意:libproxy 在此构建版本中已禁用)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "连接重试超时秒数" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "连接到 HOST 时使用 IP" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "为 DTLS 和 ESP 数据报设定本地端口" #: main.c:960 msgid "Authentication (two-phase)" msgstr "身份验证(两阶段)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "使用身份验证 cookie COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "从标准输入读取 cookie" #: main.c:963 msgid "Authenticate only and print login info" msgstr "只验证并打印登录信息" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "只提取和打印 cookie;不连接" #: main.c:965 msgid "Print cookie before connecting" msgstr "连接前打印 cookie" #: main.c:968 msgid "Process control" msgstr "进程控制" #: main.c:969 msgid "Continue in background after startup" msgstr "启动后在后台继续" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "将守护进程的 PID 写入此文件" #: main.c:971 msgid "Drop privileges after connecting" msgstr "连接后放弃权限" #: main.c:974 msgid "Logging (two-phase)" msgstr "日志(两阶段)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "为进度消息使用系统日志(syslog)" #: main.c:978 msgid "More output" msgstr "更多输出" #: main.c:979 msgid "Less output" msgstr "简化输出" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "前插时间戳到进度消息" #: main.c:983 msgid "VPN configuration script" msgstr "VPN 配置脚本" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "对隧道接口使用 IFNAME" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "用于运行兼容 vpnc 配置脚本的 Shell 命令行" #: main.c:986 msgid "default" msgstr "默认" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "传递流量到 \"script\" 程序,而不是 tun" #: main.c:991 msgid "Tunnel control" msgstr "隧道控制" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "不要求 IPv6 连接性" #: main.c:993 msgid "XML config file" msgstr "XML 配置文件" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "请求来自服务器的 MTU(仅限传统服务器)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "指示至/从服务器的路径 MTU" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "需要完美前向保密" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "禁用 DTLS 和 ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "用于支持 DTLS 的 OpenSSl 密码" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "设定分组队列限制于 LEN 包" #: main.c:1004 msgid "Local system information" msgstr "本定系统信息" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP 首部 User-Agent:字段" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "通告到服务器的本地主机" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "木马二进制程序(CSD)执行" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "在 CSD 执行过程中放弃权限" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "运行 SCRIPT 而不是木马二进制程序" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "服务器缺陷(bug)" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "禁止 HTTP 连接复用" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "不要尝试 XML POST 验证" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "分配字符串失败\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "从配置文件获取行失败:%s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "行 %d 有未识别的选项:\"%s\"\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "选项 \"%s\" 未采用行 %d 上的参数\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "选项 \"%s\" 需要行 %d 上的参数\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "无效的用户 \"%s\":%s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "无效的用户ID \"%d\":%s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "打开 \"%s\" 以写入失败:%s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "在后台继续;pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "警告:无法设定区域(locale):%s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "警告:此版本的 openconnect 的构建没有 iconv 支持但是你好像在\n" " 使用传统字符集 \"%s\"。期望不同的值。\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "警告:该 openconnect 的版本为 %s \n" " 但是 libopenconnect 库为 %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "分配 vpninfo 结构体失败\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "无法在配置文件中使用 \"config\" 选项\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "无法打开配置文件 \"%s\":%s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "无效的压缩模式 \"%s\"\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "分配内存失败\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "解析选项里缺少冒号\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d 太小\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "正在禁用所有的 HTTP 连接复用,由于 --no-http-keepalive 选项。\n" "如果这有帮助,请报告到 。\n" "\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "--no-cert-check 选项不安全且已被移除。\n" "修复你的服务器证书或者使用 --servercert 以信任它。\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "不允许队列长度为 0;正使用 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect 版本 %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "无效的软件令牌模式 \"%s\"\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "命令行有太多参数\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "未指定服务器\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "此版本的 OpenConnect 的构建没有 libproxy 支持\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "创建 SSL 连接失败\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "没有提供 --script 参数;DNS 和路由未配置\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "查看 https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "用户请求了重连\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "会话已被服务器终止;正在退出。\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "未知错误;正在退出。\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "打开 %s 以写入失败:%s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "写入配置到 %s 失败:%s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "来自 VPN 服务器 \"%s\" 的证书验证失败。\n" "原因:%s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "要在将来信任此服务器,可以添加这个到你的命令行:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "输入 \"%s\" 以接受,\"%s\" 以中止;其他任意键以查看:" #: main.c:2464 main.c:2483 msgid "no" msgstr "no" #: main.c:2464 main.c:2470 msgid "yes" msgstr "yes" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "服务器密钥散列值:%s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" "验证选择 \"%s\" 符合多个选项\n" "\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "验证选择 \"%s\" 不可用\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "用户输入需要在非交互模式\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "打开令牌文件以写入失败:%s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "写入令牌失败:%s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "软件令牌字符串无效\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "无法打开 ~/.stokenrc 文件\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect 的构建没有 libstoken 支持\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "libstoken 里有一般错误\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect 的构建没有 liboath 支持\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "liboath 里有一般错误\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "未找到 Yubikey 令牌\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect 的构建没有 Yubikey 支持\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "一般 Yubikey 错误:%s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "建立 tun 脚本失败\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "建立 tun 设备失败\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "主叫方暂停了连接\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "无事可做;休眠了 %d 毫秒……\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects 失败:%s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() 失败:%lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() 失败:%lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "与 ntlm_auth 助手程序通信时出错\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "正在尝试 HTTP NTLM 验证到代理(单点登录)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "正在尝试 HTTP NTLM 验证到服务器 \"%s\"(单点登录)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "正在尝试 HTTP NTLMv%d 验证到代理\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "正在尝试 HTTP NTLMv%d 验证到服务器 \"%s\"\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "无效的 base32 令牌字符串\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "分配内存以解码 OATH 密钥失败\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "此版本的 OpenConnect 的构建没有 PSKC 支持\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK 以生成 INITIAL 令牌码\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK 以生成 NEXT 令牌码\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "服务器正拒绝软件令牌;转换为手动输入\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "正在生成 OATH TOTP 令牌码\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "正在生成 OATH HOTP 令牌码\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "未预期的长度 %d 对于 TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "接收到来自服务器的 MTU %d\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" "接收到 DNS 服务器 %s\n" "\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "接收到 DNS 搜索域 %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" "接收到内部 IP 地址 %s\n" "\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "接收到掩码 %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "接收到内部网关地址 %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "接收到包含路由 %s 的分片\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "接收到不包含路由 %s 的分片\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" "接收到 WINS 服务器 %s\n" "\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP 加密:0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC:0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP 压缩:%d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP 端口:%d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP 密钥生存期:%u 字节\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP 密钥生存期:%u 秒\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP 到 SSL 回退:%u 秒\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP 重放保护:%d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI(出站):%x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d 字节的 ESP 密钥(secret)\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "未知的 TLV 组 %d 属性 %d 长度 %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" "解析 KMP 头部失败\n" "\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" "解析 KMP 消息失败\n" "\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "已获取 %d 大小的 KMP 消息 %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "在 ESP 协商 KMP 时收到了非 ESP TLVs(组 %d)\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "创建 oNCP 协商请求时出错\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "oNCP 协商有短写入\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "读取了 %d 字节的 SSL 记录\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "主机名包后面有未预期的大小 %d\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "服务器响应到主机名包为错误 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "无效的包正等待 KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "期望来自服务器的 KMP 消息 301 但是得到了 %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "来自服务器的 KMP 信息 301 太大(%d 字节)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "得到了长度 %d 的 KMP 消息 301\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "读取连续的记录长度失败\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "额外 %d 字节的记录太大;将成为 %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "读取长度 %d 的连续记录失败\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "读取了附加 %d 字节的 KMP 301 消息\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "协商 ESP 密钥时出错\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "oNCP 协商请求传出:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "新传入" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "新传出" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "读取了仅 1 字节的 oNCP 长度字段\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "服务器终止了连接(会话到期)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "服务器终止了连接(原因:%d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "服务器发送了零长度的 oNCP 记录\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "正在传入大小 %2$d 的 KMP 消息 %1$d(已获取 %3$d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "继续处理 KMP 消息 %d,现在大小 %d(已获取 %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "未识别的数据包\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "未知的大小为 %2$d 的 KMP 信息 %1$d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" ".... + %d 多的字节还未收到\n" "\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "包传出:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "已发送 ESP 启用控制包\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "错误:%s() 使用无效的 UTF-8 为 \"%s\" 参数所调用\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "无法为 %s 计算 DTLS 开销\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "为 OpenSSL 创建 SSL_SESSION ASN.1 失败:%s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL 解析 SSL_SESSION ASN.1 失败\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "初始化 DTLSv1 会话失败\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK 回拨\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "初始化 DTLSv1 CTX 失败\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "设定 DTLS CTX 版本失败\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "生成 DTLS 密钥失败\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "设定 DTLS 密码列表失败\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "这可能是因为你的 OpenSSL 是损坏的\n" "参见 http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS 握手失败:%d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "初始化 ESP 加密失败:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "初始化 ESP HMAC 失败\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "为 ESP 包设置解密上下文失败:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "解密 ESP 包失败:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "加密 ESP 包失败:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "创建 libp11 PKCS#11 上下文失败:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "加载 PKCS#11 提供商模块(%s)失败:\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN 已锁定\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN 已过期\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "另一用户已经登录\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "登录到 PKCS#11 令牌时出错\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "已登录到 PKCS#11 卡槽 \"%s\"\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "枚举在 PKCS#11 卡槽 \"%s\" 里的证书失败\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "在卡槽 \"%2$s\" 发现 %1$d 证书\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "解析 PKCS#11 URI \"%s\" 失败\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "枚举 PKCS#11 卡槽失败\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "正在登录到 PKCS#11 卡槽 \"%s\" \n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "查找 PKCS#11 证书 \"%s\" 失败\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "证书 X.509 内容未被 libp11 提取\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "枚举在 PKCS#11 卡槽 \"%s\" 里的密钥失败\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "在卡槽 \"%2$s\" 中找到 %1$d 个密钥\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "证书没有公共密钥\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "证书与私钥不匹配\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "正在检查符合证书的 EC 密钥\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "分配签名缓存失败\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "签署虚拟数据到验证 EC 密钥失败\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "查找 PKCS#11 密钥 \"%s\" 失败\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "此版本的 OpenConnect 的构建没有 PKCS#11 支持\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "未处理的 SSL UI 请求类型 %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM 密码太长(%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "加载私钥时失败\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "在 OpenSSL 上下文中安装证书失败\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "从 %s 提取证书:\"%s\"\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "解析 PKCS#12 失败(见上条错误)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 没有包含证书!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 没有包含私钥!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "无法加载 TPM 引擎。\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "初始化 TPM 引擎失败\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "设置 TPM SRK 密码失败\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "加载 TPM 私钥失败\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "打开证书文件 %s 失败:%s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "加载证书失败\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "处理所有支持的证书失败。依然在尝试……\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM 文件" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "为密钥库项目 \"%s\" 创建 BIO 失败\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "加载私钥失败(错误的密码短语?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "加载私钥失败(见上一条错误)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "从密钥库加载 X509 证书失败\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "打开私钥文件 %s 失败:%s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "转换 PKCS#8 到 OpenSSL EVP_PKEY 失败\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "无法识别 \"%s\" 里的私钥类型\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "已匹配 DNS 备用名 \"%s\" \n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "不匹配备用名 \"%s\" \n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "证书有伪长度 %d 的 GEN_IPADD 备用名\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "匹配的 %s 地址 \"%s\" \n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "不匹配于 %s 地址 \"%s\" \n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI \"%s\" 有非空路径;正在忽略\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "匹配的 URI \"%s\" \n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "不匹配于 URI \"%s\" \n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "对等证书里没有匹配 \"%s\" 的备用名\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "对等证书里没有使用者名称!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "解析对等证书里的使用者名称失败\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "对等证书使用者不匹配(\"%s\" != \"%s\")\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "已匹配对等证书使用者名称 \"%s\"\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "从 CA 文件提取证书:\"%s\"\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "在客户端证书 notAfter 字段里有错误\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "<错误>" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL 证书与密钥不匹配\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "从 CA 文件 \"%s\" 读取证书失败\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "打开 CA 文件 \"%s\" 失败\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "创建 TLSv1 CTX 失败\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL 连接失败\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "计算 OATH HMAC 失败\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "密码:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "丢弃损坏的分片包含:\"%s\"\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "丢弃损坏的分片不包含:\"%s\"\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "为 \"%2$s\" 生成脚本 \"%1$s\" 失败:%3$s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "脚本 \"%s\" 非正常退出(%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "脚本 \"%s\" 返回了错误 %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "套接字连接已取消\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "重连到代理 %s 失败:%s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "重连到主机 %s 失败:%s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "来自 libproxy 的代理:%s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "为主机 \"%s\" getaddrinfo 失败:%s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "正在使用上次缓存的 IP 地址来重连到 DynDNS 服务器\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "正在尝试连接到代理 %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "正在尝试连接到服务器 %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" "已连接到 %s%s%s:%s\n" "\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "分配 sockaddr 存储失败\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "连接到 %s%s%s:%s 失败:%s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "正在忘记非功能性的上个对等地址\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "连接到主机 %s 失败\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "正在重连到代理 %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs:%s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "无法为密码短语获取文件系统 ID\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "打开私钥文件 \"%s\" 失败:%s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs:%s\n" #: ssl.c:726 msgid "No error" msgstr "无错误" #: ssl.c:727 msgid "Keystore locked" msgstr "密钥库已被锁定" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "密钥库未初始化" #: ssl.c:729 msgid "System error" msgstr "系统错误" #: ssl.c:730 msgid "Protocol error" msgstr "协议错误" #: ssl.c:731 msgid "Permission denied" msgstr "权限被拒绝" #: ssl.c:732 msgid "Key not found" msgstr "未找到密钥" #: ssl.c:733 msgid "Value corrupted" msgstr "数值已损坏" #: ssl.c:734 msgid "Undefined action" msgstr "未定义的操作" #: ssl.c:738 msgid "Wrong password" msgstr "错误的密码" #: ssl.c:739 msgid "Unknown error" msgstr "未知错误" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "打开 %s 失败:%s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() %s 失败:%s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "分配 %d 字节给 %s 失败\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "读取 %s 失败:%s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "未知的协议族 %d。无法创建 UDP 服务器地址\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "打开 UDP 套接字" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "未知的协议族 %d。无法使用 UDP 传输\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "绑定 UDP 套接字" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie 不再有效,正在结束会话\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "睡眠了 %d 秒,超时剩余 %d 秒\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI 令牌太大(%ld 字节)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "正在发送 %lu 字节的 SSPI 令牌\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "发送 SSPI 验证令牌到代理失败:%s\n" "\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "从代理接收 SSPI 验证令牌失败:%s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS 服务器请求 GSSAPI 上下文失败\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "来自 SOCKS 服务器的未知 SSPI 状态响应(0x%02x)\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "得到了 %lu 字节的 SSPI 令牌:%02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() 失败:%lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() 失败:%lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() 结果太大(%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "正在发送 %u 字节的 SSPI 保护协商\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "发送 SSPI 保护响应到代理失败:%s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "接收来自代理的 SSPI 保护响应失败:%s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "得到了 %d 字节的 SSPI 保护响应:%02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage 失败:%lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "来自代理的无效 SSPI 保护响应(%lu 字节)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "输入凭据以解锁软件令牌。" #: stoken.c:107 msgid "Device ID:" msgstr "设备 ID:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "用户绕过了软件令牌。\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "所有字段都需要;再试一次。\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "libstoken 里有一般失败。\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "不正确的设备 ID 或密码;请重试。\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "软件令牌初始化成功。\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "输入软件令牌 PIN。" #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "无效的 PIN 格式;请重试。\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "正在生成 RSA 令牌码\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "为网络适配器访问注册密钥时出错\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() 失败:%s\n" "回退到 GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() 失败:%s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "打开 %s 失败\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" "获取 TAP 驱动版本失败:%s\n" "\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "错误:需要 v9.9 或更高版本的 TAP-Windows(找到 %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "设置 TAP IP 地址失败:%s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "设置 TAP IP 媒体状态失败:%s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP 设备中止了连接。正在断开连接。\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "从 TAP 设备读取失败:%s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "从 TAP 设备完整读取失败:%s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "已写入 %ld 字节到 tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "正在等待 tun 写入……\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "等待后已写入 %ld 字节到 tun\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "写入 TAP 设备失败:%s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "生成隧道脚本在 Windows 上不再支持\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "无法打开 /dev/tun 以查明" #: tun.c:92 msgid "Can't push IP" msgstr "无法推送 IP" #: tun.c:102 msgid "Can't set ifname" msgstr "无法设定接口名" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "无法为 IPv%2$d 查明 %1$s:%3$s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "打开 /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "新建 tun 失败" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "将 tun 文件描述符放到消息丢弃模式失败" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun 设备在此平台上不支持\n" #: tun.c:205 msgid "open net" msgstr "开放网络" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "打开 tun 设备失败:%s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "绑定本地 tun 设备(TUNSETIFF)失败:%s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "为了配置本地网络,openconnect 必须以 root 权限运行\n" "查看 See https://www.infradead.org/openconnect/nonroot.html 来获取更多信息\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "无效的接口名称 \"%s\";必须匹配 \"utun%%d\" 或者 \"tun%%d\"\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "打开 SYSPROTO_CONTROL 套接字失败:%s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "查询 utun 控制 id 失败:%s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "分配 utun 设备名称失败\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" "连接 utun 单元失败:%s\n" "\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "无效的接口名称 \"%s\";必须匹配 \"tun%%d\"\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "无法打开 \"%s\":%s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair 失败:%s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork 失败:%s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(脚本)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "写入传入的包失败:%s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "将主机 \"%s\" 当作原始主机名处理\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "计算现有文件的 SHA1 失败\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML 配置文件 SHA1:%s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "解析 XML 配置文件 %s 失败\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "主机 \"%s\" 已有地址 \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "主机 \"%s\" 已有用户组 \"%s\" \n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "主机 \"%s\" 未在配置中列出;当作原始主机名处理\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "发送 \"%s\" 到 ykneo-oath 小程序失败:%s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "ykneo-oath 小程序发送至 \"%s\" 的短响应无效\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "至 \"%s\" 的响应失败:%04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "选择小程序命令" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "来自 ykneo-oath 小程序的未识别响应\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "找到 ykneo-oath 小程序 v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Yubikey OATH 小程序需要的 PIN" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "计算 Yubikey 解锁响应失败\n" #: yubikey.c:274 msgid "unlock command" msgstr "解锁命令" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "正在尝试 Yubikey PIN 的截断字符 PBKBF2 变量\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" "建立 PC/SC 上下文失败:%s\n" "\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "已建立 PC/SC 上下文\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "查询读卡器列表失败:%s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "连接到 PC/SC 读卡器 \"%s\" 失败:%s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "已连接到 PC/SC 读卡器 \"%s\"\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "获取读卡器 \"%s\" 独占访问失败:%s\n" #: yubikey.c:412 msgid "list keys command" msgstr "列出密钥命令" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "在 \"%4$s\" 找到 %1$s/%2$s 密钥 \"%3$s\"\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "在 Yubikey \"%2$s\" 上未找到令牌 \"%1$s\"。正在搜索另一个 Yubikey……\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "服务器正拒绝 Yubikey 令牌;转换为手动输入\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "正在生成 Yubikey 令牌码\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "获取 Yubikey 独占访问失败:%s\n" #: yubikey.c:619 msgid "calculate command" msgstr "计算命令" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "生成令牌码时有来自 Yubikey 的未识别响应\n" openconnect-8.20/po/zh_TW.po0000644000076400007640000036775314204456076017576 0ustar00dwoodhoudwoodhou00000000000000# Traditional Chinese translation of Network Manager openconnect. # Copyright (C) 2009 Free Software Foundation, Inc. # Chao-Hsiung Liao , 2009. # Wei-Lun Chao , 2010. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect 0.8.1\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2011-01-25 17:24+0800\n" "Last-Translator: Chao-Hsiung Liao \n" "Language-Team: \n" "Language: zh_TW\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "表單選擇沒有名稱\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "名稱 %s 未輸入\n" #: auth.c:195 msgid "No input type in form\n" msgstr "表單內無輸入類型\n" #: auth.c:207 msgid "No input name in form\n" msgstr "表單內無輸入名稱\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "表單中有未知輸入類型 %s\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "無法解析伺服器回應\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "回應為:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "" #: main.c:915 msgid "Display help text" msgstr "" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "" #: main.c:2464 main.c:2470 msgid "yes" msgstr "" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:726 msgid "No error" msgstr "" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "" #: ssl.c:730 msgid "Protocol error" msgstr "" #: ssl.c:731 msgid "Permission denied" msgstr "" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "" #: ssl.c:739 msgid "Unknown error" msgstr "" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/uk.po0000644000076400007640000074473214204456075017155 0ustar00dwoodhoudwoodhou00000000000000# Ukrainian translation of NetworkManager # Copyright (C) Free Software Foundation, 2005 # This file is distributed under the same license as the NetworkManager package. # Maxim Dziumanenko , 2005-2010. # Korostil Daniel , 2011. # Yuri Chornoivan , 2020, 2021, 2022. msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2022-01-19 00:51+0200\n" "Last-Translator: Yuri Chornoivan \n" "Language-Team: Ukrainian \n" "Language: uk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "X-Generator: Lokalize 20.12.0\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "Не знайдено куки ANsession\n" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Некоректна кука «%s»\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Виявлено запис сервера DNS %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "Отримано домен пошуку «%s»\n" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "Невідомий елемент налаштувань Array «%s»\n" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "Початкове налаштовування: швидк. тунелю %d, код. %d, DPD %d\n" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "Недостатньо даних для запису під час узгодження Array JSON\n" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "Не вдалося прочитати відповідь сервера у форматі Array JSON\n" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "Неочікувана відповідь на запит у форматі Array JSON\n" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "Не вдалося обробити відповідь у форматі Array JSON\n" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "Помилка під час спроби створити запити щодо узгодження масиву\n" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Неочікуваний результат %d від сервера\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" "Помилка під час спроби побудувати пакет узгодження у форматі Array JSON\n" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "Недостатньо даних для запису під час узгодження масиву\n" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "Не вдалося прочитати відповідь щодо узгодження UDP\n" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "На порту %d увімкнено DTLS\n" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "Відмовляємо в UDP-тунелі без DTLS\n" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "Не вдалося прочитати відповідь ipff\n" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Помилка розподілу пам'яті\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Отримано надто короткий пакет (%d байтів)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Отримання керівного пакета типу %x:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Отримано пакет даних у %d байтів\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL записано надто мало байтів! Мало бути %d, надіслано %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Потрібен повторний обмін ключами CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" "Не вдалося виконати повторне узгодження; намагаємося використати new-tunnel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "DPD TCP виявлено непрацездатний вузол!\n" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "Не вдалося повторно встановити з'єднання TCP\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Надсилання DPD TCP\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Надсилання Keepalive TCP\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Надсилаємо пакет вимикання DTLS\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Надсилаємо розпакований пакунок даних з %d байтів\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Спроба встановити нове з'єднання DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "Не вдалося отримати відповідь щодо розпізнавання від DTLS\n" #: array.c:1084 msgid "DTLS session established\n" msgstr "Встановлено сеанс DTLS\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" "Отримано застарілий IP з використанням DTLS; припускаємо встановлення\n" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "Отримано IPv6 з використанням DTLS; припускаємо встановлення\n" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "Отримано невідомий пакет DTLS\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "Помилка під час спроби створення запиту на з'єднання для сеансу DTLS\n" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "Не вдалося записати запит на з'єднання до сеансу DTLS\n" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Отримано пакет DTLS 0x%02x розміром %d байтів\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Потрібен повторний обмін ключами DTLS\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" "Не вдалося виконати повторне узгодження DTLS; намагаємося встановити зв'язок " "ще раз\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DPD DTLS виявлено непрацездатний вузол!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Надсилання DPD DTLS\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Не вдалося надіслати запит DPD. Очікуємо на від'єднання.\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" "Надіслано пакет DTLS розміром %d байтів; функцією надсилання DTLS повернуто " "%d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Не вдалося вийти.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Успішний вихід.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" "Потрібне розпізнавання SAML; використовуємо portal-userauthcookie для " "продовження SAML.\n" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" "Потрібне розпізнавання SAML; використовуємо portal-prelogonuserauthcookie " "для продовження SAML.\n" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Вказано поле форми призначення %s; припускаємо, що розпізнавання у SAML %s " "завершено.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "Слід пройти розпізнавання SAML %s за допомогою %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "Слід пройти розпізнавання SAML %s за допомогою зовнішнього скрипту.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Коли розпізнавання у SAML буде завершено, вкажіть поле форми призначення, " "дописавши рядок «:назва_поля» до адреси для входу до системи.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Будь ласка, введіть ім'я користувача та пароль" #: auth-globalprotect.c:159 msgid "Username" msgstr "Користувач" #: auth-globalprotect.c:174 msgid "Password" msgstr "Пароль" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Виклик: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "Під час спроби входу до GlobalProtect повернуто неочікуване значення " "аргументу arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" "Спроба увійти до GlobalProtect призвела до повернення %s=%s (мало бути %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" "Спроба увійти до GlobalProtect призвела до повернення порожнього %s або " "значення взагалі не було повернуто\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Спроба входу до GlobalProtect призвела до повернення %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Будь ласка, повідомте про %d неочікуваних значення вище (з яких %d є " "критичним) до \n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Будь ласка, виберіть шлюз GlobalProtect." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "ШЛЮЗ:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Ігноруємо інтервал звітування порталу HIP (%d хвилин), оскільки вже " "встановлено інтервал %d хвилин.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Встановлено інтервал звітування порталу HIP %d хвилин).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "Доступні сервери-шлюзи (%d):\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "У списках налаштувань порталу GlobalProtect немає серверів шлюзів.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Не вдалося створити код ключа OTP; вимикаємо ключ\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Сервер не є ні порталом GlobalProtect, ні шлюзом.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ігноруємо невідомий запис надсилання у формі, «%s»\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ігноруємо невідомий тип вхідних даних у формі, «%s»\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Відкидаємо дублювання параметра «%s»\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Не вдалося обробити форму: метод=«%s», дія=«%s»\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Невідоме поле textarea: «%s»\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Не вдалося отримати пам'ять для обміну даними із TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Не вдалося надіслати команду до TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Підтримку TNCC у Windows ще не реалізовано\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Немає куки DSPREAUTH; спроба TNCC не виконуватиметься\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "Спроба запуску троянського скрипту перевірки TNCC/вузла «%s».\n" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Не вдалося виконати скрипт TNCC %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Надіслано команду запуску; чекаємо на відповідь від TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Не вдалося прочитати відповідь від TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Отримано відповідь про неуспішну дію %s від TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "Відповідь TNCC: 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Другий рядок відповіді TNCC: «%s»\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Отримано нову куку DSPREAUTH від TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Отримано інтервал reauth від TNCC: %d секунд\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Неочікуваний порожній рядок від TNCC після куки DSPREAUTH: «%s»\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Забагато непорожніх рядків від TNCC після куки DSPREAUTH\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Не вдалося обробити документ HTML\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Не вдалося знайти або обробити вебформу на сторінці входу\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Виявлено форму без записів «name» або «id»\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" "Дія форми (%s), ймовірно, вказує на те, що перевірку TNCC/вузла не " "пройдено.\n" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Невідома форма (назва «%s», ідентифікатор «%s»)\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Створюємо дамп невідомої форми HTML:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Вибір форми не містить назви\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "назва %s, а не input\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Немає типу вхідних даних у формі\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Немає назви вхідних даних у формі\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Невідомий тип вхідних даних %s у формі\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Порожня відповідь від сервера\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Не вдалося обробити відповідь сервера\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Відповідь: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Отримано неочікуване .\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Відповідь XML не містить вузла «auth»\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Запит на пароль, але встановлено «--no-passwd»\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" "Не вистачає сертифіката клієнта або сертифікат є помилковим (не пройдено " "перевірку сертифіката)" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Не отримуємо профіль XML, оскільки SHA1 вже збігається\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Не вдалося відкрити з'єднання HTTPS до %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Не вдалося надіслати запит GET для отримання нових налаштувань\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Отриманий файл налаштувань не відповідає SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Отримано новий профіль XML\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Помилка: можливості запуску троянської програми «Cisco Secure Desktop» на " "цій платформі ще не передбачено.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Не вдалося встановити gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Не вдалося встановити groups у %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Не вдалося встановити uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Некоректний uid користувача=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Не вдалося перейти до домашнього каталогу CSD «%s»: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Помилка: сервер просив нас запустити hostscan CSD.\n" "Вам потрібно вказати відповідний аргумент --csd-wrapper.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Помилка: сервер надіслав запит щодо отримання та запуску трояна «Cisco " "Secure Desktop».\n" "Типово, цю можливість вимкнено через загрозу безпеці системи, тому, " "ймовірно, вам доведеться її увімкнути.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Каталог тимчасових даних «%s» є непридатним до запису: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Не вдалося відкрити тимчасовий файл скрипту CSD: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Не вдалося виконати запис до тимчасового файла скрипту CSD: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "Намагаємося запустити троянський скрипт CSD «%s».\n" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "Роботу скрипту CSD «%s» завершено у нештатному режимі\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "Скриптом CSD «%s» повернуто ненульове значення стану: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Спроба розпізнавання може завершитися помилкою. Якщо ваш скрипт не повертає " "нуля, виправте це.\n" "У майбутніх версіях openconnect припинятиме обробку, якщо буде виявлено таку " "помилку.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "Скрипт CSD «%s» успішно завершив роботу.\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Попередження: вами віддано команду виконання небезпечного коду CSD із " "привілеями адміністратора системи (root)\n" "\t Скористайтеся параметром командного рядка «--csd-user»\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Не вдалося виконати скрипт CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Невідома відповідь сервера\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Сервером надіслано запит щодо сертифіката клієнта SSL після того, як такий " "сертифікат було надано\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Сервером надіслано запит щодо сертифіката клієнта SSL; але такий сертифікат " "не налаштовано\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "Увімкнено POST XML\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Не вдалося отримати заглушку CSD. Продовжуємо обробку попри це, " "використовуючи скрипт-обгортку CSD.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "Отримано фіктивний CSD для платформи %s (розмір — %d байтів).\n" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Оновлюємо %s за 1 секунду…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(помилка 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Помилка під час спроби описати помилку!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Помилка: не вдалося ініціалізувати сокети\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "Критична помилка: основні реєстраційні дані DTLS не ініціалізовано. Будь " "ласка, повідомте про цю помилку розробників.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Помилка під час створення запиту CONNECT HTTPS\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Помилка під час спроби отримати відповідь HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Служба VPN недоступна; причина: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Отримано неприйнятну відповідь HTTP CONNECT: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Отримано відповідь CONNECT: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Недостатньо пам'яті для параметрів\n" #: cstp.c:416 http.c:313 msgid "" msgstr "<пропущений>" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID не складається із 64 символів; маємо: «%s»\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID є некоректним; маємо: «%s»\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Невідоме значення DTLS-Content-Encoding — %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Невідоме значення CSTP-Content-Encoding — %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Не отримано MTU. Перериваємо виконання\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "З'єднано CSTP. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Не вдалося налаштувати стискання\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Не вдалося отримати пам'ять під буфер пакування\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "не вдалося розпакувати\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Не вдалося виконати розпакування LZS: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Не вдалося розпакувати LZ4\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Невідомий тип стискання %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Отримано пакет стиснених даних %s з %d байтів (було %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "не вдалося запакувати %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Неочікувана довжина пакета. SSL_read повернуто %d, але розмір пакета\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Отримано запит DPD CSTP\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Отримано відповідь DPD CSTP\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Отримано Keepalive CSTP\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Отримано розпакований пакунок даних з %d байтів\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Отримано сигнал від'єднання від сервера: %02x «%s»\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Отримано сигнал про від'єднання сервера\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Отримано стиснений пакет у режимі !deflate\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "отримано пакет переривання зв'язку від сервера\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Невідомий пакет %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "DPD CSTP виявлено непрацездатний вузол!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Не вдалося повторно встановити з'єднання\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Надсилання DPD CSTP\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Надсилання Keepalive CSTP\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Надсилаємо пакет стиснених даних з %d байтів (було %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Надсилання пакета BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Недостатньо даних під час записування пакета BYE\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Спроба виконати розпізнавання за контрольною сумою на проксі-сервері\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Спроба виконати розпізнавання за контрольною сумою на сервері «%s»\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Спроба встановлення з'єднання DTLS з наявним дескриптором файла\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Немає адреси DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Сервером не запропоновано варіанта із шифруванням DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Немає DTLS при з'єднанні за допомогою проксі\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "Ініціалізовано DTLS. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Отримано невідомий пакет (довжини %d): %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Цей TOS: %d, останній TOS: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "setsockopt UDP" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Отримано запит DPD DTLS\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Не вдалося надіслати відповідь DPD. Очікуємо на від'єднання.\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Отримано відповідь DPD DTLS\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Отримано Keepalive DTLS\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Отримано стиснений пакет DTLS, але стискання не увімкнено\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Невідомий тип пакета DTLS — %02x, довжина %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Надсилання Keepalive DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Не вдалося надіслати запит keepalive. Очікуємо на від'єднання.\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Ініціюємо виявлення MTU (мін=%d, макс=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Надсилаємо зондування DPD MTU (%u байтів)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Не вдалося надіслати запит DPD (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Надто багато часу у циклі визначення MTU; припускаємо узгоджений MTU.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" "Надто багато часу у циклі визначення MTU; встановлюємо значення MTU %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Виявлено неочікуваний пакет (%.2x) під час визначення MTU; пропускаємо.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "Немає відповіді на розмір %u за %d спроб; оголошуємо MTU рівним %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Не вдалося отримати запит DPD (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Отримано зондування DPD MTU (%u байтів)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Визначено MTU розміром %d байтів (було %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Значення MTU лишилося незмінним після визначення (було %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Приймаємо очікуваний пакет ESP із послідовністю %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Приймаємо запізнілий пакет ESP із послідовністю %u (мало бути %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "Відкидаємо застарілий пакет ESP із послідовністю %u (мало бути %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Зважаємо на застарілий пакет ESP із послідовністю %u (мало бути %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Відкидаємо відтворений пакет ESP із послідовністю %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Беремо до уваги відтворений пакет ESP із послідовністю %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Приймаємо нестандартний пакет ESP із послідовністю %u (мало бути %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Параметри для ESP %s: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Тип шифрування ESP %s, ключ 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Тип розпізнавання ESP %s, ключ 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "вхідні" #: esp.c:94 msgid "outgoing" msgstr "вихідні" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Надсилання зондування ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Отримано пакет ESP від застарілого SPI 0x%x, послідовність %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Отримано пакет ESP із некоректним SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "Отримано пакет застарілого IP ESP розміром %d байтів\n" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "Отримано пакет застарілого IP ESP розміром %d байтів (стиснено LZO)\n" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "Отримано пакет IPv6 ESP розміром %d байтів\n" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "Отримано пакет ESP у %d байтів із нерозпізнаним типом вмісту %02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Некоректна довжина доповнення %02x в ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Некоректні байти доповнення в ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Встановлено сеанс ESP із сервером\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Не вдалося отримати пам'ять для розшифрування пакета ESP\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Не вдалося розпакувати пакет ESP за допомогою LZO\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "Розпаковано %d байтів LZO у %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Заміну ключів для ESP не реалізовано\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP виявлено непрацездатний вузол\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Надсилання зондів ESP для DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Для ESP не реалізовано keepalive\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" "Повторно додаємо до черги дій надсилання ESP, яке завершилося помилкою: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Не вдалося надіслати пакет ESP: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "Надіслано пакет IPv%d ESP розміром %d байтів\n" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Не вдалося створити випадкові ключі для ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Не вдалося створити початковий IV для ESP\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" "УВАГА: не знайдено форми входу у форматі HTML; поля користувача і пароля " "буде визначено евристикою\n" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" "Невідомий ідентифікатор форми «%s» (мало бути використано «auth_form»)\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Не вдалося обробити відповідь профілю F5\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Не вдалося знайти параметри профілю VPN\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Не вдалося обробити відповідь щодо параметрів F5\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "Час очікування на завершення бездіяльності дорівнює %d хвилин\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Отримано типові маршрути\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Отримано значення SplitTunneling0 %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Отримано запис сервера DNS %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Отримано сервер WINS/NBNS %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Отримано домен пошуку %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "Отримано маршрут виключення поділу %s\n" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "Отримано маршрут включення поділу %s\n" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "На порту %d увімкнено DTLS\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" "УВАГА! Сервером увімкнено DTLS, але висунуто вимогу щодо HDLC. Вимикаємо " "DTLS,\n" " оскільки HDLC заважає визначенню ефективного і сумісного MTU.\n" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Не вдалося знайти параметри VPN\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Отримано застарілу IP-адресу %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Отримано IPv6-адресу %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Отримано параметри профілю «%s»\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Отримано ipv4 %d ipv6 %d hdlc %d ur_Z «%s»\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Помилка під час встановлення з'єднання F5\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Отримано область входу «%s»\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "Не вдалося обробити налаштування XML Fortinet\n" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Час очікування на завершення бездіяльності дорівнює %d хвилин.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" "Сервером повідомлення, що reconnect-after-drop дозволено у межах %d секунд, " "%s\n" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "але лише із тієї самої початкової IP-адреси" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "навіть якщо початкову IP-адресу буде змінено" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" "Сервером повідомлено про заборону reconnect-after-drop. OpenConnect не зможе " "повторно\n" "встановити з'єднання при виявленні непрацездатного вузла. Якщо повторне " "з'єднання ПРАЦЮЄ,\n" "будь ласка, повідомте про це на адресу \n" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "Повідомлено про платформу %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Отримано IPv%d сервера DNS %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "УВАГА: отримано домени split-DNS %s (ще не реалізовано)\n" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "УВАГА: отримано сервер split-DNS %s (ще не реалізовано)\n" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "Отримано маршрут IPv%d %s\n" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" "Сервером не надіслано . " "Ймовірно, OpenConnect\n" "не зможе повторно встановити з'єднання, якщо буде виявлено непрацездатний " "вузол. Якщо\n" "повторне з'єднання ПРАЦЮЄ,\n" "будь ласка, повідомте про це на адресу \n" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "Немає куки із назвою SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" "Сервер Fortinet відкидає запит щодо параметрів з'єднання. Таке\n" "відбувається у деяких випадках після повторного з'єднання. Будь\n" "ласка, повідомте про це на адресу \n" "або ознайомтеся із обговореннями:\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 та\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "Помилка під час встановлення з'єднання Fortinet\n" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "Не отримано очікуваної відповіді svrhello.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "Станом svrhello був «%.*s», а не «ok»\n" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Відкладаємо повернення DTLS до створення PSK CSTP\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Не вдалося створити рядок пріоритетності DTLS\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Не вдалося встановити пріоритетність DTLS: «%s»: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Не вдалося розмістити у пам'яті реєстраційні дані: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Не вдалося створити ключ DTLS: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Не вдалося встановити ключ DTLS: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Не вдалося встановити реєстраційні дані PSK DTLS: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Невідомі параметри DTLS для запитаного комплекту шифрування «%s»\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Не вдалося встановити параметри сеансу DTLS: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS використано %d випадкових байтів ClientHello; цього не повинно було " "статися\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS надіслано незахищене випадкове ClientHello. Оновіться до 3.6.13 або " "новішої версії.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Не вдалося ініціалізувати DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU вузла, %d, є надто малим для уможливлення DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "MTU DTLS зменшено до %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Не вдалося відновити сеанс DTLS; можливий напад типу MITM. Вимикаємо DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Не вдалося встановити MTU DTLS: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" "Встановлено з'єднання DTLS (використовуємо GnuTLS). Комплекс шифрування — " "%s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Стискання даних з'єднання DTLS за допомогою %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Перевищено час очікування на узгодження DTLS\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Помилка під час узгодження DTLS: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Брандмауер забороняє вам надсилати пакети UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Не вдалося ініціалізувати шифрування ESP: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Не вдалося ініціалізувати HMAC ESP: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Не вдалося обчислити HMAC для пакета ESP: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Отримано пакет ESP із некоректним HMAC\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Помилка під час розшифровування пакета ESP: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Не вдалося зашифрувати пакет ESP: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Помилка select() для TLS" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "Запис TLS/DTLS скасовано\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Не вдалося виконати запис до сокета TLS/DTLS: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "Не вдалося виконати select() для TLS/DTLS" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "Читання TLS/DTLS скасовано\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "Сокет TLS/DTLS закрито нештатно\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Не вдалося виконати читання з сокета TLS/DTLS: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Спроба читання із сеансу %s, якого не існує\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "Помилка читання у сеансі %s: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "Спроба записати сеанс %s, якого не існує\n" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Помилка запису у сеансі %s: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Не вдалося видобути час завершення строку дії сертифіката\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Строк дії сертифіката збігає" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "Строк дії вторинного сертифіката збігає" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Строк дії сертифіката клієнта збігає" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "Строк дії вторинного сертифіката клієнта збігає" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Не вдалося завантажити запис «%s» зі сховища ключів: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Не вдалося відкрити файл ключа або сертифіката %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" "Не вдалося визначити статистичні дані файла ключа або сертифіката %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Не вдалося розмістити буфер сертифікатів\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Не вдалося прочитати сертифікат до пам’яті: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Не вдалося налаштувати структуру даних PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Не вдалося розшифрувати файл сертифіката PKCS#12\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Введіть пароль PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "Введіть вторинний пароль PKCS#12:" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Не вдалося обробити файл PKCS#12: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Не вдалося завантажити сертифікат PKCS#12: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "Не вдалося завантажити вторинний сертифікат PKCS#12: %s\n" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Не вдалося ініціалізувати хеш MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Помилка у хеші MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "У зашифрованому ключі OpenSSL немає заголовка DEK-Info:\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Не вдалося визначити тип шифрування PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Непідтримуваний тип шифрування PEM: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Некоректне початкове випадкове значення у шифрованому файлі PEM\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Помилка у розшифрованому на основі base64 файлі PEM: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Зашифрований файл PEM є надто коротким\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Не вдалося ініціалізувати систему шифрування для розшифровування файла PEM: " "%s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Не вдалося розшифрувати ключ PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Не вдалося розшифрувати ключ PEM\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Введіть пароль до PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "Введіть вторинний пароль до PEM:" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Цей виконуваний файл зібрано без підтримки загальносистемних ключів\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Цей виконуваний файл зібрано без підтримки PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Використовуємо сертифікат PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Використовуємо загальносистемний сертифікат %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Помилка під час завантаження сертифіката з PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Помилка під час спроби завантажити загальносистемний сертифікат: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Використовуємо файл сертифіката %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "Використовуємо вторинний файл сертифіката %s\n" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "У файлі PKCS#11 не міститься сертифіката\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "У файлі не знайдено сертифіката" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Спроба завантаження сертифіката зазнала невдачі: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "Спроба завантаження вторинного сертифіката зазнала невдачі: %s\n" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Використовуємо загальносистемний ключ %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "Використовуємо вторинний загальносистемний ключ %s\n" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Помилка під час спроби ініціалізувати структуру закритих ключів: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Помилка під час спроби імпортувати загальносистемний ключ %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Намагаємося використати адресу ключа PKCS#11 %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Помилка під час спроби ініціалізувати структуру ключів PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Помилка під час імпортування адреси PKCS#11 %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Використовуємо ключ PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Помилка під час спроби імпортувати ключ PKCS#11 до структури закритих " "ключів: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Використовуємо файл закритого ключа %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Цю версію OpenConnect зібрано без підтримки TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Цю версію OpenConnect зібрано без підтримки TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Не вдалося обробити інтерпретатором файл PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Не вдалося завантажити закритий ключ PKCS#1: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Не вдалося завантажити закритий ключ як PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Не вдалося розшифрувати файл сертифіката PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Не вдалося визначити тип закритого ключа %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Введіть пароль PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Не вдалося отримати ідентифікатор ключа: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Помилка під час спроби підписати тестові дані закритим ключем: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Помилка під час спроби перевірити підпис за сертифікатом: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Не знайдено сертифіката SSL, який відповідає закритому ключу\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "Не знайдено вторинного сертифіката, який відповідає закритому ключу\n" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "Не виконано умови got_key!\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" "Помилка під час спроби створення абстрактного privkey з /x509_privkey: %s\n" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Використовуємо клієнтський сертифікат «%s»\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "Використовуємо вторинний сертифікат «%s»\n" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Не вдалося розмістити сертифікат у пам'яті\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Не отримати видавця з PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Отримано наступну CA «%s» з PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Не вдалося отримати пам'ять для сертифікатів підтримки\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Додавання підтримувального CA «%s»\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Спроба імпортування сертифіката X509 зазнала невдачі: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Спроба встановлення сертифіката PKCS#11 зазнала невдачі: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" "Спроба встановлення списку відкликаних сертифікатів зазнала невдачі: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Здається, у закритому ключі не передбачено підтримки RSA-PSS. Вимикаємо " "TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Спроба встановлення сертифіката зазнала невдачі: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Сервером не надано сертифіката\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Помилка під час спроби порівняти сертифікат сервера при повторному " "узгодженні з'єднання: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Сервером надано інший сертифікат при повторному узгодженні з'єднання\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" "Сервером надано той самий сертифікат при повторному узгодженні з'єднання\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Помилка під час спроби ініціалізації структури сертифікатів X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Помилка під час спроби імпортувати сертифікат сервера\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Не вдалося обчислити хеш сертифіката сервера\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Помилка під час спроби перевірити стан сертифіката сервера\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "сертифікат відкликано" #: gnutls.c:2098 msgid "signer not found" msgstr "підписувача не знайдено" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "засобом підписування не є сертифікат служби сертифікації (CA)" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "алгоритм не є безпечним" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "сертифікат ще не активовано" #: gnutls.c:2106 msgid "certificate expired" msgstr "строк дії сертифіката збіг" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "не вдалося перевірити підпис" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "сертифікат не відповідає назві вузла" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Сертифікат не пройшов перевірки: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Не вдалося отримати пам'ять для сертифікатів cafile\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Не вдалося прочитати сертифікати з cafile: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Не вдалося відкрити файл служби сертифікації «%s»: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Не вдалося завантажити сертифікат. Перериваємо обробку.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "Не вдалося побудувати рядок пріоритетності GnuTLS\n" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Не вдалося встановити рядок пріоритетності GnuTLS («%s»): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Узгодження SSL з %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Спробу з’єднання SSL скасовано\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Критична помилка у з'єднанні SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Некритичний стан повернення GnuTLS під час узгодження з'єднання: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" "Встановлено з'єднання із HTTPS на %s за допомогою комплексу шифрування %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "Повторно узгоджено SSL на %s за допомогою комплексу шифрування %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Потрібен пінкод для %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Помилковий код" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Це остання спроба перед блокуванням!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Лишилося лише декілька спроб перед блокуванням!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Вкажіть пінкод: " #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Непідтримуваний алгоритм HMAC OATH\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Не вдалося обчислити HMAC OATH: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "%s %dмс\n" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "Не вдалося встановити комплекси шифрування: %s\n" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Встановлено сеанс EAP-TTLS\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Функцію підписування TPM викликано для %d байтів.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Не вдалося створити об'єкт хешу TPM: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Не вдалося встановити значення у об'єкт хешу TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Не вдалося виконати підписування хешем TPM: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Помилка під час спроби розшифрувати бінарний ключ TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Помилка у бінарному ключі TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Не вдалося створити контекст TPM: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Не вдалося з'єднати контекст TPM: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Не вдалося завантажити ключ SRK TPM: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Не вдалося завантажити об'єкт правил SRK TPM: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Не вдалося встановити пінкод TPM: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Не вдалося завантажити двійковий ключ TPM: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Введіть пінкод SRK TPM:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Не вдалося створити об'єкт правил ключів: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Не вдалося пов'язати правило із ключем: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Введіть пінкод ключа TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "Введіть пінкод вторинного ключа TPM:" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Не вдалося встановити пінкод ключа: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Невідомий розмір контрольної суми EC TPM2 — %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "Підтримки алгоритму підписування EC %s не передбачено\n" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Помилка під час спроби розшифрувати бінарний ключ TSS2: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Не вдалося створити тип ASN.1 для TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Не вдалося розшифрувати ключ TPM2 ASN.1: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Не вдалося обробити тип ключа OID TPM2: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Ключ TPM2 належить до невідомого типу OID %s, а не %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Не вдалося обробити батьківський запис ключа TPM2: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Не вдалося обробити елемент відкритого ключа TPM2\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Не вдалося обробити елемент закритого ключа TPM2\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Оброблено ключ TPM2 із батьківським елементом %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Контрольна сума TPM2 є надто великою: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" "Помилка кодування PSS; розмір хешу %d є надто великим для ключа RSA %d\n" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "Викликано підпис RSA TPMv2 для невідомого алгоритму %s\n" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "Пароль TPM2 є надто довгим; обрізаємо\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "власник" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "схвалення" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "платформа" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Створюємо основний ключ у ієрархії %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Введіть пароль до ієрархії TPM2 %s:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Помилка Esys_TR_SetAuth TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Не вдалося пройти розпізнавання власника Esys_CreatePrimary TPM2\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Помилка Esys_CreatePrimary TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Встановлюємо з'єднання з TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "Помилка Esys_Initialize TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 вже було запущено, отже, маємо фальшиве спрацювання у журналі tpm2tss.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "Помилка Esys_Startup TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Помилка Esys_TR_FromTPMPublic для обробника 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Введіть пароль до батьківського ключа TPM2:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "Введіть пароль до вторинного батьківського ключа TPM2:" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Завантажуємо бінарний ключ TPM2, батьківський запис — %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "Не пройдено розпізнавання Esys_Load TPM2\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "Помилка Esys_Load TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "Помилка Esys_FlushContext TPM2 для створеного основного ключа: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Введіть пароль до ключа TPM2:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "Введіть пароль до вторинного ключа TPM2:" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "Функцію підписування RSA TPM2 викликано для %d байтів, алгоритм %s.\n" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Не пройдено розпізнавання Esys_RSA_Decrypt TPM2\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 не вдалося створити підпис RSA: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Функцію підписування EC TPM2 викликано для %d байтів.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "Невідомий розмір контрольної суми EC TPM2 — %d для алгоритму 0x%x\n" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Не пройдено розпізнавання Esys_Sign TPM2\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Некоректний обробник батьківського елемента TPM2 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" "Використовуємо SWTPM через встановлення змінної середовища " "TPM_INTERFACE_TYPE\n" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "Помилка TSS2_TctiLdr_Initialize для swtpm: 0x%x\n" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Не вдалося імпортувати дані закритого ключа TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Не вдалося імпортувати дані відкритого ключа TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Непідтримуваний тип ключа TPM2 %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Помилка під час виконання дії TPM2 %s (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Виклик: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Відповідь: %s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "Невідомий алгоритм MAC ESP: %s\n" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "Невідомий алгоритм шифрування ESP: %s\n" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" "Попередження: налаштування у форматі XML містять теґ зі " "значенням «%s».\n" " Можливість з'єднання VPN може бути вимкнено або обмежено.\n" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Нестандартний шлях тунелю SSL: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" "Час очікування на працездатність тунелю (інтервал повторного обміну ключами) " "дорівнює %d хвилин.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Адреса шлюзу у налаштуваннях XML (%s) відрізняється від зовнішньої адреси " "шлюзу (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" "Адреса шлюзу IPv6 у налаштуваннях XML (%s) відрізняється від зовнішньої " "адреси шлюзу (%s).\n" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" "Адреса у налаштуваннях XML (%s) відрізняється від адреси\n" "зовнішнього шлюзу (%s). Будь ласка, повідомте про це розробників:\n" ", зокрема про будь-які проблеми\n" "із ESP або іншу видиму втрату можливості з'єднання або швидкодії.\n" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "Налаштування GlobalProtect надіслано ipsec-mode=%s (мало бути esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Імпортуємо ключі ESP, оскільки у цій збірці недоступна підтримка ESP\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" "Потенційний пов'язаний із IPv6 теґ GlobalProtect налаштувань <%s>: %s\n" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Невідомий теґ налаштовування GlobalProtect <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" "Підтримка IPv6 у GlobalProtect є експериментальною. Будь ласка, повідомте " "про результати використання на адресу .\n" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" "Не отримано ключів ESP і відповідного шлюзу у налаштуваннях GlobalProtect; у " "тунелі буде використано лише TLS.\n" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP вимкнено" #: gpst.c:661 msgid "No ESP keys received" msgstr "Не отримано жодного ключа ESP" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "У цьому варіанті програми не передбачено підтримки ESP" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Не отримано MTU. Обчислено %d для %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Встановлюємо з'єднання із кінцевою точкою тунелю HTTPS...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Помилка під час отримання відповіді HTTPS від GET-тунелю.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Шлюз від'єднано негайно після запиту GET-тунелю.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "Отримано неочікувану відповідь HTTP: %.*s\n" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "Попередження: сервер попросив нас надіслати звіт HIP із md5sum %s\n" " Можливість з'єднання із VPN може бути вимкнено або обмежено без подання " "звіту HIP.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Втім, запуск скрипту подання звітів HIP на цій платформі ще не реалізовано." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Вам слід додати аргумент --csd-wrapper у команді скрипту подання звітів HIP." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Помилка: запуск скрипту «HIP Report» на цій платформі ще не реалізовано.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "Намагаємося запустити троянський скрипт HIP «%s».\n" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "Не вдалося створити канал для скрипту HIP\n" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "Не вдалося виконати відгалуження для скрипту HIP\n" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "Роботу скрипту HIP «%s» завершено у нештатному режимі\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "Скриптом HIP «%s» повернуто ненульове значення стану: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "Скрипт HIP «%s» успішно завершив роботу (за звітом %d байтів).\n" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Не вдалося подати звіт HIP.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "Звіт HIP успішно подано.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Не вдалося виконати скрипт HIP %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Шлюзом повідомлено, що потрібне надання звіту HIP.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Шлюзом повідомлено, що надання звіту HIP не є потрібним.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" "Встановлено з'єднання із тунелем ESP; виходимо із основного циклу HTTPS.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" "Не вдалося встановити з'єднання із тунелем ESP; використовуємо замість нього " "HTTPS.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Помилка під час отримання пакетів: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Неочікувана довжина пакета. SSL_read повернуто %d (включає 16 байтів " "заголовка), але payload_len заголовка дорівнює %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Отримано відповідь DPD/keepalive GPST\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Мало бути 0000000000000000, оскільки останні 8 байтів заголовка пакета DPD/" "keepalive, але отримано:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Отримано пакет даних IPv%d розміром %d байтів\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Мало бути 0100000000000000, оскільки останні 8 байтів даних заголовка " "пакета, але отримано:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Невідомий пакет. Нижче наведено дамп заголовка:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "Строк перевірки HIP GlobalProtect\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" "Не вдалося виконати перевірку HIP або надіслати звіт щодо результатів\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "Потрібен повторний обмін ключами GlobalProtect\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "DPD GPST виявлено непрацездатний вузол!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Надсилання запиту DPD/keepalive GPST\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Надсилаємо пакет даних IPv%d розміру %d байтів\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "Пакет зондування ICMPv%d (посл. %d) для GlobalProtect ESP:\n" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Не вдалося надіслати зондування ESP\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Помилка під час імпортування назви GSSAPI для розпізнавання:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Помилка під час створення відповіді GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Спроба виконати розпізнавання за GSSAPI на проксі-сервері\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Спроба виконати розпізнавання за GSSAPI на сервері «%s»\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Розпізнавання GSSAPI завершено\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Ключ GSSAPI є надто великим (%zd байтів)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Надсилаємо ключ GSSAPI розміру %zu байтів\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Не вдалося надіслати ключ розпізнавання GSSAPI на проксі-сервер: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Не вдалося отримати ключ розпізнавання GSSAPI з проксі-сервера: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Сервером SOCKS повідомлено про помилку контексту GSSAPI\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Невідома відповідь щодо стану GSSAPI (0x%02x) від сервера SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Отримано ключ GSSAPI з %zu байтів: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Надсилаємо узгодження захисту GSSAPI з %zu байтів\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" "Не вдалося надіслати відповідь щодо захисту GSSAPI до проксі-сервера: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" "Не вдалося отримати відповідь щодо захисту GSSAPI від проксі-сервера: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "Отримано відповідь щодо захисту GSSAPI з %zu байтів: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" "Некоректна відповідь щодо захисту GSSAPI від проксі-сервера (%zu байтів)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Проксі-сервер SOCKS вимагає цілісності повідомлень, але підтримки цієї " "цілісності не передбачено\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "Проксі-сервер SOCKS вимагає конфіденційності повідомлень, підтримки якої не " "передбачено\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Проксі-сервер SOCKS вимагає захисту невідомого типу 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Спроба виконати базове розпізнавання за HTTP на проксі-сервері\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Спроба виконати базове розпізнавання за HTTP на сервері «%s»\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Спроба виконати розпізнавання Bearer HTTP на сервері «%s»\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Цю версію OpenConnect зібрано без підтримки GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Проксі-сервер вимагає базового розпізнавання, яке типово вимкнено\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "Сервер «%s» вимагає базового розпізнавання, яке типово вимкнено\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Не лишилося способів розпізнавання, які можна було б ще спробувати\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Немає пам'яті для розміщення кук\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Помилка під час спроби прочитати відповідь HTTP: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Не вдалося обробити відповідь HTTP «%s»\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Отримано відповідь HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ігноруємо невідомий рядок відповіді HTTP «%s»\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Запропоновано некоректну куку: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Не вдалося виконати розпізнавання за сертифікатом SSL\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Вміст відповіді має від'ємний розмір (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Невідоме значення Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Вміст HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Помилка під час спроби читання вмісту відповіді HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Помилка під час спроби отримати заголовка фрагмента\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "Довжина фрагмента HTTP є від'ємною (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "Довжина фрагмента HTTP є надто великою (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Помилка під час спроби отримання вмісту відповіді HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" "Помилка під час розшифровування фрагментів. Мало бути «», отримано: «%s»\n" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Неможливо отримати вміст HTTP 1.0 без розірвання з'єднання\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Не вдалося обробити переспрямовану адресу «%s»: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" "Не вдалося перейти за переспрямовуванням до адреси «%s», яка не є адресою " "https\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Не вдалося отримати пам'ять для нового шляху при відносному " "переспрямовуванні: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "Сокет HTTPS закрито вузлом; повторно відкриваємо його\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" "Не вдалося виконати запит щодо нового з'єднання під час повторної спроби %s\n" #: http.c:1002 msgid "request granted" msgstr "надано запит" #: http.c:1003 msgid "general failure" msgstr "загальна помилка" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "з’єднання заборонено набором правил" #: http.c:1005 msgid "network unreachable" msgstr "мережа недоступна" #: http.c:1006 msgid "host unreachable" msgstr "вузол недоступний" #: http.c:1007 msgid "connection refused by destination host" msgstr "у з’єднанні відмовлено вузлом призначення" #: http.c:1008 msgid "TTL expired" msgstr "Завершився строк дії TTL" #: http.c:1009 msgid "command not supported / protocol error" msgstr "команда не підтримується / помилка у протоколі" #: http.c:1010 msgid "address type not supported" msgstr "тип адреси не підтримується" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "Від сервера SOCKS надійшов запит щодо імені користувача і пароля, але у нас " "немає цих даних\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Розміри записів імені користувача та пароля для розпізнавання SOCKS мають " "бути 255 байтів\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Помилка під час записування запиту щодо розпізнавання на проксі-сервері " "SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Помилка під час читання відповіді щодо розпізнавання від проксі-сервера " "SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Неочікувана відповідь щодо розпізнавання від проксі-сервера SOCKS: %02x " "%02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Розпізнано на сервері SOCKS на основі пароля\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Не вдалося пройти розпізнавання за паролем на сервері SOCKS\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Сервер SOCKS вимагає розпізнавання GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "Сервер SOCKS вимагає розпізнавання за паролем\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "Сервер SOCKS вимагає розпізнавання\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Сервер SOCKS вимагає розпізнавання невідомого типу %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Надсилаємо запит щодо з'єднання із проксі-сервером SOCKS на %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Помилка під час записування запиту щодо з'єднання на проксі-сервері SOCKS: " "%s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Помилка під час читання відповіді щодо з'єднання від проксі-сервера SOCKS: " "%s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Неочікувана відповідь щодо з'єднання від проксі-сервера SOCKS: %02x %02x…\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Помилка проксі сервера SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Помилка проксі-сервера SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Неочікуваний тип адреси %02x у відповіді щодо з'єднання SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Надсилаємо запит щодо з'єднання із проксі-сервером HTTP на %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Не вдалося надіслати запит до проксі-сервера: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Помилка під час обробки запиту CONNECT до проксі-сервера: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Невідомий тип проксі-сервера «%s»\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Не вдалося обробити запис проксі-сервера «%s»\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Передбачено підтримку лише проксі-серверів http або socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect або openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "VPN SSL, сумісна з Cisco AnyConnect, а також ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Сумісна із Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Сумісний із VPN SSL Palo Alto Networks (PAN) GlobalProtect" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Сумісний із VPN SSL Pulse Connect Secure" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Сумісний із F5 BIG-IP SSL VPN" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "VPN SSL Fortinet" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Сумісний із VPN SSL FortiGate" #: library.c:244 msgid "PPP over TLS" msgstr "PPP над TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "Без розпізнавання PPP над TLS RFC1661/RFC1662, для тестування" #: library.c:254 msgid "Array SSL VPN" msgstr "Array SSL VPN" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "Сумісний із VPN Array Networks" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Невідомий протокол VPN «%s»\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Зібрано з використанням бібліотеки SSL без підтримки DTLS Cisco\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" "Не отримано IP-адреси за допомогою повторного надсилання ключів або " "повторного з'єднання Juniper.\n" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Не отримано IP-адреси. Перериваємо виконання\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "Під час повторного з'єднання отримано іншу застарілу IP-адресу (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Під час повторного з'єднання отримано іншу застарілу маску мережі (%s != " "%s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Під час повторного з'єднання отримано іншу адресу IPv6 (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "Під час повторного з'єднання отримано іншу маску мережі IPv6 (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Отримано налаштування IPv6, але значення MTU %d є надто малим.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Не вдалося обробити адресу сервера «%s»\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Для адреси сервера можна використовувати лише https://\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Невідомий хеш сертифіката: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Розмір наданого відбитка є меншим за мінімальний потрібний (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Немає обробника форми; розпізнавання неможливе.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" "Немає ідентифікатора форми. Це вада у коді розпізнавання OpenConnect.\n" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Помилка CommandLineToArgvW(): %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Критична помилка під час обробки командного рядка\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Помилка ReadConsole(): %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "Дію перервано користувачем\n" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "ReadConsole() не прочитано жодних вхідних даних\n" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "Помилка fgetws(): %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Помилка під час спроби перетворити вхідні дані консолі: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" "Не вдалося розмістити у пам'яті рядок зі стандартного джерела вхідних даних " "(stdin)\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Допоміжні настанови щодо OpenConnect можна знайти на сторінці\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Використовуємо %s. Маємо такі можливості:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Не встановлено рушія OpenSSL" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "Попередження: у цьому виконуваному файлів немає підтримки DTLS і/або ESP. Це " "вплине не швидкість роботи.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Підтримувані протоколи:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (типове значення)" #: main.c:743 msgid "Set VPN protocol" msgstr "Встановити протокол VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Не вдалося обробити шлях до цього виконуваного файла «%s»" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Спроба отримати пам'ять для шляху до скрипту vpnc зазнала невдачі\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "Типовий vpnc-script (можна перевизначити за допомогою --script):" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Перевизначити назву вузла «%s» на «%s»\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Користування: openconnect [параметри] <сервер>\n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Відкритий клієнт для декількох протоколів VPN, версія %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Прочитати параметри з файла налаштувань" #: main.c:914 msgid "Report version number" msgstr "Вивести дані щодо версії" #: main.c:915 msgid "Display help text" msgstr "Вивести текст довідки" #: main.c:919 msgid "Authentication" msgstr "Розпізнавання" #: main.c:920 msgid "Set login username" msgstr "Встановити ім'я користувача для входу" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Вимкнути розпізнавання за паролем або SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Не очікувати на введення даних користувачем; вийти, якщо це потрібно" #: main.c:923 msgid "Read password from standard input" msgstr "Прочитати пароль зі стандартного джерела вхідних даних" #: main.c:924 msgid "Choose authentication login selection" msgstr "Вибрати варіант розпізнавання" #: main.c:925 msgid "Provide authentication form responses" msgstr "Надати відповіді для форми розпізнавання" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Використати клієнтський сертифікат SSL CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Використати файл закритого ключа SSL KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Попереджати, якщо строк дії сертифіката < DAYS днів" #: main.c:929 msgid "Set login usergroup" msgstr "Встановити групу користувачів для входу" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Встановити пароль до ключа або пінкод SRK TPM" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Паролем до ключа є ідентифікатор файлової системи" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Типи програмного ключа: rsa, totp, hotp або oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Реєстраційні дані програмного ключа або ключ oidc" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(Зауваження: у цій збірці вимкнено libstoken (RSA SecurID))" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(Зауваження: у цій збірці вимкнено OATH Yubikey)" #: main.c:941 msgid "Server validation" msgstr "Перевірка сервера" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "Приймати лише сертифікат сервера із цим відбитком" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Вимкнути типові уповноваження для загальносистемного сертифіката" #: main.c:944 msgid "Cert file for server verification" msgstr "Файл сертифіката для перевірки сервера" #: main.c:946 msgid "Internet connectivity" msgstr "З'єднуваність із інтернетом" #: main.c:947 msgid "Set VPN server" msgstr "Встановити сервер VPN" #: main.c:948 msgid "Set proxy server" msgstr "Встановити проксі-сервер" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Встановити способи розпізнавання на проксі-сервері" #: main.c:950 msgid "Disable proxy" msgstr "Вимкнути проксі-сервер" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" "Використовувати libproxy для автоматичного налаштовування проксі-сервера" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(Зауваження: у цій збірці libproxy вимкнено)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Час очікування на повторну спробу з'єднання у секундах" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Використовувати IP при з'єднанні із вузлом HOST" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Копіювати поле TOS / TCLASS до пакетів DTLS і ESP" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Встановити локальний порт для датаграм DTLS і ESP" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Розпізнавання (двокрокове)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Використовувати куку розпізнавання COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Прочитати кутку зі стандартного джерела вхідних даних" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Виконати лише розпізнавання і вивести дані щодо входу" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Лише отримати і вивести куку; не встановлювати з'єднання" #: main.c:965 msgid "Print cookie before connecting" msgstr "Вивести куку перед встановленням з'єднання" #: main.c:968 msgid "Process control" msgstr "Керування процесом" #: main.c:969 msgid "Continue in background after startup" msgstr "Продовжити роботу у фоновому режимі після запуску" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Записати PID фонової служби до цього файла" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Скинути права доступу після встановлення з'єднання" #: main.c:974 msgid "Logging (two-phase)" msgstr "Журналювання (двокрокове)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Використовувати syslog для повідомлень щодо поступу" #: main.c:978 msgid "More output" msgstr "Докладніше виведення" #: main.c:979 msgid "Less output" msgstr "Стисліше виведення" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "Створити дамп обміну даними HTTP під час розпізнавання (неявно додає --" "verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Дописувати перед повідомленнями щодо поступу часову позначку" #: main.c:983 msgid "VPN configuration script" msgstr "Скрипт налаштовування VPN" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Використовувати IFNAME як назву інтерфейсу тунелю" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Командний рядок оболонки для використання vpnc-сумісного скрипту " "налаштовування" #: main.c:986 msgid "default" msgstr "типовий" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Передавати дані обміну до програми «script», а не tun" #: main.c:991 msgid "Tunnel control" msgstr "Керування тунелем" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Не просити про можливість з'єднання за допомогою IPv6" #: main.c:993 msgid "XML config file" msgstr "Файл налаштувань XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Запитувати про MTU у сервера (лише застарілі сервери)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Індикація MTU шляху до сервера або від сервера" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" "Увімкнути залежне від стану стискання (типовим є стискання без залежності " "від стану)" #: main.c:997 msgid "Disable all compression" msgstr "Вимкнути будь-яке стискання" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "Встановити інтервал виявлення «мертвих» вузлів (у секундах)" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Вимагати ідеальної секретності переспрямовування" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Вимкнути DTLS та ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Шифри OpenSSL, які слід підтримувати для DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" "Встановити обмеження на кількість пакетів у черзі у значення LEN пакетів" #: main.c:1004 msgid "Local system information" msgstr "Відомості щодо локальної системи" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Поле User-Agent: у заголовку HTTP" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Локальна назва вузла, про яку слід повідомити сервер" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "Тип операційної системи для звітування. Можливі значення:" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "linux linux-64 win mac-intel android apple-ios" #: main.c:1009 msgid "reported version string during authentication" msgstr "рядок версії під час розпізнавання" #: main.c:1010 msgid "default:" msgstr "типовий:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Виконання троянського виконуваного файла (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Скинути права доступу під час виконання трояна" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Виконати СКРИПТ замість троянського виконуваного файла" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" "Встановити мінімальний інтервал між повторними запусками троянської програми " "(у секундах)" #: main.c:1019 msgid "Server bugs" msgstr "Вади сервера" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Вимкнути повторне використання з'єднання HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Не намагатися виконати розпізнавання за POST XML" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" "Дозволити використання давніх шифрувань 3DES і RC4, які не є безпечними" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Не вдалося розмістити рядок у пам'яті\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Не вдалося отримати рядок з файла налаштувань: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Нерозпізнаний параметр у рядку %d: «%s»\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Параметр «%s» у рядку %d не приймає аргументів\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Параметр «%s» у рядку %d потребує аргументу\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" "Внутрішня помилка; параметр «%s» неочікувано отримав значення порожнього " "config_arg\n" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Некоректний користувач — «%s»: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Некоректний ідентифікатор користувача — «%d»: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Непридатне до обробки автодоповнення для параметра %d «--%s». Будь ласка, " "повідомте про ваду розробникам.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "з'єднано" #: main.c:1507 msgid "disconnected" msgstr "роз'єднано" #: main.c:1511 msgid "unsuccessful" msgstr "невдало" #: main.c:1516 msgid "in progress" msgstr "в процесі" #: main.c:1519 msgid "disabled" msgstr "вимкнено" #: main.c:1525 msgid "established" msgstr "встановлено" #: main.c:1528 msgid "unknown" msgstr "невідомий" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "Налаштовано як %s%s%s, з SSL%s%s %s і %s%s%s %s\n" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "Строк дії розпізнавання у сеансі буде вичерпано %s\n" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" "Отримання: % пакетів (% Б); передавання: % пакети " "(% Б)\n" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "Комплекс шифрування SSL: %s\n" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "Комплекс шифрування %s: %s\n" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "Наступна зміна ключів SSL за %ld секунд\n" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "Наступна зміна ключів %s за %ld секунд\n" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "Наступний виклик троянської програми за %ld секунд\n" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Не вдалося відкрити «%s» для запису: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Продовжуємо у фоновому режимі, номер процесу %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "Попередження: не вдалося встановити локаль: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "УВАГА: Цю версію openconnect було зібрано без підтримки iconv,\n" " але, здається ви використовуєте застаріле кодування\n" " «%s». Наслідки можуть бути несподіваними.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "УВАГА: Маємо версію openconnect %s, але\n" " бібліотека libopenconnect має версію %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" "УВАГА: цю збірку призначено лише для діагностики — у ній вам може\n" " бути дозволено встановлювати незахищені з'єднання.\n" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Не вдалося розмістити у пам'яті структуру vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "Не можна використовувати параметр «config» у самому файлі налаштувань\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Не вдалося відкрити файл налаштувань «%s»: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Некоректний режим стискання — «%s»\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" "Не можна вмикати незахищені шифрування 3DES або RC4, оскільки у бібліотеці\n" "%s більше не передбачено їхньої підтримки.\n" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Не вдалося отримати пам'ять\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Пропущено двокрапку у параметрів розв'язання\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d є надто малим\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Вимикаємо усе повторне використання з'єднань HTTP через параметр --no-http-" "keepalive.\n" "Якщо це допомагає, будь ласка, повідомте про це на адресу .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Використання --no-cert-check вважається небезпечним — його було вилучено.\n" "Виправте ваш сертифікат сервера або скористайтеся --servercert, щоб " "встановити довіру до нього.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Нульовий розмір черги є неприйнятним; використовуємо 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Версія OpenConnect %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Некоректний режим програмного ключа — «%s»\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" "Некоректний профіль операційної системи «%s»\n" "Дозволені значення: linux, linux-64, win, mac-intel, android, apple-ios\n" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "УВАГА: вами вказано %s. У цьому не повинно виникати\n" " потреби. Будь ласка, повідомте розробникам про\n" " випадки, коли перевизначення рядка пріоритетності\n" " є необхідним для встановлення з'єднання з сервером,\n" " на .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Забагато аргументів у командному рядку\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Не вказано сервер\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Цю версію openconnect було зібрано без підтримки libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "Не вдалося завершити розпізнавання\n" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Спроба створення з'єднання SSL зазнала невдачі\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Не вдалося налаштувати UDP; використовуємо замість нього SSL\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Не вказано аргументу --script; DNS і маршрутизацію не налаштовано\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Див. https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Користувач надіслав запит щодо повторного з'єднання\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "Куку не було прийнято сервером; завершуємо обробку.\n" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Сеанс перервано сервером; завершуємо роботу.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "Скасовано користувачем (%s); завершуємо роботу.\n" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "Користувач від'єднався від сеансу (%s); завершуємо роботу.\n" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "Критична помилка введення-виведення; завершуємо роботу.\n" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Невідома помилка. Завершуємо роботу.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Не вдалося відкрити %s для записування: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Не вдалося записати налаштування до %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" "Приймаємо недостатньо захищений сертифікат від сервера VPN «%s», оскільки " "використано параметр --servercert=ACCEPT.\n" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "Не вдалося перевірити сертифікат сервера у %s\n" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" "Жоден з %d відбитків, які вказано за допомогою --servercert, не відповідає " "сертифікату сервера: %s\n" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Сертифікат від сервера VPN «%s» не пройшов розпізнавання.\n" "Причина: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Щоб встановити довіру до цього сервера у майбутньому, варто додати таке до " "командного рядка:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Введіть «%s», щоб прийняти, «%s», щоб перервати; будь-що інше, щоб " "переглянути: " #: main.c:2464 main.c:2483 msgid "no" msgstr "ні" #: main.c:2464 main.c:2470 msgid "yes" msgstr "так" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Хеш ключа сервера: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Варіант розпізнавання «%s» відповідає декільком варіантам\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Варіант розпізнавання «%s» є недоступним\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "У неінтерактивному режимі потрібна реакція користувача\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Не вдалося відкрити файл ключа для запису: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Не вдалося записати ключ: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Рядок програмного ключа є некоректним\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Не вдалося відкрити файл stoken\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Не вдалося відкрити файл ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect було зібрано без підтримки libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Загальна помилка у libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect було зібрано без підтримки liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Загальна помилка у liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Не знайдено ключ Yubikey\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect було зібрано без підтримки Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Загальна помилка Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Не вдалося відкрити файл oidc\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Загальна помилка у ключі oidc\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Помилка скрипту налаштовування tun\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Не вдалося налаштувати пристрій tun\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "Затримка тунелювання через таку причину: %s\n" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "Затримка скасування (негайний зворотний виклик).\n" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "Затримка скасування.\n" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "Затримка призупинення (негайний зворотний виклик).\n" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "Затримка призупинення.\n" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Функція виклику призупинила роботу з'єднання\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Немає чого робити; засинаємо на %d мс…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Помилка WaitForMultipleObjects: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "Помилка epoll_wait() у основному циклі" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Помилка select() у основному циклі" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "Використовуємо base_mtu %d\n" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "Після вилучення заголовків %s/IPv%d MTU %d\n" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" "Після вилучення специфічного перевищення протоколу (%d без доповнення, %d з " "доповненням, %d розмір блоку), MTU %d\n" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Помилка InitializeSecurityContext(): %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Помилка AcquireCredentialsHandle(): %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" "Помилка під час спроби обмінятися даними із допоміжною програмою ntlm_auth\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Намагаємося пройти розпізнавання NTLM HTTP на проксі-сервері (single-sign-" "on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Намагаємося пройти розпізнавання NTLM HTTP на сервері «%s» (single-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Спроба виконати розпізнавання за HTTP NTLMv%d на проксі-сервері\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Спроба виконати розпізнавання за HTTP NTLMv%d на сервері «%s»\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "Перериваємося, оскільки nullppp досягнуто стану мережі.\n" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Некоректний рядок ключа base32\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" "Не вдалося отримати пам'ять для розшифрування реєстраційних даних OATH\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Цю версію OpenConnect зібрано без підтримки PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Підтвердження створення коду ключа INITIAL\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Підтвердження створення коду ключа NEXT\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Сервер відкидає програмний ключ; перемикаємося на введення вручну\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Створюємо код ключа TOTP OATH\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Створюємо код ключа HOTP OATH\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Неочікувана довжина %d для TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Отримано MTU %d від сервера\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Отримано сервер DNS %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Отримано домен пошуку DNS %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Отримано внутрішню IP-адресу %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Отримано маску мережі %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Отримано внутрішню адресу шлюзу %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Отримано маршрут включення поділу %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Отримано маршрут виключення поділу %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Отримано сервер WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Шифрування ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "HMAC ESP: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Стискання ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Порт ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Строк дії ключа ESP: %u байтів\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Строк дії ключа ESP: %u секунд\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Резервний варіант ESP до SSL: %u секунд\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Захист від відтворення ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "SPI ESP (вихідний): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d байтів реєстраційних даних ESP\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Невідома група TLV %d атрибут %d довжина %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Не вдалося обробити заголовок KMP\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Не вдалося обробити повідомлення KMP\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Отримано повідомлення KMP %d розміру %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Отримано TLV поза ESP (група %d) під час узгодження ESP KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Помилка під час спроби створити запити щодо узгодження oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Недостатньо даних для запису під час узгодження oNCP\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Прочитано %d байтів запису SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Неочікувана відповідь розміру %d після пакета назви вузла\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" "Відповіддю сервера на пакет назви вузла є повідомлення про помилку 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Це може вказувати на те, що на сервері вимкнено підтримку\n" "застарілого протоколу oNCP Juniper і уможливлено лише з'єднання\n" "за допомогою новішого протоколу Pulse Junos. У цій версії OpenConnect\n" "передбачено ЕКСПЕРИМЕНТАЛЬНУ підтримку Pulse за допомогою --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Некоректний пакет очікування на KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Мало бути повідомлення KMP 301 від сервера, але отримано %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Повідомлення KMP 301 від сервера є надто великим (%d байтів)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Отримано повідомлення KMP 301 довжини %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Не вдалося прочитати запис продовження довжини\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Запис додаткових %d байтів є надто великим; мав би складати %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Не вдалося прочитати запис продовження довжини %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Читання додаткових %d байтів повідомлення KMP 301\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Помилка під час узгодження ключів ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Вихідний запит узгодження oNCP:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "нове вхідне" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "нове вихідне" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Прочитано лише 1 байт поля довжини oNCP\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "З'єднання перервано сервером (строк дії сеансу вичерпано)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" "З'єднання перервано сервером (перевищено час очікування бездіяльності)\n" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "З'єднання перервано сервером (причина: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Сервером надіслано запис oNCP нульової довжини\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Вхідне повідомлення KMP %d розміру %d (отримано %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Продовжуємо обробку повідомлення KMP %d тепер розміру %d (отримано %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Нерозпізнаний пакет даних\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Не вдалося налаштувати ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Невідоме повідомлення KMP %d розміру %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + отримано ще %d байтів\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Вихідний пакет:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Надіслано пакет вмикання керування ESP\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "Помилка: викликано %s() із некоректним UTF-8 у аргументі «%s»\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Не вдалося обчислити перевищення DTLS для %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Не вдалося створити випадковий ключ\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Не вдалося створити SSL_SESSION ASN.1 для OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Не вдалося OpenSSL обробити SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Не вдалося ініціалізувати сеанс DTLSv1\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Надто великий розмір ідентифікатора програми\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Зворотний виклик PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Не вдалося ініціалізувати CTX DTLSv1\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Не вдалося встановити версію CTX DTLS\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Не вдалося створити ключ DTLS\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Не вдалося встановити список шифрів DTLS\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Не знайдено шифр DTLS «%s»\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Помилка SSL_set_session() із версією протоколу DTLS 0x%x\n" "Використовуєте версію OpenSSL, яка є старішою за 0.9.8m?\n" "Див. http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Скористайтеся параметром командного рядка --no-dtls command,\n" "щоб програма не виводила це повідомлення\n" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "Помилка SSL_set_session()\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "Не вдалося створити DTLS dgram BIO\n" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" "Встановлено з'єднання DTLS (з використанням OpenSSL). Комплекс шифрування %s-" "%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" "Ваша OpenSSL є старішою за ту, з якою було зібрано програму, тому DTLS може " "виявитися непрацездатним!\n" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ймовірною причиною є те, що ваша OpenSSL є непрацездатною.\n" "Див. http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Не вдалося виконати узгодження DTLS: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Не вдалося ініціалізувати шифрування ESP:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Не вдалося ініціалізувати HMAC ESP\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Не вдалося налаштувати контекст розшифровування для пакета ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Не вдалося розшифрувати пакет ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Не вдалося зашифрувати пакунок ESP:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Не вдалося встановити контекст PKCS#11 libp11:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Не вдалося завантажити модуль надавача PKCS#11 (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "Пінкод заблоковано\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "Строк дії пінкоду вичерпано\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "До системи вже увійшов інший користувач\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Невідома помилка під час спроби входу до ключа PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Вхід до слоту PKCS#11 «%s»\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Не вдалося пронумерувати сертифікати у слоті PKCS#11 «%s»\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Знайдено %d сертифікатів у слоті «%s»\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Не вдалося обробити адресу PKCS#11 «%s»\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Не вдалося пронумерувати слоти PKCS#11\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Входимо до слоту PKCS#11 «%s»\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Не вдалося знайти сертифікат PKCS#11 «%s»\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Вміст сертифіката X.509 не отримано у libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "Використовуємо вторинний сертифікат PKCS#11 %s\n" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Не вдалося пронумерувати ключі у слоті PKCS#11 «%s»\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Знайдено %d ключів у слоті «%s»\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Сертифікат не містить відкритого ключа\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "Вторинний сертифікат не містить відкритого ключа\n" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Сертифікат не відповідає закритому ключу\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "Вторинний сертифікат не відповідає закритому ключу\n" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Перевіряємо відповідність ключа EC сертифікату\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Не вдалося отримати пам'ять для буфера підписів\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Не вдалося підписати фіктивні дані для перевірки ключа EC\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Не вдалося знайти ключ PKCS#11 «%s»\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "Використовуємо вторинний ключ PKCS#11 %s\n" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "Не вдалося встановити закритий ключ з PKCS#11\n" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "Не вдалося встановити вторинний закритий ключ з PKCS#11\n" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Цю версію OpenConnect зібрано без підтримки PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "Не вдалося виконати запис до сокета TLS/DTLS\n" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "Не вдалося виконати читання з сокета TLS/DTLS\n" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Помилка читання у сеансі %s: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Помилка запису у сеансі %s: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Непридатний до обробки тип запиту щодо інтерфейсу SSL, %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Пароль PEM є надто довгим (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "Не вистачає сертифіката або ключа клієнта\n" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Не вдалося завантажити закритий ключ\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Не вдалося встановити сертифікат у контексті OpenSSL\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Зайвий сертифікат від %s: «%s»\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" "Не вдалося обробити PKCS#12 (див. наведені вище повідомлення про помилки)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" "Не вдалося обробити вторинний PKCS#12 (див. наведені вище повідомлення про " "помилки)\n" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 не містить сертифіката!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "Вторинний PKCS#12 не містить сертифіката!\n" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 не містить закритого ключа!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "Вторинний PKCS#12 не містить закритого ключа!\n" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Не вдалося завантажити рушій TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Не вдалося ініціалізувати рушій TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Не вдалося встановити пароль SRK TPM\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Не вдалося завантажити закритий ключ TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "Не вдалося завантажити вторинний закритий ключ TPM\n" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Не вдалося відкрити файл сертифіката %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "Не вдалося відкрити файл вторинного сертифіката %s: %s\n" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Не вдалося завантажити сертифікат\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Не вдалося обробити усі підтримувані сертифікати. Виконуємо спробу попри " "це...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" "Не вдалося обробити вторинні підтримувані сертифікати. Виконуємо спробу " "попри це...\n" #: openssl.c:840 msgid "PEM file" msgstr "Файл PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Не вдалося створити BIO для запису сховища ключів «%s»\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Не вдалося завантажити закритий ключ (помилковий пароль?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "Не вдалося завантажити вторинний закритий ключ (помилковий пароль?)\n" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" "Не вдалося завантажити закритий ключ (див. наведені вище повідомлення про " "помилки)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" "Не вдалося завантажити вторинний закритий ключ (див. наведені вище " "повідомлення про помилки)\n" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Не вдалося завантажити сертифікат X509 зі сховища ключів\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Не вдалося відкрити файл закритого ключа %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "Не вдалося завантажити вторинний закритий ключ\n" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "Не вдалося розшифрувати файл вторинного сертифіката PKCS#8\n" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "Введіть вторинний пароль PKCS#8:" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Не вдалося перетворити PKCS#8 на EVP_PKEY OpenSSL\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Не вдалося перетворити вторинний PKCS#8 на EVP_PKEY OpenSSL\n" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Не вдалося ідентифікувати тип закритого ключа у «%s»\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Встановлено відповідність альтернативній назві DNS «%s»\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Не знайдено відповідників серед альтернативних назв «%s»\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "У сертифікаті містилася альтернативна назва GEN_IPADD із фіктивною довжиною " "%d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Встановлено відповідність адреси %s «%s»\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Не знайдено відповідників адреси %s «%s»\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Адреса «%s» містить непорожній шлях; ігноруємо\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Встановлено відповідність адреси «%s»\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Не знайдено відповідників адреси «%s»\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Жодна із альтернативних назв у сертифікаті вузла не збігається із «%s»\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "У сертифікаті вузла не вказано призначення!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Не вдалося обробити запис призначення у сертифікаті вузла\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Невідповідність призначення сертифіката вузла («%s» != «%s»)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Встановлено відповідність призначення сертифіката вузла «%s»\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Зайвий сертифікат у файлі CA: «%s»\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Помилка у полі notAfter клієнтського сертифіката\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "Помилка у полі notAfter вторинного клієнтського сертифіката\n" #: openssl.c:1683 msgid "" msgstr "<помилка>" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "Невідповідність сертифіката SSL ключу\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Не вдалося прочитати сертифікати з файла CA «%s»\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Не вдалося відкрити файл CA «%s»\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Не вдалося створити CTX TLSv1\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "Не вдалося побудувати список шифрів OpenSSL\n" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Не вдалося встановити список шифрувань OpenSSL («%s»)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Критична помилка у з'єднанні SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Не вдалося обчислити HMAC OATH\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Узгодження EAP-TTLS з %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Критична помилка з'єднання EAP-TTLS %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "Пропущено початкову послідовність прапорців HDLC (0x7e)\n" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "Буфер HDLC завершено без FCS і послідовності прапорців (0x7e)\n" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "Фрейм HDLC є надто коротким (%d байтів)\n" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "Помилковий пакет HDLC FCS %04x\n" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "Un-HDLC-вано пакет (%ld байтів -> %ld), FCS=0x%04x\n" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "Поточний стан PPP: %s (обгортка %s):\n" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" " вхід: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" " вихід: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "Отримано MRU %d від сервера. Nak-пропонуємо більший MRU %d (наш MTU)\n" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "Отримано MRU %d від сервера. Встановлюємо наш MTU відповідно.\n" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "Отримано asyncmap 0x%08x від сервера\n" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "Отримано контрольну суму 0x%08x від сервера\n" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "Отримано стискання поля протоколу від сервера\n" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "Отримано адресу і стискання поля керування від сервера\n" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "Отримано застарілі IP-адреси від сервера, ігноруємо\n" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "Отримано стискання Ван Якобсона TCP/IP від сервера\n" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "Отримано адресу IPv4 вузла %s від сервера\n" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "Отримано адресу lical IPv6 %s від сервера\n" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "Отримано невідомий TLV %s (мітка %d, довжина %d+2) від сервера:\n" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "Отримано %ld зайвих байтів наприкінці Config-Request:\n" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "Відкинути %s/ід. %d налаштування з сервера\n" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "Nak %s/ід. %d налаштування з сервера\n" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "Ack %s/ід. %d налаштування з сервера\n" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "Запитуємо обчислений MTU %d\n" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "Надсилаємо наш %s/ід. %d запит щодо налаштування серверу\n" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "Сервером відкинуто/nak-вано параметр MRU LCP\n" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "Сервером відкинуто/nak-вано параметр asyncmap LCP\n" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "Сервером відкинуто параметр контрольної суми LCP\n" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "Сервером відкинуто/nak-вано параметр PFCOMP LCP\n" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "Сервером відкинуто/nak-вано параметр ACCOMP LCP\n" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "Сервером nak-запропоновано адресу IPv4 %s\n" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "Сервером відмовлено в обробці застарілої IP-адреси %s\n" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "Сервером відкинуто/nak-вано нашу адресу IPv4 або запит: %s\n" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "Сервером nak-запропоновано запит IPCP щодо сервера %s[%d]: %s\n" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "Сервером відкинуто/nak-вано запит IPCP щодо сервера %s[%d]\n" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "Сервером nak-запропоновано адресу link-local IPv6 %s\n" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "Сервером відкинуто/nak-вадно наш ідентифікатор інтерфейсу IPv6\n" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "Сервером відкинуто/nak-вано %s TLV (мітка %d, довжина %d+2)\n" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "Отримано %ld зайвих байтів наприкінці Config-Reject:\n" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "Отримано %s/ідентифікатор %d %s з сервера\n" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "Сервер перервав роботи з такої причини: %s\n" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "Сервер відмовив у нашому запиті щодо налаштування IPv%d\n" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "Стан передавання PPP з %s до %s на каналі %s\n" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "Об'єм даних PPP перевищує розмір буфера отримання\n" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "Отримано закороткий пакет (%d байтів). Очікуємо на більший.\n" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "Неочікуваний заголовок пакета перед PPP для обгортки %d.\n" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "Довжина даних PPP %d перевищує розмір буфера отримання %d\n" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" "Пакет PPP є неповним. Отримано %d байтів поспіль (включно із %d обгортки), " "але payload_len для заголовка дорівнює %d. Очікуємо на об'ємніші дані.\n" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Некоректна інкапсуляція PPP\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" "У пакеті міститься %d байтів після вмісту. Припускаємо обрізаний пакет.\n" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "Неочікуваний пакет IPv%d у стані PPP %s.\n" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "Отримано пакет даних IPv%d розміром %d байтів з використанням %s\n" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "Мало бути %d байтів заголовка PPP, але маємо %ld, зсуваємо вміст.\n" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "Надсилаємо Protocol-Reject для %s. Вміст:\n" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "Виявлено непрацездатний вузол!\n" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "Не вдалося встановити PPP\n" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "Надіслати запит щодо відкидання PPP як запит підтримання зв'язку\n" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "Надіслати луна-запит PPP як DPD\n" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" "Надсилаємо PPP пакет %s %s з використанням %s (ід. %d, %d байтів загалом)\n" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "Надсилаємо пакет PPP %s з використанням %s (%d байтів загалом)\n" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "Викликано connect PPP із некоректним станом DTLS %d\n" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" "Встановлено з'єднання із тунелем DTLS; виходимо із основного циклу HTTPS.\n" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" "Не вдалося встановити з'єднання із тунелем DTLS; використовуємо замість " "нього HTTPS (стан %d).\n" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "Спроба встановити тунель PPP з TLS зазнала невдачі\n" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "Некоректний стан DTLS — %d\n" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "Невдала спроба відновлення початкового стану PPP\n" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "Не вдалося пройти розпізнавання для сеансу DTLS\n" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Отримано внутрішню застарілу IP-адресу %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Не вдалося обробити адресу IPv6\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Отримано внутрішню адресу IPv6 %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Отримано маршрут включення поділу IPv6 %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Отримано маршрут виключення поділу IPv6 %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Неочікувана довжина %d для атрибута 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Шифрування ESP: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "HMAC ESP: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Лише ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Невідомий атрибут 0x%x довжини %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Прочитано %d байтів із запису IF-T/TLS\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Недостатньо даних для запису до IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Помилка під час спроби створення пакета IF-T\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Помилка під час спроби створення пакета EAP\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Неочікуваний виклик розпізнавання IF-T/TLS:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Неочікуваний вміст EAP-TTLS:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Введіть область користувача Pulse:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Область:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Виберіть область користувача Pulse:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Не вдалося обробити AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" "Досягнуто максимальної кількості сеансів. Виберіть сеанс, який слід " "завершити:\n" #: pulse.c:875 msgid "Session:" msgstr "Сеанс:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Не вдалося обробити список сеансів\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Введіть вторинні реєстраційні дані:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Введіть реєстраційні дані користувача:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Вторинне ім'я користувача:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Користувач:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Пароль:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Вторинний пароль:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Строк дії пароля вичерпано. Будь ласка, змініть пароль:" #: pulse.c:1085 msgid "Current password:" msgstr "Поточний пароль:" #: pulse.c:1090 msgid "New password:" msgstr "Новий пароль:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Підтвердження нового пароля:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Не вказано паролі.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Вказано різні паролі.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Поточний пароль є надто довгим.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Новий пароль є надто довгим.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Запит щодо коду ключа:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Будь ласка, введіть відповідь:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Будь ласка, введіть ваш пароль:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Будь ласка, введіть відомості щодо вашого вторинного ключа:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Помилка під час спроби створити запит щодо з'єднання Pulse\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Неочікувана відповідь на узгодження версії IF-T/TLS:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Версія IF-T/TLS з сервера: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Не вдалося встановити сеанс EAP-TTLS\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "УВАГА: надана сервером контрольна сума MD5 сертифіката не відповідає " "контрольній сумі сертифіката.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Помилка під час розпізнавання: обліковий запис заблоковано\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "Помилка розпізнавання: потрібен клієнтський сертифікат\n" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Помилка під час розпізнавання: код 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Невідоме значення запиту D73 0x%x. Буде надіслано запит щодо імені " "користувача і пароля.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" "Будь ласка, повідомте про це значення та поведінку програми розробникам " "офіційного клієнта.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Критична помилка розпізнавання: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Сервером Pulse надіслано запит щодо засобу перевірки вузла (Host Checker); " "це ще не реалізовано\n" "Спробуйте режим Juniper (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Непридатний до обробки пакет розпізнавання Pulse або критична помилка під " "час спроби розпізнавання\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Куку розпізнавання Pulse не прийнято\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Вхід до області Pulse\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Вибір області Pulse\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Запит щодо розпізнавання за паролем у Pulse, код 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" "Запит щодо пароля Pulse із невідомим кодом 0x%02x. Будь ласка, повідомте про " "це розробникам.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Запит щодо коду загального ключа пароля Pulse\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Обмеження на кількість сеансів Pulse, %d сеансів\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Непридатний до обробки запит щодо розпізнавання у Pulse\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" "Неочікувана відповідь замість повідомлення про успіх розпізнавання IF-T/" "TLS:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" "Помилка EAP-TTLS: спорожнення виведених даних із вхідними байтами у черзі " "обробки\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Помилка під час спроби створити буфер EAP-TTLS\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Не вдалося прочитати Acknowledge EAP-TTLS: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Прочитано %d байтів із запису EAP-TTLS IF-T/TLS\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Помилковий пакет Acknowledge EAP-TTLS\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Помилковий пакет EAP-TTLS (довжина %d, лишилося %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Неочікуваний пакет налаштування Pulse:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Отримано маршрут невідомого типу 0x%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Некоректній пакет налаштовування ESP:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Некоректне налаштування ESP\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Помилковий пакет IF-T/TLS, а мали бути налаштування:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Неочікуваний пакет IF-T/TLS, а мали бути налаштування:\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "Виявлено недостатність налаштувань\n" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "Помилка під час спроби зміни ключів ESP\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "Критична помилка Pulse (причина: %ld): %s\n" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Невідомий пакет Pulse\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Надсилаємо пакет даних IF-T/TLS у %d байтів\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Відкидаємо помилкове включення поділу: «%s»\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Відкидаємо помилкове виключення поділу: «%s»\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "УВАГА: для включення поділу «%s» встановлено біти вузла, замінюємо їх на «%s/" "%d».\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "УВАГА: для виключення поділу «%s» встановлено біти вузла, замінюємо їх на " "«%s/%d».\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Ігноруємо застарілу мережу, оскільки адреса «%s» є некоректною.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" "Ігноруємо застарілу мережу, оскільки маска мережі «%s» є некоректною.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "Не вдалося отримати стан виходу зі скрипту: %s\n" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "Скриптом «%s» повернуто повідомлення про помилку %ld\n" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "Роботу скрипту не було завершено протягом 10 секунд.\n" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Не вдалося запустити скрипт «%s» для %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Скрипт «%s» завершив роботу нештатно (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Скриптом «%s» повернуто повідомлення про помилку %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Не вдалося виконати select() для з'єднання сокетів" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "З'єднання сокетів скасовано\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Помилка setsockopt(TCP_NODELAY) на сокеті TLS:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Не вдалося повторно з'єднатися із проксі-сервером %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Не вдалося повторно з'єднатися із вузлом %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Проксі від libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Помилка getaddrinfo для вузла «%s»: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Повторно встановлюємо з'єднання із сервером DynDNS за допомогою раніше " "кешованої IP-адреси\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Намагаємося з'єднатися із проксі-сервером %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Намагаємося з'єднатися із сервером %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "З'єднано із %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Не вдалося розмістити у пам'яті сховище даних sockaddr\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Не вдалося з'єднатися із %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Забуваємо про непрацездатну попередню адресу вузла\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Не вдалося з'єднатися із вузлом %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Повторно з'єднуємося із проксі-сервером %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Не вдалося отримати ідентифікатор файлової системи для пароля\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Не вдалося відкрити файл закритого ключа «%s»: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Немає помилок" #: ssl.c:727 msgid "Keystore locked" msgstr "Сховище ключів заблоковано" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Неініціалізоване сховище ключів" #: ssl.c:729 msgid "System error" msgstr "Системна помилка" #: ssl.c:730 msgid "Protocol error" msgstr "Помилка протоколу" #: ssl.c:731 msgid "Permission denied" msgstr "Відмовлено у доступі" #: ssl.c:732 msgid "Key not found" msgstr "Ключ не знайдено" #: ssl.c:733 msgid "Value corrupted" msgstr "Значення пошкоджено" #: ssl.c:734 msgid "Undefined action" msgstr "Невизначена дія" #: ssl.c:738 msgid "Wrong password" msgstr "Неправильний пароль" #: ssl.c:739 msgid "Unknown error" msgstr "Невідома помилка" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Не вдалося виконати select() для командного сокета" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "%s() використано із непідтримуваним режимом «%s»\n" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Не вдалося відкрити %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Помилка fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Файл %s є порожнім\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "Розмір файла %s є підозріливим — %\n" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Не вдалося розмістити у пам'яті %d байтів %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Не вдалося прочитати %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Невідоме сімейство протоколів %d. Неможливо створити адресу сервера UDP.\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Відкритий сокет UDP" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" "Невідоме сімейство протоколів %d. Неможливо здійснювати передавання даних " "UDP.\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Пов'язування сокета UDP" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "З'єднання із сокетом UDP" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Зробити сокет UDP неблокувальним" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Строк дії куки вичерпано, завершуємо сеанс\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "присипляння на %d с, лишилося часу очікування — %d с\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Не вдалося виконати select() для сокета надсилання" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Не вдалося виконати select() для сокета отримання" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Ключ SSPI є надто великим (%ld байтів)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Надсилаємо ключ SSPI із %lu байтів\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Не вдалося надіслати ключ розпізнавання SSPI на проксі-сервер: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Не вдалося отримати ключ розпізнавання SSPI з проксі-сервера: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "Сервером SOCKS повідомлено про помилку контексту SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Невідома відповідь щодо стану SSPI (0x%02x) від сервера SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Отримано ключ SSPI з %lu байтів: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Помилка QueryContextAttributes(): %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Помилка EncryptMessage(): %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" "Результат виконання EncryptMessage() є надто великим (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Надсилаємо узгодження захисту SSPI з %u байтів\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" "Не вдалося надіслати відповідь щодо захисту SSPI до проксі-сервера: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" "Не вдалося отримати відповідь щодо захисту SSPI від проксі-сервера: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "Отримано відповідь щодо захисту SSPI з %d байтів: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Помилка DecryptMessage: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" "Некоректна відповідь щодо захисту SSPI від проксі-сервера (%lu байтів)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" "Введіть реєстраційні дані, щоб розблокувати ключ програмного забезпечення." #: stoken.c:107 msgid "Device ID:" msgstr "Ід. пристрою:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Програмний ключ обійдено користувачем.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Слід вказати вміст усіх полів; повторіть спробу.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Загальна помилка у libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Помилковий ідентифікатор пристрою або пароль; повторіть спробу.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Ініціалізацію програмного ключа виконано успішно.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Введіть пінкод програмного ключа." #: stoken.c:212 msgid "PIN:" msgstr "Пінкод:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Некоректний формат пінкоду; повторіть спробу.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Створюємо код ключа RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Помилка під час спроби доступу до ключа реєстру для адаптерів мережі\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Не вдалося прочитати %s\\%s або прочитані дані не є рядком\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "%s\\Невідомий ComponentId «%s»\n" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Знайдено %s у %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Не вдалося відкрити ключ реєстру %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" "Не вдалося прочитати ключ реєстру %s\\%s або прочитані дані не є рядком\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "Помилка GetAdapterIndex(): %s\n" "Повертаємося до GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "Помилка GetAdaptersInfo(): %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "Помилка GetAdaptersAddresses(): %s\n" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" "Адаптер «%S» / %ld перебуває у стані UP і використовує нашу адресу IPv%d. " "Вирішення проблеми неможливе.\n" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" "Адаптер «%S» / %ld перебуває у стані DOWN і використовує нашу адресу IPv%d. " "Ми заберемо цю адресу у нього.\n" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "Помилка GetUnicastIpAddressTable(): %s\n" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "Помилка DeleteUnicastIpAddressEntry(): %s\n" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" "GetUnicastIpAddressTable() не знайдено відповідної адреси для заміщення\n" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Не вдалося відкрити %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "Відкрито пристрій tun %S\n" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Не вдалося отримати дані щодо версії драйвера TAP: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Помилка: потрібна версія драйвера TAP-Windows 9.9 або новіша (виявлено %ld." "%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Не вдалося встановити IP-адреси TAP: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Не вдалося встановити стан носія TAP: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "Ігноруємо невідповідний інтерфейс «%S»\n" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "Не вдалося перетворити назву інтерфейсу у кодування UTF-8\n" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "Використовуємо пристрій %s «%s», індекс %d\n" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" "УВАГА: підтримка Wintun є експериментальною, тому робота може бути\n" " нестабільною. Якщо у вас виникають проблеми, встановіть драйвер\n" " TAP-Windows. Див. https://www.infradead.org/openconnect/building.html\n" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "Не вдалося побудувати назву інтерфейсу\n" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" "Під час спроби створення адаптера Wintun відмовлено у доступі. У вас справді " "є привілеї адміністратора?\n" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" "Не знайдено адаптерів ні Windows-TAP, ні Wintun. Чи встановлено драйвер?\n" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Можливість з'єднання перервано пристроєм TAP. Розриваємо з'єднання.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Не вдалося прочитати дані з пристрою TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Не вдалося повністю прочитати дані з пристрою TAP: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Записано %ld байтів до tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Очікуємо на запис до tun…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Записано %ld байтів до tun після очікування\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Не вдалося виконати запис до пристрою TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Підтримки породження скриптів тунелів у Windows ще не передбачено\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Не вдалося відкрити /dev/tun для вимірювання" #: tun.c:92 msgid "Can't push IP" msgstr "Не вдалося надіслати IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Не вдалося встановити назву інтерфейсу" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "Не вдалося відкрити %s: %s\n" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Не вдалося виміряти %s для IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "відкрити /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Не вдалося створити tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Не вдалося перевести дескриптор файла tun у режим message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "Підтримки пристрою tun на цій платформі не передбачено\n" #: tun.c:205 msgid "open net" msgstr "відкрити net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Не вдалося відкрити пристрій tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Не вдалося пов'язати локальний пристрій тунелю (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Для налаштовування локальної мережі openconnect має бути запущено від імені " "root.\n" "Див. https://www.infradead.org/openconnect/nonroot.html, щоб дізнатися " "більше\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Некоректна назва інтерфейсу — «%s»; має бути «utun%%d» або «tun%%d»\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Не вдалося відкрити сокет SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Не вдалося опитати систему щодо ідентифікатора керування utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Не вдалося розмістити у пам'яті назву пристрою utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Не вдалося встановити з'єднання із модулем utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Некоректна назва інтерфейсу — «%s»; має бути «tun%%d»\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Не вдалося відкрити %s: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Не вдалося зробити сокет tun неблокувальним: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "Помилка socketpair: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "Помилка fork: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(скрипт)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Не вдалося записати вхідний пакет: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "Не вдалося встановити розмір vring %d: %s\n" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "Не вдалося встановити основу vring %d: %s\n" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "Не вдалося встановити модуль приймача vring %d: %s\n" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "Не вдалося встановити дескриптор файла події виклику vring %d: %s\n" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "Не вдалося встановити дескриптор файла події відкидання vring %d: %s\n" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "Не використовуємо vhost-net через низьку довжину черги, %d\n" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "Не вдалося відкрити /dev/vhost-net: %s\n" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "Не вдалося встановити власника vhost: %s\n" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "Не вдалося отримати можливості vhost: %s\n" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "vhost-net не вистачає потрібних можливостей: %llx\n" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "Не вдалося встановити можливості vhost: %s\n" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "Не вдалося відкрити дескриптор файла події відкидання vhost: %s\n" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "Не вдалося відкрити дескриптор файла події виклику vhost: %s\n" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "Не вдалося встановити прив'язку до пам'яті vhost: %s\n" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "Не вдалося встановити sndbuf tun: %s\n" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "Використовуємо vhost-net для прискорення tun, розмір кільця %d\n" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "Помилка: vhost повернуто некоректний дескриптор %d, довжина %d\n" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "vhost повернуто порожній дескриптор %d\n" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "Вільний пакет передавання %p [%d] [використано %d]\n" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "Пакет отримання %p(%d) [%d] [використано %d]\n" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "Пакет передавання черги %p із описом %d, доступно %d\n" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "Пакет отримання черги %p із описом %d, доступно %d\n" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "Негайне пробудження через пересування кільця vhost з 0x%x до 0x%x\n" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "Не вдалося викинути дескриптор файла події vhost-net\n" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "Викинути кільце vhost\n" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "Не вдалося завантажити wintun.dll\n" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "Не вдалося визначити назви функцій з wintun.dll\n" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "Завантажено Wintun v%u.%u\n" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "Не вдалося створити сеанс Wintun: %s\n" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "Не вдалося отримати пакет від адаптера Wintun «%S»: %s\n" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" "Відкинути пакет надмірного розміру від адаптера Wintun «%S» (%ld > %d)\n" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "Не вдалося надіслати пакет крізь адаптер Wintun «%S»: %s\n" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Вважаємо назву вузла «%s» простою\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Не вдалося знайти суму SHA1 наявного файла\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 файла налаштувань XML: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Не вдалося обробити файл налаштувань XML %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Вузол «%s» має адресу «%s»\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Вузол «%s» належить групі користувачів «%s»\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Вузла «%s» немає у списку налаштувань; вважаємо його простою назвою вузла\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Не вдалося надіслати «%s» до аплету ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Некоректна коротка відповідь на «%s» від аплету ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Відповідь із повідомленням щодо помилки у «%s»: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "вибрати команду для аплету" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Невідома відповідь від аплету ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Виявлено аплет ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Аплету OATH Yubikey потрібен пінкод" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Пінкод Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Не вдалося обчислити відповідь щодо розблокування Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "команда розблокування" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" "Намагаємося виконати варіант PBKBF2 із обрізаними символами для пінкоду " "Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Не вдалося встановити контекст PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Встановлено контекст PC/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Не вдалося опитати список читачів: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Не вдалося встановити з'єднання із читачем PC/SC «%s»: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Встановлено з'єднання із читачем PC/SC «%s»\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Не вдалося отримати ексклюзивний доступ до читача «%s»: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "команда списку ключів" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Знайдено ключ %s/%s «%s» на «%s»\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Ключ «%s» не знайдено на Yubikey «%s». Шукаємо інший Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Сервер відкидає ключ Yubikey; перемикаємося на введення вручну\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Створюємо код ключа Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Не вдалося отримати ексклюзивний доступ до Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "команда обчислення" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Нерозпізнана відповідь від Yubikey під час створення коду ключа\n" openconnect-8.20/po/pt_BR.po0000644000076400007640000060120114204456073017521 0ustar00dwoodhoudwoodhou00000000000000# Brazilian Portuguese Translation of Network-manager-openconnect # Copyright (C) 2022 NETWORK-MANAGER-OPENCONNECT'S copyright holder # This file is distributed under the same license as the network-manager-openconnect package. # Antonio Fernandes C. Neto , 2010. # Djavan Fagundes , 2011. # Ricardo Barbosa , 2014. # Henrique Machado Campos , 2020. # Enrico Nicoletto , 2008, 2014, 2021. # Rafael Fontenelle , 2013-2021. # Matheus Barbosa , 2022. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-07-28 11:30-0300\n" "Last-Translator: Matheus Barbosa \n" "Language-Team: Brazilian Portuguese \n" "Language: pt_BR\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n > 1)\n" "X-Generator: Gtranslator 40.0\n" "X-Project-Style: gnome\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "Não foi localizado nenhum cookie ANsession\n" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie inválido “%s”\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Localizado servidor DNS %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "Obteve domínio de pesquisa %s\n" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "Elemento de configuração de vetor desconhecido “%s”\n" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "Configuração inicial: Túnel de velocidade %d, enc %d, %d DPD\n" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "Escrita curta em vetor de negociação JSON\n" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "Falha ao ler resposta de vetor JSON\n" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "Resposta inesperada em requisição de vetor JSON:\n" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "Falha ao analisar resposta de vetor JSON\n" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "Erro ao criar requisição de negociação de vetor\n" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado inesperado %d do servidor\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "Erro ao construir vetor de pacote de negociação DTLS\n" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "Escrita curta em negociação de vetor\n" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "Falha ao ler resposta de negociação UDP\n" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "DTLS habilitado na porta %d\n" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "Recusando túnel UDP não-DTLS\n" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "Falha ao ler resposta ipff\n" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Alocação falhou\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Pacote curto recebido (%d bytes)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Recebido pacote de controle do tipo %x:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Recebido pacote de dados de %d bytes\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL não escreveu bytes suficiente! Perguntou por %d, enviou %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Renovação da chave CSTP falhou\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Re-negociação falhou; tentando novo túnel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection TCP detectou par morto!\n" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "Falha na reconexão TCP\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Enviar DPD TCP\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Enviar keepalive TCP\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Enviando pacote de desligamento DTLS\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Enviando pacote com dados não comprimidos de %d bytes\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Tentar nova conexão DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "Falha ao receber resposta de autenticação de DTLS\n" #: array.c:1084 msgid "DTLS session established\n" msgstr "Sessão DTLS estabelecida\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "Recebido IP Legado sobre DTLS; presumindo estabelecido\n" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "Recebido IPv6 sobre DTLS; presumindo estabelecido\n" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "Recebido pacote DTLS desconhecido\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "Erro ao criar requisição de conexão para sessão DTLS\n" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "Falha na escrita de requisição de conexão para sessão DTLS\n" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recebido pacote DTLS 0x%02x de %d bytes\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Renovação da chave DTLS expirou\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "A re-negociação DTLS falhou; reconectando.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection DTLS detectou par morto!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Enviar DPD DTLS\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falha ao enviar requisição DPD. Esperar desconexão\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Enviou pacote DTLS de %d bytes; envio de DTLS retornou %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Desconexão falhou\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Desconexão feita com sucesso.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" "Autenticação SAML requirida; usando portal-userauthcookie para continuar " "SAML.\n" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" "Autenticação SAML requerida; utilizando o portal-prologonuserauthcookie para " "continuar SAML.\n" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Campo de formulário do destino %s foi especificado; presumindo que " "autenticação SAML %s está completa.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "Autenticação SAML %s é requerida via %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "Autenticação SAML %s é requerida por script externo.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Quando autenticação SAML for completada, especifique o campo de formulário " "do destino anexado :nome_do_campo para entrar na URL.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Por favor, insira seu nome de usuário e senha" #: auth-globalprotect.c:159 msgid "Username" msgstr "Nome de usuário" #: auth-globalprotect.c:174 msgid "Password" msgstr "Senha" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Desafio: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "Acesso do GlobalProtect retornou um valor de argumento inesperado arg[%d]=" "%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Login GlobalProtect retornou %s=%s (esperava %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Login GlobalProtect retornou %s vazio ou faltando\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Login GlobalProtect retornou %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Por favor reportar %d valores inesperados acima (dos quais %d são fatais) " "para \n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Por favor, selecione o gateway GlobalProtect." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "GATEWAY:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Ignorando intervalo de relatório HIP do portal (%d minutos), pois o " "intervalo já está definido para %d minutos.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Portal definiu intervalo de relatório HIP para %d minutos.\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d servidores gateway disponíveis:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" "Configuração do portal GlobalProtect não lista porta de entrada de " "servidores.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falha ao gerar código de token OTP; desabilitando token\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "O servidor não é um portal nem gateway GlobalProtect.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorando item submetido de formulário desconhecido “%s”\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorando item de entrada de formulário desconhecido “%s”\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Descartando parâmetro duplicado “%s”\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Não foi possível tratar de formulário method=“%s“, action=“%s“\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Campo de área de texto desconhecida: “%s”\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Falha ao alocar memória para comunicação com TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Falha ao enviar comando para TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Suporte a TNCC não foi implementado ainda no Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nenhum cookie DSPREAUTH; não tentar TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "Tentando executar o script verificador de trojan TNCC/Host “%s”.\n" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Falha ao executar script TNCC %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Início enviado; esperando por uma resposta do TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Falha ao ler resposta de TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Recebida resposta de %s malsucedida de TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "TNCC resposta 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Segunda linha da resposta TNCC: “%s”\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Obteve novo cookie DSPREAUTH do TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Obteve intervalo de reativação do TNCC: %d seconds\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Linha não vazia inesperada de TNCC após cookie DSPREAUTH: “%s”\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Muitas linhas não vazias do TNCC após o cookie DSPREAUTH\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Falha ao analisar documento HTML\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Falha ao localizar ou analisar formulário web na página de login\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Encontrado formulário sem nenhum “nome” ou “id”\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" "Ação (%s) do formulário indica que provavelmente o verificador TNCC/Host " "falhou.\n" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Formulário desconhecido (nome “%s”, id “%s”)\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Despejando formulário HTML desconhecido:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Escolha da forma não possui nome\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "nome %s não inserido\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Nenhum tipo de entrada na forma\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Nenhum nome de entrada na forma\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada desconhecida %s na forma\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Resposta vazia do servidor\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Falha ao analisar resposta do servidor\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Resposta foi:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Recebeu quando não esperava.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Resposta XML não possui nó de “auth”\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Requisitou senha, mas “--no-passwd” está definido\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" "Certificado do cliente faltando ou incorreto (falha na validação do " "certificado)" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Não será baixado perfil XML porque SHA1 já corresponde\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falha ao abrir conexão HTTPS para %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Falha ao enviar requisição GET para nova configuração\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Arquivo de configuração baixado não confere com SHA1 esperado\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Baixado novo perfil XML\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Erro: A execução do trojan “Cisco Secure Desktop” nesta plataforma ainda não " "foi implementada.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Falha ao definir gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Falha ao definir grupos para %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Falha ao definir uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Usuário de uid=%ld inválido: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falha ao mudar para o diretório inicial do CSD “%s”: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Erro: O servidor solicitou que nós executemos hostscan de CSD.\n" "Você precisa fornecer um argumento --csd-wrapper adequado.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Erro. O servidor solicitou baixar e executar um trojan de “Cisco Secure " "Desktop”.\n" "Esta funcionalidade está desabilitada por padrão por motivos de segurança. " "Então, talvez você queira habilitá-la.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "O diretório temporário “%s” não pode ser escrito: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falha ao abrir arquivo de script CSD temporário: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falha ao escrever arquivo de script CSD temporário: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "Tentando executar o script trojan CSD “%s”.\n" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "O script CSD “%s” saiu anormalmente\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "O script CSD “%s” retornou status não-zero: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Autenticação pode falhar. Se seu script não está retornando zero, conserte " "isso. Futuras versões do openconnect irão abortar nesse erro.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "O script CSD “%s” saiu anormalmente\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Aviso: você está executando um código de CSD inseguro com privilégios de " "root\n" "\t Use o parâmetro de linha de comando “--csd-user”\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falha ao executar script CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Resposta desconhecida do servidor\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Servidor requisitou certificado de cliente SSL após um ter sido fornecido\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "O servidor requisitou um certificado de cliente SSL; nenhum foi configurado\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST habilitado\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Incapaz de buscar CSD stub. Prosseguindo de qualquer maneira com o script " "CSD wrapper.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "Obtendo stub CSD para %s plataforma (tamanho de %d bytes).\n" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Renovando %s após 1 segundo…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(erro 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Erro ao descrever erro!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ERRO: Não foi possível inicializar sockets\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "ERRO CRÍTICO: segredo mestre DTLS está não inicializado. Por favor, relate " "isso.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Erro ao criar requisição de HTTPS CONNECT\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Erro ao obter resposta HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Serviço VPN indisponível; motivo: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obteve resposta HTTP CONNECT inapropriável: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obteve resposta CONNECT: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Sem memória suficiente para os parâmetros\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID não tem 64 caracteres; tem: “%s”\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID é inválido; tem: “%s”\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "DTLS-Content-Encoding desconhecido %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding desconhecido %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Nenhum MTU foi recebido. Abortando\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP conectado. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Configuração da compressão falhou\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Alocação da buffer de deflate falhou\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "falha ao inflar\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Descompressão LZS falhou: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Descompressão LZ4 falhou\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo de compressão desconhecida %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Recebeu o pacote de dados comprimido %s de %d bytes (era %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "deflate falhou %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Tamanho de pacote inesperado. SSL_read retornou %d, mas o pacote é\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Obtendo requisição DPD de CSTP\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Obteve resposta DPD CSTP\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Obteve keepalive CSTP\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Recebeu pacote de dados sem compressão de %d bytes\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Recebeu desconexão do servidor: %02x “%s”\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Recebeu desconexão do servidor\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Pacote comprimido recebido em modo !deflate\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "recebeu pacote de terminação do servidor\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pacote desconhecido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection CSTP detectou par morto!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Reconexão falhou\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Enviar DPD CSTP\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Enviar keepalive CSTP\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Enviando pacote de dados comprimido de %d bytes (era %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar pacote BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Escrevendo abreviação de pacote BYE\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Tentando autenticação Digest ao proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Tentando autenticação Digest ao servidor “%s”\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Conexão DTLS tentada com um descritor de arquivo existente\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Nenhum endereço DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "O servidor ofereceu nenhum parâmetro de cifra DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Nenhum DTLS quando conectado via proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializado. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pacote desconhecido (tamanho %d) recebido: %02x %02x %02x %02x…\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS isso: %d, TOS último: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Obteve requisição de DPD DTLS\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falha ao enviar resposta de DPD. Esperar desconexão\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Obteve resposta de DPD DTLS\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Obteve keepalive DTLS\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "O pacote comprimido DTLS recebido quando a compressão não está habilitada\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipo de pacote DTLS desconhecido %02x, tamanho %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Enviar keepalive DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falha ao enviar requisição de keepalive. Esperar desconexão\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Iniciando detecção de MTU (min=%d, máx=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Enviando sonda DPD de MTU (%u bytes)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Falha ao enviar requisição DPD (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Tempo muito longo no loop de detecção de MTU; presumindo MTU negociado.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Tempo muito longo no loop de detecção de MTU; MTU definido para %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Recebido pacote (%.2x) inesperado na detecção de MTU; ignorando.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "Nenhuma resposta para tamanho %u após %d tentativas; MTU declarado é %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Falha ao receber requisição DPD (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Recebida sonda DPD de MTU (%u bytes)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Detectado MTU de %d bytes (era %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nenhuma alteração no MTU após detecção (era %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Aceitando pacote ESP esperado com seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Aceitando pacote ESP depois do esperado com seq %u (esperava %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Descartando pacote ESP antigo com seq %u (esperava %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Tolerando pacote ESP antigo com seq %u (esperava %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Descartando replay de pacote ESP com seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Tolerando replay de pacote ESP com seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Aceitando pacote ESP problemático com seq %u (esperava %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parâmetros para ESP %s: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Criptografia ESP tipo %s chave 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Autenticação ESP tipo %s com chave 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "entrada" #: esp.c:94 msgid "outgoing" msgstr "saída" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Enviar sondas ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Recebido pacote ESP de SPI antigo 0x%x, seq %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Recebido pacote ESP com SPI 0x%08x inválido\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "Recebido pacote de IP Legado ESP de %d bytes\n" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "Recebido pacote de IP Legado de ESP de %d bytes (compressão-LZO)\n" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "Recebido pacote IPv6 ESP de %d bytes\n" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" "Recebido pacote ESP de %d bytes com tipo de carga não reconhecida %02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Comprimento de preenchimento %02x inválido no ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de preenchimento inválidos em ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Sessão ESP estabelecida com o servidor\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Falha ao alocar memória para descriptografar pacote ESP\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Descompressão LZO de pacote ESP falhou\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO descomprimiu %d bytes em %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Renovação de chave não implementada para ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP detectou par morto\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Enviar sondas ESP para DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive não implementado para ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Reenfileirando envio falho de ESP:%s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Falha ao enviar pacote ESP: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "Enviado pacote IPv%d ESP de %d bytes\n" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Falha ao gerar chaves aleatórias para ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Falha ao gerar IV inicial para ESP\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" "AVISO: não foi localizado nenhum formulário de login HTML; presumindo " "heurística de campos de usuário e senha\n" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "ID de formulário desconhecido “%s” (era esperado 'auth_form')\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Falha ao analisar resposta do perfil F5\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Falha ao localizar parâmetros de perfil VPN\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Falha ao analisar resposta de parâmetros F5\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "Tempo limite de ociosidade é %d minutos\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Obteve rotas padrão\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Obteve SplitTunneling0 com valor de %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Obteve servidor DNS %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Obteve servidor WINS/NBNS %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Obteve domínio de pesquisa %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "Obtida rota de exclusão de split %s\n" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "Obtida rota de inclusão de split %s\n" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "DTLS está habilitado na porta %d\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" "AVISO: O servidor habilita DTLS mas também requer HDLC. Desabilitando DTLS,\n" " pois o HDLC impede a determinação de MTU eficiente e consistente.\n" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Falha ao localizar parâmetros de VPN\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Obteve endereços de IP legados %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Obteve endereço IPv6 %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Obteve parâmetros de perfil “%s”\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Obteve ipv4 %d ipv6 %d hdlc %d ur_Z “%s”\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Erro ao estabelecer conexão F5\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Obteve área de autenticação “%s”\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "Falha ao analisar XML de configuração Fortinet\n" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Tempo limite de ociosidade é %d minutos.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" "O servidor relata que a reconexão-após-queda é permitida dentro de %d " "segundos, %s\n" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "mas somente da mesma fonte do endereço IP" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "mesmo se a fonte do endereço IP mude" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" "O servidor relata que a reconexão-após-queda não é permitida. OpenConnect " "não\n" "poderá reconectar se um par morto for detectado. Se a reconexão funcionar,\n" "por favor relate para \n" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "A plataforma relatada é %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Obteve IPv%d servidor DNS %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" "AVISO: Obteve domínios de DNS divididos %s (ainda não foi implementado)\n" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" "AVISO: Obteve servidor de DNS dividido %s (ainda não foi implementado)\n" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "Obteve IPv%d rota %s\n" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" "O servidor não enviou . " "OpenConnect\n" "provavelmente não poderá reconectar a um par morto caso seja detectado.\n" "Se a reconexão FUNCIONAR, relate para \n" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "Não há cookie nomeado como SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" "O servidor Fortinet está rejeitando a requisição para opção de conexão. " "Isso\n" "foi observado depois da reconexão em alguns casos. Por favor relate para\n" ", ou veja as discussões em\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 e\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "Erro ao estabelecer conexão Fortinet\n" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "Não foi recebida a resposta svrhello esperada.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "status de svrhello foi “%.*s” ao invés de “ok”\n" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Adiando a retomada de DTLS até CSTP gerar uma PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Falha ao gerar string de prioridade DTLS\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Falha ao definir a prioridade DTLS: “%s”: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Falha ao alocar credenciais: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Falha ao gerar chave DTLS: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Falha ao definir a chave DTLS: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Falha ao definir a credenciais PSK DTLS: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" "Parâmetros DTLS desconhecidos para a Suíte Criptografada requisitada “%s”\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falha ao definir os parâmetros de sessão DTLS: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS usou %d bytes aleatórios do ClientHello; isso nunca deveria " "acontecer\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS enviou aleatoriamente ClientHello inseguro. Atualize para versão " "3.6.13 ou mais atual.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Falha ao inicializar DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU %d do par é muito pequeno para permitir DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "MTU de DTLS reduzido para %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Resumo de sessão DTLS falhou; possível ataque MITM. Desabilitando DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falha ao definir o MTU DTLS: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Conexão DTLS estabelecida (usando GnuTLS). Suíte Criptografada %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compressão de conexão DTLS usando %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Limite de tempo para negociação DTLS\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Negociação DTLS falhou: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Há algum firewall impedindo que você envie pacotes UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Falha ao inicializar cifra ESP: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Falha ao inicializar HMAC ESP: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Falha ao calcular HMAC para pacote ESP: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Recebido pacote ESP com HMAC inválido\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Descriptografia de pacote ESP falhou: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Falha ao criptografar pacote ESP: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Falha em selecionar () para TLS" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "Escrita TLS/DTLS cancelada\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Falha ao escrever em socket TLS/DTLS: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "Falha em selecionar () para TLS/DTLS" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "Leitura TLS/DTLS cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "Socket TLS/DTLS fechado inadequadamente\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Falha ao ler de socket TLS/DTLS: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Tentativa de leitura em sessão %s inexistente\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "Erro de leitura em %s sessão: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "Tentativa de escrita em sessão %s inexistente\n" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Erro de escrita em %s sessão: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Não foi possível extrair o tempo de expiração do certificado\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Certificado do cliente expirou em" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "Certificado do cliente secundário expirou em" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Certificado do cliente expira brevemente em" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "Certificado do cliente secundário expira brevemente em" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falha ao carregar item “%s” da keystore: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falha ao abrir o arquivo de chave/certificado %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falha ao obter estado do arquivo de chave/certificado %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Falha ao alocar buffer do certificado\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falha ao ler certificado para a memória: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falha ao configurar estrutura de dados PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falha ao descriptografar arquivo de certificado PKCS#12\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Insira a frase secreta PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "Insira a frase secreta PKCS#12 secundária:" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falha ao processar arquivo PKCS#12: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falha ao ler certificado PKCS#12: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "Falha ao carregar certificado PKCS#12 secundário: %s\n" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Não foi possível inicializar o hash MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Erro no hash MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Faltando o cabeçalho DEK-Info: da chave criptografada em OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Não foi possível determinar o tipo de criptografia de PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de criptografia PEM sem suporte: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Sal inválido no arquivo PEM criptografado\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Erro na decodificação base64 de arquivo PEM criptografado: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Arquivo PEM criptografado muito curto\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Falha ao inicializar cifra para descriptografar arquivo PEM: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falha ao descriptografar chave PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Descriptografia de chave PEM falhou\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Insira a frase secreta PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "Insira a frase secreta PEM secundária:" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Esse binário compilado sem suporte a chave do sistema\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Esse binário compilado sem suporte a PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Usando certificado PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Usando certificado do sistema %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Erro no carregamento de certificado de PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Erro no carregamento de certificado do sistema: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Usando arquivo de certificado %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "Usando arquivo de certificado secundário %s\n" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "O arquivo PKCS#11 continha nenhum certificado\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Nenhum certificado encontrado no arquivo" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "O carregamento de certificado falhou: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "Falha ao carregar certificado secundário: %s\n" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Usando chave do sistema %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "Usando chave do sistema secundária %s\n" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Erro na inicialização da estrutura de chave privada: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Erro na importação da chave de sistema %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Tentando a URL de chave PKCS#11 %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Erro na inicialização da estrutura de chave PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Erro na importação da URL PKCS#11 %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Usando chave PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Erro na importação de chave PKCS#11 para a estrutura de chave privada: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Usando arquivo de chave privada %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Falha ao interpretar arquivo PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falha ao carregar chave privada PKCS#1: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falha ao carregar chave privada como PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falha ao descriptografar arquivo de certificado PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falha ao determinar o tipo da chave privada %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Insira a frase secreta PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falha ao obter ID da chave: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Erro na assinatura de dados de teste com a chave privada: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Erro na validação da assinatura contra certificado: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Nenhum certificado SSL encontrado para conferir a chave privada\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" "Nenhum certificado secundário encontrado para conferir a chave privada\n" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "Condições got_key não atendidas!\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "Erro ao criar uma chave privada abstrata de /x509_privkey: %s\n" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Usando certificado “%s” do cliente\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "Usando certificado secundário “%s”\n" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Falha ao alocar memória para certificado\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Nenhum emissor obtido da PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Próxima AC “%s” obtida de PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falha em alocar memória para certificados de apoio\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Adicionando AC de apoio “%s”\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importação de certificado X509 falhou: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Configuração de certificado PKCS#11 falhou: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "A configuração da lista de revogação de certificados falhou: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Chave privada parece não ter suporte a RSA-PSS. Desabilitando TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "A configuração de certificado falhou: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "O servidor apresentou nenhum certificado\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Erro na comparação do certificado do servidor na re-negociação: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "O servidor apresentou um certificado diferente na re-negociação\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "O servidor apresentou um certificado idêntico na re-negociação\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Erro na inicialização da estrutura de certificado X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Erro na importação do certificado do servidor\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Não foi possível calcular hash do certificado do servidor\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Erro na verificação do estado do certificado do servidor\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certificado revogado" #: gnutls.c:2098 msgid "signer not found" msgstr "signatário não encontrado" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "signatário não é um certificado de AC" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certificado não ativado ainda" #: gnutls.c:2106 msgid "certificate expired" msgstr "certificado expirou" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "verificação da assinatura falhou" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certificado não confere com o hostname" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Verificação do certificado do servidor falhou: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falha ao alocar memória para certificados do arquivo de AC\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falha ao ler certificados do arquivo de AC: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falha ao abrir o arquivo de AC “%s”: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Carregamento do certificado falhou. Abortando.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" "Falha ao construir string de prioridade GnuTLS\n" "\n" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Falha em definir linha de prioridade GnuTLS (“%s“): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociação SSL com %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Conexão SSL cancelada\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Falha de conexão SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Retorno não fatal do GnuTLS durante negociação: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Conectado ao HTTP no %s com suíte criptografada %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "SSL renegociado em %s com suíte criptografada %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN necessário para %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "PIN incorreto" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Essa é a tentativa final antes de travar!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Faltam poucas tentativas antes de travar!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Insira o PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritmo HMAC de OATH sem suporte\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Falha ao calcular HMAC de OATH: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "%s %dms\n" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "Não foi possível definir suítes criptografadas: %s\n" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Sessão EAP-TTLS estabelecida\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "A função de assinatura do TPM solicitou %d bytes.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falha ao criar objeto de hash TPM: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falha ao definir valor em objeto de hash TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Assinatura de hash TPM falhou: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Erro na decodificação de blob de chave TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Erro no blob de chave TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falha ao criar contexto TPM: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falha ao conectar contexto TPM: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falha ao carregar chave de SRK TPM: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falha ao carregar objeto de política de SRK TPM: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falha ao definir PIN TPM: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falha ao carregar blob de chave TPM: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Insira o PIN de SRK TPM:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falha ao criar objeto de política de chaves: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falha ao atribuir política a chave: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Insira o PIN da chave TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "Insira o PIN da chave TPM secundária:" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falha ao definir o PIN de chave: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Digest TMP2 EC com tamanho desconhecido %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "Não há suporte ao algoritmo de assinatura EC %s\n" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Erro na decodificação de blob de chave TSS2: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Falha ao criar tipo ASN.1 para TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Falha ao decodificar ASN.1 de chave TMP2: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Falha ao analisar OID de tipo de chave TPM2: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Chave TPM2 possui OID de tipo desconhecido %s não %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Falha ao analisar pai de chave TPM2: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Falha ao analisar o elemento pubkey de TPM2\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Falha ao analisar o elemento privkey de TPM2\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Analisada chave TPM2 com pai %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Digest de TPM2 grande demais: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" "Falha na codificação PSS; tamanho de hash %d muito largo para a chave RSA " "%d\n" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "A assinatura do TPM2 RSA solicitou algoritmo desconhecido %s\n" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "Senha de TMP2 muito longa; truncando\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "dono" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "nulo" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "endosso" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "plataforma" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Criando a chave primária na hierarquia %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Insira a senha de hierarquia de TPM2 %s:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth falhou: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Autenticação de dono de TPM2 Esys_CreatePrimary falhou\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary falhou: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Estabelecendo conexão com TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize falhou: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "O TPM2 já foi iniciado, portanto falhando com positivo falso no log " "tpm2tss.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup falhou: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic falhou para manipulador 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Insira a senha da chave pai TMP2:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "Insira a senha da chave pai TMP2 secundária:" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Carregando o blob de chave TPM2, pai %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "Autenticação de TPM2 Esys_Load falhou\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load falhou: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext para primária gerada falhou: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Insira a senha da chave TMP2:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "Insira a senha da chave TMP2 secundária:" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "A função de assinatura do TPM2 RSA solicitou %d bytes, algoritmo %s\n" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Autenticação de TPM2 Esys_RSA_Decrypt falhou\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 falhou em gerar assinatura RSA: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "A função de assinatura do TPM2 EC solicitou %d bytes.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "Digest TMP2 EC com tamanho desconhecido %d para algoritmo 0x%x\n" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Autenticação de TPM2 Esys_Sign falhou\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Manipulador pai de TMP2 inválido 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "Usando SWTPM devido a variável de ambiente TPM_INTERFACE_TYPE\n" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "TSS2_TctiLdr_Initialize falhou para swtpm: 0x%x\n" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Falha ao importar dados de chave privada TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Falha ao importar dados de chave pública TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Tipo de chave TMP2 sem suporte %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Operação TPM2 %s falhou (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Desafio: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Resposta foi: %s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "Algoritmo ESP MAC desconhecido: %s\n" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "Algoritmo de criptografia ESP desconhecido: %s\n" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" "AVISO: O XML de Configuração contém a tag com valor de “%s”.\n" " A conectividade da VPN pode ser desabilitada ou limitada.\n" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Caminho de túnel SSL não-padrão: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" "Tempo limite do túnel (intervalo de renovação de chave) é %d minutos.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Endereço do gateway no XML de config (%s) difere do endereço externo do " "gateway (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" "Endereço IPv6 do gateway no XML de config (%s) difere do endereço externo do " "gateway (%s).\n" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" "O endereço (%s) da configuração XML é diferente\n" "do endereço do gateway externo (%s). Por favor isso para\n" ", incluindo quaisquer problemas\n" "com ESP ou outra aparente perda de conectividade ou desempenho.\n" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "Config GlobalProtect enviou ipsec-mode=%s (esperava esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorando chaves ESP já que suporte a ESP não está disponível nesta " "compilação\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" "Tag de configuração GlobalProtect potencialmente relacionada a IPv6 <%s>: " "%s\n" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Tag de configuração GlobalProtect desconhecida <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" "O suporte a GlobalProtect IPv6 é experimental. Por favor, relate os " "resultados para .\n" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" "Não foram recebidas chaves ESP e conferência do gateway na configuração " "GlobalProtect; túnel será apenas TLS.\n" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP desabilitado" #: gpst.c:661 msgid "No ESP keys received" msgstr "Nenhuma chave ESP recebida" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "Suporte ESP não está disponível nesta compilação" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Nenhum MTU foi recebido. Calculado %d para %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Conectado ao ponto de extremidade do túnel HTTPS ...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Erro ao obter resposta HTTPS GET-tunnel.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway desconectado imediatamente após requisição GET-tunnel.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "Obteve resposta HTTP inesperada: %.*s\n" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "AVISO: O servidor nos solicitou o relatório HIP com md5sum %s.\n" " conectividade do VPN pode ser desabilitada ou limitada se não enviar " "relatório HIP.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Contudo, execução do script de envio de relatório HIP nessa plataforma ainda " "não foi implementada." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Você precisa fornecer um argumento --csd-wrapper com o script de envio do " "relatório HIP." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Erro: A execução do script “HIP report” nesta plataforma ainda não foi " "implementada.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "Tentando executar o script trojan HIP “%s”.\n" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "Falha ao criar pipe para script HIP\n" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "Falha ao bifurcar (fork) para script HIP\n" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "O script HIP “%s” saiu anormalmente\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "O script HIP “%s” retornou status não-zero: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "O script HIP “%s” concluído com sucesso (relatório tem %d bytes).\n" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Envio de relatório HIP falhou.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "Relatório HIP enviado com sucesso.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Falha ao executar script HIP %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "O gateway diz que envio de relatório HIP é necessário.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "O gateway diz que envio de relatório HIP não é necessário.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Túnel ESP conectado; saindo do loop principal de HTTPS.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Falha ao conectar a túnel ESP; usando HTTPS.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Erro de recebimento de pacote: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Tamanho de pacote inesperado. SSL_read retornou %d (inclui 16 bytes de " "cabeçalho), mas payload_len do cabeçalho é %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Obteve resposta GPST DPD/keepalive\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Esperava 0000000000000000 como últimos 8 bytes de cabeçalho de pacote DPD/" "keepalive, mas obteve:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Recebido pacote de dados IPv%d de %d bytes\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Esperava 0100000000000000 como últimos 8 bytes de cabeçalho de pacote de " "dados, mas obteve:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Pacote desconhecido. Despejo de cabeçalho segue:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "Vencimento da verificação do GlobalProtect HIP\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "Falha na verificação ou relatório HIP\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "Renovação da chave GlobalProtect por causa de\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "Dead Peer Detection GPST detectou par morto!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Enviar requisição GPST DPD/keepalive\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Enviando pacote de dados IPv%d de %d bytes\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "ICMPv%d pacote de investigação (seq %d) para ESP GlobalProtect:\n" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Falha ao enviar sonda ESP\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Erro ao importar nome GSSAPI para autenticação:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Erro ao gerar resposta GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Tentando autenticação GSSAPI ao proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Tentando autenticação GSSAPI ao servidor “%s”\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Autenticação GSSAPI concluída\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI muito grande (%zd bytes)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Enviando token GSSAPI de %zu bytes\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falha ao enviar autenticação GSSAPI ao proxy: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falha ao receber o token de autenticação GSSAPI do proxy %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "O servidor SOCKS relatou falha de contexto GSSAPI\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de status GSSAPI desconhecido (0x%02x) do servidor SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obteve token GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Enviando negociação de proteção GSSAPI de %zu bytes\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falha ao enviar resposta de proteção GSSAPI ao proxy %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falha ao receber resposta de proteção GSSAPI do proxy %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obteve resposta de proteção GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Resposta de proteção GSSAPI inválida do proxy (%zu bytes)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "O proxy SOCKS demanda uma integridade de mensagem, ao que não há suporte\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "O proxy SOCKS demanda uma confidencialidade de mensagem, ao que não há " "suporte\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "O proxy SOCKS demanda um tipo de proteção desconhecida 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Tentando autenticação Básica de HTTP ao proxy\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Tentando autenticação Básica de HTTP ao servidor “%s”\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Tentando autenticação do Portador de HTTP ao servidor “%s”\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "O proxy requisitou autenticação Básica, a qual está desabilitada por padrão\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "O servidor “%s” requisitou autenticação Básica, a qual está desabilitada por " "padrão\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Sem mais métodos de autenticação para tentar\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Nenhuma memória para alocação de cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Erro ao ler resposta HTTP: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falha ao analisar resposta HTTP “%s”\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obteve resposta HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorando linha de resposta HTTP desconhecida “%s”\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie inválido oferecido: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Autenticação de certificado SSL falhou\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Corpo da resposta possui tamanho negativo (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transfer-Encoding negativo: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Corpo de HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Erro na leitura do corpo da resposta HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Erro ao obter cabeçalho do bloco\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "Comprimento de bloco HTTP é negativo (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "Comprimento de bloco HTTP é grande demais (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Erro ao obter corpo de resposta HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "Erro na decodificação fragmentada. Esperava “”, obteve: “%s”\n" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Não foi possível receber corpo de HTTP 1.0 sem fechar a conexão\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falha ao analisar URL redirecionada “%s”: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Não foi possível seguir o redirecionamento para URL não https “%s”\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "A alocação de novo caminho para redirecionamento relativo falhou: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "Soquete HTTP foi fechado pelo par; reabrindo\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Tentando novamente requisitar %s falha na nova conexão\n" #: http.c:1002 msgid "request granted" msgstr "requisição concedida" #: http.c:1003 msgid "general failure" msgstr "falha geral" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "conexão não permitida pelo conjunto de regras" #: http.c:1005 msgid "network unreachable" msgstr "a rede está inacessível" #: http.c:1006 msgid "host unreachable" msgstr "o host está inacessível" #: http.c:1007 msgid "connection refused by destination host" msgstr "conexão recusada pelo host de destino" #: http.c:1008 msgid "TTL expired" msgstr "TTL expirou" #: http.c:1009 msgid "command not supported / protocol error" msgstr "comando sem suporte / erro de protocolo" #: http.c:1010 msgid "address type not supported" msgstr "tipo de endereço sem suporte" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "O servidor SOCKS requisitou nome de usuário e senha, mas temos nenhum\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Nome de usuário e senha para autenticação SOCKS devem ser < 255 bytes\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Erro na escrita de requisição de autenticação para proxy SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Erro na leitura de reposta de autenticação de proxy SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Resposta de autenticação inesperada de proxy SOCKS: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticou para o servidor SOCKS usando senha\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Autenticação por senha para o servidor SOCKS falhou\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "O servidor SOCKS requisitou autenticação por GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "O servidor SOCKS requisitou autenticação por senha\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "O servidor SOCKS requer autenticação\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "O servidor SOCKS requisitou tipo de autenticação desconhecida %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requisitando conexão ao proxy SOCKS para %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Erro na escrita de requisição de conexão para proxy SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Erro na leitura de resposta de conexão de proxy SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Resposta de conexão inesperada de proxy SOCKS: %02x %02x…\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Erro de proxy SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Erro de proxy SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de endereço %02x inesperado na resposta de conexão SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requisitando conexão proxy HTTP para %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Envio de requisição proxy falhou: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Requisição de proxy CONNECT falhou: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy desconhecido “%s”\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Falha ao analisar proxy “%s”\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Há suporte apenas a proxy http ou socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect ou openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatível com Cisco AnyConnect SSL VPN, bem como ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Compatível com Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatível com Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Compatível com Pulse Connect Secure SSL VPN" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Compatível com F5 BIG-IP SSL VPN" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "Fortinet SSL VPN" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Compatível com FortiGate SSL VPN" #: library.c:244 msgid "PPP over TLS" msgstr "PPP sobre TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "RFC1661/RFC1662 PPP sobre TLS não autenticado, para testes" #: library.c:254 msgid "Array SSL VPN" msgstr "Vetor SSL VPN" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "Compatível com Array Networks SSL VPN" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protocolo VPN desconhecido “%s”\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado com biblioteca SSL sem suporte a DTLS da Cisco\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" "Nenhum endereço IP recebido com renovação de chave/reconexão Juniper.\n" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Nenhum endereço IP recebido. Abortando\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconexão deu um endereço IP legado diferente (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconexão deu uma máscara de rede IP legado diferente (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconexão deu uma máscara de rede IPv6 diferente (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconexão deu um endereço IPv6 diferente (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Configuração IPv6 recebido, mas MTU %d é muito pequeno.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falha ao analisar URL do servidor “%s”\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Somente https:// é permitido como URL de servidor\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Hash de certificado desconhecido: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "O tamanho da impressão digital fornecida é menor do que o mínimo exigido " "(%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Nenhum manipulador de forma; não foi possível autenticar.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" "Sem ID de forma. Isso é um bug no código de autenticação do OpenConnect.\n" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() falhou: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Erro fatal ao manipular a linha de comando\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() falhou: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "Operação abortada pelo usuário\n" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "ReadConsole() não leu entrada alguma\n" # é uma função - fork() #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() falhou: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Erro ao converter a entrada de console: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falha ao alocar de string da stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para assistência com OpenConnect, por favor veja a página web em\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Usando %s. Características presentes:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE não presente" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "AVISO: Esse binário carece de suporte a DTLS e/ou ESP. A performance será " "prejudicada.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Protocolos com suporte:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (padrão)" #: main.c:743 msgid "Set VPN protocol" msgstr "Definir protocolo VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Não foi possível processar este caminho de executável “%s”" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alocação para caminho de vpnc-script falhou\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "Script vpnc padrão (sobrescrever com --script):" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Substituição hostname “%s” com “%s”\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [parâmetros] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Cliente aberto para múltiplos protocolos VPN, versão %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Lê os parâmetros do arquivo de configuração" #: main.c:914 msgid "Report version number" msgstr "Informa o número da versão" #: main.c:915 msgid "Display help text" msgstr "Exibe o texto de ajuda" #: main.c:919 msgid "Authentication" msgstr "Autenticação" #: main.c:920 msgid "Set login username" msgstr "Define o nome de usuário do início de sessão" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Desabilita autenticação por senha/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Não espera entrada do usuário; sai se for requisitado" #: main.c:923 msgid "Read password from standard input" msgstr "Lê senha da entrada padrão" #: main.c:924 msgid "Choose authentication login selection" msgstr "Escolhe a seleção de início de sessão para autenticação" #: main.c:925 msgid "Provide authentication form responses" msgstr "Fornece respostas a formulário de autenticação" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Usa o certificado CERT do cliente SSL" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Usa o arquivo KEY de chave privada SSL" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisa quando o tempo de vida do certificado < DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "Define o grupo de usuário de início de sessão" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Define a frase secreta chave ou TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Frase secreta chave é fsid do sistema de arquivos" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Tipo de token de software: rsa, totp, hotp ou oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Segredo de token de software ou token de oidc" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libstoken (RSA SecurID) desabilitado nesta compilação)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey OATH desabilitado nesta compilação)" #: main.c:941 msgid "Server validation" msgstr "Validação de servidor" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "Aceitar apenas certificado do servidor com esta impressão digital" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Desabilita autoridades certificadoras padrão do sistema" #: main.c:944 msgid "Cert file for server verification" msgstr "Arquivo de certificado para verificação do servidor" #: main.c:946 msgid "Internet connectivity" msgstr "Conectividade de internet" #: main.c:947 msgid "Set VPN server" msgstr "Define o servidor VPN" #: main.c:948 msgid "Set proxy server" msgstr "Define o servidor proxy" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Define os métodos de autenticação de proxy" #: main.c:950 msgid "Disable proxy" msgstr "Desabilita o proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Usa libproxy para configurar automaticamente o proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desabilitado nesta compilação)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Limite de tempo em segundos para nova tentativa de conexão" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Usa IP ao conectar ao HOST" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Copia o campo TOS / TCLASS aos pacotes ESP e DTLS" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Define a porta local para datagramas DTLS e ESP" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Autenticação (duas fases)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Usa o cookie de autenticação COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Lê o cookie da entrada padrão" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Só autentica e imprime informação de início de sessão" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Obtém e imprime cookie apenas; não conecta" #: main.c:965 msgid "Print cookie before connecting" msgstr "Imprime o cookie antes de conectar" #: main.c:968 msgid "Process control" msgstr "Controle de processo" #: main.c:969 msgid "Continue in background after startup" msgstr "Continua em plano de fundo após inicialização" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Escreve o PID do daemon neste arquivo" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Descarta privilégios após conexão" #: main.c:974 msgid "Logging (two-phase)" msgstr "Registro de log (duas fases)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Usa syslog para as mensagens de progresso" #: main.c:978 msgid "More output" msgstr "Mais saída" #: main.c:979 msgid "Less output" msgstr "Menos saída" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Despeja o tráfego de autenticação HTTP (--verbose implícito)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Prefixa marca de tempo nas mensagens de progresso" #: main.c:983 msgid "VPN configuration script" msgstr "Script de configuração de VPN" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Usa IFNAME para a interface do túnel" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Linha de comando shell para usar um script de configuração compatível com " "vpnc" #: main.c:986 msgid "default" msgstr "padrão" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Passa tráfego para o programa “script”, ao invés do tun" #: main.c:991 msgid "Tunnel control" msgstr "Controle de túnel" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Não solicita conectividade em IPv6" #: main.c:993 msgid "XML config file" msgstr "Arquivo de configuração XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Requisita MTU do servidor (servidores legado apenas)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indica MTU do caminho de/para o servidor" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Habilita compressão stateful (padrão é apenas stateful)" #: main.c:997 msgid "Disable all compression" msgstr "Desabilita toda compressão" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "Definir intervalo de Detecção de Par Morto (em segundos)" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Exige perfect forward secrecy (PFS)" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Desabilita DTLS e ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cifras de OpenSSL prover suporte a DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Define limite da fila de pacotes para LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "Informações do sistema local" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Campo User-Agent: do cabeçalho de HTTP" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Hostname local a ser anunciado ao servidor" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" "Tipo de sistema operacional para relatar. Os seguintes valores são " "permitidos:" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "linux, linux-64, win, mac-intel, android, apple-ios" #: main.c:1009 msgid "reported version string during authentication" msgstr "string de versão relatada durante autenticação" #: main.c:1010 msgid "default:" msgstr "padrão:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Execução do binário de trojan (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Descarta privilégios durante execução de trojan" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Executa SCRIPT ao invés do binário do trojan" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" "Define intervalo mínimo entre execuções de cavalo de Troia (em segundos)" #: main.c:1019 msgid "Server bugs" msgstr "Bugs do servidor" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Desabilita reuso de conexão HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Não tenta autenticação XML POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "Permitir uso de cifras anciãs, inseguras 3DES e RC4" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Falha ao alocar string\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falha ao obter linha de arquivo de configuração: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Parâmetro não reconhecido na linha %d: “%s”\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Parâmetro “%s” não leva um argumento na linha %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Parâmetro “%s” requer um argumento na linha %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "Erro interno; opção “%s” produziu inesperadamente um config_arg nulo\n" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Usuário inválido “%s”: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID de usuário inválido “%d”: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Não há manipulação para auto completar o parâmetro %d “--%s”. Por favor, " "relate.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "conectado" #: main.c:1507 msgid "disconnected" msgstr "desconectado" #: main.c:1511 msgid "unsuccessful" msgstr "malsucedido" #: main.c:1516 msgid "in progress" msgstr "em progresso" #: main.c:1519 msgid "disabled" msgstr "desabilitado" #: main.c:1525 msgid "established" msgstr "estabelecido" #: main.c:1528 msgid "unknown" msgstr "desconhecido" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "Configurado como %s%s%s, com SSL%s%s %s e %s%s%s %s\n" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "A autenticação da sessão irá expirar em %s\n" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" "RX: % pacotes (% B); TX: % pacotes (% B)\n" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "Suíte Criptografada SSL: %s\n" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "%s suíte criptografada: %s\n" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "Próxima renovação de chave SSL em %ld segundos\n" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "Próxima renovação de chave %s em %ld segundos\n" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "Próxima invocação de Trojan em %ld segundos\n" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falha ao abrir “%s” para escrita: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuando em plano de fundo; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "AVISO: Não foi possível definir a localidade: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "AVISO: Essa versão do openconnect foi compilada sem suporte\n" " a iconv, mas você parece estar usando o conjunto de\n" " caracteres legado “%s”. Espere coisas estranhas.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "AVISO: Essa versão do openconnect é %s, mas\n" " a biblioteca libopenconnect é %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" "AVISO: Essa compilação é destinada somente a propósitos de depuração e\n" " pode permitir que estabeleças conexões inseguras.\n" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falha ao alocar a estrutura de vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Não é possível usar “config” dentro do arquivo de configuração\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Não foi possível usar o arquivo de configuração “%s”: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Modo de compressão “%s” inválido\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" "Não foi possível habilitar as cifras inseguras 3DES ou RC4, pois\n" "a biblioteca %s não mais a suporta.\n" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Falha ao alocar memória\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Faltando dois-pontos no parâmetro de resolução\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d é muito pequeno\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Desabilitando todo reuso de conexões HTTP devido ao parâmetro --no-http-" "keepalive.\n" "Se isso ajuda, por favor relate para .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "O parâmetro --no-cert-check era inseguro e foi removido.\n" "Corrija o certificado do servidor ou use --servercert para confiar nele.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Fila com tamanho zero não é permitido; usando 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versão %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de token de software “%s” inválido\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" "Identidade inválida do sistema operacional “%s”\n" "Valores permitidos: linux, linux-64, win, mac-intel, android, apple-ios\n" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "AVISO: Você especificou %s. Isso não deve ser necessário;\n" " por favor relate os casos onde é necessária a \n" " sobreposição da prioridade da linha para conectar a um \n" " servidor para .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumentos demais na linha de comando\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nenhum servidor especificado\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Essa versão do openconnect foi compilada sem suporte a libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "Falha ao completar autenticação\n" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "A criação da conexão SSL falhou\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "A configuração de UDP falhou; usando SSL em vez disso\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nenhum argumento --script fornecido; DNS e roteamento não estão " "configurados\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Veja https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Usuário requisitou reconexão\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "Cookie rejeitado pelo servidor; saindo.\n" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sessão terminada pelo servidor; saindo.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "Cancelado pelo usuário (%s); saindo.\n" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "Usuário desanexado da sessão (%s); saindo.\n" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "Erro de E/S irrecuperável; saindo.\n" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Erro desconhecido; saindo.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falha ao abrir %s para escrita: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falha ao escrever a configuração para %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" "Aceitando certificados de forma insegura do servidor VPN “%s” pois você " "executou com --servercert=ACCEPT.\n" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "Não foi possível verificar certificado do servidor em relação a %s\n" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" "Nenhuma das %d impressão(ões) digital(is) especificadas via --servercert " "combina(m) com a do certificado do servidor: %s\n" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificado do servidor VPN “%s” falhou na verificação.\n" "Motivo: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Para confiar neste servidor no futuro, você pode adicionar isso a sua linha " "de comando:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Digite “%s” para aceitar, “%s” para abortar; qualquer outra tecla para " "visualizar: " #: main.c:2464 main.c:2483 msgid "no" msgstr "não" #: main.c:2464 main.c:2470 msgid "yes" msgstr "sim" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Hash da chave do servidor: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Escolha de autenticação “%s” corresponde a múltiplos parâmetros\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Escolha de autenticação “%s” não disponível\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Entrada do usuário requisitada em modo não interativo\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falha ao abrir arquivo de token para escrita: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Falha ao escrever token: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "String de token de software é inválida\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Não foi possível abrir o arquivo stoken\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Não foi possível abrir o arquivo ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect não foi compilado com suporte a libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Falha geral no libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect não foi compilado com suporte a libauth\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Falha geral no libauth\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey não encontrado\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect não foi compilado com suporte a Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Falha geral no Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Não foi possível abrir o arquivo oidc\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Falha geral no oidc token\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "A configuração de script tun falhou\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "A configuração de um dispositivo tun falhou\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "Atrasando túnel com o motivo: %s\n" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "Atrasando cancelamento (retorno de chamada imediato).\n" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "Atrasando cancelamento.\n" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "Atrasando pausa (retorno de chamada imediato).\n" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "Atrasando pausa.\n" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Chamador parou a conexão\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nenhum trabalho para fazer; dormindo por %d ms…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects falhou: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "Falha em epoll_wait() no ciclo principal" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Falha em select() no ciclo principal" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "Usando base_mtu de %d\n" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "Após remover cabeçalhos %s/IPv%d, MTU de %d\n" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" "Após remover sobrecarga específica de protocolo (%d não preenchidos, %d " "preenchidos, %d tamanho de bloco), MTU de %d\n" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() falhou: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() falhou: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Erro na comunicação com auxiliar ntlm_auth\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Tentando autenticação HTTP NTLM ao proxy (sigle-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Tentando autenticação HTTP NTLM ao servidor “%s” (sigle-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Tentando autenticação HTTP NTLMv%d ao proxy\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Tentando autenticação HTTP NTLMv%d ao servidor “%s”\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "Terminando pois nullppp atingiu o estado da rede.\n" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "String de token base32 inválida\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Falha ao alocar memória para decodificar segredo OATH\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Essa versão de OpenConnect foi compilada sem suporte a PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK para gerar tokencode INITIAL\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK para gerar tokencode NEXT\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "O servidor está rejeitando o token de software; alternando para entrada " "manual\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Gerando código de token TOTP OATH\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Gerando código de token HOTP OATH\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Comprimento %d inesperado para TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Recebido MTU %d do servidor\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Recebido servidor DNS %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Recebido domínio de pesquisa DNS %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Recebido endereço IP interno %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Recebida máscara de rede %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Recebido endereço de gateway interno %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Recebida rota de inclusão de split %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Recebida rota de exclusão de split %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Recebido servidor WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Criptografia ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "HMAC ESP: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Compressão ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Porta ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Tempo de vida de chave ESP: %u bytes\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Tempo de vida de chave ESP: %u segundos\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Fallback ESP para SSL: %u segundos\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Proteção de replay ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "SPI de ESP (saída): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de segredos ESP\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "TLV desconhecido com grupo %d, atributo %d, tamanho %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Falha ao analisar cabeçalho KMP\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Falha ao analisar mensagem KMP\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Obteve mensagem KMP %d de tamanho %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Recebido TLVs (grupo %d) não-ESP em KMP de negociação ESP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Erro ao criar requisição de negociação oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Escrita curta em negociação oNCP\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Lidos %d bytes de registro SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Resposta inesperada de tamanho %d após pacote de hostname\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Resposta do servidor ao pacote do hostname é erro 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Isso parece indicar que o servidor desabilitou suporte para o\n" "protocolo oNPC mais antigo do Juniper e só permite conexões\n" "usando o protocolo Junos Pulse mais atual. Esta versão do\n" "OpenConnect tem suporte EXPERIMENTAL ao Pulse usando --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Pacote inválido, esperando por KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Esperava mensagem KMP 301 do servidor, mas obteve %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Mensagem KMP 301 do servidor muito grande (%d bytes)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Obteve mensagem KMP 301 de comprimento %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Falha ao ler tamanho de registro de continuação\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Registro de %d bytes adicionais muito grande; resultaria em %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Falha ao ler registro de continuação de tamanho %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Lidos %d bytes adicionais de mensagem KMP 301\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Erro ao negociar chaves ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Saída da requisição de negociação oNCP:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "nova entrada" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "nova saída" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Lido apenas 1 byte de campo de comprimento oNCP\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Servidor terminou a conexão (sessão expirou)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "Servidor terminou a conexão (tempo limite de ociosidade)\n" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Servidor terminou a conexão (motivo: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Servidor enviou registro oNCP de comprimento zero\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Recebendo mensagem KMP %d de tamanho %d (obteve %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Continuando a processar mensagem KMP %d agora com tamanho %d (obteve %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Pacote de dados não reconhecido\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Falha em configurar ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Mensagem KMP desconhecida %d de tamanho %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + mais %d bytes não recebidos\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Pacote de saída:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Enviado pacote de controle com capacidade de ESP\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ERRO: %s() chamado com UTF-8 inválido para “%s” argumento\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Não foi possível calcular sobrecarga de DTLS para %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Falha ao gerar chave aleatória\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Falha ao criar ASN.1 de SSL_SESSION para OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Falha do OpenSSL ao analisar ASN.1 de SSL_SESSION\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "A inicialização da sessão de DTLSv1 falhou\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Tamanho de ID de aplicativo grande demais\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Retorno de PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inicialização de DTLSv1 CTX falhou\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Definição da versão CTX de DTLS falhou\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Falha ao gerar chave DTLS\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "A definição da lista de cifras DTLS falhou\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Cifra DTLS “%s” não localizada\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() falhou com protocolo DTLS versão 0x%x\n" "Você está usando uma versão do OpenSSL mais antiga do que 0.9.8m?\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use o parâmetro de linha de comando --no-dtls para evitar esta mensagem\n" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() falhou\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "Falha na criação de dgram DTLS BIO\n" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" "Conexão DTLS estabelecida (usando OpenSSL). Suíte Criptografada %s-%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" "Seu OpenSSL é mais antigo do que aquele com o qual se compilou o OpenConnect " "e, portanto, DTLS pode falhar!\n" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Isso é provavelmente porque o seu OpenSSL está quebrado\n" "Veja http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "A negociação DTLS falhou: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Erro ao inicializar cifra ESP:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Erro ao inicializar HMAC de ESP\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Falha ao configurar contexto de descriptografia para pacote ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Falha ao descriptografar pacote ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Falha ao criptografar pacote ESP:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Falha ao estabelecer contexto PKCS#11 de libp11:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Falha ao carregar módulo provedor de PKCS#11 (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN travado\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN expirou\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Um outro usuário já está conectado\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Erro desconhecido ao conectar ao token PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Conectado ao slot PKCS#11 “%s”\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Falha ao enumerar certificados no slot PKCS#11 “%s”\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Encontrada %d certificados no slot “%s”\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Falha ao analisar URI PKCS#11 “%s”\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Falha ao enumerar slots PKCS#11\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Conectando ao slot PKCS#11 “%s”\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Falha ao localizar certificado PKCS#11 “%s”\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Conteúdo de certificado X.509 não obtido por libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "Usando certificado PKCS#11 secundário %s\n" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Falha ao enumerar chaves no slot PKCS#11 “%s”\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Encontradas %d chaves no slot “%s”\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "O certificado não possui chave pública\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "O certificado secundário não possui chave pública\n" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "O certificado não confere com a chave privada\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "O certificado secundário não confere com a chave privada\n" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "A verificação da chave EC confere com o certificado\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Falha ao alocar buffer de assinatura\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Falha ao assinar dados fictícios para validar a chave EC\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Falha ao localizar chave PKCS#11 “%s”\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "Usando chave secundária PKCS#11 %s\n" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "Falha ao instanciar chave privada de PKCS#11\n" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "Falha ao instanciar chave privada secundária de PKCS#11\n" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Essa versão do OpenConnect foi compilada sem suporte a PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "Falha ao escrever para socket TLS/DTLS\n" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "Falha ao ler de socket TLS/DTLS\n" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Erro de leitura em %s sessão: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Erro de escrita em %s sessão: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipo de requisição de UI SSL não tratada %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Senha de PEM muito longa (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "Certificado do cliente ou chave em falta\n" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Carregamento de chaves privadas falhou\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falha ao instalar certificado em contexto OpenSSL\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra de %s: “%s”\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Análise de PKCS#12 falhou (veja os erros acima)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "Análise de PKCS#12 secundária falhou (veja os erros acima)\n" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 continha nenhum certificado!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "PKCS#12 secundário continha nenhum certificado!\n" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 continha nenhuma chave privada!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "PKCS#12 secundário continha nenhuma chave privada!\n" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Não foi possível carregar mecanismo de TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Falha ao inicializar mecanismo de TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Falha ao definir senha de SRK TPM\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Falha ao carregar chave privada de TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "Falha ao carregar chave privada secundária de TPM\n" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falha ao abrir arquivo de certificado %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "Falha ao abrir o arquivo de chave/certificado secundário %s: %s\n" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Carregamento de certificado falhou\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falha ao processar todos os certificados aceitos. Tentando mesmo assim…\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" "Falha ao processar todos os certificados secundários aceitos. Tentando mesmo " "assim…\n" "\n" #: openssl.c:840 msgid "PEM file" msgstr "Arquivo PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falha ao criar BIO para item da keystore “%s”\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Falha ao carregar chave privada (frase secreta incorreta?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" "Falha ao carregar chave privada secundária (frase secreta incorreta?)\n" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Falha ao carregar chave privada (veja os erros acima)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "Falha ao carregar chave privada secundária (veja os erros acima)\n" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falha ao carregar certificado X509 da keystore\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falha ao abrir arquivo de chave privada %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "Falha ao carregar chave privada secundária\n" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "Falha ao descriptografar arquivo de certificado PKCS#8 secundário\n" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "Insira a frase secreta PKCS#8 secundária:" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Falha ao converter PKCS#8 para EVP_PKEY de OpenSSL\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Falha ao converter PKCS#8 secundária para EVP_PKEY de OpenSSL\n" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Falha ao identificar o tipo de chave privada em “%s”\n" # %s = host #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Correspondeu ao altname DNS de “%s”\n" # %s = host #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Não corresponder para altname de “%s”\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "O certificado tem um altname GEN_IPADD com tamanho falho %d\n" # 1st %s = IPv4/IPv6; 2nd %s = host #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Correspondeu o endereço %s a “%s”\n" # 1st %s = IPv4/IPv6; 2nd %s = host #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nenhuma correspondência para endereço %s de “%s”\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "A URI “%s” possui caminho não vazio; ignorando\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Correspondeu a URI “%s”\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Nenhuma correspondência com URI “%s”\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nenhum altname no certificado do par correspondeu “%s”\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Nenhum nome do sujeito no certificado do par!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Falha ao analisar nome do sujeito no certificado do par\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Sujeito do certificado do par não confere (“%s” != “%s”)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Correspondeu ao nome do sujeito “%s” do certificado do par\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra do arquivo de AC: “%s”\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Erro no campo notAfter do certificado do cliente\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "Erro no campo notAfter do certificado do cliente secundário\n" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "Certificado SSL e chave não correspondem\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falha ao ler certificados do arquivo de AC “%s”\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falha ao abrir o arquivo de AC “%s”\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Criação de CTX de TLSv1 falhou\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "Falha ao construir lista de cifras OpenSSL\n" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Falha ao definir lista de cifras OpenSSL (“%s“)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Falha de conexão SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Falha ao calcular HMAC de OATH\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negociação EAP-TTLS com %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Falha de conexão EAP-TTLS: %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "Está faltando a sequência inicial de sinalizador HDLC (0x7e)\n" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "O buffer HDLC terminou sem FCS e sequência de sinalizador (0x7e)\n" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "Quadro HDLC muito pequeno (%d bytes)\n" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "HDLC ruim pacote FCS %04x\n" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "Sem pacote HDLC (%ld bytes -> %ld), FCS=0x%04x\n" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "Estado PPP atual: %s (encap %s):\n" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" " entrada: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=" "%s\n" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" " saída: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" "Recebido MRU %d do servidor. Nak oferece MRU maior que %d (nosso MTU)\n" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" "Recebido MRU %d do servidor. Configurando nosso MTU para conferir.\n" "\n" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "Recebido mapeamento assíncrono de 0x%08x do servidor\n" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "Recebido número mágico de 0x%08x do servidor\n" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "Recebido compressão de campo de protocolo do servidor\n" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "Recebido endereço e compressão de controle de campo do servidor\n" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "Recebido endereços de IP obsoletos do servidor, ignorando\n" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "Recebida compressão Van Jacobson de TCP/IP do servidor\n" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "Recebido par de endereço IPv4 %s do servidor\n" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "Recebido par de endereço IPv6 link-local %s do servidor\n" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "Recebido %s TLV desconhecido (tag %d, tamanho %d+2) do servidor:\n" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "Recebido %ld bytes extra ao final da Config-Requisição:\n" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "Rejeitar %s/id %d configuração do servidor\n" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "Nak %s/id %d configuração do servidor\n" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "Ack %s/id %d configuração do servidor\n" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "Solicitando MTU calculado de %d\n" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "Enviando nossa requisição de configuração %s/id %d para o servidor\n" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "Rejeitado pelo servidor/nak de parâmetro LCP MRU\n" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" "Rejeitado pelo servidor/nak de parâmetro do mapeamento assíncrono LCP\n" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "Parâmetro mágico LCP rejeitado pelo servidor\n" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "Rejeitado pelo servidor/nak de parâmetro LCP PFCOMP\n" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "Rejeitado pelo servidor/nak de parâmetro LCP ACCOMP\n" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "Servidor ofereceu nak de endereço IPv4: %s\n" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "O servidor rejeitou endereço de IP legado %s\n" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "Rejeitado pelo servidor/nak do nosso endereço IPv4 ou requisição: %s\n" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "Servidor ofereceu nak de requisição IPCP para %s[%d] servidor: %s\n" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "Rejeitado pelo servidor/nak de requisição IPCP para %s[%d] servidor\n" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "Servidor ofereceu nak de endereço IPv6 link-local: %s\n" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" "Rejeitado pelo servidor/nak do nosso identificador de interface IPv6\n" "\n" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "Rejeitado pelo servidor/nak de %s TLV (tag %d, tamanho %d+2)\n" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "Recebido %ld bytes extra ao final do Config-Rejeitar:\n" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "Recebido %s/id %d %s do servidor\n" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "Servidor terminou pelo motivo: %s\n" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "Servidor rejeitou nossa solicitação para configurar IPv%d\n" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "Estado PPP transição de %s para %s em canal %s\n" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "A carga PPP excede o buffer de recebimento\n" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "Pacote curto recebido (%d bytes). Esperando por mais.\n" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "Cabeçalho de pacote pré-PPP inesperado para o encap %d.\n" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "A carga PPP com len %d excede o buffer de recepção %d\n" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" "O pacote PPP está incompleto. Recebidos %d bytes na conexão (inclui %d de " "encap), mas o cabeçalho payload_len é %d. Esperando por mais.\n" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Encapsulamento de PPP inválido\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" "O pacote contém %d bytes após a carga. Presumindo pacote concatenado.\n" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "Pacote IPv%d inesperado no estado PPP %s.\n" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "Recebido pacote de dados IPv%d de %d bytes sobre %s\n" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" "Era esperado %d bytes de cabeçalho PPP mas obteve %ld, alternando carga.\n" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "Enviando o Rejeitar-Protocolo para %s. carga:\n" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "Detectado ponto morto!\n" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "Falha ao estabelecer PPP\n" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "Enviar requisição de descarte PPP como keepalive\n" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "Enviar requisição de echo PPP como DPD\n" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "Enviando pacote PPP %s %s sobre %s (id %d, %d total de bytes)\n" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "Enviando pacote PPP %s sobre %s (%d total de bytes)\n" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "Chamada de conexão PPP com estado DTLS inválido %d\n" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "Túnel DTLS conectado; saindo do loop principal de HTTPS.\n" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "Falha ao conectar a túnel DTLS; usando HTTPS no lugar (estado %d).\n" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "Falha ao estabelecer túnel PPP sobre TLS\n" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "Estado DTLS inválido %d\n" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "Reinício de PPP falhou\n" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "Falha ao autenticar sessão DTLS\n" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Recebido endereço IP legado interno %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Falha ao tratar de endereço IPv6: %s\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Recebido endereço IPv6 interno %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Recebida inclusão de split IPv6 %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Recebida exclusão de split IPv6 %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Comprimento %d inesperado para atributo 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Criptografia ESP: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "ESP apenas: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Atributo desconhecido 0x%x tamanho %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Lidos %d bytes de registro IF-T/TLS\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Escrita curta para IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Erro ao criar pacote IF-T\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Erro ao criar pacote EAP\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Desafio inesperado de autenticação IF-T/TLS:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Carga inesperada EAP-TTLS:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Insira o reino do usuário Pulse:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Reino:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Escolha o reino do usuário Pulse:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Falha ao analisar AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Limite de sessões atingido. Escolha a sessão para encerrar:\n" #: pulse.c:875 msgid "Session:" msgstr "Sessão:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Falha ao analisar lista de sessões\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Insira as credenciais secundárias:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Insira as credenciais do usuário:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Nome de usuário secundário:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Nome de usuário:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Senha:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Senha secundária:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Senha expirada. Por favor mude a senha:" #: pulse.c:1085 msgid "Current password:" msgstr "Senha atual:" #: pulse.c:1090 msgid "New password:" msgstr "Nova senha:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Confirme a nova senha:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Senhas não fornecidas.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Senhas não coincidem.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Senha atual é muito longa.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "A nova senha é muito longa.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Requisição de código do token:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Por favor, insira a resposta:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Por favor, insira sua senha:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Por favor, insira as informações do token secundário:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Erro ao criar requisição de conexão Pulse\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Resposta inesperada a negociação de versão IF-T/TLS:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Versão IF-T/TLS do servidor: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Falha ao estabelecer sessão EAP-TTLS\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "AVISO: Certificado MD5 provido pelo servidor não coincide com o certificado " "verdadeiro.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Falha na autenticação: Conta bloqueada\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "Falha na autenticação: Requer certificado do cliente\n" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Falha na autenticação: Código 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Valor do prompt D73 desconhecido 0x%x. Solicitará nome de usuário e senha.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Por favor informe esse valor e o comportamento do cliente oficial.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Falha na autenticação: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Servidor Pulse requisitou Host Checker; ainda não suportado\n" "Tente o modo Juniper (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "Pacote de autenticação Pulse não tratado ou falha de autenticação\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Cookie de autenticação Pulse não aceito\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Entrada de área Pulse\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Escolha de área Pulse\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Requisição de autenticação por senha Pulse, código 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" "Solicitação de senha Pulse com código desconhecido 0x%02x. Por favor, " "relate.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Requisição de código de token geral por senha Pulse\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Limite de sessão de Pulse, %d sessões\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Requisição de autenticação Pulse não tratada %d\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Resposta inesperada em vez de sucesso de autenticação IF-T/TLS:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "Falha EAP-TTLS: Limpeza da saída com bytes de entrada pendentes\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Erro ao criar buffer EAP-TTLS\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Falha ao ler reconhecimento EAP_TTLS: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Lidos %d bytes de registro IF-T/TLS EAP-TTLS\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Pacote de reconhecimento EAP-TTLS ruim\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Pacote EAP-TTLS ruim (tamanho %d, restante %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Pacote de configuração Pulse inesperado:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Recebida rota de tipo desconhecido 0x%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Pacote de configuração ESP inválido:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Configuração ESP inválida\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Pacote IF-T/TLS inválido ao esperar a configuração:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Pacote IF-T/TLS inesperado ao esperar a configuração.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "Localizada configuração insuficiente\n" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "Renovação da chave ESP falhou\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "Erro fatal do Pulse (motivo: %ld): %s\n" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Pacote Pulse desconhecido\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Enviando pacote de dados IF-T/TLS de %d bytes\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descartar inclusão de split incorreta: “%s”\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descartar exclusão de split incorreta: “%s”\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "AVISO: Inclusão dividida “%s” tem bits de host definidos, sendo substituídos " "por “%s/%d”.\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "AVISO: Exclusão dividida “%s“ tem bits de host definidos sendo substituídos " "por “%s/%d“.\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Ignorando rede legado porque endereço “%s“ é inválido.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "Ignorando rede legado porque máscara de rede “%s“ é inválido.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "Falha ao obter status de saída do script: %s\n" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "O script “%s” retornou erro %ld\n" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "O script não foi concluido em 10 segundos.\n" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falha ao executar o script “%s” para %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "O script “%s” saiu anormalmente (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "O script “%s” retornou erro %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Falha na seleção() para conexão do soquete" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Conexão de socket cancelada\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Falha setsockopt(TCP_NODELAY) no soquete TLS:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Falha ao reconectar ao proxy %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Falha ao reconectar ao host %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo falhou para o host “%s”: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Reconectando ao servidor DynDNS usando endereço IP anteriormente em cache\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Tentando conectar ao proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Tentando conectar ao servidor %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Conectado a %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Falha ao alocar armazenamento de sockaddr\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Falha ao conectar a %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Esquecendo de endereço de par anteriormente não funcional\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falha ao conectar ao host %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Reconectando ao proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "Não foi possível obter o ID de sistema de arquivos para palavra frase\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falha ao abrir o arquivo de chaves privadas “%s”: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Nenhum erro" #: ssl.c:727 msgid "Keystore locked" msgstr "Keystore travada" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Keystore não inicializada" #: ssl.c:729 msgid "System error" msgstr "Erro de sistema" #: ssl.c:730 msgid "Protocol error" msgstr "Erro de protocolo" #: ssl.c:731 msgid "Permission denied" msgstr "Permissão negada" #: ssl.c:732 msgid "Key not found" msgstr "Chave não encontrada" #: ssl.c:733 msgid "Value corrupted" msgstr "Valor corrompido" #: ssl.c:734 msgid "Undefined action" msgstr "Ação não definida" #: ssl.c:738 msgid "Wrong password" msgstr "Senha incorreta" #: ssl.c:739 msgid "Unknown error" msgstr "Erro desconhecido" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Falha na seleção() para soquete de comando" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "%s() usado como modo sem suporte “%s”\n" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falha ao abrir %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falha ao fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Arquivo %s está vazio\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "Arquivo %s tem tamanho suspeito %\n" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falha ao alocar %d bytes para %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falha ao ler %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Família %d de protocolo desconhecido. Não foi possível criar endereço de " "servidor UDP\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Socket UDP aberto" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" "Família %d de protocolo desconhecido. Não foi possível usar transporte UDP\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Socket UDP alocado" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "Conectar ao socket UDP" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Fazer soquete UDP não-bloqueador" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "O cookie não é mais válido, finalizando sessão\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormir por %ds, tempo limite restante %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Falha na seleção() para envio de soquete" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Falha na seleção() para recebimento de soquete" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI muito grande (%ld bytes)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Enviando token SSPI de %lu bytes\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falha ao enviar um token de autenticação SSPI ao proxy: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falha ao receber um token de autenticação SSPI do proxy %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "O servidor SOCKS relatou uma falha de contexto SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de status SSPI (0x%02x) desconhecida do servidor SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obteve token SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() falhou: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() falhou: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() muito grande (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Enviando negociação de proteção SSPI de %u bytes\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falha ao enviar resposta de proteção SSPI ao proxy %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falha ao receber resposta de proteção SSPI do proxy %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Obteve resposta de proteção SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage falhou: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Resposta de proteção SSPI inválida do proxy (%lu bytes)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Insira as credenciais para destravar o token de software." #: stoken.c:107 msgid "Device ID:" msgstr "ID de dispositivo:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "O usuário contornou o token de software.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Todos os campos são necessários; tente novamente.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Falha geral no libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "ID ou senha incorretos para o dispositivo; tente novamente.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Inicialização do token de software concluiu com sucesso.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Insira o PIN do token." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Formato inválido de PIN; tente novamente.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Gerando código de token RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Erro ao acessar chave de registro de adaptadores de rede\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Não é possível ler %s\\%s ou isso não é linha\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "%s\\ComponentId é desconhecido “%s”\n" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Encontrado %s em %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Não é possível abrir chave de registro %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "Não é possível ler chave de registro %s\\%s ou isso não é linha\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() falhou: %s\n" "Retornando para GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() falhou: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "GetAdaptersAddresses() falhou: %s\n" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" "Adaptador “%S” / %ld está ativo e utilizando nosso endereço IPv%d. Não podem " "resolver.\n" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" "Adaptador “%S” / %ld está inativo e utilizando nosso endereço de IPv%d. " "Recuperaremos o endereço dele.\n" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "GetUnicastIpAddressTable() falhou: %s\n" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "DeleteUnicastIpAddressEntry() falhou: %s\n" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" "GetUnicastIpAddressTable() não encontrou um endereço correspondente para " "recuperar\n" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Falha ao abrir %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "Aberto dispositivo tun %S\n" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falha ao obter versão do driver TAP: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Erro: Driver de TAP do Windows versão v9.9 ou mais recente é necessário " "(encontrou %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falha ao definir endereços IP TAP: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falha ao definir status de mídia TAP: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "Ignorando interface não correspondente “%S”\n" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "Não foi possível converter nome de interface para UTF-8\n" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "Usando %s dispositivo “%s”, índice %d\n" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" "CUIDADO: O suporte ao Wintun é experimental e pode estar instável. Se você\n" " encontrar problemas, instale o driver TAP-Windows no lugar. Veja\n" " https://www.infradead.org/openconnect/building.html\n" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "Não foi possível construir nome de interface\n" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" "Acesso negado ao criar o adaptador Wintun. Você está executando com " "privilégios de administrador?\n" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" "Nem adaptadores Windows-TAP nem Wintun foram encontrados. O driver está " "instalado?\n" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Dispositivo TAP abortou conectividade. Desconectando.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falha ao ler do dispositivo TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falha ao completar leitura do dispositivo TAP: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escreveu %ld bytes para tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Esperando o tun escrever…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escreveu %ld bytes para tun após espera\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falha ao escrever no dispositivo TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Scripts de criação de túnel não têm suporte no Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Não foi possível abrir /dev/tun para canalização" #: tun.c:92 msgid "Can't push IP" msgstr "Não foi possível enviar IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Não foi possível configurar ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "Não foi possível abrir %s: %s\n" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Não foi possível canalizar %s para IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "abrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falha ao criar novo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Falha ao colocar descritor de arquivo tun no modo message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "dispositivo tun sem suporte nesta plataforma\n" #: tun.c:205 msgid "open net" msgstr "rede aberta" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falha ao abrir dispositivo tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Falha ao alocar dispositivo tun local (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Para configurar a rede local, openconnect deve ser executado como root\n" "Veja https://www.infradead.org/openconnect/nonroot.html para mais " "informação\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nome inválido de interface “%s”; deve corresponder a “utun%%d” ou “tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Falha ao abrir socket SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Falha ao consultar id de controle utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Falha ao alocar nome do dispositivo utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Falha ao conectar a unidade utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nome inválido de interface “%s” – deve corresponder a “tun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Não foi possível abrir “%s”: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Falha ao tornar soquete tun em não-bloqueador: %s\n" # é uma função - socketpair() #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair falhou: %s\n" # é uma função - fork() #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork falhou: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falha ao escrever pacote de entrada: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "Falha ao definir o tamanho do vring #%d: %s\n" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "Falha ao definir a base do vring #%d: %s\n" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "Falha ao definir o backend de RX do vring #%d: %s\n" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "Falha ao definir eventfd da chamada do vring #%d: %s\n" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "Falha ao definir eventfd do kick do vring #%d: %s\n" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "Não utilizando vhost-net por causa do baixo tamanho, %d, de fila\n" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "Falha ao abrir /dev/vhost-net: %s\n" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "Falha ao definir a propriedade do vhost: %s\n" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "Falha ao obter os recursos do vhost: %s\n" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "vhost-net carece das funções necessárias: %llx\n" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "Falha ao definir os recursos do vhost: %s\n" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "Falha ao abrir eventfd do kick do vhost: %s\n" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "Falha ao abrir eventfd da chamada do vhost: %s\n" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "Falha ao definir o mapa de memória do vhost: %s\n" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "Falha ao definir sndbuf do tun: %s\n" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "Utilizando vhost-net para acelerar o tun, tamanho do elo %d\n" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "Erro: vhost devolveu um descritor inválido %d, tamanho %d\n" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "vhost devolveu um descritor vazio %d\n" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "Pacote TX livre %p [%d] [%d utilizado]\n" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "Pacote RX %p(%d) [%d] [%d utilizado]\n" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "Fila do pacote TX %p em desc %d disponível %d\n" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "Fila do pacote RX %p em desc %d disponível %d\n" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" "Acordou imediatamente porque o elo vhost foi modificado de 0x%x para 0x%x\n" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "Falhou ao expulsar vhost-net eventfd\n" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "Expulsar elo vhost\n" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "Não foi possível carregar wintun.dll\n" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "Não foi possível solucionar as funções de wintun.dll\n" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "Carregado Wintun v%u.%u\n" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "Falha ao criar sessão Wintun: %s\n" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "Não foi possível obter pacote do adaptador Wintun “%S”: %s\n" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" "Perda de pacote com tamanho excessivo obtido do adaptador Wintun “%S” (%ld > " "%d)\n" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "Não foi possível enviar o pacote pelo adaptador Wintun “%S”: %s\n" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Tratando o host “%s” como um hostname simples\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falha ao executar SHA1 em arquivo existente\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 de arquivo de configuração XML: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falha ao analisar arquivo de configuração XML %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "O host “%s” possui endereço “%s”\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "O host “%s” possui UserGroup “%s”\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "O host “%s” não está listado na configuração; tratando-o como um nome de " "máquina simples\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Falha ao enviar “%s” para miniaplicativo ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Reposta curta inválida para “%s” do miniaplicativo ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Falha ao responder a “%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "comando select applet" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Resposta não reconhecida do miniaplicativo ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Encontrado miniaplicativo ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN necessário para o miniaplicativo Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Falha ao calcular resposta de destravamento de Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "comando unlock" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" "Tentando uma variante de PBKBF2 com caractere truncado de PIN de Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Falha ao estabelecer contexto PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Contexto PC/SC estabelecido\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Falha ao consultar lista de leitores: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Falha ao conectar ao leitor PC/SC “%s”: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Conectado ao leitor PC/SC “%s”\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Falha ao obter acesso exclusivo para ler “%s”: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "comando list keys" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Encontrada a chave de %s/%s “%s” em “%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token “%s” não encontrado no Yubikey “%s”. Pesquisando por outro Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "O servidor está rejeitando o token Yubikey; alternando para entrada manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Gerando código de token Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Falha ao obter acesso exclusivo ao Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "comando calculate" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Resposta não reconhecida do Yubikey ao gerar código de token\n" openconnect-8.20/po/sl.po0000644000076400007640000044030614204456074017141 0ustar00dwoodhoudwoodhou00000000000000# Slovenian translations for network-manager-openconnect. # Copyright (C) 2009 network-manager-openconnect's COPYRIGHT HOLDER # This file is distributed under the same license as the network-manager-openconnect package. # # Matej Urbančič , 2008–2021. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-11-21 22:03+0100\n" "Last-Translator: Matej Urbančič \n" "Language-Team: Slovenian GNOME Translation Team \n" "Language: sl_SI\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=(n%100==1 ? 1 : n%100==2 ? 2 : n%100==3 || n" "%100==4 ? 3 : 0);\n" "X-Poedit-SourceCharset: utf-8\n" "X-Generator: Poedit 3.0\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Zaznan je strežnik DNS %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Nepričakovan odgovor strežnika %d.\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL je zapisal premalo bajtov! Zahtevanih je %d, poslanih pa %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Protokol CSTP zahteva ponovno preverjanje ključa\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "Ponovna povezava s TCP je spodletela\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Pošlji zahtevo TCP DPD\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Pošlji zahtevo TCP Keepalive\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Poteka pošiljanje paketa DTLS off\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Pošiljanje ne-stisnjenega paketa podatkov velikosti %d bajtov\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Poskus nove povezave DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "Vzpostavljena je seja DTLS\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Prejet je paket DTLS 0x%02x velikosti %d bajtov\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Ponovno uporaba ključa DTLS je potekla.\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Zaznava nedejavnih soležnikov je vrnila zadetke nedejavnih povezav!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Pošlji DPD DTLS\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" "Pošiljanje zahteve DPD je spodletelo. Pričakujte prekinitev povezave.\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" "Poslan je bil paket DTLS dolžine %d bajtov; vrnjen paket DTLS pa je %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Vnesite svoje uporabniško ime in geslo" #: auth-globalprotect.c:159 msgid "Username" msgstr "Uporabniško ime" #: auth-globalprotect.c:174 msgid "Password" msgstr "Geslo" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "PREHOD:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "Na voljo je %d strežnikov prehoda:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ni mogoče obravnavati obrazca method='%s', action='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Izbor obrazca je brez imena.\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "ime %s ni vnosno ime\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Ni vnosnega vrste v obrazcu.\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Ni vnosnega imena v obrazcu.\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Neznana vnosna vrsta %s v obrazcu\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Prazen odgovor strežnika\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Razčlenjevanje odgovora strežnika je spodletelo.\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Odziv je: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Prejet , ko ni bil pričakovan.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Odziv XML je brez vozlišča \"auth\".\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zahtevano je geslo, vendar je uporabljena zastavica '--no-passwd'\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Napaka med odpiranjem povezave HTTPS %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Pošiljanje zahteve GET za novo nastavitev je spodletela.\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Prejeta datoteka nastavitev ni skladna z razpršilom SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Sprememba domače mape CSD '%s' je spodletela: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Napaka: strežnik zahteva zagon pregleda gostitelja CSD\n" "Podati je treba ustrezni parameter --csd-wrapper.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Napaka: strežnik zahteva prejem in zagon trojanskega datoteke 'Cisco Secure " "Desktop'.\n" "Ta možnost je iz varnostnih razlogov privzeto onemogočena. Če želite možnost " "uporabljati, jo omogočite.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Odpiranje začasne datoteke skripta CSD je spodletelo: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Zapisovanje začasne datoteke skripta CSD je spodletelo: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Opozorilo: kodo CSD, ki ni varna, zaganjate s skrbniškimi dovoljenji.\n" "\t Uporabite možnost ukazne vrstice \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Izvajanje skripta CSD %s je spodletelo.\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Neznan odgovor s strežnika.\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Strežnik je zahteval potrdilo odjemalca SSL, ko je bilo že posredovano\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Strežnik je zahteval potrdilo odjemalca SSL; nobeno ni nastavljeno\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "Omogočena zmožnost XML POST\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osveževanje %s po steklo po 1 sekundi ...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(napaka 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Napaka med pridobivanjem odziva HTTP\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Storitev VPN ni na voljo; razlog: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Prejet neustrezen odziv HTTP CONNECT: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Prejet je odziv CONNECT: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Ni pomnilnika za možnosti\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "ID seje X-DTLS-Session-ID ni dolžine 64 znakov, ampak: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Neznano kodiranje vsebine CSTP %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "MTU ni bil prejet. Opravilo bo prekinjeno.\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Vzpostavljena je povezava CSTP. DPD %d, KEEPALIVE %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Nastavitev stiskanja je spodletela\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Dodelitev medpomnilnika za stiskanje je spodletela\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "razširjanje je spodletelo\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "razširjanje je spodletelo %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Nepričakovana dolžina paketa. SSL_read je vrnil %d, paket pa je\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Prejeta zahteva DPD CSTP\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Prejet je odziv CSTP DPD\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Prejet je ukaz KEEPALIVE CSTP\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Prejet je ne-stisnjen paket podatkov velikosti %d bajtov\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Prejeta prekinitev povezave s strežnikom: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Prejet stisnjen paket v načinu !deflate\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" "prejet je prekinitveni paket strežnika\n" "\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Neznan paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" "Zaznava mrtvih omrežnih soležnikov CSTP je zaznala mrtvega omrežnega " "soležnika!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Ponovna povezava je spodletela\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Pošlji zahtevo CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Pošlji zahtevo CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Pošlji paket BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Ni naslova DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Strežnik ni ponudil možnosti šifer DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Pri povezavi prek posredniškega strežnika, DTLS ni na voljo.\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS začet. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Prejet je neznan paket (len %d): %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Prejeta zahteva DPD DTLS\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Pošiljanje odziva DPD je spodletelo. Pričakujte prekinitev povezave.\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Prejet je odziv DTLS DPD\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Prejet je ukaz KEEPALIVE DTLS\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Neznana vrsta paketa DTLS %02x, dolžina je %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Pošlji KEEPALIVE DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Pošiljanje zahteve KEEPALIVE je spodletelo. Pričakujte prekinitev povezave.\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "dohodno" #: esp.c:94 msgid "outgoing" msgstr "odhodno" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Neznani parametri DTLS za zahtevani CipherSuite '%s'\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nastavljanje parametrov seje DTLS je spodletelo: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nastavljanje MTU za DTLS je spodletelo: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Izmenjava signalov DTLS je presegla dovoljeni čas\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Izmenjava signalov DTLS je spodletela: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "Zapisovanje TLS / DTLS je preklicano\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "Branje TLS / DTLS je preklicano\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Prišlo je do napake zapisovanja seje %s: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Datuma poteka potrdila ni mogoče izluščiti.\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Potrdilo odjemalca je poteklo dne" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Potrdilo odjemalca poteče ob" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nalaganje '%s' iz shrambe ključev je spodletelo: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Odpiranje datoteke ključa/potrdila %s je spodletelo: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Ustvarjanje datoteke ključa/potrdila %s je spodletelo: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Dodeljevanje medpomnilnika potrdil je spodletelo\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Branje potrdila v pomnilnik je spodletelo: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Vzpostavitev podatkovne strukture PKCS#12 je spodletela: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Odšifriranje datoteke PKCS#12 je spodletelo\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Vnos šifrirnega gesla PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Obdelava datoteke PKCS#12 je spodletela: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nalaganje potrdila PKCS#12 je spodletelo: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Razprtšila MD5 ni mogoče začeti: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Napaka razpršila MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Manjkajoči podatki DEK: glava iz šifriranega ključa OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Vrste šifriranja PEM ni mogoče razpoznati\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepodprta vrsta šifriranja PEM: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neveljaven salt v šifrirani datoteki PEM\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Napaka pri odkodiranju BASE64 šifrirane datoteke PEM: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Šifrirana datoteka PEM je prekratka\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Začenjanje šifre za dešifriranje datoteke PEM je spodletelo: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Odšifriranje ključa PEM je spodletelo: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Odšifriranje ključa PEM je spodletelo\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Vnos šifrirnega gesla PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Ta program je izgrajen brez podpore za PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Uporabljeno je potrdilo PKCS#12 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Napaka pri nalaganju potrdila iz PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Napaka pri nalaganju sistemskega potrdila: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Uporaba datoteke potrdila %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "Datoteka PKCS#11 ne vsebuje potrdil\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "V datoteki ni mogoče najti potrdila" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nalaganje potrdila je spodletelo: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Uporabljen je sistemski ključ %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Napaka pri začenjanju strukture osebnih ključev: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Napaka med uvažanjem sistemskega ključa %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Napaka pri začenjanju strukture ključev PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Napaka pri uvozu naslova URL %s PKCS#11: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Uporabljen je ključ PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Napaka pri uvozu ključa PKCS#11 v strukturo osebnih ključev: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Uporaba datoteke zasebnega ključa %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ta različica programa OpenConnect je izgrajena brez podpore za TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Tolmačenje datoteke PEM je spodletelo\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nalaganje zasebnega ključa PKCS#1 je spodletelo: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nalaganje osebnega ključa kot PKCS#8 je spodletelo: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Odšifriranje datoteke potrdila PKCS#8 je spodletelo\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ni mogoče določiti vrste zasebnega ključa %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Vnos šifrirnega gesla PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Pridobivanje ID ključa je spodletelo: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Napaka pri podpisovanju preizkusnih podatkov z osebnim ključem: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Napaka pri overjanju podpisa s potrdilom: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Z zasebnim ključem se ne ujema nobeno potrdilo SSL\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "pogoji got_key niso doseženi!\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Uporaba potrdila odjemalca '%s'\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Dodeljevanje pomnilnika podpornim potrdilom je spodletelo\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodajanje podpornega CA '%s'\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Uvažanje potrdila X509 je spodletelo: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nastavljanje potrdila PKCS#11 je spodletelo: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Določanje seznama preklicev potrdil je spodletelo: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nastavljanje potrdila je spodletelo: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Strežnik ni dostavil potrdila\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Napaka pri začenjanju strukture potrdil X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Napaka med uvažanjem potrdila strežnika\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Napaka pri preverjanju stanja potrdila strežnika\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "potrdilo je preklicano" #: gnutls.c:2098 msgid "signer not found" msgstr "podpisnika ni mogoče najti" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "podpisnik ni overitelj potrdila CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "algoritem ni varen" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "potrdilo še ni omogočeno" #: gnutls.c:2106 msgid "certificate expired" msgstr "potrdilo je preteklo" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "preverjanje podpisa je spodletelo" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "potrdilo se ne ujema z imenom gostitelja" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Preverjanje potrdila strežnika je spodletelo: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Dodeljevanje pomnilnika potrdilom iz datoteke potrdil je spodletelo\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Ni mogoče prebrati potrdil iz datoteke potrdil: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Odpiranje datoteke CA '%s' je spodletelo: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Nalaganje potrdila je spodletelo. Opravilo je prekinjeno.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Poteka pogajanje SSL z %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Povezava SSL je preklicana\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Povezava SSL je spodletela: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Vrnjena je ne-usodna napaka GnuTLS med izmenjavo signalov: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Za %s je zahtevana koda PIN" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Napačna koda PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "To je zadnji poskus pred zaklepom!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Ostaja le še nekaj poskusov do zaklepa!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Koda PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Funkcija podpisovanja TPM je pričakovala %d bajtov.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Ustvarjanje predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nastavljanje vrednosti predmeta razpršila TPM je spodletelo: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Podpis razpršila TPM je spodletel: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Napaka odkodiranja binarnem paketu ključa TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Napaka v binarnem paketu ključa TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Ustvarjanje vsebine TPM je spodletelo: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Povezovanje vsebine TPM je spodletelo: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nalaganje ključa TPM SRK je spodletelo: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nalaganje predmeta pravil TPM SRK je spodletelo: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Natavljanje kode PIN TPM je spodletelo: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nalaganje ključa BLOB TPM je spodletelo: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Vnesite kodo PIN TPM SRK:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Ustvarjanje predmeta pravil ključa je spodletelo: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Dodelitev pravil ključu je spodletela: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Vnesite PIN ključa TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nastavljanje ključa PIN je spodletelo: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "lastnik" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "ničta vrednost" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "okolje" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Odziv je: %s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Ni pomnilnika za dodeljevanje piškotkov\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Razčlenjevanje odgovora HTTP '%s' je spodletelo\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Prejet je odziv HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Prezrta bo neznana vrstica odziva HTTP '%s'\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ponujen je neveljaven piškotek: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Overitev potrdila SSL je spodletela.\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Telo odgovora ima negativno velikost (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Neznano kodiranje prenosa vsebine: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Telo HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Napaka branja telesa odziva HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Napaka pri pridobivanju glave sporočila\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Napaka branja telesa odziva HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Telesa HTTP različice 1.0 brez zapiranja povezave ni mogoče prejeti.\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Razčlenjevanje preusmeritvenega naslova URL '%s' je spodletelo: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" "Preusmeritvi na naslov URL '%s', ki ni vrste HTTPS, ni mogoče slediti\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Dodeljevanje nove poti za relativno preusmeritev je spodletelo: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "zahteva je odobrena" #: http.c:1003 msgid "general failure" msgstr "splošna napaka" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "nabor pravil ne dovoljuje povezave" #: http.c:1005 msgid "network unreachable" msgstr "omrežje ni dosegljivo" #: http.c:1006 msgid "host unreachable" msgstr "gostitelj ni dosegljiv" #: http.c:1007 msgid "connection refused by destination host" msgstr "povezava je zavrnjena na ciljnem gostitelju" #: http.c:1008 msgid "TTL expired" msgstr "Potrdilo TTL je preteklo" #: http.c:1009 msgid "command not supported / protocol error" msgstr "ukaz ni podprt; napaka protokola" #: http.c:1010 msgid "address type not supported" msgstr "vrsta naslova ni podprta" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Napaka pisanja odziva auth s posredniškega strežnika SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Napaka branja odziva auth s posredniškega strežnika SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Nepričakovan odziv povezave posredniškega strežnika SOCKS: %02x %02x...\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Poslana je zahteva povezave s posredniškim strežnikom SOCKS %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Napaka zapisovanja zahtev povezave s posredniškim strežnikom SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Napaka branja odzivov povezave s posredniškega strežnika SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Nepričakovan odziv povezave posredniškega strežnika SOCKS: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Napaka posredniškega strežnika SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Napaka posredniškega strežnika SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nepričakovana vrsta naslova %02x v odzivu povezave SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Poslana je zahteva povezave s posredniškim strežnikom HTTP %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Pošiljanje zahteve posredniškega strežnika je spodletelo: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Neznana vrsta posredniškega strežnika '%s'.\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Podprti so le posredniški strežniki HTTP in SOCKS(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "Omrežna povezava Juniper" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "PPP preko TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" "Neznan protokol VPN »%s«\n" "\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgrajeno na osnovi knjižnice SSL brez podpore za Cisco DTLS.\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Ni prejetega nobenega naslova IP. Opravilo je preklicano.\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljen drugačen opuščen naslov IP (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljena drugačna opuščena maska omrežja IP (%s != " "%s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "S ponovno povezavo je pridobljen drugačen naslov IPv6 (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "S ponovno povezavo je pridobljena drugačna maska omrežja IPv6 (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Napaka med razčlenjevanjem naslova URL strežnika '%s'\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Za strežniški naslov URL je dovoljen le protokol https://\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Ni ročnika obrazca; vnosov ni mogoče overiti.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Napaka dodeljevanja za niz s standardnega vhoda\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Programnik OpenSSL ni na voljo" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Podprti protokoli" #: main.c:728 main.c:746 msgid " (default)" msgstr " (privzeto)" #: main.c:743 msgid "Set VPN protocol" msgstr "Nastavi protokol VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uporaba: openconnect [možnosti] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "Preberi možnosti iz nastavitvene datoteke" #: main.c:914 msgid "Report version number" msgstr "Pošli poročilo o različici" #: main.c:915 msgid "Display help text" msgstr "Pokaži besedilo pomoči" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Nastavi prijavno uporabniško ime" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Onemogoči overjanje z geslom/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Ne pričakuj odziva uporabnika; prekini, če je obvezen" #: main.c:923 msgid "Read password from standard input" msgstr "Preberi geslo s standardnega dovoda" #: main.c:924 msgid "Choose authentication login selection" msgstr "Izbor overjanja za način prijave" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Uporabi potrdilo SSL CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Uporabi datoteko KEY zasebnega ključa SSL" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Opozori, ko je življenjska doba potrdila manj kot določeno število dni" #: main.c:929 msgid "Set login usergroup" msgstr "Nastavi prijavno uporabniško skupino" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nastavi šifrirno frazo ali kodo PIN za TPM SRK" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Šifrirno geslo ključa je fsid datotečnega sistema" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(Opomba: knjižnica libstoken (RSA SecurID) je v tej izgradnji onemogočena)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "Datoteka potrdila za overjanje strežnika" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Nastavi posredniški strežnik" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Nastavi metode overitve posredniškega strežnika" #: main.c:950 msgid "Disable proxy" msgstr "Onemogoči posredniški strežnik" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Uporabi libproxy za samodejno nastavljanje posredniškega strežnika" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(Opomba: knjižnica libproxy je v tej izgradnji onemogočena)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Nastavitev časovne prekoračitve poskusa povezovanja v sekundah" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Preberi piškotek z standardnega vhoda" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Le overi in izpiši podrobnosti prijave" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Po zagonu nadaljuj v ozadju" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Zapiši PID ozadnjega programa v navedeno datoteko" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Opusti dovoljenja po povezovanju" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Za sporočila o napredku uporabi sistemski dnevnik" #: main.c:978 msgid "More output" msgstr "Dodatni odvod" #: main.c:979 msgid "Less output" msgstr "Manj podroben odvod" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "Zapiši pretok podatkov overitve HTTP (omogoči podroben izpis z zastavico --" "verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Za tunelski vmesnik uporabi IFNAME" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Ukazna vrstica v lupini za uporabo prilagoditvenega skripta, združljivega z " "vpnc" #: main.c:986 msgid "default" msgstr "privzeto" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Prepusti promet programu 'script', ne pa TUN" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Ne zahtevaj povezave IPv6" #: main.c:993 msgid "XML config file" msgstr "Nastavitvena datoteka XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Nakaži pot MTU s ali od strežnika" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Onemogoči DTLS in ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Šifre OpenSSL za podporo DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Nastavi omejitev vrste paketov na LEN paketov" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Glava HTTP uporabniškega posrednika: polje" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Onemogoči ponovno uporabo povezave HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Ne izvajaj overitev preko XML POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Pridobivanje vrstice iz nastavitvene datoteke je spodletelo: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Neprepoznavna možnost v vrstici %d: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Možnost '%s' ne sprejme argumenta v vrstici %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Možnost '%s' zahteva argument v vrstici %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Neveljaven uporabnik »%s«: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" "Neveljaven ID uporabnika »%d«: %s\n" "\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Datoteke '%s' ni mogoče odpreti za pisanje: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Izvajanje programa je poslano v ozadje; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "OPOZORILO: zagnan program openconnect je različice %s,\n" " uporabljena knjižnica libopenconnect pa %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Strukture vpninfo ni mogoče dodeliti.\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Možnosti 'config' ni mogoče uporabiti znotraj nastavitvene datoteke\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ni mogoče odpreti nastavitvene datoteke '%s': %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "Vrednost MTU %d je premajhna.\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Zaradi uporabe možnosti --no-http-keepalive je onemogočena ponovna uporaba " "povezav HTTP.\n" "V kolikor možnost deluje, pošljite poročilo na .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Ničelna dolžina uvrstitve ni dovoljena; uporabljena bo 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Različica OpenConnect %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neveljaven način programskega žetona \"%s\"\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Navedenih je preveč argumentov v ukazni vrstici.\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Ni določenega strežnika\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ta različica openconnect je zgrajena brez podpore libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Ustvarjanje povezave SSL je spodletelo.\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Ni navedenega argumenta --script; Vrednosti DNS in nastavitve preusmerjanja " "niso nastavljene.\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Oglejte si https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Datoteke %s ni mogoče odpreti za pisanje: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Zapisovanje nastavitev v %s je spodletelo: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Overjanje potrdila strežnika VPN \"%s\" je spodletelo.\n" "Vzrok: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Vnesite '%s' za sprejem, '%s' za prekinitev; vse drugo za pogled: " #: main.c:2464 main.c:2483 msgid "no" msgstr "ne" #: main.c:2464 main.c:2470 msgid "yes" msgstr "da" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Izbira overitve \"%s\" ni na voljo.\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Zahtevano je uporabniško posredovanje v načinu brez posredovanja.\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Uporabniški prstni odtis je neveljaven\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ni mogoče odpreti datoteke ~/.stokenrc.\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Program OpenConnect ni izgrajen s podporo za libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Splošna napaka v knjižnici libstoken.\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Program OpenConnect ni izgrajen s podporo za liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Splošna napaka v knjižnici liboath.\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Ni mogoče odpreti datoteke oidc.\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Namestitev naprave TUN je spodletela\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "V pričakovanju novih nalog; stanje nedejavnosti je %d ms ...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Zahtevana je potrditev za ustvarjanje ZAŽETNE kode žetona.\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Zahtevana je potrditev za ustvarjanje NASLEDNJE kode žetona.\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Strežnik zavrača uporabniški prstni odtis; preklopljen bo način za ročni " "vnos.\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Poteka ustvarjanje kode žetona OATH TOTP.\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Prejeta maska omrežja %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Šifriranje ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Vrata ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Začenjanje seje DTLSv1 je spodletela\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Povratni klic PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Začenjanje DTLSv1 CTX je spodletelo.\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Nastavljanje seznama šifer DTLS je spodletelo.\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Vzrok je najbrž v vašem okvarjenem OpenSSL.\n" "Oglejte si http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Izmenjava signalov DTLS je spodletela: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "Koda PIN je zaklenjena\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "Koda PIN je pretekla\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Geslo PEM je predolgo (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatno potrdilo %s: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Razčlenjevanje PKCS#12 je spodletelo (napaka je navedena zgoraj)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ne vsebuje potrdil!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ne vsebuje osebnega ključa!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Programnika TPM ni mogoče naložiti.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Začenjanje programnika TPM je spodletelo.\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Nastavljanje gesla TPM SRK je spodletelo\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Nalaganje zasebnega ključa TPM je spodletelo\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Odpiranje datoteke potrdila %s je spodletelo: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Nalaganje potrdila je spodletelo\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "Datoteke PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Ustvarjanje pravil BIO za predmet shrambe ključa »%s«\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nalaganje zasebnega ključa je spodletelo (napačno šifrirno geslo?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Nalaganje zasebnega ključa je spodletelo (glejte napake zgoraj)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nalaganje potrdila X509 iz shrambe ključev je spodletelo\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Odpiranje datoteke zasebnega ključa %s je spodletelo: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Določevanje vrste zasebnega ključa v »%s« je spodletelo\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Ujemajoče drugotno ime DNS »%s«\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Ni zadetkov za drugotno ime »%s«\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "Potrdilo ima določena drugotna imena GEN_IPADD z nedovoljeno dolžino %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Skladnih je %s naslovov »%s«\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ni zadetkov za %s z naslovom »%s«\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Naslov URI »%s« nima prazne poti; naslov bo prezrt.\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Ujemajoči naslov URI »%s«\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Ni zadetkov za naslov URI »%s«\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Nobeno izmed navedenih drugotnih imen v potrdilu ni skladno z imenom »%s«\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Ni imena zadeve v potrdilu soležnika!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Razčlenjevanje imena zadeve v potrdilu soležnika je spodletelo.\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Neskladno potrdilo zadeve soležnika ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Skladno je ime zadeve v potrdilu soležnika »%s«\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatno potrdilo iz datoteke potrdil: »%s«\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Napaka v polju potrdila odjemalca notAfter\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Branje potrdil iz datoteke CA »%s« je spodletelo\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Odpiranje datoteke CA »%s« je spodletelo\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Povezava SSL je spodletela\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "Seja:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Vpis poverila:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Uporabniško ime:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Geslo:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "Trenutno geslo:" #: pulse.c:1090 msgid "New password:" msgstr "Novo geslo:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Overi novo geslo:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Trenutno geslo je predolgo.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" "Novo geslo je predolgo.\n" "\n" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Overitev je spodletela: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Neveljavna nastavitev ESP\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Opusti slabo deljenja z vključevanjem: »%s«\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Opusti slabo deljenje z izključevanjem: »%s«\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Oživljanje skripta »%s« za %s je spodletelo: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript »%s« se je nepričakovano končal (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Pri izvedbi skript »%s« je vrnjena napaka %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Povezava z vtičem je spodletela\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Posredniški strežnik iz libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Ukaz getaddrinfo za gostitelja '%s' je spodletel: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Vzpostavlja se povezava s posredniškim strežnikom %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Vzpostavlja se povezava s strežnikom %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Dodeljevanje shrambe sockaddr je spodletelo\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Povezava z gostiteljem %s je spodletela.\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Brez napake" #: ssl.c:727 msgid "Keystore locked" msgstr "Zaklenjeni potegi" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Shramba ključev ni začeta" #: ssl.c:729 msgid "System error" msgstr "Sistemska napaka" #: ssl.c:730 msgid "Protocol error" msgstr "Napaka v protokolu" #: ssl.c:731 msgid "Permission denied" msgstr "Dovoljenje je zavrnjeno" #: ssl.c:732 msgid "Key not found" msgstr "Ključa ni mogoče najti" #: ssl.c:733 msgid "Value corrupted" msgstr "Vrednost je okvarjena" #: ssl.c:734 msgid "Undefined action" msgstr "Nedoločeno dejanje" #: ssl.c:738 msgid "Wrong password" msgstr "Napačno geslo" #: ssl.c:739 msgid "Unknown error" msgstr "Neznana napaka" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Datoteka %s je prazna datoteka.\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "v mirovanju %ds, preostaja še %ds.\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Vnos poveril za odklep uporabniškega prstnega odtisa." #: stoken.c:107 msgid "Device ID:" msgstr "ID naprave:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Uporabnik je obšel uporabniški prstni odtis.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Zahtevana so vsa polja; poskusite znova.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Splošna napaka v knjižnici libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Neveljaven ID naprave ali pa ni veljavno geslo; poskusite znova.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Začenjanje uporabniškega prstnega odtisa je bilo uspešno.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Napačno geslo PIN, poskusite znova.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Poteka ustvarjanje kode žetona RSA.\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Odpiranje »%s« je spodletelo\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ni mogoče izvesti /dev/tun za razpeljavo" #: tun.c:92 msgid "Can't push IP" msgstr "Ni mogoče objaviti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ni mogoče nastaviti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ni mogoče razpeljati %s za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Ni mogoče ustvariti nove naprave tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Podajanje opisnika datoteke TUN v načunu izločanja sporočil je spodletela." #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Odpiranje naprave TUN je spodletelo: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Neveljavno ime vmesnika »%s«; skladno mora biti z imenom »tun%%d«\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ni mogoče odpreti »%s«: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(skript)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Zapisovanje prihajajočega paketa je spodletelo: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Gostitelj »%s« je obravnavano kot neoblikovano ime gostitelja.\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Določevanje razpršila SHA1 obstoječe datoteke je spodletelo\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Nastavitvena datoteka XML SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Razčlenjevanje nastavitvene datoteke XML %s je spodletelo.\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Gostitelj »%s« je na naslovu »%s«.\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Gostitelj »%s« vključuje uporabniško skupino »%s«.\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Gostitelj »%s« v datoteki config ni naveden; obravnavan bo kot neoblikovano " "ime gostitelja.\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/nl.po0000644000076400007640000050762714204456073017145 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # André Koot , 2011-2012. # Nathan Follens , 2019. msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2019-01-19 20:54+0100\n" "Last-Translator: Nathan Follens \n" "Language-Team: Dutch (http://www.transifex.com/projects/p/meego/language/" "nl/)\n" "Language: nl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Poedit 2.2\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ongeldige cookie '%s'\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Onverwacht %d resultaat van server\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Toewijzing mislukt\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kort pakket ontvangen (%d bytes)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Datapakket van %d bytes ontvangen\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL schreef te weinig bytes! Gevraagd om %d, verstuurde %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP-rekey verwacht\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Rehandshake mislukt; new-tunnel proberen\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Gedecomprimeerd datapakket van %d bytes verzenden\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Nieuwe DTLS-verbinding proberen\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS-pakket 0x%02x van %d bytes ontvangen\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS-rekey verwacht\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS-rehandshake mislukt; opnieuw verbinden.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection ontdekte dode peer!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "DTLS DPD verzenden\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Verzenden van DPD-aanvraag mislukt. Verbinding wordt verbroken\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "DTLS-pakket van %d bytes verzonden; DTLS-verzending gaf %d weer\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Afmelden mislukt.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Afgemeld.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Voer uw gebruikersnaam en wachtwoord in" #: auth-globalprotect.c:159 msgid "Username" msgstr "Gebruikersnaam" #: auth-globalprotect.c:174 msgid "Password" msgstr "Wachtwoord" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Uitdaging: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect-aanmelding gaf %s=%s weer (%s verwacht)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect-aanmelding gaf lege of ontbrekende %s weer\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect-aanmelding gaf %s=%s weer\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Selecteer een GlobalProtect-gateway." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "GATEWAY:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d gatewayservers beschikbaar:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Genereren van OTP-tokencode mislukt; token wordt uitgeschakeld\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Server is geen GlobalProtect-portaal, noch een gateway.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Onbekend submit-item '%s' van formulier wordt genegeerd\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Onbekend invoertype '%s' van formulier wordt genegeerd\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Dubbele optie '%s' wordt verworpen\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Kan niet overweg met formulier method=‘%s’, action=‘%s’\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Onbekend tekstveld: ‘%s’\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Toewijzen van geheugen voor communicatie met TNCC mislukt\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC-ondersteuning is nog niet geïmplementeerd op Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Geen DSPREAUTH-cookie; TNCC wordt niet geprobeerd\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Uitvoeren van TNCC-script %s mislukt: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Start verzonden; wachten op antwoord van TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Lezen van antwoord van TNCC mislukt\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Onsuccesvol %s-antwoord ontvangen van TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "TNCC-antwoord 200 oké\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Tweede regel van TNCC-reactie: '%s'\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Nieuwe DSPREAUTH-cookie gekregen van TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Onverwachte niet-lege regel van TNCC na DSPREAUTH-cookie: '%s'\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Ontleden van HTML-document mislukt\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Vinden of ontleden van webformulier op aanmeldingspagina mislukt\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Onbekend HTML-formulier wordt gedumpt:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Formulierkeuze heeft geen naam\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "naam %s niet ingevoerd\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Geen invoertype in het formulier\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Geen invoernaam in het formulier\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Onbekend invoertype %s in het formulier\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Leeg antwoord van server\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Vertalen van de serverreactie mislukt\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Reactie was: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr " ontvangen, maar niet verwacht.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML-antwoord heeft geen ‘auth’-sectie\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Vroeg naar wachtwoord, maar ‘--no-passwd’ is ingesteld\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "XML-profiel wordt niet gedownload, want SHA1 komt reeds overeen\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Kan geen HTTPS-verbinding openen met %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Verzenden van GET-aanvraag voor nieuwe configuratie mislukt\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Gedownload configuratiebestand komt niet overeen met bedoelde SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Nieuw XML-profiel gedownload\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fout: uitvoeren van het ‘Cisco Secure Desktop’-Trojaans paard wordt op dit " "platform nog niet ondersteund.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Instellen van gid %ld mislukt: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Instellen van groepen op %ld mislukt: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Instellen van uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ongeldige gebruikers-uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Omschakelen naar CSD-persoonlijke map ‘%s’ mislukt:%s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fout: server vroeg ons om CSD-hostscan uit te voeren.\n" "U dient een geschikte parameter voor --csd-wrapper op te geven.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fout: server vroeg ons om een ‘Cisco Secure Desktop’-Trojaans paard te " "downloaden en uit te voeren.\n" "Deze faciliteit is standaard om veiligheidsredenen uitgeschakeld. U kunt " "zelf besluiten dit toch in te schakelen.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Tijdelijke map ‘%s’ is niet schrijfbaar: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Openen van tijdelijk CSD-scriptbestand mislukt: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Schrijven naar tijdelijk CSD-scriptbestand mislukt: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Waarschuwing: u draait onveilige CSD-code met rootprivileges\n" "\t Gebruik de opdrachtregeloptie ‘--csd-user’\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Uitvoeren van CSD-script %s mislukt\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Onbekend antwoord van server\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server vroeg om SSL-cliëntcertificaat nadat er een werd gegeven\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server vroeg om SSL-cliëntcertificaat; geen ingesteld\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST ingeschakeld\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "%s vernieuwen na 1 seconde…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(fout 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Fout bij beschrijven van fout!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FOUT: kan sockets niet initialiseren\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIEKE FOUT: DTLS-hoofdgeheim is ongeïnitialiseerd. Gelieve dit te " "melden.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Fout bij aanmaken van HTTPS CONNECT-verzoek\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Fout bij ophalen van HTTPS-antwoord\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-diesnt niet beschikbaar; reden:%s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Onjuist HTTP CONNECT-antwoord ontvangen: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT-antwoord ontvangen: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Geen geheugen voor opties\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID geen 64 tekens; is: '%s'\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID is ongeldig; is: '%s'\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Onbekende DTLS-Content-codering %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Onbekende CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Geen MTU ontvangen. Afbreken\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP aangesloten. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Instellen van compressie mislukt\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Toewijzen van leegloopbuffer mislukt\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "comprimeren mislukt\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-decompressie mislukt: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZ4-decompressie mislukt\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Onbekend compressietype %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s gecomprimeerd datapakket ontvangen van %d bytes (was %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "decompressie mislukt %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Onverwachte pakketlengte. SSL_read meldde %d, maar pakket is\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD-aanvraag ontvangen\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD-antwoord ontvangen\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive ontvangen\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Ongecomprimeerd datapakket van %d bytes ontvangen\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Verbindingsverbreking van server ontvangen: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Verbindingsverbreking van server ontvangen\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Gecomprimeerd pakket ontvangen in !deflate-modus\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "beëindigingspakket ontvangen van server\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Onbekend pakket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection ontdekte dode peer!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Herverbinden mislukt\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "CSTP DPD verzenden\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive verzenden\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Gecomprimeerd datapakket van %d bytes (was %d) verzenden\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE-pakket verzenden: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Digest-aanmeldingscontrole bij proxy proberen\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Digest-aanmeldingscontrole bij server '%s' proberen\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS-verbinding geprobeerd met bestaande fd\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Geen DTLS-adres\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server bood geen DTLS-cipheroptie aan\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Geen DTLS wanneer deze is aangesloten via een proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS geïnitialiseerd. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Onbekend pakket (len %d) ontvangen: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS dit: %d, TOS laatst: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP-setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD-aanvraag ontvangen\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "DPD-antwoord verzenden mislukt. Verbinding wordt verbroken\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD-antwoord ontvangen\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive ontvangen\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "Gecomprimeerd DTLS-pakket ontvangen, maar compressie niet ingeschakeld\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Onbekend DTLS-pakkettype %02x, len %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive verzenden\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Verzenden van keepalive-verzoek mislukt. Verbinding wordt verbroken\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "MTU DPD-sonde verzenden (%u bytes)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Verzenden van DPD-verzoek mislukt (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Te lange tijd in MTU-detectielus; onderhandelde MTU veronderstellen.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Te lange tijd in MTU-detectiemodus; MTU ingesteld op %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Onverwacht pakket (%.2x) ontvangen in MTU-detectie; overslaan.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Ontvangen van DPD-verzoek mislukt (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "MTU DPD-sonde ontvangen (%u bytes)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "MTU van %d bytes gedetecteerd (was %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Geen wijziging in MTU na detectie (was %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Verwacht ESP-pakket aanvaarden met seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Later-dan-verwacht ESP-pakket aanvaarden met seq %u (% verwacht)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Stokoud ESP-pakket verwerpen met seq %u (% verwacht)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Stokoud ESP-pakket verdragen met seq %u (% verwacht)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Herspeeld ESP-pakket verwerpen met seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Herspeeld ESP-pakket verdragen met seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Buiten-volgorde ESP-pakket aanvaarden met seq %u (% verwacht)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parameters voor %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP-versleutelingstype %s sleutel 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP-authenticatietype %s sleutel 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "inkomend" #: esp.c:94 msgid "outgoing" msgstr "uitgaand" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "ESP-probes verzenden\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "ESP-pakket ontvangen van oude SPI 0x%x, seq %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "ESP-pakket met ongeldige SPI 0x%08x ontvangen\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ongeldige opvullingslengte %02x in ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Ongeldige opvullingsbytes in ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP-sessie met server tot stand gebracht\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Toewijzen van geheugen voor ontsleutelen van ESP-pakket mislukt\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO-decompressie van ESP-pakket mislukt\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO heeft %d bytes gedecomprimeerd in %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Rekey niet geïmplementeerd voor ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP bespeurde een dode peer\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "ESP-sondes voor DPD verzenden\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive niet geïmplementeerd voor ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Verzenden van ESP-pakket mislukt: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Inactiviteitstime-out is %d minuten.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "DTLS-hervatting uitstellen totdat CSTP een PSK genereert\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Genereren van DTLS-prioriteitstekenreeks mislukt\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Instellen van DTLS-prioriteit '%s' mislukt: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Toewijzen van gebruikersreferenties mislukt: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Genereren van DTLS-sleutel mislukt: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Instellen van DTLS-sleutel mislukt: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Instellen van DTLS-PSK-gebruikersreferenties mislukt: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Onbekende DTLS-parameters voor aangevraagde CipherSuite '%s'\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Instellen van DTLS-sessieparameters mislukt: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Initialiseren van DTLS mislukt: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Peer-MTU %d te klein om DTLS toe te staan\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU beperkt tot %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Hervatten van DTLS-sessie mislukt; mogelijke MITM-aanval. DTLS wordt " "uitgeschakeld.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Instellen van DTLS MTU mislukt: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS-verbinding gemaakt (met GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-verbindingscompressie met %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS-handshake-time-out\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-handshake mislukt: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Probeert een firewall u te verhinderen UDP-pakketten te verzenden?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Initialiseren van ESP-cipher mislukt: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Initialiseren van ESP-HMAC mislukt: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Berekenen van HMAC voor ESP-pakket mislukt: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "ESP-pakket met ongeldige HMAC ontvangen\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Ontsleutelen van ESP-pakket mislukt: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Versleutelen van ESP-pakket mislukt: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Kon de vervaldatum niet afleiden uit het certificaat\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Cliëntcertificaat is verlopen op" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Cliëntcertificaat vervalt binnenkort, op" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Load van item '%s' uit sleutelopslag mislukt: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Openen sleutel-/certificaatsbestand %s mislukt: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Status van sleutel-/certificaatsbestand %s verkrijgen mislukt: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Toewijzen certificaatbufferruimte mislukt\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "In geheugen inlezen van certificaat mislukt: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Instellen van PKCS#12-gegevensstructuur mislukt: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Ontsleutelen van PKCS#12-certificaatsbestand mislukt\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Voer PKCS#12-wachtwoord in:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Verwerken van PKCS#12-bestand mislukt: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Laden van PKCS#12-certificaat mislukt: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Kon MD5-hash niet initialiseren: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5-hashfout: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "DEK-Info ontbreeks: header uit OpenSSL-versleutelde sleutel\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Kan PEM-versleutelingstype niet bepalen\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Niet-ondersteund PEM-versleutelingstype: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ongeldige salt in versleuteld PEM-bestand\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Fout bij base64-decoderen van versleuteld PEM-bestand: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Versleuteld PEM-bestand te kort\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Initialiseren van cipher voor ontsleutelen van PEM-bestand mislukt: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Ontsleutelen van PEM-sleutel mislukt: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Ontsleutelen van PEM-sleutel mislukt\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Voer PEM-wachtwoord in:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" "Dit binair bestand is gecompileerd zonder systeemsleutelondersteuning\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Dit binair bestand is gecompileerd zonder PKCS#11-ondersteuning\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Gebruiken van PKCS#11-certificaat %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Gebruiken van systeemcertificaat %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fout bij laden van certificaat van PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Fout bij laden van systeemcertificaat: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Gebruiken van certificaatsbestand %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-bestand bevat geen certificaat\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Geen certificaat gevonden in bestand" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Laden van certificaat mislukt: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Gebruiken van systeemsleutel %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fout bij initialiseren van privésleutelstructuur: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Fout bij importeren van systeemsleutel %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "PKCS#11-sleutel-URL %s proberen\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fout bij initialiseren van PKCS#11-sleutelstructuur: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fout bij importeren van PKCS#11-URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Gebruiken van PKCS#11-sleutel %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Fout bij importeren van PKCS#11-sleutel in privésleutelstructuur: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Gebruiken van geheimesleutelbestand %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" "Deze versie van OpenConnect werd gecompileerd zonder TPM-ondersteuning\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" "Deze versie van OpenConnect is gecompileerd zonder TPM2-ondersteuning\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Interpreteren van PEM-bestand mislukt\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Laden van PKCS#1-privésleutel mislukt: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Laden van privésleutel als PKCS#8 mislukt: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Ontsleutelen van PKCS#8-certificaatsbestand mislukt\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Type privésleutel %s bepalen mislukt\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Voer PKCS#8-wachtwoord in:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Ophalen van sleutel-ID mislukt: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fout bij ondertekenen van testgegevens met geheime sleutel: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fout bij valideren van handtekening tegen certificaat: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Geen SSL-certificaat gevonden dat past bij privésleutel\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Gebruiken van cliëntcertificaat '%s'\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Toewijzen van geheugen voor certificaat mislukt\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Geen uitgever verkregen van PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Volgende CA '%s' verkregen van PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Toewijzen van geheugen voor ondersteunende certificaten mislukt\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Toevoegen van ondersteunende CA '%s'\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importeren van X509-certificaat mislukt: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Instellen van PKCS#11-certificaat mislukt: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Instellen van certificaatintrekkingslijst mislukt: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Privésleutel lijkt geen ondersteuning te bieden voor RSA-PSS. TLSv1.3 wordt " "uitgeschakeld\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Instellen van certificaat mislukt: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server bood geen certificaat aan\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Fout bij vergelijken van servercertificaat bij rehandshake: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Server bood verschillend certificaat aan bij rehandshake\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Server bood identiek certificaat aan bij rehandshake\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Fout bij initialiseren van X509-certificaatsstructuur\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Fout bij importeren van servercertificaat\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Kon hash van servercertificaat niet berekenen\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Fout bij controleren van servercertificaatsstatus\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certificaat ingetrokken" #: gnutls.c:2098 msgid "signer not found" msgstr "ondertekenaar niet gevonden" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "ondertekenaar is geen CA-certificaat" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "onveilig algoritme" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certificaat nog niet geactiveerd" #: gnutls.c:2106 msgid "certificate expired" msgstr "certificaat verlopen" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "handtekeningsverificatie mislukt" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certificaat komt niet overeen met hostnaam" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Servercertificaatsverificatie mislukt: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Toewijzen van geheugen voor cafile-certificaten mislukt\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Lezen van certificaten van cafile mislukt: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Openen van CA-bestand '%s' mislukt: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Laden van certificaat mislukt. Afbreken.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-onderhandeling met %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL-verbinding geannuleerd\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-verbindingsfout: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS niet-fatale return tijdens handshake: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Pincode vereist voor %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Verkeerde pincode" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Dit is de laatste poging vóór blokkeren!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Nog maar enkele pogingen vóór blokkeren!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Voer pincode in:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Niet-ondersteund OATH-HMAC-algoritme\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Berekenen van OATH HMAC mislukt: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM-ondertekeningsfunctie vroeg %d bytes.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Aanmaken van TPM-hashobject mislukt: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Instellen van waarde in TPM-hashobject mislukt: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPMhashhandtekening mislukt: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fout bij decoderen van TSS-sleutelblob: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Fout in TSS-sleutelblob\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Aanmaken van TPM-context mislukt: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Verbinden met TPM-context mislukt: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Laden van TPM SRK-sleutel mislukt: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Laden van TPM SRK-beleidsobject mislukt: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Instellen van TPM-pincode mislukt: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Laden van TPM-sleutelblob mislukt: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Voer TPM SRK-pincode in:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Aanmaken van sleutelbeleidsobject mislukt: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Toewijzen van beleid aan sleutel mislukt: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Voer TPM-sleutelpincode in:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Instellen van sleutelpincode mislukt: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Onbekende TPM2-EC-digestgrootte %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Fout bij decoderen van TSS2-sleutelblob: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Aanmaken van ASN.1-type voor TPM2 mislukt: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Decoderen van TPM2-sleutel ASN.1 mislukt: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Ontleden van TPM2-sleuteltype-OID mislukt: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "TPM2-sleutel heeft onbekend type OID %s, niet %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Ontleden van TPM2-sleutelouder mislukt: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Ontleden van TPM2-pubkey-element mislukt\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Ontleden van TPM2-privkey-element mislukt\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Ontlede TPM2-sleutel met ouder %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2-digest te groot: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "TPM2-wachtwoord te lang; wordt ingekort\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "eigenaar" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "goedkeuring" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Aanmaken van primaire sleutel onder %s-hiërarchie.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Voer TPM2-%s-hiërarchiewachtwoord in:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary-gebruikersauth mislukt\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Verbinding met TPM wordt tot stand gebracht.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 is al gestart, vandaar de foutpositieve mislukking in het tpm2tss-" "logboek. \n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic mislukt voor handle 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Voer TPM2-oudersleutelwachtwoord in:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Laden van TPM2-sleutelblob, ouder %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2-Esys_Load-authenticatie mislukt\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load mislukt: 0x%x\n" # Primary = primaire sleutel? #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" "TPM2 Esys_FlushContext voor gegenereerde primaire sleutel mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Voer TPM2-sleutelwachtwoord in:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt-auth mislukt\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 kon RSA-handtekening niet genereren: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "TPM2 EC-ondertekeningsfunctie gevraagd voor %d bytes.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign-auth mislukt\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Ongeldige TPM2-parent-handle 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Importeren van TPM2-privésleutelgegevens mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Importeren van TPM2-publiekesleutelgegevens mislukt: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Niet-ondersteund TPM2-sleuteltype %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2-handeling %s mislukt (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Uitdaging: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Niet-standaard SSL-tunnelpad: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tunneltime-out (rekey-interval) is %d minuten.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Gatewayadres in configuratie-XML (%s) verschilt van extern gatewayadres " "(%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect-configuratie stuurde ipsec-modus=%s (esp-tunnel verwacht)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "ESP-sleutels worden genegeerd, want ESP-ondersteuning is niet beschikbaar in " "deze versie\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP uitgeschakeld" #: gpst.c:661 msgid "No ESP keys received" msgstr "Geen ESP-sleutels ontvangen" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "ESP-ondersteuning niet beschikbaar in deze versie" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Geen MTU ontvangen. %d berekend voor %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Verbinding maken met HTTPS-tunneleindpunt…\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Fout bij ophalen van GET-tunnel-HTTPS-reactie.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway verbrak verbinding onmiddellijk na GET-tunnel-verzoek.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Four: uitvoeren van ‘HIP-rapportage’-script is op dit platform nog niet " "geïmplementeerd.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "HIP-script '%s' sloot onjuist af\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "HIP-script '%s' gaf niet-nul-status weer: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Indienen van HIP-rapportage mislukt.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "HIP-rapportage ingediend.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Uitvoeren van HIP-script %s mislukt\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Gateway zegt dat indienen van HIP-rapportage vereist is.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Gateway zegt dat indienen van HIP-rapportage niet vereist is.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP-tunnel verbonden; HTTPS-mainloop wordt afgesloten.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Verbinden met ESP-tunnel mislukt; HTTPS wordt gebruikt.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Fout bij ontvangen van pakket: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Onverwachte pakketlengte. SSL_read gaf %d weer (inclusief 16 headerbytes), " "maar payload_len van header is %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "GPST DPD-/keepalive-reactie gekregen\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "0000000000000000 verwacht als laatste 8 bytes van DPD-/keepalive-" "pakketheader, maar we kregen:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "0100000000000000 verwacht als laatste 8 bytes van datapakketheader, maar we " "kregen:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Onbekend pakket. Headerdump volgt:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect-rekey verwacht\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection ontdekte dode peer!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "GPST DPD-/keepalive-verzoek verzenden\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Fout bij importeren van GSSAPI-naam voor aanmeldingscontrole:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Fout bij genereren van GSSAPI-reactie:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "GSSAPI-aanmeldingscontrole bij proxy proberen\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "GSSAPI-aanmeldingscontrole bij server '%s' proberen\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-aanmeldingscontrole voltooid\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-token te groot (%zd bytes)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "GSSAPI-token van %zu bytes verzenden\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Verzenden van GSSAPI-aanmeldingstoken naar proxy mislukt: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Ontvangen van GSSAPI-aanmeldingstoken van proxy mislukt: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-server meldde GSSAPI-contextfout\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Onbekende GSSAPI-statusreactie (0x%02x) van SOCKS-server\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-token van %zu bytes verkregen %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "GSSAPI-beschermingsonderhandeling van %zu bytes verzenden\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Verzenden van GSSAPI-beschermingsreactie naar proxy mislukt: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Ontvangen van GSSAPI-beschermingsreactie van proxy mislukt: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "GSSAPI-beschermingsreactie van %zu bytes ontvangen: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ongeldige GSSAPI-beschermingsreactie ontvangen van proxy (%zu bytes)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS-proxy vereist berichtintegriteit, wat niet wordt ondersteund\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS-proxy vereist berichtgeheimhouding, wat niet wordt ondersteund\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS-proxy vereist bescherming van onbekend type 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "HTTP-basic-aanmeldingscontrole bij proxy proberen\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "HTTP-basic-aanmeldingscontrole bij server '%s' proberen\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" "Deze versie van OpenConnect is gecompileerd zonder GSSAPI-ondersteuning\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Proxy vroeg om Basic-aanmeldingscontrole, wat standaard is uitgeschakeld\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Server '%s' vroeg om Basic-aanmeldingscontrole, wat standaard is " "uitgeschakeld\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Geen aanmeldingscontrolemethode meer\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Geen geheugen voor toewijzing van cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Ontleden van HTTP-reactie '%s' mislukt\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP-reactie ontvangen: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Onbekende HTTP-reactielijn '%s' genegeerd\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ongeldige cookie aangeboden: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL-certificaatsauthenticatie mislukt\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Reactie heeft negatieve grootte (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Onbekende Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-body %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Fout bij lezen van HTTP-reactietekst\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Fout bij ophalen van brokheader\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Fout bij ophalen van HTTP-reactietekst\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Kan HTTP 1.0-inhoud niet ontvangen zonder verbinding te sluiten\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Ontleden van doorgestuurde URL '%s' mislukt: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Kan doorverwijzing naar niet-https-URL '%s' niet volgen\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Toewijzen van nieuw pad voor relatieve doorverwijzing mislukt: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "verzoek ingewilligd" #: http.c:1003 msgid "general failure" msgstr "algemene fout" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "verbinding niet toegestaan ​​door regelset" #: http.c:1005 msgid "network unreachable" msgstr "netwerk onbereikbaar" #: http.c:1006 msgid "host unreachable" msgstr "host onbereikbaar" #: http.c:1007 msgid "connection refused by destination host" msgstr "verbinding geweigerd door doelhost" #: http.c:1008 msgid "TTL expired" msgstr "TTL verlopen" #: http.c:1009 msgid "command not supported / protocol error" msgstr "opdracht niet ondersteund / protocolfout" #: http.c:1010 msgid "address type not supported" msgstr "adrestype niet ondersteund" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS-server vroeg om gebruikersnaam/wachtwoord, maar we hebben er geen\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Gebruikersnaam en wachtwoord voor SOCKS-aanmeldingscontrole moeten kleiner " "zijn dan 255 bytes\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fout bij schrijven van auth-verzoek aan SOCKS-proxy: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fout bij lezen van auth-reactie van SOCKS-proxy: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Onverwachte auth-reactie van SOCKS-proxy: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Aangemeld bij SOCKS-server met wachtwoord\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Wachtwoordaanmelding bij SOCKS-server mislukt\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-server vroeg om GSSAPI-aanmeldingscontrole\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-server vroeg om wachtwoordaanmeldingscontrole\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-server vereist aanmeldingscontrole\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-server vroeg om onbekend type aanmeldingscontrole %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "SOCKS-proxyverbinding met %s aanvragen:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fout bij schrijven van verbindingsverzoek aan SOCKS-proxy: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fout bij lezen van verbindingsreactie van SOCKS-proxy: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Onverwachte verbindingsreactie van SOCKS-proxy: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS-proxyfout %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS-proxyfout %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Onverwacht adrestype %02x in SOCKS-verbindingsreactie\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "HTTP-proxyverbinding met %s aanvragen:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Verzenden van proxy verzoek mislukt: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy-CONNECT-verzoek mislukt: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Onbekend proxy-type '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Alleen http- of socks(5)-proxy’s ondersteund\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect of openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatibel met Cisco AnyConnect SSL VPN en ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatibel met Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Onbekend VPN-protocol '%s'\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Gecompileerd met een SSL-bibliotheek zonder Cisco DTLS-ondersteuning\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Geen IP-adres ontvangen. Afbreken\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Herverbinden gaf verschillende Legacy IP-adressen (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Herverbinden gaf verschillende Legacy IP-netmasks (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Herverbinden gaf verschillende IP-adressen (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Herverbinden gaf verschillende IPv6-netmasks (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-configuratie ontvangen maar MTU %d is te klein.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Fout bij ontleden van server-URL '%s'\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Alleen https:// toegestaan ​​voor server-URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Onbekende certificaathash: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "De grootte van de gegeven vingerafdruk is kleiner dan het vereiste minimum " "(%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Geen formulierafhandelaar; kan niet authenticeren.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() mislukt: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Fatale fout in verwerking van opdrachtregel\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() mislukt: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() mislukt: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Fout bij converteren van consoleinvoer: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Toewijzen mislukt voor tekenreeks vanaf stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Voor hulp bij OpenConnect, bezoek de website op/n\n" " https://www.infradead.org/openconnect/mail.html/n\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE niet aanwezig" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "LET OP: dit binair bestand bevat DTLS- noch ESP-ondersteuning. Prestaties " "worden beïnvloed.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Ondersteunde protocollen:" #: main.c:728 main.c:746 msgid " (default)" msgstr "(standaard)" #: main.c:743 msgid "Set VPN protocol" msgstr "VPN-protocol instellen" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kan pad van dit uitvoerbaar bestand niet verwerken '%s'" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Toewijzing voor vpnc-scriptpad mislukt\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Hostnaam '%s' overschrijven naar '%s'\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Gebruik: openconnect [opties] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Open cliënt voor meerdere VPN-protocollen, versie %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Haal opties uit configuratiebestand" #: main.c:914 msgid "Report version number" msgstr "Rapporteer versienummer" #: main.c:915 msgid "Display help text" msgstr "Geef hulptekst weer" #: main.c:919 msgid "Authentication" msgstr "Aanmeldingscontrole" #: main.c:920 msgid "Set login username" msgstr "Stel gebruikersnaam voor aanmelden in" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Schakel wachtwoord-/SecurID-authenticatie uit" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Verwacht geen invoer van de gebruiker; sluit af indien nodig" #: main.c:923 msgid "Read password from standard input" msgstr "Lees wachtwoord van standaardinvoer" #: main.c:924 msgid "Choose authentication login selection" msgstr "Kies authenticatie-aanmeldingsselectie" #: main.c:925 msgid "Provide authentication form responses" msgstr "Aanmeldingsformulierreacties aanbieden" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Gebruik SSL-cliëntcertificaat CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Gebruik SSL-privésleutelbestand KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Waarschuwen wanneer certificaatlevensduur < DAGEN" #: main.c:929 msgid "Set login usergroup" msgstr "Stel gebruikersgroep-aanmelding in" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Stel wachtwoord of TPM SRK-pincode in" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Sleutelwachtwoord is fsid van bestandssysteem" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(LET OP: libstoken (RSA SecurID) uitgeschakeld in deze versie)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(LET OP: Yubikey-OATH uitgeschakeld in deze versie)" #: main.c:941 msgid "Server validation" msgstr "Servervalidatie" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Standaardsysteemcertificaatautoriteiten uitschakelen" #: main.c:944 msgid "Cert file for server verification" msgstr "Certificaatsbestand voor serververificatie" #: main.c:946 msgid "Internet connectivity" msgstr "Internetconnectiviteit" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Proxyserver instellen" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Stel proxyaanmeldingsmethodes in" #: main.c:950 msgid "Disable proxy" msgstr "Proxy uitschakelen" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Gebruik libproxy om de proxy automatisch te configureren" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NB: libproxy uitgeschakeld in deze versie)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Opnieuw proberen verbindingstime-out in seconden" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "IP gebruiken bij verbinden met HOST" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Lokale poort voor DTLS- en ESP-datagrammen instellen" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Aanmeldingscontrole (tweestaps)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Aanmeldingscontrolecookie COOKIE gebruiken" #: main.c:962 msgid "Read cookie from standard input" msgstr "Lees cookie van standaardinvoer" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Alleen authenticeren en inloginformatie tonen" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Enkel cookie ophalen en afdrukken; niet verbinden" #: main.c:965 msgid "Print cookie before connecting" msgstr "Cookie afdrukken vóór verbindne" #: main.c:968 msgid "Process control" msgstr "Procescontrole" #: main.c:969 msgid "Continue in background after startup" msgstr "Ga na het opstarten verder op de achtergrond" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Schrijf de PID van de daemon naar dit bestand" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Laat privileges vallen na verbinden" #: main.c:974 msgid "Logging (two-phase)" msgstr "Loggen (tweestaps)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Gebruik syslog voor voortgangsberichten" #: main.c:978 msgid "More output" msgstr "Meer uitvoer" #: main.c:979 msgid "Less output" msgstr "Minder uitvoer" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Tijdstempel voorvoegen aan voortgangsberichten" #: main.c:983 msgid "VPN configuration script" msgstr "VPN-configuratiescript" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Gebruik IFNAME voor tunnelinterface" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Shellopdrachtregel voor gebruik van vpnc-compatibel configuratiescript" #: main.c:986 msgid "default" msgstr "standaard" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Leidt het verkeer naar 'script'-programma, niet tun" #: main.c:991 msgid "Tunnel control" msgstr "Tunnelcontrole" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Vraag niet om IPv6-connectiviteit" #: main.c:993 msgid "XML config file" msgstr "XML-configuratiebestand" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "MTU vereisen van server (enkel voor verouderde servers)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Pad-MTU van/naar server aangeven" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Staatvolle compressie inschakelen (standaard is enkel staatloos)" #: main.c:997 msgid "Disable all compression" msgstr "Alle compressie uitschakelen" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Perfect forward secrecy vereisen" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "DTLS en ESP uitschakelen" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-ciphers voor ondersteuning van DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Maximale pakketlengte instellen op LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "Lokale systeeminformatie" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP-header-gebruikersagent: veld" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Lokale hostnaam die aan server wordt getoond" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "gemelde versietekenreeks bij aanmelding" #: main.c:1010 msgid "default:" msgstr "standaard:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Uitvoeren van Trojaans-paard-binair bestand (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Privileges laten vallen tijdens uitvoeren van Trojaans paard" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "SCRIPT uitvoeren in plaats van Trojaans paard-binair bestand" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Serverbugs" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Hergebruiken van HTTP-verbinding uitschakelen" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "XML-POST-aanmeldingscontrole niet proberen" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Toewijzen van tekenreeks mislukt\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Regel uit configuratiebestand halen mislukt: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Niet-herkende optie in regel %d: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Optie '%s' heeft geen parameter in regel %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Optie '%s' heeft een parameter nodig in regel %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ongeldige gebruiker '%s': %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ongeldige gebruikers-ID '%d': %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "bezig" #: main.c:1519 msgid "disabled" msgstr "uitgeschakeld" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Openen van '%s' voor schrijven mislukt: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Voortgezet in achtergrond; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "WAARSCHUWING: kan locale niet instellen: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "WAARSCHUWING: deze versie van openconnect is gecompileerd zonder " "ondersteuning\n" " voor iconv, maar u blijkt de verouderde tekenset '%s'\n" " te gebruiken. Verwacht vreemde dingen.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "WAARSCHUWING: deze versie van openconnect is %s, maar de\n" " versie van de libopenconnect-bibliotheek is %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Toewijzigen van vpninfo-structuur mislukt\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Kan 'config'-optie in configuratiebestand niet gebruiken\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Kan configuratiebestand '%s' niet openen: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ongeldige compressiemodus '%s'\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Toewijzen van geheugen mislukt\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Ontbrekende dubbelpunt in resolve-optie\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d te klein\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Alle hergebruik van HTTP-verbindingen wordt uitgeschakeld als gevolg van " "optie --no-http-keepalive.\n" "Als dit helpt, meld dit dan op .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "De optie --no-cert-check was onveilig en is daarom verwijderd.\n" "Herstel het certificaat van uw server of gebruik --servercert om het te " "vertrouwen.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "0-lengte van wachtrij niet toegestaan; gebruik 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect-versie %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ongeldige softwaretokenmodus '%s'\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Te veel parameters op opdrachtregel\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Geen server opgegeven\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Deze versie van openconnect werd gecompileerd zonder libproxy-ondersteuning\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Aanmaken van SSL-verbinding mislukt\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Instellen van UDP mislukt; gebruik SSL in plaats daarvan\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Geen parameter --script opgegeven; DNS en routering zijn niet " "geconfigureerd\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Bekijk https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Gebruiker vroeg om herverbinding\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sessie beëindigd door server; wordt afgesloten.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Onbekende fout; wordt afgesloten.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Openen van %s voor schrijven mislukt: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Schrijven van configuratie naar %s mislukt: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Verificatie van certificaat van VPN-server '%s' mislukt.\n" "Reden: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Om deze server in de toekomst te vertrouwen, kunt u dit toevoegen aan uw " "opdrachtregel:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Voer '%s' in om te aanvaarden, '%s' om af te breken; iets anders om te " "bekijken: " #: main.c:2464 main.c:2483 msgid "no" msgstr "nee" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ja" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Serversleutelhash: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth-keuze '%s' komt overeen met meerdere opties\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth-keuze '%s' niet beschikbaar\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Gebruikersinvoer vereist in niet-interactieve modus\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Openen van tokenbestand voor schrijven mislukt: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Schrijven van token mislukt: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Soft-token-tekenreeks is ongeldig\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Kan ~/.stokenrc-bestand niet openen\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect is niet gecompileerd met libstoken-ondersteuning\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Algemene fout in libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect is niet gecompileerd met liboath-ondersteuning\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Algemene fout in liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-token niet gevonden\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect niet gecompileerd met Yubikey-ondersteuning\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Algemene Yubikey-fout: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Instellen van tun-script mislukt\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Instellen van tun-apparaat mislukt\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Beller heeft verbinding gepauzeerd\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Niets te doen; slapen voor %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects mislukt: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() mislukt: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() mislukt: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fout bij communiceren met ntlm_auth-helper\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "HTTP NTLM-aanmeldingscontrole bij proxy proberen (single-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "HTTP NTLM-aanmeldingscontrole bij server '%s' proberen (single-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTTP NTLMv%d-aanmeldingscontrole bij proxy proberen\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "HTTP NTLMv%d-aanmeldingscontrole bij server '%s' proberen\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Ongeldige base32-token-tekenreeks\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Toewijzen van geheugen voor decoderen van OATH-geheim mislukt\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" "Deze versie van OpenConnect is gecompileerd zonder PSKC-ondersteuning\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Oké om INITIËLE tokencode te genereren\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Oké om VOLGENDE tokencode te genereren\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server weigert soft-token; omschakelen naar handmatige invoer\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Genereren van OATH-TOTP-tokencode\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Genereren van OATH-HOTP-tokencode\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Onverwachte lengte %d voor TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "MTU %d ontvangen van server\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "DNS-server %s ontvangen\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "DNS-zoekdomein %.*s ontvangen\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Intern IP-adres %s ontvangen\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Netmask %s ontvangen\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Intern gatewayadres %s ontvangen\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Split-include-route %s ontvangen\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Split-exclude-route %s ontvangen\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "WINS-server %s ontvangen\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP-versleuteling: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-compressie: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP-poort: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP-sleutellevensduur: %u bytes\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP-sleutellevensduur: %u seconden\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP-naar-SSL-fallback: %u seconden\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP-replaybescherming: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (uitgaand): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes aan ESP-geheimen\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Onbekende TLV-groep %d attr %d len %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Ontleden van KMP-header mislukt\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Ontleden van KMP-bericht mislukt\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "KMP-bericht %d met grootte %d ontvangen\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Niet-ESP-TLV's ontvangen (groep %d) in ESP-onderhandelings-KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Fout bij aanmaken van oNCP-onderhandelingsverzoek\n" # ?????? - Nathan #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Kort schrijven in oNCP-onderhandeling\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "%d bytes gelezen uit SSL-record\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Onverwacht antwoord van grootte %d na hostnaampakket\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Antwoord van server op hostnaampakket is fout 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ongeldig pakket in wacht voor KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "KMP-bericht 301 verwacht van server, maar %d ontvangen\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-bericht 301 van server te groot (%d bytes)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "KMP-bericht 301 van lengte %d ontvangen\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Lezen van voortzettings-record-lengte mislukt\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Record van %d extra bytes te groot; zou %d zijn\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Lezen van voortzettings-record met lengte %d mislukt\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "%d extra bytes van KMP-301-bericht lezen\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Fout bij onderhandelen over ESP-sleutels\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Uitgaand oNCP-onderhandelingsverzoek:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "nieuw inkomend" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "nieuw uitgaand" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Slechts 1 byte van oNCP-lengte-veld lezen\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Verbinding beëindigd door server (sessie verlopen)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Verbinding beëindigd door server (reden: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Server stuurde oNCP-record met nul-lengte\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Inkomend KMP-bericht %d met grootte %d (%d ontvangen)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Verdergaan met verwerken van KMP-bericht %d, nu met grootte %d (%d " "gekregen)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Niet-herkend datapakket\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Onbekend KMP-bericht %d met grootte %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + nog %d bytes niet ontvangen\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Pakket uitgaand:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "ESP-pakket voor inschakelen controle verzonden\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FOUT: %s() gevraagd met ongeldige UTF-8 voor parameter '%s'\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Kan DTLS-overhead niet berekenen voor %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Genereren van willekeurige sleutel mislukt\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Aanmaken van SSL_SESSION ASN.1 voor OpenSSL mislukt: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL kon SSL_SESSION ASN.1 niet ontleden\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialiseren van DTLSv1-sessie mislukt\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Toepassings-ID-grootte te groot\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-callback\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialiseren van DTLSv1 CTX mislukt\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Instellen van DTLS CTX-versie mislukt\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Genereren van DTLS-sleutel mislukt\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Instellen van DTLS-cipherlijst mislukt\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "DTLS-cipher '%s' niet gevonden\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() mislukt\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Uw OpenSSL-installatie is waarschijnlijk beschadigd\n" "Bekijk http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-handshake mislukt: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Initialiseren van ESP-cipher mislukt:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Initialiseren van ESP-HMAC mislukt\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Instellen van ontsleutelingscontext voor ESP-pakket mislukt:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Ontsleutelen van ESP-pakket mislukt:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Versleutelen van ESP-pakket mislukt:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Opzetten van libp11-PKCS#11-context mislukt:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Laden van PKCS#11-providermodule mislukt (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "Pincode vergrendeld\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "Pincode verlopen\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Er is al een andere gebruiker aangemeld\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Onbekende fout bij aanmelden met PKCS#11-token\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Aangemeld bij PKCS#11-slot ‘%s’\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Oplijsten van certificaten in PKCS#11-slot ‘%s’ mislukt\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d certificaten gevonden in slot ‘%s’\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Ontleden van PKCS#11-URI ‘%s’ mislukt\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Oplijsten van PKCS#11-slots mislukt\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Aanmelden bij PKCS#11-slot ‘%s’\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Vinden van PKCS#11-certificaat '%s' mislukt\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "X.509-certificaatsinhoud niet verkregen van libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Oplijsten van sleutels in PKCS#11-slot '%s' mislukt\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d sleutels gevonden in slot '%s'\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Certificaat heeft geen publieke sleutel\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Certificaat komt niet overeen met privésleutel\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Bezig met controleren of EC-sleutel overeenkomt met certificaat\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Toewijzen van handtekeningsbuffer mislukt\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Ondertekenen van dummygegevens voor valideren van EC-sleutel mislukt\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Vinden van PKCS#11-sleutel '%s' mislukt\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" "Deze versie van OpenConnect werd gecompileerd zonder PKCS#11-ondersteuning\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Onverwerkt SSL-UI-verzoekstype %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-wachtwoord te lang (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Laden van privésleutel mislukt\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Installeren van certificaat in OpenSSL-context mislukt\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra certificaat van %s: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Ontleden van PKCS#12 mislukt (zie bovenstaande fouten)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 bevatte geen certificaat!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 bevatte geen privésleutel!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Kan TPM-engine niet laden.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Initialiseren van TPM-engine mislukt\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Instellen van TPM SRK-wachtwoord mislukt\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Laden van TPM-privésleutel mislukt\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Openen van certificaatsbestand %s mislukt: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Laden van certificaat mislukt\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Verwerken van alle ondersteunende certificaten mislukt. Toch proberen…\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM-bestand" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Aanmaken van BIO voor sleutelopslagitem ‘%s’ mislukt\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Laden van privésleutel mislukt (verkeerd wachtwoord?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Laden van privésleutel mislukt (zie bovenstaande fouten)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Laden van X509-certificaat uit sleutelopslag mislukt\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Openen van privésleutelbestand %s mislukt: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Omzetten van PKCS#8 naar OpenSSL EVP_PKEY mislukt\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Identificeren van privésleuteltype in '%s' mislukt\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Overeenkomstige DNS-altname '%s'\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Geen overeenkomsten voor altname '%s'\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificaat heeft GEN_IPADD-altname met pseudolengte %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Overeenkomstig %s-adres '%s'\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Geen overeenkomsten voor %s-adres %s\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' heeft geen leeg pad; negeren\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Overeenkomstige URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Geen overeenkomsten voor URI '%s'\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Geen altname in peercertificaat overeenkomstig met '%s'\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Geen onderwerpnaam in peercertificaat!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Ontleden van onderwerpnaam in peercertificaat mislukt\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peercertificaatonderwerpmismatch ('%s'! = '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Overeenkomstige peercertificaatonderwerpnaam '%s'\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra certificaat van CAFile: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Fout in cliëntcertificaat-notAfter-veld\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL-certificaat en sleutel komen niet overeen\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Lezen van certificaten uit CA-bestand '%s' mislukt\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Openen van CA-bestand '%s' mislukt\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Aanmaken van TLSv1-CTX mislukt\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL-verbindingsfout\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Berekenen van OATH-HMAC mislukt\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Wachtwoord:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Slechte split-include negeren: '%s'\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Slechte split-exclude negeren: '%s'\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Starten van script '%s' voor %s mislukt: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' eindigde abnormaal (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' gaf fout %d weer\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Socketverbinding geannuleerd\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Opnieuw verbinden met proxy %s mislukt: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Opnieuw verbinden met host %s mislukt: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy van libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo mislukt voor host '%s': %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Opnieuw verbinden met DynDNS-server met IP-adressen uit cachegeheugen\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Poging te verbinden met proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Poging te verbinden met server %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Verbonden met %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Toewijzen van sockaddr-opslag mislukt\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Verbinding maken met %s%s%s:%s mislukt: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Niet-functionele vorige peeradressen vergeten\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Verbinding maken met host %s mislukt\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Herverbinden met proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Kon bestandssysteem-ID niet verkrijgen voor wachtwoord\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Openen van privésleutelbestand '%s' mislukt: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Geen fout" #: ssl.c:727 msgid "Keystore locked" msgstr "Sleutelopslag vergrendeld" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Sleutelopslag niet geïnitialiseerd" #: ssl.c:729 msgid "System error" msgstr "Systeemfout" #: ssl.c:730 msgid "Protocol error" msgstr "Protocolfout" #: ssl.c:731 msgid "Permission denied" msgstr "Toegang geweigerd" #: ssl.c:732 msgid "Key not found" msgstr "Sleutel niet gevonden" #: ssl.c:733 msgid "Value corrupted" msgstr "Waarde beschadigd" #: ssl.c:734 msgid "Undefined action" msgstr "Ongedefinieerde actie" #: ssl.c:738 msgid "Wrong password" msgstr "Verkeerd wachtwoord" #: ssl.c:739 msgid "Unknown error" msgstr "Onbekende fout" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Openen van %s mislukt: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() %s mislukt: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Toewijzen van %d bytes voor %s mislukt\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Lezen van %s mislukt: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Onbekende protocolfamilie %d. Kan UDP-serveradres niet aanmaken\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "UDP-socket openen" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Onbekende protocolfamilie %d. Kan UDP-transport niet gebruiken\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "UDP-socket binden" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie is niet meer geldig, sessie wordt beëindigd\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "slaap %ds, resterende time-out %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-token te groot (%ld bytes)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "SSPI-token van %lu bytes verzenden\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Verzenden van SSPI-aanmeldingstoken naar proxy mislukt: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Ontvangen van SSPI-aanmeldingstoken van proxy mislukt: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-server meldde SSPI-contextfout\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Onbekende SSPI-statusreactie (0x%02x) van SOCKS-server\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "SSPI-token van %lu bytes verkregen: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() mislukt: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() mislukt: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage()-resultaat te groot (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "SSPI-beschermingsonderhandeling van %u bytes verzenden\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Verzenden van SSPI-beschermingsreactie naar proxy mislukt: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Ontvangen van SSPI-beschermingsreactie van proxy mislukt: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "SSPI-beschermingsreactie van %d bytes ontvangen: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage mislukt: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ongeldige SSPI-beschermingsreactie ontvangen van proxy (%lu bytes)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Voer aanmeldingsgegevens in om softwaretoken te ontgrendelen." #: stoken.c:107 msgid "Device ID:" msgstr "Apparaats-ID:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Gebruiker ging voorbij aan soft-token.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Alle velden zijn verplicht; probeer het opnieuw.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Algemene fout in libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Verkeerde apparaats-ID of wachtwoord; probeer het opnieuw.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Soft-token-init voltooid.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Voer softwaretokenpincode in." #: stoken.c:212 msgid "PIN:" msgstr "Pincode:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Ongeldig pincodeformaat; probeer het opnieuw.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Genereren van RSA-tokencode\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Fout bij benaderen van registersleutel voor netwerkadapters\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() mislukt: %s\n" "Terugvallen op GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() mislukt: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Openen van %s mislukt\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Verkrijgen van TAP-driverversie mislukt: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Fout: TAP-Windows-driver v9.9 of hoger is vereist (v%ld.%ld gevonden)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Instellen van TAP-IP-adressen mislukt: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Instellen van TAP-mediastatus mislukt: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-apparaat verbrak connectiviteit. Verbinding wordt verbroken.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Lezen van TAP-apparaat mislukt: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Voltooien van lezen van TAP-apparaat mislukt: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld bytes geschreven naar tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Wachten op tun-schrijven…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "%ld bytes geschreven naar tun na wachten\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Schrijven naar TAP-apparaat mislukt: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Starten van tunnelscripts wordt nog niet ondersteund op Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Kon /dev/tun niet openen voor plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Kan IP niet pushen" #: tun.c:102 msgid "Can't set ifname" msgstr "Kan ifname niet instellen" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" # Zelfs loodgieters houden zich blijkbaar bezig met ingewikkelde computerzaken - Nathan #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Kan %s niet plumben voor IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Aanmaken van nieuwe tun mislukt" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Kon tun-bestandsbeschrijver niet in message-discard-modus plaatsen" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-apparaat is niet ondersteund op dit platform\n" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Openen van tun-apparaat mislukt: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Binden van lokaal tun-apparaat mislukt (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Om lokale netwerken te configureren, moet openconnect worden uitgevoerd als " "root\n" "Bekijk https://www.infradead.org/openconnect/nonroot.html voor meer " "informatie\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Ongeldige interfacenaam '%s'; moet overeenkomen met 'utun%%d' of 'tun%%d'\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Openen van SYSPROTO_CONTROL-socket mislukt: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Opvragen van utun-controle-ID mislukt: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Toewijzen van utun-apparaatsnaam mislukt\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Verbinding met utun-eenheid mislukt: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ongeldige interfacenaam '%s'; moet overeenkomen met 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Kan '%s' niet openen: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair mislukt: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork mislukt: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Schrijven van inkomend pakket mislukt: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Host '%s' behandelen als kale hostnaam\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Aanmaken van SHA1-hash voor huidig bestand mislukt\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-configuratiebestand SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Ontleden van XML-configuratiebestand %s mislukt\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host '%s' heeft adres '%s'\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host '%s' heeft gebruikersgroep '%s'\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host '%s' niet vermeld in configuratie; behandelen als kale hostnaam\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Verzenden van '%s' naar ykneo-oath-applet mislukt: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ongeldige korte reactie aan '%s' van ykneo-oath-applet\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Verkeerde reactie aan '%s': %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "applet-opdracht selecteren" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Reactie van ykneo-oath-applet niet herkend\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "ykneo-oath-applet v%d.%d.%d gevonden.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Pincode vereist voor Yubikey-OATH-applet" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey-pincode:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Berekenen van Yubikey-ontgrendelingsreactie mislukt\n" #: yubikey.c:274 msgid "unlock command" msgstr "opdracht voor ontgrendelen" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Ingekorteteken-PBKBF2-variant van Yubikey-pincode proberen\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Opstellen van PC/SC-context mislukt: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PS/SC-context opgesteld\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Opvragen van lezerlijst mislukt: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Verbinden met PC/SC-lezer '%s' mislukt: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "PC/SC-lezer '%s' verbonden\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Verkrijgen van exclusieve toegang tot lezer '%s' mislukt: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "opdracht voor oplijsten van sleutels" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s sleutel ‘%s’ op ‘%s’ gevonden\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token '%s' niet gevonden op Yubikey '%s'. Zoeken naar andere Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server weigert Yubikey-token; omschakelen naar handmatige invoer\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Bezig met genereren van Yubikey-tokencode\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Verkrijgen van exclusieve toegang tot Yubikey mislukt: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "opdracht voor berekenen" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Niet-herkende reactie van Yubikey bij genereren van tokencode\n" openconnect-8.20/po/cs.po0000644000076400007640000051422114204456067017130 0ustar00dwoodhoudwoodhou00000000000000# Czech translation of network-manager-openconnect. # Copyright (C) 2008, 2009, 2010, 2011 the author(s) of network-manager-openconnect. # This file is distributed under the same license as the network-manager-openconnect package. # # Zdeněk Hataš , 2009 - 2019. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2019-03-05 16:26+0100\n" "Last-Translator: Zdeněk Hataš \n" "Language-Team: Czech \n" "Language: cs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 0 : (n>=2 && n<=4) ? 1 : 2;\n" "X-Generator: Poedit 2.0.6\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Neplatná cookie „%s“\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekávaný výsledek %d od serveru\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Přidělení paměti selhalo\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Přijat krátký paket (%d bajtů)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Přijat datový paket o velikosti %d bajtů\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL napsalo příliš mnoho bajtů! Požádáno o %d, posláno %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Naplánování znovuzanesení CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Opětovné navázání selhalo, pokus o new-tunnel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Posílá se nekomprimovaný datový paket %d bajtů\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Pokus o nové spojení DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Přijat DTLS paket 0x%02x z %d bajtů\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Naplánování znovuzanesení CSTP\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Opětovné navázání DTLS selhalo, připojuje se znovu.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS odhalování mrtvého protějšku zjistilo mrtvý protějšek!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Poslat DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nepodařilo se poslat požadavek DPD. Očekává se odpojení\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Odesláno %d bajtů v DTLS paketu; odeslání DTLS vrátilo %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Odhlášení se nezdařilo\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Úspěšně odhášeno.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Zadejte prosím uživatelské jméno a heslo" #: auth-globalprotect.c:159 msgid "Username" msgstr "Uživatelské jméno" #: auth-globalprotect.c:174 msgid "Password" msgstr "Heslo" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Výzva:" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Přihlášení GlobalProtect vrátilo %s=%s (očekáváné %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Přihlášení GlobalProtect vrátil prázdné nebo chybějící %s\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Přihlášení GlobalProtect vrátilo %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Vyberte prosím bránu GlobalProtect" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "BRÁNA:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "K dispozici je %d serverů s bránami:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Selhalo generování kódu OTP tokenu, deaktivuje se token\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Server není ani brána, ani portál GlobalProtect.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignoruje se neznámý prvek odeslání formuláře „%s“\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignoruje se neznámý typ vstupu „%s“ ve formuláři\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Ignoruje se zdvojená volba „%s“\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" "Nepodařilo se obsloužit formulář s volbami method=\"%s\", action=\"%s\"\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Neznámé textové pole: „%s“\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Selhala alokace paměti pro komunikaci s TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Podpora TNCC není zatím ve Windows implementována\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Žádná DSPREAUTH cookie, TNCC se nebude zkoušet\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Selhalo spuštění skriptu TNCC %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Odeslán start, čeká se na odpověď od TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Selhalo čtení odpovědi od TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Přijata neúspěšná odpověď %s od TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "Odpověď TNCC 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Druhá řádka odpovědi TNCC: '%s'\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Získána nová DSPREAUTH cookie od TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Neočekávaná řádka od TNCC po DSPREAUTH cookie: '%s'\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Selhalo zpracování dokumentu HTML\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Selhalo vyhledání nebo zpracování webového formuláře na přihlašovací " "stránce\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Vypisuje se neznámý formulář HTML:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Výběr formuláře nemá žádný název\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "název %s ne vstup\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Žádný typ vstupu ve formuláři\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Žádný název vstupu ve formuláři\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Neznámý typ vstupu %s ve formuláři\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Prázdná odpověď od serveru\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Nepodařilo se zpracovat odpověď serveru\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Odpověď byla:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Obdrženo přestože nebylo požadováno.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Odpověď XML nemá žádný uzel „auth“\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Žádáno heslo ale nastaveno „--no-passwd“\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Profil XML se nenahrává, protože SHA1 již souhlasí\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nepodařilo se otevřít spojení HTTPS s %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Selhalo odeslání požadavku GET pro nové nastavení\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Stažený soubor s nastavením neodpovídá zamýšlenému SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Nahrán nový profil XML\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Chyba: Spuštění „Cisco Secure Desktop“ není na této platformě zatím " "implementováno.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Selhalo nastavení gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Selhalo nastavení skupiny na %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Selhalo nastavení uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Neplatný uživatel uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nepodařilo se provést změnu na domovskou složku CSD „%s“: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Chyba: Server žádá o spuštění CSD hostscan.\n" "Musíte poskytnout odpovídající argument --csd-wrapper.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Chyba: Server nás požádal o stažení a spuštění trojského koně „Cisco Secure " "Desktop“.\n" "Tento prostředek je ve výchozím nastavení blokován z důvodů bezpečnosti, " "takže jej možná budete chtít povolit.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Do dočasné složky „%s“ nelze zapsat: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nepodařilo se otevřít dočasný soubor se skriptem CSD: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nepodařilo se zapsat dočasný soubor se skriptem CSD: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Varování: spouštíte nezabezpečený kód CSD s oprávněním správce systému\n" "\t Použít volbu pro příkazový řádek „--csd-user“\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Selhalo spuštění skriptu CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Neznámá odpověď od serveru\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server požadoval certifikát SSL klienta poté co byl předložen\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server požadoval certifikát SSL klienta, žádný nebyl nastaven\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST povolen\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Obnova %s po 1 sekundě…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(chyba 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Chyba při popisování chyby)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "CHYBA: Nelze inicializovat sokety\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITICKÁ CHYBA: Hlavní klíč DTLSDTLS je neinicializovaný. Nahlaste to " "prosím.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Chyba při vytváření požadavku HTTPS CONNECT\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Chyba při získávání odpovědi HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Služba VPN nedostupná, důvod: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obdržena nevhodná odpověď HTTP CONNECT (spojeno): %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obdržena odpověď CONNECT (spojeno): %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Žádná paměť pro volby\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID není 64 znaků; je: „%s“\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID je neplatné; je: „%s“\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Neznámé kódování obsahu DTLS %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Neznámé kódování obsahu CSTP %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Nepřijato žádné MTU. Ruší se\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP spojeno. DPD %d, (udržet naživu) Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Nastavení komprimace se nezdařilo\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Přidělení vyrovnávací paměti pro sbalení se nezdařilo\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "rozbalení se nepodařilo\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Dekomprimace LZS selhala: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Selhala dekomprimace LZ4\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Neznámý typ komprimace %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Přijat komprimovaný datový paket %s, %d bajtů (bylo %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "Dekomprimace deflate se nezdařila %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Neočekávaná délka paketu. Funkce SSL_read vrátila %d ale paket je\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Obdržen požadavek CSTP DPD\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Obdržena odpověď CSTP DPD\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Obdrženo CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Přijat nezabalený datový paket %d bajtů\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Přijato odpojení serveru: %02x „%s“\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Přijato odpojení serveru\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Přijat zabalený paket v režimu !deflate\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "Přijat paket pro ukončení serveru\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Neznámý paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP odhalování mrtvého protějšku zjistilo mrtvý protějšek!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Znovupřipojení se nezdařilo\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Poslat CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Poslat CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Posílá se datový paket o velikosti %d bajtů (bylo %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslat paket BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou Digest\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Zkouší se ověření Digest vůči serveru „%s“\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Pokus o připojení DTLS s existujícím fd\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Žádná adresa DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server nenabídl žádnou volbu pro zašifrování DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Žádné DTLS, když spojeno přes proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializováno. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Přijat neznámý paket (len %d): %02x %02x %02x %02x…\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Toto TOS: %d, předchozí TOS: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "Volba pro soket UDP" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Obdržen požadavek DTLS DPD\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nepodařilo se poslat odpověď DPD. Očekává se odpojení\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Obdržena odpověď DTLS DPD\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Obdrženo DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Přijat komprimovaný DTLS paket, přičemž komprese nebyla povolena\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Neznámý typ DTLS paketu %02x, len %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Poslat DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Nepodařilo se poslat požadavek na zachování spojení. Očekává se odpojení\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Odesílá se sonda MTU DPD (%u bajtů)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nepodařilo se poslat požadavek DPD (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Příliš dlouhé trvání detekční smyčky MTU, převezme se vyjednané MTU.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Příliš dlouhé trvání detekční smyčky MTU. MTU nastaveno na %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Při detekci MTU byl přijat neočekávaný paket (%.2x), přeskakuje se.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nepodařilo se přijmout požadavek DPD (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Sonda MTU DPD byla přijata (%u bajtů)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Detekována MTU %d bajtů (bylo %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nedetekována žádná změna MTU (bylo %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Přijímá se očekávaný paket ESP se pořadovým číslem %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Přijímá se paket ESP s pořadovým číslem %u, který je novější než je " "očekáváno (očekáváno %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Zahazuje se starý ESP paket se sekv. č. %u (očekáváno %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Toleruje se starý paket ESP s pořadovým číslem %u (očekáváno %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Zahazuje se opakovaný ESP paket se sekv. č. %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Toleruje se opakovaný paket ESP s pořadovým číslem %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Přijímá se mimo pořadí paket ESP s pořadovým číslem %u (očekáváno " "%)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametry pro %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Typ šifrování ESP %s klíč 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Typ ověření ESP %s klíč 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "příchozí" #: esp.c:94 msgid "outgoing" msgstr "odchozí" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Odeslány sondy ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Přijat ESP paket s neplatným SPI 0x%x, pořadové čislo %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Přijat ESP paket s neplatným SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Neplatná délka výplně %02x v ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Neplatné bajty výplně v ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Spojení ESP se serverem bylo ustaveno\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Selhala alokace paměti pro dešifrování ESP paketu\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Selhala dekomprimace LZO ESP paketu\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "Dekomprimováno LZO o velikosti %d bajtů do %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Výměna klíčů není pro ESP implementována\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP detekovalo mrtvý protějšek\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Odeslat sondy ESP pro DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Pro ESP není funkce keepalive implementována\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Selhalo odeslání ESP paketu: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Časový limit nečinnosti je %d minut.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Odkládá se obnovení DTLS, dokud CSTP nevygeneruje PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Selhalo generování řetězce DTLS priority\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nezdařilo se nastavit DTLS prioritu: „%s“: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Selhala alokace přihlašovacích údajů: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Selhalo generování klíče DTLS: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nezdařilo se nastavit klíč DTLS: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Selhalo nastavení přihlašovacích údajů DTLS PSK: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Neznámé parametry DTLS pro požadované CipherSuite „%s“\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nezdařilo se nastavení parametrů sezení DTLS: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Selhala inicializace DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU protějšku %d je příliš malé pro povolení DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU snížena na %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Obnovení relace DTLS selhalo. Podezření na útok typu MITM. DTLS bude " "zakázáno.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nezdařilo se nastavit DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS spojení sestaveno (použito GnuTLS). Šifrování: %s\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Použitá komprimace připojení DTLS: %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Podání ruky DTLS překročilo čas\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Navázání DTLS se nezdařilo: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Firewall vám nedovoluje odesílání paketů UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Selhala inicializace algoritmu ESP: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Selhala inicializace ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Selhal výpočet HMAC pro ESP paket: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Přijat paket s neplatným HMAC\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Selhalo dešifrování ESP paketu: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Selhalo šifrování ESP paketu: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Nelze získat dobu vypršení certifikátu\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Certifikát klienta vypršel v" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Certifikát klienta brzy vyprší v" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Selhalo načtení položky „%s“ z úložiště klíčů: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nepodařilo se otevřít soubor s klíčem/certifikátem %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" "Nepodařilo se zjistit informace o souboru s klíčem/certifikátem %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Nepodařilo se alokovat paměť pro certifikát\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nepodařilo se načíst certifikát do paměti: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Selhalo nastavení datové struktury PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nepodařilo se dešifrovat PKCS#12 soubor certifikátu\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Vložte heslo k PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Selhalo zpracování PKCS#12 souboru: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Selhalo nahrání PKCS#12 certifikátu : %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nelze inicializovat haš MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Chyba haše MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Chybějící DEK-Info: hlavička zašifrovaného klíče OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Nelze určit způsob šifrování PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepovolený způsob šifrování PEM: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neplatná sůl v šifrovaném souboru PEM\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Chyba base64 dekódování šifrovaného souboru PEM: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Šifrovaný soubor PEM je příliš krátký\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Selhala inicializace šifry pro dešifrování souboru PEM: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Selhalo dešifrování klíče PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Selhalo dešifrování klíče PEM\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Vložte heslovou frázi k PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Program byl sestaven bez podpory systémového klíče\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Program byl sestaven bez podpory PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Používá se certifikát PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Používá se systémový certifikát %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Chyba nahrání certifikátu z PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Chyba nahrání systémového certifikátu: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Používá se soubor s certifikátem %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "Soubor PKCS#11 neobsahoval certifikát\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "V souboru nebyl nalezen žádný certifikát" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nahrání certifikátu selhalo: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Používá se systémový klíč %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Chyba inicializace struktury soukromého klíče: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Chyba importu systémového klíče %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Zkouší se adresa URL klíče PKCS#11 %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Chyba inicializace struktury klíče PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Chyba importu PKCS#11 URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Používá se klíč PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Chyba importu klíče PKCS#11 do struktury soukromého klíče: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Používá se soubor %s se soukromým klíčem\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory pro TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory pro TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Selhala interpretace souboru PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Selhalo načtení soukromého klíče PKCS#1: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Selhalo načtení soukromého klíče jako PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Selhalo dešifrování souboru s certifikátem PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Selhalo zjištění typu soukromého klíče %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Vložte heslo k PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nezdařilo se získat ID klíče: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Chyba podpisu testovacích dat soukromým klíčem: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Chyba ověření podpisu proti certifikátu: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Nebyl nalezen žádný certifikát SSL odpovídající soukromému klíči\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Používá se certifikát klienta „%s“\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Selhala alokace paměti pro certifikát\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Z PKCS#11 nebyl získán žádný vydavatel\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Získána další CA „%s“ z PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Selhala alokace paměti pro podpůrné certifikáty\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Přidává se podpůrná CA „%s“\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Selhal import X509 certifikátu: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nastavení PKCS#11 certifikátu selhalo: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Nastavení seznamu odvolaných certifikátů selhalo: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "Soukromý klíč nejspíš nepodporuje RSA-PSS. Vypíná se TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nastavení certifikátu selhalo: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server nepředložil žádný certifikát\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Chyba při porovnání certifikátu serveru v rámci opětovného navázání spojení: " "%s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Server při opětovném navazování spojení předložil jiný certifikát\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Server při opětovném navazování spojení předložil stejný certifikát\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Chyba inicializace X509 struktury certifikátu\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Chyba při importu certifikátu serveru\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Nelze vypočítat haš certifikátu serveru\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Chyba kontroly stavu certifikátu serveru\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "odvolaný certifikát" #: gnutls.c:2098 msgid "signer not found" msgstr "podepisující nenalezen" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "podepisující není certifikát CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "nedůvěryhodný algoritmus" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certifikát ještě nebyl aktivován" #: gnutls.c:2106 msgid "certificate expired" msgstr "platnost certifikátu vypršela" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "selhalo ověření podpisu" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "Osvědčení neodpovídá názvu hostitele" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" "Ověření osvědčení serveru se nezdařilo: %s\n" "\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Selhala alokace paměti pro certifikáty ze souboru CA\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Selhalo čtení certifikátů ze souboru CA: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nepodařilo se otevřít soubor CA „%s“: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Načtení certifikátu se nezdařilo. Ruší se.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Jednání SSL s %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Spojení SSL bylo zrušeno\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Selhalo spojení SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS skončilo nekritickou chybou při navazování spojení: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Požadován PIN pro %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Nesprávný PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Toto je poslední pokus před uzamčením!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Do uzamčení zbývá pouze několik pokusů!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Zadejte PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepodporovaný algoritmus OATH HMAC\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nepodařilo se vypočítat OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Podpisová funkce TPM požadovala %d bajtů.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Selhalo vytvoření objektu haše TMP: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Selhalo nastavení hodnoty v objektu haše TMP: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Podpisový haš TPM selhal: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Chyba při dekódování binárních dat klíče TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Chyba v binárních datech klíče TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Vytvoření kontextu TPM selhalo: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Připojení kontextu TPM selhalo: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nahrání TPM SRK klíče selhalo:%s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Selhalo nahrání objektu politiky TPM SRK: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nastavení TPM PIN kódu selhalo: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Selhalo načtení binárních dat klíče TPM: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Zadejte TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Selhalo vytvoření objektu se zásadami pro klíč: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Selhalo přiřazení politiky klíči: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Zadatejte PIN klíče TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nastavení PIN klíče selhalo: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Neznámá velikost TPM2 EC digest %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Chyba při dekódování binárních dat klíče TSS2: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Selhalo vytvoření typu ASN.1 pro TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Selhalo dekódování ASN.1 klíče TPM2: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" "Selhala analýza OID typu TPM2 klíče: %s\n" "\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Klíč TPM2 je neznámého OID typu %s namísto %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Selhalo zpracování rodiče klíče TPM2: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Selhalo zpracování prvku veřejného klíče TPM2\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Selhalo zpracování prvku soukromého klíče TPM2\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Zpracován klíč TPM2 s rodičem %x, prázdné ověření %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2 digest je příliš velký: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "Heslo TPM2 je příliš dlouhé, bude oříznuto\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "vlastník" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "schválení" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platforma" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Vytváří se primární klíč pod hierarchií %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Zadejte heslo TPM2 %s hierarchie:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_TR_SetAuth z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Selhalo ověření vlastníka při volání Esys_CreatePrimary z TPM2\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_CreatePrimary z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Ustavuje se spojení s TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_Initialize z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 už bylo spuštěno, proto se v tmp2tss.log objevuje falešné selhání.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_Startup z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" "Selhalo volání funkce Esys_TR_FromTPMPublic pro obsluhu 0x%x: 0x%x\n" "\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Zadejte heslo rodičovského klíče TPM2:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Načítají se binární data klíče TPM2, rodič %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "Selhalo ověření při volání Esys_Load z TPM2\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "Selhalo volání funkce Esys_Load z TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" "Selhalo volání Esys_FlushContext z TPM2 pro vygenerování primárního klíče: 0x" "%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Zadejte heslo klíče TPM2:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Selhalo ověření při volání Esys_RSA_Decrypt z TPM2\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 selhalo při generování podpisu RSA: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Podpisová funkce TPM2 EC požadovala %d bajtů.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Selhalo ověření pří volání Esys_Sign z TPM2\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Selhal import dat soukromého klíče TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Selhal import dat veřejného klíče TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Nepodporování typ %d klíče TPM2\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Operace %s TPM2 selhala (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Výzva: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Nestandartní cesta tunelu SSL: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Časový limit tunelu (interval obnovy klíče) je %d minut.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Adresa brány v nastavení XML (%s) se liší od adresy externí brány (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "Nastavení GlobalProtect poslalo ipsec-mode=%s (očekáváno esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Klíče ESP jsou ignorovány, protože v tomto sestavení chybí podpora ESP\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP zakázáno" #: gpst.c:661 msgid "No ESP keys received" msgstr "Nebyl přijat žádný klíč ESP" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "Podpora ESP není v tomto sestavení k dispozici" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Nebylo přijato žádné MTU. Vypočítáno %d pro %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Připojuje se koncový bod tunelu HTTPS…\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Chyba při získávání odpovědi HTTPS GET-tunnel.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Brána se odpojila ihned po požadavku GET-tunnel.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Chyba: Spuštění skriptu „HIP Report“ není na této platformě zatím " "implementováno.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "Skript HIP „%s“ skončil neobvykle\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "Skript HIP „%s“ vrátil nenulový stav: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Odeslání hlášení HIP selhalo.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "Hlášení HIP bylo úspěšně odesláno.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Selhalo spuštění skriptu HIP %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Brána říká, že je zapotřebí odeslat hlášení HIP.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Brána říká, že není zapotřebí odeslat hlášení HIP.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Tunel ESP byl připojen, opouští se hlavní smyčka HTTPS.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Selhalo připojení tunelu ESP, místo něj se použije HTTPS.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Chyba při příjmu paketu: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Neočekávaná délka paketu. Funkce SSL_read vrátila %d (včetně 16 bajtů " "hlavičky), ale payload_len v hlavičce je %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Obdržena odpověď GPST DPD/keepalive\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Bylo očekáváno 0000000000000000 jako posledních 8 bajtů v hlavičce paketu " "DPD/keepalive, ale obdrženo bylo:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Bylo očekáváno 0100000000000000 jako posledních 8 bajtů v hlavičce paketu, " "ale obdrženo bylo:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Neznámý paket. Zde je výpis hlavičky:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "Důvod obnovy klíče GLobalProtect\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "Odhalování mrtvého protějšku GPST odhalilo mrtvý protějšek!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Poslat požadavek GPST DPD/keepalive\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Chyba importu jména GSSAPI pro ověření:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Chyba generování odpovědi GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou GSSAPI\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Pokus o ověření k serveru metodou GSSAPI '%s'\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Ověření GSSAPI dokončeno\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Příliš dlouhý token GSSAPI (%zd bajtů)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Odesílá se %zu bajtů tokenu GSSAPI\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Selhalo odeslání autentizačního tokenu GSSAPI na proxy: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Selhalo získání autentizačního tokenu GSSAPI z proxy: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Server SOCKS ohlásil selhání kontextu GSSAPI\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Neznámý stavový kód GSSAPI odpovědi (0x%02x) od serveru SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Získán token GSSAPI, %zu bajtů: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Posílá se vyjednání ochrany GSSAPI %zu bajtů\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Selhalo poslání odpovědi na ochranu GSSAPI k proxy: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Selhalo získání odpovědi GSSAPI ochrany z proxy: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Získána odpověd GSSAPI ochrany %zu bajtů: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Neplatná odpověď GSSAPI ochrany z proxy (%zu bajtů)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Prosy SOCKS požaduje integritu zprávy, která není podporována\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proxy SOCKS požaduje důvěrnost zprávy, která není podporována\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proxy SOCKS požaduje neznámý typ ochrany 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokus o ověření k proxy metodou HTTP Basic\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Zkouší se ověření vůči serveru „%s“ metodou HTTP Basic\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Proxy požadovala ověření Basic, které je ale ve výchozím nastavení zakázáno\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Server „%s“ požadoval ověření Basic, které je ale ve výchozím nastavení " "zakázáno\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Žádná další ověřovací metoda k vyzkoušení\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Žádná paměť pro přidělení cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nepodařilo se zpracovat odpověď HTTP „%s“\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obdržena odpověď HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Přehlíží se odpověď neznámého HTTP, řádek „%s“\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Nabídnuta neplatná sušenka: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Ověření osvědčení SSL se nezdařilo\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Tělo odpovědi má zápornou velikost (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Neznámé kódování-přenosu: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Tělo HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Chyba při čtení těla odpovědi HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Chyba při natahování hlavičky kusu\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Chyba při natahování těla odpovědi HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Tělo HTTP 1.0 nelze přijmout bez zavření spojení\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nepodařilo se zpracovat přesměrovanou adresu (URL) „%s“: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Nelze následovat přesměrování na non-https URL „%s“\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Přidělení nové cesty pro relativní přesměrování se nezdařilo: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "Požadavek schválen" #: http.c:1003 msgid "general failure" msgstr "Obecné selhání" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "Spojení podle souboru pravidel nepovoleno" #: http.c:1005 msgid "network unreachable" msgstr "Síť nedosažitelná" #: http.c:1006 msgid "host unreachable" msgstr "Hostitel nedosažitelný" #: http.c:1007 msgid "connection refused by destination host" msgstr "Spojení cílovým hostitelem odmítnuto" #: http.c:1008 msgid "TTL expired" msgstr "TTL vypršel" #: http.c:1009 msgid "command not supported / protocol error" msgstr "Příkaz nepodporován/chyba protokolu" #: http.c:1010 msgid "address type not supported" msgstr "Typ adresy nepodporován" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "Server SOCKS požadoval uživatelské jméno/heslo, ale žádné není k dispozici\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Uživatelské jméno/heslo pro ověření SOCKS musí být < 255 bajtů\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Chyba při zápisu požadavku na ověření do proxy SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Chyba při čtení odpovědi týkající se ověřen z proxy SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Neočekávaná odpověď týkající se ověřen z proxy SOCKS: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Ověřeno vůči serveru SOCKS s použitím hesla\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Ověření vůči serveru SOCKS pomocí hesla selhalo\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Server SOCSKS požadoval ověření GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "Server SOCKS požadoval ověření heslem\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "Server SOCKS požaduje ověření\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Server SOCKS požadoval neznámý typ ověření %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Požadavek na spojení proxy SOCKS do %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Chyba při zápisu odpovědi spojení do proxy SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Chyba při čtení odpovědi spojení z proxy SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekávaná odpověď spojení z proxy SOCKS: %02x %02x…\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Chyba proxy SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Chyba proxy SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekávaný typ adresy %02x v odpovědi spojení SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Požadavek na spojení proxy HTTP do %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Poslání požadavku na proxy se nezdařilo: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Požadavek na SPOJENÍ proxy se nezdařil: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Neznámý typ proxy „%s“\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Podporovány pouze proxy HTTP nebo socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect nebo openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibilní s Cisco AnyConnect SSL VPN a také s ocserv." #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibilní s Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Neznámý protokol VPN „%s“\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Přeloženo s knihovnou SSL bez podpory Cisco DTLS\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Nepřijata žádná adresa IP. Ruší se\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Znovuzapojení dalo jinou adresu Legacy IP (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Znovuzapojení dalo jinou síťovou masku Legacy IP (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Znovuzapojení dalo jinou adresu IPv6 (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Znovuzapojení dalo jinou síťovou masku IPv6 (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Konfigurace IPv6 byla získána, ale MTU %d je příliš malé.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nepodařilo se zpracovat URL serveru „%s“\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Pro URL serveru je povoleno pouze https://\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Neznámý haš certifikátu: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Délka poskytnutého otisku je menší než požadovaná (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Není čím zpracovat formulář; nelze autentizovat.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Volání CommandLineToArgvW() selhalo: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kritická chyba při zpracování příkazové řádky\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Selhala funkce ReadConsole(): %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "Selhala funkce fgetws(): %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Chyba konverze vstupu konzole: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Nezdařila se alokace řetězce ze standardního vstupu\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Pro pomoc s OpenConnect se prosím obraťte na webové stránky\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL není k dispozici" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "POZOR: program neobsahuje podporu DTLS a/nebo ESP. Projeví se to nižším " "výkonem.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Podporované protokoly:" #: main.c:728 main.c:746 msgid " (default)" msgstr "(výchozí)" #: main.c:743 msgid "Set VPN protocol" msgstr "Nastavit protokol VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nelze zpracovat tuto cestu „%s“ ke spustitelným souborům" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokace cesty pro vpnc-script selhala\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Přepsat název stroje „%s“ na „%s“\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Použití: openconnect [volby] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Otevřený klient pro více protokolů VPN, verze %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Načíst volby z konfiguračního souboru" #: main.c:914 msgid "Report version number" msgstr "Nahlásit číslo verze" #: main.c:915 msgid "Display help text" msgstr "Zobrazit text s nápovědou" #: main.c:919 msgid "Authentication" msgstr "Ověření" #: main.c:920 msgid "Set login username" msgstr "Nastavit přihlašovací jméno" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Zakázat ověření heslem/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Nečekat uživatelský vstup, ukončit pokud je požadováno" #: main.c:923 msgid "Read password from standard input" msgstr "Číst heslo ze standardního vstupu" #: main.c:924 msgid "Choose authentication login selection" msgstr "Vybrat autentizační skupinu" #: main.c:925 msgid "Provide authentication form responses" msgstr "Poskytnout odpovědi ověřovacího formuláře" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Použít certifikát klienta SSL CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Použít soubor KEY se soukromým klíčem SSL" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Varovat, když je život certifikátu < DNY" #: main.c:929 msgid "Set login usergroup" msgstr "Nastavit uživatelskou skupinu přihlášení" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nastavit heslovou frázi pro klíč nebo PIN pro TPM SRK" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Heslovou frází klíče je FSID souborového systému" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(POZNÁMKA: knihovna libstoken (RSA SecurID) je v tomto sestavení vypnuta)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(POZNÁMKA: podpora Yubikey OATH je pro toto sestavení vypnuta)" #: main.c:941 msgid "Server validation" msgstr "Ověření serveru" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Zakázat výchozí systémové certifikační autority" #: main.c:944 msgid "Cert file for server verification" msgstr "Soubor s certifikátem pro ověření serveru" #: main.c:946 msgid "Internet connectivity" msgstr "Připojení k Internetu" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Nastavit proxy server" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Nastavit ověřovací metodu proxy" #: main.c:950 msgid "Disable proxy" msgstr "Zakázat Proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Použít libproxy pro automatickou konfiguraci proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(POZNÁMKA: libproxy je v tomto sestavení vypnuta)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Časový limit v sekundách pro opakování připojení" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Pro připojení k HOST použít IP" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Nastavit místní port pro datagramy DTLS a ESP" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Ověření (dvoufázové)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Použít ověřovací cookie COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Číst cookie ze standardního vstupu" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Pouze autentizovat a vypsat informace o přihlášení" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Pouze získat a vypsat cookie: nepřipojovat se" #: main.c:965 msgid "Print cookie before connecting" msgstr "Před připojením vypsat cookie" #: main.c:968 msgid "Process control" msgstr "Správa procesu" #: main.c:969 msgid "Continue in background after startup" msgstr "Pokračovat po spuštění na pozadí" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Zapsat PID služby do tohoto souboru" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Po připojení zahodit oprávnění" #: main.c:974 msgid "Logging (two-phase)" msgstr "Ověření (dvoufázové)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Použít syslog pro záznam zpráv o průběhu" #: main.c:978 msgid "More output" msgstr "Podrobnější výstup" #: main.c:979 msgid "Less output" msgstr "Stručnější výstup" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Uložit autentizační provoz HTTP (vyplývá z --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Předřadit časové razítko ke zprávě o průběhu" #: main.c:983 msgid "VPN configuration script" msgstr "Skript pro nastavení VPN" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Použít IFNAME jako rozhraní tunelu" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Příkazová řádka pro použití konfiguračního skriptu kompatibilního s vpnc" #: main.c:986 msgid "default" msgstr "výchozí" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Posílat provoz do „skriptu“, ne na rozhraní tun" #: main.c:991 msgid "Tunnel control" msgstr "Správa tunelu" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Nedotazovat se na IPv6 konektivitu" #: main.c:993 msgid "XML config file" msgstr "Konfigurační XML soubor" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Vyžádat MTU od serveru (jen pro zastarelé servery)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Zjistit MTU cesty na/z serveru" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Povolit stavovou komprimaci (výchozí je jen bezstavová)" #: main.c:997 msgid "Disable all compression" msgstr "Zakázat veškerou komprimaci" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Vyžaduje se perfect forward secrecy" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Zakázat DTLS a ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Algoritmy OpenSSL podporované pro DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Nastavit limit fronty paketu na LEN" #: main.c:1004 msgid "Local system information" msgstr "Informace o místním systému" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Pole User-Agent: HTTP hlavičky" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Místní název stroje, který bude oznámen serveru" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "řetězec verze oznámený během ověřování" #: main.c:1010 msgid "default:" msgstr "výchozí:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Binární (CSD) spuštění trojského koně" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Zahodit oprávnění při spuštění trojana" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Spusit SCRIPT místo programu trojan" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Chyby serveru" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Vypnout přepoužití HTTP spojení" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Nepokoušet se o autentizaci XML POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Nepodařilo se alokovat řetězec\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Selhalo čtení řádky ze souboru s nastavením: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nerozpoznaná volba na řádku %d: „%s“\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Volba „%s“ nemůže mít argument na řádku %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Volba „%s“ vyžaduje argument na řádku %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Neplatný uživatel „%s“: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Neplatné ID uživatele „%d“: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "probíhá" #: main.c:1519 msgid "disabled" msgstr "zakázáno" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nepodařilo se otevřít „%s“ pro zápis: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Pokračuje se na pozadí; PID %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "POZOR: nelze nastavit národní prostředí: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "POZOR: Tato verze openconnect byla sestavena bez podpory\n" " iconv. Vypadá to, že používáte zastaralou znakovou sadu\n" " „%s“. Je třeba očekávat neobvyklé chování.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "POZOR: openconnect je ve verzi %s,\n" "ale verze knihovny libopenconnect je %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nepodařilo se alokovat strukturu vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "V konfiguračním souboru nelze použít volbu „config“\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nelze otevřít soubor „%s“ s nastavením: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Neplatný režim komprimace „%s“\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Selhala alokace paměti\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Chybí dvojtečka ve volbě převodu\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d je příliš malé\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Vypíná se přepoužití všech HTTP spojení kvůli předvolbě --no-http-" "keepalive.\n" "Pokud to pomůže, pošlete hlášení na adresu .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Volba --no-cert-check nebyla bezpečná a proto byla odstraněna.\n" "Opravte svůj serverový certifikát nebo mu důvěřujte pomocí --servercert.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulová délka fronty není povolena; použije se 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verze %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neplatný režim softwarového tokenu „%s“\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Příliš mnoho argumentů v příkazové řádce\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nebyl zadán žádný server\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Tato verze openconnect byla sestavena bez podpory pro libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nepodařilo se vytvořit spojení SSL\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Nastavení UDP selhalo; bude použito SSL\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Neposkytnut žádný argument --script; DNS a nasměrování nenastaveno\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Více na https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Uživatel požadoval opětovné připojení\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sezení bylo uzavřeno serverem; končí se.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Neznámá chyba; končí se.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nepodařilo se otevřít %s pro zápis: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nepodařilo se zapsat nastavení do %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Pro osvědčení od serveru VPN „%s“ se nepodařilo provést ověření.\n" "Důvod: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Jestli chcete tomuto serveru důvěřovat i do budoucna, zkuste přidat do " "příkazového řádku následující:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Zadejte „%s“ pro přijetí, „%s“ pro zrušení; cokoliv jiného k zobrazení:" #: main.c:2464 main.c:2483 msgid "no" msgstr "Ne" #: main.c:2464 main.c:2470 msgid "yes" msgstr "Ano" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Haš serverového klíče: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Výběr ověření „%s“ odpovídá více volbám\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Výběr ověření „%s“ nedostupný\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Vyžadován uživatelský vstup v neinteraktivním režimu\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Selhalo otevření souboru tokenu pro zápis: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Selhal zápis tokenu: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Řetězec softwarového tokenu není platný\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nelze otevřít soubor ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nebyl sestaven s podporou libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Obecné selhání v knihovně libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nebyl sestaven s podporou liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Obecné selhání v knihovně liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey nebyl nalezen\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect nebyl sestaven s podporou Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Obecné selhání Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Selhalo nastavení skriptu tun\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Selhalo nastavení zařízení tun\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Protistrana pozastavila připojení\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Není nic ke zpracování; bude se spát %d ms…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Funkce WaitForMultipleObjects selhala: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Volání InitializeSecurityContext() selhalo: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Volání AcquireCredentialsHandle() selhalo: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Chyba při komunikaci s pomocným modulem ntlm_auth\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Zkouší se ověření HTTP NTLM k proxy (single-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Zkouší se ověření HTTP NTLM k serveru „%s“ (single-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Zkouší se ověření HTTP NTLMv%d k proxy\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Zkouší se ověření HTTP NTLMv%d k serveru „%s“\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Neplatný řetězec base32 tokenu\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Selhala alokace paměti pro dekódování tajemství OATH\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Kód tokenu INITAL v pořádku vygenerován\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Kód tokenu NEXT v pořádku vygenerován\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server odmítá softwarový token; přepíná se na ruční vstup\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Generuje se kód tokenu OATH TOTP\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Generuje se kód tokenu OATH HOTP\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Neočekávaná délka %d pro TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Přijato MTU %d od serveru\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Přijat server DNS %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Přijata doména DNS pro vyhledávání %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Přijata interní adresa IP %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Přijata síťová maska %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Přijata adresa interní brány %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Přijato rozdělení zahrnuté cesty %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Přijato rozdělení vyloučené cesty %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Přijt server WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Šifrování ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Komprimace ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Životnost klíče ESP: %u bajtů\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Životnost klíče ESP: %u vteřin\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Návrat od ESP k SSL: %u sekund\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Ochrana opakování ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (odchozí): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajtů tajemství ESP\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Neznámá skupina TLV %d atrib %d délka %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Selhala analýza hlavičky KMP\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Selhala analýza zprávy KMP\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Získána zpráva KMP %d délky %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Přijato non-ESP TLV (skupina %d) v ESP KMP vyjednávání\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Chyba při vytváření požadavku vyjednávání oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Krátký zápis v oNCP vyjednávání\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Přečteno %d bajtů záznamu SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Neočekáváná odpověď délky %d po hostname paketu\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Odpovědí serveru na paket hostname je chyba 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Neplatný paket čekající na KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Byla očekávána zpráva KMP 301 od serveru, ale získána %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Zpráva KMP 301 od serveru je příliš dlouhá (%d bajtů)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Získána zpráva KMP 301 délky %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Nepodařilo se přečíst délku pokračování záznamu\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Záznam dalších %d bajtů je příliš dlouhý; očekáváno %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Nepodařilo se přečíst pokračování záznamu délky %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Načteno dalších %d bajtů KMP 301 zprávy\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Chyba vyjednávání klíčů ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Probíhá žádost o vyjednávání oNCP:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "nový příchozí" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "nový odchozí" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Byl přečten pouze 1 bajt oNCP pole délky\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Server ukončil spojení (platnost spojení vypršela)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server ukončil spojení (důvod: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Server odeslal prázdný oNCP záznam\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Příchozí zpráva KMP %d délky %d (získáno %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Pokračuje zpracování KMP zprávy %d, aktuální délka %d ( získáno %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Nerozpoznaný datový paket\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Neznámá zpráva KMP %d délky %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "… + dalších %d nepřijatých batjů\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Odchoz paket:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Odeslán paket povolení kontroly ESP\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "CHYBA:%s() voláno s neplatným UTF-8 u argumentu „%s“\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nelze vypočítat režii DTLS pro %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Selhalo generování náhodných klíčů\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Selhalo vytvoření SSL_SESSION ASN.1 pro OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL selhalo při analýze SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Inicializace DTLSv1 sezení se nepodařila\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Příliš velká velikost ID aplikace\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Zpětné volání PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Inicializace DTLSv1 CTX se nepodařila\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Nastavení verze DTLS CTX se nezdařilo\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Selhalo generování klíče DTLS\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Nastavení seznamu šifrování DTLS se nezdařilo\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Šifra DTLS '%s' nebyla nalezena\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "Selhalo volání SSL_set_session()\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Důvodem je pravděpodobně počkození vašeho OpenSSL\n" "Viz http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Navázání DTLS se nezdařilo: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Selhala inicializace algoritmu ESP:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Selhala inicializace ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Selhalo nastavení dešifrovacího kontextu pro ESP paket: \n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Selhalo dešifrování ESP paketu:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Selhalo šifrování ESP paketu:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Vytvoření kontextu libp11 PKCS#11 selhalo:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Selhalo načtení modulu PKCS#11 poskytovatele (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN uzamčen\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN vypršel\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Už je přihlášen jiný uživatel\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Neznámá chyba při přihlašování k tokenu PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Přihlášen ke slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Selhal výčet certifikátů ve slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nalezeno %d certifikátů ve slotu „%s“\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nepodařilo se analyzovat adresu URI PKCS#11 „%s“\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Selhal výčet slotů PKCS#11\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Přihlašuje se ke slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nezdařilo se vyhledání certifikátu PKCS#11 „%s“\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Obsah X.509 certifikátu nebyl knihovnou libp11 získán\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Selhal výčet klíčů ve slotu PKCS#11 „%s“\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nalezeno %d klíčů ve slotu „%s“\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Certifikát klienta nemá žádý veřejný klíč\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Certifikát nevyhovuje žádnému soukromému klíči\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Kontroluje se shoda klíče EC s certifikátem\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Nepodařilo se alokovat vyrovnávací paměť pro podpis\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nezdařilo se podepsat fiktivní data kvůli ověření klíče EC\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nepodařilo se vyhledat klíč PKCS#11 „%s“\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Tato verze OpenConnect byla sestavena bez podpory PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Neobsloužený požadavek SSL UI typu %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Heslo PEM je příliš dlouhé (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Nahrávání soukromého klíče selhalo\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Selhala instalace certifikátu v kontextu OpenSSL\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Zvláštní osvědčení od %s: „%s“\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Zpracování PKCS#12 se nezdařilo (viz chyby výše)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 neobsahoval žádný certifikát!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 neobsahoval žádný soukromý klíč!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Nelze nahrát stroj TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Nepodařilo se zapnout stroj TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Nepodařilo se nastavit heslo TPM SRK \n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Nepodařilo se nahrát soukromý klíč TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nepodařilo se otevřít soubor s certifikátem %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Nahrání osvědčení se nezdařilo\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Selhalo zpracování všech podpůrných certifikátů. Přesto se pokračuje…\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "Soubor PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Selhlalo vytvoření BIO pro položku „%s“ v úložišti klíčů\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Načtení soukromého klíče se nezdařilo (chybné heslo?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Načtení soukromého klíče se nezdařilo (podívejte se na chyby výše)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Selhalo nahrání X509 certifikátu z úložiště klíčů\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nepodařilo se otevřít soubor soukromý klíč %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Nezdařil se převod PKCS#8 na OpenSSL EVP_PKEY\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nepodařilo se rozpoznat typ soukromého klíče v „%s“\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Shodující se alternativní název „%s“ DNS\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Žádná shoda pro alternativní název „%s“\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Osvědčení má GEN_IPADD alternativní název se špatnou délkou %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Shodující se adresa %s „%s“\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Žádná shoda pro adresu %s „%s“\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI „%s“ má neprázdnou cestu; přehlíží se\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Shodující se URI „%s“\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Žádná shoda pro URI „%s“\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Žádný odpovídající alternativní název v osvědčení protějšku „%s“\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Žádný název předmětu v osvědčení protějšku!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Nepodařilo se zpracovat název předmětu v osvědčení protějšku\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Neshoda v předmětu osvědčení protějšku („%s“ != „%s“)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odpovídající název předmětu osvědčení protějšku „%s“\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Zvláštní certifikát ze souboru CA: „%s“\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Chyba v poli notAfter osvědčení klienta\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "Certifikát SSL a klíč k sobě napsují\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Selhalo čtení certifikátů z CA souboru „%s“\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nepodařilo se otevřít soubor CA „%s“\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Vytvoření TLSv1 CTX se nezdařilo\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Selhání spojení SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Selhal výpočet OATH HMAC\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Heslo:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Zahodit špatné zahrnutí rozdělení: „%s“\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Zahodit špatné vyloučení rozdělení: „%s“\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Selhalo vytvoření skriptu „%s“ pro %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript „%s“ skončil neobvykle (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript „%s“ vrátil chybu %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Připojení soketu bylo zrušeno\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nepodařilo se znovu spojit s proxy %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nepodařilo se znovu spojit s hostitelem %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy z libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo selhalo pro hostitele „%s“: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Opětovné připojení k DynDNS serveru s použitím IP adresy z mezipaměti\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokus o připojení k proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokus o připojení k serveru %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Připojen k %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Nepodařilo se přidělit skladiště sockaddr\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Selhalo připojení k %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Zapomíná se nefunkční adresa předchozího protějšku\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nepodařilo se spojit se s hostitelem %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Opětovné připojení k proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "K heslu nebylo možné získat ID souborového systému\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Selhalo otevření souboru se soukromým klíčem „%s“: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Žádná chyba" #: ssl.c:727 msgid "Keystore locked" msgstr "Úložiště klíčů uzamčeno" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Neinicializované úložiště klíčů" #: ssl.c:729 msgid "System error" msgstr "Systémová chyba" #: ssl.c:730 msgid "Protocol error" msgstr "Chyba protokolu" #: ssl.c:731 msgid "Permission denied" msgstr "Přístup odepřen" #: ssl.c:732 msgid "Key not found" msgstr "Klíč nebyl nalezen" #: ssl.c:733 msgid "Value corrupted" msgstr "Porušená hodnota" #: ssl.c:734 msgid "Undefined action" msgstr "Nedefinovaná akce" #: ssl.c:738 msgid "Wrong password" msgstr "Chybné heslo" #: ssl.c:739 msgid "Unknown error" msgstr "Neznámá chyba" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Selhalo otevření %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Selhalo volání fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Selhala alokace %d bajtů pro %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Selhalo čtení %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Neznámá rodina protokolu %d. Nelze vytvořit adresu serveru UDP\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Otevřít soketu UDP" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Neznámá rodina protokolu %d. Nelze použít přenos UDP\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Otevřít soket UDP" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Doba platnosti cookie vypršela, sezení se ukončuje\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spánek %d s, zbývající oddechový čas %d s\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI je příliš dlouhý (%ld bajtů)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Odesílá se token SSPI délky %lu bajtů\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Selhalo odeslání ověřovacího tokenu SSPI na proxy: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Selhalo získání ověřovacího tokenu SSPI od proxy: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "Server SOCKS ohlásil selhání kontextu SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Neznámý stavový kód odpovědi SSPI (0x%02x) od serveru SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Získán token SSPI délky %lu bajtů: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Volání QueryContextAttributes() selhalo: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Volání EncryptMessage() selhalo: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Výsledek volání EncryptMessage() je příliš dlouhý (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Posílá se vyjednání ochrany SSPI v délce %u bajtů\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Selhalo odeslání odpovědi ochrany SSPI na proxy: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Selhalo získání odpovědi ochrany SSPI z proxy: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Získána odpověď ochrany SSPI v délce %d bajtů: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Volání DecryptMessage() selhalo: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neplatná odpověď ochrany SSPI od proxy (%lu bajtů)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Zadejte přihlašovací údaje pro odemčení softwarového tokenu." #: stoken.c:107 msgid "Device ID:" msgstr "ID zařízení:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Uživatel obešel softwarový token.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Všechna pole jsou povinná, zkusit znovu.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Obecné selhání v knihovně libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Chybné ID zařízení nebo heslo, zkustit znovu.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Inicializace softwarového tokenu byla úspěšná.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Zadejte PIN softwarového tokenu." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Neplatný formát PIN kódu, zkuste to znovu.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Generuje se kód tokenu RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Chyba přístupu ke klíči registru pro síťové adaptéry\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() selhala: %s\n" "Použije se znovu GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "Selhala funkce GetAdaptersInfo(): %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Nepodařilo se otevřít %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nepodařilo se získat verzi ovladače TAP: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: je požadován ovladač TAP-Windows ve verzi 9.9 nebo vyšší (nalezen %ld." "%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Selhalo nastavení IP adresy TAP: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Selhalo nastavení stavu média TAP: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Zařízení TAP přerušilo spojení. Odpojuje se.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nepodařilo se číst ze zařízení TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Úplně selhalo čtení z TAP zařízení: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Do tun zapsáno %ld bajtů\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Čeká se na zápis do tun…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Po čekání zapsáno %ld bajtů do tun\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nepodařilo se zapsat do zařízení TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Spouštění tunelovacích skriptů není na Windows zatím podporováno\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nelze otevřít /dev/tun pro propojení" #: tun.c:92 msgid "Can't push IP" msgstr "Nelze protlačit IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nelze nastavit název rozhraní" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nelze propojit %s pro IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "Otevřít /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nepodařilo se vytvořit nové tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Selhalo přepnutí popisovače souboru pro tun do režimu message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "Zařízení tun není na této platformě podporováno\n" #: tun.c:205 msgid "open net" msgstr "Otevřít síť" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nepodařilo se otevřít zařízení tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nepodařilo se otevřít zařízení tun (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Pro konfiguraci prostředků místních sítí musí být openconnect spuštěn s " "právy uživatele root\n" "Více informací viz https://www.infradead.org/openconnect/nonroot.html for " "more information\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Nepatný název rozhraní „%s“; musí odpovídat „utun%%d“ nebo „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Selhalo otevření soketu SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Selhal dotaz na utun control_id: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nepodařilo se alokovat název zařízení utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Selhalo připojení jednotky utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nepatný název rozhraní „%s“; musí být ve tvaru „tun%%d“\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nelze otevřít „%s“: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "spárování soketů selhal: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "rozvětvení selhalo: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(skript)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Selhal zápis příchozího paketu: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Brát „%s“ jako surový název počítače\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Selhal výpočet SHA1 stávajícího souboru\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Soubor s nastavením ve formátu XML pro SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Selhalo zpracování souboru %s s nastavením ve formátu XML\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Počítač „%s“ má adresu „%s“\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Počítač „%s“ má UserGroup „%s“\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Počítač „%s“ není uveden v nastavení; bere se jako surový název počítač\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nepodařilo se odeslat „%s“ do apletu ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neplatná krátká odpověď na „%s“ od apletu ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Selhala odpověď „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "příkaz volby apletu" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nerozpoznaná odpověď od apletu ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Nalezen aplet ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Aplet Yubikey OATH vyžaduje PIN" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nepodařilo se vypočítat odemykací odpověď Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "příkaz odemčení" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Zkouší se truncated-char PBKBF2 varianta Yubikey PINu\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Vytvoření kontextu PC/SC selhalo: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Vytvořen kontext PCS/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Selhal dotaz do seznamu čteček: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Selhalo připojení k čtečce PC/SC „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Připojena čtečka PC/SC „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Selhal pokus o získání výhradního přístupu ke čtečce „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "příkaz seznamu klíčů" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nalezeno %s/%s klíčů „%s“ v „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Token „%s“ nebyl na Yubikey „%s“ nalezen. Hledá se jiný Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odmítá token Yubikey; přepíná se na ruční vstup\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Generuje se kód tokenu Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Selhal pokus o získání výhradního přístupu k Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "příkaz výpočtu" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nerozpoznaná odpověď od Yubikey při generování kódu tokenu\n" openconnect-8.20/po/ar.po0000644000076400007640000037072514204456066017135 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # osama7 , 2013 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2014-02-19 09:05+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: Arabic (http://www.transifex.com/projects/p/meego/language/" "ar/)\n" "Language: ar\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=6; plural=n==0 ? 0 : n==1 ? 1 : n==2 ? 2 : n%100>=3 " "&& n%100<=10 ? 3 : n%100>=11 && n%100<=99 ? 4 : 5;\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "لا يمكن التعامل بهذه الطريقة ='%s' العمل ='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "النموذج ليس له أسم\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "الأسم%s غير مدخل\n" #: auth.c:195 msgid "No input type in form\n" msgstr "لايوجد مدخلات في النموذج\n" #: auth.c:207 msgid "No input name in form\n" msgstr "لايوجد اسم مدخل في النموذج\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "شكل غير معروف مدخل %s في النموذج\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "فشل في تحليل استجابة الملقم\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "الرد هو:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "طلب لكلمة المرور ولكن '- لايوجد كلمة مرور' معينة\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "" #: main.c:915 msgid "Display help text" msgstr "" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "" #: main.c:2464 main.c:2470 msgid "yes" msgstr "" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "خيار المصادقة \"%s\" غير متاح\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:726 msgid "No error" msgstr "" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "" #: ssl.c:730 msgid "Protocol error" msgstr "" #: ssl.c:731 msgid "Permission denied" msgstr "" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "" #: ssl.c:739 msgid "Unknown error" msgstr "" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/it.po0000644000076400007640000037225014204456071017136 0ustar00dwoodhoudwoodhou00000000000000# Italian translation of NetworkManager-OpenConnect. # Copyright (C) 2006, 2007, 2008, 2009, 2010 the NetworkManager-OpenConnect'S COPYRIGHT HOLDER # This file is distributed under the same license as the NetworkManager-OpenConnect package. # Francesco Marletta , 2006, 2007, 2008, 2009, 2010. # Luca Ferretti , 2010. msgid "" msgstr "" "Project-Id-Version: NetworkManager-OpenConnect 0.8.x\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2015-11-14 17:13+0100\n" "Last-Translator: Milo Casagrande \n" "Language-Team: Italian \n" "Language: it\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Poedit 1.8.6\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Allocazione non riuscita\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:195 msgid "No input type in form\n" msgstr "" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "La risposta XML non ha un nodo «auth»\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Risposta server sconosciuta\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "POST XML abilitato\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Servizio VPN non disponibile; motivo: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo di compressione %d sconosciuto\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Impossibile determinare il tipo di cifratura PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "In uso certificato PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "In uso certificato di sistema %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "In uso chiave di sistema %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "In uso chiave PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "In uso file chiave privata %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "certificato scaduto" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Codice PIN errato" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Ultimo tentativo prima del blocco" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "TTL scaduto" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "tipo di indirizzo non supportato" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo di proxy «%s» non valido\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "" #: main.c:915 msgid "Display help text" msgstr "" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "Certificato per la verifica server" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "File di configurazione XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Impossibile aprire il file di configurazione \"%s\": %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "" #: main.c:2464 main.c:2470 msgid "yes" msgstr "sì" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Impossibile aprire il file ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Token Yubikey non trovato\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Il chiamante ha messo in pausa la connessione\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Un altro utente è già collegato\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Impossibile caricare il motore TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "Errore di sistema" #: ssl.c:730 msgid "Protocol error" msgstr "" #: ssl.c:731 msgid "Permission denied" msgstr "" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "Valore non valido" #: ssl.c:734 msgid "Undefined action" msgstr "Azione non definita" #: ssl.c:738 msgid "Wrong password" msgstr "Password non corretta" #: ssl.c:739 msgid "Unknown error" msgstr "Errore sconosciuto" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Tutti i campi sono richiesti, riprovare.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Impossibile aprire \"%s\": %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 del file XML di configurazione: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "calcolo commando" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/es.po0000644000076400007640000057737614204456070017150 0ustar00dwoodhoudwoodhou00000000000000# translation of network-manager-openconnect.HEAD.po to Español # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # Jorge González , 2008, 2010. # Nicolás Satragno , 2013. # Javier Mazorra Rodríguez , 2012, 2013. # facundo Dario Illanes , 2013. # Ignacio Acevedo Carrera , 2016. # Rodrigo , 2018-2019. # Rodrigo Lledó , 2019-2020. # Jorge Toledo , 2021. # Daniel Mustieles , 2011-2021. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect.HEAD\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-09-04 16:17+0200\n" "Last-Translator: Rodrigo Lledó Milanca \n" "Language-Team: Spanish - Spain \n" "Language: es_ES\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Poedit 3.0\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-DL-Team: es\n" "X-DL-Module: NetworkManager-openconnect\n" "X-DL-Branch: master\n" "X-DL-Domain: po\n" "X-DL-State: Translating\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "No se encontraron cookies de ANsession\n" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie «%s» no válida\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Se encontró el servidor DNS %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "Se obtuvo el dominio de búsqueda «%s»\n" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "Elemento de configuración de matriz «%s» desconocido\n" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "Config. inicial: túnel rápido %d, cif. %d, DPD %d\n" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "Escritura corta en la negociación JSON de matriz\n" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "Falló al leer la respuesta JSON de matriz\n" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "Respuesta inesperada a la solicitud JSON de matriz\n" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "Falló al analizar la respuesta JSON de matriz\n" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "Error al crear la solicitud de negociación de matriz\n" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado %d del servidor inesperado\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "Error al construir el paquete de negociación DTLS de matriz\n" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "Escritura corta en la negociación de matriz\n" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "Falló al leer la respuesta de negociación UDP\n" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "DTLS activado en el puerto %d\n" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "Rechazando túnel UDP sin DTLS\n" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "Falló al leer la respuesta de ipff\n" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Falló la reserva\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Paquete corto recibido (%d bytes)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Recibir paquete de control de tipo %x:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Paquete de datos recibido de %d bytes\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL escribió demasiados pocos bytes. Se pidieron %d, se enviaron %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Renegociación de clave CSTP pendiente\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Renegociación fallida; intentando un túnel nuevo\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "La detección de pares muertos de TCP detectó un par muerto.\n" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "Falló la reconexión de TCP\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Enviar DPD de TCP\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Enviar Keepalive de TCP\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Enviando paquete sin DTLS\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Enviando paquete de datos sin comprimir de %d bytes\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Intentar nueva conexión DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "Falló al recibir respuesta de autenticación de DTLS\n" #: array.c:1084 msgid "DTLS session established\n" msgstr "Sesión DTLS establecida\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "Se recibió IP heredada mediante DTLS; se supone establecida\n" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "Se recibió IPv6 mediante DTLS; se supone establecida\n" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "Se recibió un paquete DTLS desconocido\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "Error al crear la solicitud de conexión para la sesión DTLS\n" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "Falló al escribir la solicitud de conexión en la sesión DTLS\n" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recibió el paquete DTLS 0x%02x de %d bytes\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Renegociación de clave DTLS pendiente\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Falló la renegociación DTLS; reconectando\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "¡La detección de muerte del par DTLS detectó la muerte del par!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Enviar DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falló al enviar petición DPD. Espere para desconectar\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Envió paquete DTLS de %d bytes; el envío DTLS devolvió %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Falló al cerrar sesión.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Sesión cerrada con éxito.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Se especificó el campo del formulario de destino %s; asumiendo que la " "autenticación SAML %s está completa.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "Se requiere autenticación SAML %s mediante %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "Se requiere autenticación SAML %s mediante un script externo.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Cuando se complete la autenticación SAML, especifique el campo del " "formulario de destino agregando: field_name a la URL de inicio de sesión.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Introduzca su usuario y contraseña" #: auth-globalprotect.c:159 msgid "Username" msgstr "Usuario" #: auth-globalprotect.c:174 msgid "Password" msgstr "Contraseña" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Desafío: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "El inicio de sesión en GlobalProtect ha devuelto un valor de argumento no " "esperado arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "El inicio de sesión de GlobalProtect devolvió %s=%s (se espera %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" "El inicio de sesión de GlobalProtect devolvió que %s está vacío o ausente\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "El inicio de sesión de GlobalProtect devolvió %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Informe %d valores inesperados anteriores (de los cuales %d son fatales) a " "\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Seleccione una puerta de enlace GlobalProtect." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "PUERTA DE ENLACE:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Ignorando el intervalo del informe HIP del portal (%d minutos), porque el " "intervalo ya está establecido en %d minutos.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "El portal estableció el intervalo de informe de HIP en %d minutos).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d servidores de puerta de enlace disponibles:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" "La configuración del portal GlobalProtect no muestra puertas de enlace.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falló al generar el código de testigo OTP; desactivando testigo\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" "El servidor no es ni un portal GlobalProtect ni una puerta de enlace.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorando formulario de envío desconocido del elemento «%s»\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorando formulario de entrada desconocido del tipo «%s»\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Descartando opcion duplicada «%s»\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "No se puede gestionar el método=«%s» del formulario, acción=«%s»\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Campo de área de texto desconocido: «%s»\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Falló al asignar memoria para la comunicación con TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Falló al enviar el comando a TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Soporte TNCC aún no implementado en Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Ninguna cookie DSPREAUTH; no intentar TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" "Intentando ejecutar el script troyano de comprobación de TNCC/Equipo «%s».\n" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Falló al ejecutar el script TNCC %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Envío iniciado; esperando respuesta por parte de TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Falló al leer la respuesta de TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Se recibió respuesta fallida %s de TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "Respuesta TNCC 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Segunda línea de la respuesta TNCC: «%s»\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Se ha obtenido una nueva cookie DSPREAUTH de TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Se obtuvo el intervalo de reautorización de TNCC: %d segundos\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "Línea no vacía inesperada de TNCC después de la cookie DSPREAUTH: «%s»\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Demasiadas líneas no vacías de TNCC después de la cookie DSPREAUTH\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Falló al analizar el documento HTML\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Falló al encontrar o analizar el formulario web en la página de inicio de " "sesión\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Se ha encontrado un formulario sin «nombre» o «ID»\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" "La acción del formulario (%s) probablemente indica que la comprobación de " "TNCC/Equipo falló.\n" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Formulario desconocido (nombre «%s», ID «%s»)\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Volcando formulario HTML desconocido:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "El formulario elegido no tiene nombre\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "el nombre %s no es una entrada\n" #: auth.c:195 msgid "No input type in form\n" msgstr "No hay tipo de entrada en el formulario\n" #: auth.c:207 msgid "No input name in form\n" msgstr "No hay nombre de entrada en el formulario\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada %s desconocido en el formulario\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Respuesta desde el servidor vacía\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Falló al analizar la respuesta del servidor\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "La respuesta fue:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Se recibió un no esperado.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "La respuesta XML no tiene nodo «auth»\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Se pidió la contraseña, pero se estableció «--no-passwd»\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" "Falta el certificado de cliente o es incorrecto (error de validación del " "certificado)" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "No se descarga el perfil XML porque ya SHA1 ya coincide\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falló al abrir una conexión HTTPS con %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Falló al enviar la petición GET para la nueva configuración\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "El archivo de configuración descargado no coincide con el SHA1 esperado\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Perfil XML nuevo descargado\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Error: la ejecución del «Cisco Secure Desktop» para troyano en esta " "plataforma no se ha implementado.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Falló al establecer gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Falló al establecer grupos de %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Falló al establecer uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "uid=%ld del usuario no válido: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falló al cambiar a la carpeta local «%s» de CSD: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Error: el servidor ha pedido ejecutar CSD hotscan.\n" "Necesita proporcionar un argumento --csd-wrapper adecuado.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: el servidor solicitó descargar y ejecutar un troyano «Cisco Secure " "Desktop».\n" "Esta facilidad está desactivada de manera predeterminada por razones de " "seguridad, por lo que podría querer activarla.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "No se puede escribir en la carpeta temporal «%s»: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falló al abrir el archivo temporal del script CSD: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falló al escribir el archivo temporal del script CSD: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "Intentando ejecutar el script troyano CSD «%s».\n" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "El script CSD «%s» salió anormalmente\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "El script CSD «%s» devolvió un estado distinto de cero: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "La autenticación puede fallar. Si su script no devuelve cero, corríjalo.\n" "Las futuras versiones de openconnect fallarán ante este error.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "El script CSD «%s» se completó correctamente.\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Aviso: está ejecutando código CSD inseguro con privilegios de administrador\n" "\tUse la opción de línea de comandos «--csd-user»\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falló al ejecutar el script CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Respuesta desconocida del servidor\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "El servidor solicitó el certificado SSL del cliente tras proporcionarle uno\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "El servidor solicitó el certificado SSL del cliente; no se ha configurado " "ninguno\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "POST XML activado\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "No se pudo recuperar el resguardo de CSD. Continuar de todos modos con el " "script de envoltura CSD.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" "Se obtuvo un extremo de CSD para la plataforma %s (el tamaño es de %d " "bytes).\n" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Actualizando %s tras 1 segundo…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(error 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(¡Error al describir el error!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Error: no se pueden inicializar los sockets\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "Error crítico: el secreto DTLS maestro no está inicializado. Informe de " "esto.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Error al crear la solicitud HTTPS CONNECT\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Error al obtener respuesta HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Servicio VPN no disponible; razón: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Se obtuvo una respuesta HTTP CONNECT inadecuada: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Se obtuvo la respuesta CONNECT: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "No hay memoria para opciones\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session no es de 64 caracteres; es: «%s»\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID no es válido; es: «%s»\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "DTLS-Content-Encoding %s desconocido\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s desconocido\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "No se recibió MTU. Abortando\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP conectado. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Falló la configuración de compresión\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Falló la localización del buffer vacío\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "falló el llenado\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Fallo de la descompresión LZS: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Falló la descompresión LZ4\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo de compresión %d desconocido\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Paquete de datos comprimidos %s de %d bytes recibido (eran %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "falló el vaciado %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Longitud de paquete inesperada. SSL_read devolvió %d pero el paquete es\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Se obtuvo la petición CSTP DPD\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Se obtuvo la respuesta CSTP DPD\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Se obtuvo Keepalive CSTP\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Se recibió el paquete de datos sin comprimir de %d bytes\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Se recibió el una desconexión del servidor: %02x «%s»\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Recibida una desconexión del servidor\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Se recibió el paquete comprimido en modo !vacío\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "se recibió el paquete de fin del servidor\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquete desconocido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "La detección de muerte del par CSTP detectó la muerte del par\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Falló al reconectar\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Enviar CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Enviar CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Enviando paquete de datos comprimidos de %d bytes (eran %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar paquete BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Escritura corta al escribir el paquete BYE\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Intentando la autenticación Digest en el proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Intentando la autenticación Digest al servidor «%s»\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Intento de conexión DTLS con un «fd» existente\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Sin dirección DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "El servidor no ofreció opción de cifrado DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Sin DTLS cuando se conecta vía proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializado. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Se recibió un paquete desconocido (len %d): %02x %02x %02x %02x…\n" # TOS = Type of service #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS este: %d, TOS último: %d\n" # setsockopt - set the socket options # Es una función y por tanto la dejo sin traducir #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Solicitud DTLS DPD obtenida\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falló al enviar respuesta DPD. Espere desconectar\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Respuesta DTLS DPD obtenida\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Obtenido Keepalive DTLS\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "Paquete DTLS comprimido recibido cuando la compresión no estaba activada\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Paquete DTLS tipo %02x desconocido, longitud %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Enviar Keepalive DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falló al enviar petición de keepalive. Espere para desconectar\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Iniciando la detección de MTU (min=%d, max=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Enviando sonda DPD MTU (%u bytes)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Falló al enviar la solicitud DPD (%d %d)\n" # Unidad máxima de transferencia (Maximum Transmission Unit - MTU) #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Demasiado tiempo en el bucle de detección de la MTU; suponiendo la MTU " "acordada.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" "Demasiado tiempo en el bucle de detección de la MTU; MTU establecida a %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Paquete inesperado recibido (%.2x) en la detección de MTU; omitiendo.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "No hay respuesta al tamaño %u después de %d intentos. Se declara que MTU es " "%u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Falló al recibir la solicitud DPD (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Sonda DPD MTU recibida (%u bytes)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Detectado MTU de %d bytes (eran %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "No hay cambios en MTU después de la detección (fue %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Aceptando paquete ESP esperado con la secuencia %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Aceptando paquete ESP después de lo esperado con la secuencia %u (se " "esperaba %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "Descartando paquete ESP antiguo con la secuencia %u (se esperaba %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Permitiendo paquete ESP antiguo con la secuencia %u (se esperaba %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Descartando paquete ESP repetido con la secuencia %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Permitiendo paquete ESP repetido con la secuencia %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Aceptando paquete ESP fuera de orden con la secuencia %u (se esperaba " "%)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametros para %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Tipo de cifrado ESP %s clave 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Tipo de autenticación ESP %s clave 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "entrante" #: esp.c:94 msgid "outgoing" msgstr "saliente" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Enviar pruebas ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Paquete ESP recibido desde el SPI antiguo 0x%x, secuencia %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Paquete ESP recibido con SPI no válido 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "Se recibió un paquete ESP de IP heredada de %d bytes\n" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" "Se recibió un paquete ESP de IP heredada de %d bytes (comprimido en LZO)\n" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "Se recibió un paquete ESP IPv6 de %d bytes\n" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" "Se recibió un paquete ESP de %d bytes con un tipo de carga no reconocido " "%02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Longitud de relleno %02x no válida en ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de relleno no válidos en ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Sesión ESP establecida con el servidor\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Falló al asignar memoria para descifrar el paquete ESP\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Falló la descompresión LZO del paquete ESP\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO descomprime %d bytes en %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Renegociación de la clave no implementada para ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP detectó la muerte del par\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Enviar pruebas ESP para DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive no está implementado para ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Volver a poner en cola falló al enviar ESP: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Falló al enviar el paquete ESP: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "Se envió un paquete ESP IPv%d de %d bytes\n" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Falló al generar claves aleatorias para ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Falló al generar el IV inicial para ESP\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" "ADVERTENCIA: no se encontró ningún formulario de inicio de sesión HTML; " "suponiendo campos de nombre de usuario y contraseña\n" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "ID de formulario desconocido «%s» (se esperaba «auth_form»)\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Falló al analizar la respuesta del perfil F5\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Falló en encontrar los parámetros del perfil VPN\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Falló al analizar la respuesta de las opciones F5\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "El tiempo de espera de inactividad es de %d minutos\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Obtenidas rutas predeterminadas\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Obtenido un valor SplitTunneling0 de %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Recibido servidor DNS %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Recibido servidor WINS/NBNS %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Recibido dominio de búsqueda %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "Recibida ruta excluida dividida %s\n" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "Recibida ruta incluida dividida %s\n" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "DTLS está activado en el puerto %d\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" "ADVERTENCIA: El servidor activa DTLS, pero también requiere HDLC. Se " "desactiva DTLS,\n" " debido a que HDLC impide la determinación de un MTU eficiente y " "consistente.\n" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Falló al encontrar las opciones VPN\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Recibida dirección IP heredada %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Recibida dirección IPv6 %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Recibidos parámetros del perfil '%s'\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Se obtuvo ipv4 %d ipv6 %d hdlc %d ur_Z «%s»\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Error al establecer conexión F5\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Se obtuvo el campo de inicio de sesión «%s»\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "Falló al analizar el archivo XML de configuración Fortinet\n" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "El tiempo de espera de inactividad es de %d minutos.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "La plataforma informada es %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Recibido servidor DNS IPv%d %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" "ADVERTENCIA: se obtuvieron dominios con DNS dividido %s (aún sin " "implementar)\n" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" "ADVERTENCIA: se obtuvo un servidor con DNS dividido %s (aún sin " "implementar)\n" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "Recibida ruta IPv%d %s\n" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "No hay una cookie con nombre SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "Error al establecer conexión Fortinet\n" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "No se recibió la respuesta de svrhello esperada.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "El estado de svrhello era «%.*s» en vez de «ok»\n" # Defer = posponer, aplazar, diferir #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Aplazando la reanudación de DTLS hasta que CSTP genere un PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Falló al establecer la cadena de prioridad DTLS\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Falló al establecer la prioridad DTLS: «%s»: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Falló al asignar las credenciales: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Falló al generar la clave DTLS: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Falló al establecer la clave DTLS %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Falló al establecer las credenciales DTLS PSK: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" "Parámetros DTLS desconocidos para la petición del conjunto de cifrado «%s»\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falló al establecer los parámetros de sesión: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS utilizó %d bytes aleatorios de ClientHello; esto nunca debería " "suceder\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS envió un ClientHello aleatorio inseguro. Actualice a 3.6.13 o más " "reciente.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Falló al inicializar DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "El par MTU %d es demasiado pequeño para permitir DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU reducido a %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "No se ha podido reanudar la sesión DTLS; posible ataque MITM. Desactivando " "DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falló al establecer la MTU de DTLS %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Conexión DTLS establecida (usando GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compresión de la conexión DTLS utilizando %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Expiró tiempo de la negociación DTLS\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Falló la negociación DTLS: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(¿Es un cortafuegos lo que impide el envío de paquetes UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Falló al inicializar el cifrado ESP: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Falló al inicializar ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Falló al calcular HMAC para el paquete ESP: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Paquete ESP recibido con HMAC no válida\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Falló al descifrar el paquete ESP: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Falló al cifrar el paquete ESP: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Falló select() para TLS" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "Escritura TLS/DTLS cancelada\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Falló al escribir en el socket TLS/DTLS: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "Falló select() para TLS/DTLS" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "Lectura TLS/DTLS cancelada\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "Socket TLS/DTLS cerrado no limpiamente\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Falló al leer del socket TLS/DTLS: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Se intentó leer desde una sesión %s que no existe\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "Error de lectura en la sesión %s: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "Se intentó escribir en una sesión %s que no existe\n" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Error de escritura en la sesión %s: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "No se pudo extraer la fecha de caducidad del certificado\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "El certificado del cliente ha caducado el" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "El certificado secundario del cliente ha caducado el" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "El certificado del cliente caduca pronto el" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "El certificado secundario del cliente caduca pronto el" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falló al cargar el elemento «%s» del almacén de claves: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falló al abrir el archivo de clave/certificado %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falló al obtener el estado del archivo de clave/certificado %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Falló al asignar el búfer del certificado\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falló al leer el certificado en memoria: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falló al configurar la estructura de datos PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falló al descifrar el archivo del certificado PKCS#12\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Introduzca contraseña PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "Introduzca la frase de contraseña secundaria PKCS#12:" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falló al procesar el archivo PKCS#12: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falló al cargar el certificado PKCS#12: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "No se pudo cargar el certificado PKCS#12 secundario: %s\n" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "No se pudo inicializar el hash MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Error del hash MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "DEK-Info perdido: cabecera desde clave OpenSSL cifrada\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "No se puede determinar el tipo de cifrado PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de cifrado PEM no soportado: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Semilla no válida en el archivo PEM cifrado\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error base64-decoding del archivo PEM cifrado: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Archivo cifrado PEM demasiado corto\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Falló al inicializar el cifrado para el archivo PEM de descifrado: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falló al descrifrar la clave PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Falló al descifrar la clave PEM\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Introduzca contraseña PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "Introduzca la frase de contraseña PEM secundaria:" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Este binario se compiló sin soporte para sistema de claves\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Este binario se compiló sin soporte PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Usando certificado PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Usando el certificado del sistema %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error al cargar el certificado desde PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Error al cargar el certificado del sistema: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Usando archivo de certificado %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "Usando archivo de certificado secundario %s\n" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "El archivo PKCS#11 no contiene ningún certificado\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Certificado no encontrado en el archivo" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Falló al cargar certificado: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "No se pudo cargar el certificado secundario: %s\n" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Usando la clave del sistema %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "Usando la clave secundaria del sistema %s\n" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error al inicializar la estructura de clave privada: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Error al importar la clave del sistema %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Probando URL de clave PKCS#11 %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error al inicializar la estructura de clave PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error al importar el URL PKCS#11 %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Usando clave PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Error al importar la clave PKCS#11 a la estructura de clave privada: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Usando archivo de clave privada: %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Falló al traducir el archivo PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falló al cargar la clave privada PKCS#1: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falló al cargar la clave privada como PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falló al descifrar el archivo del certificado PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falló al determinar el tipo de clave privada %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Introduzca contraseña PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falló al obtener el ID de la clave: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error al firmar el test de datos con la clave privada: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error al validar la firma con el certificado: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" "No se encontró ningún certificado SSL que coincida con la clave privada\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" "No se encontró ningún certificado secundario que coincida con la clave " "privada\n" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "Condiciones de got_key no cumplidas\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "Error al crear una clave privada abstracta desde /x509_privkey: %s\n" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Usando el certificado del cliente «%s»\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "Usando certificado secundario «%s»\n" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Falló al asignar memoria para el certificado\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "No se obtuvo distribuidor de PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Se obtuvo el siguiente CA «%s» de PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falló al asignar memoria para soportar certificados\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Añadiendo soporte CA «%s»\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Falló la importación del certificado X509: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Falló la configuración del certificado PKCS#11: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Configuración de lista de revocación del certificado fallida: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "La clave privada parece no ser compatible con RSA-PSS. Desactivando TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Falló al configurar el certificado: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "El servidor no presentó ningún certificado\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Error al comparar el certificado del servidor en la renegociación: %s\n" "\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" "El servidor ha presentado un certificado diferente en la renegociación\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" "El servidor ha presentado un certificado idéntico en la renegociación\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Error al inicializar la estructura de certificado X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Error al importar el certificado del servidor\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "No se pudo calcular hash del certificado del servidor\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Error al comprobar el estado del certificado del servidor\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certificado revocado" #: gnutls.c:2098 msgid "signer not found" msgstr "firmante no encontrado" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "el firmante no es un certificado CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certificado no activado todavía" #: gnutls.c:2106 msgid "certificate expired" msgstr "certificado caducado" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "verificación de la firma fallida" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "el certificado no coincide con el nombre del servidor" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "La verificación del certificado del servidor falló: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falló al asignar memoria para certificados cafile\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falló al leer certificados desde cafile: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falló al abrir el archivo CA «%s»: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Carga de certificado fallida. Abortando.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "Falló al establecer la cadena de prioridad GnuTLS\n" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Falló al establecer la cadena de prioridad de GnuTLS («%s»): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociación SSL con «%s»\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Conexión SSL cancelada\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Fallo de la conexión SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Retorno no fatal de GnuTLS durante la negociación: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Conectado a HTTPS en %s con ciphersuite %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "SSL renegociado en %s con ciphersuite %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN requerido por %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "PIN incorrecto" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "¡Éste es el último intento antes de bloquear!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "¡Sólo quedan unos pocos intentos antes de bloquear!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Introducir PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritmo OATH HMAC no soportado\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Falló al calcular OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "No se pudo establecer un conjunto de cifrado: %s\n" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Sesión EAP-TTLS establecida\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Función de firma TPM llamada para %d bytes.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falló al crear el objeto hash TPM: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falló al establecer el valor en el objeto hash TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Falló la firma hash TPM: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error al decodificar la clave TSS blob: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Error en clave TSS blob\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falló al crear el contexto TPM: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falló al conectar al contexto TPM: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falló al cargar la clave TPM SRK: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falló al cargar el objeto de política TPM SRK: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falló al establecer el PIN TPM %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falló al cargar la clave blob TPM: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Introduzca PIN TPM SRK:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falló al crear el objeto de política de clave: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falló al asignar la política a la clave: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Introduzca el PIN de la clave TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "Introduzca el PIN de TPM de la clave secundaria:" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falló al establecer el PIN de la clave: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Resumen EC TPM2 desconocido de tamaño %d\n" # Elliptic Curve Digital Signature Algorithm #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "No se admite el algoritmo de firma EC %s\n" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Error al decodificar la clave TSS2 blob: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Falló al crear el tipo ASN.1 para TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Falló al decodificar la clave TPM2 ASN.1: %s\n" # A public key OID is an object identifier (OID) identifying the algorithm of the public-private key pair associated with the certificate. #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Falló al analizar el tipo de OID de la clave TPM2: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "La clave TPM2 tiene un OID de tipo desconocido %s no %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Falló al analizar el padre de la clave TPM2: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Falló al analizar el elemento clave pública de TPM2\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Falló al analizar el elemento clave privada de TPM2\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Clave TPM2 analizada con padre %x, autenticación vacía %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Resumen TPM2 demasiado grande: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" "Falló la codificación de PSS; tamaño de hash %d demasiado grande para la " "clave RSA %d\n" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "Firma RSA TPMv2 solicitada para algoritmo desconocido %s\n" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "Contraseña TPM2 demasiado grande; truncando\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "propietario" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "nulo" # apoyo, promoción de un producto #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "respaldo" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "plataforma" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Creando clave primaria bajo jerarquía %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Introduzca la contraseña TPM2 bajo jerarquía %s:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth falló: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "la autenticación del propietario de TPM2 Esys_CreatePrimary falló\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary falló: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Estableciendo conexión con TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize falló: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 ya se había iniciado dando un falso positivo de fallo en el registro de " "tpm2tts.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup falló: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic falló para el gestor 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Introduzca la contraseña de la clave TPM del padre:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "Introduzca la contraseña secundaria de la clave principal de TPM2:" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Cargando el blob de la clave TPM2, padre %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "Falló la autenticación de TPM2 Esys_Load\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load falló: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext para el primario generado falló: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Introduzca la contraseña de la clave TPM2:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "Introduzca la contraseña secundaria de la clave de TPM2:" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "Se llamó a la función de firma RSA TPM2 para %d bytes, algoritmo %s\n" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "La autenticación de TPM2 Esys_RSA_Decrypt falló\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 falló al generar la firma RSA: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Función de firma TPM2 EC llamada para %d bytes.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "Tamaño de resumen de EC TPM2 %d desconocido para el algoritmo 0x%x\n" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Falló la autenticación de TPM2 Esys_Sign\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Gestor padre de TPM2 no válido 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "Usando SWTPM debido a la variable de entorno TPM_INTERFACE_TYPE\n" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "TSS2_TctiLdr_Initialize falló para swtpm: 0x%x\n" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Falló al importar los datos de la clave privada TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Falló al importar los datos de la clave pública TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Tipo de clave TPM2 no soportado %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "La operación de TPM2 %s falló (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Desafío: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "La respuesta fue: %s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" "ADVERTENCIA: Config XML contiene la etiqueta con valor de " "«%s».\n" " La conectividad VPN podría desactivarse o limitarse.\n" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Ruta de túnel SSL no estándar: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "El tiempo de espera del túnel (intervalo rekey) es de %d minutos.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "La dirección de la puerta de enlace en el XML de configuración (%s) difiere " "de la dirección externa de la puerta de enlace (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" "La dirección de la puerta de enlace IPv6 en el XML de configuración (%s) " "difiere de la dirección de la puerta de enlace externa (%s).\n" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "La configuración de GlobalProtect envió ipsec-mode=%s (se esperaba esp-" "tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorando las claves ESP ya que el soporte ESP no está disponible en esta " "versión\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" "Potencial etiqueta de configuración de GlobalProtect relacionada con IPv6 <" "%s>: %s\n" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Etiqueta de configuración de GlobalProtect desconocida <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" "El soporte de GlobalProtect para IPv6 es experimental. Informe los " "resultados a .\n" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" "No se recibieron claves ESP y la puerta de enlace coincidente en la " "configuración de GlobalProtect. El túnel será solo TLS.\n" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP desactivado" #: gpst.c:661 msgid "No ESP keys received" msgstr "No se recibieron claves ESP" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "El soporte de ESP no está disponible en esta versión" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "No se recibió MTU. Se calculó %d para %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Conectando al extremo del túnel HTTPS ...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Error al obtener respuesta HTTPS del GET-tunnel.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" "La puerta de enlace se desconectó inmediatamente después de la solicitud GET-" "tunnel.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "Se obtuvo una respuesta HTTP inesperada: %.*s\n" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "Aviso: el servidor nos solicitó enviar un informe HIP con md5sum %s.\n" " La conectividad VPN se podría desactivar o limitar sin el envío de un " "informe HIP.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Sin embargo, aún no se ha implementado la ejecución del script de envío de " "informes HIP en esta plataforma." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Debe proporcionar un argumento --csd-wrapper con el script de envío del " "informe HIP." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Error: La ejecución del script de «Informe HIP» no se ha implementado en " "esta plataforma.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "Intentando ejecutar el script troyano HIP «%s».\n" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "Falló al crear la tubería para el script HIP\n" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "Falló al bifurcar para el script HIP\n" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "El script HIP «%s» salió anormalmente\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "El script HIP «%s» devolvió un estado distinto de cero: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" "El script HIP «%s» se completó correctamente (el informe tiene %d bytes).\n" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Falló el envío del informe HIP.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "El informe HIP se envió correctamente.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Falló al ejecutar el script HIP %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "La puerta de enlace dice que se necesita el envío del informe HIP.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" "La puerta de enlace dice que no se necesita el envío del informe HIP.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Túnel ESP conectado; saliendo del bucle principal HTTPS.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Falló al conectar al túnel ESP; se usa HTTPS en su lugar.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Error al recibir el paquete: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Longitud de paquete inesperada. SSL_read devolvió %d (incluye 16 bytes de " "cabecera) pero la cabecera payload_len es %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Se obtuvo la respuesta GPST DPD/keepalive\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Se esperaba 0000000000000000 como últimos 8 bytes del encabezado de paquete " "DPD/keepalive, pero se obtuvo:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Se ha recibido un paquete de datos IPv%d de %d bytes\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Se esperaba 0100000000000000 como últimos 8 bytes del encabezado del paquete " "de datos, pero se obtuvo:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Paquete desconocido. El volcado de la cabecera es el siguiente:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "Vencimiento de la verificación de GlobalProtect HIP\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "Falló la comprobación o el informe HIP\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "La rekey de GlobalProtect está pendiente\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "La detección de muerte del par GPST detectó la muerte del par\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Enviar solicitud GPST DPD/keepalive\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Enviando paquete de datos IPv%d de %d bytes\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "Paquete de rastreo ICMPv%d (sec %d) para GlobalProtect ESP:\n" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Falló al enviar la prueba ESP\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Error al importar el nombre GSSAPI para la autenticación:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Error al generar la respuesta GSSAPI\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Intentando la autenticación GSSAPI en el proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Intentando la autenticación GSSAPI en el servidor «%s»\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Autenticación GSSAPI completada\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Testigo GSSAPI demasiado largo (%zd bytes)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Enviando testigo GSSAPI de %zu bytes\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falló al enviar el testigo de autenticación GSSAPI al proxy: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falló al recibir el testigo de autenticación GSSAPI del proxy: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "El servidor SOCKS ha informado de un fallo de contexto de GSSAPI\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Respuesta de estado GSSAPI desconocida (0x%02x) del servidor SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obtenido el testigo GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Enviando negociación de protección GSSAPI de %zu bytes\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falló al enviar la respuesta de protección GSSAPI al proxy %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falló al recibir la respuesta de protección GSSAPI al proxy %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "Obtenida la espuesta de protección GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Respuesta de protección GSSAPI no válida del proxy (%zu bytes)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "El proxy SOCKS solicita integridad del mensaje, que no está soportada\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "El proxy SOCKS solicita confidencialidad del mensaje, que no está soportada\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "El servidor SOCKS solicita un tipo de protección 0x%02x desconocido\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Intentando la autenticación HTTP básica en el proxy\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Intentando la autenticación HTTP básica en el servidor «%s»\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Intentando la autenticación HTTP portadora en el servidor «%s»\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "El proxy ha solicitado autenticación básica, que está desactivada de manera " "predeterminada\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "El servidor «%s» ha solicitado autenticación básica, que está desactivada de " "manera predeterminada\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "No hay más métodos de autenticación que usar\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Sin memoria para asignar cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Error al leer la respuesta HTTP: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falló al analizar la respuesta HTTP «%s»\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Se obtuvo la respuesta HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorando línea no reconocida de la respuesta HTTP «%s»\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie ofrecida no válida: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Falló la autenticación del certificado SSL\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "El cuerpo de la respuesta tiene un tamaño negativo (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificación de transferencia desconocida: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Cuerpo HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Error leyendo el cuerpo de la respuesta HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Error recuperando el fragmento de la cabecera\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "La longitud del fragmento es negativa (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "Longitud del fragmento HTTP demasiado largo (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Error recuperando el cuerpo de la respuesta HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" "Error en la decodificación fragmentada. Se esperaba «», se obtuvo: «%s»\n" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "No se pudo recibir el cuerpo HTTP 1.0 sin cerrar la conexión\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falló al analizar el URL redirigido «%s»: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "No se pudo seguir el redireccionamiento al URL no https «%s»\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Falló la asignación de una nueva ruta para el redireccionamiento relativo: " "%s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "Socket HTTPS cerrado por el par; volviendo a abrir\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Falló al reintentar la petición %s para la nueva conexión\n" #: http.c:1002 msgid "request granted" msgstr "petición concedida" #: http.c:1003 msgid "general failure" msgstr "fallo general" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "conexión no permitida por el conjunto de reglas" #: http.c:1005 msgid "network unreachable" msgstr "red inaccesible" #: http.c:1006 msgid "host unreachable" msgstr "servidor inaccesible" #: http.c:1007 msgid "connection refused by destination host" msgstr "conexión rechazada por el servidor de destino" #: http.c:1008 msgid "TTL expired" msgstr "TTL caducado" #: http.c:1009 msgid "command not supported / protocol error" msgstr "comando no soportado / error de protocolo" #: http.c:1010 msgid "address type not supported" msgstr "tipo de dirección no soportada" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "El servidor SOCKS requiere un nombre de usuario y una contraseña, pero no " "hay ninguno\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "El nombre de usuario y la contraseña para la autenticación SOCKS deben ser < " "255 bytes\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error al escribir petición auth al proxy SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error al leer respuesta auth desde el proxy SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Respuesta auth inesperada desde el proxy SOCKS: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticado en el servidor SOCKS usando una contraseña\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Falló la autenticación con contraseña en el servidor SOCKS\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "El servidor SOCKS ha solicitado autenticación GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "El servidor SOCKS solicita autenticación por contraseña\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "El servidor SOCKS requiere autenticación\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" "El servidor SOCKS ha solicitado una autenticación de tipo %02x desconocida\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Solicitando conexión al proxy SOCKS a %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error al escribir la petición de conectar al proxy SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error al leer la respuesta de conexión desde el proxy SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Respuesta de conexión inesperada desde el proxy SOCKS: %02x %02x…\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Error del proxy SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Error del proxy SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de dirección inesperado %02x en la respuesta de conexión SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Solicitando conexión HTTP proxy a %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Falló al enviar petición de proxy: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Falló la petición CONNECT del proxy: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy desconocido «%s»\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Falló al analizar el proxy «%s»\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Sólo se soportan proxies HTTP o socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect o openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Compatible con VPN Cisco AnyConnect SSL y también con ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Compatible con Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Compatible con VPN Palo Alto Networks (PAN) GlobalProtect SSL" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Compatible con la VPN Pulse Connect Secure SSL" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "VPN SSL F5 BIG-IP" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Compatible con VPN SSL F5 BIG-IP" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "VPN SSL Fortinet" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Compatible con VPN SSL FortiGate" #: library.c:244 msgid "PPP over TLS" msgstr "PPP sobre TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "RFC1661/RFC1662 PPP sin autenticar sobre TLS, para pruebas" #: library.c:254 msgid "Array SSL VPN" msgstr "Matriz VPN SSL" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "Compatible con redes de matriz VPN SSL" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Protocolo VPN «%s» desconocido\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado con la biblioteca SSL sin soporte para Cisco DTLS\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "No se recibió dirección IP. Abortando\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "La reconexión dio una dirección IP heredada distinta (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "La reconexión dio una máscara de red heredada distinta (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "La reconexión dio una dirección IPv6 distinta (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "La reconexión dio una máscara de red IPv6 distinta (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Configuración de IPv6 recibida pero la MTU %d es demasiado pequeña.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falló al analizar el URL del servidor «%s»\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Sólo se permite https:// para el URL del servidor\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "El hash del certificado es desconocido: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "El tamaño de la huella proporcionada es menor que el mínimo requerido (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "No hay gestor de formulario; no se puede autenticar.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Falló CommandLineToArgvW(): %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Error fatal al gestionar la línea de comandos\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() ha fallado: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "Falló fgetws(): %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Error al convertir la entrada de la consola: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falló la ubicación para la cadena desde stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para obtener ayuda de OpenConnect, consulte la página web\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Usando %s. Características presentes:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Motor OpenSSL no disponible" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "Aviso: este binario carece de soporte para DTLS y/o ESP. El rendimiento se " "verá afectado.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Protocolos admitidos:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (predeterminado)" #: main.c:743 msgid "Set VPN protocol" msgstr "Establecer el protocolo VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "No se puede procesar esta ruta ejecutable «%s»" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Falló la ubicación de la ruta de vpnc-script\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Cambiar nombre de servidor «%s» a «%s»\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opciones] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Cliente abierto para múltiples protocolos VPN, versión %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Leer opciones del archivo de configuración" #: main.c:914 msgid "Report version number" msgstr "Informe del número de versión" #: main.c:915 msgid "Display help text" msgstr "Mostrar el texto de ayuda" #: main.c:919 msgid "Authentication" msgstr "Autenticación" #: main.c:920 msgid "Set login username" msgstr "Establecer nombre de usuario de inicio de sesión" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Desactivar autenticación por contraseña/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "No se espera entrada del usuario; sale si lo requiere" #: main.c:923 msgid "Read password from standard input" msgstr "Leer contraseña de la entrada estándar" #: main.c:924 msgid "Choose authentication login selection" msgstr "Elegir autenticación de selección de inicio de sesión" #: main.c:925 msgid "Provide authentication form responses" msgstr "Proporcionar autenticación a partir de las respuestas" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Usar certificado CERT del cliente SSL" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Usar archivo KEY de clave SSL privada" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar cuando el tiempo de vida del certificado sea menor que DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "Establecer grupo de usuario de login" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Establecer clave de frase de paso o pin TPM SRK" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "La clave de frase de paso es un fsid de un sistema de archivos" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Tipo de testigo software: rsa, totp, hotp u oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Testigo software secreto o testigo oidc" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(Nota: libstoken (RSA SecurID) está desactivado en esta versión)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey está desactivado en esta versión)" #: main.c:941 msgid "Server validation" msgstr "Validación del servidor" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "Aceptar únicamente certificados del servidor con esta huella digital" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" "Desactivar de manera predeterminada las autoridades de certificación del " "sistema" #: main.c:944 msgid "Cert file for server verification" msgstr "Archivo del certificado para la verificación del servidor" #: main.c:946 msgid "Internet connectivity" msgstr "Conectividad de Internet" #: main.c:947 msgid "Set VPN server" msgstr "Establecer servidor VPN" #: main.c:948 msgid "Set proxy server" msgstr "Establecer servidor proxy" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Establecer los métodos de autenticación del proxy" #: main.c:950 msgid "Disable proxy" msgstr "Desactivar proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar automáticamente el proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy está desactivado en esta versión)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Tiempo en segundos para reintento de conexión" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Usar IP cuando al conectar a HOST" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Copiar campo TOS / TCLASS en paquetes DTLS y ESP" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Establecer puerto local para datagramas DTLS y ESP" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Autenticación (dos fases)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Usar autenticación cookie COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Leer cookie de la entrada estándar" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Sólo autenticar y mostrar información del inicio de sesión" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Sólo obtener y mostrar la cookie; no conectar" #: main.c:965 msgid "Print cookie before connecting" msgstr "Mostrar la cookie antes de conectar" #: main.c:968 msgid "Process control" msgstr "Control de proceso" #: main.c:969 msgid "Continue in background after startup" msgstr "Continuar en segundo plano tras el arranque" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Escribir el PID del demonio en este archivo" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Revocar privilegios después de conectar" #: main.c:974 msgid "Logging (two-phase)" msgstr "Inicio de sesión (dos fases)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Usar registros de sucesos del sistema para mensajes de progreso" #: main.c:978 msgid "More output" msgstr "Más salida" #: main.c:979 msgid "Less output" msgstr "Menos salida" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Volcado del tráfico de autenticación HTTP (implica --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Añadir marca de tiempo a los mensajes de progreso" #: main.c:983 msgid "VPN configuration script" msgstr "Script de configuración de VPN" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME para la interfaz del túnel" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Terminal de línea de comandos para usar un script de configuración " "compatible con vpnc" #: main.c:986 msgid "default" msgstr "predeterminado" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Pasar el tráfico al «script», no al dispositivo TUN" #: main.c:991 msgid "Tunnel control" msgstr "Control de túnel" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "No pedir conectividad IPv6" #: main.c:993 msgid "XML config file" msgstr "Archivo XML de configuración" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Solicitar MTU al servidor (sólo servidores heredados)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indicar ruta MTU al/desde el servidor" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Activar compresión con estado (predeterminado es solo sin estado)" #: main.c:997 msgid "Disable all compression" msgstr "Desactivar toda la compresión" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Solicitar la perfecta confidencialidad del envío" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Desactivar DTLS y ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Claves OpenSSL que soportar por DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Establecer límite de cola de paquete a LEN pqts" #: main.c:1004 msgid "Local system information" msgstr "Información del sistema local" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Cabecera HTTP User_Agent: campo" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Nombre del servidor local para anunciar al servidor" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "cadena de versión informada durante la autenticación" #: main.c:1010 msgid "default:" msgstr "predeterminado:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Ejecución de binario troyano (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Revocar privilegios durante la ejecución del troyano" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Ejecutar SCRIPT en lugar del binario troyano" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Errores del servidor" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Desactivar reutilización de conexión HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "No intentar autenticación XML POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "Permitir el uso de cifrados 3DES y RC4 antiguos e inseguros" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Falló al asignar la cadena\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falló al obtener la línea del archivo de configuración: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opción no reconocida en la línea %d: «%s»\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "La opción «%s» no acepta un argumento en la línea %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "La opción «%s» requiere un argumento en la línea %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Usuario «%s» no válido: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "ID «%d» de usuario no válido: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Autocompletar no controlado para la opción %d «--%s». Informe de esto.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "conectado" #: main.c:1507 msgid "disconnected" msgstr "desconectado" #: main.c:1511 msgid "unsuccessful" msgstr "sin éxito" #: main.c:1516 msgid "in progress" msgstr "en progreso" #: main.c:1519 msgid "disabled" msgstr "desactivado" #: main.c:1525 msgid "established" msgstr "establecida" #: main.c:1528 msgid "unknown" msgstr "desconocido" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "Configurado como %s%s%s, con SSL%s%s %s y %s%s%s %s\n" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" "RX: % paquetes (% B); TX: % paquetes (% B)\n" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "Conjunto de cifrado SSL: %s\n" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "Conjunto de cifrado %s: %s\n" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "Próxima regeneración de clave SSL en %ld segundos\n" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "Próxima regeneración de clave %s en %ld segundos\n" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "Próxima invocación de troyano en %ld segundos\n" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falló al abrir «%s» para escritura: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Se continúa en segundo plano; PID %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "Aviso: no se puede establecer el lugar: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "Aviso: esta versión de OpenConnect se ha construido sin soporte\n" " para iconv, pero parece que está usando un conjunto de\n" " caracteres «%s» heredado. Puede darse un comportamiento " "extraño\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "Aviso: esta versión de openconnect es %s pero\n" " la biblioteca libopenconnect es %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" "Aviso: esta versión está pensada solamente para depuración y\n" " podría permitir establecer conexiones inseguras.\n" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falló al ubicar la estructura vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "No se puede usar la opción «config» dentro del archivo de configuración\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "No se puede abrir el archivo de configuración «%s»: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Modo de compresión «%s» no válido\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" "No se pueden activar cifrados 3DES o RC4 inseguros porque la biblioteca\n" "%s ya no los admite.\n" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Falló al reservar memoria\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Faltan los dos puntos en la opción de resolución\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeña\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Desactivando todas las reutilizaciones de conexiones HTTP debido a la opción " "--no-http-keepalive.\n" "Si esto ayuda, informe en .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "La opción --no-cert-check era insegura y se ha quitado.\n" "Repare su certificado del servidor o use --servercert para confiarlo.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "No se permite la longitud de cola cero; usando 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versión %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de testigo software no válido: «%s»\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "Aviso: especificó %s. Esto no debería ser\n" " necesario; informe de casos en donde es\n" " necesario sustituir una cadena de prioridad para\n" " conectarse a un servidor\n" " a .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos en la línea de comandos\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "No se ha especificado ningún servidor\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Esta versión de openconnect se compiló sin soporte para libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "Falló al completar la autenticación\n" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Falló al crear la conexión SSL\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Falló al configurar UDP; se usa SSL en su lugar\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "No se proporcionó el argumento --script; No están configurados los DNS ni " "las rutas\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Consulte https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "El usuario ha solicitado la reconexión\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "El servidor ha rechazado la cookie; saliendo.\n" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sesión terminada por el servidor; saliendo.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "Cancelado por el usuario (%s); saliendo.\n" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "El usuario se ha desacoplado de la sesión (%s); saliendo.\n" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "Error de E/S desconocido; saliendo.\n" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Error desconocido; saliendo.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falló al abrir %s para escritura: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falló al guardar configuración en %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" "Aceptando certificado de forma insegura del servidor VPN «%s» porque lo " "ejecutó con --servercert=ACCEPT.\n" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "No se pudo comprobar el certificado del sevidor con %s\n" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" "Ninguna de las %d huellas digitales especificadas mediante --servercert " "coincide con el certificado del servidor: %s\n" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Falló la verificación del certificado del servidor VPN «%s».\n" "Razón: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Para confiar en este servidor en el futuro, quizás añada esto a su línea de " "comandos:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Introduzca «%s» para aceptar, «%s» para cancelar; cualquier otra cosa para " "ver:" #: main.c:2464 main.c:2483 msgid "no" msgstr "no" #: main.c:2464 main.c:2470 msgid "yes" msgstr "sí" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Servidor de clave hash: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "La elección de autenticación «%s» coincide con varias opciones\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Elección de autenticación «%s» no disponible\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Entrada del usuario requerida en modo no-interactivo\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falló al abrir el archivo del testigo para escritura: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Falló al escribir el testigo: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "La cadena de testigo débil no es válida\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "No se puede abrir el archivo stoken\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "No se puede abrir el archivo ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect no se compiló con soporte para libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Fallo general en libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect no se compiló con soporte para liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Fallo general en liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Testigo Yubkey no encontrado\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect no se compiló con soporte para Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Fallo general de Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "No se puede abrir el archivo oidc\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Fallo general en testigo oidc\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Falló al configurar el script TUN\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Falló al configurar el dispositivo TUN\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "Retrasando túnel con motivo: %s\n" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "Retrasando cancelar (devolución de llamada inmediata).\n" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "Retrasando cancelar.\n" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "Retrasando pausa (devolución de llamada inmediata).\n" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "Retrasando pausa.\n" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "El origen ha pausado la conexión\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Sin trabajo que hacer; durmiendo durante %d ms…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Falló WaitForMultipleObjects: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Falló select() en el bucle principal" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "Usando base_mtu de %d\n" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "Después de eliminar %s/IPv%d encabezados, MTU de %d\n" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" "Después de eliminar la sobrecarga específica del protocolo (%d sin relleno, " "%d con relleno, %d tamaño de bloque), MTU de %d\n" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Falló InitializeSecurityContext(): %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Falló AcquireCredentialsHandle(): %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Error al comunicar con el ayudante ntlm_auth\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Intentando la autenticación HTTP NTLM en el proxy (inicio de sesión único)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Intentando la autenticación HTTP NTLM en el servidor «%s» (inicio de sesión " "único)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Intentando la autenticación HTTP NTLM %d en el proxy\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Intentando la autenticación HTTP NTLM v%d en el servidor «%s»\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "Terminando porque nullppp ha alcanzado el estado de red.\n" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Cadena de testigo base32 no válida\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Falló al asignar memoria para decodificar el secreto OATH\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK al generar el código de testigo INITIAL\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK al generar el código de testigo NEXT\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "El servidor está rechazando el testigo; cambiando a acceso manual\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Generando código de testigo OATH TOTP\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Generando código de testigo OATH HOTP\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Longitud %d inesperada para TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Recibida MTU %d desde el servidor\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Recibido servidor DNS %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Dominio de búsqueda DNS recibido %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Recibida dirección IP interna %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Máscara de red recibida %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Dirección de puerta de enlace interna recibida %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Recibida ruta incluida dividida %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Recibida ruta excluida dividida %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Recibido servidor WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Cifrado ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Compresión ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Puerto ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Tiempo de vida de la clave ESP: %u bytes\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Tiempo de vida de la clave ESP: %u segundos\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Alternativa ESP a SSL: %u segundos\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Protección de repetición ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (salientes): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de ESP secretos\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grupo TLV %d desconocido atrib %d longitud %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Falló al analizar la cabecera KMP\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Falló al analizar el mensaje KMP\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Mensaje KMP %d conseguido de tamaño %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "TLV no ESP recibidos (grupo %d) en la negociación ESP KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Error al crear la solicitud de negociación oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Escritura corta en la negociación oNCP\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Leer %d bytes del registro SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" "Respuesta inesperada de tamaño %d después del paquete de nombre de host\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" "La respuesta del servidor al paquete de nombre de host es el error 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Esto parece indicar que el servidor ha desactivado el soporte para\n" "el Protocolo oNCP antiguo de Juniper, y solo permite conexiones usando\n" "el protocolo Junos Pulse más reciente. Esta versión de OpenConnect\n" "tiene soporte EXPERIMENTAL para Pulse usando --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Paquete no válido a la espera de KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Se esperaba mensaje KMP 301 del servidor pero se obtuvo %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Mensaje 301 de KMP del servidor demasiado largo (%d bytes)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Se obtuvo un mensaje KMP 301 de longitud %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Falló al leer la longitud de la continuación del registro\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "El registro de %d bytes adicionales es demasiado grande; harían %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Falló al leer la longitud %d de la continuación del registro\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Leídos %d bytes adicionales del mensaje KMP 301\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Error al negociar las claves ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Solicitud de negociación oNCP saliente:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "nueva entrada" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "nueva salida" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Sólo lectura de 1 byte del campo de longitud oNCP\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "El servidor terminó la conexión (la sesión ha finalizado)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "El servidor terminó la conexión (tiempo de inactividad agotado)\n" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "El servidor terminó la conexión (razón: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "El servidor envió longitud cero al registro oNCP\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Mensaje KMP entrante %d de tamaño %d (tiene %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Continuar para procesar el mensaje KMP %d ahora el tamaño es %d (tiene %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Paquete de datos no reconocido\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Falló al establecer ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Mensaje KMP desconocido %d de tamaño %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d bytes más sin recibir\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Paquete saliente:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Enviado paquete de control de activación\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "Error: llamada a %s() con UTF-8 no válido para el argumento «%s»\n" # Overhead = exceso de bits, bits por encima de lo que hubiera sido sin DTLS # # DTLS = un protocolo que proporciona privacidad en las comunicaciones para protocolos de datagramas #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "No se puede calcular el exceso para %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Falló al generar la clave aleatoria\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Falló al crear SSL_SESSION ASN.1 para OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL falló al analizar SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Falló al inicializar la sesión DTLSv1\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Tamaño de ID de aplicación demasiado grande\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Retrollamada PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Falló al inicializar DTLSv1 CTX\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Falló al establecer la versión de CTX de DTLS\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Falló al generar la clave DTLS\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Falló al establecer la lista de cifrado DTLS\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Cifrado DTLS «%s» no encontrado\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "Falló SSL_set_session() con el protocolo DTLS versión 0x%x\n" "¿Está usando una versión de OpenSSL más antigua que la 0.9.8m?\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use la opción de la línea de comandos --no-dtls para evitar este mensaje\n" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() falló\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "Establecida la conexiónn DTLS (usando OpenSSL). Ciphersuite %s-%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Esto es probablemente debido a que su OpenSSL está roto\n" "Consulte http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Falló la negociación DTLS: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Falló al inicializar el cifrado ESP\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Falló al inicializar ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Falló al establecer el contexto para el descifrado de el paquete ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Falló al descifrar el paquete ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Falló al cifrar el paquete ESP:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Falló al establecer el contexto PKCS#11 de libp11:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Falló al cargar el módulo del proveedor PKCS#11 (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN bloqueado\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN caducado\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Otro usuario ya ha iniciado sesión\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Error desconocido al iniciar sesión en el testigo PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Sesión iniciada en el slot PKCS#11 «%s»\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Falló al enumerar los certificados en la ranura PKCS#11 «%s»\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Encontrados %d certificados en la ranura «%s»\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Falló al analizar el URI PKCS#11 «%s»\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Falló al enumerar las ranuras PKCS#11\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Sesión iniciada en la ranura PKCS#11 «%s»\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "No se pudo encontrar el certificado PKCS#11 «%s»\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 no pudo obtener el contenido del certificado X.509\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "Usando el certificado PKCS#11 secundario %s\n" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Falló al enumerar las claves en la ranura PKCS#11 «%s»\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Encontradas %d claves en la ranura «%s»\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "El certificado no tiene clave pública\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "El certificado secundario no tiene clave pública\n" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "El certificado no coincide con la clave privada\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "El certificado secundario no coincide con la clave privada\n" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Comprobando que la clave EC coincide con el certificado\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Falló al asignar el búfer de firma\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Falló al firmar los datos de prueba para validar la clave EC\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "No se pudo encontrar la clave PKCS#11 «%s»\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "Usando la clave secundaria PKCS#11 %s\n" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "No se pudo crear una instancia de la clave privada de PKCS#11\n" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" "No se pudo crear una instancia de la clave privada secundaria de PKCS#11\n" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Esta versión de OpenConnect se compiló sin soporte de PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "Falló al escribir en el socket TLS/DTLS\n" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "Falló al leer del socket TLS/DTLS\n" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Error de lectura en la sesión %s: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Error de escritura en la sesión %s: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipo %d de solicitud SSL UI no gestionado\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Contraseña PEM demasiado larga (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "Falta el certificado de cliente o la clave\n" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Falló al cargar la clave privada\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falló al instalar el certificado en el contexto de OpenSSL\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra desde %s: «%s»\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Falló el análisis PKCS#12 (vea los errores anteriores)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "El análisis de PKCS#12 secundario falló (vea los errores anteriores)\n" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 no contiene certificado\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "¡El PKCS#12 secundario no contenía ningún certificado!\n" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 no contiene clave privada\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "¡El PKCS#12 secundario no contenía una clave privada!\n" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "No se puede cargar el motor TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Falló al iniciar el motor TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Falló al establecer la contraseña TPM SRK\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Falló al cargar la clave privada TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "No se pudo cargar la clave privada secundaria de TPM\n" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falló al abrir el archivo de certificado %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "Error al abrir el archivo de certificado secundario %s: %s\n" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Falló la carga del certificado\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falló al procesar todos los certificados soportados. Intentándolo de todas " "formas...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" "No se pudieron procesar los certificados de soporte secundarios. Intentando " "de todos modos…\n" #: openssl.c:840 msgid "PEM file" msgstr "Archivo PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falló al crear BIO para el elemento «%s» del almacén de claves\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Carga de la clave privada fallida (¿contraseña incorrecta?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" "Error al cargar la clave privada secundaria (¿frase de contraseña " "incorrecta?)\n" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Falló al cargar la clave privada (vea los errores de arriba)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" "Error al cargar la clave privada secundaria (consulte los errores " "anteriores)\n" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falló al cargar el certificado X509 del almacén de claves\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falló al abrir el archivo de clave privada %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "Error al cargar la clave privada secundaria\n" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "No se pudo descifrar el archivo de certificado secundario PKCS#8\n" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "Introduzca la contraseña secundaria PKCS#8:" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Falló al convertir PKCS#8 a OpenSSL EVP_PKEY\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Error al convertir PKCS#8 secundario a OpenSSL EVP_PKEY\n" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Falló al identificar el tipo de clave privada en «%s»\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Coincidencia en el altname DNS «%s»\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Sin coincidencias para el altname «%s»\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "El certificado tiene el altname GEN_IPADD con longitud errónea %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Coincidencia %s en la dirección «%s»\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Sin coincidencias para %s dirección «%s»\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "El URI «%s» no tiene una ruta vacía; se ignora\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Coincidió el URI «%s»\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Sin resultado para el URI «%s»\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Ningún altname en el certificado del par coincidió con «%s»\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "¡Sin nombre del sujeto en el certificado del par!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Falló al analizar el nombre del sujeto en el certificado del par\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "El sujeto del certificado del par no coincide («%s» != «%s»)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Coincidió el nombre del sujeto del certificado del par «%s»\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra desde cafile: «%s»\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Error en el campo notAfter del certificado del cliente\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "Error en el campo notAfter del certificado secundario de cliente\n" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "El certificado SSL y la clave no coinciden\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falló al leer certificados desde el archivo CA «%s»\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falló al abrir el archivo CA «%s»\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Falló al crear el CTX TLSv1\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "Falló al construir la lista de cifrado de OpenSSL\n" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Falló al establecer la lista de cifrado de OpenSSL («%s»)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Fallo en conexión SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Falló al calcular OATH HMAC\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negociación EAP-TTLS con %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Fallo de conexión EAP-TTLS: %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "Falta la secuencia de la bandera inicial de HDLC (0x7e)\n" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "El búfer HDLC finalizó sin FCS ni secuencia de banderas (0x7e)\n" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "Marco HDLC demasiado corto (%d bytes)\n" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "Paquete HDLC incorrecto FCS %04x\n" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "Paquete sin HDLC (%ld bytes -> %ld), FCS = 0x%04x\n" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "Estado actual de PPP: %s (encap %s):\n" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" " entrada: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=" "%s\n" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" " salida: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" "Se recibió MRU %d del servidor. Nak ofrece un MRU más grande de %d (nuestro " "MTU)\n" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" "Se recibió el MRU %d desde el servidor. Estableciendo nuestro MTU para que " "coincida.\n" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "Se recibió un mapa asíncrono de 0x%08x desde el servidor\n" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "Se recibió un número mágico de 0x%08x desde el servidor\n" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "Se recibió una compresión de campo de protocolo desde el servidor\n" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "Dirección y compresión del campo de control recibida del servidor\n" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "Se recibieron direcciones IP obsoletas del servidor, ignorando\n" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "Se recibió la compresión Van Jacobson TCP/IP del servidor\n" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "Se recibió la dirección IPv4 %s del par desde el servidor\n" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" "Se recibió la dirección %s de enlace local IPv6 del par desde el servidor\n" "\n" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" "Se recibió un TLV %s desconocido (etiqueta %d, len %d+2) desde el servidor:\n" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" "Se recibieron %ld bytes adicionales al final de la solicitud de " "configuración:\n" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "Rechazar la configuración %s/id %d desde el servidor\n" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "Nak la configuración %s/id %d desde el servidor\n" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "Ack la configuración %s/id %d desde el servidor\n" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "Solicitando MTU calculado de %d\n" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "Enviando nuestra solicitud de configuración %s/id %d al servidor\n" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "El servidor rechazó/nak'eó la opción MRU LCP\n" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "El servidor rechazó/nak'eó la opción de mapa asíncrono de LCP\n" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "El servidor rechazó la opción mágica de LCP\n" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "El servidor rechazó/nak'eó la opción PFCOMP LCP\n" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "El servidor rechazó/nak'eó la opción ACCOMP LCP\n" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "El servidor ofreció-nak una dirección IPv4: %s\n" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" "El servidor rechazó la dirección IP heredada %s\n" "\n" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "El servidor rechazó/nak'eó nuestra dirección IPv4 o solicitud: %s\n" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" "El servidor ofreció-nak una solicitud IPCP para el servidor %s[%d]: %s\n" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "El servidor rechazó/nak'eó la solicitud del servidor %s[%d]\n" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "El servidor ofreció-nak la dirección IPv6 de enlace local %s\n" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "El servidor rechazó/nak'eó nuestro identificador de interfaz IPv6\n" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "El servidor rechazó/nak'eó el TLV %s (etiqueta %d, len %d+2)\n" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "Se recibieron %ld bytes adicionales al final de Config-Reject:\n" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "Se recibió %s/id %d %s desde el servidor\n" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "El servidor terminó con motivo: %s\n" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "El servidor rechazó nuestra solicitud para configurar la IPv%d\n" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "Transición de estado de PPP desde %s a %s en el canal %s\n" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "La carga de PPP excede el búfer de recepción\n" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "Se recibió un paquete corto (%d bytes). Esperando a más.\n" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "Encabezado de paquete pre-PPP inesperado para encap %d.\n" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "La carga de PPP len %d excede el búfer de recepción %d\n" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" "El paquete de PPP está incompleto. Se recibieron %d bytes por cable (incluye " "%d encap) pero el encabezado de payload_len es %d. Esperando a más.\n" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Encapsulado de PPP no válido\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" "El paquete contiene %d bytes después de la carga útil. Suponiendo un paquete " "concatenado.\n" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "Paquete IPv%d inesperado en el estado %s de PPP.\n" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "Se ha recibido un paquete de datos IPv%d de %d bytes sobre %s\n" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" "Se esperaban %d bytes de encabezado PPP pero se obtuvieron %ld, desplazando " "la carga.\n" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "Enviando Protocol-Reject para %s. Carga:\n" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "¡Se detectó un par muerto!\n" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "Falló al establecer PPP\n" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "Enviar solicitud de descarte de PPP como keepalive\n" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "Enviar solicitud de eco de PPP como DPD\n" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "Enviando paquete PPP %s %s sobre %s (id %d, %d bytes en total)\n" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "Enviando paquete PPP %s sobre %s (%d bytes en total)\n" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "Se llamó a la conexión PPP con el estado DTLS no válido %d\n" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "Túnel DTLS conectado; saliendo del bucle principal HTTPS.\n" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" "Falló al conectar al túnel DTLS; usando HTTPS en su lugar (estado %d).\n" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "No se pudo establecer el túnel PPP sobre TLS\n" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "Estado de DTLS %d no válido\n" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "Falló al restablecer PPP\n" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "Falló al autenticar la sesión DTLS\n" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Dirección IP heredada interna %s recibida\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Falló al gestionar direcciones IPv6\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Dirección IPv6 interna %s recibida\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Recibida división de IPv6 incluida %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Recibida división de IPv6 excluida %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Longitud %d inesperada para el atributo 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Cifrado ESP: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Solo ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Atributo desconocido 0x%x de longitud %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Leídos %d bytes del registro IF-T/TLS\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Escritura corta en IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Error al crear el paquete IF-T\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Error al crear el paquete EAP\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Desafío de autenticación IF-T/TLS no esperado:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Carga de EAP-TTLS no esperada:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Introduzca el reino de usuario de Pulse:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Reino:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Elija el reino de usuario de Pulse:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Falló al analizar AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" "Se ha alcanzado el límite de sesiones. Elija una sesión que terminar:\n" #: pulse.c:875 msgid "Session:" msgstr "Sesión:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Falló al analizar la lista de sesión\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Introduzca las credenciales secundarias:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Introduzca las credenciales de usuario:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Nombre de usuario secundario:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Nombre de usuario:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Contraseña:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Contraseña secundaria:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "La contraseña ha caducado, cámbiela:" #: pulse.c:1085 msgid "Current password:" msgstr "Contraseña actual:" #: pulse.c:1090 msgid "New password:" msgstr "Contraseña nueva:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Verifique la contraseña nueva:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Contraseñas no proporcionadas.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Las contraseñas no coinciden.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Contraseña actual demasiado larga.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Contraseña nueva demasiado larga.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Petición de código del testigo:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Introduzca la respuesta:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Introduzca su contraseña:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Introduzca su información de testigo secundaria:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Error al crear la solicitud de conexión de Pulse\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Respuesta no esperada a la negociación de la versión de IF-T/TLS:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Versión de IF-T/TLS del servidor: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Falló al establecer la sesión EAP-TTLS\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "Aviso: el servidor ha proporcionado un certificado MD5 que no coincide con " "el suyo actual.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Fallo de autenticación: cuenta bloqueada\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "Fallo de autenticación: se necesita el certificado de cliente\n" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Fallo de autenticación: código 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Valor de solicitud D73 desconocido 0x%x. Se solicitará nombre de usuario y " "contraseña.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Informe de este valor y del comportamiento del cliente oficial.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Fallo de autenticación: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "El servidor Pulse solicitó el «Comprobador de anfitrión»; aún no es " "compatible\n" "Pruebe el modo Juniper (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Paquete de autenticación Pulse no gestionado o fallo de autenticación\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Cookie de autenticación de Pulse no aceptada\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Entrada del reino Pulse\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Elección del reino Pulse\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Solicitud de autenticación de contraseña, código 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" "Solicitud de contraseña Pulse con código 0x%02x desconocido. Informe de " "esto.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Solicitud de código de testigo para contraseña general Pulse\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Límite de la sesión pulse, %d sesiones\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Petición de autenticación Pulse no gestionada\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Respuesta no esperada en lugar de autenticación IF-T/TLS correcta:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" "Fallo de EAP-TTLS: vaciado de la salida con bytes de entrada pendientes\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Error al crear el búfer EAP-TTLS\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Falló al leer la confirmación EAP-TTLS: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Leer %d bytes del registro IF-T/TLS EAP-TTLS\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Paquete de confirmación EAP-TTLS incorrecto\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Paquete EAP-TTLS incorrecto (longitud %d, pendiente %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Paquete de configuración Pulse no esperado:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "recibida ruta de tipo 0x%08x desconocido\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Paquete de configuración de ESP no válido:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Configuración de ESP no válida\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Paquete IF-T/TLS incorrecto al solicitar la configuración:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Paquete IF-T/TLS no esperado al solicitar la configuración.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "Se encontró una configuración insuficiente\n" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "Falló la renegociación de clave ESP\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "Error fatal de pulso (razón: %ld): %s\n" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Paquete Pulse desconocido\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Enviando paquete de datos IF-T/TLS de %d bytes\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descartar mala división que incluye: «%s»\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descartar mala división que excluye: «%s»\n" # A split tunnel configured to only tunnel traffic destined to a specific set of destinations is called a split-include tunnel. When configured to accept all traffic except traffic destined to a specific set of destinations, it is called a split-exclude tunnel. #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "Aviso: la división que incluye «%s» tiene bits de anfitrión establecidos, " "reemplazándolos por «%s/%d».\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "Aviso: la división que excluye «%s» tiene bits de anfitrión establecidos, " "reemplazándolos por «%s/%d».\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Ignorando red heredada porque la dirección «%s» no es válida.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "Ignorando red heredada porque la máscara de red «%s» no es válida.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falló al generar el script «%s» para %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "El script «%s» terminó anormalmente (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "El script «%s» devolvió el error %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Falló select() para la conexión del socket" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Socket de conexión cancelado\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "setsockopt(TCP_NODELAY) falló en el socket TLS:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Falló al reconectar al proxy %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Falló al reconectar al servidor %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo falló para el servidor «%s»:%s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Reconectando al servidor DynDNS usado la dirección IP previamente en caché\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Intentando conectar al proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Intentando conectar al servidor %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Conectado a %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Falló al asignar la dirección del socket del almacenamiento\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Falló al conectar a %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Olvidando la dirección anterior no funcional del par\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falló al conectar al servidor %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Reconectando al proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" "No se pudo obtener el ID del sistema de archivos para la frase de paso\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falló al abrir el archivo de clave privada «%s»: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Sin errores" #: ssl.c:727 msgid "Keystore locked" msgstr "Almacén de claves bloqueado" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Almacén de claves no inicializado" #: ssl.c:729 msgid "System error" msgstr "Error del sistema" #: ssl.c:730 msgid "Protocol error" msgstr "Error de protocolo" #: ssl.c:731 msgid "Permission denied" msgstr "Permiso denegado" #: ssl.c:732 msgid "Key not found" msgstr "Clave no encontrada" #: ssl.c:733 msgid "Value corrupted" msgstr "Valor corrupto" #: ssl.c:734 msgid "Undefined action" msgstr "Acción no definida" #: ssl.c:738 msgid "Wrong password" msgstr "Contraseña errónea" #: ssl.c:739 msgid "Unknown error" msgstr "Error desconocido" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Falló select() para el socket del comando" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falló al abrir %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falló al hacer fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "El archivo %s está vacío\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "El archivo %s tiene un tamaño % sospechoso\n" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falló al reservar %d bytes para %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falló al leer %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Familia de protocolo %d desconocida. No se puede crear la dirección del " "servidor UDP\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Abrir socket UDP" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" "Familia de protocolo %d desconocida. No se puede usar el protocolo UDP\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Vincular socket UDP" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Hacer el socket UDP no bloqueante" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "La cookie ya no es válida, cerrando la sesión\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "dormir %ds, timeout restante %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Falló select() para envío por el socket" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Falló select() para la recepción del socket" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Testigo SSPI demasiado largo (%ld bytes)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Enviando testigo SSPI de %lu bytes\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falló al enviar el testigo de autenticación SSPI al proxy: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falló al recibir el testigo de autenticación SSPI del proxy: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "El servidor SOCKS ha informado de un fallo de contexto de SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Respuesta de estado SSPI desconocida (0x%02x) del servidor SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obtenido el testigo SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Falló QueryContextAttributes(): %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Falló EncryptMessage(): %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() demasiado largo (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Enviando negociación de protección SSPI de %u bytes\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falló al enviar la respuesta de protección SSPI al proxy %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falló al recibir la respuesta de protección SSPI al proxy %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "Obtenida la respuesta de protección SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Falló DecryptMessage: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Respuesta de protección SSPI no válida del proxy (%lu bytes)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Introduzca credenciales para desbloquear el testigo." #: stoken.c:107 msgid "Device ID:" msgstr "ID del dispositivo:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "El usuario omitió el testigo.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Todos los campos son obligatorios; inténtelo de nuevo.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Fallo general en libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "ID del dispositivo o contraseña incorrectos; inténtelo de nuevo.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "La inicialización del testigo tuvo éxito.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Introduzca el PIN del testigo software." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Formato de pin no válido; inténtelo de nuevo.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Generando código de testigo RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Error al acceder a la clave del registro para adaptadores de red\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "No se puede leer %s\\%s o no es una cadena\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "El %s\\ComponentId es desconocido «%s»\n" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Encontrado %s en %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "No se puede abrir la clave del registro %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "No se puede leer la clave del registro %s\\%s o no es una cadena\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() ha fallado: %s\n" "Volviendo a GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() ha fallado: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Falló al abrir: %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "Se abrió el dispositivo tun %S\n" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falló al obtener la versión del driver TAP: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Error: se necesita la versión 9.9 o superior del controlador TAP de Windows " "(encontrada la %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falló al establecer las direcciones IP TAP: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falló al establecer el estado del medio TAP: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "Ignorando la interfaz que no coincide «%S»\n" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "No se pudo convertir el nombre de la interfaz a UTF-8\n" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "Usando el dispositivo %s «%s», índice %d\n" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "No se pudo construir el nombre de la interfaz\n" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "El dispositivo TAP ha abortado la conectividad. Desconectando.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falló al leer del dispositivo TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falló al completar la lectura del dispositivo TAP: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escritos %ld bytes en tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Esperando la escritura de TUN...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escritos %ld bytes en TUN después de esperar\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falló al escribir en el dispositivo TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Windows todavía no soporta la generación de scripts del túnel\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "No se pudo abrir /dev/tun para sondear" #: tun.c:92 msgid "Can't push IP" msgstr "No se puede alcanzar la IP" #: tun.c:102 msgid "Can't set ifname" msgstr "No se puede establecer el ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "No se puede sondear %s por IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "abrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falló al crear un nuevo dispositivo TUN" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Falló al poner el archivo descriptor del dispositivo TUN en modo «descartar " "mensaje»" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "dispositivo tun no soportado en esta plataforma\n" #: tun.c:205 msgid "open net" msgstr "abrir red" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falló al abrir el dispositivo TUN: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Falló al vincular el dispositivo tun local (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Para configurar la red local openconnect debe ejecutarse como root\n" "Consulte https://www.infradead.org/openconnect/nonroot.html para obtener más " "información\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nombre de interfaz «%s» no válido; debe coincidir con «utun%%d» o con «tun" "%%d»\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Falló al abrir el socket SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Falló al consultar el ID de control utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Falló al reservar el nombre del dispositivo utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Falló al conectar a la unidad utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nombre de interfaz «%s» no válido; debe coincidir con «tun%%d»\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "No se pudo abrir «%s»: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Falló al hacer el socket tun no bloqueante: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "Falló «socketpair»: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "Falló «fork»: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falló al escribir el paquete entrante: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "No se pudo cargar wintun.dll\n" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "No se pudieron resolver las funciones de wintun.dll\n" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Se trata el servidor «%s» como un nombre de servidor en bruto\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falló el SHA1 del archivo existente\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Archivo XML de configuración SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falló al analizar el archivo XML de configuración %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "El servidor «%s» tiene la dirección «%s»\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "El servidor «%s» tiene el grupo de usuario «%s»\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Servidor «%s» no listado en la configuración; se trata como nombre de " "servidor crudo\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Falló al enviar «%s» a la miniaplicación ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Respuesta corta a «%s» no válida de la miniaplicación ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Falló la respuesta a «%s»: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "seleccionar comando de la miniaplicación" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Respuesta de la miniaplicación ykneo-oath no reconocida\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Encontrada miniaplicación ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN requerido por la miniaplicación Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubkey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Falló al calcular la respuesta de desbloqueo de Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "desbloquear comando" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Probando variante PBKBF2 de carácter truncado del PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Falló al crear el contexto PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Contexto PS/SC establecido\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Falló al consultar la lista de lectores: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Falló al conectar al lector PC/SC «%s»: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Lector PC/SC conectado «%s»\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Falló al obtener el acceso exclusivo al lector «%s»: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "comando de listar claves" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Encontrada %s/%s clave «%s» en «%s»\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Testigo «%s» no encontrado en Yubikey «%s». Buscando otra Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "El servidor está rechazando el testigo de Yubikey; cambiando a entrada " "manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Generando código de testigo Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Falló al obtener el acceso exclusivo a Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "calcular comando" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Respuesta de Yubikey desconocida al generar el código del testigo\n" openconnect-8.20/po/sr.po0000644000076400007640000063645614204456074017164 0ustar00dwoodhoudwoodhou00000000000000# Serbian translations for network-manager-openconnect. # Courtesy of Prevod.org team (http://prevod.org/) -- 2011—2021. # Copyright © 2011 THE F'S COPYRIGHT HOLDER # This file is distributed under the same license as the network-manager-openconnect package. # Мирослав Николић , 2011—2021. msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2022-01-18 18:59+0200\n" "Last-Translator: Мирослав Николић \n" "Language-Team: српски \n" "Language: sr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=n==1? 3 : n%10==1 && n%100!=11 ? 0 : n" "%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" "X-Project-Style: gnome\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Неисправан колачић „%s“\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Неочекиван %d резултат са сервера\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Није успела расподела\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Примљен је кратак пакет (%d бајта)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Примих пакет података од %d бајта\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "ССЛ је записао премало бајтова! Тражио је %d, послао је %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Истек промене кључа ЦСТП-а\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Поновно руковање није успело; покушавам нови тунел\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Шаљем пакет незапакованих података од %d бајта\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Покушај нову ДТЛС везу\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Примљен је ДТЛС пакет 0x%02x од %d бајта\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Истек промене кључа ДТЛС-а\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Није успело поновно ДТЛС руковање; пново се повезујем.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Откривање неактивног парњака ДТЛС-а је открило неактивног парњака!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Послах ДТЛС ДПД\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Нисам успео да пошаљем ДПД захтев. Очекујте прекид везе\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Послао сам ДТЛС пакет од %d бајта; ДТЛС-ово слање је дало %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Одјављивање није успело.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Одјављивање је успело.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Одредиште из поља „%s“ је наведено; подразумевам да је САМЛ „%s“ потврђивање " "идентитета обављено.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "САМЛ „%s“ потврђивање идентитета се захтева путем „%s“\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "САМЛ „%s“ потврђивање идентитета се захтева путем спољне скрипте.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Када се обави САМЛ потврђивање идентитета, наводи одредиште из поља додајући " "„:field_name“ на адресу пријављивања.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Унесите своје корисничко име и лозинку" #: auth-globalprotect.c:159 msgid "Username" msgstr "Корисничко име" #: auth-globalprotect.c:174 msgid "Password" msgstr "Лозинка" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Изазов: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "Пријава Опште заштите је вратила неочекивану вредност аргумента „arg[%d]=" "%s“\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Пријава Опште заштите је вратила „%s=%s“ (очекивах „%s“)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Пријава Опште заштите је вратила празно или недостајуће „%s“\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Пријава Опште заштите је вратила „%s=%s“\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Известите о %d неочекиване горње вредности (од којих је/су %d кобна/е) на " "\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Изаберите мрежни пролаз Опште заштите." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "МРЕЖНИ_ПРОЛАЗ:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Занемарујем период ХИП извештаја портала (%d минута), јер је период већ " "постављен на %d минута.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Портал је поставио период ХИП извештаја на %d минута).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d сервера мрежног пролаза су доступна:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" "Подешавање портала Опште заштите није исписало сервере мрежног пролаза.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Нисам успео да створим ОТП код модула; искључујем модул\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Сервер није ни портал Опште заштите ни мрежни пролаз.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Занемарујем ставку предаје непознатог облика „%s“\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Занемарујем врсту уноса непознатог облика „%s“\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Одбацујем удвостручене опције „%s“\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Не могу да радим са начином=„%s“ обрасца, радња=„%s“\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Непознато поље текстуалне области: „%s“\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Нисам успео да доделим меморију за комуникацију са ТНЦЦ-ом\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Нисам успео да пошаљем наредбу ТНЦЦ-у\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "ТНЦЦ подршка још није примењена на Виндоузу\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Нема „DSPREAUTH“ колачића; не покушавам ТНЦЦ\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Нисам успео да извршим ТНЦЦ скрипту „%s“: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Послах почетак; чекам на одговор од ТНЦЦ-а\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Нисам успео да прочитам одговор од ТНЦЦ-а\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Примих безуспешан %s одговор од ТНЦЦ-а\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "ТНЦЦ је одговорио 200 У реду\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Други ред ТНЦЦ одговора: „%s“\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Добих нови „DSPREAUTH“ колачић од ТНЦЦ-а: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Добих период поновног потврђивања идентитета са ТНЦЦ-а: %d секунде\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Неочекиван не-празан ред из ТНЦЦ-а након „DSPREAUTH“ колачића: '%s'\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Превише не-празних редова из ТНЦЦ-а након „DSPREAUTH“ колачића\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Нисам успео да обрадим ХТМЛ документ\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Нисам успео да нађем или да обрадим образац веба на страници пријављивања\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Избацујем непознати ХТМЛ образац:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Избор обрасца нема назив\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "назив „%s“ није улаз\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Нема врсте улаза за образац\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Нема назива улаза у обрасцу\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Непозната врста улаза „%s“ у обрасцу\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Празан одговор са сервера\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Нисам успео да обрадим одговор сервера\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Одговор је био:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Примих <захтев-уверења-клијента> када није очекиван.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "ИксМЛ одговор нема чвор „auth“\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Затражена ми је лозинка али је постављено „--no-passwd“\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Не преузимам ИксМЛ профил јер СХА1 већ одговара\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Нисам успео да отворим ХТТПС везу са „%s“\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Нисам успео да пошаљем „GET“ захтев за ново подешавање\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Преузета датотека подешавања не одговара жељеном СХА1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Преузет је нови ИкМЛ профил\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Грешка: Покретање тројанца „Циско безбедне радне површи“ на овој платформи " "још није примењено.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Нисам успео да подесим гиб %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Нисам успео да подесим групу на %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Нисам успео да подесим јиб %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Неисправан кориснички јиб=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Нисам успео да пређем у лични ЦСД директоријум „%s“: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Грешка: Сервер је затражио да покренемо ЦСД преглед домаћина.\n" "Морате да обезбедите одговарајући „--csd-wrapper“ аргумент.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Грешка: Сервер је затражио да преузмемо и покренемо тројанца „Циско безбедне " "радне површи“.\n" "Ова околност је искључена по основи из безбедносних разлога, тако да бисте " "можда желели да је укључите.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Привремени директоријум „%s“ није уписив: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Нисам успео да отворим привремену датотеку ЦСД скрипте: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Нисам успео да запишем привремену датотеку ЦСД скрипте: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "ЦСД скрипта „%s“ је изашла неисправно\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "ЦСД скрипта „%s“ је вратила не-нулто стање: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Потврђивање идентитета може да не успе. Ако ваша скрипта није вратила нулу, " "поправите то.\n" "Будућа издања опенконекта ће прекинути са овом грешком.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Упозорење: покренули сте небезбедни ЦСД код са администраторским " "овлашћењима\n" "\t Користите опцију „--csd-user“\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Нисам успео да извршим ЦСД скрипту „%s“\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Непознат одговор са сервера\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Сервер је затражио уверење ССЛ клијента након што је достављено једно\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Сервер је затражио уверење ССЛ клијента; ниједно није подешено\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "ИксМЛ ПОСТ је укључен\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Не могу да довучем ЦСД окрајак. Ипак настављам са скриптом ЦСД омотача.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Освежавам „%s“ након 1 секунде...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(грешка 0х%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Грешка приликом описивања грешке!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ГРЕШКА: Не могу да покренем прикључнице\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "ТЦП_ИНФО прим пор %d, посл пор %d, пор огл %d, пмту %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "ТЦП_МАХСЕГ %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "КРИТИЧНА ГРЕШКА: Главна тајна ДТЛС-а није покренута. Известите о овоме.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Грешка стварања захтева за ХТТПС ПОВЕЗИВАЊЕ\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Грешка довлачења ХТТПС одговора\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "ВПН услуга није доступна; разлог: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Добих неодговарајући одговор ХТТП ПОВЕЗИВАЊА: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Добих одговор ПОВЕЗИВАЊА: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Нема меморије за опције\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "ИБ сесије Х-ДТЛС-а није 64 знака; већ: „%s“\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "ИБ сесије Х-ДТЛС-а није исправан; већ је: „%s“\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Непознато кодирање ДТЛС садржаја %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Непознато кодирање ЦСТП садржаја %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "МТУ није примљен. Прекидам\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "ЦСТП је повезан. ДПД %d, Одржи активним %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Подешавање паковања није успело\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Додела међумеморије издувавања није успела\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "надувавање није успело\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Није успело ЛЗС распакивање: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Није успело ЛЗ4 распакивање\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Непозната врста паковања „%d“\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Примих %s запаковани пакет података од %d бајта (беше %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "издувавање није успело %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Неочекивана дужина пакета. ССЛ_читање је дало %d али пакет је\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Добих ЦСТП ДПД захтев\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Добих ЦСТП ДПД одговор\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Добих ЦСТП Одржи активним\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Примих пакет незапакованих података од %d бајта\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Примих прекид везе са сервера: %02x „%s“\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Примих прекид везе са сервера\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Сажети пакет је примљен у „!deflate“ режиму\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "примљен је серверов пакет окончавања\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Непознат пакет %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Откривање неактивног парњака ЦСТП-а је открило неактивног парњака!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Поновно повезивање није успело\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Послах ЦСТП ДПД\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Послах ЦСТП Одржи активним\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Шаљем пакет запакованих података од %d бајта (беше %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Послах пакет ОДЛАСКА: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Кратко писање приликом писања „BYE“ пакета\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Покушавам сваривање потврђивања идентитета са посредником\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Покушавам прихватање потврђивања идентитета на серверу „%s“\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "ДТЛС веза је покушана са постојећим фд-ом\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Нема ДТЛС адресе\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Сервер је није понудио опцију ДТЛС шифрера\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Нема ДТЛС-а када сте повезани путем посредника\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "ДТЛС је покренут. ДПД %d, Одржи активним %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Примљен је непознат пакет (дужине %d): %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "ТОС ово: %d, ТОС последње: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "Подешава опције прикључнице УДП" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Добих ДТЛС ДПД захтев\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Нисам успео да пошаљем ДПД одговор. Очекујте прекид везе\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Добих ДТЛС ДПД одговор\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Добих ДТЛС Одржи активним\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Запаковани ДТЛС пакет је примљен када запакивање није укључено\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Непозната врста ДТЛС пакета %02x, дужина %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Послах ДТЛС Одржи активним\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Нисам успео да пошаљем захтев одржи активним. Очекујте прекид везе\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Покрећем МТУ откривање (најм.=%d, најв.=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Шаљем МТУ ДПД пробу (%u бајта)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Нисам успео да пошаљем ДПД захтев (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Предуго време у петљи МТУ откривања; подразумевам преговорени МТУ.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Предуго време у петљи МТУ откривања; МТУ је постављен на %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Примих неочекивани пакет (%.2x) у МТУ откривању; прескачем.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "Нема одговора на величину %u након %d покушаја; објављујем да је МТУ %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Нисам успео да примим ДПД захтев (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Примих МТУ ДПД пробу (%u бајта)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Отрио сам МТУ од %d бајта (беше %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Нема промене у МТУ након откривања (беше %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Прихватам очекивани ЕСП пакет са низом %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Прихватам ЕСП пакет касније-него-очекивано са низом %u (очекивах %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Одбацујем стари ЕСП пакет са низом %u (очекивах %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Толеришем стари ЕСП пакет са низом %u (очекивах %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Одбацујем одговорени ЕСП пакет са низом %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Толеришем одговорени ЕСП пакет са низом %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Прихватам ЕСП пакет без најаве са низом %u (очекивах %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Параметри за %s ЕСП: СПИ 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Врста „%s“ ЕСП шифровања кључ 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Врста „%s“ ЕСП пријављивања кључ 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "долазно" #: esp.c:94 msgid "outgoing" msgstr "одлазно" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Послах ЕСП пробе\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Примљен је ЕСП пакет са старог СПИ-ја 0×%x, низ %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Примих ЕСП пакет са неисправним СПИ-ем 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Неисправна дужина попуне %02x У ЕСП-у\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Неисправни битови попуне У ЕСП-у\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ЕСП сесија је успостављена са сервером\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Нисам успео да доделим меморију за дешифровање ЕСП пакета\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "ЛЗО распакивање ЕСП пакета није успело\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "ЛЗО је распаковао %d бајта у %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Поновно стварање кључа није примењено за ЕСП\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ЕСП је открио неактивног парњака\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Послах ЕСП пробе за ДПД\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Одржи активним није примењено за ЕСП\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Није успело ЕСП слање поновног стављања у ред: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Нисам успео да пошаљем ЕСП пакет: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Нисам успео да створим насумичне кључеве за ЕСП\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Нисам успео да створим почетни „IV“ за ЕСП\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Временски истек мировања је %d минута.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Одлажем ДТЛС обнављање док ЦСТП ствара ПСК\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Нисам успео да створим ниску хитности ДТЛС-а\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Нисам успео да поставим хитност ДТЛС-а: „%s“: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Нисам успео да доделим акредитиве: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Нисам успео да створим ДТЛС кључ: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Нисам успео да поставим ДТЛС кључ: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Нисам успео да поставим акредитиве ДТЛС ПСК-а: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Непознати ДТЛС параметри за затражени Комплет шифрера „%s“\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Нисам успео да поставим параметре ДТЛС сесије: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "ГнуТЛС је користио %d насумична бајта клијента поздрава; ово није требало да " "се деси\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "ГнуТЛС је послао небезбедну насумичност „ClientHello“-а. Надоградите на " "3.6.13 или новији.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Нисам успео да покренем ДТЛС: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "МТУ %d парњака је премало да дозволи ДТЛС\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "ДТЛС МТУ је смањено на %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "Повраћај ДТЛС сесије није успео; могућ МИТМ напад. Искључујем ДТЛС.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Нисам успео да поставим ДТЛС МТУ: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Успостављена је ДТЛС веза (користим ГнуТЛС). Комплет шифрера %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Запакивање ДТЛС везе са „%s“.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Истекло је време ДТЛС руковања\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Није успело ДТЛС руковање: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Да ли вас мрежна баријера спречава да пошаљете УДП пакете?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Нисам успео да покренем ЕСП шифрера: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Нисам успео да покренем ЕСП ХМАЦ: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Нисам успео да израчунам ХМАЦ за ЕСП пакет: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Примих ЕСП пакет са неисправним ХМАЦ-ом\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Није успело дешифровање ЕСП пакета: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Нисам успео да шифрујем ЕСП пакет: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Није успело „select()“ за ТЛС" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Не могу да извучем време истека уверења\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Уверење клијента је истекло у" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Уверење клијента ускоро истиче" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Нисам успео да учитам „%s“ из смештаја кључа: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Нисам успео да отворим датотеку кључа/уверења „%s“: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Нисам успео да добавим податке датотеке кључа/уверења „%s“: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Нисам успео да доделим међумеморију уверења\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Нисам успео да учитам уверење у меморију: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Нисам успео да поставим структуру ПКЦС#12 података: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Нисам успео да дешифрујем датотеку ПКЦС#12 уверења\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Унесите ПКЦС#12 лозинку:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Нисам успео да обрадим ПКЦС#12 датотеку: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Нисам успео да учитам ПКЦС#12 уверење: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Не могу да покренем МД5 хеш: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Грешка МД5 хеша: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Недостаје заглавље „DEK-Info:“ из кључа шифрованог Отвореним ССл-ом\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Не могу да одредим врсту ПЕМ шифровања\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Неподржана врста ПЕМ шифровања: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Неисправан присолак у шифрованој ПЕМ датотеци\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Грешка шифроване ПЕМ датотеке основе64-декодирања: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Шифрована ПЕМ датотека је прекратка\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Нисам успео да покренем шифрера за дешифровање ПЕМ датотеке: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Нисам успео да дешифрујем ПЕМ кључ: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Није успело дешифровање ПЕМ кључа\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Унесите ПЕМ лозинку:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Ова извршна је изграђена без подршке кључа система\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Ова извршна је изграђена без подршке ПКЦС#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Користим ПКЦС#11 уверење „%s“\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Користим системско уверење „%s“\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Грешка учитавања уверења из ПКЦС#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Грешка учитавања системског уверења: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Користим датотеку уверења „%s“\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "ПКЦС#11 датотека не садржи уверење\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Нисам пронашао уверење у датотеци" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Нисам успео да увезем уверење: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Користим системски кључ „%s“\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Грешка покретања структуре личног кључа: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Грешка увоза системског кључа „%s“: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Покушавам адресу ПКЦС#11 кључа „%s“\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Грешка покретања структуре ПКЦС#11 кључа: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Грешка увоза ПКЦС#11 адресе „%s“: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Користим ПКЦС#11 кључ „%s“\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Грешка увоза ПКЦС#11 кључа у структуру личног кључа: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Користим датотеку личног кључа „%s“\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ТПМ подршке\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ТПМ2 подршке\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Нисам успео да протумачим ПЕМ датотеку\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Нисам успео да учитам ПКЦС#1 лични кључ: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Нисам успео да учитам лични кључ као ПКЦС#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Нисам успео да дешифрујем датотеку ПКЦС#8 уверења\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Нисам успео да одредим врсту личног кључа „%s“\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Унесите ПКЦС#8 лозинку:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Нисам успео да добавим ИБ кључа: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Грешка потписивања пробних података личним кључем: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Грешка потврђивања потписа наспрам уверења: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Нисам нашао ССЛ уверење које одговара личном кључу\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Користим уверење клијента „%s“\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Нисам успео да доделим меморију за уверење\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Нисам добио издавача из ПКЦС#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Добих следећег издавача уверења „%s“ из ПКЦС11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Нисам успео да доделим меморију за подржавање уверења\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Додајем подржавајуће „%s“ издавача уверења\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Нисам успео да увезем Х509 уверење: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Нисам успео да поставим ПКЦС#11 уверење: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Подешавање списка опоравка уверења није успело: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "Лични кључ изгледа да не подржава РСА-ПСС. Искључујем ТЛСв1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Нисам успео да подесим уверење: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Сервер није представио ниједно уверење\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Грешка упоређивања уверења сервера при поновном руковању: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Сервер је представио другачије уверење при поновном руковању\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Сервер је представио исто уверење при поновном руковању\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Грешка покретања структуре X509 уверења\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Грешка увоза серверског уверења\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Не могу да израчунам хеш серверског уверења\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Грешка провере стања уверења сервера\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "уверење је опозвано" #: gnutls.c:2098 msgid "signer not found" msgstr "потписник није пронађен" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "потписник није уверење издавача уверења" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "небезбедни алгоритам" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "уверење још није активирано" #: gnutls.c:2106 msgid "certificate expired" msgstr "уверење је истекло" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "провера потписа није успела" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "уверење не одговара називу домаћина" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Није успела провера уверења сервера: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Нисам успео да доделим меморију за уверења датотеке издавача уверења\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Нисам успео да прочитам уверења из датотеке издавача уверења: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Нисам успео да отворим датотеку издавача уверења „%s“: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Нисам успео да учитам уверење. Прекидам.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Нисам успео да поставим ниску хитности ГнуТЛС-а (%s): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "ССЛ преговарање са „%s“\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "ССЛ веза је отказана\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Неуспех ССЛ везе: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Не-кобни резултат ГнуТЛС-а за време руковања: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Повезан сам на ХТТПС са „%s“ са шифрерским скупом „%s“\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "Поново је преговаран ССЛ на „%s“ са шифрерским скупом „%s“\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Потребан је ПИН за %s“" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Погрешан ПИН" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Ово је последњи покушај пре закључавања!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Остало је само неколико покушаја пре закључавања!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Унесите ПИН:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Неподржани ОАТХ ХМАЦ алгоритам\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Нисам успео да израчунам ОАТХ ХМАЦ: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Успостављена је ЕАП-ТТЛС сесија\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Функција ТПМ знака је позвана за %d бајта.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Нисам успео да направим ТПМ хеш објекат: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Нисам успео да подесим ТПМ хеш објекат: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Није успео ТПМ хеш потпис: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Грешка декодирања блоба ТСС кључа: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Грешка у блобу ТСС кључа\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Нисам успео да направим ТПМ контекст: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Нисам успео да повежем ТПМ контекст: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Нисам успео да учитам ТПМ СРК кључ: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Нисам успео да учитам објект ТПМ СРК политике: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Нисам успео да подесим ТПМ ПИН: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Нисам успео да учитам блоб ТПМ кључа: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Унесите ТПМ СРК ПИН:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Нисам успео да направим објекат политике кључа: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Нисам успео да доделим политику кључу: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Унесите ПИН ТПМ кључа:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Нисам успео да подесим ПИН кључа: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "За ТПМ2 ЕЦ сажетак није позната величина %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Грешка декодирања блоба ТСС2 кључа: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Нисам успео да направим АСН.1 врсту за ТПМ2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Нисам успео да дешифрујем ТПМ2 кључ АСН.1: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Нисам успео да обрадим ТПМ2 кључ врсте ОИД: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "ТПМ2 кључ има непознату врсту ОИД „%s“ а не „%s“\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Нисам успео да обрадим родитеља ТПМ2 кључа: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Нисам успео да обрадим елемент ТПМ2 јавног кључа\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Нисам успео да обрадим елемент ТПМ2 личног кључа\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Обрадих ТПМ2 кључ са родитељем %x, празно потврђивање идентитета %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "ТПМ2 сажетак је превелик: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "ТПМ2 лозинка је предуга; скраћујем је\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "власник" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "ништа" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "одобрење" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "платформа" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Стварам примарни кључ под „%s“ хијерархијом.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Упишите лозинку ТПМ2 „%s“хијерархије:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "ТПМ2 „Esys_TR_SetAuth“ није успело: 0×%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" "Потврђивање идентитета власника ТПМ2 „Esys_CreatePrimary“ није успело\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "ТПМ2 „Esys_CreatePrimary“ није успело: 0×%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Успостављам везу са ТПМ.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "ТПМ2 „Esys_Initialize“ није успело: 0×%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "ТПМ2 је већ покренут упркос лажном позитивном неуспеху у „tpm2tss“ " "дневнику.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "ТПМ2 „Esys_Startup“ није успело: 0×%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "„Esys_TR_FromTPMPublic“ није успело за ручку 0×%x: 0×%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Упишите лозинку кључа ТПМ2 родитеља:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Учитавам блоб ТПМ2 кључа, родитељ %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "Потврђивање идентитета ТПМ2 „Esys_Load“ није успело\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "ТПМ2 „Esys_Load“ није успело: 0×%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "ТПМ2 „Esys_FlushContext“ за створеног примарног није успело: 0×%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Упишите лозинку ТПМ2 кључа:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Потврђивање идентитета ТПМ2 „Esys_RSA_Decrypt“ није успело\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "ТПМ2 није успео да створи РСА потпис: 0×%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Функција ТПМ2 ЕЦ знака је позвана за %d бајта.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Потврђивање идентитета ТПМ2 „Esys_Sign“ није успело\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Неисправна ТПМ2 родитеља ручка 0×%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Нисам успео да увезем податке ТПМ2 личног кључа: 0×%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Нисам успео да увезем податке ТПМ2 јавног кључа: 0×%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Неподржан ТПМ2 кључ врсте %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "ТПМ2 радња „%s“ није успела (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Изазов: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Нестандардна путања ССЛ тунела: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Временски истек тунела (период поновног кључа) је %d минута.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Адреса мрежног пролаза у подешавању ХМЛ-а (%s) се разликује од адресе " "спољног мрежног пролаза (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "Подешавање опште заштите је послало „ipsec-mode=%s“ (очекиван је есп-тунел)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Занемарујем ЕСП кључеве пошто ЕСП подршка није доступна у овом издању\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Непозната ознака подешавања опште заштите <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ЕСП је искључено" #: gpst.c:661 msgid "No ESP keys received" msgstr "Није примљен ЕСП кључ" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "ЕСП подршка није доступна у овој изградњи" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Нисам примио МТУ. Израчунах %d за %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Повезујем се на крајњу тачку ХТТПС тунела ...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Грешка довлачења „GET-тунел“ ХТТПС одговора.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Мрежни пролаз је искључен одмах након „GET-тунел“ захтева.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "УПОЗОРЕЊЕ: Сервер је затражио од нас да предамо ХИП извештај са „md5sum " "%s“.\n" " ВПН повезивост може бити искључена или ограничена без предаје ХИП " "извештаја.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Међутим, покретање скрипте предаје ХИП извештаја на овој платформи још није " "примењено." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Треба да доставите „--csd-wrapper“ аргумент са скриптом предаје ХИП " "извештаја." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Грешка: Покретање скрипте „ХИП извештај“ на овој платформи још није " "примењено.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "ХИП скрипта „%s“ је изашла неисправно\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "ХИП скрипта „%s“ је вратила не-нулто стање: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Предаја ХИП извештаја није успела.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "ХИП извештај је успешно предат.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Нисам успео да извршим ХИП скрипту „%s“\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Мрежни пролаз каже да је предаја ХИП извештаја потребна.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Мрежни пролаз каже да предаја ХИП извештаја није потребна.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ЕСП тунел је повезан; излазим из ХТТПС главне петље.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Нисам успео да се повежем на ЕСП тунел; користим ХТТПС.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Пакет је примио грешку: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Неочекивана дужина пакета. „SSL_read“ је вратило %d (укључује бајтове 16 " "заглавља) али заглавље „payload_len“ је %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Добих одговор ГПСТ ДПД/одржи_активним\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Очекивах 0000000000000000 као последња 8 бајта ДПД/одржи_активним заглавља " "пакета, али добих:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Примих пакет ИПв%d података од %d бајта\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Очекивах 0100000000000000 као последња 8 бајта заглавља пакета података, али " "добих:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Непознат пакет. Избачај заглавља следи:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "Рок провере ХИП-а Опште заштите\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "ХИП провера или извештај није успела\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "Рок поновног кључа Опште заштите\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "Откривање неактивног парњака ГПСТ-а је открило неактивног парњака!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Послао сам одговор ГПСТ ДПД/одржи_активним\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Шаљем пакет ИПв%d података од %d бајта\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Нисам успео да пошаљем ЕСП пробу\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Грешка увоза ГССАПИ назива за потврђивање идентитета:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Грешка стварања ГССАПИ одговора:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Покушавам ГССАПИ потврђивање идентитета са посредником\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Покушавам ГССАПИ потврђивање идентитета са сервером „%s“\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "ГССАПИ потврђивање идентитета је обављено\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "ГССАПИ модул је превелик (%zd бајта)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Шаљем ГССАПИ модул од %zu бајта\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Нисам успео да пошаљем ГССАПИ модул потврђивања идентитета посреднику: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Нисам успео да примим ГССАПИ модул потврђивања идентитета од посредника: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "СОЦКС сервер је известио о неуспеху ГССАПИ контекста\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Непознат одговор ГССАПИ стања (0х%02x) са СОЦКС сервера\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Добих ГССАПИ модул од %zu бајта: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Шаљем преговор ГССАПИ заштите од %zu бајта\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Нисам успео да пошаљем одговор ГССАПИ заштите посреднику: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Нисам успео да примим одговор ГССАПИ заштите од посредника: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Добих одговор ГССАПИ заштите од %zu бајта: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Неисправан одговор ГССАПИ заштите са посредника (%zu бајта)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "СОЦКС посредник тражи целовитост поруке, што није подржано\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "СОЦКС посредник тражи поверљивост поруке, што није подржано\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "СОЦКС посредник тражи непознату врсту заштите 0х%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Покушавам ХТТП Основно потврђивање идентитета са посредником\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Покушавам ХТТП Основно потврђивање идентитета са сервером „%s“\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Покушавам потврђивање идентитета ХТТП носиоца са сервером „%s“\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ГССАПИ подршке\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Посредник захтева Основно потврђивање идентитета које је по основи " "искључено\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Сервер „%s“ захтева Основно потврђивање идентитета које је по основи " "искључено\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Нема више начина потврђивања идентитета\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Нема меморије за доделу колачића\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Грешка читања ХТТП одговора: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Нисам успео да обрадим ХТТП одговор „%s“\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Добих ХТТП одговор: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Занемарујем непознати ред ХТТП одговора „%s“\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Понуђен је неисправан колачић: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Није успело потврђивање идентитета ССЛ уверења\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Тело одговора има негативну величину (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Непознато преносно-кодирање: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "ХТТП тело %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Грешка читања тела ХТТП одговора\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Грешка довлачења заглавља делића\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "Дужина ХТТП дела је негативна (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "Дужина ХТТП дела је превелика (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Грешка довлачења тела ХТТП одговора\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Не могу да примим ХТТП 1.0 тело без затварања везе\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Нисам успео да обрадим преусмерену адресу „%s“: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Не могу да пратим преусмерење на не-хттпс адресе „%s“\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Није успело додељивање нове путање за релативно преусмерење: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "Парњак је затворио ХТТПС прикључницу; отварам поново\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Поновно покушавање није успело за „%s“ захтев при новој вези\n" #: http.c:1002 msgid "request granted" msgstr "захтев је одобрен" #: http.c:1003 msgid "general failure" msgstr "општи неуспех" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "веза није дозвољена скупом правила" #: http.c:1005 msgid "network unreachable" msgstr "мрежа је недостижна" #: http.c:1006 msgid "host unreachable" msgstr "домаћин је недостижан" #: http.c:1007 msgid "connection refused by destination host" msgstr "везу је одбио одредишни домаћин" #: http.c:1008 msgid "TTL expired" msgstr "ТТЛ је истекло" #: http.c:1009 msgid "command not supported / protocol error" msgstr "наредба није подржана / грешка протокола" #: http.c:1010 msgid "address type not supported" msgstr "врста адресе није подржана" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "СОЦКС сервер је затражио корисничко име/лозинку али ми немамо ниједно\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Корисничко име и лозинка за СОЦКС потврђивање идентитета морају бити < 255 " "бајта\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Грешка писања захтева потврђивања идентитета на СОЦКС посреднику: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Грешка читања захтева потврђивања идентитета са СОЦКС посредника: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Неочекиван одговор потврђивања идентитета са СОЦКС посредника: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Потврдили сте идентитет на СОЦКС посреднику користећи лозинку\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Није успело потврђивање идентитета лозинком на СОЦКС серверу\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "СОЦКС сервер захтева ГССАПИ потврђивање идентитета\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "СОЦКС сервер захтева потврђивање идентитета лозинком\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "СОЦКС сервер захтева потврђивање идентитета\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "СОЦКС сервер захтева непознату врсту потврђивања идентитета %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Захтевам везу СОЦКС посредника са %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Грешка писања захтева повезивања са СОЦКС посредником: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Грешка читања одговора везе са СОЦКС посредника: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Неочекиван одговор везе са СОЦКС посредника: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Грешка СОЦКС посредника %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Грешка СОЦКС посредника %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Неочекивана врста адресе %02x у одговору СОЦКС везе\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Захтевам везу ХТТП посредника са %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Нисам успео да пошаљем захтев посредника: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Захтев ПОВЕЗИВАЊА посредника није успео: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Непозната врста посредника „%s“\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Нисам успео да обрадим посредника „%s“\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Подржани су само хттп или соцкс(5) посредници\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Циско Ени Конект или опенконект" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Сагласно са ССЛ ВПН-ом Циско Ени Конекта, као и са „ocserv“-ом" #: library.c:143 msgid "Juniper Network Connect" msgstr "Повезивање Џанипер мреже" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Сагласно са Џанипер Нетворк Конектом" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Сагласно са ССЛ ВПН Опште заштите Пало Алто мрежа (PAN)" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Сагласно са ССЛ ВПН Пулс Конект Секјуром" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Непознати ВПН протокол „%s“\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Изграђено је ССЛ библиотеком без Циско ДТЛС подршке\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Није примљена ИП адреса. Прекидам\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Поновно повезивање је дало другачију Стару ИП адресу (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Поновно повезивање је дало другачију Стару ИП мрежну маску (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Поновно повезивање је дало другачију ИПв6 адресу (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Поновно повезивање је дало другачију ИПв6 мрежну маску (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Примљено је ИПв6 подешавање али МТУ %d је премали.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Нисам успео да обрадим адресу сервера „%s“\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Дозвољено је само „https://“ за адресу сервера\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Непознат хеш уверења: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Величина достављеног отиска је мања од потребног минимума (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Нема руковаоца обрасцем; не могу да потврдим идентитет.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Није успела функција линије наредби у аргумент: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Кобна грешка у раду са линијом наредби\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Није успела функција читања конзоле: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "„fgetws()“ није успело: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Грешка претварања улаза конзоле: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Неуспех додељвања за ниску са стандардног улаза\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "За испомоћ са Отвореним повезивањем, погледајте веб страницу на\n" " „https://www.infradead.org/openconnect/mail.html“\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Користим „%s“. Присутне функције:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Није присутан ПОГОН ОтвореногССЛ-а" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "УПОЗОРЕЊЕ: Нема ДТЛС и/или ЕСП подршке у овој извршној. Делотворност ће бити " "умањена.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Подржани протоколи:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (основно)" #: main.c:743 msgid "Set VPN protocol" msgstr "Поставите ВПН протокол" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (стдул)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Не могу да обрадим путању ове извршне „%s“" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Додела за путању впнц-скрипте није успела\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Преписује назив домаћина „%s“ са „%s“\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Употреба: openconnect [опције] <сервер>\n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Отворени клијент за више ВПН протокола, издање %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Чита опције из датотеке подешавања" #: main.c:914 msgid "Report version number" msgstr "Извештава о броју издања" #: main.c:915 msgid "Display help text" msgstr "Приказује текст помоћи" #: main.c:919 msgid "Authentication" msgstr "Потврђивање идентитета" #: main.c:920 msgid "Set login username" msgstr "Подешава корисничко име пријављивања" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Искључује потврђивање идентитета лозинком/Безбедним ИБ-ом" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Не очекује кориснички унос; излази ако је затражен" #: main.c:923 msgid "Read password from standard input" msgstr "Чита лозинку са стандардног улаза" #: main.c:924 msgid "Choose authentication login selection" msgstr "Бира избор пријаве потврђивања идентитета" #: main.c:925 msgid "Provide authentication form responses" msgstr "Обезбеђује потврђивање идентитета из одговора" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Користи уверење УВЕР ССЛ клијента" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Користи КЉУЧ датотеке личног кључа ССЛ-а" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Упозорава када је животни век уверења < ДАНА" #: main.c:929 msgid "Set login usergroup" msgstr "Подешава корисничку групу пријављивања" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Подешава лозинку кључа или ТПМ СРК ПИН" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Лозинка кључа је иб система датотека или систем датотека" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Врста софтверског модула: „rsa“, „totp“, „hotp“ или „oidc“" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Тајна софтверског модула или оидц модул" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(НАПОМЕНА: „libstoken“ (РСА Безбедни ИБ) је искључена у овој изградњи)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(НАПОМЕНА: „Yubikey“ ОАТХ је искључен у овој изградњи)" #: main.c:941 msgid "Server validation" msgstr "Потврђивање сервера" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Искључује основне системске издаваче уверења" #: main.c:944 msgid "Cert file for server verification" msgstr "Датотека уверења за проверу сервера" #: main.c:946 msgid "Internet connectivity" msgstr "Интернет повезивост" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Подешава посреднички сервер" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Подешава начине потврђивања идентитета посредника" #: main.c:950 msgid "Disable proxy" msgstr "Искључује посредника" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Користи „libproxy“ да самостално подеси посредника" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(НАПОМЕНА: „libproxy“ је искључена у овој изградњи)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Временски рок поновног повезивања у секундама" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Користи ИП приликом повезивања са ДОМАЋИНОМ" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Умножава ТОС / ТКЛАСА поље у ДТЛС и ЕСП пакете" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Поставља месни прикључник за ДТЛС и ЕСП датаграме" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Потврђивање идентитета (две фазе)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Користи колачић потврђивања идентитета „COOKIE“" #: main.c:962 msgid "Read cookie from standard input" msgstr "Чита колачић са стандардног улаза" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Само потврђује идентитет и исписује податке о пријави" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Само добавља и исписује колачић; не повезује се" #: main.c:965 msgid "Print cookie before connecting" msgstr "Испсиује колачић пре повезивања" #: main.c:968 msgid "Process control" msgstr "Контрола поступка" #: main.c:969 msgid "Continue in background after startup" msgstr "Наставља у позадини након покретања" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Пише ПИБ позадинца у ову датотеку" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Одбацује овлашћења након повезивања" #: main.c:974 msgid "Logging (two-phase)" msgstr "Пријављивање (две фазе)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Користи системски дневник за поруке напредовања" #: main.c:978 msgid "More output" msgstr "Више излаза" #: main.c:979 msgid "Less output" msgstr "Мање излаза" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "Исписује саобраћај ХТТП потврђивања идентитета (подразумева „--verbose“)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Додаје датум и време порукама напредовања" #: main.c:983 msgid "VPN configuration script" msgstr "Скрипта ВПН подешавања" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Користи АКОНАЗИВ за уређај тунела" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Линија наредбе шкољке за коришћење впнц-сагласне скрипте подешавања" #: main.c:986 msgid "default" msgstr "основно" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Прослеђујем саобраћај програму „script“, а не туну" #: main.c:991 msgid "Tunnel control" msgstr "Контрола тунела" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Не тражи ИПв6 повезивост" #: main.c:993 msgid "XML config file" msgstr "ИксМЛ датотека подешавања" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Захтева МТУ са сервера (само стари сервери)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Указује на МТУ путању до/од сервера" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Укључује постојано сажимање (основно је само непостојано)" #: main.c:997 msgid "Disable all compression" msgstr "Искључује сва сажимања" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Захтева савршену тајност прослеђивања" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Искључује ДТЛС и ЕСП" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Шифрери ОтвореногССЛ-а за подршку ДТЛС-а" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Подешава ограничење реда пакета на ДУЖИНУ пакета" #: main.c:1004 msgid "Local system information" msgstr "Информације о локалном систему" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Корисник-Агент ХТТП заглавља: поље" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Назив домаћина за обавештавање сервера" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "пријављена ниска издања за време потврђивања идентитета" #: main.c:1010 msgid "default:" msgstr "основно:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Извршавање бинарне (CSD) тројанца" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Одбацује овлашћења за време извршавања тројанца" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Покреће СКРИПТУ уместо извршне тројанца" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Грешке сервера" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Искључује поновно коришћење ХТТП везе" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Не покушава ИксМЛ ПОСТ потврђивање идентитета" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Нисам успео да доделим ниску\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Нисам успео да добавим ред из датотеке подешавања: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Непозната опција у %d. реду: „%s“\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Опција „%s“ не узима аргумент у %d. реду\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Опција „%s“ захтева аргумент у %d. реду\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Неисправан корисник „%s“: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Неисправан ИБ корисника „%d“: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Неуправљано самодовршавање за опцију %d „--%s“. Пријавите ово, не било вам " "тешко.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "у току" #: main.c:1519 msgid "disabled" msgstr "искључено" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Нисам успео да отворим „%s“ ради уписа: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Настављам рад у позадини, пиб %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "УПОЗОРЕЊЕ: Не могу да поставим језик: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "УПОЗОРЕЊЕ: Ово издање отвореног повезивања је изграђено без иконв\n" " подршке али изгледа да користите наслеђени знак\n" " подесите „%s“. Очекујте неочекивано.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "УПОЗОРЕЊЕ: Ово издање „openconnect“-а је %s али\n" " библиотека „libopenconnect“ је %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Нисам успео да доделим структуру впнподатака\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Не можете користити опцију „config“ унутар датотеке подешавања\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Не могу да отворим датотеку подешавања „%s“: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Неисправан режим запакивања „%s“\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Нисам успео да доделим меморију\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Недостаје двотачка у опцији решавања\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "МТУ %d је премало\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Искључујем поновно коришћење свих ХТТП веза због опције „--no-http-" "keepalive“.\n" "Ако ово помогне, известите о томе на „“.\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Опција „--no-cert-check“ није била безбедна и уклоњена је.\n" "Исправите ваше уверење сервера или користите „--servercert“ да му верујете.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Нулта дужина реда није дозвољена; користим 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Отворено повезивање издање %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Неисправан режим софтверског модула „%s“\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "УПОЗОРЕЊЕ: Навели сте „%s“. То неће бити\n" " потребно; известите о случају где је потребно превазилажење\n" " ниске хитности за повезивање на сервер\n" " на .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Превише аргумената на линији наредби\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Није наведен сервер\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ово издање отвореног повезивања је изграђено без подршке библиотеке " "посредника\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Није успело стварање ССЛ везе\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Постављање УДП-а није успело; користим ССЛ\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Није достављен аргумент „--script“; ДНС и упућивање нису подешени\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Погледајте „https://www.infradead.org/openconnect/vpnc-script.html“\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Корисник је затражио поновно повезивање\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Сервер је окончао сесију; излазим.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Непозната грешка; излазим.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Нисам успео да отворим „%s“ ради уписа: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Нисам успео да упишем подешавања у „%s“: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Није успело потврђивање уверења са ВПН сервера „%s“.\n" "Разлог: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "Да и даље верујете овом серверу, додајте ово на линију наредби:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Унесите „%s“ да прихватите, „%s“ да прекинете; било шта друго да прегледате: " #: main.c:2464 main.c:2483 msgid "no" msgstr "не" #: main.c:2464 main.c:2470 msgid "yes" msgstr "да" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Хеш серверског кључа: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Избор потврђивања идентитета „%s“ се поклапа са више опција\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Избор потврђивања „%s“ није доступан\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Кориснички улаз је затражен у немеђудејственом режиму\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Нисам успео да отворим датотеку модула ради уписа: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Нисам успео да запишем модул: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Ниска софтверског модула је неисправна\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Не могу да отворим датотеку „stoken“\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Не могу да отворим датотеку „~/.stokenrc“\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Отворено повезивање није изграђено са подршком „libstoken“-а\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Општи неуспех у „libstoken“-у\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Отворено повезивање није изграђено са подршком „liboath“-а\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Општи неуспех у „liboath“-у\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Нисам нашао модул Јуби кључа\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Отворено повезивање није изграђено са подршком Јуби кључа\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Општи неуспех Јуби кључа: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Не могу да отворим датотеку „iodc“\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Општи неуспех у оидц модулу\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Подешавање тун скрипте није успело\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Подешавање тун уређаја није успело\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Позивник је паузирао везу\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Беспослен сам; одспаваћу %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Чекање на више објеката није успело: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Није успело „select()“ у главној петљи" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Покретање контекста безбедности није успело: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Руковање набавком уверења није успело: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Грешка у разговору са „ntlm_auth“ помоћником\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Покушавам ХТТП НТМЛ потврђивање идентитета са посредником (једна-пријава)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Покушавам ХТТП НТМЛ потврђивање идентитета са сервером „%s“ (једна-пријава)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Покушавам ХТТП НТЛМв%d потврђивање идентитета са посредником\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Покушавам ХТТП НТЛМв%d потврђивање идентитета са сервером „%s“\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Неисправна ниска модула основе32\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Нисам успео да доделим меморију за декодирање ОАТХ тајне\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ПСКЦ подршке\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Могуће је стварање ПОЧЕТНОГ кода модула\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Могуће је стварање СЛЕДЕЋЕГ кода модула\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Сервер одбија софтверски модул; прелазим на ручни унос\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Стварам код ОАТХ ТОТП модула\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Стварам код ОАТХ ХОТП модула\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Неочекивана дужина %d за ТЛВ %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Примих МТУ %d са сервера\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Примих ДНС сервер „%s“\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Примих ДНС домен претраге %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Примих унутрашњу ИП адресу %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Примих мрежну маску %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Примих унутрашњу адресу мрежног пролаза %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Примих поделу обухватања руте %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Примих поделу одбацивања руте %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Примих ВИНС сервер „%s“\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ЕСП шифровање: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ЕСП ХМАЦ: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ЕСП запакивање: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ЕСП прикључник: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Време живота ЕСП кључа: %u бајта\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Време живота ЕСП кључа: %u секунде\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Враћање са ЕСП-а на ССЛ: %u секунде\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Заштита ЕСП одговора: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ЕСП СПИ (одлазеће): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d бајта ЕСП тајни\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Непозната ТЛВ група %d атр. %d дуж. %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Нисам успео да обрадим КМП заглавље\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Нисам успео да обрадим КМП поруку\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Добих КМП поруку %d величине %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Примих не-ЕСП ТЛВ-а (група %d) у ЕСП преговора КМП\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Грешка стварања захтева оНЦП преговарања\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Кратко писање у оНЦП преговарању\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Читам %d бајта ССЛ записа\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Неочекивани одговор величине %d након пакета назива домаћина\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Одговор сервера пакету назива домаћина је грешка 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Ово изгледа да указује на то да је сервер искључио подршку за\n" "Џаниперов старији „oNCP“ протокол, и да само дозвољава везе коришћењем\n" "новог Јунос Пулсе протокола. Ово издање Опен Конекта има\n" "ЕКСПЕРИМЕНТАЛНУ подршку за Пулсе користећи “--prot=pulse“\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Неисправан пакет чека на КМП 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Очекивах КМП поруку 301 са сервера али добих %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "КМП порука 301 са сервера је превелика (%d бајта)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Добих КМП поруку 301 величине %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Нисам успео да прочитам дужину записа наставка\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Запис додатна %d бајта је превелик; направићу %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Нисам успео да прочитам запис наставка дужине %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Читам додатна %d бајта КМП 301 поруке\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Грешка преговарања ЕСП кључа\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Одлазно захтев оНЦП преговарања:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "ново долазно" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "ново одлазно" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Читам само 1 бајт оНЦП дужине поља\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Сервер је окончао везу (сесија је истекла)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Сервер је окончао везу (разлог: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Сервер је послао оНЦП запис нулте дужине\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Долазна КМП порука %d величине %d (добих %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Настављам да обрађујем КМП поруку %d сада величине %d (добих %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Непознати пакет података\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Нисам успео да поставим ЕСП: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Непозната КМП порука %d величине %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "…. + %d бајтова непримљених\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Одлазни пакет:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Послах контролни пакет ЕСП укључивања\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ГРЕШКА: „%s()“ је позвано са неисправним УТФ-8 за аргумент „%s“\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Не могу да израчунам ДТЛС прекорачење за „%s“\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Нисам успео да створим насумични кључ\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Нисам успео да направим „SSL_SESSION ASN.1“ за ОпенССЛ: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Опен ССЛ није успео да обради „SSL_SESSION ASN.1“\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Није успело покретање ДТЛСв1 сесије\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Превелика величина ИБ-а програма\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "ПСК повратни позив\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Није успело покретање ДТЛСв1 ЦТХ-а\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Подешавање ДТЛС ЦТИкс издања није успело\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Нисам успео да створим ДТЛС кључ\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Није успело постављање списка ДТЛС шифрера\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "DTLS cipher '%s' not found\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "„SSL_set_session()“ није успело\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" "Успостављена је ДТЛС веза (користим Отворени ССЛ). Комплет шифрера „%s-%s“.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Вероватно зато што је оштећен ваш Отворени ССЛ\n" "Видите „http://rt.openssl.org/Ticket/Display.html?id=2984“\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Није успело ДТЛС руковање: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Нисам успео да покренем ЕСП шифрера:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Нисам успео да покренем ЕСП ХМАЦ\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Нисам успео да подесим контекст дешифровања за ЕСП пакет:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Нисам успео да дешифрујем ЕСП пакет:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Нисам успео да шифрујем ЕСП пакет:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Нисам успео да успоставим либп11 ПКЦС#11 контекст:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Нисам успео да учитам модул ПКЦС#11 достављача (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "ПИН је закључан\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "ПИН је истекао\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Други корисник је већ пријављен\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Непозната грешка пријављивања на ПКЦС#11 модул\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Пријављен сам на ПКЦС#11 прикључак „%s“\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Нисам успео да набројим уверења у ПКЦС#11 прикључку „%s“\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Нађох %d уверења у прикључку „%s“\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Нисам успео да обрадим ПКЦС#11 путању „%s“\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Нисам успео да набројим ПКЦС#11 прикључке\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Пријављујем се на ПКЦС#11 прикључак „%s“\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Нисам успео да нађем ПКЦС#11 уверење „%s“\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "либп11 није довукла садржај Х.509 уверења\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Нисам успео да набројим кључеве у ПКЦС#11 прикључку „%s“\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Нађох %d кључа у прикључку „%s“\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Уверење нема јавни кључ\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Уверење не одговара личном кључу\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Провера ЕЦ кључа одговара уверењу\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Нисам успео да доделим међумеморију потписа\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Нисам успео да потпишем лажне податке да бих потврдио ЕЦ кључ\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Нисам успео да нађем ПКЦС#11 кључ „%s“\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ово издање Отвореног повезивања је изграђено без ПКЦС#11 подршке\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Непозната врста захтева КС ССЛ-а %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "ПЕМ лозинка је предуга (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Учитавање личног кључа није успело\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Нисам успео да инсталирам уверење у ОпенССЛ контекст\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Додатно уверење из „%s“: %s\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Није успела обрада ПКЦС#12 (видите грешке изнад)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "ПКЦС#12 не садржи уверење!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "ПКЦС#12 не садржи лични кључ!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "ПКЦС#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Не могу да учитам ТПМ погон.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Нисам успео да покренем ТПМ погон\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Нисам успео да подесим ТПМ СРК лозинку\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Нисам успео да учитам ТПМ лични кључ\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Нисам успео да отворим датотеку уверења „%s“: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Нисам успео да учитам уверење\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Нисам успео да обрадим сва подржавајућа уверења. Ипак покушавам...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "ПЕМ датотека" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Нисам успео да направим БИО за ставку смештаја кључева „%s“\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Учитавање личног кључа није успело (погрешна лозинка?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Учитавање личног кључа није успело (видите грешке изнад)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Нисам успео да учитам Х509 уверење из смештаја кључа\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Нисам успео да отворим датотеку личног кључа „%s“: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Нисам успео да претворим ПКЦС#8 у ОпенССЛ ЕВП_ПКЉУЧ\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Нисам успео да одредим врсту личног кључа у „%s“\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Поклопих ДНС заменски назив „%s“\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Нема поклапања за заменски назив „%s“\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Уверење има заменски назив „GEN_IPADD“ са привидном дужином %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Поклопљена је %s адреса „%s“\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Нема поклапања за %s адресу „%s“\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Путања „%s“ има не-празну путању; занемарујем\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Одговарајућа путања „%s“\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Нема поклапања за путању „%s“\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Нема одговарајућег заменског назива у уверењу парњака „%s“\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Нема назива теме у уверењу парњака!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Нисам успео да обрадим назив теме у уверењу парњака\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Тема уверења парњака не одговара ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Одговарајући назив теме уверења парњака „%s“\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Додатно уверење из датотеке издавача уверења: %s\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Грешка у пољу „није_након“ у уверењу клијента\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "<грешка>" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "ССЛ уверење и кључ се не подударају\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Нисам успео да прочитам уверења из датотеке издавача уверења „%s“\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Нисам успео да отворим датотеку издавача уверења „%s“\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Стварање ТЛСв1 ЦТИкс-а није успело\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Нисам успео да поставим списак шифрера Отвореног ССЛ-а (%s)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Неуспех ССЛ везе\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Нисам успео да израчунам ОАТХ ХМАЦ\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "ЕАП-ТТЛС преговарање са „%s“\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Неуспех ЕАП-ТТЛС везе %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Примих унутрашњу стару ИП адресу „%s“\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Нисам успео да радим са ИПв6 адресом\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Примих унутрашњу ИПв6 адресу „%s“\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Примих ИПв6 поделу укључивања „%s“\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Примих ИПв6 поделу искључивања „%s“\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Неочекивана дужина %d за атрибут 0×%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ЕСП шифровање: 0×%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ЕСП ХМАЦ: 0×%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Само ЕСП: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Непознат атрибут 0×%x дужине %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Читам %d бајта ИФ-Т/ТЛС записа\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Кратко писање у ИФ-Т/ТЛС\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Грешка ставарња ИФ-Т пакета\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Грешка ставарња ЕАП пакета\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Неочекиван изазов ИФ-Т/ТЛС потврђивања идентитета:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Неочекивани ЕАП-ТТЛС утовар:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "АВП 0×%x/0×%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "АВП %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Упишите домен Пулсе корисника:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Домен:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Изаберите домен Пулсе корисника:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Нисам успео да обрадим АВП\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Достигнуто је ограничење сесије. Изаберите сесију за гашење:\n" #: pulse.c:875 msgid "Session:" msgstr "Сесија:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Нисам успео да обрадим списак сесије\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Упишите друге особености:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Упишите корисникове особености:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Друго корисничко име:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Корисничко име:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Лозинка:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Друга лозинка:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Лозинка је истекла. Промените лозинку:" #: pulse.c:1085 msgid "Current password:" msgstr "Садашња лозинка:" #: pulse.c:1090 msgid "New password:" msgstr "Нова лозинка:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Провери нову лозинку:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Нисте доставили лозинку.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Лозинке се не подударају.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Садшња лозинка је предуга.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Нова лозинка је предуга.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Захтев шифре модула:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Упишите одговор:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Упишите вашу пропусну шифру:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Упишите вашу резервну скупину информација:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Грешка стварања захтева Пулсе повезивања\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Неочекивани одговор преговарања ИФ-Т/ТЛС издања:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "ИФ-Т/ТЛС издање са сервера: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Нисам успео да успоставим ЕАП-ТТЛС сесију\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "УПОЗОРЕЊЕ: Уверење МД5 које је доставио сервер не одговара његовом стварном " "уверењу.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Неуспех потврђивања идентитета: Налог је закључан\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Неуспех потврђивања идентитета: Шифра 0×%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Непозната вредност 0×%x Д73 упита. Поставићу упит и за корисничко име и за " "лозинку.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Пријавите ову вредност и понашање званичног клијента.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Неуспех потврђивања идентитета: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Пулсе сервер је затражио проверивача домаћина; још није подржано\n" "Покушајте режим Џанипера (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Необрађен пакет Пулсе потврђивања идентитета, или неуспех потврђивања " "идентитета\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Колачић Пулсе потврђивања идентитета није прихваћен\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Унос Пулсе домена\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Избор Пулсе домена\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Пулсе захтев потврђивања идентитета лозинком, шифра 0×%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "Пулсе захтев лозиинке са непознатом шифром 0×%02x. Пријавите ово.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Захтев шифре општег модула Пулсе лозинке\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Ограничење Пулсе сесије, %d сесије\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Необрађен захтев Пулсе потврђивања идентитета\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Неочекиван одговор уместо успеха ИФ-Т/ТЛС потврђивања идентитета:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "ЕАП-ТТЛС неуспех: Дајем излаз са чекајућим бајтовима уноса\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Грешка ставарња ЕАП-ТТЛС међумеморије\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Нисам успео да читам ЕАП-ТТЛС потврду: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Читам %d бајта ИФ-Т/ТЛС ЕАП-ТТЛС записа\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Лош пакет ЕАП-ТТЛС потврде\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Лош ЕАП-ТТЛС пакет (дужина %d, преостало је %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Неочекивани пакет Пулсе подешавања:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Примих руту непознате врсте 0×%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Неисправан пакет ЕСП подешавања:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Неисправна ЕСП поставка\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Лош ИФ-Т/ТЛС пакет када очекујем подешавање:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Неочекиван ИФ-Т/ТЛС пакет када очекујем подешавање.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "ЕСП поновни кључ није успео\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Непознат Пулсе пакет\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Шаљем пакет ИФ-Т/ТЛС података од %d бајта\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Одбацујем укључивања лоше поделе: „%s“\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Одбацујем искључивања лоше поделе: „%s“\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "УПОЗОРЕЊЕ: Подела укључивања „%s“ садржи скуп битова домаћина, замењујем са " "„%s/%d“.\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "УПОЗОРЕЊЕ: Подела искључивања „%s“ садржи скуп битова домаћина, замењујем са " "„%s/%d“.\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Занемарујем стару мрежу јер је адреса „%s“ неисправна.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "Занемарујем стару мрежу јер је мрежна маска „%s“ неисправна.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Нисам успео да изродим скрипту „%s“ за %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Скрипта „%s“ је изашла неисправно (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Скрипта „%s“ је дала грешку %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Није успело „select()“ за повезивање прикључнице" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Повезивање прикључнице је отказано\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Није успело „setsockopt(TCP_NODELAY)“ на ТЛС прикључници:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Нисам успео поново да се повежем са посредником „%s“: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Нисам успео поново да се повежем са домаћином „%s“: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Посредник из библиотеке посредника: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Добављање података адресе није успело за домаћина „%s“: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Поново се повезујем на ДинДНС сервер користећи претходно причувану ИП " "адресу\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Покушавам да се повежем са посредником %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Покушавам да се повежем са сервером %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Повезан сам са %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Нисам успео да доделим смештај адресе прикључнице\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Нисам успео да се повежем на %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Заборављам не-делотворну адресу преходног парњака\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Нисам успео да се повежем са домаћином „%s“\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Поново се повезујем са посредником „%s“\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Не могу да добијем ИБ система датотека за лозинку\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Нисам успео да отворим датотеку личног кључа „%s“: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Нема грешке" #: ssl.c:727 msgid "Keystore locked" msgstr "Смештај кључа је закључан" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Смештај кључа није покренут" #: ssl.c:729 msgid "System error" msgstr "Грешка система" #: ssl.c:730 msgid "Protocol error" msgstr "Грешка протокола" #: ssl.c:731 msgid "Permission denied" msgstr "Приступ је одбијен" #: ssl.c:732 msgid "Key not found" msgstr "Нисам нашао кључ" #: ssl.c:733 msgid "Value corrupted" msgstr "Вредност је оштећена" #: ssl.c:734 msgid "Undefined action" msgstr "Неодређена радња" #: ssl.c:738 msgid "Wrong password" msgstr "Погрешна лозинка" #: ssl.c:739 msgid "Unknown error" msgstr "Непозната грешка" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Није успело „select()“ за прикључницу наредбе" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Нисам успео да отворим „%s“: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Не могу да добијем податке о „%s“: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Датотека „%s“ је празна\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Нисам успео да доделим %d бајта за „%s“\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Нисам успео да прочитам „%s“: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Непозната породица протокола %d. Не могу да направим адресу УДП сервера\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Отварам УДП прикључницу" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Непозната породица протокола %d. Не могу да користим УДП пренос\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Свезујем УДП прикључницу" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Чини УДП прикључницу неблокирајућом" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Колачић није више исправан, завршавам сесију\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "спавам %d сек., преостало време истека %d сек.\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Није успело „select()“ за слање прикључнице" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Није успело „select()“ за пријем прикључнице" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "ССПИ модул је превелик (%ld бајта)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Шаљем ССПИ модул од %lu бајта\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Нисам успео да пошаљем ССПИ модул потврђивања идентитета посреднику: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Нисам успео да примим ССПИ модул потврђивања идентитета од посредника: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "СОЦКС сервер је известио о неуспеху ССПИ контекста\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Непознат одговор ССПИ стања (0х%02x) са СОЦКС сервера\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Добих ССПИ модул од %lu бајта: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Пропитивање контекстних атрибута није успело: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Шифровање поруке није успело: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Резултат шифроване поруке је превелик (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Шаљем преговор ССПИ заштите од %u бајта\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Нисам успео да пошаљем одговор ССПИ заштите посреднику: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Нисам успео да примим одговор ССПИ заштите од посредника: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Добих одговор ССПИ заштите од %d бајта: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Дешифровање поруке није успело: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Неисправан одговор ССПИ заштите са посредника (%lu бајта)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Унесите уверења за откључавање софтверског модула." #: stoken.c:107 msgid "Device ID:" msgstr "ИБ уређаја:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Корисник је заобишао софтверски модул.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Сва поља су обавезна; покушајте опет.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Општи неуспех у „libstoken“-у.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Неисправан ИБ уређаја или лозинка; покушајте поново.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Покретање софтверског модула је успело.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Унесите ПИН софтверског модула." #: stoken.c:212 msgid "PIN:" msgstr "ПИН:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Неисправан запис ПИН-а; покушајте поново.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Стварам код РСА модула\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Грешка приступа кључу регистра за мрежним прилагођивачима\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Не могу да прочитам „%s\\%s“ или није ниска\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Нађох „%s“ на „%s“\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Не могу да отворим кључ регистра „%s“\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "Не могу да прочитам кључ регистра „%s\\%s“ или није ниска\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "Није успело „GetAdapterIndex()“: %s\n" "Пребацујем се на „GetAdaptersInfo()“\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "Није успело „GetAdaptersInfo()“: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Нисам успео да отворим „%s“\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Нисам успео да добијем издање ТАП управљачког програма: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Грешка: Потребан је управљачки програм ТАП-Виндоуза v9.9 или већи (нађох %ld." "%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Нисам успео да подесим ТАП ИП адресе: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Нисам успео да подесим стање ТАП медија: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "ТАП уређај је прекинуо повезивост. Прекидам везу.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Нисам успео да читам са ТАП уређаја: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Нисам успео да довршим читање са ТАП уређаја: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Записах %ld бајта на туну\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Чекам на записивање туна...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Записах %ld бајта на туну након чекања\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Нисам успео да пишем на ТАП уређај: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Израђање тунелских скрипти још није подржано на Виндоузу\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Не могу да отворим „/dev/tun“ за омрежење" #: tun.c:92 msgid "Can't push IP" msgstr "Не могу да погурам ИП" #: tun.c:102 msgid "Can't set ifname" msgstr "Не могу да подесим „ifname“" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Не могу да омрежим „%s“ за ИПв%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "отварам „/dev/tun“" #: tun.c:145 msgid "Failed to create new tun" msgstr "Нисам успео да направим нови тун" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Нисам успео да ставим описник тун датотеке у режим одбацивања поруке" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "тун уређај није подржан на овој платформи\n" #: tun.c:205 msgid "open net" msgstr "отварам мрежу" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Не могу да отворим тун уређај: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Нисам успео да свежем месни тун уређај (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "За подешавање месног умрежавања, опенконект мора бити покренут као " "администратор\n" "Видите „https://www.infradead.org/openconnect/nonroot.html“ за више " "података\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Неисправан назив уређаја „%s“; мора да буде „utun%%d“ или „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Нисам успео да отворим „SYSPROTO_CONTROL“ прикључницу: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Нисам успео да пропитам иб контроле утуна: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Нисам успео да доделим назив утун уређаја\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Нисам успео да повежем утун јединицу: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Неисправан назив уређаја „%s“; мора да буде „tun%%d“\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Не могу да отворим „%s“: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Нисам успео да учиним тун прикључницу неблокирајућом: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "Није успело упаривање утичнице: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "исцепљивање није успело: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(скрипта)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Нисам успео да запишем пристигли пакет: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Сматрам домаћина „%s“ за сирови назив домаћина\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Нисам успео да СХА1 постојећу датотеку\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "СХА1 датотеке ИксМЛ подешавања: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Нисам успео да обрадим датотеку ИксМЛ подешавања „%s“\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Домаћин „%s“ има адресу „%s“\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Домаћин „%s“ има корисничку групу „%s“\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Домаћин „%s“ није наведен у подешавањима; сматрам га сировим називом " "домаћина\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Нисам успео да пошаљем „%s“ до програмчета „ykneo-oath“: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Неисправан кратак одговор за „%s“ од програмчета „ykneo-oath“\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Неуспели одговор за „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "изабери наредбу програмчета" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Непознат одговор од програмчета „ykneo-oath“\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Нашао сам програмче „ykneo-oath“ и%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Потребан је ПИН за ОАТХ програмче Јуби кључа" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "ПИН Јуби кључа:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Нисам успео да израчунам одговор откључавања Јуби кључа\n" #: yubikey.c:274 msgid "unlock command" msgstr "наредба откључавања" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Покушавам ПБКБФ2 варијанту скраћеног-знака Јубики ПИН-а\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Нисам успео да успоставим ПЦ/СЦ контекст: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "ПЦ/СЦ контекст је упсостављен\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Нисам успео да пропитам списак читача: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Нисам успео да се повежем са ПЦ/СЦ читачем „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Повезан је ПЦ/СЦ читач „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Нисам успео да добијем искључиви приступ читачу „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "наредба списка кључева" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Нађох %s/%s кљзч „%s“ на „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Нисам нашао модул „%s“ на Јуби кључу „%s“. Тражим други Јуби кључ...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Сервер одбија модул Јуби кључа; прелазим на ручни унос\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Стварам код модула Јуби кључа\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Нисам успео да добијем искључиви приступ Јуби кључу: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "наредба израчунавања" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Непознат одговор са Јуби кључа приликом стварања кода модула\n" openconnect-8.20/po/el.po0000644000076400007640000047321614204456067017133 0ustar00dwoodhoudwoodhou00000000000000# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # Jennie Petoumenou , 2008. # Michael Kotsarinis , 2011. # Dimitris Spingos (Δημήτρης Σπίγγος) , 2013. msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect.HEAD.el\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2014-06-18 13:17+0200\n" "Last-Translator: Tom Tryfonidis \n" "Language-Team: team@gnome.gr\n" "Language: el\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Poedit 1.6.5\n" "X-Project-Style: gnome\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Αναπάντεχο αποτέλεσμα %d από διακομιστή\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "Το SSL έγραψε υπερβολικά λίγες bytes! Ζητήθηκαν %d, στάλθηκαν %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Αναμενόμενη αλλαγή κλειδιού CSTP\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Αποστολή πακέτου ασυμπίεστων δεδομένων από %d bytes\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Προσπάθεια νέας σύνδεσης DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Ελήφθη πακέτο DTLS 0x%02x από %d bytes\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Αναμενόμενη αλλαγή κλειδιού DTLS\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Η αναγνώριση νεκρού ομότιμου DTLS ανίχνευσε νεκρό ομότιμο!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Αποστολή DPD DTLS\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Αποτυχία αποστολής αιτήματος DPD. Αναμένεται αποσύνδεση\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Αποστολή πακέτου DTLS από %d bytes· η αποστολή DTLS επέστρεψε %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Αδύνατος ο χειρισμός της φόρμας μεθόδου='%s', ενέργεια='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Η φόρμα δεν έχει κανένα όνομα\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "Χωρίς όνομα %s στην είσοδο\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Χωρίς τύπο εισόδου στη φόρμα\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Χωρίς όνομα εισόδου στη φόρμα\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Άγνωστος τύπος εισόδου %s στη φόρμα\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Κενή απάντηση από διακομιστή\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Αποτυχία ανάλυσης απάντησης διακομιστή.\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Η απάντηση ήταν:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Λήψη , ενώ δεν αναμενόταν.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Η απάντηση XML δεν έχει κανένα κόμβο \"πιστοποίησης\"\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Ζητήθηκε κωδικός πρόσβασης, αλλά έχει οριστεί '--no-passwd'\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Αποτυχία ανοίγματος σύνδεσης HTTPS σε %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Αποτυχία αποστολής αιτήματος GET για νέα διαμόρφωση\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Το ληφθέντο αρχείο ρυθμίσεων δεν ταιριάζει με το προοριζόμενο SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Αποτυχία αλλαγής σε προσωπικό κατάλογο CSD '%s': %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Σφάλμα: Ο διακομιστής ζήτησε την εκτέλεση της σάρωσης κεντρικού υπολογιστή " "CSD.\n" "Χρειάζεται να δώσετε ένα κατάλληλο όρισμα --csd-wrapper.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Σφάλμα: Ο διακομιστής ζήτησε τη λήψη και εκτέλεση ενός δούρειου ίππου " "'ασφαλούς επιφάνειας εργασίας Cisco'.\n" "Αυτή η διευκόλυνση είναι ανενεργή από προεπιλογή για λόγους ασφάλειας, έτσι " "μπορεί να θέλετε να την ενεργοποιήσετε.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Αποτυχία ανοίγματος προσωρινού αρχείου δέσμης ενεργειών CSD: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Αποτυχία εγγραφής προσωρινού αρχείου δέσμης ενεργειών CSD: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Προειδοποίηση: εκτελείτε επισφαλή κώδικα CSD με δικαιώματα υπερχρήστη\n" " Χρησιμοποιήστε την επιλογή γραμμής εντολών \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Αποτυχία εκτέλεσης δέσμης ενεργειών CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Άγνωστη απάντηση από διακομιστή\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Ο διακομιστής ζήτησε πιστοποιητικό πελάτη SSL μετά την παροχή ενός\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Ο διακομιστής ζήτησε πιστοποιητικό πελάτη SSL· κανένα δεν ρυθμίστηκε\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "Ενεργοποίηση POST XML\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Ανανέωση του %s μετά από 1 δευτερόλεπτο...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "ΣΦΑΛΜΑ: Αδύνατη η αρχικοποίηση υποδοχών\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Σφάλμα κατά την προσκόμιση απάντησης HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Η υπηρεσία VPN δεν είναι διαθέσιμη· αιτία: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Λήψη ακατάλληλης απάντησης HTTP CONNECT: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Λήψη απάντησης CONNECT: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Χωρίς μνήμη για επιλογές\n" #: cstp.c:416 http.c:313 msgid "" msgstr "<παραλειπόμενο>" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" "Το αναγνωριστικό συνεδρίας X-DTLS δεν είναι 64 χαρακτήρες· είναι: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Άγνωστη κωδικοποίηση περιεχομένου CSTP %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Δεν ελήφθη MTU. Ματαίωση\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Συνδέθηκε το CSTP. DPD %d, διατήρηση σύνδεσης %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Αποτυχία ρύθμισης συμπίεσης\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Αποτυχία κατανομής ενδιάμεσης μνήμης συμπίεσης\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "Αποτυχία αποσυμπίεσης\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "Αποτυχία συμπίεσης %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Αναπάντεχο μήκος πακέτου. Η ανάγνωση_SSL επέστρεψε %d αλλά το πακέτο είναι\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Λήψη αιτήματος DPD CSTP\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Λήψη απάντησης DPD CSTP\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Λήψη διατήρησης σύνδεσης του CSTP\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Λήψη πακέτου ασυμπίεστων δεδομένων από %d bytes\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Λήψη αποσύνδεσης διακομιστή: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Λήψη συμπιεσμένου πακέτου! κατάσταση συμπίεσης\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "Λήψη πακέτου τερματισμού διακομιστή\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Άγνωστο πακέτο %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Η αναγνώριση νεκρού ομότιμου CSTP ανίχνευσε νεκρό ομότιμο!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Αποτυχία επανασύνδεσης\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Αποστολή DPD CSTP\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Αποστολή διατήρησης σύνδεσης CSTP\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Αποστολή πακέτου BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Χωρίς διεύθυνση DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Ο διακομιστής δεν προσέφερε επιλογή κρυπτογράφησης DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Χωρίς DTLS κατά τη σύνδεση μέσα από διαμεσολαβητή\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "Αρχικοποίηση DTLS. DPD %d, διατήρηση σύνδεσης %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Λήψη άγνωστου πακέτου (μήκους %d): %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Λήψη αιτήματος DPD DTLS\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Αποτυχία αποστολής απάντησης DPD. Αναμένεται αποσύνδεση\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Λήψη απάντησης DPD DTLS\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Λήψη διατήρησης σύνδεσης του DTLS\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Άγνωστος τύπος πακέτου DTLS %02x, μήκος %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Αποστολή διατήρησης σύνδεσης DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Αποτυχία αποστολής αιτήματος διατήρησης σύνδεσης. Αναμένεται αποσύνδεση\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Άγνωστες παράμετροι DTLS για το ζητούμενο CipherSuite '%s'\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Αποτυχία ορισμού παραμέτρων συνεδρίας DTLS: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Αποτυχία ορισμού DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Επίτευξη σύνδεσης DTLS (με χρήση του GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Λήξη χρόνου χειραψίας DTLS\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Αποτυχία χειραψίας DTLS: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Αδυναμία εξαγωγής του χρόνου λήξης του πιστοποιητικού\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Το πιστοποιητικό πελάτη έχει λήξει στις" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Το πιστοποιητικό πελάτη λήγει σύντομα στις" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Αποτυχία φόρτωσης στοιχείου '%s' από την αποθήκη κλειδιών: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου κλειδιού/πιστοποιητικού %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Αποτυχία stat αρχείου κλειδιού/πιστοποιητικού %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Αποτυχία κατανομής ενδιάμεσης μνήμης πιστοποιητικού\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικού στη μνήμη: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Αποτυχία ρύθμισης δομής δεδομένων PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Αποτυχία αποκρυπτογράφησης αρχείου πιστοποιητικού PKCS#12\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Εισαγωγή συνθηματικού PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Αποτυχία επεξεργασίας αρχείου PKCS#12: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού PKCS#12: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Αδυναμία αρχικοποίησης του κατακερματισμού MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Σφάλμα κατακερματισμού MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" "Λείπουν πληροφορίες DEK: η κεφαλίδα από το κρυπτογραφημένο κλειδί OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Αδύνατος ο προσδιορισμός τύπου κρυπτογράφησης PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Μη υποστηριζόμενος τύπος κρυπτογράφησης PEM: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Άκυρο αλάτι σε κρυπτογραφημένο αρχείο PEM\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Σφάλμα κρυπτογραφημένου αρχείου PEM με αποκωδικοποίηση base64: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Το κρυπτογραφημένο αρχείο PEM είναι υπερβολικά σύντομο\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Αποτυχία αρχικοποίησης κρυπτογράφησης για αποκρυπτογράφηση αρχείου PEM: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Αποτυχία αποκρυπτογράφησης κλειδιού PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Αποτυχία αποκρυπτογράφησης κλειδιού PEM\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Εισαγωγή συνθηματικού PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Αυτό το εκτελέσιμο δημιουργήθηκε χωρίς υποστήριξη PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Χρήση πιστοποιητικού PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Σφάλμα κατά τη φόρτωση πιστοποιητικού από PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Χρήση αρχείου πιστοποιητικού %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "Το αρχείο PKCS#11 δεν περιείχε κανένα πιστοποιητικό\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Δεν βρέθηκε κανένα πιστοποιητικό στο αρχείο" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Σφάλμα κατά την αρχικοποίηση δομής ιδιωτικού κλειδιού: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Σφάλμα κατά την αρχικοποίηση δομής κλειδιού PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Σφάλμα κατά την εισαγωγή URL PKCS#11 %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Χρήση κλειδιού %s PKCS#11\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Σφάλμα εισαγωγής του κλειδιού PKCS#11 στην δομή ιδιωτικού κλειδιού: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Χρήση αρχείου ιδιωτικού κλειδιού %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Αυτή η έκδοση του openconnect δομήθηκε χωρίς υποστήριξη TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Αποτυχία ερμηνείας του αρχείου PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού PKCS#1: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού ως PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Αποτυχία αποκρυπτογράφησης αρχείου πιστοποιητικού PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Αποτυχία προσδιορισμού τύπου ιδιωτικού κλειδιού %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Εισαγωγή συνθηματικού PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Αποτυχία λήψης αναγνωριστικού κλειδιού: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Σφάλμα υπογραφής δεδομένων ελέγχου με ιδιωτικό κλειδί: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Σφάλμα εγκυρότητας υπογραφής στο πιστοποιητικό: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" "Δεν βρέθηκε κανένα πιστοποιητικό SSL που να ταιριάζει με το ιδιωτικό κλειδί\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Χρήση πιστοποιητικού πελάτη '%s'\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Αποτυχία κατανομής μνήμης για πιστοποιητικό\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Ελήφθη επόμενο CA '%s' από το PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Αποτυχία κατανομής μνήμης για υποστήριξη πιστοποιητικών\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Προσθήκη υποστήριξης CA '%s'\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Αποτυχία εισαγωγής πιστοποιητικού X509: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Αποτυχία ρύθμισης πιστοποιητικού PKCS#11: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Αποτυχία ορισμού λίστας ανάκλησης πιστοποιητικού: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Αποτυχία ορισμού πιστοποιητικού: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Ο διακομιστής δεν παρουσίασε κανένα πιστοποιητικό\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Σφάλμα αρχικοποίησης δομής πιστοποιητικού X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Σφάλμα εισαγωγής πιστοποιητικού διακομιστή\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Σφάλμα ελέγχου κατάστασης πιστοποιητικού διακομιστή\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "Το πιστοποιητικό ανακλήθηκε" #: gnutls.c:2098 msgid "signer not found" msgstr "Ο υπογράφων δεν βρέθηκε" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "Ο υπογράφων δεν έχει πιστοποιητικό CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "Επισφαλής αλγόριθμος" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "Το πιστοποιητικό δεν έχει ακόμη ενεργοποιηθεί" #: gnutls.c:2106 msgid "certificate expired" msgstr "το πιστοποιητικό έληξε" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "Αποτυχία επιβεβαίωσης υπογραφής" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "Το πιστοποιητικό δεν ταιριάζει με το όνομα του κεντρικού υπολογιστή" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Αποτυχία επιβεβαίωσης πιστοποιητικού διακομιστή: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Αποτυχία κατανομής μνήμης για πιστοποιητικά αρχείου ca\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικών από αρχείο ca: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Αποτυχία ανοίγματος αρχείου CA '%s': %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού. Ματαίωση.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Διαπραγμάτευση SSL με %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Ακύρωση σύνδεσης SSL\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Αποτυχία σύνδεσης SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS μη μοιραία επιστροφή κατά τη διάρκεια χειραψίας: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Απαιτείται PIN για το %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Εσφαλμένο PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Αυτή είναι η τελική προσπάθεια πριν το κλείδωμα!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Μόνο λίγες προσπάθειες έμειναν πριν το κλείδωμα!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Εισαγωγή PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Η συνάρτηση υπογραφής κάλεσε %d bytes.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Αποτυχία δημιουργίας αντικειμένου κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Αποτυχία ορισμού τιμής σε αντικείμενο κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Αποτυχία υπογραφής κατακερματισμού TPM: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" "Σφάλμα αποκωδικοποίησης κλειδιού TSS μεγάλου δυαδικού αντικειμένου: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Σφάλμα στο κλειδί TSS μεγάλου δυαδικού αντικειμένου\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Αποτυχία δημιουργίας περιεχομένου TPM: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Αποτυχία σύνδεσης περιεχομένου TPM: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Αποτυχία φόρτωσης κλειδιού SRK TPM: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Αποτυχία φόρτωσης αντικειμένου πολιτικής SRK TPM: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Αποτυχία ορισμού PIN TPM: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Αποτυχία φόρτωσης κλειδιού TPM μεγάλου δυαδικού αντικειμένου: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Εισαγωγή PIN SRK TPM:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Αποτυχία δημιουργίας αντικειμένου πολιτικής κλειδιού: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Αποτυχία απόδοσης πολιτικής στο κλειδί: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Εισαγωγή PIN κλειδιού TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Αποτυχία ορισμού PIN κλειδιού: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Χωρίς μνήμη για κατανομή cookie\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Αποτυχία ανάλυσης απάντησης HTTP '%s'\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Λήψη απάντησης HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Παράβλεψη άγνωστης γραμμής απάντησης HTTP '%s'\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Προσφορά άκυρου cookie: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Αποτυχία επικύρωσης πιστοποιητικού SSL\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Το σώμα της απόκρισης έχει αρνητικό μέγεθος (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Άγνωστη κωδικοποίηση μεταφοράς: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Σώμα HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Σφάλμα κατά την ανάγνωση σώματος απάντησης HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Σφάλμα κατά την προσκόμιση κεφαλίδας τμήματος\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Σφάλμα κατά την προσκόμιση σώματος απάντησης HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Αδύνατη η λήψη σώματος HTTP 1.0 χωρίς κλείσιμο της σύνδεσης\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Αποτυχία ανάλυσης ανακατεύθυνσης URL '%s': %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Αδύνατη η παρακολούθηση ανακατεύθυνσης σε μη https URL '%s'\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Αποτυχία κατανομής νέας διαδρομής για σχετική ανακατεύθυνση: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "Δόθηκε αίτημα" #: http.c:1003 msgid "general failure" msgstr "Γενική αποτυχία" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "Η σύνδεση δεν επιτρέπεται από το σύνολο των κανόνων." #: http.c:1005 msgid "network unreachable" msgstr "Απροσπέλαστο δίκτυο" #: http.c:1006 msgid "host unreachable" msgstr "Απροσπέλαστος κεντρικός υπολογιστής" #: http.c:1007 msgid "connection refused by destination host" msgstr "Άρνηση σύνδεσης από τον κεντρικό υπολογιστή προορισμού" #: http.c:1008 msgid "TTL expired" msgstr "Έληξε το TTL" #: http.c:1009 msgid "command not supported / protocol error" msgstr "Εντολή που δεν υποστηρίζεται / σφάλμα πρωτοκόλλου" #: http.c:1010 msgid "address type not supported" msgstr "Δεν υποστηρίζεται αυτός ο τύπος διεύθυνσης" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την εγγραφή αιτήματος πιστοποίησης σε διαμεσολαβητή SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την ανάγνωση απάντησης πιστοποίησης από τον διαμεσολαβητή SOCKS: " "%s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Αναπάντεχη απάντηση πιστοποίησης από τον διαμεσολαβητή SOCKS: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Αίτημα σύνδεσης διαμεσολαβητή SOCKS στο %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την εγγραφή αιτήματος σύνδεσης σε διαμεσολαβητή SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Σφάλμα κατά την ανάγνωση απάντησης σύνδεσης από τον διαμεσολαβητή SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Αναπάντεχη απάντηση σύνδεσης από τον διαμεσολαβητή SOCKS: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Σφάλμα διαμεσολαβητή SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Σφάλμα διαμεσολαβητή SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Αναπάντεχος τύπος διεύθυνσης %02x σε απάντηση σύνδεσης SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Αίτημα σύνδεσης διαμεσολαβητή HTTP στο %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Αποτυχία αιτήματος αποστολής διαμεσολαβητή: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Άγνωστος τύπος διαμεσολαβητή '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Υποστηρίζονται μόνο διαμεσολαβητές http ή socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Δόμηση στη βιβλιοθήκη SSL χωρίς υποστήριξη DTLS Cisco\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Δεν ελήφθη διεύθυνση IP. Ματαίωση\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "Η επανασύνδεση έδωσε διαφορετική κληρονομημένη διεύθυνση IP (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Η επανασύνδεση έδωσε διαφορετική κληρονομημένη μάσκα δικτύου IP (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Η επανασύνδεση έδωσε διαφορετική διεύθυνση IPv6 (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Η επανασύνδεση έδωσε διαφορετική μάσκα δικτύου IPv6 (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Αποτυχία ανάλυσης διακομιστή URL '%s'.\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Μόνο https:// επιτρέπονται για διακομιστή URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Χωρίς χειριστή μορφής· αδύνατη η πιστοποίηση.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Αποτυχία κατανομής για συμβολοσειρά από την τυπική είσοδο\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Δεν είναι παρόν το OpenSSL ENGINE" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (τυπική είσοδος)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Χρήση: openconnect [επιλογές] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "Ανάγνωση επιλογών από το αρχείο ρυθμίσεων" #: main.c:914 msgid "Report version number" msgstr "Αναφορά αριθμού έκδοσης" #: main.c:915 msgid "Display help text" msgstr "Εμφάνιση κειμένου βοήθειας" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Ορισμός ονόματος χρήστη της σύνδεσης" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Απενεργοποίηση επικύρωσης κωδικού πρόσβασης/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Να μην αναμένεται είσοδος χρήστη· έξοδος αν απαιτείται" #: main.c:923 msgid "Read password from standard input" msgstr "Ανάγνωση κωδικού πρόσβασης από την τυπική είσοδο" #: main.c:924 msgid "Choose authentication login selection" msgstr "Επιλέξτε επικύρωση επιλογής σύνδεσης" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Χρήση του πιστοποιητικού πελάτη SSL CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Χρήση αρχείου ιδιωτικού κλειδιού SSL KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Προειδοποίηση όταν ο χρόνος ζωής του πιστοποιητικού < ΗΜΕΡΕΣ" #: main.c:929 msgid "Set login usergroup" msgstr "Ορισμός σύνδεσης ομάδας χρηστών" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ορισμός συνθηματικού κλειδιού ή TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Το συνθηματικό του κλειδιού είναι fsid του συστήματος αρχείων" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(ΣΗΜΕΙΩΣΗ: απενεργοποίηση του libstoken (RSA SecurID) σε αυτή τη δόμηση)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "Αρχείο πιστοποίησης για επιβεβαίωση διακομιστή" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Ορισμός διακομιστή διαμεσολάβησης" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "Απενεργοποίηση διαμεσολαβητή" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Χρήση του libproxy για αυτόματη ρύθμιση του διαμεσολαβητή" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(ΣΗΜΕΙΩΣΗ: απενεργοποιήθηκε το libproxy σε αυτή τη δόμηση)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Όριο χρόνου επαναπροσπάθειας σύνδεσης σε δευτερόλεπτα" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Ανάγνωση cookie από την τυπική είσοδο" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Πιστοποίηση μόνο και εκτύπωση πληροφοριών σύνδεσης" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Συνέχιση στο παρασκήνιο μετά την έναρξη" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Εγγραφή του PID του δαίμονα σε αυτό το αρχείο" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Απόρριψη προνομίων μετά τη σύνδεση" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Χρήση του syslog για μηνύματα προόδου" #: main.c:978 msgid "More output" msgstr "Περισσότερη έξοδος" #: main.c:979 msgid "Less output" msgstr "Λιγότερη έξοδος" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Αποτύπωση κυκλοφορίας πιστοποίησης HTTP (υπονοεί --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Πρόταξη χρονικής σήμανσης σε μηνύματα προόδου" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Χρήση IFNAME για διεπαφή δρομολόγησης" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Γραμμή εντολών κελύφους για χρήση μιας δέσμης ενεργειών ρυθμίσεων συμβατής " "με vpnc " #: main.c:986 msgid "default" msgstr "προεπιλογή" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Διοχέτευση κυκλοφορίας σε πρόγραμμα 'δέσμης ενεργειών', όχι tun" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Μην ζητάτε συνδεσιμότητα IPv6" #: main.c:993 msgid "XML config file" msgstr "Αρχείο ρυθμίσεων XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Υπόδειξη διαδρομής MTU προς/από διακομιστή" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Απαιτείται τέλεια προώθηση μυστικότητας" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Το OpenSSL κρυπτογραφεί για υποστήριξη του DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Ορισμός ορίου ουράς πακέτου σε LEN πακέτα" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Κεφαλίδα HTTP μεσολαβητή χρήστη: πεδίο" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Απενεργοποίηση επαναχρησιμοποίησης σύνδεσης HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Να μην προσπαθείτε πιστοποίηση XML POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Αποτυχία κατανομής συμβολοσειράς\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Αποτυχία λήψης γραμμής από το αρχείο ρυθμίσεων: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Άγνωστη επιλογή στη γραμμή %d: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Η επιλογή '%s' δεν παίρνει όρισμα στη γραμμή %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Η επιλογή '%s' απαιτεί όρισμα στη γραμμή %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Αποτυχία ανοίγματος του '%s' για εγγραφή: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Συνέχιση στο παρασκήνιο· αναγνωριστικό διεργασίας (pid) %d.\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Αποτυχία κατανομής δομής vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Αδύνατη η χρήση της επιλογής 'config' μέσα στο αρχείο ρυθμίσεων\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Αδύνατο το άνοιγμα του αρχείου ρυθμίσεων '%s': %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "Το %d MTU είναι υπερβολικά μικρό\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Απενεργοποίηση όλων των επαναχρησιμοποιήσεων σύνδεσης HTTP λόγω της επιλογής " "--no-http-keepalive.\n" "Αν αυτό βοηθά, παρακαλούμε αναφερθείτε στο .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Δεν επιτρέπεται μήκος ουράς μηδέν· χρησιμοποιείται 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Έκδοση OpenConnect %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Άκυρη κατάσταση διακριτικού λογισμικού \"%s\"\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Υπερβολικά ορίσματα στη γραμμή εντολών\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Δεν ορίστηκε διακομιστής\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Αυτή η έκδοση του openconnect δομήθηκε χωρίς υποστήριξη libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Αποτυχία δημιουργίας σύνδεσης SSL\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Δεν παρέχεται όρισμα --script· το DNS και η δρομολόγηση δεν είναι " "ρυθμισμένα\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Δείτε https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Αποτυχία ανοίγματος του %s για εγγραφή: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Αποτυχία εγγραφής ρύθμισης στο %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Αποτυχία επιβεβαίωσης πιστοποιητικού από τον διακομιστή VPN \"%s\".\n" "Αιτία: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Εισαγωγή '%s' για αποδοχή, '%s' για ματαίωση, ο,τιδήποτε άλλο για προβολή: " #: main.c:2464 main.c:2483 msgid "no" msgstr "όχι" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ναι" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Η επιλογή πιστοποίησης \"%s\" ταιριάζει με πολλαπλές επιλογές\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Η επιλογή πιστοποίησης \"%s\" δεν είναι διαθέσιμη\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Η απαιτούμενη είσοδος χρήστη είναι σε μη διαδραστική κατάσταση\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Η συμβολοσειρά χαλαρού διακριτικού είναι άκυρη\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Αδύνατο το άνοιγμα του αρχείου ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Το OpenConnect δεν δομήθηκε με υποστήριξη libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Γενική αποτυχία στο libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Το OpenConnect δεν δομήθηκε με υποστήριξη liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Γενική αποτυχία στο liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Αποτυχία ρύθμισης δέσμης ενεργειών tun\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Αποτυχία εγκατάστασης συσκευής tun\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Ο καλών διέκοψε τη σύνδεση\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Χωρίς εργασία· αναμονή για %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Εντάξει για τη δημιουργία ΑΡΧΙΚΟΥ κώδικα διακριτικού\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Εντάξει για τη δημιουργία ΕΠΟΜΕΝΟΥ κώδικα διακριτικού\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Ο διακομιστής απορρίπτει το χαλαρό διακριτικό· αλλαγή στη χειροκίνητη " "καταχώριση\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Δημιουργείται κώδικας διακριτικού OATH TOTP\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Δημιουργείται κώδικας διακριτικού OATH HOTP\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Αποτυχία αρχικοποίησης της συνεδρίας DTLSv1\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Αποτυχία αρχικοποίησης του DTLSv1 CTX\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Αποτυχία ορισμού λίστας κρυπτογράφησης DTLS\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Αυτό συμβαίνει προφανώς επειδή το OpenSSL σας έχει αλλοιωθεί\n" "Δείτε http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Αποτυχία χειραψίας DTLS: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Ο κωδικός πρόσβασης PEM είναι υπερβολικά μεγάλος (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Πρόσθετο πιστοποιητικό από το %s: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Αποτυχία ανάλυσης PKCS#12 (δείτε παραπάνω σφάλματα)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "Το PKCS#12 δεν περιείχε κανένα πιστοποιητικό!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "Το PKCS#12 δεν περιείχε κανένα ιδιωτικό κλειδί!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Αδύνατη η φόρτωση μηχανής TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Αποτυχία αρχικοποίησης μηχανής TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Αποτυχία ορισμού κωδικού πρόσβασης TPM SRK\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου πιστοποιητικού %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Αποτυχία δημιουργίας BIO για το στοιχείο αποθήκης κλειδιών '%s'\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Η φόρτωση ιδιωτικού κλειδιού απέτυχε (εσφαλμένο συνθηματικό;)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Αποτυχία φόρτωσης ιδιωτικού κλειδιού (δείτε τα παραπάνω σφάλματα)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Αποτυχία φόρτωσης πιστοποιητικού X509 από την αποθήκη κλειδιών\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Αποτυχία ανοίγματος αρχείου ιδιωτικού κλειδιού %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Αποτυχία ταυτοποίησης τύπου ιδιωτικού κλειδιού στο '%s'\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Το εναλλακτικό όνομα του DNS '%s' συμφώνησε\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Χωρίς συμφωνία για το εναλλακτικό όνομα '%s'\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Το πιστοποιητικό έχει εναλλακτικό όνομα GEN_IPADD με πλαστό μήκος %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Συμφωνία με %s διεύθυνση '%s'\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Χωρίς συμφωνία για τη διεύθυνση %s '%s'\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Το URI '%s' έχει μη κενή διαδρομή· παράβλεψη\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Συμφωνία με URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Χωρίς συμφωνία για το URI '%s'\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Κανένα εναλλακτικό όνομα στο πιστοποιητικό ομότιμου δεν ταίριαξε με το '%s'\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Χωρίς όνομα θέματος στο πιστοποιητικό ομότιμου!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Αποτυχία ανάλυσης ονόματος θέματος στο πιστοποιητικό ομότιμου\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Ασυμφωνία θέματος πιστοποιητικού ομότιμου ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Συμφωνία ονόματος θέματος πιστοποιητικού ομότιμου '%s'\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Πρόσθετο πιστοποιητικό από το cafile: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Σφάλμα στο πεδίο πιστοποιητικού πελάτη notAfter\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "<σφάλμα>" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Αποτυχία ανάγνωσης πιστοποιητικών από το αρχείο CA '%s'\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Αποτυχία ανοίγματος αρχείου CA '%s'\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Αποτυχία σύνδεσης SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Κωδικός πρόσβασης:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Απόρριψη εσφαλμένης διαίρεσης περιλαμβανομένου του: \"%s\"\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Απόρριψη εσφαλμένης διαίρεσης αποκλειομένου του: \"%s\"\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Αποτυχία παραγωγής δέσμης ενεργειών '%s' για το %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "H δέσμη ενεργειών '%s' εξήλθε ανώμαλα (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "H δέσμη ενεργειών '%s' επέστρεψε σφάλμα %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Ακυρώθηκε η σύνδεση υποδοχής\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Διαμεσολαβητής από libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Αποτυχία getaddrinfo για κεντρικό υπολογιστή '%s': %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Προσπάθεια σύνδεσης στον διαμεσολαβητή %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Προσπάθεια σύνδεσης στον διακομιστή %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Αποτυχία κατανομής αποθήκευσης sockaddr\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Αποτυχία σύνδεσης με τον κεντρικό υπολογιστή %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Χωρίς σφάλμα" #: ssl.c:727 msgid "Keystore locked" msgstr "Κλείδωμα της αποθήκης κλειδιών" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Η αποθήκη κλειδιών δεν αρχικοποιήθηκε" #: ssl.c:729 msgid "System error" msgstr "Σφάλμα συστήματος" #: ssl.c:730 msgid "Protocol error" msgstr "Σφάλμα πρωτοκόλλου" #: ssl.c:731 msgid "Permission denied" msgstr "Άρνηση πρόσβασης" #: ssl.c:732 msgid "Key not found" msgstr "Δεν βρέθηκε κλειδί" #: ssl.c:733 msgid "Value corrupted" msgstr "Αλλοιωμένη τιμή" #: ssl.c:734 msgid "Undefined action" msgstr "Αόριστη ενέργεια" #: ssl.c:738 msgid "Wrong password" msgstr "Λάθος κωδικός πρόσβασης" #: ssl.c:739 msgid "Unknown error" msgstr "Άγνωστο σφάλμα" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Το cookie δεν είναι πια έγκυρο, τερματισμός συνεδρίας\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "ύπνος %ds, όριο χρόνου που απομένει %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Εισαγωγή διαπιστευτηρίων για ξεκλείδωμα διακριτικού λογισμικού." #: stoken.c:107 msgid "Device ID:" msgstr "Αναγνωριστικό συσκευής:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Ο χρήστης παρέκαμψε το χαλαρό διακριτικό.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Απαιτούνται όλα τα πεδία· δοκιμάστε ξανά.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Γενική αποτυχία στο libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" "Εσφαλμένο αναγνωριστικό συσκευής ή κωδικός πρόσβασης· δοκιμάστε ξανά.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Η αρχικοποίηση του χαλαρού διακριτικού ήταν πετυχημένη.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Άκυρη μορφή PIN· δοκιμάστε ξανά.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Δημιουργείται κώδικας διακριτικού RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Αποτυχία ανοίγματος του %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Σφάλμα: Απαιτείται ο οδηγός TAP για Windows με έκδοση v9.9 ή μεγαλύτερη " "(βρέθηκε %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Αποτυχία ορισμού διεύθυνσης IP για το TAP : %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Αποτυχία ανάγνωσης από την συσκευή TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Αποτυχία ολοκλήρωσης της ανάγνωσης από την συσκευή TAP: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Γράφτηκαν %ld bytes στο tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Αναμονή για εγγραφή στο tun...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Γράφτηκαν %ld bytes στο tun μετά την αναμονή\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Αποτυχία εγγραφής στην συσκευή TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Αδύνατο το άνοιγμα /dev/tun για σωλήνωση" #: tun.c:92 msgid "Can't push IP" msgstr "Αδύνατη η προώθηση IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Αδύνατος ο ορισμός του ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Αδύνατη η σωλήνωση του %s για IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "άνοιγμα /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Αποτυχία δημιουργίας νέου tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Αποτυχία τοποθέτησης του περιγραφέα αρχείου tun σε μήνυμα κατάστασης " "απόρριψης" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "άνοιγμα δικτύου" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Αποτυχία ανοίγματος της συσκευής tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Άκυρο όνομα διεπαφής '%s'· πρέπει να ταιριάζει με 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Αδύνατο το άνοιγμα του '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "Αποτυχία του socketpair: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "Αποτυχία διακλάδωσης: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(δέσμη ενεργειών )" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Αποτυχία εγγραφής εισερχόμενου πακέτου: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" "Αντιμετώπιση του κεντρικού υπολογιστή \"%s\" ως ακατέργαστου ονόματος " "κεντρικού υπολογιστή\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Το υπάρχον αρχείο απέτυχε στο SHA1\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Το αρχείο ρυθμίσεων του XML στο SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Αποτυχία ανάλυσης του αρχείου ρυθμίσεων XML %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Ο κεντρικός υπολογιστής \"%s\" έχει διεύθυνση \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Ο κεντρικός υπολογιστής \"%s\" έχει ΟμάδαΧρηστών \"%s\"\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Ο κεντρικός υπολογιστής \"%s\" δεν αναφέρεται στις ρυθμίσεις· " "αντιμετωπίζεται ως ακατέργαστο όνομα κεντρικού υπολογιστή\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/LINGUAS0000644000076400007640000000017614204456076017207 0ustar00dwoodhoudwoodhou00000000000000ar bs ca cs da de el en_GB en_US es eu fi fr gl hr hu id it lt nl pa pl pt_BR pt sk sl sr@latin sr sv tg tr ug uk zh_CN zh_TW openconnect-8.20/po/de.po0000644000076400007640000051475114204456067017123 0ustar00dwoodhoudwoodhou00000000000000# German translation of NetworkManager-openconnect module. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the network-manager-openconnect package. # Mario Blättermann , 2008, 2010-2013, 2016-2018. # Wolfgang Stöggl , 2010, 2015. # Christian Kirbach , 2012-2013. # Benjamin Steinwender , 2014. # Tim Sabsch , 2018. # msgid "" msgstr "" "Project-Id-Version: NetworkManager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2018-08-07 14:43+0200\n" "Last-Translator: Tim Sabsch \n" "Language-Team: Deutsch \n" "Language: de\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Poedit 2.0.9\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ungültiger »%s«\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unerwartetes %d-Ergebnis vom Server\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Zuweisung fehlgeschlagen\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kurzes Paket empfangen (%d Bytes)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Datenpaket mit %d Byte empfangen\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL schrieb zu wenige Bytes! Angefragt wurden %d, gesendet %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Erneuter CSTP-Schlüsselaustausch fällig\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Rehandshake fehlgeschlagen; neuer Tunnel wird versucht\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Unkomprimiertes Datenpaket mit %d Byte wird gesendet\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Versuch einer neuen DTLS-Verbindung\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS-Paket 0x%02x mit %d Byte empfangen\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Erneuter DTLS-Schlüsselaustausch fällig\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" "Erneuerung des DTLS-Handshakes schlug fehl; Verbindung wird erneut " "aufgebaut.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "DTLS DPD senden\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" "DPD-Anfrage konnte nicht gesendet werden. Verbindungsabbruch wird erwartet\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "DTLS-Paket mit %d Byte gesendet; DTLS send gab %d zurück\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Abmelden ist fehlgeschlagen.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Abmelden war erfolgreich.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Bitte geben Sie Ihren Benutzernamen und Ihr Passwort ein" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "Passwort" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect-Anmeldung gab %s=%s zurück (%s wurde erwartet)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect-Anmeldung gab leeres oder fehlendes %s zurück\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect-Anmeldung gab %s=%s zurück\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Bitte wählen Sie das GlobalProtect-Gateway." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "GATEWAY:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d Gateway-Server verfügbar:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "OTP Token-Code kann nicht erzeugt werden. Token wird abgeschaltet\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Der Server ist weder ein GlobalProtect-Portal noch ein Gateway.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Unbekannte Formular-Übertragungs-Eintrag »%s« wird ignoriert\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Unbekannte Formular-Eingabetyp »%s« wird ignoriert\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Doppelte Option »%s« wird verworfen\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Eingabefeld-Methode=»%s« kann nicht verarbeitet werden, Aktion=»%s«\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Unbekanntes Textbereich-Feld: »%s«\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" "Speicher für die Kommunikation mit TNCC konnte nicht reserviert werden\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC-Unterstützung ist unter Windows noch nicht implementiert\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Kein DSPREAUTH-Cookie; TNCC wird nicht versucht\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "TNCC-Skript %s konnte nicht ausgeführt werden: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Startbefehl gesendet, auf Antwort von TNCC wird gewartet\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Lesen der TNCC-Antwort ist gescheitert\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Erfolglose Antwort %s von TNCC erhalten\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Neues DSPREAUTH-Cookie von TNCC erhalten: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "HTML-Dokument konnte nicht ausgewertet werden\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Web-Formular in Anmeldeseite konnte nicht ausgewertet werden\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Unbekanntes HTML-Formular wird gespeichert:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Formularauswahl hat keinen Namen\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "Name %s nicht in Eingabe\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Kein Eingabetyp im Formular\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Kein Eingabename im Formular\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unbekannter Eingabetyp %s im Formular\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Leere Antwort vom Server\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Verarbeitung der Serverantwort ist gescheitert\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Antwort lautete: »%s«\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr " wurde empfangen als es nicht erwartet wurde.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML-Antwort hat keinen »auth«-Knoten\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Passwortanfrage, aber »--no-passwd« ist gesetzt\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" "XML-Profile wird nicht herunter geladen, weil SHA1 bereits übereinstimmt\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Öffnen der HTTPS-Verbindung nach %s schlug fehl\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" "GET-Anfrage für neue Konfigurationsdatei konnte nicht gesendet werden\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Heruntergeladene Konfigurationsdatei entspricht nicht der erwarteten SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Neues XML-Profil heruntergeladen\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fehler: Ausführen des »Cisco Secure Desktop«-Trojaners auf dieser Plattform " "ist noch nicht implementiert.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Festlegen der Gruppenkennung %ld schlug fehl: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Gruppenkennung konnte nicht auf %ld gesetzt werden: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Festlegen der Benutzerkennung %ld schlug fehl: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ungültige Benutzerkennung = %ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Wechseln in den Ordner »%s« der CSD-Datei schlug fehl: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fehler: Der Server bat einen CSD-Rechnerscan auszuführen.\n" "Die müssen ein passendes Argument für »--csd-wrapper« angeben.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fehler: Server bat um das Herunterladen und Ausführen eines »Cisco Secure " "Desktop«-Trojaners.\n" "Dieses Merkmal ist aus Sicherheitsgründen deaktiviert. Möglicherweise wollen " "Sie es aber nun aktivieren.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "In temporären Ordner »%s« konnte nicht geschrieben werden: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Öffnen der temporären CSD-Skriptdatei schlug fehl: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Schreiben der temporären CSD-Skriptdatei schlug fehl: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warnung: Sie führen unsicheren CSD-Code mit Systemadministrator-Rechen aus\n" "\t Verwenden Sie die Befehlszeilenoption »--csd-user«\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD-Skript %s konnte nicht ausgeführt werden\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Unbekannte Antwort vom Server\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Der Server forderte ein SSL Client-Zertifikat an, nachdem eines übergeben " "wurde\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Server forderte ein SSL Client-Zertifikat an. Es ist keines eingerichtet\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST aktiviert\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "%s wird ach einer Sekunde aktualisiert …\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(Fehler 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Fehler beim Beschreiben des Fehlers!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FEHLER: Sockets konnten nicht initialisiert werden\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITISCHER FEHLER: DTLS-Hauptschlüssel ist nicht initialisiert. Bitte melden " "Sie dies.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Fehler bei der Erstellung der HTTPS CONNECT-Anfrage\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Fehler beim Holen der HTTP-Antwort\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-Dienst ist nicht verfügbar, Grund: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Unpassende HTTP CONNECT-Antwort erhalten: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT-Antwort erhalten: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Kein Speicher für Optionen\n" #: cstp.c:416 http.c:313 msgid "" msgstr "<übergangen>" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Sitzungskennung hat keine 64 Zeichen; ist: »%s«\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Sitzungskennung ist ungültig; ist: »%s«\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Unbekannte DTLS-Inhaltskodierung %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unbekannte CSTP-Inhaltskodierung %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Kein MTU empfangen. Abbruch\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP verbunden. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Einrichten der Kompression schlug fehl\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Anfordern des deflate-Pufferspeichers schlug fehl\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "»inflate« fehlgeschlagen\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-Dekomprimierung fehlgeschlagen: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZ4-Dekomprimierung fehlgeschlagen\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Unbekannter Kompressionstyp »%d«\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s-Komprimiertes Datenpaket mit %d Byte erhalten (war %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "»deflate« fehlgeschlagen %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unerwartete Paketlänge. SSL_read gab %d zurück, aber Paket hat\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD-Anfrage erhalten\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD-Antwort erhalten\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "CSTP-Keepalive empfangen\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Unkomprimiertes Datenpaket mit %d Byte erhalten\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Abbruch der Serververbindung empfangen: %02x »%s«\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Abbruch der Serververbindung empfangen\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Komprimiertes Paket im !deflate-Modus erhalten\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "Server-Beenden-Paket empfangen\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unbekanntes Paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Neuverbinden fehlgeschlagen\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "CSTP DPD senden\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "CSTP-Keepalive senden\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Komprimiertes Datenpaket mit %d Byte wird gesendet (war %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE-Paket senden: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Versuch einer Prüfsummen-Legitimierung zum Proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Versuch einer Prüfsummen-Legitimierung zum Server »%s«\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Versuch einer DTLS-Verbindung mit bestehendem Dateideskriptor\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Keine DTLS-Adresse\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server bot keine DTLS-Chiffrieroption an\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Kein DTLS bei Verbindung über Proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS initialisiert. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unbekanntes Paket empfangen (Länge %d) : %02x %02x %02x %02x …\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Dieser TOS: %d, letzter TOS: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP-setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "DTLS-DPD-Anfrage erhalten\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" "DPD-Antwort konnte nicht gesendet werden. Verbindungsabbruch wird erwartet\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "DTLS-DPD-Antwort erhalten\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "DTLS-Keepalive erhalten\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Komprimiertes DTLS-Paket ohne aktivierte Kompression empfangen\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unbekannter DTLS-Pakettyp %02x, Länge %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive senden\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "keepalive-Anfrage konnte nicht gesendet werden. Verbindungsabbruch wird " "erwartet\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "MTU-DPD-Test wird gesendet (%u Bytes)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "DPD-Anfrage konnte nicht gesendet werden (%d %d)\n" # https://de.wikipedia.org/wiki/Maximum_Transmission_Unit #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Zu lange Zeit in MTU-Erkennungsschleife; bereits ausgehandelte MTU wird " "angenommen.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Zu lange Zeit in MTU-Erkennungsschleife; MTU wird auf %d gesetzt.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Unerwartetes Paket (%.2x) in MTU-Erkennung entdeckt; wird übersprungen.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "DPD-Anfrage konnte nicht empfangen werden (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "MTU-DPD-Test wurde empfangen (%u Bytes)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "MTU von %d Byte wurde erkannt (war %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Keine Änderung in MTU nach Erkennung (war %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Erwartetes ESP-Paket mit Sequenz %u wird akzeptiert\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Verspätetes ESP-Paket mit Sequenz %u wird akzeptiert (% erwartet)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" "Veraltetes ESP-Paket mit Sequenz %u wird akzeptiert (% erwartet)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Veraltetes ESP-Paket mit Sequenz %u wird toleriert (% erwartet)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Erneut gesendetes ESP-Paket mit Sequenz %u wird verworfen\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Erneut gesendetes ESP-Paket mit Sequenz %u wird toleriert\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Außerordentliches ESP-Paket mit Sequenz %u wird akzeptiert (% " "erwartet)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parameter für %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP-Verschlüsselungstyp %s, Schlüssel 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP-Legitimierungstyp %s, Schlüssel 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "ankommend" #: esp.c:94 msgid "outgoing" msgstr "ausgehend" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "ESP-Proben senden\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "ESP-Paket von altem SPI 0x%x empfangen, Sequenz %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "ESP-Paket mit ungültigem SPI 0x%08x empfangen\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ungültige Auffüllänge %02x in ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Ungültige Auffüll-Bytes in ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP-Sitzung mit Server aufgebaut\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" "Speicher zur Entschlüsselung des ESP-Pakets konnte nicht reserviert werden\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO-Dekompression des ESP-Pakets schlug fehl\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO-Dekompression von %d Bytes in %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Rekey ist für ESP nicht implementiert\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP erkannte nicht reagierende Gegenstelle\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "ESP-Proben für DPD senden\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive ist für ESP nicht implementiert\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "ESP-Paket konnte nicht gesendet werden: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "DTLS-Wiederaufnahme wird verzögert, bis CSTP eine PSK erzeugt\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Erzeugen der Zeichenkette der DTLS-Priorität schlug fehl\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Festlegen der DTLS-Priorität schlug fehl: »%s«: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Anmeldedaten konnten nicht zugewiesen werden: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Erzeugen des DTLS-Schlüssels fehlgeschlagen: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Festlegen des DTLS-Schlüssels schlug fehl: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Festlegen der DTLS-PSK-Anmeldedaten schlug fehl: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Unbekannte DTLS-Parameter für angefragte CipherSuite »%s«\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS-Sitzungsparameter konnten nicht festgelegt werden: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Initialisieren des DTLS schlug fehl: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU %d der Gegenstelle ist zu klein, um DTLS zu erlauben\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS-MTU auf %d reduziert\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Wiederaufnahme der DTLS-Sitzung fehlgeschlagen. Möglicher »Man in the " "Middle«-Angriff. DTLS wird abgeschaltet.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Festlegen der DTLS-MTU schlug fehl: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS-Verbindung aufgebaut (mit GnuTLS). Schiffrierwerk %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-Verbindungskompression mit %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Zeitüberschreitung bei DTLS-Handshake\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-Handshake schlug fehl: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Verhindert eine Firewall das Senden von UDP-Paketen?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Initialisieren des ESP-Schlüssels schlug fehl: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Initialisieren des ESP-HMAC schlug fehl: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "HMAC für ESP-Paket konnte nicht errechnet werden: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "ESP-Paket mit ungültigem HMAC empfangen\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "ESP-Paket konnte nicht entschlüsselt werden: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "ESP-Paket konnte nicht verschlüsselt werden: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Ablaufzeitpunkt des Zertifikats konnte nicht ermittelt werden\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Client-Zertifikat ist abgelaufen am" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Client-Zertifikat läuft bald ab am" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" "Laden des Objekts »%s« aus dem Schlüsselspeicher ist fehlgeschlagen: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Öffnen der Schlüssel-/Zertifikatsdatei %s schlug fehl: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Abfragen der Schlüssel-/Zertifikatsdatei %s schlug fehl: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Anfordern von Pufferspeicher schlug fehl\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Lesen des Zertifikats in den Speicher schlug fehl: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12-Datenstruktur konnte nicht angelegt werden: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12-Zertifikatdatei konnte nicht entschlüsselt werden\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Geben Sie das PKCS#12-Passwort ein:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Verarbeiten der PKCS#12-Datei schlug fehl: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Laden des PKCS#12-Zertifikats schlug fehl: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5-Prüfsumme konnte nicht initialisiert werden: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5-Prüfsummenfehler: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Fehlende DEK-Info: Kopf des OpenSSL-Chiffrierschlüssels\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "PEM-Verschlüsselungstyp konnte nicht ermittelt werden\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nicht unterstützter PEM-Verschlüsselungstyp: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ungültiges Salt in der verschlüsselten PEM-Datei\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Fehler beim Dekodieren der verschlüsselten PEM-Datei nach base64: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Verschlüsselte PEM-Datei ist zu kurz\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Initialisieren des Schlüssels zur Entschlüsselung der PEM-Datei schlug fehl: " "%s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Die Entschlüsselung des PEM-Schlüssels scheiterte: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Entschlüsselung des PEM-Schlüssels scheiterte\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Geben Sie das PEM-Kennwort ein:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Diese Version wurde ohne Systemschlüssel-Unterstützung erstellt\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Diese Version wurde ohne PKCS#11-Unterstützung erstellt\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11-Zertifikat %s wird verwendet\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Systemzertifikat »%s« wird verwendet\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fehler beim Laden des Zertifikats von PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Fehler beim Laden des Systemzertifikats: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Zertifikatsdatei %s wird verwendet\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-Datei enthielt kein Zertifikat\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Kein Zertifikat gefunden in Datei" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Laden des Zertifikats ist gescheitert: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Systemschlüssel %s wird verwendet\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fehler beim Initialisieren der privaten Schlüsselstruktur: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Fehler beim Importieren des Systemschlüssels %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "PKCS#11 Schlüsseladresse %s wird versucht\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fehler beim Initialisieren der PKCS#11-Schlüsselstruktur: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fehler beim Importieren der PKCS#11-Adresse %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11-Schlüssel %s wird verwendet\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Fehler beim Importieren des PKCS#11-Schlüssels in private Schlüsselstruktur: " "%s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Private Schlüsseldatei %s wird verwendet\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für TPM erstellt\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Interpretieren der PEM-Datei fehlgeschlagen\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Laden des privaten PKCS#1-Schlüssels scheiterte: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Laden des geheimen Schlüssels als PKCS#8 ist gescheitert: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8-Zertifikatdatei konnte nicht entschlüsselt werden\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Bestimmung des Typs des privaten Schlüssels %s schlug fehl\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Geben Sie das PKCS#8-Passwort ein:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Ermitteln der Schlüsselkennung fehlgeschlagen: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fehler beim Signieren der Testdaten mit dem geheimen Schlüssel: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fehler bei der Überprüfung der Signatur anhand des Zertifikats: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Kein dem geheimen Schlüssel entsprechendes SSL-Zertifikat gefunden\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Client-Zertifikat »%s« wird verwendet\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Speicher für das Zertifikat konnte nicht reserviert werden\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Kein Herausgeber von PKCS#11 erhalten\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Nächste CA »%s« von PKCS#11 erhalten\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" "Belegen von Speicher für die Unterstützung von Zertifikaten schlug fehl\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Unterstützende CA wird hinzugefügt : %s\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importieren des X509-Zertifikats schlug fehl: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Festlegen des PKCS#11-Zertifikats schlug fehl: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Festlegen der Zertifikat-Widerrufsliste schlug fehl: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Festlegen des Zertifikats ist gescheitert: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server zeigte kein Zertifikat vor\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Fehler beim Vergleichen des Zertifikats des Servers beim erneuten Handshake: " "%s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Server zeigte ein anderes Zertifikat vor beim erneuten Handshake\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Server zeigte das identische Zertifikat vor beim erneuten Handshake\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Fehler beim Initialisieren der X.509-Zertifikatstruktur\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Fehler beim Importieren des Zertifikats des Servers\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Streuwert konnte nicht für das Server-Zertifikat berechnet werden\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Fehler beim Prüfen des Status des Server-Zertifikats\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "Zertifikat widerrufen" #: gnutls.c:2098 msgid "signer not found" msgstr "Signierer nicht gefunden" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "Signierer ist kein CA-Zertifikat" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "Unsicherer Algorithmus" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "Das Zertifikat ist noch nicht aktiviert" #: gnutls.c:2106 msgid "certificate expired" msgstr "Zertifikat abgelaufen" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "Überprüfung der Signatur fehlgeschlagen" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "Zertifikat passt nicht zum Rechnernamen" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Prüfen des Server-Zertifikats schlug fehl: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Anfordern von Speicher für cafile-Zertifikate schlug fehl\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Lesen von Zertifikaten aus CA-Datei ist fehlgeschlagen: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Öffnen der CA-Datei »%s« fehlgeschlagen : %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Laden des Zertifikats schlug fehl. Abbruch.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-Verhandlung mit %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL-Verbindung abgebrochen\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-Verbindung versagt: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS nicht-fatale Rückgabe während Handshake: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Für %s wird eine PIN benötigt" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Falsche PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Dies ist der letzte Versuch vor der Sperrung!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Nur noch wenige Versuche, bevor Sperrung erfolgt!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "PIN eingeben:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nicht unterstützter OATH-HMAC-Algorithmus\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "OATH-HMAC konnte nicht errechnet werden: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM-Signierfunktion aufgerufen für %d Byte.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM-Hash-Objekt konnte nicht erstellt werden: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Festlegen eines Werts im TPM-Hash-Objekt schlug fehl: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM Hash-Signatur schlug fehl: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fehler beim Dekodieren der TSS-Schlüssel-Daten: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Fehler in den TSS-Schlüssel-Daten\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Erstellen des TPM-Kontexts fehlgeschlagen: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Verbinden des TPM-Kontexts fehlgeschlagen: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Laden des TPM SRK-Schlüssels scheiterte: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Laden des TPM SRK Richtlinien-Objekts ist gescheitert: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Festlegen der TPM-PIN fehlgeschlagen: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Laden des privaten TPM-Schlüssels scheiterte: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN eingeben:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Schlüssel-Richtlinienobjekte konnten nicht erstellt werden: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Zuweisen der Richtlinie zum Schlüssel ist fehlgeschlagen: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "PIN des TPM-Schlüssels eingeben:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Festlegen der Schlüssel-PIN fehlgeschlagen: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Challenge: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Nicht standardmäßiger SSL-Tunnel-Pfad: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" "Tunnel-Zeitspanne (Intervall zum erneuten Schlüsselaustausch) ist %d " "Minuten.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Gateway-Adresse in der XML-Konfiguration (%s) unterscheidet sich von der " "Adresse des externen Gateways (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect-Konfiguration sendete ipsec-mode=%s (esp-tunnel wurde " "erwartet)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "ESP-Schlüssel werden ignoriert, weil ESP-Unterstützung hier nicht verfügbar " "ist\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP ist deaktiviert" #: gpst.c:661 msgid "No ESP keys received" msgstr "Keine ESP-Schlüssel empfangen" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "ESP-Unterstützung ist hier nicht verfügbar" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Kein MTU empfangen. Berechnet %d für %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Verbindung zum HTTPS-Tunnel-Endpunkt wird aufgebaut …\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Fehler beim Holen der GET-tunnel-HTTPS-Antwort.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway wurde unmittelbar nach der GET-tunnel-Anfrage geschlossen.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Fehler: Ausführen des »HIP Report«-Skripts auf dieser Plattform ist noch " "nicht implementiert.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Übertragung des HIP-Reports fehlgeschlagen.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "Der HIP-Report wurde erfolgreich übertragen.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "HIP-Skript %s konnte nicht ausgeführt werden\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" "Das Gateway sagt, dass die Übertragung eines HIP-Reports erforderlich ist.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" "Das Gateway sagt, dass die Übertragung eines HIP-Reports nicht erforderlich " "ist.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP-Tunnel verbunden; HTTPS-Hauptschleife wird unterbrochen.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" "ESP-tunnel konnte nicht verbunden werden; stattdessen wird HTTPS verwendet.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Fehler beim Paketempfang: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Unerwartete Paketlänge. SSL_read gab %d zurück (enthält 16 Header-Bytes), " "aber payload_len des Headers ist %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "GPST-DPD/Keepalive-Anfrage erhalten\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "0000000000000000 wurden als letzte 8 Bytes des DPD/Keepalive-Paket-Headers " "erwartet, aber Folgendes erhalten:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "0100000000000000 wurden als letzte 8 Bytes des Datenpaket-Headers erwartet, " "aber Folgendes erhalten:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Unbekanntes Paket. Header-Dump wie folgt:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "Erneuter GlobalProtect-Schlüsselaustausch fällig\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection erkannte nicht reagierende Gegenstelle!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "GPST-DPD/Keepalive-Anfrage senden\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Fehler beim Importieren des GSSAPI-Namens zur Legitimierung:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Fehler beim Erstellen der GSSAPI-Antwort:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Versuch der GSSAPI-Legitimierung zum Proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Versuch der GSSAPI-Legitimierung am Server »%s«\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-Authentifizierung abgeschlossen\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-Token zu groß (%zd Byte)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "GSSAPI-Token von %zu Byte wird gesendet\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Senden des GSSAPI-Legitimierungs-Token an Proxy fehlgeschlagen: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Empfangen des GSSAPI-Legitimierungs-Token von Proxy fehlgeschlagen: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-Server meldete GSSAPI-Kontext ist fehlgeschlagen\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Unbekannte GSSAPI-Statusantwort (0x%02x) von SOCKS-Server\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-Token von %zu Byte erhalten: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "GSSAPI-Schutzaushandlung von %zu Byte wird gesendet\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Senden der GSSAPI-Schutzaushandlung an Proxy fehlgeschlagen: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Erhalten der GSSAPI-Schutzaushandlung von Proxy fehlgeschlagen: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "GSSAPI-Schutzantwort von %zu Byte erhalten: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ungültige GSSAPI-Schutzantwort von Proxy (%zu Byte)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Der SOCKS-Proxy verlangt Nachrichtenintegrität, was aber nicht unterstützt " "wird\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "Der SOCKS-Proxy verlangt Nachrichtenvertraulichkeit, was aber nicht " "unterstützt wird\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Der SOCKS-Proxy verlangt zum Schutz den unbekannten Typ 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Grundlegende HTTP-Legitimierung zum Proxy wird versucht\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Grundlegende HTTP-Legitimierung am Server »%s« wird versucht\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für GSSAPI erstellt\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Der Proxy verlangte nach Basislegitimierung, die standardmäßig deaktiviert " "ist\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Der Server »%s« verlangte nach Basislegitimierung, die standardmäßig " "deaktiviert ist\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Keine weiteren möglichen Legitimierungsmethoden\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Kein Speicher zum Reservieren für Cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Verarbeitung der HTTP-Antwort »%s« ist gescheitert\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP-Antwort erhalten: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Unbekannte Zeile »%s« in HTTP-Antwort wird ignoriert\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ungültiger Cookie angeboten: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Prüfung des SSL-Zertifikats ist gescheitert\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Textkörper der Antwort hat negative Größe (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unbekannte Zeichensatzkodierung: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-Nachrichtenrumpf: %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Fehler beim Lesen des Textkörpers der HTTP-Antwort\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Fehler beim Holen des gestückelten Headers\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Fehler beim Holen des Textkörpers der HTTP-Antwort\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "HTTP 1.0-Rumpf kann nicht ohne Schließen der Verbindung empfangen werden\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Verarbeiten der Umleitungsadresse »%s« schlug fehl: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Folgen der Umleitung zu nicht-https-Adresse »%s« ist nicht möglich\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Anfordern eines neuen Pfades für relative Umleitung schlug fehl: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "Anforderung stattgegeben" #: http.c:1003 msgid "general failure" msgstr "Allgemeiner Fehler" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "Verbindung ist aufgrund des Regelwerks nicht erlaubt" #: http.c:1005 msgid "network unreachable" msgstr "Das Netzwerk ist nicht erreichbar" #: http.c:1006 msgid "host unreachable" msgstr "Rechner ist nicht erreichbar" #: http.c:1007 msgid "connection refused by destination host" msgstr "Verbindung wird vom Zielrechner verweigert" #: http.c:1008 msgid "TTL expired" msgstr "TTL abgelaufen" #: http.c:1009 msgid "command not supported / protocol error" msgstr "Befehl nicht unterstützt / Protokollfehler" #: http.c:1010 msgid "address type not supported" msgstr "Der Adresstyp wird nicht unterstützt" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS-Server verlangte Benutzername/Passwort. Beides ist aber nicht " "vorhanden.\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Benutzername und Password müssen für SOCKS-Legitimierung < 255 Byte sein\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fehler beim Schreiben der auth-Anforderung an SOCKS-Proxy: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fehler beim Lesen der auth-Anforderung von SOCKS-Proxy: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Unerwartete auth-Antwort von SOCKS-Proxy: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Bei SOCKS-Server mit Passwort legitimiert\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Passwort-Legitimierung mit SOCKS-Server fehlgeschlagen\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-Server verlangte GSSAPI-Legitimierung\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-Server verlangte Passwort-Legitimierung\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-Server benötigt Legitimierung\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-Server forderte unbekannte Legitimierungsmethode %02x an\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Anfordern von SOCKS Proxy-Verbindung zu %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fehler beim Schreiben der Verbindungsanforderung an SOCKS-Proxy: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fehler beim Lesen der Verbindungsantwort von SOCKS-Proxy: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unerwartete Verbindungsantwort vom SOCKS-Proxy: %02x %02x …\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS Proxy-Fehler %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS Proxy-Fehler %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unerwarteter Adresstyp %02x in SOCKS-Verbindungsantwort\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Anfordern von HTTP Proxy-Verbindung zu %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Senden der Proxy-Anfrage ist gescheitert: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy-CONNECT-Anfrage ist gescheitert: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unbekannter Proxy-Typ »%s«\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Es werden nur http- oder socks(5)-Proxies unterstützt\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect oder Openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel zu Cisco AnyConnect SSL VPN und auch ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper-Netzwerkverbindung" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibel zu Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Unbekanntes VPN-Protokoll »%s«\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Mit einer SSL-Bibliothek ohne Cisco DTLS-Unterstützung erstellt\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Keine IP-Adresse empfangen. Abbruch\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IP-Adresse (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IP-Netzmaske (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Neuverbinden ergab eine andere herkömmliche IPv6-Adresse (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" "Neuverbinden ergab eine andere herkömmliche IPv6-Netzmaske (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-Konfiguration erhalten, aber die MTU %d ist zu klein.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Verarbeiten der Serveradresse »%s« schlug fehl\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Nur https:// erlaubt für Server-Adresse\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Ungültige Prüfsumme des Zertifikats: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Der bereitgestellte Fingerabdruck ist kleiner als die minimal erforderliche " "Größe (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" "Verarbeitung des Formulars nicht möglich, Legitimierung kann nicht " "ausgeführt werden.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() schlug fehl: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Schwerwiegender Fehler in der Abarbeitung der Befehlszeile\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() schlug fehl: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() ist fehlgeschlagen: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Fehler beim Umwandeln der Konsoleneingabe: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Zuweisungsfehler für Zeichenkette aus der Standardeingabe\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Bitte lesen Sie für Hilfe zu OpenConnect die Webseite\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL-ENGINE nicht vorhanden" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "WARNUNG: Keine DTLS- und/oder ESP-Unterstützung verfügbar. Die Leistung wird " "dadurch beeinträchtigt.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Unterstützte Protokolle:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (Vorgabe)" #: main.c:743 msgid "Set VPN protocol" msgstr "VPN-Protokoll festlegen" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ausführbarer Pfad »%s« kann nicht verarbeitet werden" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Anfordern des vpnc-script-Pfad schlug fehl\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Hostname von »%s« in »%s« ändern\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Aufruf: openconnect [Optionen] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Open client für mehrere VPN-Protokolle, Version %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Optionen aus Konfigurationsdatei lesen" #: main.c:914 msgid "Report version number" msgstr "Versionsnummer ausgeben" #: main.c:915 msgid "Display help text" msgstr "Hilfetext zeigen" #: main.c:919 msgid "Authentication" msgstr "Legitimierung" #: main.c:920 msgid "Set login username" msgstr "Benutzername für die Anmeldung festlegen" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Legitimierung mit Passwort/SecurID ausschalten" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Keine Benutzereingabe erwarten; abbrechen, falls erforderlich" #: main.c:923 msgid "Read password from standard input" msgstr "Passwort von Standardeingabe lesen" #: main.c:924 msgid "Choose authentication login selection" msgstr "Wählen Sie den Legitimierungs-Anmeldeabschnitt" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "SSL Client-Zertifikat CERT verwenden" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Private SSL-Schlüsseldatei KEY verwenden" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Warnen, wenn die Lebensdauer des Zertifikats unter DAYS liegt" #: main.c:929 msgid "Set login usergroup" msgstr "Benutzergruppe für die Anmeldung festlegen" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Schlüsselkennwort oder TPM-SRK-PIN setzen" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Schlüsselkennwort ist fsid des Dateisystems" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(HINWEIS: libstoken (RSA SecurID) wurde bei der Erstellung deaktiviert)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(HINWEIS: Yubikey OATH wurde bei der Erstellung deaktiviert)" #: main.c:941 msgid "Server validation" msgstr "Server-Überprüfung" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Standard-Zertifizierungsstellen des Systems deaktivieren" #: main.c:944 msgid "Cert file for server verification" msgstr "Zertifikatdatei für Server-Überprüfung" #: main.c:946 msgid "Internet connectivity" msgstr "Internetverbindung" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Proxy-Server festlegen" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Legitimierungsmethoden für Proxy festlegen" #: main.c:950 msgid "Disable proxy" msgstr "Proxy deaktivieren" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "libproxy zur automatischen Konfiguration des Proxys verwenden" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(HINWEIS: libproxy wurde bei der Erstellung deaktiviert)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Wartezeit für erneuten Verbindungsversuch in Sekunden" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "IP beim Verbinden mit HOST verwenden" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Lokalen Port für DTLS- und ESP-Datagramme festlegen" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Legitimierung (Zwei-Faktor)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Legitimierungs-Cookie COOKIE verwenden" #: main.c:962 msgid "Read cookie from standard input" msgstr "Cookie von Standardeingabe lesen" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Nur legitimieren und Anmeldeinformationen ausgeben" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Nur Cookie holen und ausgeben, nicht verbinden" #: main.c:965 msgid "Print cookie before connecting" msgstr "Vor dem Verbinden Cookie ausgeben" #: main.c:968 msgid "Process control" msgstr "Prozesssteuerung" #: main.c:969 msgid "Continue in background after startup" msgstr "Nach Start im Hintergrund weiterlaufen" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "PID des Daemons in diese Datei schreiben" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Privilegien nach Verbinden ablegen" #: main.c:974 msgid "Logging (two-phase)" msgstr "Protokollierung (Zwei-Faktor)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "syslog für Fortschrittsmeldungen verwenden" #: main.c:978 msgid "More output" msgstr "Mehr Ausgabe" #: main.c:979 msgid "Less output" msgstr "Weniger Ausgabe" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "HTTP Authentifizierungs-Verkehr abspeichern (impliziert --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Zeitstempel der Fortschrittsnachricht voranstellen" #: main.c:983 msgid "VPN configuration script" msgstr "VPN-Konfigurationsskript" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "IFNAME für Tunnel-Schnittstelle verwenden" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Shell-Befehlszeile für die Verwendung eines vpnc-kompatiblen " "Konfigurationsskripts" #: main.c:986 msgid "default" msgstr "Vorgabe" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Verkehr an »Skript«-Programm weiterleiten, nicht tun" #: main.c:991 msgid "Tunnel control" msgstr "Tunnelsteuerung" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6-Verbindung nicht anfordern" #: main.c:993 msgid "XML config file" msgstr "XML-Konfigurationsdatei" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "MTU vom Server anfordern (nur veraltete Server)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Path MTU vom/zum Server angeben" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "»perfect forward secrecy« verlangen" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "DTLS und ESP abschalten" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-Schlüssel zur Unterstützung für DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Warteschlangenbegrenzung auf LEN Pakete setzen" #: main.c:1004 msgid "Local system information" msgstr "Lokale Systeminformationen" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP-Kopf User-Agent: Feld" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Lokaler Rechnername, der an den Server gemeldet wird" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Ausführung des Trojaner-Binarys (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Privilegien während Trojaner-Ausführung ablegen" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "SCRIPT an Stelle der Trojaner-Binärdatei ausführen" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Serverfehler" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Wiederverwendung von HTTP-Verbindungen abschalten" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "XML POST-Authentifizierung nicht versuchen" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Anfordern der Zeichenkette ist fehlgeschlagen\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Zeile aus der Konfigurationsdatei konnte nicht geholt werden: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Unbekannte Option in Zeile %d: »%s«\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Option »%s« akzeptiert kein Argument in Zeile %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Option »%s« erfordert ein Argument in Zeile %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ungültiger Benutzer »%s«: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ungültiger Benutzer »%d«: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Öffnen von »%s« zum Schreiben schlug fehl: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Fortsetzung im Hintergrund; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "WARNUNG: Spracheinstellung kann nicht gesetzt werden: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "WARNUNG: Diese Version von »openconnect« wurde ohne »iconv«-Unterstützung " "erstellt. Sie verwenden anscheinend den veralteten Zeichensatz »%s«. " "Erwarten Sie seltsames Verhalten.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "WARNUNG: Dies ist Version %s von openconnect, aber\n" " die Bibliothek libopenconnect ist %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Zuweisen der vpninfo-Struktur ist fehlgeschlagen\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "Option »config« darf nicht in einer Konfigurationsdatei verwendet werden\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Konfigurationsdatei »%s« kann nicht geöffnet werden: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ungültiger Kompressionsmodus »%s«\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Speicher konnte nicht reserviert werden\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Fehlender Doppelpunkt in Auflöse-Option\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d ist zu klein\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Wiederverwendung jeglicher HTTP-Verbindungen wird wegen der Option »--no-" "http-keepalive« abgeschaltet.\n" "Falls dies hilft, so berichten Sie bitte davon auf .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Die Option --no-cert-check wurde als unsicher eingestuft und entfernt.\n" "Reparieren Sie das Zertifikat Ihres Servers oder verwenden Sie\n" "--servercert, um ihm zu vertrauen.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Warteschlangenlänge Null ist nicht erlaubt. 1 wird verwendet\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect Version %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ungültiger Software-Token-Modus »%s«\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Zu viele Argumente auf der Befehlszeile\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Kein Server angegeben\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Diese Version von openconnect wurde ohne Unterstützung für libproxy " "erstellt\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Erstellen einer SSL-Verbindung schlug fehl\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Kein »--script«-Argument angegeben, DNS und Routing sind nicht konfiguriert\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Siehe https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Benutzer forderte eine Neuverbindung an\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sitzung wurde durch Server beendet. Abbruch.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Unbekannter Fehler. Abbruch.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Öffnen von %s zum Schreiben schlug fehl: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Schreiben der Konfiguration nach %s schlug fehl: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Gültigkeit des Zertifikats des VPN-Servers »%s« konnte nicht bestätigt " "werden.\n" "Grund: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Um in Zukunft diesem Server zu vertrauen, sollten Sie Folgendes\n" "zu Ihrer Befehlszeile hinzufügen:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Geben Sie »%s« zum Akzeptieren ein, oder »%s« zum Abbrechen. Alles andere, " "um Folgendes anzusehen: " #: main.c:2464 main.c:2483 msgid "no" msgstr "nein" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ja" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Serverschlüssel-Streuwert: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Legitimierungsmöglichkeit »%s« passt zu mehreren Optionen\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Legitimierungsmöglichkeit »%s« ist nicht verfügbar\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Benutzereingabe im nicht-interaktiven Modus erforderlich\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Öffnen der Token-Datei zum Schreiben schlug fehl: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Schreiben des Tokens schlug fehl: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Zeichenkette für Soft-Token ist ungültig\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "~/.stokenrc kann nicht geöffnet werden\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect wurde ohne Unterstützung für libstoken erstellt\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Allgemeiner Fehler in libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect wurde ohne Unterstützung für liboath erstellt\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Allgemeiner Fehler in liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-Token nicht gefunden\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect wurde ohne Unterstützung für Yubikey erstellt\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Allgemeiner Fehler in Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Einrichten des tun-Skripts schlug fehl\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Einrichten des tun-Geräts schlug fehl\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Aufrufer hat die Sitzung angehalten\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Es gibt nichts zu tun. Schlafen für %d ms …\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects schlug fehl: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() schlug fehl: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() schlug fehl: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fehler bei der Kommunikation mit »ntlm_auth helper«\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Versuche HTTP-NTLM-Legitimierung am Proxy (Einmalanmeldung)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "HTTP-NTLM-Legitimierung am Server »%s« wird versucht (Einmalanmeldung)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTTP NTLMv%d-Legitimierung zum Proxy wird versucht\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "HTTP-NTLMv%d-Legitimierung am Server »%s« wird versucht\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Ungültiger base32-Token-Zeichenkette\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" "Anfordern von Speicher für Dekodierung des OATH-Geheimnisses schlug fehl\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für PSKC erstellt\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK zum Erzeugen des ANFÄNGLICHEN Tokencodes\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK zum Erzeugen des NÄCHSTEN Tokencodes\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Server hat den Soft-Token abgewiesen, es wird zur manuellen Eingabe " "gewechselt\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP Token-Code wird erzeugt\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP Token-Code wird erzeugt\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Unerwartete Länge %d für TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "MTU %d vom Server erhalten\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "DNS-Server %s empfangen\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "DNS-Suchdomain %.*s empfangen\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Interne IP-Adresse %s empfangen\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Netzmaske %s empfangen\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Interne Gateway-Adresse %s empfangen\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "»Split include«-Route %s wurde empfangen\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "»Split exclude«-Route %s wurde empfangen\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "WINS-Server %s empfangen\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP-Verschlüsselung: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP-HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-Kompression: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP-Port: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP-Schlüssel-Lebensdauer: %u bytes\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP-Schlüssel-Lebensdauer: %u Sekunden\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP-zu-SSL-Ausweichen: %u Sekunden\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Schutz vor erneutem Einspielen für ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP-SPI (ausgehend): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d Byte ESP-Geheimnisse\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Unbekannter TLV, Gruppe %d, Attribut %d, Länge %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Verarbeitung des KMP-Headers ist gescheitert\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Verarbeitung der KMP-Meldung ist gescheitert\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "KMP-Meldung %d der Größe %d erhalten\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Nicht-ESP TLV (Gruppe %d) in ESP-Aushandlung KMP erhalten\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Fehler bei der Erstellung der oNCP-Verhandlungsanfrage\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Kurzer Schreibvorgang in oNCP-Verhandlung\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "%d des SSL-Datensatzes gelesen\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Unerwartete Antwort der Größe %d nach Rechnername-Paket\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serverantwort auf das Rechnername-Paket ist Fehlercode 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ungültiges Paket wartet auf KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "KMP-Meldung 301 vom Server erwartet, aber %d erhalten\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-Meldung 301 vom Server ist zu groß (%d Byte)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "KMP-Meldung 301 der Länge %d erhalten\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" "Länge des Folgedatensatzes konnte nicht gelesen werden\n" "\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Aufnahme zusätzlicher %d Bytes ist zu groß; das Ergebnis wäre %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Folgedatensatz der Länge %d konnte nicht gelesen werden\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Weitere %d Byte einer KMP-301-Nachricht gelesen\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Fehler beim Aushandeln der ESP-Schlüssel:\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Ausgehende oNCP-Verhandlungsanfrage:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "neu ankommend" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "neu abgehend" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Nur 1 Byte des oNCP-Längenfelds gelesen\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Server hat die Verbindung abgebrochen (Sitzung abgelaufen)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server hat die Verbindung abgebrochen (Grund: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Server sendete oNCP-Datensatz der Länge Null\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Ankommende KMP-Meldung %d der Größe %d (%d erhalten)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Verarbeitung der KMP-Nachricht %d wird fortgesetzt. Größe jetzt %d (erhielt " "%d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Nicht erkanntes Datenpaket\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Unbekannte KMP-Meldung %d der Größe %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d weitere Bytes nicht empfangen\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Paket ausgehend:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Steuerpaket zur ESP-Aktivierung wurde gesendet\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FEHLER: %s() aufgerufen mit ungültigem UTF-8 für das Argument »%s«\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "DTLS-Overhead für %s konnte nicht ermittelt werden\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Erzeugung der SSL_SESSION-ASN.1 für OpenSSL ist fehlgeschlagen: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL scheiterte beim Auswerten von SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialisierung der DTLSv1-Sitzung gescheitert\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-Callback\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialisierung der DTLSv1-CTX gescheitert\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Festlegen der DTLS-CTX-Version ist fehlgeschlagen\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Erzeugen des DTLS-Schlüssels fehlgeschlagen: %s\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Festlegen der DTLS-Chiffrierliste schlug fehl\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Dies ist vermutlich, weil Ihr OpenSSL defekt ist\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-Handshake schlug fehl: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Initialisieren des ESP-Schlüssels schlug fehl:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Initialisieren der ESP-HMAC schlug fehl\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Entschlüsselungskontext für ESP-Paket konnte nicht eingerichtet werden:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Die Entschlüsselung des ESP-Pakets scheiterte:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Die Verschlüsselung des ESP-Pakets scheiterte:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Erstellung des libp11 PKCS#11-Kontexts ist fehlgeschlagen:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Laden des PKCS#11-Provider-Moduls scheiterte (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN ist gesperrt\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN abgelaufen\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Ein anderer Benutzer ist bereits angemeldet\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Unbekannter Fehler beim Anmelden am PKCS#11-Token\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Angemeldet am PKCS#11-Slot »%s«\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" "Nummerieren der Zertifikate in PKCS#11 Position »%s« ist fehlgeschlagen\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d Zertifikate in Slot »%s« gefunden\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "PKCS#11-URI »%s« kann nicht ausgewertet werden\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nummerieren der PKCS#11-Positionen ist fehlgeschlagen\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Anmelden am PKCS#11-Slot »%s«\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "PKCS#11-Zertifikat »%s« konnte nicht gefunden werden\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Inhalt des X.509-Zertifikats nicht von libp11 geholt\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" "Nummerieren der Schlüssel in PKCS#11 Position »%s« ist fehlgeschlagen\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d Schlüssel in Slot »%s« gefunden\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Zertifikat hat keinen öffentlichen Schlüssel\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Zertifikat passt nicht zum geheimen Schlüssel\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Überprüfung, ob EC-Schlüssel zum Zertifikat passt\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Signaturpuffer konnte nicht zugewiesen werden\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" "Testdaten zum Überprüfen des EC-Schlüssels konnten nicht signiert werden\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "PKCS#11-Schlüssel »%s« konnte nicht gefunden werden\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" "Diese Version von OpenConnect wurde ohne Unterstützung für PSKC#11 erstellt\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Unbehandelter SSL-UI-Anfragetyp %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-Passwort ist zu lang (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Laden des privaten Schlüssels schlug fehl\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Fehler beim Installieren des Zertifikats im OpenSSL-Kontext\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Zusätzliches Zertifikat von %s: »%s«\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Verarbeiten von PKCS#12 ist fehlgeschlagen (siehe obere Fehler)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 enthält kein Zertifikat!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 enthält keinen privaten Schlüssel!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "TPM-Engine kann nicht geladen werden.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Initialisieren der TPM-Engine fehlgeschlagen\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "TPM-SRK-Passwort konnte nicht gesetzt werden\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Laden des privaten TPM-Schlüssels scheiterte\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Öffnen der Zertifikatsdatei %s schlug fehl: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Laden des Zertifikats ist gescheitert\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Verarbeitung aller unterstützten Zertifikate fehlgeschlagen. Es wird " "trotzdem versucht …\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM-Datei" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Erstellen des BIO für das Schlüsselspeicher-Objekt »%s« schlug fehl\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" "Laden des privaten Schlüssels ist fehlgeschlagen (falsches Kennwort?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" "Laden des geheimen Schlüssels ist gescheitert (siehe vorherige Fehler)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" "Laden des X509-Zertifikats aus dem Schlüsselspeicher ist fehlgeschlagen\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Öffnen der privaten Schlüsseldatei %s schlug fehl: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "PKCS#8 konnte nicht in OpenSSL-EVP_PKEY umgewandelt werden\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Identifizierung des geheimen Schlüsseltyps in »%s« ist gescheitert\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Übereinstimmung für alternativen DNS-Namen »%s«\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Keine Übereinstimmung für alternativen Namen »%s«\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "Zertifikat hat den alternativen Namen GEN_IPADD mit unsinniger Länge %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Übereinstimmende Adresse %s »%s«\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Keine Übereinstimmung für %s-Adresse »%s«\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Adresse »%s« hat einen nicht-leeren Pfad; wird ignoriert\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Adresse »%s« stimmt überein\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Keine Übereinstimmung für Adresse »%s«\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Kein alternativer Name in Zertifikat des Partners stimmt überein mit »%s«\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Kein Betreff im Zertifikat des Partners!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Verarbeiten des Betreffs im Zertifikat des Partners schlug fehl\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" "Betreff des Zertifikats des Partners stimmt nicht überein (»%s« != »%s«)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Betreff »%s« des Zertifikats des Partners stimmt überein\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Zusätzliches Zertifikat von CA-Datei: »%s«\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Fehler im Feld »notAfter« des Client-Zertifikats\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL-Zertifikat und -Schlüssel passen nicht zusammen\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Lesen von Zertifikaten aus der CA-Datei »%s« ist fehlgeschlagen\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Öffnen der CA-Datei »%s« fehlgeschlagen\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Erstellen von TLSv1 CTX fehlgeschlagen\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL-Verbindung fehlgeschlagen\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "OATH-HMAC konnte nicht errechnet werden\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Passwort:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Entfernen des schlechten »split include«: »%s«\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Entfernen des schlechten »split exclude«: »%s«\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Erzeugen des Skripts »%s« für »%s« ist gescheitert: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skript »%s« wurde außerplanmäßig abgebrochen (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skript »%s« gab Fehler %d zurück\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Socket-Verbindung abgebrochen\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Neuverbindung zum Proxy %s ist gescheitert: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Neuverbindung zum Rechner %s ist gescheitert: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy von libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo für Rechner »%s« gescheitert: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "Neue Verbindung zum DynDNS-Server mit zuvor gesicherter IP-Adresse\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Verbindungsversuch mit Proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Verbindungsversuch mit Server %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Verbunden mit %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Zuweisen des sockaddr-Speichers ist fehlgeschlagen.\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Verbindung zum %s%s%s:%s fehlgeschlagen: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Nicht funktionierende, frühere Peer-Adressen werden vergessen\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Verbindung zum Server %s fehlgeschlagen\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Neuverbinden mit Proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Dateisystemadresse (ID) der Passphrase konnte nicht erhalten werden\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Öffnen der privaten Schlüsseldatei »%s« schlug fehl: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Kein Fehler" #: ssl.c:727 msgid "Keystore locked" msgstr "Schlüsselspeicher gesperrt" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Schlüsselspeicher nicht initialisiert" #: ssl.c:729 msgid "System error" msgstr "Systemfehler" #: ssl.c:730 msgid "Protocol error" msgstr "Protokollfehler" #: ssl.c:731 msgid "Permission denied" msgstr "Zugriff verweigert" #: ssl.c:732 msgid "Key not found" msgstr "Schlüssel nicht gefunden" #: ssl.c:733 msgid "Value corrupted" msgstr "Wert defekt" #: ssl.c:734 msgid "Undefined action" msgstr "Undefinierte Aktion" #: ssl.c:738 msgid "Wrong password" msgstr "Falsches Passwort" #: ssl.c:739 msgid "Unknown error" msgstr "Unbekannter Fehler" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Öffnen von %s fehlgeschlagen: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() für %s schlug fehl: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Anfordern von %d Byte für %s schlug fehl\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Lesen von %s fehlgeschlagen: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Unbekannte Protokollfamilie %d. UDP-Serveradresse kann nicht erzeugt werden\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "UDP-Socket öffnen" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" "Unbekannte Protokollfamilie %d. UDP-Transport kann nicht verwendet werden\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "UDP-Socket binden" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie ist nicht mehr gültig. Sitzung wird beendet\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "Wartezeit %ds, verbleibender Timeout %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-Token ist zu groß (%ld Byte)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "SSPI-Token von %lu Byte wird gesendet\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Senden des SSPI-Legitimierungs-Token an Proxy fehlgeschlagen: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Empfangen des SSPI-Legitimierungs-Token von Proxy fehlgeschlagen: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-Server meldete SSPI-Kontext ist fehlgeschlagen\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Unbekannte SSPI-Statusantwort (0x%02x) von SOCKS-Server\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "SSPI-Token mit %lu Byte erhalten: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() schlug fehl: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage schlug fehl: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Ergebnis von EncryptMessage() zu groß (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "SSPI-Schutzaushandlung von %u Byte wird gesendet\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Senden der SSPI-Schutzaushandlung an Proxy fehlgeschlagen: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Erhalten der SSPI-Schutzaushandlung von Proxy fehlgeschlagen: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "SSPI-Schutzantwort von %d Byte erhalten: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage schlug fehl: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ungültige SSPI-Schutzantwort von Proxy (%lu Byte)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Geben Sie die Anmeldedaten ein, um den Software-Token zu entsperren." #: stoken.c:107 msgid "Device ID:" msgstr "Gerätekennung:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Benutzer hat den Soft-Token umgangen.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Alle Felder werden benötigt. Bitte versuchen Sie es erneut.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Allgemeiner Fehler in libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Gerätekennung oder Passwort war inkorrekt, versuchen Sie es erneut.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Initialisierung des Soft-Token war erfolgreich.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Geben Sie den PIN des Software-Token ein." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Ungültiges PIN-Format; versuchen Sie es erneut.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "RSA Token-Code wird erzeugt\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Fehler beim Zugriff auf Registrierungsschlüssel für Netzwerk-Adapter\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() fehlgeschlagen: %s\n" "Es wird auf GetAdaptersInfo() ausgewichen\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() schlug fehl: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Öffnen von »%s« fehlgeschlagen\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Ermitteln der TAP-Treiberversion schlug fehl: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Fehler: Windows-TAP-Treiber v9.9 oder neuer ist notwendig (%ld.%ld " "gefunden)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Festlegen der TAP IP-Adressen fehlgeschlagen: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Festlegen des TAP Medienstatus fehlgeschlagen: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-Gerät brach die Verbindung ab. Sie wird getrennt.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Lesen vom TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Abschließen des Lesens von TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld Bytes wurden an »tun« geschrieben\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" "Auf das Schreiben von »tun« wird gewartet …\n" "\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "%ld Bytes wurden nach dem Warten an »tun« geschrieben\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Schreiben auf das TAP-Gerät fehlgeschlagen: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" "Das Anlegen von Tunnel-Skripten wird unter Windows noch nicht unterstützt\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "/dev/tun konnte nicht für die Verbindung geöffnet werden" #: tun.c:92 msgid "Can't push IP" msgstr "IP kann nicht weitergeleitet werden" #: tun.c:102 msgid "Can't set ifname" msgstr "ifname kann nicht festgelegt werden" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Verbindung %s für IPv%d gescheitert: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Neues tun konnte nicht erstellt werden" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Umstellen des tun-Dateideskriptors in den Nachrichten-Verwerfen-Modus ist " "fehlgeschlagen" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-Gerät wird auf dieser Plattform nicht unterstützt\n" #: tun.c:205 msgid "open net" msgstr "Offenes Netz" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Öffnen des tun-Geräts ist gescheitert: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Binden des lokalen tun-Geräts ist gescheitert (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Um das lokale Netzwerk zu konfigurieren, muss Openconnect mit " "Systemverwalterrechten ausgeführt werden.\n" "Weitere Informationen: https://www.infradead.org/openconnect/nonroot.html\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Ungültiger Schnittstellenname »%s«; muss »utun%%d« oder »tun%%d« " "entsprechen\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Öffnen des Socket SYSPROTO_CONTROL schlug fehl: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Abfrage der »utun«-Kontrolladresse fehlgeschlagen: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Zuweisung des »utun«-Gerätenamens fehlgeschlagen\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Verbindung zur utun-Einheit fehlgeschlagen: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ungültiger Schnittstellenname »%s«; muss »tun%%d« entsprechen\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "»%s« kann nicht geöffnet werden: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "Socket-Paar fehlgeschlagen: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork fehlgeschlagen: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Schreiben des eingehenden Pakets schlug fehl: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Rechner »%s« wird als nackter Rechnername angesehen\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Fehler beim Bilden von SHA1 der bestehenden Datei\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-Konfigurationsdatei SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Fehler beim Verarbeiten der XML-Konfigurationsdatei %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Rechner »%s« besitzt Adresse »%s«\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Rechner »%s« besitzt UserGroup »%s«\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Rechner »%s« ist nicht in der Konfiguration aufgeführt. Er wird als nackter " "Rechnername angesehen\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Senden von »%s« an ykneo-oath-Applet fehlgeschlagen: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ungültige kurze Antwort des ykneo-oath-Applet auf »%s«\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Fehler in Antwort auf: »%s«: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "»Applet wählen«-Befehl" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nicht erkannte Antwort des ykneo.oath-Applets\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "ykneo.oath-Applet v%d.%d.%d. gefunden\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Für das Yubikey-OATH-Applet wird ein PIN benötigt" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Die Yubikey-Entsperrantwort konnte nicht berechnet werden\n" #: yubikey.c:274 msgid "unlock command" msgstr "Entsperren-Befehl" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Gekürzte PBKBF2-Variante der Yubikey-PIN wird versucht\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Erstellung eines PC/SC-Kontext fehlgeschlagen: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC-Kontext wurde hergestellt\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Anfragen der Leserliste ist fehlgeschlagen: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Verbindung zum PC/SC-Leser »%s« fehlgeschlagen: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Verbundener PC/SC-Leser »%s«\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" "Exklusiver Zugriff auf Einleser »%s« konnte nicht erhalten werden: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "»Schlüssel auflisten«-Befehl" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s Schlüssel »%s« auf »%s« wurde gefunden\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Token »%s« nicht in Yubikey »%s« gefunden. Ein anderer Yubikey wird gesucht " "…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "Server hat den Yubikey-Token abgewiesen, es wird zur manuellen Eingabe " "gewechselt\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Yubikey Token-Code wird erzeugt\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Exklusiver Zugriff auf Yubikey konnte nicht erhalten werden: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "Berechnen-Befehl" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nicht erkannte Antwort von Yubikey bei Erstellung des Token-Codes\n" openconnect-8.20/po/lt.po0000644000076400007640000056264414204456072017152 0ustar00dwoodhoudwoodhou00000000000000# Lithuanian translation of network-manager-openconnect. # Copyright (C) 2009-2010 Free Software Foundation, Inc. # This file is distributed under the same license as the network-manager-openconnect package. # Žygimantas Beručka , 2009. # Aurimas Černius , 2010-2021. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-09-07 22:10+0300\n" "Last-Translator: Aurimas Černius \n" "Language-Team: Lietuvių \n" "Language: lt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && (n" "%100<10 || n%100>=20) ? 1 : 2)\n" "X-Generator: Gtranslator 40.0\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "Nerastas ANsession slapukas\n" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Netinkamas slapukas „%s“\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Rastas DNS serveris %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "Gautas paieškos domenas „%s“\n" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "Nežinomas masyvo konfigūracijos elementas „%s“\n" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "Pradinė konfigūracija: greičio tunelis %d, šifr %d, DPD %d\n" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "Trumpas rašymas į masyvą JSON derybose\n" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "Nepavyko perskaityti masyvo JSON atsako\n" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "Nelaukas atsakas į masyvo JSON užklausą\n" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "Nepavyko išanalizuoti masyvo JSON atsako\n" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "Klaida kuriant masyvo derybų užklausą\n" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Netikėtas %d rezultatas iš serverio\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "Klaida kuriant masyvo DTLS derybų paketą\n" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "Trumpas rašymas į masyvo derybas\n" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "Nepavyko perskaityti UDP derybų atsako\n" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "DTLS įjungtas prievade %d\n" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "Atsisakoma ne-DTLS UDP tunelio\n" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "Nepavyko perskaityti ipff atsako\n" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Nepavyko išskirti atminties\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Gautas trumpas paketas (%d baitai)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Gaunamas %x tipo valdymo paketas:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Gautas %d baitų duomenų paketas\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL įrašė per mažai baitų! Prašyta %d, išsiųsta %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Atliekamas CSTP raktų pakeitimas\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" "Pakartotinis išankstinis suderinimas nepavyko; bandomas naujas tunelis\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "TCP mirusio porininko aptikimas aptiko mirusį porininką!\n" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "TCP persijungimo nepavyko\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Siųsti TCP DPD\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Siųsti TCP Keepalive\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Siunčiamas DTLS išjungimo paketas\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Siunčiamas nespaustų duomenų paketas iš %d baitų\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Bandomas naujas DTLS ryšys\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "Nepavyko gauti tapatybės patvirtinimo atsakymo iš DTLS\n" #: array.c:1084 msgid "DTLS session established\n" msgstr "DTLS seansas užmegztas\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "Gautas senas IP per DTLS; laikoma užmegztu\n" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "Gautas IPv6 per DTLS; laikoma užmegztu\n" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "Gaunas nežinomas DTLS paketas\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "Klaida sukuriant connect užklausą DTLS seansui\n" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "Nepavyko įrašyti connect užklausos DTLS seansui\n" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Gautas DTKS paketas 0x%02x iš %d baitų\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Atliekamas DTLS raktų pasikeitimas\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Nepavyko DTLS išankstinis suderinimas; jungiamasi iš naujo.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Siųsti DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nepavyko siųsti DPD užklausos. Tikėkitės atsijungimo\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Siunčiamas DTLS paketas iš %d baitų; DTLS siutimas grąžino %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Atsijungimas nepavyko.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Atsijungimas sėkmingas.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Paskirties formos laukas %s buvo nurodytas; laikoma, kad SAML %s tapatybės " "patvirtinimas yra užbaigtas.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "SAML %s reikia patvirtinti tapatybę per %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "SAML %s reikia patvirtinti tapatybę per išorinį scenarijų.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Kai SAML tapatybės patvirtinimas bus užbaigtas, nurodykite paskirties formos " "lauką pridėtami :field_name prie prisijungimo URL.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Įveskite savo naudotojo vardą ir slaptažodį" #: auth-globalprotect.c:159 msgid "Username" msgstr "Naudotojo vardas" #: auth-globalprotect.c:174 msgid "Password" msgstr "Slaptažodis" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Tikrinimas:" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "GlobalProtect prisijungimas grąžino netikėtą argumento vertę arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect prisijungimas grąžino %s=%s (laukta %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect prisijungimas grąžino tuščią arba trūkstamą %s\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect prisijungimas grąžino %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Praneškite apie %d netikėtas vertes aukščiau (iš kurių %d yra lemtingos) " "adresu \n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Pasirinkite GlobalProtect tinklų sietuvą." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "TINKLŲ SIETUVAS:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Nepaisomas portalo HIP pranešimo intervalo (%d minutės), kadangi intervalas " "jau nustatytas į %d minutes.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Portalas nustatė HIP pranešimo intervalą į %d minutes).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "Galimi %d tinklų sietuvų serveriai:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" "GlobalProtect portalo konfigūracija nepateikia tinklų sietuvo serverių.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nepavyko sukurti OTP leksemos kodo; išjungiama leksema\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Serveris nėra nei GlobalProtect portalas, nei tinklų sietuvas.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Nepaisoma nežinomo formos pateikimo elemento „%s“\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Nepaisoma nežinomo formos įvesties tipo „%s“\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Išmetamas pakartotinis parametras „%s“\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Negalima apdoroti formos method='%s', action='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Nežinomas teksto srities laukas: „%s“\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nepavyko išskirti atminties komunikacijai su TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Nepavyko išsiųsti komandos į TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC palaikymas Windows sistemoje dar nerealizuotas\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nėra DSPREAUTH slapuko; nebandoma TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "Bandoma vykdyti Linux TNCC/Host trojos arklio scenarijų „%s“.\n" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Nepavyko įvykdyti TNCC scenarijaus %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Pradžia išsiųsta; laukiama atsakymo iš TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Nepavyko perskaityti TNCC atsakymo\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Iš TNCC gautas nesėkmingas %s atsakymas\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "TNCC atsakymas 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Antra TNCC atsakymo eilutė: „%s“\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Iš TNCC gautas naujas DSPREAUTH slapukas: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" "Gautas pakartoninio tapatybės patvirtinimo intervalas iš TNCC: %d sekundžių\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Netikėta netuščia eilutė iš TNCC po DSOREAUTH slapuko: „%s“\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Per daug netuščių eilučių iš TNCC po DSPREAUTH slapuko\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Nepavyko perskaityti HTML dokumento\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Nepavyko rasti ar perskaityti žiniatinklio formos prisijungimo puslapyje\n" "\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Sutikta forma be „name“ arba „id“\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" "Formos veiksmas (%s) greičiausiai reiškia nepavykusį TNCC/Host patikrinimą.\n" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Nežinoma forma (pavadinimas „%s“, id „%s“)\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Išmetama nežinoma HTML forma\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Formos pasirinkimas neturi pavadinimo\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "pavadinimas %s neturi įvesties\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Nėra įvesties tipo formoje\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Nėra įvesties pavadinimo formoje\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nežinomas įvesties tipas %s formoje\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Tuščias atsakymas iš serverio\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Nepavyko perskaityti serverio atsakymo\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Atsakymas buvo:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Gautas , nors jo nesitikėta.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML atsakymas neturi „auth“ viršūnės\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Prašyta slaptažodžio, bet nustatyta „--no-passwd“\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" "Kliento liudijimo trūksta arba jis neteisingas (liudijimo tikrinimo klaida)" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Neparsiunčiamas XML profilis, nes SHA1 jau atitinka\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nepavyko atverti HTTPS ryšio į %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Nepavyko išsiųsti GET užklausos naujai konfigūracijai\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Parsiųstas konfigūracijos failas neatitiko siekiamo SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Parsiųstas naujas XML profilis\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Klaida: „Cisco Secure Desktop“ trojos arklio vykdymas šioje platformoje dar " "nerealizuotas.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Nepavyko nustatyti gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Nepavyko nustatyti grupių į %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Nepavyko nustatyti uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Netinkamas naudotojo uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nepavyko pakeisti CSD namų katalogo „%s“: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Klaida: Serveris prašė vykdyti CSD serverio paiešką.\n" "Jums reikia pateikti tinkamą --csd-wrapper argumentą.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Klaida: serveris paprašė parsiųsti ir įvykdyti „Cisco Secure Desktop“ trojos " "arklį.\n" "Ši funkcija pagal numatymą yra išjungta saugumo sumetimai, tad jūs galite " "norėti ją įjungti.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Laikinasis katalogas „%s“ nėra rašomas: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nepavyko atverti laikinojo CSD scenarijaus failo: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nepavyko įrašyti laikinojo CSD scenarijaus failo: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "Bandoma vykdyti Linux CSD trojos arklio scenarijų „%s“.\n" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "CSD scenarijus „%s“ išėjo nenormaliai\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "CSD scenarijus „%s“ grąžino nenulinę būseną: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Tapatybės patvirtinti gali nepavykti. Jei jūsų scenarijus negrąžino nulio, " "pataisykite jį.\n" "Ateities openconnect versijos nutrauks veikimą po šios klaidos.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "CSD scenarijus „%s“ sėkmingai baigė darbą.\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Įspėjimas: jūs vykdote nesaugų CSD kodą root teisėmis\n" "\t Naudokite komandų eilutės parametrą „--csd-user“\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nepavyko įvykdyti CSD scenarijaus %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Nežinomas atsakymas iš serverio\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Serveris paprašė SSL kliento liudijimo po to, kai jis buvo pateiktas\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Serveris paprašė SSL kliento liudijimo; joks nebuvo sukonfigūruotas\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST įjungtas\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Nepavyko gauti CSD scenarijaus. Vis tiek tęsiama su CSD dengenčiu " "scenarijumi.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "Gautas CSD %s platformai (dydis %d baitų).\n" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Atnaujinama %s po 1 sekundės...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(klaida 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Klaida aprašant klaidą!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "KLAIDA: nepavyksta inicializuoti lizdų\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITINĖ KLAIDA: DTLS pagrindinė paslaptis neinicializuota. Praneškite apie " "tai.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Klaida kuriant HTTPS CONNECT užklausą\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Klaida parsiunčiant HTTPS atsakymą\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN tarnyba neprieinama; priežastis: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Gautas netinkamas HTTP CONNECT atsakymas: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Gautas CONNECT atsakymas: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Nėra atminties parametrams\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID ne 64 simboliai; yra: „%s“\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID yra netinkama; yra: „%s“\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nežinomas CSTP-Content-Encoding %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nežinomas CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Negauta MTU. Nutraukiama\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Prisijungta prie CSTP. DPD %d, keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Nepavyko nustatyti suspaudimo\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Nepavyko išskirti buferio\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "buferis nepavyko\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS išskleidimas nepavyko: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZ4 išskleidimas nepavyko\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Nežinomas suspaudimo tipas %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Gautas %s suspaustas %d baitų duomenų paketas (buvo %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "nepavyko išskleisti %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Nelauktas paketo ilgis. SSL_read grąžino %d, bet paketas yra\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Gauta CSTP DPD užklausa\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Gautas CSTP DPD atsakymas\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Gautas CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Gautas nespaustų duomenų paketas iš %d baitų\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Gautas serverio atsijungimas: %02x „%s“\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Gautas serverio atsijungimas\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Suspaustas paketas gautas ne spaudimo veiksenoje\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "gautas serverio pabaigos paketas\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nežinomas paketas %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTO negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Nepavyko persijungimas\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Siųsti CSTO DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Siųsti CSTO Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Siunčiamas suspaustų duomenų paketas iš %d baitų (buvo %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Siųsti BYE paketą: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Greitai įrašomas BYE paketas\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Bandoma nusiųsti tapatybės nustatymą į įgaliotąjį serverį\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Bandoma nusiųsti tapatybės nustatymą į serverį „%s“\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS ryšys bandytas su esamu fd\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Nėra DTLS adreso\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Serveris nepasiūlė DTLS šifro parametro\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Nėra DTLS jungiantis per įgaliotąjį serverį\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS inicializuota. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Gautas nežinomas paketas (ilgis %d): %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Šis TOS: %d, paskutinis TOS: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Gauta DTLS DPD užklausa\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nepavyko išsiųsti DPD atsakymo. Tikėkitės atsijungimo\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Gautas DTLS DPD atsakymas\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Gautas DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Gautas suspaustas DTLS paketas, kai suspaudimas nėra įjungtas\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nežinomas DTLS paketo tipas %02x, ilgis %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Siųsti DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nepavyko siųsti keepalive užklausos. Tikėkitės atsijungimo\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Inicijuojamas MTU aptikimas (min=%d, max=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Siunčiamas MTU DPD zondas (%u baitų)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nepavyko išsiųsti DPD užklausos (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Per ilgas MTU aptikimo ciklas; numanomas suderintas MTU.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Per ilgas MTU aptikimo ciklas; MTU nustatyta į %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Gautas nelauktas paketas (%.2x) MTU aptikime; praleidžiama.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "Nėra atsakymo į dydį %u po %d bandymų; deklaruojamas MTU yra %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nepavyko gauti DPD užklausos (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Gautas MTU DPD zondas (%u baitų)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Aptiktas %d baitų MTU (buvo %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Po aptikimo nėra MTU pasikeitimo (buvo %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Tikimasi ESP paketo su seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "Priimamas pavėlavęs ESP paketas su seq %u (laukta %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Išmetamas senas ESP paketas su seq %u (laukta %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Toleruojamas senas ESP paketas su seq %u (laukta %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Išmetamas ESP atsakymo paketas su seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Toleruojamas ESP atsakymo paketas su seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Priimamas ne eilės tvarkos ESP paketas su seq %u (laukta %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "%s ESP parametrai: SPI 0x%8x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP šifravimo tipo %s raktas 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP tapatybės nustatymo tipo %s raktas 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "gaunama" #: esp.c:94 msgid "outgoing" msgstr "siunčiama" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Siųsti ESP zondus\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Gautas ESP paketas su senu SPI 0x%08x, seq %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Gautas ESP paketas su netinkamu SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "Gautas ESP senas %d baitų IP paketas\n" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "Gautas ESP senas %d baitų IP paketas (LZO suspaustas)\n" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "Gautas ESP IPv6 %d baitų paketas\n" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "Gautas ESP %d baitų paketas su neatpažintu turinio tipu %02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Netinkamas ESP užpildo ilgis %02x\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Netinkami ESP užpildo baitai\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Užmegztas ESO seansas su serveriu\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Nepavyko išskirti atminties ESP paketo dešifravimui\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "ESP paketo LZ0 išskleidimas nepavyko\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZ0 išskleidė %d baitų į %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "ESP nerealizuoja rekey\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP aptiko negyvą porininką!\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Siųsti ESO zondus DPD gavimui\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "ESP nerealizuoja keepalive\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Iš naujo bandomas nepavykęs ESP siuntimas: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Nepavyko išsiųsti ESP paketo: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "Išsiųstas IPv%d paketas su %d baitų\n" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Nepavyko sugeneruoti atsitiktinių raktų ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Nepavyko sugeneruoti pradinio IV ESP\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" "ĮSPĖJIMAS: nerasta HTML prisijungimo forma; daroma prielaida, kad yra " "naudotojo vardo ir slaptažodžio laukai\n" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "Nežinomas formos ID „%s“ (tikėtasi „auth_form“)\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Nepavyko perskaityti F5 profilio atsakymo\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Nepavyko rasti VPN profilio parametrų\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Nepavyko perskaityti F5 parametrų atsakymo\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "Neveiksnumo laiko limitas yra %d minutės\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Gauti numatytieji keliai\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Gauta SplitTunneling0 vertė %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Gautas DNS serveris %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Gautas WINS/NBNS serveris %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Gauta DNS paieškos sritis %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "Gautas padalinimas išmeta kelią %s\n" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "Gautas padalinimas įtraukia kelią %s\n" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "DTLS įjungtas prievadui %d\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" "ĮSPĖJIMAS: serveri įjungia DTLS, bet taip pat reikalauja HDLC. Išjungiamas " "DTLS,\n" " kadangi HDLC neleidžia nustatyti efektyvaus ir pastovaus MTU.\n" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Nepavyko rasti VPN parametrų\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Gautas pasenęs IP adresas %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Gautas IPv6 adresas %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Gauti profilio parametrai „%s“\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Guta ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Klaida užmezgant F5 ryšį\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Gauta prisijungimo sritis „%s“\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "Nepavyko perskaityti Fortinet konfigūracijos XML\n" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Neveiksnumo laiko limitas yra %d minutės.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "Pranešta platforma yra %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Gautas IPv%d DNS serveris %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "ĮSPĖJIMAS: gauti padalinto DNS domenai %s (dar nerealizuota)\n" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "ĮSPĖJIMAS: gautas padalinto DNS serveris %s (dar nerealizuota)\n" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "Gautas IPV%d kelias %s\n" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "Nėra slapuko pavadinimu SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "Klaida Užmezgant Fortinet ryšį\n" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "Negautas lauktas svrhello atsakas.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "svrhello būsena buvo „%.*s“, o ne „ok“\n" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Atidedamas DTLS tęsimas iki CSTP sugeneruos PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Nepavyko sugeneruoti DTLS prioriteto eilutės\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nepavyko nustatyti DTLS prioriteto: „%s“: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Nepavyko paskirstyti įgaliojimų: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Nepavyko sugeneruoti DTLS rakto: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nepavyko nustatyti DTLS rakto: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Nepavyko nustatyti DTLS PSK įgaliojimų: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nežinomi DTLS parametrai prašomam CipherSuite „%s“\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nepavyko nustatyti DTLS sesijos prametrų: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS naudojo %d ClientHello atsitiktinių baitų; tai niekada neturėtų " "nutikti\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS išsiuntė nesaugų ClientHello atsitiktinį skaičių. Atsinaujinkite į " "3.6.13 arba naujesnį.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Nepavyko inicijuoti DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Porininko MTU %d pernelyg mažas, kad būtų leista DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU sumažinta iki %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "DTLS seanso pratęsimas nepavyko; galimas MITM užpuolimas. Išjungiama DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nepavyko nustatyti DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Užmegztas DTLS ryšys (naudojant GnuTLS). Šifrų rinkinys %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS ryšio suspaudimas, naudojant %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS išankstinio suderinimo laikas baigėsi\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Nepavyko DTLS išankstinis suderinimas: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Ar ugniasienė neleidžia jums siųsti UDP paketų?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Nepavyko inicializuoti ESP šifro: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Nepavyko inicializuoti ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Nepavyko apskaičiuoti HMAC ESP paketui: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Gautas ESP paketas su netinkamu HMAC\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Nepavyko dešifruoti ESP paketo: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Nepavyko užšifruoti ESP paketo: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Nepavyko TLS select()" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "TLS/DTLS rašymas atšauktas\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Nepavyko rašyti į TLS/DTLS lizdą: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "Nepavyko TLS/DTLS select()" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "TLS/DTLS skaitymas atšauktas\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "TLS/DTLS lizdas netvarkingai užvertas\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Nepavyko skaityti iš TLS/DTLS lizdo: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Bandyta skaityti iš neegzistuojančio senso %s\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "%s seanso skaitymo klaida: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "Bandyta rašyti į neegzistuojantį seansą %s\n" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "%s seanso rašymo klaida: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Nepavyko išgauti liudijimo galiojimo pabaigos laiko\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Kliento liudijimo galiojimas baigėsi" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "Antrinio kliento liudijimo galiojimas baigėsi" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Kleinto liudijimas biags galioti" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "Antrinio kliento liudjimo galioimas tuoj baigsis" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nepavyko įkelti elemento „%s“ iš įvesties: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nepavyko atverti rakto/liudijimo failo %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nepavyko rakto/liudijimo failo %s stat: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Nepavyko išskirti liudijimo buferio\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nepavyko perskaityti liudijimo į atmintį: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nepavyko nustatyti PKCS#12 duomenų struktūros: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nepavyko dešifruoti PKCS#12 liudijimo failo\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Įveskite PKCS#12 slaptažodį:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "Įveskite antrinio PKCS#12 slaptafrazę:" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nepavyko apdoroti PKCS#12 failo: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nepavyko įkelti PKCS#12 liudijimo: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "Nepavyko įkelti antrinio PKCS#12 liudijimo: %s\n" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nepavyko inicializuoti MD5 maišos: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 maišos klaida: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Trūksta DEK-Info: antraštė iš OpenSSL šifruoto rakto\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Nepavyko nustatyti PEM šifravimo tipo\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepalaikomas PEM šifravimo tipas: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Netinkamas šifruoto PEM failo druska\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Klaida šifruoto PEM failo base64 dešifravime: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Šifruotas PEM failas per trumpas\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Nepavyko inicializuoti šifro PEM failo dešifravimui: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nepavyko dešifruoti PEM rakto: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Nepavyko dešifruoti PEM rakto\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Įveskite PEM slaptažodį:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "Įveskite antrinio PEM slaptafrazę:" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Ši programa sukurta be sistemos rakto palaikymo\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Ši programa sukurta be PKCS#12 palaikymo\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Naudojamas PKCS#11 liudijimas %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Naudojamas sistemos liudijimas %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Klaida įkeliant liudijimą iš PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Klaida įkeliant sistemos liudijimą: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Naudojamas liudijimo failas %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "Naudojamas antrinis liudijimo failas %s\n" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 failas neturėjo liudijimo\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Nerasta liudijimų faile" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nepavyko įkelti liudijimo: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "Nepavyko įkelti antrinio liudijimo: %s\n" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Naudojamas sistemos raktas %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "Naudojamas antrinis sistemos raktas %s\n" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Klaida inicijuojant privačiojo rakto struktūrą: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Klaida importuojant sistemos raktą %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Bandomas PKCS#11 rakto URL %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Klaida inicializuotant PKCS#11 rakto struktūrą: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Klaida importuojant PKCS#11 URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Naudojamas PKCS#11 raktas %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Klaida importuojant PKCS#11 raktą į privačiojo rakto struktūrą: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Naudojamas privačiojo rakto failas %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ši OpenConnect versija sukurta be TPM palaikymo\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Ši OpenConnect versija sukurta be TPM2 palaikymo\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Nepavyko interpretuoti PEM failo\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nepavyko įkelti PKCS#1 privačiojo rakto: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nepavyko įkelti privačiojo rakto kaip PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nepavyko dešifruoti PKCS#8 liudijimo failo\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nepavyko nustatyti privačiojo rakto %s tipo\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Įveskite PKCS#8 slaptažodį:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nepavyko gauti rakto ID: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Klaida pasirašant testinius duomenis privačiuoju raktu: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Klaida tikrinant parašą su liudijimu: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Nerastas SSL liudijimas, atitinkantis privatųjį raktą\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "Nerastas antrinis liudijimas atitinkantis privatų raktą\n" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "got_key sąlygos neišpildytos!\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "Klaida kuriant abstraktų privatų raktą iš /x509_privkey: %s\n" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Naudojamas kliento liudijimas „%s“\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "Naudojamas antrinis liudijimas „%s“\n" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Nepavyko išskirti atminties liudijimui\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Negauta jokio išdavėjo iš PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Gauta kita LĮ „%s“ iš PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nepavyko išskirti atminties liudijimų palaikymui\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Pridedama palaikanti LĮ „%s“\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Nepavyko importuoti X509 liudijimo: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nepavyko nustatyti PKCS#11 liudijimo: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Nepavyko nustatyti liudijimų atšaukimų sąrašo: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "Atrodo privatus raktas nepalaiko RSA-PSS. Išjungiamas TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nepavyko nustatyti liudijimo: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Serveris nepateikė liudijimo\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Klaida lyginant serverio liudijimą pakartotiniame išankstiniame suderinime: " "%s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" "Serveris pateikė kitokį liudijimą pakartotiniame išankstiniame suderinime\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" "Serveris pateikė identišką liudijimą pakartotiniame išankstiniame " "suderinime\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Klaida inicializuojant X509 liudijimo struktūrą\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Klaida importuojant serverio liudijimą\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Nepavyko suskaičiuoti serverio liudijimo maišos vertės\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Klaida tikrinant serverio liudijimo būseną\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "liudijimas atšauktas" #: gnutls.c:2098 msgid "signer not found" msgstr "pasirašytojas nerastas" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "pasirašytojas nėra LĮ liudijimas" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "nesaugus algoritmas" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "liudijimas dar neaktyvuotas" #: gnutls.c:2106 msgid "certificate expired" msgstr "liudijimo galiojimas baigėsi" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "nepavyko patikrinti liudijimo" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "liudijimas neatitinka serverio vardo" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Nepavyko serverio liudijimo patikrinimas: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Klaida išskiriant atmintį cafile liudijimams\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Nepavyko perskaityti liudijimų iš cafile: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nepavyko atverti LŠ failo „%s“: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Nepavyko įkelti liudijimo. Nutraukiama.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "Nepavyko sugeneruoti GnuTLS prioriteto eilutės\n" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Nepavyko nustatyti GnuTLS prioriteto eilutės („%s“): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL derybos su %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL ryšys nutrauktas\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL ryšio klaida: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS nelemtingas grįžimas išankstinio suderinimo metu: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Prisijungta prie HTTPS adresu %s su šifru %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "Naujos SSL derybos su %s naudojant šifrą %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "%s būtinas PIN" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Neteisingas PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Tai yra galutinis bandymas prie užrakinant!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Liko tik keli bandymai prieš užrakinimą!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Įveskite PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepalaikomas OATH HMAC algoritmas\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nepavyko suskaičiuoti OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "Nepavyko nustatyti šifravimo rinkinių: %s\n" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Užmegstas EAP-TTLS seansas\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM pasirašymo funkcija iškviesta %d baitams.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nepavyko sukurti TPM maišos objekto: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nepavyko nustatyti vergtės TPM maišos objekte: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Nepavyko TPM maišos parašas: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Klaida dekoduojant TSS rakto duomenis: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Klaida TSS rakto duomenyse\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nepavyko sukurti TPM konteksto: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nepavyko prijungti TPM konteksto: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nepavyko įkelti TPM SRK rakto: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nepavyko įkelti TPM SRK politikos objekto: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nepavyko nustatyti TPM PIN: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nepavyko įkelti TPM rakto duomenų: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Įveskite TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nepavyko sukurti rakto politikos objekto: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nepavyko priskirti politikos raktui: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Įveskite TPM rakto PIN:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "Įveskite antrinio rakto TPM PIN:" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nepavyko nustatyti rakto PIN: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Nežinomas TPM2 EC pranešimo dydis %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "Nepalaikomas EC parašo algoritmas %s\n" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Klaida dekoduojant TSS2 rakto duomenis: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Nepavyko sukurti ASN.1 tipo TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Nepavyko iškoduoti TPM2 rakto ASN.1: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Nepavyko perskaityti TPM2 rakto tipo OID: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "TPM2 raktas yra nežinomo tipo OID %s, o ne %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Nepavyko perskaityti TPM2 rakto tėvo: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Nepavyko perskaityti TPM2 viešojo rakto elemento\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Nepavyko perskaityti TPM2 privataus rakto elemento\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Perskaitytas TPM2 raktas su tėvu %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2 pranešimas per ilgas: %d >= %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "PSS šifravimo klaida; maišos dydis %d yra per didelis RSA raktui %d\n" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "TPMv2 RSA pasirašymas prašo nežinomo algoritmo %s\n" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "TPM2 slaptažodis per ilgas; trumpinamas\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "savininkas" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "patvirtinimas" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platforma" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Kuriamas pirminis raktas %s hierarchijoje.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Įveskite TPM2 %s hierarchijos slaptažodį:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth klaida: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary savininko tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary klaida: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Užmezgamas ryšys su TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize klaida: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 jau buvo paleista todėl tpm2tss žurnale yra neteisingas pranešimas apie " "klaidą.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup klaida: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic klaida deskriptoriui 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Įveskite TPM2 tėvinio rakto slaptažodį:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "Įveskite antrinio TPM2 tėvinio rakto slaptažodį:" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Įkeliami TPM2 rakto duomenys, tėvas %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2 Esys_Load tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load klaida: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext klaida generuojant pirminį: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Įveskite TPM2 rakto slaptažodį:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "Įveskite antrinio TPM2 rakto slaptažodį:" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "TPM2 RSA pasirašymo funkcija prašė %d baitų, algoritmas %s\n" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 klaida generuojant RSA parašą: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "TPM2 EC pasirašymo funkcija iškviesta %d baitams.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "Nežinomas TPM2 EC sklaidos dydis %d algoritmui 0x%x\n" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign tapatybės patvirtinimo klaida\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Netinkamas TPM2 tėvo deskriptorius 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "Naudojama SWTPM dėl aplinkos kintamojo TPM_INTERFACE_TYPE\n" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "TSS2_TctiLdr_Initialize klaida swtpm: 0x%x\n" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Nepavyko importuoti TPM2 privačiojo rakto duomenų: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Nepavyko importuoti TPM2 viešojo rakto duomenų: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Nepalaikomas TPM2 rakto tipas %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2 veiksmas %s nepavyko (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Patikrinimas: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Atsakymas buvo:%s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" "ĮSPĖJIMAS: konfigūracijos XML turi žymą su verte „%s“.\n" " VPN ryšys gali būti išjungtas arba apribotas.\n" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Nestandartinis SSL tunelio kelias: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tunelio laiko limitas (raktų keitimo intervalas) yra %d minutės.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Tinklų sietuvo adresas konfigūracijos XML (%s) skiriasi nuo išorinio tinklų " "sietuvo adreso (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" "IPv6 kelvedžio adresas konfigūracijos XML (%s) skiriasi nuo išorinio " "kelvedžio adreso (%s).\n" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect konfigūratorius atsiuntė ipsec-mode=%s (laukta esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Nepaisoma ESP raktų, kadangi ESP palaikymo nėra šioje versijoje\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" "Potenciali su IPv6 susijusi GlobalProtect konfigūracijos žyma <%s>: %s\n" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Nežinoma GlobalProtect konfigūracijos žyma <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" "GlobalProtect IPv6 palaikymas yra eksperimentinis. Praneškite apie " "rezultatus .\n" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" "Negauta ESP raktų bei atitinkamo kelvedžio GlobalProtect konfigūracijoje; " "tunelis bus tik TLS.\n" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP išjungtas" #: gpst.c:661 msgid "No ESP keys received" msgstr "Negauta ESP raktų" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "ESP palaikymo nėra šioje versijoje" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Negauta MTU. Suskaičiuota %d %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Jungiamasi prie HTTPS tunelio jungties ...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Klaida parsiunčiant GET-tunnel HTTPS atsakymą.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Tinklų sietuvas atsijungė iš karto po GET-tunnel užklausos.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "Gautas nalauktas HTTP atsakymas: %.*s\n" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "ĮSPĖJIMAS: serveris paprašė pateikti HIP ataskaitą su md5sum %s.\n" " VPN ryšys gali būti išjungtas arba ribotas be HIP ataskaitos pateikimo.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Tačiau, HIP ataskaitos pateikimo scenarijaus vykdymas šioje platformoje dar " "nerealizuotas." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Reikia pateikti --csd-wrapper argumentą su HIP ataskaitos pateikimo " "scenarijumi." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Klaida: „HIP Report“ scenarijaus vykdymas šioje platformoje dar " "nerealizuotas.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "Bandoma vykdyti HIP trojos arklio scenarijų „%s“.\n" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "Nepavyko sukurti kanalo HIP scenarijui\n" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "Nepavyko atsišakoti HIP scenarijui\n" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "HIP scenarijus „%s“ išėjo nenormaliai\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "HIP scenarijus „%s“ grąžino nenulinę būseną: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "HIP scenarijus „%s“ sėkmingai baigtas (%d baitų ataskaita).\n" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Nepavyko pateikti HIP ataskaitos.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "HIP ataskaita sėkmingai pateikta.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Nepavyko įvykdyti HIP scenarijaus %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Tinklų sietuvas sako, kad reikia HIP ataskaita.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Tinklų sietuvas sako, kad HIP ataskaitos nereikia.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Prisijungta prie ESP tunelio; išeinama iš HTTPS pagrindinio ciklo.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Nepavyko prisijungti prie ESP tunelio; vietoj to naudojamas HTTPS.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Paketo gavimo klaida: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Nelauktas paketo ilgis. SSL_read grąžino %d (įskaitant 16 antraštės baitų), " "bet antraštė payload_len yra %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Gautas CSTP DPD/keepalive atsakymas\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Laukta 0000000000000000 kaip paskutinių 8 baitų DPD/keepalive paketo " "antraštėje, bet gauta:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Gautas IPv%d duomenų paketas su %d baitų\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Laukta 0100000000000000 kaip paskutinių 8 baitų duomenų paketo antraštėje, " "bet gauta:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Nežinomas paketas. Antraštė yra:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "GlobalProtect HIP bus patikrintas\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "HIP patikrinimas arba ataskaita nepavyko\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect raktų pakeitimas\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST negyvų porininkų aptikimas aptiko negyvą porininką!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Siųsti GPST DPD/keepalive užklausą\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Siunčiamas IPv%d duomenų paketas su %d baitų\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "ICMPv%d zondo paketas (seka %d) GlobalProtect ESP:\n" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Nepavyko išsiųsti ESP zondo\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Klaida importuojant GSSAPI pavadinimą tapatybės nustatymui:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Klaida generuojant GSSAPI atsakymą:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Bandomas GSSAPI tapatybės nustatymas įgaliotajame serveryje\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Bandomas GSSAPI tapatybės nustatymas serveryje „%s“\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI tapatybės nustatymas užbaigtas\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI leksema per didelė (%zd baitai)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Siunčiama %zu baitų GSSAPI leksema\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Nepavyko išsiųsti GSSAPI tapatybės nustatymo leksemos į įgaliotąjį serverį: " "%s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Nepavyko gauti GSSAPI tapatybės nustatymo leksemos iš įgaliotojo serverio: " "%s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS serveris pranešį apie GSSAPI konteksto klaidą\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nežinomas GSSAPI būsenos atsakymas (0x%02x) iš SOCKS serverio\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Gauta %zu baitų GSSAPI leksema: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Siunčiamas GSSAPI apsaugos prašymas iš %zu baitų\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nepavyko išsiųsti GSSAPI apsaugos atsakymo į įgaliotąjį serverį: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nepavyko gauti GSSAPI apsaugos atsakymo iš įgaliotojo serverio: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Gautas GSSAPI apsaugos atsakymas iš %zu baitų: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" "Netinkamas GSSAPI apsaugos atsakymas iš įgaliotojo serverio (%zu baitai)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "SOCKS įgaliotasis serveris prašo pranešimų vientisumo, kuris nepalaikomas\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" "SOCKS įgaliotasis serveris prašo pranešimų konfidencialumo, kuris " "nepalaikomas\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS įgaliotasis serveris prašo nežinomo tipo 0x%02x apsaugos\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Bandomas HTTP Basic tapatybės nustatymas įgaliotajame serveryje\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Bandomas HTTP Basic tapatybės nustatymas serveryje „%s“\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Bandomas HTTP Bearer tapatybės nustatymas serveryje „%s“\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ši OpenConnect versija sukurta be GSSAPI palaikymo\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Įgaliotasis serveris paprašė Basic tapatybės nustatymo, kuris pagal numatymą " "yra išjungtas\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Serveris „%s“ paprašė Basic tapatybės nustatymo, kuris pagal numatymą yra " "išjungtas\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Daugiau nebėra bandomų tapatybės nustatymo metodų\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Nėra atminties slapukams\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Klaida skaitant HTTP atsakymą: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nepavyko perskaityti HTTP atsakymo „%s“\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Gautas HTTP atsakymas: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Nepaisoma nežinomo HTTP atsakymo eilutėje „%s“\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Pasiūlytas neteisingas slapukas: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL liudijimo tapatybės nustatymas nepavyko\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Atsakymo pagrindinė dalis yra neigiamo dydžio (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nežinoma perdavimo koduotė: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP pagrindinė dalis %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Klaida skaitant HTTP atsakymo pagrindinę dalį\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Klaida parsiunčiant dalies antraštę\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "HTTP bloko ilgis yra neigiamas (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "HTTP bloko dydis yra per didelis (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Klaida parsiunčiant HTTP atsakymo pagrindinę dalį\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "Klaida padalintame dekodavime. Tikėtasi „“, gauta: „%s“\n" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Negalima gauti HTTP 1.0 pagrindinės dalies neužveriant ryšio\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nepavyko perskaityti nukreiptojo URL „%s“: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Negalima sekti nukreipimu į ne https URL „%s“\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Nepavyko išskirti naujo kelio santykiniam nukreipimui: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "HTTPS lizdą užvėrė porininkas; vėl atveriama\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Vėl bandoma nepavykusi %s užklausa nauja ryšiu\n" #: http.c:1002 msgid "request granted" msgstr "prašymas patvirtintas" #: http.c:1003 msgid "general failure" msgstr "bendroji klaida" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "ryšis neleistas pagal taisykles" #: http.c:1005 msgid "network unreachable" msgstr "tinklas nepasiekiamas" #: http.c:1006 msgid "host unreachable" msgstr "serveris nepasiekiamas" #: http.c:1007 msgid "connection refused by destination host" msgstr "ryšį atmetė paskirties serveris" #: http.c:1008 msgid "TTL expired" msgstr "TTL laikas baigėsi" #: http.c:1009 msgid "command not supported / protocol error" msgstr "komanda nepalaikoma / protokolo klaida" #: http.c:1010 msgid "address type not supported" msgstr "adreso tipas nepalaikomas" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS serveris paprašė naudotojo vardo/slaptažodžio, bet mes jokių neturime\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Naudotojo vardas ir slaptažodis SOCKS tapatybės nustatymui turi būti < 255 " "baitai\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Klaida rašant auth užklausą į SOCKS įgaliotąjį serverį: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Klaida skaitant auth atsakymą iš SOCKS įgaliotojo serverio: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Netikėtas auth atsakymas iš SOCKS įgaliotojo serverio: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Tapatybė nustatyta SOCKS serveryje naudojant slaptažodį\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Nepavyko nustatyti tapatybės slaptažodžius SOCKS serveryje\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Socks serveris paprašė GSSAPI tapatybės nustatymo\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "Socks serveris paprašė tapatybės nustatymo slaptažodžiu\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "Socks serveris paprašė tapatybės nustatymo\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Socks serveris paprašė nežinomo tipo %02x tapatybės nustatymo\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Užklausiamas SOCKS įgaliotojo serverio ryšio su %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Klaida rašant ryšio užklausą į SOCKS įgaliotąjį serverį: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Klaida skaitant jungimosi atsakymą iš SOCKS įgaliotojo serverio: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" "Nelauktas jungimosi atsakymas iš SOCKS įgaliotojo serverio: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS įgaliotojo serverio klaida %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS įgaliotojo serverio klaida %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nelauktas adreso tipas %02x SOCKS jungimosi atsakyme\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Užklausiamas HTTP įgaliotojo serverio ryšio su %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Įgaliotojo serverio užklausos siuntimas nepavyko: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Įgaliotojo serverio CONNECT užklausa nepavyko: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nežinomas įgaliotojo serverio tipas „%s“\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Nepavyko perskaityti tarpinio serverio „%s“\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Palaikomi tik http arba socks(5) įgaliotieji serveriai\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect ar openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Suderinamas su Cisco AnyConnect SSL VPN taip pat kaip ir su ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Suderinama su Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Suderinamas su Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Suderinama su Pulse Connect Secure SSL VPN" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Suderinamas su F5 BIG-IP SSL VPN" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "Fortinet SSL VPN" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Suderinamas su FortiGate SSL VPN" #: library.c:244 msgid "PPP over TLS" msgstr "PPP per TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "Nepatvirtintos tapatybės RFC1661/RFC1662 PPP per TLS, testavimui" #: library.c:254 msgid "Array SSL VPN" msgstr "Masyvo SSL VPN" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "Suderinama su masyvo tinklų SSL VPN" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Nežinomas VPN protokolas „%s“\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Sukurta naudojant SSL biblioteką be Cisco DTLS palaikymo\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Negautas IP adresas. Nutraukiama\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Persijungimas gavo skirtingą seną IP adresą (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Persijungimas gavo skirtingą seną IP tinklo kaukę (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Persijungimas gavo skirtingą IPv6 adresą (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Persijungimas gavo skirtingą IPv6 tinklo kaukę (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Gauta IPv6 konfigūracija, bet MTU %d yra per mažas.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nepavyko perskaityti serverio URL „%s“\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Leidžiami tik https:// serverio URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Nežinoma liudijimo maiša: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Pateikto kontrolinio kodo dydis yra mažesnis nei mažiausias reikalaujamas " "dydis (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Nėra formos apdorotojo; negalima nustatyti tapatybės.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() nepavyko: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Lemtinga klaida komandų eilutės apdorojime\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() nepavyko: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() nepavyko: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Klaida konvertuojant terminalo įvestį: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Nepavyko eilutės iš stdin išskyrimas\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Pagalbą dirbant su OpenConnect rasite tinklapyje adresu\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Naudojama %s. Galimybės:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL variklio nėra" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "ĮSPĖJIMAS: Šioje programoje trūksta DTLS ir/ar ESP palaikymo. Našumas bus " "blogesnis.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Palaikomi protokolai:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (numatytasis)" #: main.c:743 msgid "Set VPN protocol" msgstr "Nustatyti VPN protokolą" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Negalima apdoroti šio vykdomojo failo kelio „%s“" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Nepavyko išskirti vpnc-script keliui\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Perrašomas serverio pavadinimas iš „%s“ į „%s“\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Naudojimas: openconnect [parametrai] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "Atverti klientą, skirtą keliems VPN protokolams, versiją %s\n" #: main.c:913 msgid "Read options from config file" msgstr "Skaityti parametrus iš konfigūracijos failo" #: main.c:914 msgid "Report version number" msgstr "Pranešti versijos numerį" #: main.c:915 msgid "Display help text" msgstr "Rodyti pagalbos tekstą" #: main.c:919 msgid "Authentication" msgstr "Tapatybės patvirtinimas" #: main.c:920 msgid "Set login username" msgstr "Nustatyti prisijungimo naudotojo vardą" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Išjungti slaptažodžio/SecurID tapatybės nustatymą" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Nelaukti naudotojo įvesties; išeiti, jei ji būtina" #: main.c:923 msgid "Read password from standard input" msgstr "Skaityti slaptažodį iš standartinės įvesties" #: main.c:924 msgid "Choose authentication login selection" msgstr "Pasirinkite tapatybės nustatymo prisijungimo pasirinkimą" #: main.c:925 msgid "Provide authentication form responses" msgstr "Pateikite tapatybės patvirtinimo formos atsakymus" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Naudoti SSL kliento liudijimą CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Naudoti SSL privačiojo rakto failą RAKTAS" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Įspėti, kai liudijimo galiojimas < DIENŲ" #: main.c:929 msgid "Set login usergroup" msgstr "Nustatyti prisijungimo naudotojo grupę" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Nustatyti rakto slaptafrazę arba TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Rakto slaptafrazė yra failų sistemos fsid" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Programinės leksemos tipas: rsa, totp, hotp arba oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Programinės leksemos paslaptis arba oidc leksema" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(PASTABA: libstoken (RSA SecurID) išjungta šioje programoje)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(PASTABA: Yubikey OATH išjungtas šioje programoje)" #: main.c:941 msgid "Server validation" msgstr "Serverio tikrinimas" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "Priimti tik serverio liudijimą su šiuo kontroliniu kodu" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Išjungti numatytąsias sistemos liudijimų įstaigas" #: main.c:944 msgid "Cert file for server verification" msgstr "Liudijimo failas serverio patikrinimui" #: main.c:946 msgid "Internet connectivity" msgstr "Interneto ryšys" #: main.c:947 msgid "Set VPN server" msgstr "Nustatyti VPN serverį" #: main.c:948 msgid "Set proxy server" msgstr "Nustatyti įgaliotąjį serverį" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Nustatyti įgaliotojo serverio tapatybės nustatymo metodus" #: main.c:950 msgid "Disable proxy" msgstr "Išjungti įgaliotąjį serverį" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Naudoti libproxy automatiniam įgaliotojo serverio konfigūravimui" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(PASTABA: libproxy išjungtas šioje programoje)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Jungimosi pakartotinio bandymo laikas sekundėmis" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Naudoti IP jungiantis prie SERVERIO" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Nukopijuoti TOS / TCLASS, kai naudojamas DTLS ar ESP paketai" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Nustatyti vietinį prievadą DTLS ir ESP datagramoms" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Tapatybės patvirtinimas (dviejų fazių)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Naudoti tapatybės patvirtinimo slapuką SLAPUKAS" #: main.c:962 msgid "Read cookie from standard input" msgstr "Nuskaityti slapuką iš standartinės įvesties" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Tik nustatyti tapatybę ir atspausdinti prisijungimo informaciją" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Tik parsisiųsti ir atspausdinti slapuką; neprisijungti" #: main.c:965 msgid "Print cookie before connecting" msgstr "Atspausdinti slapuką prieš jungiantis" #: main.c:968 msgid "Process control" msgstr "Proceso valdymas" #: main.c:969 msgid "Continue in background after startup" msgstr "Tęsti fone po paleidimo" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Įrašyti tarnybos PID į šį failą" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Atsisakyti privilegijų po prisijungimo" #: main.c:974 msgid "Logging (two-phase)" msgstr "Prisijungimas (dviejų fazių)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Naudoti syslog eigos pranešimams" #: main.c:978 msgid "More output" msgstr "Daugiau išvesties" #: main.c:979 msgid "Less output" msgstr "Mažiau išvesties" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Įrašyti HTTP tapatybės patvirtinimo srautą (įtraukia --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Prie eigos pranešimų pridėti laiko žymą" #: main.c:983 msgid "VPN configuration script" msgstr "VPN konfigūracijos scenarijus" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Naudoti IFNAME tunelio sąsajai" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Apvalkalo komandų eilutė vpnc-suderinamam konfigūracijos scenarijui naudoti" #: main.c:986 msgid "default" msgstr "numatyta" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Siųsti srautą į „scenarijaus“ programą, ne tun" #: main.c:991 msgid "Tunnel control" msgstr "Tunelio valdymas" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Neklausti IPv6 jungimosi" #: main.c:993 msgid "XML config file" msgstr "XML konfigūracijos failas" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Prašyti MTU iš serverio (tik pasenusiems serveriams)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Nurodyti kelią MTU į/iš serverio" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Įjungti suspaudimą su būsena (numatyta yra tik be būsenos)" #: main.c:997 msgid "Disable all compression" msgstr "Išjungti visą suspaudimą" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Reikalauti tobulo pirminio slaptumo" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Išjungti DTLS ir ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL šifrais DTLS palaikymui" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Nustatyti paketų eilės ribą į LEN paketų" #: main.c:1004 msgid "Local system information" msgstr "Vietinės sistemos informacija" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP antraštės User-Agent: laukas" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Vietinis vardas, pranešamas serveriui" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "pranešta versijos eilutė tapatybės patvirtinimo metu" #: main.c:1010 msgid "default:" msgstr "numatyta:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Trojos arklio (CSD) vykdymas" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Atsisakyti privilegijų vykdant trojos arklį" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Vykdyti SCENARIJŲ vietoj trojos arklio programos" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Serverio klaidos" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Išjungti HTTP ryšio pakartotinį naudojimą" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Nemėginti XML POST tapatybės nustatymo" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "Leisti naudoti senus, nesaugius 3DES ir RC4 šifrus" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Nepavyko išskirti simbolių eilutės\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nepavyko gauti eilutės iš konfigūracijos failo: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Neatpažintas parametras eilutėje %d: „%s“\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Parametrui „%s“ nereikia argumento eilutėje %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Parametrui „%s“ būtinas argumentas eilutėje %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Netinkamas naudotojas „%s“: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Netinkamas naudotojo ID „%d“: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Nepadorotas automatinis užbaigimas parametrui %d. „--%s“. Praneškite.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "prisijungta" #: main.c:1507 msgid "disconnected" msgstr "atsijungta" #: main.c:1511 msgid "unsuccessful" msgstr "nesėkminga" #: main.c:1516 msgid "in progress" msgstr "vykdoma" #: main.c:1519 msgid "disabled" msgstr "išjungta" #: main.c:1525 msgid "established" msgstr "užmegzta" #: main.c:1528 msgid "unknown" msgstr "nežinoma" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "Sukonfigūruota kaip %s%s%s, naudojant SSL%s%s %s, su %s%s%s %s\n" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" "RX: % paketai (% B); TX: % paketai (% B)\n" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "SSL šifravimo rinkinys: %s\n" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "%s šifravimo rinkinys: %s\n" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "Kita SSL raktų keitimas po %ld sekundžių\n" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "Kita %s raktų keitimas po %ld sekundžių\n" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "Kitas Trojos arklio iškvietimas po %ld sekundžių\n" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nepavyko atverti „%s“ rašymui: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Tęsiama fone; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "ĮSPĖJIMAS: nepavyko nustatyti lokalės: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "ĮSPĖJIMAS: ši openconnect versija buvo sukurta be iconv\n" " palaikymo, bet atrodo, kad naudojate seną simbolių\n" " koduotę „%s“. Tikėkitės keistumų.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ĮSPĖJIMAS: Ši openconnect versija yra %s, bet\n" " libopenconnect biblioteka yra %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" "ĮSPĖJIMAS: ši versija skirta tik derinimui ir\n" " gali leisti užmegzti nesaugius ryšius.\n" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nepavyko išskirti vpninfo struktūros\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nepavyko naudoti „config“ parametro konfigūracijos faile\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nepavyko atverti konfigūracijos failo „%s“: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Netinkama suspaudimo veiksena „%s“\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" "Nepavyksta įjungti nesaugaus 3DES arba RC4 šifro, nes biblioteka\n" "%s jų nebepalaiko.\n" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Nepavyko išskirti atminties\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Trūksta dvitaškio resolve parametre\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d per mažas\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Išjungiami visi HTTP ryšių pakartotiniai naudojimai dėl --no-http-keepalive\n" "parametro. Jei tai padės, praneškite .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Parametras --no-cert-check buvo nesaugus ir buvo pašalintas.\n" "Pataisykite savo serverio liugijimą arba naudokite --servercert is juo " "pasitikėkite.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Neleidžiamas nulinis eilės ilgis; naudojamas 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versija %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Netinkama programinės leksemos veiksena „%s“\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "Įspėjimas: nurodėte %s. To neturėtų reikėti;\n" " praneškite apie atvejus, kai prioriteto eilutės\n" " perrašymas yra būtinas prisijungimui prie serverio\n" " adresu .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Per daug argumentų komandų eilutėje\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nenurodytas serveris\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ši openconnect versija sukurta be libproxy palaikymo\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "Nepavyko užbaigti tapatybės patvirtinimo\n" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nepavyko sukurti SSL ryšio\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Nepavyko nustatyti UDP; vietoj to naudojama SSL\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nepateiktas --script argumentas; DNS ir maršrutizavimas nesukonfigūruoti\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Žiūrėkite https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Naudotojas paprašė persijungti\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "Serveris atmetė slapuką; išeinama.\n" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Serveris nutraukė seansą; išeinama.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "Naudotojas atsisakė (%s); išeinama.\n" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "Naudotojas atsijungė nuo seanso (%s); išeinama.\n" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "Neatstatoma I/O klaida; išeinama.\n" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Nežinoma klaida; išeinama.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nepavyko atverti %s rašymui: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nepavyko įrašyti konfigūracijos į %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" "Nesaugiai priimamas liudijimas iš VPN serverio „%s“, kadangi jūs paleidote " "su --servercert=ACCEPT.\n" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "Nepavyko patikrinti serverio liudijimo naudojant %s\n" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" "Nei vienas iš %d kontrolinių kodų, nurodytų per --servercert, neatitinka " "serverio liudijimo: %s\n" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Liudijimas iš VPN serverio „%s“ nepraėjo patikrinimo.\n" "Priežastis: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Norėdami pasitikėti šiuo serveriu ateityje, galite pridėti prie savo komandų " "eilutės:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Įveskite „%s“ sutikimui, „%s“ nutraukimui; bet ką kitą peržiūrai: " #: main.c:2464 main.c:2483 msgid "no" msgstr "ne" #: main.c:2464 main.c:2470 msgid "yes" msgstr "taip" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Serverio rakto maišos vertė: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth pasirinkimas „%s“ atitinka kelis parametrus\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth pasirinkimo „%s“ nėra\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Būtina naudotojo įvestis neinteraktyvioje veiksenoje\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nepavyko atverti leksemos failo rašymui: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Nepavyko įrašyti leksemos: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Švelni leksemos eilutė netinkama\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Nepavyko atverti stoken failo\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nepavyko atverti ~/.stokenrc failo\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nebuvo sukurtas su libstoken palaikymu\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Bendra libstoken klaida\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nebuvo sukurta su liboath palaikymu\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Bendra liboath klaida\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey leksema nerasta\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect nebuvo sukurtas su Yubikey palaikymu\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Bendroji Yubikey klaida: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Nepavyko atverti oidc failo\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Bendra oidc leksemos klaida\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Nepavyko nustatyti tun scenarijaus\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Nepavyko nustatyti tun įrenginio\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "Atidedamas tunelis, nes: %s\n" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "Atidedamas atsisakymas (nedelsiamas atgalinis iškvietimas).\n" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "Atidedamas atsisakymas.\n" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "Atidedamas pristabdymas (nedelsiamas atgalinis iškvietimas).\n" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "Atidedamas pristabdymas.\n" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Kvietėjas pristabdė ryšį\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nėra darbo; miegama %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects nepavyko: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Nepavyko select() pagrindiniame cikle" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "Naudojamas base_mtu %d\n" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "Po %s/IPv%d pašalinimo, MTU yra %d\n" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" "Po protokolo priedų pašalinimo (%d be tarpų, %d su tarpais, %d bloko dydis), " "MTU yra %d\n" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() nepavyko: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() nepavyko: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Klaida komunikuojant su ntlm_auth pagalbininku\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Bandomas HTTP NTLM tapatybės nustatymas įgaliotajame serveryje (vienas " "prisijungimas)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Bandomas HTTP NTLM tapatybės nustatymas serveryje „%s“ (vienas " "prisijungimas)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Bandomas HTTP NTLMv%d tapatybės nustatymas įgaliotajame serveryje\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Bandomas HTTP NTLMv%d tapatybės nustatymas serveryje „%s“\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "Baigiama, nes nullppp pasiekė tinklo stadiją.\n" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Netinkama base32 leksema\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Klaida išskiriant atminties OATH paslapties dekodavimui\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ši OpenConnect versija sukurta be PSKC palaikymo\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "GERAI PRADINIAM tokencode generuoti\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "GERAI KITAM tokencode generuoti\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Serveris atmeta programinę leksemą; persijungiama prie rankinio įvedimo\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Generuojamas OATH TOTP leksemos kodas\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Generuojamas OATH HOTP leksemos kodas\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Nelaukas TLV ilgis %d %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Gautas MTU %d iš serverio\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Gautas DNS serveris %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Gauta DNS paieškos sritis %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Gautas vidinis IP adresas %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Gauta tinklo kaukė %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Gautas vidinis tinklų sietuvo adresas %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Gautas padalinimas įtraukia kelią %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Gautas padalinimas išmeta kelią %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Gautas WINS serveris %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP šifravimas: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP suspaudimas: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP prievadas: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP rakto gyvenimas: %u baitai\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP rakto gyvenimas: %u sekundės\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP į SSL atsarginė veiksena: %u sekundės\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP pakartojimo apsauga: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (išeinantis): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d baitai ESP paslapčių\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nežinoma TLV grupė %d attr %d ilgis %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Nepavyko perskaityti KMP antraštės\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Nepavyko perskaityti KMP pranešimo\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Gautas KMP pranešimas %d, dydis %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Gautas ne-ESP TLV (grupė %d) ESP prašyme KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Klaida kuriant oNCP prašymą\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Per trumpas oNCP prašymas\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Perskaityti %d SSL įrašo baitų\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Laukta %d dydžio atsakymo po serverio paketo\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serverio atsakymas serverio pavadinimo paketui yra klaida 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Atrodo serveris išjungė Juniper senesnio oNCP protokolo palaikymą\n" "ir leidžia tik ryšius, naudojančius naujesnį Junos Pulse protokolą.\n" "Ši OpenConnect versija turi EKSPERIMENTINĮ Pulse palaikymą\n" "naudojant --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Netinkamas paketas laukiant KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Laukas KMP pranešimo 301 iš serverio, bet gauta %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP pranešimas 301 iš serverio yra per didelis (%d baitai)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Gautas KMP pranešimas 301, ilgis %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Nepavyko perskaityti tęsinio įrašo ilgio\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Papildomų %d baitų įrašymas yra per didelis; būtų %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Nepavyko perskaityti %d ilgio įrašo\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Perskaityti papildomus %d KMP 301 pranešimo baitus\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Klaida apsikeičiant ESP raktais\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Išeinančios oNCP užklausos prašymas:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "nauji gaunami duomenys" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "nauji siunčiami duomenys" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Perskaityti tik 1 baito ilgio oNCP lauką\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Serveris nutraukė ryšį (baigėsi seansas)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "Serveris nutraukė ryšį (neveiksnumo riba).\n" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Serveris nutraukė ryšį (priežastis: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Serveris atsiuntė nulinio ilgio oNCP įrašą\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Gaunamas KMP pranešimas %d, dydis %d (gauta %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Tęsiamas KMP pranešimo %d apdorojimas, dabar dydis %d (gauta %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Neatpažintas duomenų paketas\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Nepavyko nustatyti ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nežinomas KMP pranešimas %d, dydis %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d papildomų baitų gauta\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Išeinantys paketai:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Išsiųsta ESP įjungimo kontrolinis paketas\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "KLAIDA: %s() iškviesta su netinkamu UTF-8 „%s“ argumentui\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nepavyko apskaičiuoti pridėtinio DTLS, skirto %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Nepavyko sugeneruoti atsitiktinio rakto\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Nepavyko sukurti OpenSSL SSL_SESSION ASN.1: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL nepavyko perskaityti SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Nepavyko inicializuoti DTLSv1 seanso\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Per didelis programos ID dydis\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK iškvieta\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Nepavyko inicializuoti DTLSv1 CTX\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Nepavyko nustatyti DTLS CTX versijos\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Nepavyko sugeneruoti DTLS rakto\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Nepavyko nustatyti DTLS šifrų\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "DTLS šifras „%s“ nerastas\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() nepavyko su sena protokolo versija 0x%x\n" "Ar naudojate OpenSSL versiją senesnę nei 0.9.8m?\n" "Žiūrėkite http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Naudokite --no-dtls komandų eilutės parametrą šio pranešimo išvengimui\n" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() klaida\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "Užmegstas DTLS ryšys (naudojant OpenSSL). Šifras %s-%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Taip greičiausiai atsitiko, nes jūsų OpenSSL yra su klaidomis\n" "Žiūrėkite http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Nepavyko DTLS išankstinis suderinimas: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Nepavyko inicializuoti ESP šifro:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Nepavyko inicializuoti ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Nepavyko nustatyti ESP paketo dešifravimo konteksto:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Nepavyko dešifruoti ESP paketo:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Nepavyko užšifruoti ESP paketo:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nepavyko sukurti libp11 PKCS#11 konteksto:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nepavyko įkelti PKCS#11 tiekėjo modulio (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN užrakintas\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN galiojimas baigėsi\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Kitas naudotojas jau prisijungė\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nežinoma klaida prisijungiant prie PKCS#11 leksemos\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prisijungta prie PKCS#11 lizdo „%s“\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nepavyko išvardinti liudijimų PKCS#11 lizde „%s“\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Rasti %d liudijimai lizde „%s“\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nepavyko perskaityti PKCS#11 URI „%s“\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nepavyko išvardinti PKCS#11 lizdų\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Jungiamasi prie PKCS#11 lizdo „%s“\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nepavyko rasti PKCS#11 liudijimo „%s“\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Liudijimo X.509 turinys negautas iš libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "Naudojamas antrinis PKCS#11 liudijimas %s\n" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nepavyko išvardinti raktų PKCS#11 lizde „%s“\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Rasti %d raktai lizde „%s“\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Liudijimas neturi viešojo rakto\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "Antrinis liudijimas neturi viešojo rakto\n" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Liudijimas neatitinka privačiojo rakto\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "Antrinis liudijimas neatitinka privataus rakto\n" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Tikrinama, ar EC atitinka liudijimą\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Nepavyko išskirti parašo buferio\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nepavyko pasirašyti tuščių duomenų EC rakto patikrinimui\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nepavyko rasti PKCS#11 rakto „%s“\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "Naudojamas antrinis PKCS#11 raktas %s\n" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "Nepavyko sukurti privataus rakto iš PKCS#11\n" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "Nepavyko sukurti antrinio privataus rakto iš PKCS#11\n" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ši OpenConnect versija sukurta be PKCS#11 palaikymo\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "Nepavyko rašyti į TLS/DTLS lizdą\n" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "Nepavyko skaityti iš TLS/DTLS lizdo\n" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Skaitymo klaida %s seanse: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Rašymo klaida %s seanse: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Neapdorotas SSL UI prašymo tipas %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM slaptažodis per ilgas (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "Trūksta kliento liudijimo arba rakto\n" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Nepavyko įkelti privačiojo rakto\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nepavyko įdiegti liudijimo OpenSSL kontekste\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Papildomas liudijimas iš %s: „%s“\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Nepavyko perskaityti PKCS#12 (žiūrėkite klaidas aukščiau)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "Nepavyko išanalizuoti antrinio PKCS#12 (klaidos aukščiau)\n" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 neturėjo liudijimo!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "Antriniame PKCS#12 nebuvo liudijimo!\n" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 neturėjo privačiojo rakto!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "Antriniame PKCS#12 nebuvo privataus rakto!\n" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Nepavyksta įkelti TPM variklio.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Nepavyko inicializuoti TPM variklio\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Nepavyko nustatyti TPM SRK slaptažodžio\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Nepavyko įkelti TPM privačiojo rakto\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "Nepavyko įkelti antrinio TPM privataus rakto\n" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nepavyko atverti liudijimo failo %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "Nepavyko atverti antrinio liudijimo failo %s: %s\n" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Nepavyko įkelti liudijimo\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Nepavyko apdoroti visų palaikomų liudijimų. Vis tiek bandoma...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "Nepavyko apdoroto antrinio palaikymo liudijimų. Vis tiek bandoma...\n" #: openssl.c:840 msgid "PEM file" msgstr "PEM failas" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nepavyko sukurti BIO iš įvesties elemento „%s“\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Nepavyko įkelti privačiojo rakto (neteisinga slaptafrazė?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "Nepavyko įkelti antrinio privataus rakto (neteisinga slaptafrazė?)\n" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Nepavyko įkelti privačiojo rakto (žiūrėkite klaidas aukščiau)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "Nepavyko įkelti antrinio privataus rakto (klaidos aukščiau)\n" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nepavyko įkelti X509 liudijimo iš įvesties\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nepavyko atverti privačiojo rakto failo %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "Nepavyko įkelti antrinio privataus rakto\n" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "Nepavyko iššiftuoti antrino PKCS#8 liudijimo failo\n" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "Įveskite PKCS#8 antrinę slaptafrazę:" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Nepavyko konvertuoti PKCS#8 į OpenSSL EVP_PKEY\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Nepavyko konvertuoti antrinio PKCS#8 į OpenSSL EVP_PKEY\n" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nepavyko identifikuoti privačiojo rakto tipą iš „%s“\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Atitikęs DNS alternatyvus vardas „%s“\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Nėra atitikmenų alternatyviam vardui „%s“\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Liudijimas turi blogo ilgio %d GEN_IPADD alternatyvų vardą\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Atitiko %s adresas „%s“\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nėra atitikmens %s adresui „%s“\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI „%s“ turi netuščia kelia; nepaisoma\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Atitiko URI „%s“\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Nėra atitikmens URI „%s“\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nėra alternatyvaus vardo porinio liudijimo atitikime „%s“\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Nėra subjekto vardo poriniame liudijime!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Nepavyko perskaityti subjekto poriniame liudijime\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Porinio liudijimo neatitikimas ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Atitikęs porinio liudijimo subjekto vardas „%s“\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Papildomas liudijimas iš cafile: „%s“\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Klaida kliento liudijimo notAfter lauke\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "Klaida antrinio kliento liudijimo notAfter lauke\n" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL liudijimas ir raktas nesutampa\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nepavyko perskaityti liudijimų iš LĮ failo „%s“\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nepavyko atverti LĮ failo „%s“\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Nepavyko sukurti TLSv1 CTX\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "Nepavyko sukurti OpenSSL šifrų sąrašo\n" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Nepavyko nustatyti OpenSSL šifrų sąrašo („%s“)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL ryšio klaida\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Nepavyko suskaičiuoti OATH HMAC\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "EAP-TTLS derybos su %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "EAP-TTLS ryšio klaida %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "Trūksta HDLC pradinės požymių sekos (0x7e)\n" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "HDLC buferis baigėsi su FCS požymių seka (0x7e)\n" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "HDLC kadras per trumpas (%d baitai)\n" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "Blogas HDLC paketo FCS %04x\n" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "Ne HDLC paketas (%ld baitai -> %ld), FCS=0x%04x\n" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "Dabartinė PPP būsena: %s (encap %s):\n" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" " įeina: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" " išeina: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "Iš serverio gautas MRU %d. Nak siūlomas didesnis MRU %d (mūsų MTU)\n" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "Iš serverio gautas MRU %d. Nustatomas mūsų MTU, kad atitiktų.\n" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "Iš serverio gautas asyncmap 0x%08x \n" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "Iš serverio gautas magiškas skaičius 0x%08x\n" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "Iš serverio gautas protokolo lauko suspaudimas\n" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "Iš serverio gautas valdymo lauko suspaudimas\n" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "Iš serverio gautas pasenęs IP-Addresses, nepaisoma\n" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "Iš serverio gautas Van Jacobson TCP/IP suspaudimas\n" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "Iš serverio gautas porininko IPv6 adresas %s\n" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "Iš serverio gautas saitui vietinis IPv6 adresas %s\n" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "Iš serverio gautas nežinomas %s TLV (žyma %d, ilgis %d+2):\n" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "Gauta papildomai %ld baitų Config-Request pabaigoje:\n" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "Atmetimo %s/id %d konfigūraciją iš serverio\n" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "Nak %s/id %d konfigūraciją iš serverio\n" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "Ack %s/id %d konfigūraciją iš serverio\n" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "Prašomas suskaičiuoto MTU %d\n" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "Siunčiama serveriui mūsų %s/id %d konfigūracijos užklausa\n" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "Serveris atmetė nak LCP MRU parametrą\n" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "Serveris atmetė nak LCP asyncmap parametrą\n" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "Serveris atmetė LCP magišką parametrą\n" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "Serveris atmetė nak LCP PFCOMP parametrą\n" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "Serveris atmetė nak LCP ACCOMP parametrą\n" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "Serveris nak pasiūlė IPv4 adresą: %s\n" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "Serveris atmetė pasenusį IP adresą %s\n" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "Serveris atmetė nak mūsų IPv4 adresą ar užklausą: %s\n" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "Serveris pasiūlė nak IPCP užklausą %s[%d] serveriui: %s\n" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "Serveris atmetė nak IPCP užklausą %s[%d] serveriui\n" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "Serveris pasiūlė nak IPv6 saitui lokalų adresą %s\n" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "Serveris atmetė nak mūsų IPv6 sąsajos identifikatorių\n" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "Serveris atmetė nak %s TLV (žyma %d, ilgis %d+2)\n" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "Gauta %ld papildomų baitų Config-Reject pabaigoje:\n" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "Iš serverio gauta %s/id %d %s\n" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "Serveris nutraukė ryšį su priežastimi: %s\n" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "Serveris atmetė mūsų užklausą sukonfigūruoti IPv%d\n" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "PPP būsenos perėjimas iš %s į %s kanale %s\n" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "PPP turinys viršija gavimo buferį\n" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "Gautas trumpas paketas (%d baitai). Laukiama daugiau.\n" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "Nelaukta prieš PPP paketo antraštė encap %d.\n" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "PPP turinio ilgis %d veršija gavimo buferį %d\n" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" "PPP paketas yra ne visas. Gauta %d baitų (įskaitant %d priedo), bet " "antraštės payload_len yra %d. Laukiama daugiau.\n" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Netinkama PPP kapsuliacija\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "Pakete yra %d baitų po duomenų. Laikoma apjungtu paketu.\n" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "Nelauktas IPv%d paketas PPP būsenoje %s.\n" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "Gautas IPv%d duomenų paketas su %d baitų per %s\n" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "Laukta %d baitų PPP antraštės, bet gauta %ld, perstumiami duomenys.\n" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "Siunčiamas %s Protocol-Reject. Duomenys:\n" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "Aptiktas negyvas porininkas!\n" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "Nepavyko užmegzti PPP\n" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "Siunčiama PPP išmetimo užklausa kaip keepalive\n" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "Siųsti PPP aido užklausą kaip DPD\n" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "Siunčiamas PPP %s %s paketas per %s (id %d, iš viso %d baitų)\n" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "Siunčiamas PPP %s paketas per %s (iš viso %d baitų)\n" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "PPP connect iškviesta su netinkama DTLS būsena %d\n" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "Prisijungta prie DTLS tunelio; išeinama iš HTTPS pagrindinio ciklo.\n" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" "Nepavyko prisijungti prie DTLS tunelio; vietoj to naudojamas HTTPS (būsena " "%d).\n" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "Nepavyko užmegzti PPP tunelio per TLS\n" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "Netinkamas DTLS būsena %d\n" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "Nepavyko atstatyti PPP\n" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "Nepavyko patvirtinti tapatybės DTLS seansui\n" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Gautas vidinis pasenęs IP adresas %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Nepavyko apdoroti IPv6 adreso\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Gautas vidinis IPv6 adresas %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Gautoje IPv6 dalyje yra %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Gautoje IPv6 dalyje nėra %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Netikėtas ilgis %d atributui 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ESP šifravimas: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Tik ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Nežinomas atributo 0x%x ilgis %d: %s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Perskaityti %d baitai iš IF-T/TLS įrašo\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Greitai įrašoma į IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Klaida sukuriant IF-T paketą\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Klaida sukuriant EAP paketą\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Nelauktas IF-T/TLS tapatybės patvirtinimo iššūkis:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Nelaukti EAO-TTLS duomenys:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Pereiti į Pulse naudotojo sritį:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Sritis:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Pasirinkite Pulse naudotojo sritį:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Nepavyko perskaityti AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Pasiekta seansų riba. Pasirinkite išjungiamą seansą:\n" #: pulse.c:875 msgid "Session:" msgstr "Seansas:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Nepavyko perskaityti seansų sąrašo\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Įveskite antrinius įgaliojimus:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Įveskite naudotojo įgaliojimus:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Antrinis naudotojo vardas:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Naudotojo vardas:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Slaptažodis:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Antrinis slaptažodis:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Slaptažodžio galiojimas baigėsi. Pasikeiskite slaptažodį:" #: pulse.c:1085 msgid "Current password:" msgstr "Dabartinis slaptažodis:" #: pulse.c:1090 msgid "New password:" msgstr "Naujas slaptažodis:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Pakartokite naują slaptažodį:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Slaptažodžiai nepateikti.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Slaptažodžiai nesutampa.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Dabartinis slaptažodis per ilgas.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Naujas slaptažodis per ilgas.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Leksemos kodo užklausa:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Įveskite atsakymą:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Įveskite savo slaptą kodą:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Įveskite savo antrinės leksemos informaciją:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Klaida sukuriant Pulse ryšio užklausą\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Nelauktas atsakymas į IF-T/TLS versijos derybas:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "IF-T/TLS versija iš serverio: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Nepavyko užmegzti EAP-TTLS seanso\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "ĮSPĖJIMAS: serverio pateiktas liudijimo MD5 neatitinka tikrojo liudijimo.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Tapatybės patvirtinimo klaida: paskyra užrakinta\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "Tapatybės patvirtinimo klaida: būtinas kliento liudijimas\n" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Tapatybės patvirtinimo klaida: kodas 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Nežinoma D73 užklausos vertė 0x%x. Prašysime naudotojo vardo ir " "slaptažodžio.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Praneškite šią vertę ir oficialaus kliento elgseną.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Tapatybės patvirtinimo klaida: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Pulse serveris paprašė kompiuterio pavadinimo tikrinimo; dar nepalaikoma\n" "Bandykite Juniper veikseną (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Neapdorotas Pulse tapatybės patvirtinimo paketas arba tapatybės patvirtinimo " "klaida\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Pulse tapatybės patvirtinimo slapukas nepriimtas\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Pulse srities laukas\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Pulse srities pasirinkimas\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Pulse slaptažodžio užklausa, kodas 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" "Pulse slaptažodžio užklausa su nežinomu kodu 0x%02x. Praneškite apie tai.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Pulse slaptažodžio bendrinės leksemos kodo užklausa\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Pulse seansų riba, %d seansai\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Neapdorota Pulse auth užklausa\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Nelauktas atsakymas vietoje sėkmingo IF-T/TLS auth:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "EAP-TTLS klaida: išsiunčiama išvestis su likusiais įvesties baitais\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Klaida kuriant EAP-TTLS buferį\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Nepavyko perskaityti EAP-TTLS patvirtinimo: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Perskaityti %d IF-T/TLS EAP-TTLS įrašo baitai\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Blogas EAP-TTLS patvirtinimo paketas\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Blogas EAP-TTLS paketas (ilgis %d, liko %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Nelauktas Pulse config paketas:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Gaunamas nežinomo tipo 0x%08x kelias\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Netinkamas ESP config paketas:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Netinkamas ESP nustatymas\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Blogas EAP-TTLS paketas, kai laukiama konfigūracijos:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Netikėtas EAP-TTLS paketas, kai laukiama konfigūracijos:\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "Rasta nepakankama konfigūracija\n" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "ESP raktų pakeitimas nepavyko\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "Pulse lemtinga klaida (priežastis %ld): %s\n" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Nežinomas Pulse paketas\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Siunčiamas %d baitų IF-T/TLS duomenų paketas\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Išmetamas blogas padalinimas įtraukia: „%s“\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Išmetamas blogas padalinimas neįtraukia: „%s“\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "ĮSPĖJIMAS: dalyje yra „%s“, yra nustatyti kompiuterio pavadinimo bitai, " "pakeičiama „%s/%d\".\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "ĮSPĖJIMAS: dalyje nėra „%s“, yra nustatyti kompiuterio pavadinimo bitai, " "pakeičiama „%s/%d\".\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Nepaisoma pasenusio tinklo, kadangi adresas „%s“ yra netinkamas.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" "Nepaisomas pasenusio tinklo, kadangi tinklo kaukė „%s“ yra netinkama.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nepavyko paleisti scenarijaus „%s“ %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Scenarijus „%s“ išėjo nenormaliai (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Scenarijus „%s“ grąžino klaidą %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Nepavyko select() lizdo prisijungimui" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Lizdo jungimasis atšauktas\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Lizdo klaida setsockopt(TCP_NODELAY):" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nepavyko pakartotinai prisijungti prie įgaliotojo serverio %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nepavyko pakartotinai prisijungti prie serverio %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Įgaliotasis serveris iš libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Nepavyko getaddrinfo iš serverio „%s“: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Persijungiama prie DynDNS serverio naudojant ankščiau įrašytą IP adresą\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Bandoma jungtis prie įgaliotojo serverio %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Bandoma jungtis prie serverio %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Prisijungta prie %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Nepavyko išskirti sockaddr vietos\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Nepavyko prisijungti prie %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Pamirštamas neveikiantis ankstesnis porininko adresas\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nepavyko prisijungti prie serverio %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Iš naujo jungiamasi prie įgaliotojo serverio %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nepavyko gauti failų sistemos ID ar slaptafrazės\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Nepavyko atverti privačiojo rakto failo „%s“: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Nėra klaidos" #: ssl.c:727 msgid "Keystore locked" msgstr "Raktų saugykla užrakinta" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Raktų saugykla neinicializuota" #: ssl.c:729 msgid "System error" msgstr "Sistemos klaida" #: ssl.c:730 msgid "Protocol error" msgstr "Protokolo klaida" #: ssl.c:731 msgid "Permission denied" msgstr "Nėra leidimo" #: ssl.c:732 msgid "Key not found" msgstr "Raktas nerastas" #: ssl.c:733 msgid "Value corrupted" msgstr "Vertė sugadinta" #: ssl.c:734 msgid "Undefined action" msgstr "Neapibrėžtas veiksmas" #: ssl.c:738 msgid "Wrong password" msgstr "Neteisingas slaptažodis" #: ssl.c:739 msgid "Unknown error" msgstr "Nežinoma klaida" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Nepavyko select() lizdo komandai" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nepavyko atverti %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Nepavyko fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Failas %s yra tuščias\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "Failas %s yra įtartino dydžio %\n" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nepavyko išskirti %d baitų %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nepavyko perskaityti %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Nežinoma protokolo šeima %d. Negalima sukurti UDP serverio adreso\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Open UDP lizdas" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nežinoma protokolo šeima %d. Negalima naudoti UDP transporto\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Prijungti UDP lizdą" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Padaryti UDP lizda neblokuojamu" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Slapukas nebegalioja, baigiamas seansas\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "miegama %ds, liko laiko %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Nepavyko select lizdo siuntimui" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Nepavyko select() lizdo gavimui" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI leksema per didelė (%ld baitai)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Siunčiama %lu baitų SSPI leksema\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Nepavyko išsiųsti SSPI tapatybės nustatymo leksemos į įgaliotąjį serverį: " "%s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Nepavyko gauti SSPI tapatybės nustatymo leksemos iš įgaliotojo serverio: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS serveris pranešė apie SSPI konteksto klaidą\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nežinomas SSPI būsenos atsakymas (0x%02x) iš SOCKS serverio\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Gauta %lu baitų SSPI leksema: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() nepavyko: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() nepavyko: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() rezultatas per didelis (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Siunčiamas %u baitų SSPI apsaugos prašymas\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nepavyko išsiųsti SSPI apsaugos atsakymo įgaliotajam serveriui: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nepavyko gauti SSPI apsaugos atsakymo iš įgaliotojo serverio: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Gautas %d baitų SSPI apsaugos atsakymas: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage nepavyko: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" "Netinkamas SSPI apsaugos atsakymas iš įgaliotojo serverio (%lu baitai)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Įveskite įgaliojimus programinei leksemai atrakinti." #: stoken.c:107 msgid "Device ID:" msgstr "Įrenginio ID:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Naudotojas apėjo programinę leksemą.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Visi laukai yra būtini; bandykite dar kartą.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Bendra libstoken klaida.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Neteisingas įrenginio ID arba slaptažodis; bandykite dar kartą.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Programinės leksemos inicializacija buvo sėkminga.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Įveskite programinės leksemos PIN." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Netinkamas PIN formatas; bandykite dar kartą.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Generuojamas RSA leksemos kodas\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Klaida prieinant prie registro rakto tinklo adapteriams\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Nepavyko perskaityti %s\\%s arba tai ne eilutė\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "%s\\ComponentId yra nežinomas „%s“\n" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Rastas %s vietoje %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Nepavyko atverti registro rakto %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "Nepavyko perskaityti registro rakto %s\\%s arba jis nėra eilutė\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() nepavyko: %s\n" "Grįžtama prie GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() nepavyko: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Nepavyko atverti %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "Atvertas tun įrenginys %S\n" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nepavyko gauti TAP tvarkyklės versijos: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Klaida: reikalinga TAP-Windows tvarkyklė v9.9 arba naujesnė (rasta %ld." "%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nepavyko nustatyti TAP IP adresų: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nepavyko nustatyti TAP laikmenos būsenos: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "Nepaisoma neatitinkančios sąsajos „%S“\n" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "Nepavyko konvertuoti sąsajos pavadinimo į UTF-8\n" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "Naudojamas %s įrenginys „%s“, indeksas %d\n" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "Nepavyko sukonstruoti sąsajos pavadinimo\n" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP įrenginys atmetė ryšį. Atsijungiama.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nepavyko skaityti iš TAP įrenginio: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nepavyko skaityti iš TAP įrenginio: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Į tun įrašyta %ld baitų\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Laukiama tun rašymui...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Po laukimo į tun įrašyta %ld baitų\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nepavyko rašyti į TAP įrenginį: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tunelio scenarijų paleidimas Windows aplinkoje dar nepalaikomas\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nepavyko atverti /dev/tun siuntimui" #: tun.c:92 msgid "Can't push IP" msgstr "Nepavyksta siųsti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nepavyksta nustatyti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nepavyksta apdoroti srauto %s IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "atverti /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nepavyko sukurti naujo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Nepavyko patalpinti tun failo deskriptoriaus į pranešimų išmetimo veikseną" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun įrenginys nepalaikomas šioje platformoje\n" #: tun.c:205 msgid "open net" msgstr "atverti tinklą" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nepavyko atverti tun įrenginio: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nepavyko prijungti vietinio tun įrenginio (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Vietiniam tinklui konfigūruoti openconnect turi veik root teisėmis\n" "Daugiau informacijos adresu https://www.infradead.org/openconnect/nonroot." "html\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Netinkamas sąsajos pavadinimas „%s“; turi atitikti „utun%%d“ „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nepavyko atverti SYSPROTO_CONTROL lizdo: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nepavyko užklausti utun valdymo id: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nepavyko išskirti utun įrenginio pavadinimo\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nepavyko prisijungti prie utun vieneto: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Netinkamas sąsajos pavadinimas „%s“; turi atitikti „tun%%d“\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nepavyksta atverti „%s“: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Nepavyko padaryti tun lizdo neblokuojamu: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair nepavyko: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork nepavyko: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(scenarijus)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nepavyko įrašyti įeinančio paketo: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "Nepavyko įkelti wintun.dll\n" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "Nepavyko rasti funkcijų iš wintun.dll\n" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Traktuoti kompiuterį „%s“ kaip tiesioginį kompiuterį\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Nepavyko SHA1 esamam failui\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML konfigūracijos failo SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nepavyko perskaityti XML konfigūracijos failo %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Kompiuteris „%s“ turi adresą „%s“\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Kompiuteris „%s“ turi UserGroup „%s“\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Kompiuterio „%s“ nėra konfigūracijoje; traktuojamas kaip tiesioginis " "kompiuteris\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nepavyko išsiųsti „%s“ ykneo-oath įtaisui: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Netinkamas trumpas atsakymas „%s“ iš ykneo-oath įtaiso\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Klaidos atsakymas į „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "pasirinkite įtaiso komandą" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Neatpažintas atsakymas iš ykneo-oath įtaiso\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Rastas ykneo-oath įtaisas v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Yubikey OATH įtaisui būtinas PIN" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nepavyko suskaičiuoti Yubikey atrakinimo atsakymo\n" #: yubikey.c:274 msgid "unlock command" msgstr "atrakinimo komanda" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Bandomas trumpinto simbolio PBKBF2 Yubikey PIN variantas\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nepavyko sukurti PC/SC konteksto: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Sukurtas PC/SC kontekstas\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nepavyko užklausti skaitytojų sąrašo: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nepavyko prisijungti prie PC/SC skaitytojo „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Prisijungta prie PC/SC skaitytojo „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nepavyko gauti išskirtinės prieigos prie skaitytojo „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "raktų išvardinimo komanda" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Rastas %s/%s raktas „%s“ „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Leksema „%s“ nerasta Yubikey „%s“. Ieškoma kito Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Serveris atmeta Yubikey leksemą; persijungiama prie rankinio įvedimo\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Generuojamas Yubikey leksemos kodas\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nepavyko gauti išskirtinės prieigos prie Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "skaičiavimo komanda" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Neatpažintas atsakymas iš Yubikey generuojant leksemos kodą\n" openconnect-8.20/po/pl.po0000644000076400007640000060445214204456073017141 0ustar00dwoodhoudwoodhou00000000000000# Polish translation for NetworkManager-openconnect. # Copyright © 2009-2020 the NetworkManager-openconnect authors. # This file is distributed under the same license as the NetworkManager-openconnect package. # Tomasz Dominikowski , 2009. # Piotr Drąg , 2010-2020. # Aviary.pl , 2009-2020. # msgid "" msgstr "" "Project-Id-Version: NetworkManager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2020-07-22 17:44+0200\n" "Last-Translator: Piotr Drąg \n" "Language-Team: Polish \n" "Language: pl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 " "|| n%100>=20) ? 1 : 2);\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "Nie odnaleziono ciasteczka ANsession\n" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Nieprawidłowe ciasteczko „%s”\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Odnaleziono serwer DNS %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "Otrzymano domenę wyszukiwania „%s”\n" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "Nieznany element konfiguracji Array „%s”\n" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "Konfiguracja początkowa: prędkość tunelu %d, kodowanie %d, DPD %d\n" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "Krótki zapis w negocjacji JSON Array\n" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "Odczytanie odpowiedzi JSON Array się nie powiodło\n" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "Nieoczekiwana odpowiedź na żądanie JSON Array\n" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "Przetworzenie odpowiedzi JSON Array się nie powiodło\n" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "Błąd podczas tworzenia żądania negocjacji Array\n" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Nieoczekiwany wynik „%d” z serwera\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "Błąd podczas budowania pakietu negocjacji DTLS Array\n" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "Krótki zapis w negocjacji Array\n" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "Odczytanie odpowiedzi negocjacji UDP się nie powiodło\n" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "Włączono DTLS na porcie %d\n" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "Odmawianie tunelu UDP niebędącego DTLS\n" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "Odczytanie odpowiedzi ipff się nie powiodło\n" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Przydzielenie się nie powiodło\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Otrzymano krótki pakiet (%d B)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Otrzymanie pakietu kontrolnego typu %x:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Otrzymano pakiet danych o rozmiarze %d B\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL zapisało za mało bajtów. Poproszono o %d, wysłano %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "„rekey” CSTP do\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Ponowne powitanie się nie powiodło; próbowanie „new-tunnel”\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "Wykrywanie martwych partnerów TCP wykryło martwego partnera.\n" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "Ponowne połączenie TCP się nie powiodło\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Wysłanie DPD TCP\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Wysłanie „Keepalive” TCP\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Wysyłanie pakietu wyłączenia DTLS\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Wysyłanie nieskompresowanego pakietu danych o rozmiarze %d B\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Próba nowego połączenia DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "Otrzymanie odpowiedzi uwierzytelnienia z DTLS się nie powiodło\n" #: array.c:1084 msgid "DTLS session established\n" msgstr "Nawiązano sesję DTLS\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "Otrzymano przestarzałe IP przez DTLS; przyjmowanie nawiązanego\n" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "Otrzymano IPv6 przez DTLS; przyjmowanie nawiązanego\n" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "Otrzymano nieznany pakiet DTLS\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "Błąd podczas tworzenia żądania połączenia dla sesji DTLS\n" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "Zapisanie żądania połączenia do sesji DTLS się nie powiodło\n" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Otrzymano pakiet DTLS 0x%02x z %d B\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "„rekey” DTLS do\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Ponowne powitanie DTLS się nie powiodło; łączenie ponownie.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Wykrywanie martwych partnerów DTLS wykryło martwego partnera.\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Wysłanie „DPD” DTLS\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Wysłanie żądania DPD się nie powiodło. Należy oczekiwać rozłączenia\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Wysłano pakiet DTLS o rozmiarze %d B; wysłanie DTLS zwróciło %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Wylogowanie się nie powiodło.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Pomyślnie wylogowano.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Podano pole formularza celu %s; przyjmowanie, że uwierzytelnianie SAML %s " "zostało ukończone.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "Uwierzytelnianie SAML %s jest wymagane przez %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "Uwierzytelnianie SAML %s jest wymagane przez zewnętrzny skrypt.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Kiedy uwierzytelnianie SAML zostanie ukończone, należy podać pole formularza " "celu dołączając :nazwa_pola do adresu URL logowania.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Proszę podać nazwę użytkownika i hasło" #: auth-globalprotect.c:159 msgid "Username" msgstr "Nazwa użytkownika" #: auth-globalprotect.c:174 msgid "Password" msgstr "Hasło" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Wyzwanie: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "Logowanie GlobalProtect zwróciło nieoczekiwaną wartość parametru arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "Logowanie GlobalProtect zwróciło %s=%s (oczekiwano %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "Logowanie GlobalProtect zwróciło puste lub brakujące %s\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "Logowanie GlobalProtect zwróciło %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Prosimy zgłosić %d nieoczekiwanych wartości powyżej (z których %d jest " "krytycznych) na adres (w języku " "angielskim)\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Proszę wybrać bramę GlobalProtect." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "BRAMA:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Ignorowanie czasu między zgłaszaniem HIP portalu (%d min), ponieważ czas " "jest już ustawiony na %d min.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Portal ustawił czas między zgłaszaniem HIP na %d min).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "Dostępne serwery bramy (%d):\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "Konfiguracja portalu GlobalProtect nie ma żadnych serwerów bram.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Utworzenie kodu tokena OTP się nie powiodło; wyłączanie tokena\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Serwer nie jest portalem ani bramą GlobalProtect.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorowanie elementu „submit” „%s” nieznanego formularza\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorowanie elementu „input” „%s” nieznanego formularza\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Odrzucanie podwójnej opcji „%s”\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Nie można obsłużyć formularza method='%s', action='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Nieznane pole „textarea”: „%s”\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Przydzielenie pamięci do komunikacji z TNCC się nie powiodło\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Wysłanie polecenia do TNCC się nie powiodło\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Obsługa TNCC nie jest jeszcze zaimplementowana w systemie Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Brak ciasteczka DSPREAUTH; bez próbowania TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "Próba wykonania skryptu TNCC/Host Checker Trojan „%s”.\n" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Wykonanie skryptu TNCC %s się nie powiodło: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Wysłano „start”; oczekiwanie na odpowiedź z TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Odczytanie odpowiedzi z TNCC się nie powiodło\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Otrzymano niepomyślną odpowiedź %s z TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "Odpowiedź TNCC 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Drugi wiersz odpowiedzi TNCC: „%s”\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Otrzymano nowe ciasteczko DSPREAUTH z TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Otrzymano czas między ponownym uwierzytelnieniem od TNSS: %d s\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Nieoczekiwany niepusty wiersz z TNCC po ciasteczku DSPREAUTH: „%s”\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Za dużo niepustych wierszy z TNCC po ciasteczku DSPREAUTH\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Przetworzenie dokumentu HTML się nie powiodło\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Odnalezienie lub przetworzenie formularza WWW na stronie logowania się nie " "powiodło\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Wystąpił formularz bez „name” ani „id”\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" "Działanie formularza (%s) prawdopodobnie wskazuje, że TNCC/Host Checker " "Trojan się nie powiódł.\n" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Nieznany formularz (nazwa „%s”, identyfikator „%s”)\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Zrzucanie nieznanego formularza HTML:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Wybór formularza nie ma nazwy\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "nazwa %s nie jest „input”\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Brak typu „input” w formularzu\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Brak nazwy „input” w formularzu\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nieznany typ „input” %s w formularzu\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Pusta odpowiedź z serwera\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Przetworzenie odpowiedzi serwera się nie powiodło\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Odpowiedź: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Otrzymano nieoczekiwane .\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Odpowiedź XML nie ma węzła „auth”\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zapytano o hasło, ale ustawiono „--no-passwd”\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" "Brak certyfikatu klienta lub jest niepoprawny (niepowodzenie sprawdzenia " "poprawności certyfikatu)" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Profil XML nie zostanie pobrany, ponieważ suma SHA1 już pasuje\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Otwarcie połączenia HTTPS z %s się nie powiodło\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Wysłanie żądania GET dla nowej konfiguracji się nie powiodło\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Pobrany plik konfiguracji nie pasuje do docelowej sumy SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Pobrano nowy profil XML\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Błąd: uruchamianie konia trojańskiego „Cisco Secure Desktop” na tej " "platformie nie jest jeszcze zaimplementowane.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Ustawienie GID %ld się nie powiodło: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Ustawienie grup na %ld się nie powiodło: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Ustawienie UID %ld się nie powiodło: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Nieprawidłowy użytkownik uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Przejście do katalogu domowego CSD „%s” się nie powiodło: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Błąd: serwer poprosił o wykonanie skanowania komputera CSD.\n" "Należy dostarczyć odpowiedni parametr --csd-wrapper.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Błąd: serwer poprosił o pobranie i uruchomienie konia trojańskiego „Cisco " "Secure Desktop”.\n" "Ta możliwość jest domyślnie wyłączona z powodów bezpieczeństwa, więc można " "ją włączyć.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Nie można zapisać do katalogu tymczasowego „%s”: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Otwarcie pliku skryptu tymczasowego CSD się nie powiodło: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Zapisanie pliku skryptu tymczasowego CSD się nie powiodło: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "Próba wykonania skryptu konia trojańskiego CSD „%s”.\n" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "Skrypt CSD „%s” nieoczekiwanie zakończył działanie\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "Skrypt CSD „%s” zwrócił niezerowy stan: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Uwierzytelnienie może się nie powieść. Jeśli skrypt nie zwraca zera, to " "należy go naprawić.\n" "Przyszłe wersje OpenConnect przerwą działanie po wystąpieniu tego błędu.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "Pomyślnie ukończono skrypt CSD „%s”.\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Ostrzeżenie: uruchomiony jest niezabezpieczony kod CSD za pomocą uprawnień " "roota\n" "\t Należy użyć opcji wiersza poleceń „--csd-user”\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Wykonanie skryptu CSD %s się nie powiodło\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Nieznana odpowiedź serwera\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Serwer zażądał certyfikatu klienta SSL po dostarczeniu jednego\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Serwer zażądał certyfikatu klienta SSL; żaden nie został skonfigurowany\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "Włączono „POST” XML\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Nie można pobrać odcinka CSD. Kontynuowanie mimo tego za pomocą skryptu " "wrappera CSD.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "Pobrano odcinek CSD dla platformy %s (rozmiar to %d B).\n" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Odświeżanie %s za 1 sekundę…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(błąd 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Błąd podczas opisywania błędu)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "BŁĄD: nie można zainicjować gniazd\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "BŁĄD KRYTYCZNY: główne hasło DTLS jest niezainicjowane. Prosimy to zgłosić.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Błąd podczas tworzenia żądania „CONNECT” HTTPS\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Błąd podczas pobierania odpowiedzi HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Usługa VPN jest niedostępna; przyczyna: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Otrzymano nieodpowiednią odpowiedź „CONNECT” HTTPS: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Otrzymano odpowiedź „CONNECT”: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Brak pamięci dla opcji\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID nie wynosi 64 znaków; wynosi: „%s”\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID jest nieprawidłowe; wynosi: „%s”\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nieznane DTLS-Content-Encoding %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nieznane CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Nie otrzymano MTU. Przerywanie\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "Połączono CSTP. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Ustawienie kompresji się nie powiodło\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Przydzielenie bufora „deflate” się nie powiodło\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "„inflate” się nie powiodło\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Dekompresja LZS się nie powiodła: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Dekompresja LZ4 się nie powiodła\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Nieznany typ kompresji %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" "Otrzymano skompresowany pakiet danych %s o rozmiarze %d B (wynosił %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "%d „deflate” się nie powiodło\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Nieoczekiwana długość pakietu. „SSL_read” zwróciło %d, ale pakiet wynosi\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Otrzymano żądanie „DPD” CSTP\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Otrzymano odpowiedź „DPD” CSTP\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Otrzymano „Keepalive” CSTP\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Otrzymano nieskompresowany pakiet danych o rozmiarze %d B\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Otrzymano rozłączenie z serwera: %02x „%s”\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Otrzymano rozłączenie z serwera\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Otrzymano nieskompresowany pakiet w trybie „!deflate”\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "otrzymano pakiet wymuszenia zakończenia serwera\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nieznany pakiet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Wykrywanie martwych partnerów CSTP wykryło martwego partnera.\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Ponowne połączenie się nie powiodło\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Wysłanie „DPD” CSTP\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Wysłanie „Keepalive” CSTP\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" "Wysyłanie nieskompresowanego pakietu danych o rozmiarze %d B (wynosił %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Wysłanie pakietu „BYE”: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Krotki zapis podczas zapisywania pakietu BYE\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Próbowanie uwierzytelnienia „Digest” do pośrednika\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Próbowanie uwierzytelnienia „Digest” do serwera „%s”\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Próbowano połączenia DTLS za pomocą istniejącego deskryptora pliku\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Brak adresu DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Serwer nie zaproponował żadnej opcji szyfrowania DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Brak DTLS podczas łączenia przez pośrednika\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "Zainicjowano DTLS. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Otrzymano nieznany pakiet (długość %d): %02x %02x %02x %02x…\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "Ten TOS: %d, ostatni TOS: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "setsockopt UDP" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Otrzymano żądanie „DPD” DTLS\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" "Wysłanie odpowiedzi DPD się nie powiodło. Należy oczekiwać rozłączenia\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Otrzymano odpowiedź „DPD” DTLS\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Otrzymano „Keepalive” DTLS\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Otrzymano skompresowany pakiet DTLS, kiedy kompresja jest wyłączona\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nieznany typ pakietu DTLS %02x, długość %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Wysłanie „Keepalive” DTLS\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" "Wysłanie żądania Keepalive się nie powiodło. Należy oczekiwać rozłączenia\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Inicjowanie wykrywania MTU (min=%d, max=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Wysyłanie sondy „DPD” MTU (%u B)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Wysłanie żądania DPD się nie powiodło (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Za dużo czasu w pętli wykrywania MTU; przyjmowanie wynegocjowanego MTU.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Za dużo czasu w pętli wykrywania MTU; ustawiono MTU na %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" "Otrzymano nieoczekiwany pakiet (%.2x) podczas wykrywania MTU; pomijanie.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "Brak odpowiedzi na rozmiar %u po %d próbach; zgłoszone MTU to %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Odebranie żądania DPD się nie powiodło (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Otrzymano sondę „DPD” MTU (%u B)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Wykryto MTU o rozmiarze %d B (wynosił %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Brak zmian w MTU po wykrywaniu (wynosił %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Przyjmowanie oczekiwanego pakietu ESP z sekwencją %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Przyjmowanie pakietu ESP późniejszego niż oczekiwano z sekwencją %u " "(oczekiwano %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Odrzucanie starego pakietu ESP z sekwencją %u (oczekiwano %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" "Tolerowanie starego pakietu ESP z sekwencją %u (oczekiwano %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Odrzucanie powtórzonego pakietu ESP z sekwencją %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Tolerowanie powtórzonego pakietu ESP z sekwencją %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Przyjmowanie pakietu ESP poza kolejnością z sekwencją %u (oczekiwano " "%)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametry dla ESP %s: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Szyfrowanie ESP typu %s klucz 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Uwierzytelnienie ESP typu %s klucz 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "przychodzące" #: esp.c:94 msgid "outgoing" msgstr "wychodzące" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Wysłanie sond ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Otrzymano pakiet ESP ze starym SPI 0x%x, sekwencją %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Otrzymano pakiet ESP z nieprawidłowym SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "Otrzymano pakiet IP przestarzałego ESP o rozmiarze %d B\n" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" "Otrzymano pakiet IP przestarzałego ESP o rozmiarze %d B (skompresowane za " "pomocą LZO)\n" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "Otrzymano pakiet IPv6 ESP o rozmiarze %d B\n" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" "Otrzymano pakiet ESP o rozmiarze %d B z nierozpoznanym typem ładunku %02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Nieprawidłowa długość wypełnienia %02x w ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Nieprawidłowe bajty wypełnienia w ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Nawiązano sesję ESP z serwerem\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Przydzielenie pamięci do odszyfrowania pakietu ESP się nie powiodło\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Dekompresja LZO pakietu ESP się nie powiodła\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO zdekompresowało %d B do %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "„rekey” nie jest zaimplementowane dla ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP wykryło martwego partnera\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Wysłanie sond ESP dla DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "„Keepalive” nie jest zaimplementowane dla ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Ponowne kolejkowanie nieudanego wysłania ESP: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Wysłanie pakietu ESP się nie powiodło: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "Wysłano pakiet IPv%d ESP o rozmiarze %d B\n" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Utworzenie losowych kluczy dla ESP się nie powiodło\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Utworzenie początkowego IV dla ESP się nie powiodło\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" "OSTRZEŻENIE: nie odnaleziono formularza logowania HTML; przyjmowanie pól " "nazwy użytkownika i hasła\n" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "Nieznany identyfikator formularza „%s” (oczekiwano „auth_form”)\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Przetworzenie odpowiedzi profilu F5 się nie powiodło\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Odnalezienie parametrów profilu VPN się nie powiodło\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Przetworzenie odpowiedzi opcji F5 się nie powiodło\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "Czas oczekiwania bezczynności to %d min\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Otrzymano domyślne trasy\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Otrzymano wartość SplitTunneling0 %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Otrzymano serwer DNS %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Otrzymano serwer WINS/NBNS %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Otrzymano domenę wyszukiwania %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "Otrzymano rozdzieloną trasę wykluczenia %s\n" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "Otrzymano rozdzieloną trasę dołączenia %s\n" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "DTLS jest włączone na porcie %d\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" "OSTRZEŻENIE: serwer włącza DTLS, ale wymaga także HDLC. Wyłączanie DTLS,\n" " ponieważ HDLC uniemożliwia ustalenie sprawnego i spójnego MTU.\n" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Odnalezienie opcji VPN się nie powiodło\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Otrzymano przestarzały adres IP %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Otrzymano adres IPv6 %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Otrzymano parametry profilu „%s”\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Otrzymano IPv4 %d IPv6 %d HDLC %d ur_Z „%s”\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Błąd podczas nawiązywania połączenia F5\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Otrzymano obszar logowania „%s”\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "Przetworzenie XML konfiguracji Fortinet się nie powiodło\n" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Czas oczekiwania bezczynności wynosi %d min.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "Zgłaszana platforma to %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Otrzymano serwer DNS IPv%d %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" "OSTRZEŻENIE: otrzymano domeny rozdzielonego DNS %s (jeszcze " "niezaimplementowane)\n" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" "OSTRZEŻENIE: otrzymano serwer rozdzielonego DNS %s (jeszcze " "niezaimplementowane)\n" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "Otrzymano trasę IPv%d %s\n" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "Brak ciasteczka o nazwie SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "Błąd podczas nawiązywania połączenia Fortinet\n" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "Nie otrzymano oczekiwanej odpowiedzi svrhello.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "Stan svrhello był „%.*s” zamiast „ok”\n" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Odkładanie wznowienia DTLS, aż CSTP utworzy PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Utworzenie ciągu priorytetu DTLS się nie powiodło\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Ustawienie priorytetu DTLS się nie powiodło: „%s”: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Przydzielenie danych uwierzytelniających się nie powiodło: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Utworzenie klucza DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Ustawienie klucza DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" "Ustawienie danych uwierzytelniających „PSK” DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nieznane parametry DTLS dla żądanego zestawu szyfrów „%s”\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Ustawienie parametrów sesji DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "Biblioteka GnuTLS użyła %d losowych bajtów ClientHello; to nigdy nie powinno " "się zdarzyć\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "Biblioteka GnuTLS wysłała niezabezpieczone dane losowe ClientHello. Należy " "ją zaktualizować do wersji 3.6.13 lub nowszej.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Zainicjowanie DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU partnera %d jest za małe, aby umożliwić DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "Zmniejszono „MTU” DTLS do %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Wznowienie sesji DTLS się nie powiodło; możliwe, że to atak typu „MITM”. " "Wyłączanie DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Ustawienie „MTU” DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" "Nawiązano połączenie DTLS (za pomocą biblioteki GnuTLS). Zestaw szyfrów %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Kompresja połączenia DTLS za pomocą %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Powitanie DTLS przekroczyło czas oczekiwania\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Powitanie DTLS się nie powiodło: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Czy zapora sieciowa uniemożliwia wysyłanie pakietów UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Zainicjowanie szyfru ESP się nie powiodło: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Zainicjowanie „HMAC” ESP się nie powiodło: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Obliczenie HMAC dla pakietu ESP się nie powiodło: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Otrzymano pakiet ESP z nieprawidłowym HMAC\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Odszyfrowanie pakietu ESP się nie powiodło: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Zaszyfrowanie pakietu ESP się nie powiodło: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Wykonanie select() dla TLS się nie powiodło" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "Anulowano zapis TLS/DTLS\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Zapisanie do gniazda TLS/DTLS się nie powiodło: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "select() dla TLS/DTLS się nie powiodło" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "Anulowano odczyt TLS/DTLS\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "Gniazdo TLS/DTLS zostało nieczysto zamknięte\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Odczytanie z gniazda TLS/DTLS się nie powiodło: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Próbowano odczytać z nieistniejącej sesji %s\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "Błąd odczytu w sesji %s: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "Próbowano zapisać do nieistniejącej sesji %s\n" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Błąd zapisu w sesji %s: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Nie można wydobyć czasu wygaśnięcia certyfikatu\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Certyfikat klienta wygasł w dniu" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "Drugorzędny certyfikat klienta wygasł w dniu" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Certyfikat klienta niedługo wygaśnie w dniu" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "Drugorzędny certyfikat klienta niedługo wygaśnie w dniu" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Wczytanie elementu „%s” z bazy kluczy się nie powiodło: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Otwarcie pliku klucza/certyfikatu %s się nie powiodło: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Wykonanie „stat” na pliku klucza/certyfikatu %s się nie powiodło: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Przydzielenie bufora certyfikatu się nie powiodło\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Odczytanie certyfikatu do pamięci się nie powiodło: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Ustawienie struktury danych PKCS#12 się nie powiodło: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Odszyfrowanie pliku certyfikatu PKCS#12 się nie powiodło\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Hasło PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "Drugorzędne hasło PKCS#12:" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Przetworzenie pliku PKCS#12 się nie powiodło: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Wczytanie certyfikatu PKCS#12 się nie powiodło: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "Wczytanie drugorzędnego certyfikatu PKCS#12 się nie powiodło: %s\n" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nie można zainicjować sumy kontrolnej MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Błąd sumy kontrolnej MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Brak nagłówka DEK-Info: z zaszyfrowanego klucza biblioteki OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Nie można ustalić typu szyfrowania PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nieobsługiwany typ szyfrowania PEM: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Nieprawidłowe „salt” w zaszyfrowanym pliku PEM\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" "Błąd podczas odszyfrowywania zaszyfrowanego pliku PEM za pomocą base64: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Zaszyfrowany plik PEM jest za krótki\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Zainicjowanie szyfru do odszyfrowania pliku PEM się nie powiodło: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Odszyfrowanie klucza PEM się nie powiodło: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Odszyfrowanie klucza PEM się nie powiodło\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Hasło PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "Drugorzędne hasło PEM:" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Ten plik binarny został zbudowany bez obsługi kluczy systemowych\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Ten plik binarny został zbudowany bez obsługi PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Używanie certyfikatu PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Używanie systemowego certyfikatu %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Błąd podczas wczytywania certyfikatu z PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Błąd podczas wczytywania systemowego certyfikatu: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Używanie pliku certyfikatu %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "Używanie pliku drugorzędnego certyfikatu %s\n" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "Plik PKCS#11 nie zawiera żadnego certyfikatu\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Nie odnaleziono żadnego certyfikatu w pliku" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Wczytanie certyfikatu się nie powiodło: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "Wczytanie drugorzędnego certyfikatu się nie powiodło: %s\n" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Używanie systemowego klucza %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "Używanie drugorzędnego klucza systemu %s\n" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Błąd podczas inicjowania struktury klucza prywatnego: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Błąd podczas importowania systemowego klucza %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Próbowanie adresu URL klucza PKCS#11 %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Błąd podczas inicjowania struktury klucza PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Błąd podczas importowania adresu URL klucza PKCS#11 %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Używanie klucza PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Błąd podczas importowania klucza PKCS#11 do struktury klucza prywatnego: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Używanie pliku klucza prywatnego %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Zinterpretowanie pliku PEM się nie powiodło\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Wczytanie klucza prywatnego PKCS#1 się nie powiodło: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Wczytanie klucza prywatnego jako PKCS#8 się nie powiodło: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Odszyfrowanie pliku certyfikatu PKCS#8 się nie powiodło\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ustalenie typu klucza prywatnego %s się nie powiodło\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Hasło PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Uzyskanie identyfikatora klucza się nie powiodło: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" "Błąd podczas podpisywania danych testowych za pomocą klucza prywatnego: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Błąd podczas sprawdzania poprawności podpisu z certyfikatem: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Nie odnaleziono certyfikatu SSL pasującego do klucza prywatnego\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" "Nie odnaleziono drugorzędnego certyfikatu pasującego do klucza prywatnego\n" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "Nie spełniono warunków got_key.\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" "Błąd podczas tworzenia abstrakcyjnego klucza prywatnego z /x509_privkey: %s\n" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Używanie certyfikatu klienta „%s”\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "Używanie drugorzędnego certyfikatu „%s”\n" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Przydzielenie pamięci dla certyfikatu się nie powiodło\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Nie otrzymano wystawiającego z PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Otrzymano następne CA „%s” z PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" "Przydzielenie pamięci dla certyfikatów wspierających się nie powiodło\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodawanie wspierającego CA „%s”\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importowanie certyfikatu X.509 się nie powiodło: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Ustawienie certyfikatu PKCS#11 się nie powiodło: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Ustawienie listy unieważnień certyfikatów się nie powiodło: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "Klucz prywatny nie obsługuje RSA-PSS. Wyłączanie TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Ustawienie certyfikatu się nie powiodło: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Serwer nie przedstawił żadnego certyfikatu\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Błąd podczas porównywania certyfikatu serwera przy ponownym powitaniu: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Serwer przedstawił inny certyfikat podczas ponownego powitania\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Serwer przedstawił identyczny certyfikat podczas ponownego powitania\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Błąd podczas inicjowania struktury certyfikatów X.509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Błąd podczas importowania certyfikatu serwera\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Nie można obliczyć sumy kontrolnej certyfikatu serwera\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Błąd podczas sprawdzania stanu certyfikatu serwera\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "unieważniony certyfikat" #: gnutls.c:2098 msgid "signer not found" msgstr "nie odnaleziono podpisującego" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "podpisujący nie jest certyfikatem CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "niebezpieczny algorytm" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certyfikat nie został jeszcze aktywowany" #: gnutls.c:2106 msgid "certificate expired" msgstr "certyfikat wygasł" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "sprawdzenie poprawności podpisu się nie powiodło" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certyfikat nie pasuje do nazwy komputera" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Sprawdzenie poprawności certyfikatu klienta się nie powiodło: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Przydzielenie pamięci dla certyfikatów pliku CA się nie powiodło\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Odczytanie certyfikatów z pliku CA się nie powiodło: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Otwarcie pliku CA „%s” się nie powiodło: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Wczytanie certyfikatu się nie powiodło. Przerywanie.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "Konstrukcja ciągu priorytetu GnuTLS się nie powiodła\n" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Ustawienie ciągu priorytetu GnuTLS się nie powiodło („%s”): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negocjacja SSL z %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Anulowano połączenie SSL\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Niepowodzenie połączenia SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Niekrytyczny zwrot biblioteki GnuTLS podczas powitania: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Połączono z HTTPS na %s za pomocą zestawu szyfrów %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "Ponownie negocjowano SSL na %s za pomocą zestawu szyfrów %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Wymagany jest kod PIN dla %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Błędny kod PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "To ostatnia próba przed zablokowaniem" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Pozostało tylko kilka prób przed zablokowaniem" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Kod PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nieobsługiwany algorytm HMAC „OATH”\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Obliczenie HMAC „OATH” się nie powiodło: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "Nie można ustawić zestawów szyfrów: %s\n" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Nawiązano sesję EAP-TTLS\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Wywołano funkcję podpisywania TPM dla %d B.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Utworzenie obiektu sumy kontrolnej TPM się nie powiodło: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" "Ustawienie wartości w obiekcie sumy kontrolnej TPM się nie powiodło: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Podpis sumy kontrolnej TPM się nie powiódł: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Błąd podczas dekodowania danych „blob” klucza TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Błąd w danych „blob” klucza TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Utworzenie kontekstu TPM się nie powiodło: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Połączenie kontekstu TPM się nie powiodło: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Wczytanie klucza „SRK” TPM się nie powiodło: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Wczytanie obiektu polityki „SRK” TPM się nie powiodło: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Ustawienie kodu PIN TPM się nie powiodło: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Wczytanie danych „blob” klucza TPM się nie powiodło: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Kod PIN „SRK” TPM:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Utworzenie obiektu polityki kluczy się nie powiodło: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Przydzielenie polityki do klucza się nie powiodło: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Kod PIN klucza TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "Kod PIN TPM drugorzędnego klucza:" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Ustawienie kodu PIN klucza się nie powiodło: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Nieznany rozmiar skrótu EC TPM2 %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "Algorytm podpisu EC %s nie jest obsługiwany\n" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Błąd podczas dekodowania danych „blob” klucza TSS2: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Utworzenie typu ASN.1 dla TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Dekodowanie ASN.1 klucza TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Przetworzenie typu OID klucza TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "Klucz TPM2 ma nieznany typ OID %s, nie %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Przetworzenie nadrzędnego klucza TPM2 się nie powiodło: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Przetworzenie elementu klucza publicznego TPM2 się nie powiodło\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Przetworzenie elementu klucza prywatnego TPM2 się nie powiodło\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Przetworzono klucz TPM2 za pomocą nadrzędnego %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "Skrót TPM2 jest za duży: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" "Kodowanie PSS się nie powiodło; rozmiar sumy %d jest za duży dla klucza RSA " "%d\n" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "Podpis RSA TPMv2 poprosił o nieznany algorytm %s\n" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "Hasło TPM2 jest za długie, skracanie\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "właściciel" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "puste" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "aprobata" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platforma" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Tworzenie głównego klucz w hierarchii %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Hasło hierarchii TPM2 %s:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Esys_TR_SetAuth TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" "Uwierzytelnienie właściciela Esys_CreatePrimary TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Esys_CreatePrimary TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Nawiązywanie połączenia za pomocą TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "Esys_Initialize TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 zostało już uruchomione, co spowodowało fałszywy alarm niepowodzenia " "w dzienniku tpm2tss.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "Esys_Startup TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" "Esys_TR_FromTPMPublic się nie powiodło dla programu obsługującego 0x%x: 0x" "%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Hasło nadrzędnego klucza TPM2:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "Hasło drugorzędnego nadrzędnego klucza TPM2:" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Wczytywanie danych „blob” klucza TPM2, nadrzędny %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "Uwierzytelnienie Esys_Load TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "Esys_Load TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" "Esys_FlushContex TPM2 dla utworzonego głównego się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Hasło klucza TPM2:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "Hasło drugorzędnego klucza TPM2:" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "Funkcja podpisu RSA TPM2 poprosiła o %d B, algorytm %s\n" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Uwierzytelnienie Esys_RSA_Decrypt TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "Utworzenie podpisu RSA przez TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "Wywołano funkcję podpisywania EC TPM2 dla %d B.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "Nieznany rozmiar skrótu EC TPM2 %d dla algorytmu 0x%x\n" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "Uwierzytelnienie Esys_Sign TPM2 się nie powiodło\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Nieprawidłowy program obsługujący 0x%08x nadrzędnego TPM2\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "Używanie SWTPM z powodu zmiennej środowiskowej TPM_INTERFACE_TYPE\n" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "TSS2_TctiLdr_Initialize dla swtpm się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Zaimportowanie danych klucza prywatnego TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Zaimportowanie danych klucza publicznego TPM2 się nie powiodło: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Nieobsługiwany typ klucza TPM2 %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Działanie TPM2 %s się nie powiodło (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Wyzwanie: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Odpowiedź: %s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" "OSTRZEŻENIE: XML konfiguracji zawiera znacznik o wartości " "„%s”.\n" " Łączność VPN może być wyłączona lub ograniczona.\n" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Niestandardowa ścieżka do tunelu SSL: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Czas oczekiwania tunelu (czas między „rekey”) wynosi %d min.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Adres bramy w XML konfiguracji (%s) różni się od adresu zewnętrznej bramy " "(%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" "Adres bramy IPv6 w XML konfiguracji (%s) różni się od zewnętrznego adresu " "bramy (%s).\n" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "Konfiguracja GlobalProtect wysłała ipsec-mode=%s (oczekiwano esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Ignorowanie kluczy ESP, ponieważ obsługa ESP jest niedostępna\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" "Potencjalny znacznik konfiguracji GlobalProtect związany z IPv6 <%s>: %s\n" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Nieznany znacznik konfiguracji GlobalProtect <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" "Obsługa IPv6 w GlobalProtect jest eksperymentalna. Prosimy zgłosić wyniki na " "adres (w języku angielskim).\n" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" "Nie otrzymano kluczy ESP i pasującej bramy w konfiguracji GlobalProtect; " "tunel będzie tylko TLS.\n" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP jest wyłączone" #: gpst.c:661 msgid "No ESP keys received" msgstr "Nie otrzymano kluczy ESP" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "Obsługa ESP została wyłączona podczas budowania" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Nie otrzymano MTU. Obliczono %d dla %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Łączenie z punktem końcowym tunelu HTTPS…\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Błąd podczas pobierania odpowiedzi „GET-tunnel” HTTPS.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Brama rozłączyła się od razu po żądaniu „GET-tunnel”.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "Otrzymano nieoczekiwaną odpowiedź HTTP: %.*s\n" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "OSTRZEŻENIE: serwer poprosił nas o wysłanie zgłoszenia HIP z sumą kontrolną " "MD5 %s.\n" " Łączność VPN może zostać wyłączona lub ograniczona bez wysłania " "zgłoszenia HIP.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Jednakże wykonywanie skryptu wysyłania zgłoszenia HIP na tej platformie nie " "zostało jeszcze zaimplementowane." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Należy podać parametr --csd-wrapper ze skryptem wysyłania zgłoszenia HIP." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Błąd: uruchamianie skryptu „HIP Report” na tej platformie nie jest jeszcze " "zaimplementowane.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "Próba wykonania skryptu konia trojańskiego HIP „%s”.\n" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "Utworzenie potoku dla skryptu HIP się nie powiodło\n" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "Rozdzielenie dla skryptu HIP się nie powiodło\n" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "Skrypt HIP „%s” nieoczekiwanie zakończył działanie\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "Skrypt HIP „%s” zwrócił niezerowy stan: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "Pomyślnie ukończono skrypt HIP „%s” (zgłoszenie to %d B).\n" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Wysłanie zgłoszenia HIP się nie powiodło.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "Pomyślnie wysłano zgłoszenie HIP.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Wykonanie skryptu HIP %s się nie powiodło\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Brama mówi, że wymagane jest wysłanie zgłoszenia HIP.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Brama mówi, że wysłanie zgłoszenia HIP nie jest wymagane.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "Wykryto tunel ESP; wychodzenie z głównej pętli HTTPS.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Połączenie tunelu ESP się nie powiodło; używanie HTTPS zamiast tego.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Błąd odbioru pakietu: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Nieoczekiwana długość pakietu. „SSL_read” zwróciło %d (w tym 16 bajtów " "nagłówka), ale „payload_len” nagłówka wynosi %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Otrzymano odpowiedź „DPD/keepalive” GPST\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Oczekiwano 0000000000000000 jako ostatnie 8 bajtów nagłówka pakietu „DPD/" "keepalive”, ale otrzymano:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Otrzymano pakiet danych IPv%d o rozmiarze %d B\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Oczekiwano 0100000000000000 jako ostatnie 8 bajtów nagłówka pakietu danych, " "ale otrzymano:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Nieznany pakiet. Zrzut nagłówka:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "Zaległe sprawdzenie HIP GlobalProtect\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "Sprawdzenie lub zgłoszenie HIP się nie powiodło\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "„rekey” GlobalProtect do\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "Wykrywanie martwych partnerów GPST wykryło martwego partnera.\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Wysłanie żądania „DPD/keepalive” GPST\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Wysyłanie pakietu danych IPv%d o rozmiarze %d B\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "Pakiet sondy ICMPv%d (sekwencja %d) dla ESP GlobalProtect:\n" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Wysłanie sondy ESP się nie powiodło\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Błąd podczas importowania nazwy GSSAPI do uwierzytelnienia:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Błąd podczas tworzenia odpowiedzi GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Próbowanie uwierzytelnienia GSSAPI do pośrednika\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Próbowanie uwierzytelnienia GSSAPI do serwera „%s”\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Ukończono uwierzytelnianie GSSAPI\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Token GSSAPI jest za duży (%zd B)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Wysyłanie tokena GSSAPI o rozmiarze %zu B\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Wysłanie tokena uwierzytelnienia GSSAPI do pośrednika się nie powiodło: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Otrzymanie tokena uwierzytelnienia GSSAPI z pośrednika się nie powiodło: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Serwer SOCKS zgłosił niepowodzenie kontekstu GSSAPI\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nieznana odpowiedź stanu GSSAPI (0x%02x) z serwera SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Otrzymano token GSSAPI o rozmiarze %zu B: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Wysyłanie negocjacji ochrony GSSAPI o rozmiarze %zu B\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" "Wysłanie odpowiedzi ochrony GSSAPI do pośrednika się nie powiodło: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" "Otrzymanie odpowiedzi ochrony GSSAPI z pośrednika się nie powiodło: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" "Otrzymano odpowiedź ochrony GSSAPI o rozmiarze %zu B: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Nieprawidłowa odpowiedź ochrony GSSAPI z pośrednika (%zu B)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" "Pośrednik SOCKS żąda integralności komunikatów, co jest nieobsługiwane\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Pośrednik SOCKS żąda poufności komunikatów, co jest nieobsługiwane\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Pośrednik SOCKS żąda ochrony o nieznanym typie 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Próbowanie podstawowego uwierzytelnienia HTTP do pośrednika\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Próbowanie podstawowego uwierzytelnienia HTTP z serwerem „%s”\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Próbowanie uwierzytelnienia „Bearer” HTTP z serwerem „%s”\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Pośrednik zażądał podstawowego uwierzytelnienia, które jest domyślnie " "wyłączone\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Serwer „%s” zażądał podstawowego uwierzytelnienia, które jest domyślnie " "wyłączone\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Nie ma więcej metod uwierzytelnienia do wypróbowania\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Brak pamięci do przydzielenia ciasteczek\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Błąd podczas odczytywania odpowiedzi HTTP: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Przetworzenie odpowiedzi HTTP „%s” się nie powiodło\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Otrzymano odpowiedź HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorowanie nieznanego wiersza odpowiedzi HTTP „%s”\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Zaproponowano nieprawidłowe ciasteczko: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Uwierzytelnienie certyfikatu SSL się nie powiodło\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Treść odpowiedzi ma ujemny rozmiar (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nieznane Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Treść HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Błąd podczas odczytywania treści odpowiedzi HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Błąd podczas pobierania nagłówka fragmentu\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "Długość fragmentu HTTP jest ujemna (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "Długość fragmentu HTTP jest za duża (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Błąd podczas pobierania treści odpowiedzi HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" "Błąd podczas fragmentarycznego dekodowania. Oczekiwano „”, otrzymano: „%s”\n" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Nie można pobrać treści HTTP 1.0 bez zamknięcia połączenia\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Przetworzenie przekierowanego adresu URL „%s” się nie powiodło: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" "Nie można podążyć za przekierowaniem do adresu URL „%s” niebędącego HTTPS\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Przydzielenie nowej ścieżki dla względnego przekierowania się nie powiodło: " "%s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "Gniazdo HTTPS zostało zamknięte przez partnera; otwieranie ponownie\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Ponowna próba żądania %s się nie powiodła na nowym połączeniu\n" #: http.c:1002 msgid "request granted" msgstr "udzielono żądanie" #: http.c:1003 msgid "general failure" msgstr "ogólne niepowodzenie" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "połączenie niedozwolone przez zestaw reguł" #: http.c:1005 msgid "network unreachable" msgstr "sieć jest nieosiągalna" #: http.c:1006 msgid "host unreachable" msgstr "komputer jest nieosiągalny" #: http.c:1007 msgid "connection refused by destination host" msgstr "połączenie odrzucone przez komputer docelowy" #: http.c:1008 msgid "TTL expired" msgstr "TTL wygasło" #: http.c:1009 msgid "command not supported / protocol error" msgstr "nieobsługiwane polecenie/błąd protokołu" #: http.c:1010 msgid "address type not supported" msgstr "nieobsługiwany typ adresu" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "Serwer SOCKS zażądał nazwy użytkownika/hasło, ale nie ma żadnego\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Nazwa użytkownika i hasło do uwierzytelnienia SOCKS musi być < 255 bajtów\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Błąd podczas zapisywania żądania uwierzytelnienia do pośrednika SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Błąd podczas odczytywania żądania uwierzytelnienia z pośrednika SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Nieoczekiwana odpowiedź uwierzytelnienia z pośrednika SOCKS: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Uwierzytelniono z serwerem SOCKS za pomocą hasła\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Uwierzytelnienie hasłem z serwerem SOCKS się nie powiodło\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "Serwer SOCKS zażądał uwierzytelnienia GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "Serwer SOCKS zażądał uwierzytelnienia hasłem\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "Serwer SOCKS wymaga uwierzytelnienia\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "Serwer SOCKS zażądał nieznanego typu uwierzytelnienia %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Żądanie połączenia pośrednika SOCKS do %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Błąd podczas zapisywania żądania połączenia do pośrednika SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Błąd podczas odczytywania żądania połączenia z pośrednika SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Nieoczekiwana odpowiedź połączenia z pośrednika SOCKS: %02x %02x…\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Błąd pośrednika SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Błąd pośrednika SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Nieoczekiwany typ adresu %02x w odpowiedzi połączenia SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Żądanie połączenia pośrednika HTTP do %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Wysłanie żądania pośrednika się nie powiodło: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Żądanie „CONNECT” pośrednika się nie powiodło: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nieznany typ pośrednika „%s”\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Przetworzenie pośrednika „%s” się nie powiodło\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Obsługiwane są tylko pośredniki HTTP i SOCKS(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect lub openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Zgodny z VPN Cisco AnyConnect SSL, a także z ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Zgodny z Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Zgodny z VPN Palo Alto Networks (PAN) GlobalProtect SSL" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Zgodny z VPN Pulse Connect Secure SSL" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Zgodne z F5 BIG-IP SSL VPN" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "Fortinet SSL VPN" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Zgodne z FortiGate SSL VPN" #: library.c:244 msgid "PPP over TLS" msgstr "PPP przez TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "Nieuwierzytelnione RFC1661/RFC1662 PPP przez TLS, do testowania" #: library.c:254 msgid "Array SSL VPN" msgstr "Array SSL VPN" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "Zgodne z Array Networks SSL VPN" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Nieznany protokół VPN „%s”\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Zbudowano z biblioteką SSL bez obsługi DTLS firmy Cisco\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Nie otrzymano adresu IP. Przerywanie\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponowne połączenie przekazało inny adres IP „Legacy” (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Ponowne połączenie przekazało inną maskę sieci IP „Legacy” (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponowne połączenie przekazało inny adres IPv6 (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponowne połączenie przekazało inną maskę sieci IPv6 (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Otrzymano konfigurację IPv6, ale MTU %d jest za małe.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Przetworzenie adresu URL serwera „%s” się nie powiodło\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "W adresach URL serwera dozwolone jest tylko „https://”\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Nieznana suma kontrolna certyfikatu: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Rozmiar podanego odcisku jest mniejszy niż minimalnie wymagany (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Brak programu obsługującego formularze; nie można uwierzytelnić.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() się nie powiodło: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Krytyczny błąd podczas obsługiwania wiersza poleceń\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() się nie powiodło: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() się nie powiodło: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Błąd podczas konwertowania wejścia konsoli: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Niepowodzenie przydzielania dla ciągu ze standardowego wejścia\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Pomoc dla OpenConnect jest dostępna na stronie\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Używanie biblioteki %s. Obecne funkcje:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "„ENGINE” biblioteki OpenSSL jest nieobecne" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "OSTRZEŻENIE: ten plik binarny nie obsługuje DTLS lub ESP. Wydajność będzie " "zmniejszona.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Obsługiwane protokoły:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (domyślny)" #: main.c:743 msgid "Set VPN protocol" msgstr "Ustawienie protokołu VPN" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (standardowe wejście)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nie można przetworzyć tej ścieżki wykonywalnej „%s”" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Przydzielenie dla ścieżki vpnc-script się nie powiodło\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Zastępuje nazwę komputera „%s” nazwą „%s”\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Użycie: openconnect [opcje] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Otwarty klient dla wielu protokołów VPN, wersja %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Odczytuje opcje z pliku konfiguracji" #: main.c:914 msgid "Report version number" msgstr "Wyświetla numer wersji" #: main.c:915 msgid "Display help text" msgstr "Wyświetla tekst pomocy" #: main.c:919 msgid "Authentication" msgstr "Uwierzytelnienie" #: main.c:920 msgid "Set login username" msgstr "Ustawia nazwę użytkownika logowania" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Wyłącza uwierzytelnianie hasłem/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" "Bez oczekiwania działań użytkownika; kończy działanie, jeśli jest wymagane" #: main.c:923 msgid "Read password from standard input" msgstr "Odczytuje hasło ze standardowego wejścia" #: main.c:924 msgid "Choose authentication login selection" msgstr "Wybiera logowanie uwierzytelnienia" #: main.c:925 msgid "Provide authentication form responses" msgstr "Podaje odpowiedzi formularza uwierzytelnienia" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Używa CERTYFIKATU klienta SSL" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Używa pliku KLUCZA prywatnego SSL" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Ostrzega, kiedy czas życia certyfikatu < DNI" #: main.c:929 msgid "Set login usergroup" msgstr "Ustawia grupę użytkownika logowania" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ustawia hasło klucza lub kod PIN „SRK” TPM" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Hasło klucza jest fsid systemu plików" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Typ tokena programowego: rsa, totp, hotp lub oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Hasło tokena programowego lub token oidc" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(UWAGA: obsługa biblioteki libstoken (SecurID RSA) została wyłączona podczas " "budowania)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(UWAGA: obsługa „OATH” Yubikey została wyłączona podczas budowania)" #: main.c:941 msgid "Server validation" msgstr "Sprawdzanie poprawności serwera" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "Przyjmuje tylko certyfikat serwera o tym odcisku" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Wyłącza domyślne CA systemu" #: main.c:944 msgid "Cert file for server verification" msgstr "Plik certyfikatu do sprawdzania poprawności serwera" #: main.c:946 msgid "Internet connectivity" msgstr "Łączność z Internetem" #: main.c:947 msgid "Set VPN server" msgstr "Ustawia serwer VPN" #: main.c:948 msgid "Set proxy server" msgstr "Ustawia serwer pośrednika" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Ustawia metody uwierzytelnienia pośrednika" #: main.c:950 msgid "Disable proxy" msgstr "Wyłącza pośrednika" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Używa biblioteki libproxy do automatycznego konfigurowania pośrednika" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" "(UWAGA: obsługa biblioteki libproxy została wyłączona podczas budowania)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Ograniczenie czasu ponawiania połączenia w sekundach" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Używa IP podczas łączenie z KOMPUTEREM" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Kopiuje pole TOS/TCLASS do pakietów DTLS i ESP" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Ustawia lokalny port dla datagramów DTLS i ESP" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Uwierzytelnienie (dwuetapowe)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Używa CIASTECZKA uwierzytelnienia" #: main.c:962 msgid "Read cookie from standard input" msgstr "Odczytuje ciasteczko ze standardowego wejścia" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Tylko uwierzytelnia i wyświetla informacje logowania" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Tylko pobiera i wyświetla ciasteczko; bez łączenia" #: main.c:965 msgid "Print cookie before connecting" msgstr "Wyświetla ciasteczko przed łączeniem" #: main.c:968 msgid "Process control" msgstr "Sterowanie procesem" #: main.c:969 msgid "Continue in background after startup" msgstr "Kontynuuje w tle po uruchomieniu" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Zapisuje PID usługi do tego pliku" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Traci uprawnienia po połączeniu" #: main.c:974 msgid "Logging (two-phase)" msgstr "Logowanie (dwuetapowe)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Używa syslog do komunikatów postępu" #: main.c:978 msgid "More output" msgstr "Więcej komunikatów" #: main.c:979 msgid "Less output" msgstr "Mniej komunikatów" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Zrzuca ruch uwierzytelnienia HTTP (zakłada --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Poprzedza komunikaty postępu czasem" #: main.c:983 msgid "VPN configuration script" msgstr "Skrypt konfiguracji VPN" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Używa NAZWY-INTERFEJSU jako interfejs tunelu" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Wiersz poleceń powłoki do używania skryptu konfiguracji zgodnego z vpnc" #: main.c:986 msgid "default" msgstr "domyślne" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Przekazuje ruch do programu „script”, nie tun" #: main.c:991 msgid "Tunnel control" msgstr "Sterowanie tunelem" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Bez pytania o łączność IPv6" #: main.c:993 msgid "XML config file" msgstr "Plik konfiguracji XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Żąda MTU z serwera (tylko przestarzałe serwery)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Wskazuje ścieżkę MTU do/z serwera" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Włącza stanową kompresję (domyślnie jest tylko bezstanowa)" #: main.c:997 msgid "Disable all compression" msgstr "Wyłącza całą kompresję" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Wymaga PFS (Perfect Forward Secrecy)" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Wyłącza DTLS i ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Obsługiwane szyfry biblioteki OpenSSL dla DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Ustawia ograniczenie kolejki pakietów na LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "Informacje o lokalnym systemie" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Pole nagłówka „User-Agent:” HTTP" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Lokalna nazwa komputera do zgłaszania serwerowi" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "zgłaszany ciąg wersji podczas uwierzytelniania" #: main.c:1010 msgid "default:" msgstr "domyślnie:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Wykonywanie pliku binarnego konia trojańskiego (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Traci uprawnienia podczas wykonywania konia trojańskiego" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Wykonuje SKRYPT zamiast pliku binarnego konia trojańskiego" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Błędy serwera" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Wyłącza ponowne używanie połączenia HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Bez próbowania uwierzytelnienia „POST” XML" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "Zezwala na użycie starych, niebezpiecznych szyfrów 3DES i RC4" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Przydzielenie ciągu się nie powiodło\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Uzyskanie wiersza z pliku konfiguracji się nie powiodło: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nierozpoznana opcja w wierszu %d: „%s”\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcja „%s” nie przyjmuje parametru w wierszu %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcja „%s” wymaga parametru w wierszu %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Nieprawidłowy użytkownik „%s”: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Nieprawidłowy identyfikator użytkownika „%d”: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Nieobsłużone automatyczne uzupełnienie dla opcji %d „--%s”. Prosimy to " "zgłosić (w języku angielskim).\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "połączono" #: main.c:1507 msgid "disconnected" msgstr "rozłączono" #: main.c:1511 msgid "unsuccessful" msgstr "niepowodzenie" #: main.c:1516 msgid "in progress" msgstr "w trakcie" #: main.c:1519 msgid "disabled" msgstr "wyłączone" #: main.c:1525 msgid "established" msgstr "nawiązano" #: main.c:1528 msgid "unknown" msgstr "nieznane" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "Skonfigurowano jako %s%s%s, z SSL%s%s %s i %s%s%s %s\n" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" "RX: % pakietów (% B); TX: % pakietów (% B)\n" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "Zestaw szyfrów SSL: %s\n" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "Zestaw szyfrów %s: %s\n" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "Następne „rekey” SSL za %ld s\n" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "Następne „rekey” %s za %ld s\n" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "Następne wywołanie konia trojańskiego za %ld s\n" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Otwarcie „%s” do zapisu się nie powiodło: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Kontynuowanie w tle; PID %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "OSTRZEŻENIE: nie można ustawić lokalizacji: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "OSTRZEŻENIE: ta wersja OpenConnect została zbudowana bez obsługi iconv,\n" " a używany jest przestarzały zestaw znaków „%s”.\n" " Program może się dziwnie zachowywać.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "OSTRZEŻENIE: ta wersja OpenConnect to %s, ale\n" " biblioteki libopenconnect to %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" "OSTRZEŻENIE: ta kompilacja jest przeznaczona wyłącznie do celów debugowania\n" " i może umożliwiać nawiązywanie niezabezpieczonych połączeń.\n" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Przydzielenie struktury vpninfo się nie powiodło\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nie można użyć opcji „config” wewnątrz pliku konfiguracji\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nie można otworzyć pliku konfiguracji „%s”: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Nieprawidłowy tryb kompresji „%s”\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" "Nie można włączyć niebezpiecznych szyfrów 3DES lub RC4, ponieważ\n" "biblioteka %s już ich nie obsługuje.\n" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Przydzielenie pamięci się nie powiodło\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Brak dwukropka w opcji „resolve”\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d jest za małe\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Wyłączanie wszystkich ponownych użyć połączeń HTTP z powodu opcji --no-http-" "keepalive.\n" "Jeśli to pomoże, to prosimy to zgłosić na adres (w języku angielskim).\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Opcja --no-cert-check była niebezpieczna i została usunięta.\n" "Należy naprawić certyfikat serwera lub użyć opcji --servercert, aby mu " "zaufać.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Zerowa długość kolejki jest niedozwolona; używanie 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect w wersji %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Nieprawidłowy tryb tokena programowego „%s”\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "OSTRZEŻENIE: podano %s. To nie powinno być potrzebne.\n" " Prosimy zgłosić przypadki, w których zastąpienie\n" " ciągu priorytetu jest niezbędne do połączenia\n" " z serwerem na adres \n" " (w języku angielskim).\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Za dużo parametrów w wierszu poleceń\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nie podano serwera\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ta wersja OpenConnect została zbudowana bez obsługi biblioteki libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "Ukończenie uwierzytelniania się nie powiodło\n" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Utworzenie połączenia SSL się nie powiodło\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Skonfigurowanie UDP się nie powiodło; używanie SSL zamiast tego\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nie podano parametru --script; DNS i trasowanie nie są skonfigurowane\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" "Więcej informacji: https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Użytkownik zażądał ponownego połączenia\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "Ciasteczko zostało odrzucone przez serwer; kończenie działania.\n" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sesja została zakończona przez serwer; kończenie działania.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "Użytkownik anulował (%s); kończenie działania.\n" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "Użytkownik odłączył z sesji (%s); kończenie działania.\n" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "Nieodwracalny błąd wejścia/wyjścia; kończenie działania.\n" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Nieznany błąd; kończenie działania.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Otwarcie %s do zapisu się nie powiodło: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Zapisanie konfiguracji do %s się nie powiodło: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" "Niezabezpieczone przyjmowanie certyfikatu z serwera VPN „%s”, ponieważ " "uruchomiono z opcją --servercert=ACCEPT.\n" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "Nie można sprawdzić certyfikatu serwera wobec %s\n" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" "Żaden z odcisków (%d) podanych przez --servercert nie pasuje do certyfikatu " "serwera: %s\n" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Sprawdzenie poprawność certyfikatu z serwera VPN „%s” się nie powiodło.\n" "Przyczyna: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Aby zaufać temu serwerowi w przyszłości, można dodać to do wiersza poleceń:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Wpisanie „%s” zaakceptuje, „%s” przerwie, inne wartości spowodują " "wyświetlenie: " #: main.c:2464 main.c:2483 msgid "no" msgstr "nie" #: main.c:2464 main.c:2470 msgid "yes" msgstr "tak" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Suma kontrolna klucza serwera: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Wybór uwierzytelnienia „%s” pasuje do wielu opcji\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Wybór uwierzytelnienia „%s” jest niedostępny\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Wymagane jest działanie użytkownika w trybie nieinteraktywnym\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Otwarcie pliku token do zapisu się nie powiodło: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Zapisanie tokenu się nie powiodło: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Ciąg tokena programowego jest nieprawidłowy\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Nie można otworzyć pliku stoken\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nie można otworzyć pliku ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect zostało zbudowane bez obsługi biblioteki libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Ogólne niepowodzenie w bibliotece libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect zostało zbudowane bez obsługi biblioteki liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Ogólne niepowodzenie w bibliotece liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Nie odnaleziono tokena Yubikey\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect zostało zbudowane bez obsługi Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Ogólne niepowodzenie Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Nie można otworzyć pliku oidc\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Ogólne niepowodzenie w tokenie oidc\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Skonfigurowanie skryptu tun się nie powiodło\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Skonfigurowanie urządzenia tun się nie powiodło\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "Opóźnianie tunelu z przyczyną: %s\n" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "Opóźnianie anulowania (natychmiastowe wywołanie zwrotne).\n" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "Opóźnianie anulowania.\n" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "Opóźnianie wstrzymania (natychmiastowe wywołanie zwrotne).\n" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "Opóźnianie wstrzymania.\n" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Wywołujący wstrzymał połączenie\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nie ma nic do zrobienia; usypianie na %d ms…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects się nie powiodło: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Wykonanie select() w głównej pętli się nie powiodło" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "Używanie base_mtu o wartości %d\n" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "Po usunięciu nagłówków %s/IPv%d, MTU o wartości %d\n" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" "Po usunięciu narzutu dla konkretnego protokołu (%d niewypełnione, %d " "wypełnione, rozmiar bloku %d), MTU o wartości %d\n" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() się nie powiodło: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() się nie powiodło: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Błąd podczas komunikowania się z ntlm_auth helper\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Próbowanie uwierzytelnienia „NTLM” HTTP do pośrednika („single-sign-on”)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Próbowanie uwierzytelnienia „NTLM” HTTP do serwera „%s” („single-sign-on”)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Próbowanie uwierzytelnienia „NTLMv%d” HTTP do pośrednika\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Próbowanie uwierzytelnienia „NTLMv%d” HTTP do serwera „%s”\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "Kończenie, ponieważ nullppp osiągnęło stan sieci.\n" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Nieprawidłowy ciąg tokena base32\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Przydzielenie pamięci do dekodowania hasła OATH się nie powiodło\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Można utworzyć kod tokena „INITIAL”\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Można utworzyć kod tokena „NEXT”\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Serwer odrzuca token programowy; przełączanie na wprowadzanie ręczne\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Tworzenie kodu tokena „TOTP” OATH\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Tworzenie kodu tokena „HOTP” OATH\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Nieoczekiwana długość %d dla TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Otrzymano MTU %d z serwera\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Otrzymano serwer DNS %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Otrzymano domenę wyszukiwania DNS %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Otrzymano wewnętrzny adres IP %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Otrzymano maskę sieci %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Otrzymano wewnętrzny adres bramy %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Otrzymano trasę dołączania „split” %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Otrzymano trasę wykluczania „split” %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Otrzymano serwer WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Szyfrowanie ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "„HMAC” ESP: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Kompresja ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Port ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Czas życia klucza ESP: %u B\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Czas życia klucza ESP: %u s\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Przechodzenie z ESP do SSL: %u s\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Ochrona powtarzania ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "„SPI” ESP (wychodzące): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d B haseł ESP\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nieznana grupa TLV %d attr %d długość %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Przetworzenie nagłówka KMP się nie powiodło\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Przetworzenie komunikatu KMP się nie powiodło\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Otrzymano komunikat KMP %d o rozmiarze %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Otrzymano TLV niebędące ESP (grupa %d) w KMP negocjacji ESP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Błąd podczas tworzenia żądania negocjacji oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Krótki zapis w negocjacji oNCP\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Odczyt %d B wpisu SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Nieoczekiwana odpowiedź o rozmiarze %d po pakiecie nazwy komputera\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Odpowiedź serwera na pakiet nazwy komputera to błąd 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "To wskazuje, że serwer ma wyłączoną obsługę starszego protokołu\n" "oNCP Juniper i zezwala tylko na połączenia używające nowszego\n" "protokołu Junos Pulse. Ta wersja OpenConnect ma EKSPERYMENTALNĄ\n" "obsługę Pulse za pomocą --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Nieprawidłowy pakiet oczekujący na KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Oczekiwano komunikatu „301” KMP z serwera, ale otrzymano %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Komunikat „301” KMP z serwera jest za duży (%d B)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Otrzymano komunikat „301” KMP o długości %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Odczytanie długości wpisu kontynuacji się nie powiodło\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Wpis jest za dużo o dodatkowe %d B; byłby %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Odczytanie wpisu kontynuacji o długości %d się nie powiodło\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Odczyt dodatkowych %d B komunikatu „301” KMP\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Błąd podczas negocjowania kluczy ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Wychodzące żądanie negocjacji oNCP:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "nowe przychodzące" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "nowe wychodzące" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Odczyt tylko 1 bajtu pola długości oNCP\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Serwer zakończył połączenie (sesja wygasła)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "Serwer zakończył połączenie (czas oczekiwania po bezczynności)\n" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Serwer zakończył połączenie (przyczyna: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Serwer wysłał wpis oNCP o zerowej długości\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Przychodzący komunikat KMP %d o rozmiarze %d (otrzymano %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Kontynuowanie przetwarzania komunikatu KMP %d o obecnym rozmiarze %d " "(otrzymano %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Nierozpoznany pakiet danych\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Skonfigurowanie ESP się nie powiodło: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nieznany komunikat KMP %d o rozmiarze %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "… + %d więcej bajtów nie zostało otrzymanych\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Wychodzący pakiet:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Wysłano pakiet kontroli włączenia ESP\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" "BŁĄD: %s() zostało wywołane za pomocą nieprawidłowego UTF-8 dla parametru " "„%s”\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nie można obliczyć narzutu DTLS dla %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Utworzenie losowego klucza się nie powiodło\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" "Utworzenie „SSL_SESSION ASN.1” dla biblioteki OpenSSL się nie powiodło: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" "Przetworzenie „SSL_SESSION ASN.1” przez bibliotekę OpenSSL się nie powiodło\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Zainicjowanie sesji DTLSv1 się nie powiodło\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Za duży rozmiar identyfikatora programu\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "Wywołanie zwrotne PSK\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Zainicjowanie sesji „CTX” DTLSv1 się nie powiodło\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Ustawienie wersji „CTX” DTLS się nie powiodło\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Utworzenie klucza DTLS się nie powiodło\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Ustawienie listy szyfrów DTLS się nie powiodło\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "Nie odnaleziono szyfru DTLS „%s”\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() się nie powiodło z protokołem DTLS w wersji 0x%x\n" "Czy używana jest wersja biblioteki OpenSSL starsza niż 0.9.8m?\n" "Więcej informacji: http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Opcja wiersza poleceń --no-dtls pozwoli uniknąć tego komunikatu\n" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() się nie powiodło\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" "Nawiązano połączenie DTLS (za pomocą biblioteki OpenSSL). Zestaw szyfrów %s-" "%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Prawdopodobnie biblioteka OpenSSL jest uszkodzona\n" "Więcej informacji na http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Powitanie DTLS się nie powiodło: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Zainicjowanie szyfru ESP się nie powiodło:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Zainicjowanie „HMAC” ESP się nie powiodło\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Skonfigurowanie kontekstu odszyfrowywania dla pakietu ESP się nie powiodło:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Odszyfrowanie pakietu ESP się nie powiodło:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Zaszyfrowanie pakietu ESP się nie powiodło:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nawiązanie kontekstu PKCS#11 biblioteki libp11 się nie powiodło:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Wczytanie modułu dostarczającego PKCS#11 (%s) się nie powiodło:\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "Zablokowano kod PIN\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "Kod PIN wygasł\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Inny użytkownik jest już zalogowany\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nieznany błąd podczas logowania do tokena PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Zalogowano do gniazda PKCS#11 „%s”\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Wyliczenie certyfikatów w gnieździe PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Odnaleziono %d certyfikatów w gnieździe „%s”\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Przetworzenie adresu URI „%s” PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Wyliczenie gniazd PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Logowanie do gniazda PKCS#11 „%s”\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Odnalezienie certyfikatu PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Biblioteka libp11 nie pobrała treści certyfikatu X.509\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "Używanie drugorzędnego certyfikatu PKCS#11 %s\n" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Wyliczenie kluczy w gnieździe PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Odnaleziono %d kluczy w gnieździe PKCS#11 „%s”\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Certyfikat nie ma klucza publicznego\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "Drugorzędny certyfikat nie ma klucza publicznego\n" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Certyfikat nie pasuje do klucza prywatnego\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "Drugorzędny certyfikat nie pasuje do klucza prywatnego\n" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Sprawdzanie, czy klucz EC pasuje do certyfikatu\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Przydzielenie bufora podpisu się nie powiodło\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" "Podpisanie pustych danych, aby sprawdzić poprawność klucza EC, się nie " "powiodło\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Odnalezienie klucza PKCS#11 „%s” się nie powiodło\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "Używanie drugorzędnego klucza PKCS#11 %s\n" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "Wystąpienie klucza prywatnego z PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" "Wystąpienie drugorzędnego klucza prywatnego z PKCS#11 się nie powiodło\n" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ta wersja OpenConnect została zbudowana bez obsługi PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "Zapisanie do gniazda TLS/DTLS się nie powiodło\n" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "Odczytanie z gniazda TLS/DTLS się nie powiodło\n" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Błąd odczytu na sesji %s: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Błąd zapisu na sesji %s: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nieobsłużony typ żądania interfejsu użytkownika SSL %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Hasło PEM jest za długie (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "Brak certyfikatu klienta lub klucza\n" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Wczytanie klucza prywatnego się nie powiodło\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" "Zainstalowanie certyfikatu w kontekście biblioteki OpenSSL się nie powiodło\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatkowy certyfikat z %s: „%s”\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Przetworzenie PKCS#12 się nie powiodło (błędy powyżej)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "Przetworzenie drugorzędnego PKCS#12 się nie powiodło (błędy powyżej)\n" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 nie zawiera żadnego certyfikatu\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "Drugorzędne PKCS#12 nie zawiera żadnego certyfikatu\n" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 nie zawiera żadnego klucza prywatnego\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "Drugorzędne PKCS#12 nie zawiera żadnego klucza prywatnego\n" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Nie można wczytać mechanizmu TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Zainicjowanie mechanizmu TPM się nie powiodło\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Ustawienie hasła „SRK” TPM się nie powiodło\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Wczytanie klucza prywatnego TPM się nie powiodło\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "Wczytanie drugorzędnego klucza prywatnego TPM się nie powiodło\n" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Otwarcie pliku certyfikatu %s się nie powiodło: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "Otwarcie drugorzędnego pliku certyfikatu %s się nie powiodło: %s\n" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Wczytanie certyfikatu się nie powiodło\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Przetworzenie wszystkich obsługiwanych certyfikatów się nie powiodło. " "Próbowanie mimo to…\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" "Przetworzenie drugorzędnych obsługiwanych certyfikatów się nie powiodło. " "Próbowanie mimo to…\n" #: openssl.c:840 msgid "PEM file" msgstr "Plik PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Utworzenie „BIO” dla elementu bazy kluczy „%s” się nie powiodło\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Wczytanie klucza prywatnego się nie powiodło (błędne hasło?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" "Wczytanie drugorzędnego klucza prywatnego się nie powiodło (błędne hasło?)\n" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Wczytanie klucza prywatnego się nie powiodło (błędy powyżej)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" "Wczytanie drugorzędnego klucza prywatnego się nie powiodło (błędy powyżej)\n" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Wczytanie certyfikatu X.509 z bazy kluczy się nie powiodło\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Otwarcie pliku klucza prywatnego %s się nie powiodło: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "Wczytanie drugorzędnego klucza prywatnego się nie powiodło\n" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" "Odszyfrowanie drugorzędnego pliku certyfikatu PKCS#8 się nie powiodło\n" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "Drugorzędne hasło PKCS#8:" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Konwertowanie PKCS#8 na EVP_PKEY biblioteki OpenSSL się nie powiodło\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" "Konwersja drugorzędnego PKCS#8 do EVP_PKEY biblioteki OpenSSL się nie " "powiodło\n" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Zidentyfikowanie typu klucza prywatnego w „%s” się nie powiodło\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Pasujące „altname” DNS „%s”\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Nic nie pasuje do „altname” „%s”\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certyfikat ma „altname” GEN_IPADD z fałszywą długością %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Pasujący adres %s „%s”\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nic nie pasuje do adresu %s „%s”\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Adres URI „%s” ma niepustą ścieżkę; ignorowanie\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Pasujący adres URI „%s”\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Nic nie pasuje do adresu URI „%s”\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Żadne „altname” w certyfikacie partnera nie pasuje do „%s”\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Brak nazwy tematu w certyfikacie partnera\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Przetworzenie nazwy tematu w certyfikacie partnera się nie powiodło\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Niedopasowanie tematu certyfikatu partnera („%s” != „%s”)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Pasująca nazwa tematu certyfikatu partnera „%s”\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatkowy certyfikat z pliku CA: „%s”\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Błąd w polu „notAfter” certyfikatu klienta\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "Błąd w polu notAfter drugorzędnego certyfikatu klienta\n" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "Certyfikat SSL i klucz nie pasują\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Odczytanie certyfikatów z pliku CA „%s” się nie powiodło\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Otwarcie pliku CA „%s” się nie powiodło\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Utworzenie „CTX” TLSv1 się nie powiodło\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "Konstrukcja listy szyfrów biblioteki OpenSSL się nie powiodła\n" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Ustawienie listy szyfrów biblioteki OpenSSL się nie powiodło („%s”)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Niepowodzenie połączenia SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Obliczenie „HMAC” OATH się nie powiodło\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "Negocjacja EAP-TTLS z %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Niepowodzenie połączenia EAP-TTLS: %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "Brak sekwencji początkowej flagi HDLC (0x7e)\n" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "Bufor HDLC zakończył się bez FCS i sekwencji flagi (0x7e)\n" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "Ramka HDLC jest za krótka (%d B)\n" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "Błędny pakiet HDLC FCS %04x\n" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "NiezaHDLC-owany pakiet (%ld B → %ld), FCS=0x%04x\n" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "Obecny stan PPP: %s (enkapsulacja %s):\n" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" " przychodzące: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, " "ipv6=%s\n" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" " wychodzące: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, " "ipv6=%s, solicit_peerns=%d, got_peerns=%d\n" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" "Otrzymano MRU o wartości %d od serwera. Nieprzyjmowanie i oferowanie " "większego MRU o wartości %d (naszego MTU)\n" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" "Otrzymano MRU o wartości %d od serwera. Ustawianie naszego MTU na pasujące.\n" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "Otrzymano asyncmap o wartości 0x%08x od serwera\n" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "Otrzymano magiczną liczbę 0x%08x od serwera\n" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "Otrzymano kompresję pól protokołu od serwera\n" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "Otrzymano kompresję pól sterowania i adresu od serwera\n" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "Otrzymano przestarzałe adresy IP od serwera, ignorowanie\n" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "Otrzymano kompresję TCP/IP Van Jacobsona od serwera\n" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "Otrzymano adres IPv4 partnera %s od serwera\n" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "Otrzymano adres link-local IPv6 %s od serwera\n" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "Otrzymano nieznane TLV %s (znacznik %d, długość %d+2) od serwera:\n" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "Otrzymano %ld dodatkowych bajtów na końcu Config-Request:\n" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "Odrzucenie konfiguracji %s/id %d od serwera\n" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "Nieprzyjęcie konfiguracji %s/id %d od serwera\n" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "Przyjęcie konfiguracji %s/id %d od serwera\n" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "Żądanie obliczonego MTU o wartości %d\n" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "Wysyłanie naszej konfiguracji %s/id %d do serwera\n" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "Serwer odrzucił/nie przyjął opcji MRU LCP\n" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "Serwer odrzucił/nie przyjął opcji asyncmap LCP\n" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "Serwer odrzucił opcję magic LCP\n" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "Serwer odrzucił/nie przyjął opcji PFCOMP LCP\n" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "Serwer odrzucił/nie przyjął opcji ACCOMP LCP\n" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "Serwer nie przyjął i zaoferował adres IPv4: %s\n" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "Serwer odrzucił przestarzały adres IP %s\n" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "Serwer odrzucił/nie przyjął naszego adresu IPv4 lub żądania: %s\n" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "Serwer nie przyjął i zaoferował żądanie IPCP dla serwera %s[%d]: %s\n" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "Serwer odrzucił/nie przyjął żądania IPCP dla serwera %s[%d]\n" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "Serwer nie przyjął i zaoferował adres link-local IPv6 %s\n" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "Serwer odrzucił/nie przyjął naszego identyfikatora interfejsu IPv6\n" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "Serwer odrzucił/nie przyjął TLV %s (znacznik %d, długość %d+2)\n" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "Otrzymano dodatkowe %ld bajtów na końcu Config-Reject:\n" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "Otrzymano %s/id %d %s od serwera\n" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "Serwer kończy z przyczyną: %s\n" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "Serwer odrzucił nasze żądanie skonfigurowania IPv%d\n" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "Przejście stanu PPP z %s do %s na kanale %s\n" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "Ładunek PPP przekracza bufor odbioru\n" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "Otrzymano krótki pakiet (%d B). Oczekiwanie na więcej.\n" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "Nieoczekiwany nagłówek pakietu przed PPP dla enkapsulacji %d.\n" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "Długość ładunku PPP %d przekracza bufor odbioru %d\n" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" "Pakiet PPP jest niepełny. Otrzymano %d B po kablu (w tym %d enkapsulacji), " "ale „payload_len” nagłówka wynosi %d. Oczekiwanie na więcej.\n" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Nieprawidłowa enkapsulacja PPP\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "Pakiet zawiera %d B po ładunku. Przyjmowanie skróconego pakietu.\n" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "Nieoczekiwany pakiet IPv%d w stanie PPP %s.\n" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "Otrzymano pakiet danych IPv%d o rozmiarze %d B przez %s\n" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" "Oczekiwano bajtów nagłówka PPP %d, ale otrzymano %ld, przesuwanie ładunku.\n" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "Wysyłanie Protocol-Reject dla %s. Ładunek:\n" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "Wykryto martwego partnera\n" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "Nawiązanie PPP się nie powiodło\n" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "Wysłanie żądania odrzucenia PPP jako „keepalive”\n" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "Wysłanie żądania echa PPP jako DPD\n" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "Wysyłanie pakietu %s %s PPP przez %s (identyfikator %d, razem %d B)\n" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "Wysyłanie pakietu %s PPP przez %s (razem %d B)\n" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "Wywołano połączenie PPP za pomocą nieprawidłowego stanu DTLS %d\n" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "Połączono tunel DTLS; wychodzenie z głównej pętli HTTPS.\n" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" "Połączenie tunelu DTLS się nie powiodło; używanie HTTPS zamiast tego (stan " "%d).\n" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "Nawiązanie tunelu PPP przez TLS się nie powiodło\n" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "Nieprawidłowy stan DTLS %d\n" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "Przywrócenie PPP się nie powiodło\n" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "Uwierzytelnienie sesji DTLS się nie powiodło\n" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Otrzymano wewnętrzny przestarzały adres IP %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Obsłużenie adresu IPv6 się nie powiodło\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Otrzymano wewnętrzny adres IPv6 %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Otrzymano dołączenie „split” IPv6 %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Otrzymano wykluczenie „split” IPv6 %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Nieoczekiwana długość %d dla atrybutu 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "Szyfrowanie ESP: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "HMAC ESP: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Tylko ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Nieznany atrybut 0x%x len %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Odczyt %d B wpisu IF-T/TLS\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Krótki zapis do IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Błąd podczas tworzenia pakietu IF-T\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Błąd podczas tworzenia pakietu EAP\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Nieoczekiwane wyzwanie uwierzytelnienia IF-T/TLS:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Nieoczekiwany ładunek EAP-TTLS:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Proszę podać obszar użytkownika Pulse:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Obszar:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Proszę wybrać obszar użytkownika Pulse:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Przetworzenie AVP się nie powiodło\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Osiągnięto ograniczenie sesji. Proszę wybrać sesję do zakończenia:\n" #: pulse.c:875 msgid "Session:" msgstr "Sesja:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Przetworzenie listy sesji się nie powiodło\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Proszę podać drugorzędne dane uwierzytelniania:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Proszę podać dane uwierzytelniania użytkownika:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Drugorzędna nazwa użytkownika:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Nazwa użytkownika:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Hasło:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Drugorzędne hasło:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Hasło wygasło. Proszę je zmienić:" #: pulse.c:1085 msgid "Current password:" msgstr "Obecne hasło:" #: pulse.c:1090 msgid "New password:" msgstr "Nowe hasło:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Sprawdzenie poprawności nowego hasła:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Nie podano haseł.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Hasła się nie zgadzają.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Obecne hasło jest za długie.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Nowe hasło jest za długie.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Żądanie kodu tokena:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Proszę podać odpowiedź:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Proszę podać kod hasła:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Proszę podać informacje o drugorzędnym tokenie:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Błąd podczas tworzenia żądania negocjacji Pulse\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Nieoczekiwana odpowiedź na negocjację wersji IF-T/TLS:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Wersja IF-T/TLS z serwera: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Nawiązanie sesji EAP-TTLS się nie powiodło\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "OSTRZEŻENIE: suma MD5 certyfikatu podana przez serwer nie zgadza się z jego " "prawdziwym certyfikatem.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Niepowodzenie uwierzytelnienia: konto zostało zablokowane\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "Niepowodzenie uwierzytelnienia: wymagany jest certyfikat klienta\n" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Niepowodzenie uwierzytelnienia: kod 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Nieznana wartość 0x%x zapytania D73. Zostanie zapytane o nazwę użytkownika " "i hasło.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Prosimy zgłosić tę wartość i zachowanie oficjalnego klienta.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Niepowodzenie uwierzytelnienia: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Serwer Pulse zażądał sprawdzania komputera (Host Checker), co nie jest " "jeszcze obsługiwane\n" "Proszę spróbować tryb Juniper (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Nieobsłużony pakiet uwierzytelnienia Pulse lub niepowodzenie " "uwierzytelnienia\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Nie przyjęto ciasteczka uwierzytelnienia Pulse\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Wpis obszaru Pulse\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Wybór obszaru Pulse\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Żądanie uwierzytelnienia hasła Pulse, kod 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "Żądanie hasła Pulse z nieznanym kodem 0x%02x. Prosimy to zgłosić.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Żądanie kodu tokena ogólnego hasła Pulse\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Ograniczenie liczby sesji Pulse: %d\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Nieobsłużone żądanie uwierzytelnienia Pulse\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" "Nieoczekiwana odpowiedź zamiast powodzenia uwierzytelnienia IF-T/TLS:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" "Niepowodzenie EAP-TTLS: czyszczenie wyjścia z oczekującymi bajtami " "wyjściowymi\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Błąd podczas tworzenia bufora EAP-TTLS\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Odczytanie „Acknowledge” EAP-TTLS się nie powiodło: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Odczyt %d B wpisu EAP-TTLS IF-T/TLS\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Błędny pakiet „Acknowledge” EAP-TTLS\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Błędny pakiet EAP-TTLS (długość %d, lewy %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Nieoczekiwany pakiet konfiguracji Pulse:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Otrzymanie trasy o nieznanym typie 0x%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Nieprawidłowy pakiet konfiguracji ESP:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Nieprawidłowa konfiguracja ESP\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Błędny pakiet IF-T/TLS, kiedy oczekiwano konfiguracji:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Błędny pakiet IF-T/TLS, kiedy oczekiwano konfiguracji.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "Odnaleziono niewystarczającą konfigurację\n" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "„rekey” ESP się nie powiodło\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "Krytyczny błąd Pulse (przyczyna: %ld): %s\n" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Nieznany pakiet Pulse\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Wysyłanie pakietu danych IF-T/TLS o rozmiarze %d B\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odrzucanie błędnego dołączania „split”: „%s”\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odrzucanie błędnego wykluczania „split”: „%s”\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "OSTRZEŻENIE: dołączenie podziału „%s” ma ustawione bity komputera, " "zastępowanie „%s/%d”.\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "OSTRZEŻENIE: wykluczenie podziału „%s” ma ustawione bity komputera, " "zastępowanie „%s/%d”.\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" "Ignorowanie przestarzałej sieci, ponieważ adres „%s” jest nieprawidłowy.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" "Ignorowanie przestarzałej sieci, ponieważ maska sieci „%s” jest " "nieprawidłowa.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Wywołanie skryptu „%s” dla %s się nie powiodło: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skrypt „%s” nieoczekiwanie zakończył działanie (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skrypt „%s” zwrócił błąd %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Wykonanie select() dla połączenia gniazda się nie powiodło" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Anulowano połączenie gniazda\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "setsockopt(TCP_NODELAY) na gnieździe TLS się nie powiodło:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Ponowne połączenie z pośrednikiem %s się nie powiodło: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Ponowne połączenie z komputerem %s się nie powiodło: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Pośrednik z biblioteki libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo się nie powiodło dla komputera „%s”: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponowne łączenie z serwerem DynDNS za pomocą poprzednio buforowanego adresu " "IP\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Próbowanie połączenia z pośrednikiem %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Próbowanie połączenia z serwerem %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Połączono z %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Przydzielenie pamięci masowej sockaddr się nie powiodło\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Połączenie z %s%s%s:%s się nie powiodło: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Zapominanie niedziałającego poprzedniego adresu partnera\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Połączenie z komputerem %s się nie powiodło\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Ponowne łączenie z pośrednikiem %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nie można uzyskać identyfikatora systemu plików dla hasła\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Otwarcie pliku klucza prywatnego „%s” się nie powiodło: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Brak błędu" #: ssl.c:727 msgid "Keystore locked" msgstr "Zablokowano bazę kluczy" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Nie zainicjowano bazy kluczy" #: ssl.c:729 msgid "System error" msgstr "Błąd systemu" #: ssl.c:730 msgid "Protocol error" msgstr "Błąd protokołu" #: ssl.c:731 msgid "Permission denied" msgstr "Odmowa dostępu" #: ssl.c:732 msgid "Key not found" msgstr "Nie odnaleziono klucza" #: ssl.c:733 msgid "Value corrupted" msgstr "Uszkodzona wartość" #: ssl.c:734 msgid "Undefined action" msgstr "Nieokreślone działanie" #: ssl.c:738 msgid "Wrong password" msgstr "Błędne hasło" #: ssl.c:739 msgid "Unknown error" msgstr "Nieznany błąd" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Wykonanie select() dla gniazda polecenia się nie powiodło" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Otwarcie %s się nie powiodło: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Wykonanie fstat() na %s się nie powiodło: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Plik %s jest pusty\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "Plik %s ma podejrzany rozmiar %\n" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Przydzielenie %d B dla %s się nie powiodło\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Odczytanie %s się nie powiodło: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Nieznana rodzina protokołów %d. Nie można utworzyć adresu serwera UDP\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Otwarcie gniazda UDP" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nieznana rodzina protokołów %d. Nie można użyć transportu UDP\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Dowiązanie gniazda UDP" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Ustawia gniazdo UDP na nieblokujące" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Ciasteczko nie jest już prawidłowe, kończenie sesji\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "uśpienie: %d s, pozostały czas oczekiwania: %d s\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Wykonanie select() dla wysłania gniazda się nie powiodło" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Wykonanie select() dla odbioru gniazda się nie powiodło" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Token SSPI jest za duży (%ld B)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Wysyłanie tokena SSPI o rozmiarze %lu B\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Wysłanie tokenu uwierzytelnienia SSPI do pośrednika się nie powiodło: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Otrzymanie tokenu uwierzytelnienia SSPI z pośrednika się nie powiodło: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "Serwer SOCKS zgłosił niepowodzenie kontekstu SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nieznana odpowiedź stanu SSPI (0x%02x) z serwera SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Otrzymano token SSPI o rozmiarze %lu B: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() się nie powiodło: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() się nie powiodło: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Wynik EncryptMessage() jest za duży (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Wysyłanie negocjacji ochrony SSPI o rozmiarze %u B\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Wysłanie odpowiedzi ochrony SSPI do pośrednika się nie powiodło: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Otrzymanie odpowiedzi ochrony SSPI z pośrednika się nie powiodło: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" "Otrzymano odpowiedź ochrony SSPI o rozmiarze %d B: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage się nie powiodło: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Nieprawidłowa odpowiedź ochrony SSPI z pośrednika (%lu B)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" "Wymagane jest wprowadzenie danych uwierzytelniających, aby odblokować token " "programowy." #: stoken.c:107 msgid "Device ID:" msgstr "Identyfikator urządzenia:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Użytkownik obszedł token programowy.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Wymagane są wszystkie pola; proszę spróbować ponownie.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Ogólne niepowodzenie w bibliotece libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" "Niepoprawny identyfikator urządzenia lub hasło; proszę spróbować ponownie.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Pomyślnie zainicjowano token programowy.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Proszę wprowadzić kod PIN tokena programowego." #: stoken.c:212 msgid "PIN:" msgstr "Kod PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Nieprawidłowy format kodu PIN; proszę spróbować ponownie.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Tworzenie kodu tokena RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" "Błąd podczas uzyskiwania dostępu do klucza rejestru dla adapterów " "sieciowych\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Nie można odczytać %s\\%s lub nie jest ciągiem\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "%s\\ComponentId to nieznane „%s”\n" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Odnaleziono %s w %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Nie można otworzyć klucza rejestru %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "Nie można odczytać klucza rejestru %s\\%s lub nie jest ciągiem\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() się nie powiodło: %s\n" "Używanie GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() się nie powiodło: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Otwarcie %s się nie powiodło\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "Otwarto urządzenie tun %S\n" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Uzyskanie wersji sterownika TAP się nie powiodło: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Błąd: wymagany jest sterownik TAP-Windows w wersji 9.9 lub nowszej " "(odnaleziono wersję %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Ustawienie adresu IP TAP się nie powiodło: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Ustawienie stanu nośnika TAP się nie powiodło: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "Ignorowanie niepasującego interfejsu „%S”\n" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "Nie można przekonwertować nazwy interfejsu do UTF-8\n" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "Używanie urządzenia %s „%s”, indeks %d\n" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "Nie można skonstruować nazwy interfejsu\n" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "Urządzenie TAP nieoczekiwanie przerwało łączność. Rozłączanie.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Odczytanie z urządzenia TAP się nie powiodło: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Pełne odczytanie z urządzenia TAP się nie powiodło: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Zapisano %ld B do tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Oczekiwanie na zapis tun…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Zapisano %ld B do tun po oczekiwaniu\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Zapisanie do urządzenia TAP się nie powiodło: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" "Wywoływanie skryptów tuneli nie jest jeszcze obsługiwane w systemie Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nie można otworzyć /dev/tun do sondowania" #: tun.c:92 msgid "Can't push IP" msgstr "Nie można wypchać adresu IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Nie można ustawić nazwy interfejsu" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nie można sondować %s dla IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otwarcie /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Utworzenie nowego tun się nie powiodło" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Umieszczenie deskryptora pliku tun w trybie „message-discard” się nie " "powiodło" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "Urządzenie tun jest nieobsługiwane na tej platformie\n" #: tun.c:205 msgid "open net" msgstr "otwarcie sieci" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Otwarcie urządzenia tun się nie powiodło: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Dowiązanie lokalnego urządzenia tun (TUNSETIFF) się nie powiodło: %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Do skonfigurowania lokalnej sieci OpenConnect musi być uruchomione jako " "root\n" "Więcej informacji: https://www.infradead.org/openconnect/nonroot.html\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nieprawidłowa nazwa interfejsu „%s”; musi pasować do „utun%%d” lub „tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Otwarcie gniazda „SYSPROTO_CONTROL” się nie powiodło: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Odpytanie identyfikatora kontroli utun się nie powiodło: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Przydzielenie nazwy urządzenia utun się nie powiodło\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Połączenie jednostki utun się nie powiodło: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nieprawidłowa nazwa interfejsu „%s”; musi pasować do „tun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Nie można otworzyć „%s”: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Ustawienie gniazda tun na nieblokujące się nie powiodło: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair się nie powiodło: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork się nie powiodło: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(skrypt)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Zapisanie przychodzącego pakietu się nie powiodło: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "Nie można wczytać biblioteki wintun.dll\n" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "Nie można rozwiązać funkcji z biblioteki wintun.dll\n" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Traktowanie komputera „%s” jako surowa nazwa komputera\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Użycie SHA1 na istniejącym pliku się nie powiodło\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Suma kontrolna SHA1 pliku konfiguracji XML: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Przetworzenie pliku konfiguracji XML %s się nie powiodło\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Komputer „%s” ma adres „%s”\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Komputer „%s” ma „UserGroup” „%s”\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Komputer „%s” nie jest wymieniony w konfiguracji; traktowanie jako surowa " "nazwa komputera\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Wysłanie „%s” do apletu „ykneo-oath” się nie powiodło: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Nieprawidłowa krótka odpowiedź do „%s” z apletu „ykneo-oath”\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Niepowodzenie odpowiedzi do „%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "wybór polecenia apletu" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nierozpoznana odpowiedź z apletu „ykneo-oath”\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Odnaleziono aplet ykneo-oath w wersji %d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Wymagany jest kod PIN dla apletu „OATH” Yubikey" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Kod PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Obliczenie odpowiedzi odblokowania Yubikey się nie powiodło\n" #: yubikey.c:274 msgid "unlock command" msgstr "polecenie odblokowania" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Próbowanie wariantu „truncated-char” PBKBF2 kodu PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nawiązanie kontekstu PC/SC się nie powiodło: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Nawiązano kontekst PC/SC\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Odpytanie listy czytników się nie powiodło: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Połączenie z czytnikiem PC/SC „%s” się nie powiodło: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Połączono czytnik PC/SC „%s”\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Uzyskanie wyłącznego dostępu do czytnika „%s” się nie powiodło: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "polecenie wyświetlenia listy kluczy" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Odnaleziono %s/%s klucz „%s” na „%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nie odnaleziono tokena na „%s” na Yubikey „%s”. Wyszukiwanie innego " "Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Serwer odrzuca token Yubikey; przełączanie na ręczne wprowadzanie\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Tworzenie kodu tokena Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Uzyskanie wyłącznego dostępu do Yubikey się nie powiodło: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "polecenie obliczania" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nierozpoznana odpowiedź z Yubikey podczas tworzenia kodu tokena\n" openconnect-8.20/po/fr.po0000644000076400007640000037074714204456070017141 0ustar00dwoodhoudwoodhou00000000000000# French translation of network-manager-openconnect. # Copyright (C) 2009-2011 The GNOME Foundation. # This file is distributed under the same license as the network-manager-openconnect package. # # Laurent Coudeur , 2009. # Nicolas Repentin , 2010. # Bruno Brouard , 2011 # Claude Paroz , 2011 # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect.HEAD\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2011-09-02 22:06+0200\n" "Last-Translator: Claude Paroz \n" "Language-Team: GNOME French Team \n" "Language: fr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:195 msgid "No input type in form\n" msgstr "" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Paquet inconnu %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Négociation SSL avec %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "TTL expiré" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "" #: main.c:915 msgid "Display help text" msgstr "" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Sélectionner le serveur proxy" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "Désactiver le proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Utiliser libproxy pour configurer le proxy automatiquement" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "Fichier configuration XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Désactiver la réutilisation de la connexion HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Version %s de OpenConnect\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Pas de serveur spécifié\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "non" #: main.c:2464 main.c:2470 msgid "yes" msgstr "oui" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Impossible d'ouvrir le fichier CA '%s'\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "" #: ssl.c:730 msgid "Protocol error" msgstr "" #: ssl.c:731 msgid "Permission denied" msgstr "" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "" #: ssl.c:739 msgid "Unknown error" msgstr "" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "ouvrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "L'hôte \"%s\" a pour adresse \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/en_GB.po0000644000076400007640000042175214204456070017475 0ustar00dwoodhoudwoodhou00000000000000# British English translation of NetworkManager-openconnect # Copyright (C) 2011 NetworkManager-openconnect'S COPYRIGHT HOLDER # This file is distributed under the same licence as the NetworkManager-openconnect package. # Bruce Cowan , 2011, 2012. # Chris Leonard , 2012. msgid "" msgstr "" "Project-Id-Version: NetworkManager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2012-09-23 20:24+0100\n" "Last-Translator: Bruce Cowan \n" "Language-Team: British English \n" "Language: en_GB\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Virtaal 0.7.1\n" "X-Project-Style: gnome\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unexpected %d result from server\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL wrote too few bytes! Asked for %d, sent %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sending uncompressed data packet of %d bytes\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Attempt new DTLS connection\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Received DTLS packet 0x%02x of %d bytes\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detected dead peer!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Failed to send DPD request. Expect disconnect\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Sent DTLS packet of %d bytes; DTLS send returned %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Cannot handle form method='%s', action='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Form choice has no name\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "name %s not input\n" #: auth.c:195 msgid "No input type in form\n" msgstr "No input type in form\n" #: auth.c:207 msgid "No input name in form\n" msgstr "No input name in form\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unknown input type %s in form\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Failed to parse server response\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Response was:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Asked for password but '--no-passwd' set\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Failed to open HTTPS connection to %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Failed to send GET request for new config\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloaded config file did not match intended SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Failed to change to CSD home directory '%s': %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Failed to open temporary CSD script file: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Failed to write temporary CSD script file: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warning: you are running insecure CSD code with root privileges\n" "» Use command line option \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Failed to exec CSD script %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Unknown response from server\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Refreshing %s after 1 second...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Error fetching HTTPS response\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN service unavailable; reason: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Got inappropriate HTTP CONNECT response: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Got CONNECT response: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "No memory for options\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unknown CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "No MTU received. Aborting\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connected. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Compression setup failed\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Allocation of deflate buffer failed\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "inflate failed\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "deflate failed %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unexpected packet length. SSL_read returned %d but packet is\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Got CSTP DPD request\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Got CSTP DPD response\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Got CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Received uncompressed data packet of %d bytes\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Received server disconnect: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Compressed packet received in !deflate mode\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "received server terminate packet\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detected dead peer!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Reconnect failed\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE packet: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "No DTLS address\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server offered no DTLS cipher option\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "No DTLS when connected via proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Got DTLS DPD request\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Failed to send DPD response. Expect disconnect\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Got DTLS DPD response\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Got DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unknown DTLS packet type %02x, len %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Failed to send keepalive request. Expect disconnect\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Unknown DTLS parameters for requested CipherSuite '%s'\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Failed to set DTLS session parameters: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Failed to set DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake timed out\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS handshake failed: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Could not extract expiration time of certificate\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Client certificate has expired at" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Client certificate expires soon at" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Failed to load item '%s' from keystore: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Failed to open key/certificate file %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Failed to stat key/certificate file %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Failed to allocate certificate buffer\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Failed to read certificate into memory: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Failed to setup PKCS#12 data structure: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Failed to decrypt PKCS#12 certificate file\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Enter PKCS#12 pass phrase:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Failed to process PKCS#12 file: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Failed to load PKCS#12 certificate: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Could not initialise MD5 hash: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash error: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Missing DEK-Info: header from OpenSSL encrypted key\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Cannot determine PEM encryption type\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Unsupported PEM encryption type: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Invalid salt in encrypted PEM file\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Error base64-decoding encrypted PEM file: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Encrypted PEM file too short\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Failed to initialise cipher for decrypting PEM file: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Failed to decrypt PEM key: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Decrypting PEM key failed\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Enter PEM pass phrase:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "This binary built without PKCS#11 support\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Using PKCS#11 certificate %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Error loading certificate from PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Using certificate file %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 file contained no certificate\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "No certificate found in file" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Loading certificate failed: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Error initialising private key structure: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Error initialising PKCS#11 key structure: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Error importing PKCS#11 URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Using PKCS#11 key %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Error importing PKCS#11 key into private key structure: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Using private key file %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "This version of OpenConnect was built without TPM support\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Failed to interpret PEM file\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Failed to load PKCS#1 private key: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Failed to load private key as PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Failed to decrypt PKCS#8 certificate file\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Failed to determine type of private key %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Enter PKCS#8 pass phrase:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Failed to get key ID: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Error signing test data with private key: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Error validating signature against certificate: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "No SSL certificate found to match private key\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Using client certificate '%s'\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Failed to allocate memory for supporting certificates\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Adding supporting CA '%s'\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Importing X509 certificate failed: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Setting PKCS#11 certificate failed: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Setting certificate revocation list failed: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Setting certificate failed: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server presented no certificate\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Error initialising X509 cert structure\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Error importing server's cert\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Error checking server cert status\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certificate revoked" #: gnutls.c:2098 msgid "signer not found" msgstr "signer not found" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "signer not a CA certificate" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "insecure algorithm" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certificate not yet activated" #: gnutls.c:2106 msgid "certificate expired" msgstr "certificate expired" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "signature verification failed" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certificate does not match hostname" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Server certificate verify failed: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Failed to allocate memory for cafile certs\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Failed to read certs from cafile: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Failed to open CA file '%s': %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Loading certificate failed. Aborting.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL negotiation with %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL connection cancelled\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL connection failure: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS non-fatal return during handshake: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN required for %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Wrong PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "This is the final try before locking!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Only a few tries left before locking!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Enter PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM sign function called for %d bytes.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Failed to create TPM hash object: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Failed to set value in TPM hash object: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash signature failed: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Error decoding TSS key blob: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Error in TSS key blob\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Failed to create TPM context: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Failed to connect TPM context: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Failed to load TPM SRK key: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Failed to load TPM SRK policy object: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Failed to set TPM PIN: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Failed to load TPM key blob: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Enter TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Failed to create key policy object: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Failed to assign policy to key: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Enter TPM key PIN:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Failed to set key PIN: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "No memory for allocating cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Failed to parse HTTP response '%s'\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Got HTTP response: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignoring unknown HTTP response line '%s'\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Invalid cookie offered: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL certificate authentication failed\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Response body has negative size (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unknown Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Error reading HTTP response body\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Error fetching chunk header\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Error fetching HTTP response body\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Cannot receive HTTP 1.0 body without closing connection\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Failed to parse redirected URL '%s': %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Cannot follow redirection to non-https URL '%s'\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allocating new path for relative redirect failed: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "request granted" #: http.c:1003 msgid "general failure" msgstr "general failure" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "connection not allowed by ruleset" #: http.c:1005 msgid "network unreachable" msgstr "network unreachable" #: http.c:1006 msgid "host unreachable" msgstr "host unreachable" #: http.c:1007 msgid "connection refused by destination host" msgstr "connection refused by destination host" #: http.c:1008 msgid "TTL expired" msgstr "TTL expired" #: http.c:1009 msgid "command not supported / protocol error" msgstr "command not supported / protocol error" #: http.c:1010 msgid "address type not supported" msgstr "address type not supported" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error writing auth request to SOCKS proxy: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error reading auth response from SOCKS proxy: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Unexpected auth response from SOCKS proxy: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requesting SOCKS proxy connection to %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error writing connect request to SOCKS proxy: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error reading connect response from SOCKS proxy: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unexpected connect response from SOCKS proxy: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy error %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy error %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unexpected address type %02x in SOCKS connect response\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requesting HTTP proxy connection to %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Sending proxy request failed: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unknown proxy type '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Only http or socks(5) proxies supported\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Built against SSL library with no Cisco DTLS support\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "No IP address received. Aborting\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconnect gave different Legacy IP address (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconnect gave different Legacy IP netmask (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconnect gave different IPv6 address (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconnect gave different IPv6 netmask (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Failed to parse server URL '%s'\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Only https:// permitted for server URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "No form handler; cannot authenticate.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allocation failure for string from stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE not present" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Usage: openconnect [options] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "Read options from config file" #: main.c:914 msgid "Report version number" msgstr "Report version number" #: main.c:915 msgid "Display help text" msgstr "Display help text" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Set login username" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Disable password/SecurID authentication" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Do not expect user input; exit if it is required" #: main.c:923 msgid "Read password from standard input" msgstr "Read password from standard input" #: main.c:924 msgid "Choose authentication login selection" msgstr "Choose authentication login selection" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Use SSL client certificate CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Use SSL private key file KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Warn when certificate lifetime < DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "Set login usergroup" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Set key passphrase or TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Key passphrase is fsid of file system" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "Cert file for server verification" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Set proxy server" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "Disable proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Use libproxy to automatically configure proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: libproxy disabled in this build)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Connection retry timeout in seconds" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Read cookie from standard input" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Authenticate only and print login info" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Continue in background after startup" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Write the daemon's PID to this file" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Drop privileges after connecting" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Use syslog for progress messages" #: main.c:978 msgid "More output" msgstr "More output" #: main.c:979 msgid "Less output" msgstr "Less output" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Use IFNAME for tunnel interface" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Shell command line for using a vpnc-compatible config script" #: main.c:986 msgid "default" msgstr "default" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Pass traffic to 'script' program, not tun" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Do not ask for IPv6 connectivity" #: main.c:993 msgid "XML config file" msgstr "XML config file" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indicate path MTU to/from server" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL ciphers to support for DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Set packet queue limit to LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-Agent: field" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Disable HTTP connection re-use" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Failed to get line from config file: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Unrecognised option at line %d: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Option '%s' does not take an argument at line %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Option '%s' requires an argument at line %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Failed to open '%s' for write: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuing in background; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Failed to allocate vpninfo structure\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Cannot use 'config' option inside config file\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Cannot open config file '%s': %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d too small\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Queue length zero not permitted; using 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Too many arguments on command line\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "No server specified\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "This version of openconnect was built without libproxy support\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Creating SSL connection failed\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "No --script argument provided; DNS and routing are not configured\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "See https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Failed to open %s for write: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Failed to write config to %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "Enter '%s' to accept, '%s' to abort; anything else to view: " #: main.c:2464 main.c:2483 msgid "no" msgstr "no" #: main.c:2464 main.c:2470 msgid "yes" msgstr "yes" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth choice \"%s\" not available\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "User input required in non-interactive mode\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Set up tun device failed\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "No work to do; sleeping for %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialise DTLSv1 session failed\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialise DTLSv1 CTX failed\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Set DTLS cipher list failed\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake failed: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM password too long (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert from %s: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Parse PKCS#12 failed (see above errors)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 contained no certificate!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 contained no private key!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Can't load TPM engine.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Failed to init TPM engine\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Failed to set TPM SRK password\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Failed to load TPM private key\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Failed to open certificate file %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Loading certificate failed\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Failed to create BIO for keystore item '%s'\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Loading private key failed (wrong passphrase?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Loading private key failed (see above errors)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Failed to load X509 certificate from keystore\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Failed to open private key file %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Failed to identify private key type in '%s'\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "No match for altname '%s'\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificate has GEN_IPADD altname with bogus length %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matched %s address '%s'\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "No match for %s address '%s'\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' has non-empty path; ignoring\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Matched URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "No match for URI '%s'\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No altname in peer cert matched '%s'\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "No subject name in peer cert!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Failed to parse subject name in peer cert\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert subject mismatch ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matched peer certificate subject name '%s'\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert from cafile: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Error in client cert notAfter field\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Failed to read certs from CA file '%s'\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Failed to open CA file '%s'\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL connection failure\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Discard bad split include: \"%s\"\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Discard bad split exclude: \"%s\"\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Failed to spawn script '%s' for %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' exited abnormally (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' returned error %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Socket connect cancelled\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy from libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo failed for host '%s': %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Attempting to connect to proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Attempting to connect to server %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Failed to allocate sockaddr storage\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Failed to connect to host %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "No error" #: ssl.c:727 msgid "Keystore locked" msgstr "Keystore locked" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Keystore uninitialised" #: ssl.c:729 msgid "System error" msgstr "System error" #: ssl.c:730 msgid "Protocol error" msgstr "Protocol error" #: ssl.c:731 msgid "Permission denied" msgstr "Permission denied" #: ssl.c:732 msgid "Key not found" msgstr "Key not found" #: ssl.c:733 msgid "Value corrupted" msgstr "Value corrupted" #: ssl.c:734 msgid "Undefined action" msgstr "Undefined action" #: ssl.c:738 msgid "Wrong password" msgstr "Wrong password" #: ssl.c:739 msgid "Unknown error" msgstr "Unknown error" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sleep %ds, remaining timeout %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Could not open /dev/tun for plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Can't push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Can't set ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Can't plumb %s for IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Failed to create new tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Failed to put tun file descriptor into message-discard mode" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Failed to open tun device: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Invalid interface name '%s'; must match 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Cannot open '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Failed to write incoming packet: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Treating host \"%s\" as a raw hostname\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Failed to SHA1 existing file\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config file SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Failed to parse XML config file %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" has address \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" has UserGroup \"%s\"\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" not listed in config; treating as raw hostname\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/pt.po0000644000076400007640000046711714204456073017156 0ustar00dwoodhoudwoodhou00000000000000# network-manager-openconnect's Portuguese translation. # Copyright © 2009 network-manager-openconnect # This file is distributed under the same license as the network-manager-openconnect package. # Filipe Gomes , 2009, 2010, 2011. # Pedro Albuquerque , 2015. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2015-11-13 07:20+0000\n" "Last-Translator: <>\n" "Language-Team: Pedro Albuquerque\n" "Language: pt\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Gtranslator 2.91.6\n" "X-Project-Style: gnome\n" "X-Language: pt_PT\n" "X-Source-Language: C\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Cookie \"%s\" inválido\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Resultado inesperado %d do servidor\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Falha na alocação\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Recebido pacote curto (%d bytes)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" "SSL escreveu poucos bytes! Pedidos %d, enviados %d\n" "\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Reescrita de CSTP devida\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Falha no reaperto de mão, a tentar novo túnel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "A enviar pacote de dados não comprimidos de %d bytes\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Tentar nova ligação DTLS\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Recebido pacote DTLS 0x%02x de %d bytes\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Reescrita DTLS devida\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Cumprimento DTLS falhou, a religar.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detetou um par morto!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Enviar DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Falha ao enviar pedido DPD. Desligar esperado\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Enviado pacote DTLS de %d bytes; o envio DTLS devolveu %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Falha ao gerar OTP tokencode; a desativar símbolo\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "A ignorar item de submissão de formulário desconhecido \"%s\"\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "A ignorar tipo de entrada de formulário desconhecida \"%s\"\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "A descartar opção \"%s\" duplicada\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Impossível processar formulário method=\"%s\", action=\"%s\"\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Falha ao alocar memória para comunicação com TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Suporte a TNCC ainda não implementado em Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Sem cookie DSPREAUTH; sem tentar TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Falha ao executar script TNCC %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Início enviado; a aguardar resposta de TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Falhou a leitura da resposta de TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Recebida resposta %s sem sucesso de TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Obtido novo cookie DSPREAUTH de TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Falha ao processar documento HTML\"\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Falha ao encontrar ou processar formulário web na página de início de " "sessão\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "A despejar formulário HMTL desconhecido:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "A escolha do formulário não tem nome\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "nome %s não inserido\n" #: auth.c:195 msgid "No input type in form\n" msgstr "" "Sem tipo de entrada no formulário\n" "\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Sem nome de entrada no formulário\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Tipo de entrada %s desconhecido no formulário\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Resposta desconhecida do servidor\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Falha ao processar resposta do servidor\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Resposta foi:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Recbido quando não era esperado.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Resposta XML não tem nó \"auth\"\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Pedida senha, mas \"--no-passwd\" definido\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "O perfil XML não será transferido porque SHA1 já coincide\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Falha ao abrir a ligação HTTPS a %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Falha ao enviar o pedido GET para nova configuração\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "O ficheiro de configuração transferido não corresponde ao SHA1 desejado\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Transferido novo perfil XML\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Falha ao alterar a pasta pessoal CSD: \"%s\": %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Erro: o servidor pediu para executar CSD hostscan.\n" "Tem de indicar um argumento --csd-wrapper adequado.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Erro: o servidor pediu para transferir e executar o troiano \"Cisco Secure " "Desktop\".\n" "Esta funcionalidade está desativada por motivos de segurança, poderá querer " "ativá-la.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Pasta temporária \"%s\" não pode ser escrita: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Falha ao abrir o ficheiro de script CSD temporário: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Falha ao escrever o ficheiro de script CSD temporário: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Aviso: está a executar código CSD inseguro com privilégios de raiz\n" "\t Use a opção de linha de comando \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Falha ao executar script CSD %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Resposta desconhecida do servidor\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "O servidor pediu certificado SSL do cliente após ter sido fornecido um\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Servidor pediu o certificado do cliente SSL; nenhum foi configurado\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST ativado\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "A atualizar %s após 1 segundo...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(erro 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(erro ao descrever o erro!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Erro: impossível inicializar sockets\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcb mss %d, env mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "ERRO CRÍTICO: o segredo mestre DTLS não está inicializado. Por favor, " "reporte isto.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Erro ao criar pedido HTTPS CONNECT\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Erro ao obter resposta HTTPS\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "Serviço VPN indisponível; razão: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Obtida resposta HTTP CONNECT inapropriada: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Obtida resposta CONNECT: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Sem memória para opções\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID não é de 64 caracteres; é de: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s desconhecido\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "CSTP-Content-Encoding %s desconhecido\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Sem MTU recebido. A abortar\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP ligado. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "A configuração de compressão falhou\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Falha na alocação do buffer para esvaziar\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "enchimento falhou\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Falha na descompressão LZS: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Falha na descompressão LZ4\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Tipo de compressão \"%d\" desconhecido\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Recebido pacote %s de dados comprimidos de %d bytes (era %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "esvaziar falhou %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Comprimento inesperado do pacote. SSL_read devolveu %d mas o pacote é\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Pedido CSTP DPD obtido\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Resposta CSTP DPD obtida\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Obtido CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Recebido pacote de dados não comprimidos de %d bytes\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Recebido fim de ligação do servidor: %02x \"%s\"\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Recebido fim de ligação do servidor\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Recebido pacote comprimido em modo !deflate\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "pacote de terminação do servidor recebido\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pacote desconhecido %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detetou um par morto!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Re-ligação falhou\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Enviar CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Enviar CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "A enviar pacote de dados comprimidos de %d bytes (era %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Enviar pacote BYE: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "A tentar autenticação Digest no proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "A tentar autenticação Digest no servidor \"%s\"\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Tentada ligação DTLS com um fd existente\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Sem endereço DTLS\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "O servidor não ofereceu opção de cifra DTLS\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Sem DTLS ao ligar via proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "CSTP ligado. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pacote desconhecido (comp %d) recebido: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Pedido DTLS DPD obtido\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Falha ao enviar resposta DPD. Desligar esperado\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Resposta DTLS DPD obtida\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Obtido DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Recebido pacote DTLS comprimido com compressão não ativada\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Tipo de pacote DTLS desconhecido %02x, comp %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Enviar DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Falha ao enviar pedido keepalive. Desligar esperado\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "A aceitar pacote ESP esperado com seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "Aceitar pacote ESP atrasado com seq %u (esperado %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "A descartar pacote ESP antigo com seq %u (esperado %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Descartar pacote ESP reproduzido com seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Aceitar pacote ESP avariado com seq %u (esperado %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parâmetros para %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Tipo de encriptação ESP %s chave 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Tipo de autenticação ESP %s chave 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "a chegar" #: esp.c:94 msgid "outgoing" msgstr "a sair" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Enviar sondas ESP\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Recebido pacote ESP com SPI 0x%08x inválido\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Comprimento de espaço %02x inválido no ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Bytes de espaço inválidos no ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Sessão ESP estabelecida com o servidor\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Falha ao alocar memória para desencriptar o pacote ESP\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Falha na descompressão LZO do pacote ESP\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO descomprimiu %d bytes em %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Rekey não implementado para ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "O ESP detetou um par morto\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Enviar sondas ESP para DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive não implementado para ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Falha ao enviar pacote ESP: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Parâmetros DTLS desconhecidos para o CipherSuite \"%s\" pedido\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Falha ao definir parâmetros de sessão DTLS: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Falha ao definir DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Estabelecida ligação DTLS (usando GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Compressão de ligação DTLS usando %s\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Cumprimento DTLS expirado\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Cumprimento DTLS falhou: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(tem uma firewall a impedi-lo de enviar pacotes UDP?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Falha ao inicializar cifra ESP: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Falha ao inicializar ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Falha ao calcular HMAC para pacote ESP: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Recebido pacote ESP com HMAC inválido\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Falha ao desencriptar pacote ESP: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Falha ao encriptar pacote ESP: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Impossível extrair hora de expiração do certificado\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Certificado do cliente expirou em" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Certificado do cliente expira brevemente em" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Falha ao carregar o item \"%s\" da loja: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Falha ao abrir chave/certificado %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Falha na estatística de chave/certificado %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Falha ao alocar buffer de certificado\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Falha ao ler certificado para a memória: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Falha ao configurar estrutura de dados PKCS#12: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Falha ao desencriptar ficheiro de certificado PKCS#12\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Insira a frase-passe de PKCS#12:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Falha ao processar ficheiro PKCS#12: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Falha ao carregar certificado PKCS#12: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Impossível inicializar hash MD5: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Erro de hash MD5: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "DEK-Info em falta: cabeçalho de chave encriptada OpenSSL\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Impossível determinar tipo de encriptação PEM\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Tipo de encriptação PEM não suportado: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Sal inválido no ficheiro PEM encriptado\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Erro de descodificação base 64 no ficheiro PEM encriptado: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Ficheiro PEM encriptado demasiado curto\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Falha ao inicializar cifra para desencriptar ficheiro PEM: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Falha ao desencriptar chave PEM: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Falha ao desencriptar chave PEM\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Insira a palavra-passe PEM:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Este binário foi compilado sem suporte de chave de sistema\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Este binário foi compilado sem suporte PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "A usar certificado PKCS#11 %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "A usar o ficheiro de certificado %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Erro ao carregar o certificado de PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Erro ao carregar o certificado de sistema: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "A usar o ficheiro de certificado %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "O ficheiro PKCS#11 não contém certificados\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Não se encontrou um certificado no ficheiro" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Falha ao carregar o certificado: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "A usar chave de sistema %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Erro ao inicializar estrutura da chave privada: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Erro ao importar chave de sistema %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "A tentar URL de chave PKCS#11 %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Erro ao inicializar estrutura de chave PKCS#11: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Erro ao importar URL PKCS#11 %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "A usar chave PKCS#11 %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Erro ao importar chave PKCS#11 para a estrutura da chave privada: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "A usar ficheiro de chave privada %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Esta versão de OpenConnect foi compilada sem suporte de TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Falha ao interpretar ficheiro PEM\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Falha ao carregar chave privada PKCS#11: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Falha ao carregar chave privada como PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Falha ao desencriptar ficheiro de certificado PKCS#8\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Falha ao determinar tipo de chave privada %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Insira a frase-passe de PKCS#8:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Falha ao obter a ID de chave: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Erro ao assinar dados de teste com a chave privada: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Erro ao validar a assinatura contra o certificado: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Sem certificado SSL para comparar chave privada\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "A usar certificado de cliente \"%s\"\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Falha ao alocar memória para o certificado\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Obtido CA \"%s\" seguinte de PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Falha ao alocar memória para certificados de suporte\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "A adicionar CA \"%s\" de suporte\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Falha ao importar certificado PKCS#12:%s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Falha ao definir certificado PKCS#12: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Falha ao definir lista de revogação de certificado: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Falha ao definir certificado: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "O servidor não apresentou certificado\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Erro ao inicializar estrutura de certificado X509\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Erro ao importar certificado do servidor\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Impossível calcular hash do certificado do servidor\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Erro ao verificar estado do certificado do servidor\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certificado revogado" #: gnutls.c:2098 msgid "signer not found" msgstr "assinante não encontrado" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "assinante não é certificado CA" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "algoritmo inseguro" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certificado ainda não ativado" #: gnutls.c:2106 msgid "certificate expired" msgstr "certificado expirado" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "falha ao verificar assinatura" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certificado não corresponde ao nome da máquina" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Falha ao verificar certificado do servidor: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Falha ao alocar memória para certificados cafile\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Falha ao ler certificados de ficheiro cafile: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Falha ao abrir ficheiro CA \"%s\": %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" "Falha ao carregar o certificado. A abortar.\n" "\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "Negociação SSL com %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Ligação SSL cancelada\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Falha na ligação SSL: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Devolução não fatal GnuTLS durante o cumprimento: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN necessário para %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "PIN errado" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Esta é a última tentativa antes de trancar!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Só restam algumas tentativas antes de trancar!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Insira o PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Algoritmo OATH HMAC não suportado\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Falha ao calcular OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Função de assinatura TPM pediu %d bytes.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Falha ao criar objeto de hash TPM: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Falha ao definir valor em objeto de hash TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Falha na assinatura hash TPM: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Erro ao descodificar blob de chave TSS: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Erro no blob de chave TSS\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Falha ao criar contexto TPM: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Falha ao ligar contexto TPM: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Falha ao carregar chave TPM SRK: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Falha ao carregar objeto de política TPM SRK: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Falha ao definir PIN TPM: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Falha ao carregar blob de chave TPM: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Insira o PIN de TPM SRK:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Falha ao criar objeto de política de chave: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Falha ao atribuir política a chave: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Insira o PIN da chave TPM:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Falha ao definir o PIN da chave: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "A ignorar chaves ESP por o suporte a ESP não estar disponível nesta " "compilação\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Erro ao importar nome GSSAPI para autenticação:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Erro ao gerar resposta GSSAPI:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "A tentar autenticação GSSAPI no proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "A tentar autenticação GSSAPI no servidor \"%s\"\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "Autenticação GSSAPI terminada\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "Símbolo GSSAPI demasiado grande (%zd bytes)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "A enviar símbolo GSSAPI de %zu bytes\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Falha ao enviar símbolo de autenticação GSSAPI para o proxy: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Falha ao receber símbolo de autenticação GSSAPI do proxy: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "Servidor SOCKS devolveu falha no contexto GSSAPI\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de estado GSSAPI desconhecida (0x%02x) do servidor SOCKS\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obtido símbolo GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "A enviar negociação de proteção GSSAPI de %zu bytes\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Falha ao enviar resposta de proteção GSSAPI ao proxy: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Falha ao receber resposta de proteção GSSAPI do proxy: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Obtida resposta de proteção GSSAPI de %zu bytes: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Resposta de proteção GSSAPI do proxy inválida (%zu bytes)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "Proxy SOCKS exige integridade de mensagem, que não é suportada\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "Proxy SOCKS exige confidencialidade de mensagem, que não é suportada\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "Proxy SOCKS exige tipo de proteção 0x%02x desconhecida\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "A tentar autenticação Basic HTTP no proxy\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "A tentar autenticação Basic HTTP no servidor \"%s\"\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Esta versão do OpenConnect foi compilada sem suporte GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "O proxy pediu autenticação Basic, que está desativada por predefinição\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "O servidor \"%s\" pediu autenticação Basic, que está desativada por " "predefinição\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Sem mais métodos de autenticação para tentar\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Sem memória para alocar cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Falha ao processar resposta HTTP \"%s\"\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Obtida resposta HTTP: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "A ignorar linha com resposta HTTP desconhecida \"%s\"\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Cookie inválido oferecido: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Falha na autenticação de certificado SSL\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Corpo de respostas tem tamanho negativo (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Codificação de conteúdo desconhecido: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "Corpo HTTP %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Erro ao ler corpo de reposta HTTP\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Erro ao obter cabeçalho do pedaço\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Erro ao obter resposta do corpo HTTP\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" "Impossível receber corpo em HTTP 1.0 sem ligação de fecho\n" "\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Falha ao processar URL redirecionado \"%s\": %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Impossível seguir redirecionamento para URL não https \"%s\"\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Falha na alocação de novo caminho do redirecionamento relativo: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "pedido concedido" #: http.c:1003 msgid "general failure" msgstr "falha geral" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "ligação não permitida pelas regras" #: http.c:1005 msgid "network unreachable" msgstr "rede inatingível" #: http.c:1006 msgid "host unreachable" msgstr "máquina inatingível" #: http.c:1007 msgid "connection refused by destination host" msgstr "ligação recusada pela máquina no destino" #: http.c:1008 msgid "TTL expired" msgstr "TTL expirou" #: http.c:1009 msgid "command not supported / protocol error" msgstr "comando não suportado/erro de protocolo" #: http.c:1010 msgid "address type not supported" msgstr "tipo de endereço não suportado" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "O servidor SOCKS pediu utilizador/senha mas não há nada\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Utilizador e senha para autenticação SOCKS tem de ser < 255 bytes\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Erro ao escrever pedido de autorização ao proxy SOCKS: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Erro ao ler resposta de autorização do proxy SOCKS: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Resposta de autorização inesperada do proxy SOCKS: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Autenticado no servidor SOCKS usando senha\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Falha na autenticação com senha no servidor SOCKS\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "O servidor SOCKS pediu autenticação GSSAPI\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "O servidor SOCKS pediu autenticação com senha\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "O servidor SOCKS requer autenticação\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "O servidor SOCKS pediu tipo de autenticação %02x desconhecida\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "A pedir ligação SOCKS por proxy a %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Erro ao escrever pedido de ligação ao proxy SOCKS: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Erro ao ler resposta de ligação do proxy SOCKS: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Resposta de ligação inesperada do proxy SOCKS: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Erro de proxy SOCKS %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Erro de proxy SOCKS %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Tipo de endereço %02x inesperado na resposta de ligação SOCKS\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "A pedir ligação do proxy HTTP a %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Falha no envio do pedido de proxy: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Falha no pedido CONNECT do proxy: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tipo de proxy \"%s\" desconhecido \n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Só são suportados proxies http ou socks(5)\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Tipo de protocolo VPN \"%s\" desconhecido \n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Compilado contra biblioteca SSL sem suporte Cisco DTLS\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Sem endereço IP recebido. A abortar\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Re-ligação deu endereços IP diferentes antigos (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Re-ligação deu máscara de rede IP diferente antiga (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Re-ligação deu endereços IPv6 diferentes (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Re-ligação deu máscara de rede IPv6 diferente (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Recebida configuração IPv6 mas MTU %d é demasiado pequeno.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Falha ao processar URL do servidor \"%s\"\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Só é permitido https:// no URL do servidor\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Sem gestor de formulário, impossível autenticar.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Falha no CommandLineToArgvW(): %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Erro fatal na gestão da linha de comando\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Falha em ReadConsole(): %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Erro ao converter entrada da consola: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Falha na alocação da cadeia de stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Para assistência do OpenConnect, por favor, veja a página web em\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "MOTOR OpenSSL não está presente" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Impossível processar este caminho executável \"%s\"" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Falha na alocação do caminho para vpnc-script\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Substituir nome de máquina \"%s\" por \"%s\"\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Utilização: openconnect [opções] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "Ler opções do ficheiro de configuração" #: main.c:914 msgid "Report version number" msgstr "Reportar número da versão" #: main.c:915 msgid "Display help text" msgstr "Mostrar texto de ajuda" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Definir nome de utilizador" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Desativar autenticação por senha/SecuID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Não esperar entrada do utilizador; sair se for necessária" #: main.c:923 msgid "Read password from standard input" msgstr "Ler senha da entrada padrão" #: main.c:924 msgid "Choose authentication login selection" msgstr "Escolha seleção de autenticação de sessão" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Usar o certificado CERT do cliente SSL" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Usar ficheiro de chave privada SSL CHAVE" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar quando a vida útil do certificado for < DIAS" #: main.c:929 msgid "Set login usergroup" msgstr "Definir grupo de utilizadores da sessão" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Definir frase-passe ou PIN TPM SRK" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Frase-passe da chave é fsid do sistema de ficheiros" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libstoken (RSA SecurID) desativado nesta compilação)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOTA: Yubikey OATH desativado nesta compilação)" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Desativar autoridades certificadoras predefinidas do sistema" #: main.c:944 msgid "Cert file for server verification" msgstr "Ficheiro cert para verificação do servidor" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Definir servidor de proxy" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Definir métodos de autenticação do proxy" #: main.c:950 msgid "Disable proxy" msgstr "Desativar proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar o proxy automaticamente" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desativado nesta compilação)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Tempo de nova tentativa em segundos" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Usar IP ao ligar a MÁQUINA" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Ler cookie da entrada padrão" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Autenticar só e imprimir informação de sessão" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Continuar nos bastidores após arranque" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Escrever a PID do daemon neste ficheiro" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Largar privilégios após ligar" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Usar diário de sistema para mensagens de progresso" #: main.c:978 msgid "More output" msgstr "Mais saída" #: main.c:979 msgid "Less output" msgstr "Menos saída" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Despejar tráfego de autenticação HTTP (implica --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Acrescentar carimbo a mensagens de progresso" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME no ambiente de túnel" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Terminal de linha de comando para uso com script de configuração vpnc " "compatível" #: main.c:986 msgid "default" msgstr "predefinição" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Passar tráfego ao programa de script, não \"tun\"" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Não pedir ligação IPv6" #: main.c:993 msgid "XML config file" msgstr "Ficheiro de configuração XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indicar caminho MTU de/para o servidor" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Requer secretismo de reencaminhamento perfeito" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Cifras OpenSSL a suportar para DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Definir limite de fila de pacotes para COMP pacotes" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Cabeçalho HTTP User-Agent: campo" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Desativar reutilização de ligação HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Não tentar autenticação XML POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Falha ao alocar a cadeia\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Falha ao obter linha do ficheiro de configuração: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opção não reconhecida na linha %d: \"%s\"\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A opção \"%s\" não aceita o argumento na linha %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A opção \"%s\" requer um argumento na linha %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Falha ao abrir \"%s\" para escrita: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "A continuar nos bastidores; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "AVISO: esta versão do openconnect foi compilada sem suporte\n" " a iconv mas parece estar a usar o conjunto de caracteres\n" " antigo \"%s\". Espere coisas estranhas.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "AVISO: esta versão do openconnect é %s mas\n" " a biblioteca libopenconnect é %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Falha ao alocar estrutura vpninfo\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Impossível usar a opção \"config\" no ficheiro de configuração\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Impossível abrir o ficheiro \"%s\": %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Modo de compressão \"%s\" inválido\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Falha ao alocar a memória\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Dois pontos (:) em falta na opção de resolução\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeno\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "A desativar reutilização de todas as ligações HTTP devido à opção --no-http-" "keepalive.\n" "Se ajudar, por favor, reporte em .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Comprimento 0 na fila não é permitido; a usar 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Versão OpenConnect %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de símbolo de programa \"%s\" inválido\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos na linha de comando\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nenhum servidor especificado\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Esta versão do openconnect foi compilada sem suporte a libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Falha ao criar a ligação SSL\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Sem argumento --script indicado; DNS e routing não estão configurados\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Veja https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Re-ligação pedida pelo utilizador\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sessão terminada pelo servidor; a sair.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Erro desconhecido; a sair.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Falha ao abrir %s para escrita: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Falha ao escrever configuração em %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificado do servidor VPN \"%s\" falhou a verificação.\n" "Razão_: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Insira \"%s\" para aceitar, \"%s\" para abortar; qualquer outra para ver: " #: main.c:2464 main.c:2483 msgid "no" msgstr "não" #: main.c:2464 main.c:2470 msgid "yes" msgstr "sim" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Hash da chave do servidor: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Escolha de autenticação \"%s\" coincide com múltiplas opções\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Escolha de autenticação \"%s\" indisponível\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Requerida entrada do utilizador em modo não interativo\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Falha ao abrir ficheiro de símbolo para escrita: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Falha ao escrever símbolo: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Cadeia suave de símbolo é inválida\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Impossível abrir o ficheiro ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "O OpenConnect não foi compilado com suporte a libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Falha geral em libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "O OpenConnect não foi compilado com suporte a liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "falha geral em liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Símbolo Yubikey não encontrado\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "O OpenConnect não foi compilado com suporte a Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Falha geral de Yubikey: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Falha na definição do script tun\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Falha na definição do dispositivo tun\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Chamador pausou a ligação\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nada para fazer; a descansar durante %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Falha em WaitForMultipleObjects: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Falha em InitializeSecurityContext(): %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Falha em AcquireCredentialsHandle(): %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Erro ao comunicar com o ajudante ntlm_auth\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "A tentar autenticação HTTP NTLM no proxy (single-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "A tentar autenticação HTTP NTLM no servidor \"%s\" (single-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "A tentar autenticação HTTP NTLMv%d no proxy\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "A tentar autenticação HTTP NTLMv%d no servidor \"%s\"\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Cadeia de símbolo base32 inválida\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Falha ao alocar memória para descodificar segredo OATH\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Esta versão de OpenConnect foi compilada sem suporte de PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Aceitar para gerar tokencode INICIAL\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Aceitar para gerar tokencode SEGUINTE\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "O servidor está a rejeitar o símbolo suave; a mudar para entrada manual\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "A gerar código de símbolo OATH TOTP\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "A gerar código de símbolo OATH HOTP\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Comprimento %d inesperado para TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Recebido MTU %d do servidor\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Recebido DNS do servidor %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Recebido domínio de procura %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Recebido endereço interno IP %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Recebida máscara de rede %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Recebido endereço interno de gateway %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Recebida rota dividida incluída %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Recebida rota dividida excluída %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Recebido servidor WINS %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "Encriptação ESP: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "Compressão ESP: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "Porta ESP: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Vida útil da chave ESP: %u bytes\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Vida útil da chave ESP: %u segundos\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Recurso de ESP para SSL: %u segundos\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Proteção de reprodução ESP: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (limite exterior): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bytes de segredos ESP\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Grupo TLV %d desconhecido, atr. %d comp. %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Falha ao processar cabeçalho KMP\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Falha ao processar mensagem KMP\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Obtida mensagem KMP %d de tamanho %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Recebidos TLVs não ESP (grupo %d) em negociação ESP KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Erro ao criar pedido de negociação oNCP\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Escrita curta em negociação oNCP\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Lidos %d bytes de registo SSL\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Resposta inesperada de tamanho %d após pacote de nome de máquina\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Resposta do servidor ao nome de máquina é erro 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Pacote inválido à espera para KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Esperada mensagem KMP 301 do servidor, obtida %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "Mensgem KMP 301 do servidor demasiado grande (%d bytes)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Obtida mensagem KMP 301 de comprimento %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Falha ao ler comprimento de registo de continuação\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Registo de %d bytes adicionais demasiado grande; faria %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Falha ao ler comprimento %d do registo de continuação\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Lidos %d bytes adicionais da mensagem KMP 301\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Erro ao negociar chaves ESP\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "nova chegada" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "nova saída" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Lido só 1 byte do campo de comprimento de oNCP\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "O servidor terminou a ligação (sessão expirada)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "O servidor terminou a ligação (motivo: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "O servidor enviou um registo oNCP de comprimento zero\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Mensagen KMP chegada %d de tamanho %d (obtido %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Continuando a processar a mensagem KMP %d agora de tamanho %d (obtido %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Pacote de dados não reconhecido\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Mensagem KMP %d de tamanho %d desconhecida:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d mais bytes não recebidos\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Pacote de saída:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Enviado pacote de ativação de controlo ESP\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "ERRO: %s() chamado com UTF-8 inválido para o argumento \"%s\"\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Falha ao criar SSL_SESSION ASN.1 para OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "O OpenSSL falhou o processamento de SSL_SESSION ASN 1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Falha ao iniciar a sessão DTLSv1\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Falha a inicialização de DTLSv1 CTX\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Falha a definição da lista de cifras DTLS\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Isto é provavelmente porque o seu OpenSSL está quebrado\n" "Veja http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Cumprimento DTLS falhou:%d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Falhou ao inicializar cifra ESP\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Falhou ao inicializar ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Falha ao configurar contexto de descrição para pacote ESP:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Falha ao desencriptar pacote ESP:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Falha ao encriptar pacote ESP:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Falha ao estabelecer contexto PKCS#11:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Falha ao carregar módulo de fornecedor PKCS#11 (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN trancado\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN expirado\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Já há outro utilizador em sessão\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Erro desconhecido ao iniciar sessão no símbolo PKCS#11\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Sessão iniciada em PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Falha ao enumerar certificados na tomada PKCS#11 \"%s\"\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Encontrados %d certificadoss em \"%s\"\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Falha ao processar URL do servidor \"%s\"\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Falha ao processar ficheiro PKCS#12: %s\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "A usar chave PKCS#11 %s\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Conteúdo do certificador X.509 não obtido por libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Falha ao carregar chave privada como PKCS#8: %s\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Encontrada %d chaves em \"%s\"\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Esta versão de OpenConnect foi compilada sem suporte de PSKC\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Tipo %d de pedido SSL UI não gerido\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "Senha PEM demasiado comprida (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Falha ao carregar chave privada\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Falha ao instalar certificado no contexto OpenSSL\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Certificado extra de %s: \"%s\"\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Falha ao processar PKCS#12 (consultar erros acima)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 não continha um certificado!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 não continha uma chave privada!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Impossível carregar o motor TPM.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Falha ao iniciar o motor TPM\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Falha ao definir a senha TPM SRK\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Falha carregar a chave privada TPM\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Falha ao abrir o ficheiro de certificado %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Falha ao carregar o certificado\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Falha ao processar todos os certificados de suporte. A tentar mesmo " "assim...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "Ficheiro PEM" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Falha ao criar BIO para item \"%s\"\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Falha ao carregar chave privada (frase-passe errada?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Falha carregar a chave privada (ver erros acima)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Falha ao carregar certificado X509 da loja\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Falha ao abrir o ficheiro de chave privada %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" "Falha ao identificar tipo de chave privada em \"%s\"\n" "\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Nome DNS alternativo \"%s\" encontrado\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Nome DNS alternativo \"%s\" não encontrado\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" "O certificado tem nome alternativo GEN_IPADD com comprimento falso %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Correspondeu %s do endereço \"%s\"\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Sem correspondências do endereço %s \"%s\":\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI \"%s\" tem um caminho não vazio; será ignorado\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "URI correspondido \"%s\"\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Sem correspondências do URI \"%s\"\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Sem correspondências para nome alternativo \"%s\" de certificado do par\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Sem nome de assunto no certificado do par!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Falha ao processar nome de assunto no certificado do par\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Assunto no certificado do par incorreto (\"%s\" != \"%s\")\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Encontrado nome de assunto \"%s\" no certificado do par\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Certificado extra do cafile: \"%s\"\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Erro no campo notAfter do certificado do cliente\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Falha ao ler certificados de ficheiro CA \"%s\"\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Falha ao abrir ficheiro CA \"%s\"\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "falha na ligação SSL\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Falha ao alocar a cadeia\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Senha:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Descarte de má divisão inclui: \"%s\"\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Descarte de má divisão exclui: \"%s\"\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Falha ao espalhar script \"%s\" para %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script \"%s\" saiu anormalmente (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script \"%s\" devolveu o erro %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Ligação à tomada cancelada\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Falha ao religar ao proxy %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Falha ao religar à máquina %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy de libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Falha em getaddrinfo para a máquina \"%s\": %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "A religar ao servidor DynDNS usando o endereço IP anteriormente em cache\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "A tentar ligar ao proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "A tentar ligar ao servidor %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Ligado a %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Falha ao alocar armazenamento sockaddr\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Falha ao ligar a %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "A esquecer endereço não funcional anterior do par\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Falha ao ligar à máquina %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "A religar ao proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Impossível obter ID de sistema de ficheiros para frase-passe\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Falha ao abrir ficheiro de chave privada \"%s\": %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Sem erros" #: ssl.c:727 msgid "Keystore locked" msgstr "Loja trancada" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Loja inicializada" #: ssl.c:729 msgid "System error" msgstr "Erro do sistema" #: ssl.c:730 msgid "Protocol error" msgstr "Erro de protocolo" #: ssl.c:731 msgid "Permission denied" msgstr "Permissão negada" #: ssl.c:732 msgid "Key not found" msgstr "Chave não encontrada" #: ssl.c:733 msgid "Value corrupted" msgstr "Valor corrompido" #: ssl.c:734 msgid "Undefined action" msgstr "Ação indefinida" #: ssl.c:738 msgid "Wrong password" msgstr "Senha errada" #: ssl.c:739 msgid "Unknown error" msgstr "Erro desconhecido" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Falha ao abrir %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Falha em fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Falha ao alocar %d bytes para %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Falha ao ler %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Família de protocolo desconhecida %d. Impossível fazer DTLS\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Abrir tomada UDP para DTLS:" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Família de protocolo desconhecida %d. Impossível fazer DTLS\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Tomada UDP associada para DTLS" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "O cookie já não é válido, a terminar sessão\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sono %ds, expiração restante %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Símbolo SSPI demasiado grande (%ld bytes)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "A enviar símbolo SSPI de %lu bytes\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Falha ao enviar símbolo de autenticação SSPI ao proxy: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Falha ao receber símbolo de autenticação SSPI do proxy: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "Servidor SOCKS devolveu falha no contexto SSPI\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Resposta de estado SSPI (0x%02x) desconhecida do servidor SOCKS\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Obtido símbolo SSPI de %lu bytes: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Falha em QueryContextAttributes(): %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Falha em EncryptMessage(): %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultado de EncryptMessage() demasiado grande (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "A enviar negociação de proteção SSPI de %u bytes\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Falha ao enviar resposta de proteção SSPI ao proxy: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Falha ao receber resposta de proteção SSPI do proxy: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Obtida resposta de proteção SSPI de %d bytes: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Falha em DecryptMessage: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Resposta de proteção SSPI do proxy inválida (%lu bytes)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Insira as credenciais para destrancar o símbolo de programa." #: stoken.c:107 msgid "Device ID:" msgstr "ID do dispositivo:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Símbolo suave contornado pelo utilizador.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Todos os campos são necessários; tente novamente.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Falha geral em libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "ID de dispositivo ou senha incorretas; tente novamente.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Inicialização de símbolo suave com sucesso.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Insira o PIN do símbolo de programa." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Formato de PIN inválido; tente nvamente.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "A gerar código de símbolo RSA\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Erro ao aceder à chave de registo para adaptadores de rede\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Falha ao abrir %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Falha ao obter versão do controlador TAP: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Erro: controlador TAP-Windows v9.9 ou superior requerida (encontrada %ld." "%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Falha ao definir endereço IP TAP: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Falha ao definir estado do suporte TAP: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "O dispositivo TAP abortou a ligação. A desligar.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Falha ao ler do dispositivo TAP: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Falha ao ler completamente o dispositivo TAP: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Escritos %ld bytes no tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "A aguardar pela escrita tun...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Escritos %ld bytes no tun após esperar\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Falha ao escrever no dispositivo TAP: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Espalhar scripts de túnel ainda não é suportado em Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Impossível abrir /dev/tun para canalização" #: tun.c:92 msgid "Can't push IP" msgstr "Impossível forçar o IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Impossível definir ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Impossível canalizar %s para IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "abrir /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Falha ao criar novo tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Falha ao pôr o descritor de ficheiro em modo message-discard" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "rede aberta" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Falha ao abrir dispositivo tun: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Falha ao abrir dispositivo tun: %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Para configurar a rede local, o openconnect tem de ser executado como root.\n" "Veja https://www.infradead.org/openconnect/nonroot.html para mais " "informação\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Nome de ambiente inválido \"%s\"; tem de ser \"utun%%d\" ou \"tun%%d\"\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Falha ao abrir a tomada SYSPROTO_CONTROL: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Falha ao consultar id de controlo utun: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Falha ao alocar nome de dsipositivo utun: %s\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Falha ao ligar unidade utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Nome de ambiente \"%s\" inválido; tem de ser \"tun%%d\"\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Impossível abrir \"%s\": %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "Falha em socketpair: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "Falha em fork: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Falha ao escrever pacote chegado: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "A tratar máquina \"%s\" como nome de máquina em bruto\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Falha no SHA1 do ficheiro existente\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "Ficheiro de configuração em XML de SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Falha ao processar ficheiro de configuração XML %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Máquina \"%s\" tem o endereço \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Máquina \"%s\" tem o grupo de utilizadores \"%s\"\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Máquina \"%s\" não listada na configuração; a tratar como nome de máquina em " "bruto\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Falha ao enviar \"%s\" para a aplicação ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Resposta curta a \"%s\" inválida da aplicação ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Falha na resposta a \"%s\": %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "selecione o comando da aplicação" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Resposta não reconhecida da aplicação ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Encontrada aplicação ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN necessário para a aplicação Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Yubikey:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Falha ao calcular resposta de desbloqueio de Yubikey\n" #: yubikey.c:274 msgid "unlock command" msgstr "comando de desbloqueio" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "A tentar a variante de carácter truncado PBKBF2 do PIN Yubikey\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Falha ao estabelecer contexto PC/SC: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Contexto PC/SC estabelecido\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Falha ao consultar lista de leitor: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Falha ao ligar ao leitor PC/SC \"%s\": %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Leitor PC/SC \"%s\" ligado\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Falha ao obter acesso exclusivo ao leitor \"%s\": %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "comando para listar chaves" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Encontrada chave %s/%s \"%s\" em \"%s\"\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Símbolo \"%s\" não encontrado em Yubikey \"%s\". A procurar outra " "Yubikey...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "O servidor está a rejeitar o símbolo Yubikey; a mudar para entrada manual\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "A gerar código de símbolo Yubikey\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Falha ao obter acesso exclusivo a Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "comando para calcular" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Resposta não reconhecida de Yubikey ao gerar código de símbolo\n" openconnect-8.20/po/bs.po0000644000076400007640000046303014204456067017130 0ustar00dwoodhoudwoodhou00000000000000# Bosnian translation for bosnianuniversetranslation # Copyright (c) 2014 Rosetta Contributors and Canonical Ltd 2014 # This file is distributed under the same license as the bosnianuniversetranslation package. # FIRST AUTHOR , 2014. # msgid "" msgstr "" "Project-Id-Version: bosnianuniversetranslation\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2015-03-10 23:30+0100\n" "Last-Translator: Samir Ribic \n" "Language-Team: Bosnian \n" "Language: bs\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Launchpad-Export-Date: 2015-02-05 07:02+0000\n" "X-Generator: Poedit 1.7.4\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ne validan cookie ponuđen: %s\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekivan %d rezultat od servera\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Nije uspjela raspodela\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Primljen je kratak paket (%d bajta)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL napisao premalo bajta! Upitan za %d, poslano %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Rehandshake nije uspio; pokušavanje novi-tunel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Slanje ne kompresovanog paketa podataka od %d bajta\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Pokušaj novu DTLS konekciju\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Primljen DTLS paket 0x%02x of %d bajta\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS Rehandshake nije uspio; ponovna konekcija.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detektovan dead peer!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Pošalji DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Ne moguće poslati DPD zahtjev. Očekuj odspajanje\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Poslan DTLS paket od %d bajta; DTLS poslao vraćeni %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nije uspjelo proizvesti OTP token kod; onemogućavanje token\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorišem nepoznati objekt za potvrdu unosa na formularu '%s'\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorišem nepoznati objekt za unos podataka na formularu '%s'\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Odbacujem duplu opciju '%s'\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ne može baratati form metodom= '%s', akcija= '%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nije uspjela alokacija memorije za komunikaciju s TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC podrška još nije realizovana na Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nema DSPREAUTH kolačića; ne pokušavam TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Neuspjelo izvršiti TNCC skriptu %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Početak poslan; čekam odgovor od TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Neuspjelo pročitati odgovor od TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Primljen neuspješan %s odgovor od TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Dobijen novi DSPREAUTH kolačić od TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Neuspjelo analizirati HTML dokument\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Neuspjelo naći ili analizirati web formular u stranici za prijavu\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Prikazujem nepoznatu HTML formu:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Forma odabira nema ime\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "ime %s nema ulaza\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Nema ulaza tipa u formatu\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Nema ulaza imena u formatu\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nepoznat ulazni tip %s u formi\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Prazan odgovor od servera\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Nemoguće razdijeliti odgovor servera\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Odgovor je bio:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Primljeno kada nije očekivano.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML odgovor nema \"auth\" čvora\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Upitan za šifru ali '--nema-šifre' postavi\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Ne preuzima se XML profil jer SHA1 već odgovara\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Neuspjeh pri otvaranju HTTPS konekcije na %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Nemoguće poslati GET zahtjev za novi config\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Preuzeta config datoteka nije usparena sa SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Preuzimanje novog XML profila\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nemoguće promijeniti u CSD domaći direktorijum '%s': %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Greška: Server nas pita da pokrene CSD hostscan.\n" "Trebate obezbjediti pogodan --csd-wrapper argument.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server nas pita da preuzme i pokrene 'Cisco Secure Desktop' trojan.\n" "Ova operacije je isključena po običnim postavkama iz sigurnosnih razloga, " "želite li da je uključite.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Privremeni direktorijum „%s“ nije upisiv: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Neuspjeh pri otvaranju privremene CSD script datoteke: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nemoguće upisati privremenu CSD script datoteku: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "UPOZORENJE: pokrenuli ste neisguran CSD kod sa nultim prioritetom\n" "\t Koristi komandnu liniju opcija \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nemoguće exec CSD script %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Nepoznat odgovor od servera\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Server zahtjeva SSL klijent certifikat nakon što je jedan obezbjeđen\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server zahtjeva SSL klijent certifikat; nijedan nije konfigurisan\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST omogućen\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osvježavanje %s poslije 1 sekundi...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(greška 0h%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Greška prilikom opisivanja greške!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GREŠKA: Ne može inicijalizirati utičnice\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIČNA GREŠKA: DTLS master tajna nije inicijalizovana. Molimo, prijavite " "ovo.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Greška kreirajući HTTPS CONNECT zahtjev\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Greška fetching HTTPS odgovor\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN servis nedostupan; razlog: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Ima neprikladan HTTP CONNECT odgovor: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Ima CONNECT odgovor: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Nema memorije za opcije\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID nema 64 karaktera; je: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nepoznat DTLS-Content-Encoding %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nepoznati CSTP-Sadržaj-Kodiran %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Nema MTU prijema. Ukidanje\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP konektovan. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Instalacija sažimanja neuspjela\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Alokacija deflate bafera neuspjela\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "podizanje neuspjelo\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS dekompresija neuspjela: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZ4 dekompresija neuspjela\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Nepoznat tip kompresije %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Primljen %s kompresovan paket podataka od %d bajta (bilo %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "deflate neuspio %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Ne očekivani paket dužine. SSL_čita vraćeni %d ali paket je\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Ima CSTP DPD zahtjev\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Ima CSTP DPD odgovor\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Ima CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Primljen ne kompresovan paket podataka od %d bajta\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Primljeni server odspojen: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Primljeni server odspojen\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Kompresovani paket primljen u !deflate režim\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "primljeni server završava paket\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nepoznati paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detektovan dead peer!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Ponovna konekcija neuspjela\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Pošalji CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Pošalji CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Slanje kompresovanog paketa podataka od %d bajta (bilo je %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslan BYE paket: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokušavanje Digest autentifikacije za proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Pokušana Digest prijava na server '%s'\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS veza je pokušana biti ostvarena sa postojećim fd\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Nema DTLS adrese\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server ponudio nema DTLS opcija o šifri\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Nema DTLS kada je konektovan putem proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS postavljen. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Nepoznat paket (lijen %d) primljen: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Ima DTLS DPD zahtjev\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Ne moguće poslati DPD odgovor. Očekuj odspajanje\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Ima DTLS DPD odgovor\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Ima DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Kompresovani DTLS paket primljen kada kompresija nije bila omogućena\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nepoznati DTLS paket tipa %02x, lijen %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Pošalji DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Ne moguće poslati keepalive zahtjev. Očekuj odspajanje\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Prihvatam očekivani ESP paket sa seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Prihvatam kasnije od očekivanog ESP paket sa seq %u (očekivano %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Odbacujem stari ESP paket s seq %u (očekivano %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Odbacujem ponovljeni ESP paket sa seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Prihvatam prekoredni ESP paket sa seq %u (očekivano %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametri za %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP tip šifrovamka %s ključ 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP tip autentifikacije %s ključ 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "dolazni" #: esp.c:94 msgid "outgoing" msgstr "odlazni" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Pošalji ESP testove\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Primljen ESP paket s nevažećim SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Pogrešna dopunjavajuča dužina %02x u ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Pogrešni dopunjavajući bajtovi u ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP sessija uspostavljena s serverom\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Neuspješna alokacija memorije za dešifrovanje ESP paketa\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO dekompresija ESP paketa neuspjela\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO dekompresovao %d bajtova u %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Rekey nije realizovan za ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP prepoznao neaktivnog saradnika\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Pošalji ESP testove za DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive nije realizovan za ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Neuspjelo poslati ESP paket: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nepoznati DTLS parametri za zahtjevani CipherSuite '%s'\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Neuspjeh pri postavljanju DTLS sesije parametara: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Neuspjeh pri postavljanju DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Osnovana DTLS veza (pomoću GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Za DTLS spajanje vrijeme isteklo\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS spajanje neuspjelo: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Da li vas mrežna barijera sprečava da pošaljete UDP pakete?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Neuspjelo inicijalizirati ESP šifru: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Neuspjelo inicijalizirati ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Neuspjelo izračunati HMAC za ESP paket: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Primljen ESP paket s neispravnim HMAC\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Dešifrovanje ESP paketa neuspjelo: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Neuspjelo šifrovanje ESP paketa: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Ne može izvući vrijeme isteka od certifikata\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Certifikat klijenta je istekao" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Certifikat klijenta istice uskoro" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Ne može učitati predmet '%s' iz keystore: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Ne može otvoriti kljč/certifikat datoteku %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nije uspio stat ključ/certifikat datoteka %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Neuspjeh pri alociranju bafera certifikata\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Ne može učitati certifikat u memoriju: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Ne može instalirati PKCS#12 podatkovnu strukturu: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Ne može dešifrirati PKCS#12 certifikat datoteku\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Unesi PKCS#12 prolaznu frazu:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Ne može procesuirati PKXS#12 datoteku: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Ne može učitati PKCS#12 certifikat: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ne može pokrenuti MD5 sastav: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash greška: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Nedostaje DEK-infor: zaglavlje iz OpenSSL šifrovanog ključa\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Ne može odrediti PEM Šifrovani tip\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Ne podržan PEM šifrovani tip: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neispravna salt u šifrovanim PEM datotekama\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Greška base64-dešifriranje šifrovanih PEM datoteka: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Šifrovane PEM datoteke prije male\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Ne može pokrenuti šifru za dešifriranje PEM datoteka: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Neuspjeh pri dešifrovanju PEM datoteka: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Dešifrovanje PEM ključa neuspjelo\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Unesi PEM prolaznu frazu:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Ova izvršna je izgrađena bez podrške ključa sistema\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Ova binarna datoteka je izgrađena bez podrške za PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Korsti PKCS#11 certifikat %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Koristim sistemsko uvjerenje „%s“\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Greška pri učitavanju certifikata iz PKXS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Greška učitavanja sistemskog uvjerenja: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Koristi certifikat datoteka %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 datoteka ne sadrži certifikat\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Nije pronađen certifikat u datoteci" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Učitavanje certifikata neuspjelo: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Koristim sistemski ključ „%s“\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Greška pri pokretanju privatne ključ strukture: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Greška uvoza sistemskog ključa „%s“: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Pokušavam adresu PKCS#11 ključa „%s“\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Greška pri pokretanju PKCS#11 ključ strukture: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Greška pri unosu PKCS#11 URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Koristi PKCS\"11 ključ %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Greška pri unosu PKCS#11 ključa u privatnu ključ strukturu: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Koristi privatnu ključ datoteku %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ova verzija OpenConnect je napravljena bez podrške za TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Neuspjeh pri prevođenju PEM datoteke\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Neuspjeh pri učitavanju PKCS#1 privatnog ključa: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Neuspjeh pri učitavanju privatnog ključa kao PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Neuspjeh pri dešifriranju PKCS#8 certifikat datoteke\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Ne može utvrditi tip privatnog ključa %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Unesi PKCS#8 prolaznu frazu:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Ne može dobiti ključ ID: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Greška pri popisivanju podataka sa privatnim ključem: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Greška pri ovjeravanju potpisa protiv certifikata: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Nije pronađen SSL certifikat za usporedbu privatnog ključa\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Koristi klijent certifikat '%s'\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Nije uspjela alokacija memorije za potvrdu\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Dobijena sljedeća CA '%s' iz PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Neuspjeh pri alociranju memorije za podršku certifikatima\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodavanje podrške CA '%s'\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Ubacivanje X509 certifikata neuspjelo: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Postavljanje PKCS#12 certifikata neuspjelo: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Postavljanje certifikata na opozivu listu neuspjelo: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Postavljanje certifikata neuspjelo: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server predstavljen bez certifikata\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Greška pri pokretanju X509 cert strukture\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Greška pri unosu server cert\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Ne mogu da izračunam heš serverskog uverenja\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Greška pri provjeri statusa server certifikata\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certifikat opozvan" #: gnutls.c:2098 msgid "signer not found" msgstr "potpisnik nije pronađen" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "potpisnik nije CA certifikat" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "nesiguran algoritam" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certifikat nije još aktiviran" #: gnutls.c:2106 msgid "certificate expired" msgstr "certifikat istekao" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "neuspješna verifikacija potpisa" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certifikat nema odgovarajući hostname" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Ovjera server certifikata neuspjela: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Neuspješna alokacija memorije za cafile certs\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Neuspješno učitavanje certifikata iz cafalie: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Neuspješno otvaranje CA datoteke '%s': %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Učitavanje certifikata neuspjelo. Zatvaranje.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL pregovara sa %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL povezivanje otkazano\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL konekcija neuspjela: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS non-fatal return during handshake: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN zahtjeva %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Pogrešan PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Ovo je zadnji pokušaj prije zaključavanja!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Samo još nekoliko pokušaja preostalo prije zaključavanja!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Unesi PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepodržan OATH HMAC algoritam\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Neuspjelo izračunati OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM znak funkcije pozvan za %d bajta.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Neuspjelo kreiranje TPM hash objekta: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Neuspjelo postavljanje vrijednosti u TPM hash objekat: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash potpis neuspio: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Greška dešifrovanja TSS ključa blob: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Greška u TSS ključ blob\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Neuspjelo kreiranje TPM kontekst: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Neuspjelo povezivanje TPM kontekst: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Neuspjelo učitavanje TPM SRK ključa: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Neuspjelo učitavanje TPM SRK smjer objekta: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Neuspjelo postavljanje TPM PIN: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Neuspjelo učitavanje TPM ključa: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Unesi TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Neuspjelo kreiranje ključa policy objekta: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Ne može dodijeliti policy ključu: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Unesi TPM ključ PIN:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Neuspjeh pri postavljanju ključ PIN: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "Ignoršem ESP ključeve pošto ESP podrška nije dostupna u ovoj gradnji\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Greška slanja GSSAPI imena za autentifikaciju:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Greška generisanja GSSAPI odgovora:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokušavanje GSSAPI autentifikacije za zamjenu\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Pokušana GSSAPI authentication to server '%s'\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI autentifikacija završena\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI znak je previše dug (%zd bajta)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Slanje GSSAPI znaka od %zu bajta\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Neuspješno slanje GSSAPI autentifikacionog znaka za zamjenu: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Neuspješno primanje GSSAPI autentifikacionog znaka iz zamjene: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS server provjerava GSSAPI greške konteksta\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznati GSSAPI status odgovara (0x%02x) iz SOCKS servera\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobijen GSSAPI znak od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Slanje GSSAPI zaštitnog pregovaranja od %zu bajta\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Neuspješno slanje GSSAPI zaštitnog odgovora za zamjenu: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Neuspješno primanje GSSAPI zaštitnog odgovora iz zamjene: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobijen GSSAPI zaštitni odgovor od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Nevažeći GSSAPI zaštitni odgovor iz zamjene (%zu bajta)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS proxy zahtjeva integritet poruke, koji nije podržan\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS proxy zahtijeva poruku tajnosti, koja nije podržana\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS proxy zahtijeva zaštitu nepoznatog tipa 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokušavanje HTTP Basic autentičnosti za proxy\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Pokušana HTTP Basic prijava na server '%s'\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ova verzija OtvoreneKonekcije je izgrađena bez GSSAPI podrške\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proxy traži Basic autentičnost koja je onemogućena\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Nema više metoda autentičnosti za isprobavanje\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Nedostatak memorije za alokaciju cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nemoguće rasčlaniti HTTP odgovor '%s'\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Ima HTTP odgovor: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorisanje nepoznatih HTTP odgovora reda '%s'\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ne validan cookie ponuđen: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL ovjera certifikata neuspjela\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Odgovor tijelo ima negativnu veličini (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nepoznat Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP tijelo %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Greška učitavanja HTTP odgovora tijela\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Greška u dijelu zaglavlja\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Greška HTTP odgovor tijela\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ne može primiti HTTP 1.0 oblik bez zatvaranja konekcije\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nemoguće rasčlaniti preusmjereni URL '%s': %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ne može pratiti preusmjerenje na non-https URL '%s'\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Alociranje nove putanje za relativno preusmjerenje neuspjelo: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "zahtjev odobren" #: http.c:1003 msgid "general failure" msgstr "opšta greška" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "konekcija nije dopuštena od strane rulset" #: http.c:1005 msgid "network unreachable" msgstr "mreža je nedostupna" #: http.c:1006 msgid "host unreachable" msgstr "računar domaćin je nedostupan" #: http.c:1007 msgid "connection refused by destination host" msgstr "konekcija odbijena od strane domaćina" #: http.c:1008 msgid "TTL expired" msgstr "TTL istekao" #: http.c:1009 msgid "command not supported / protocol error" msgstr "komandan nije podržana/protokol greška" #: http.c:1010 msgid "address type not supported" msgstr "tip adrese nije podržan" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOCKS server zahtijeva korisničko ime/lozinku, ali nema ništa\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Korisničko ime i lozinka za SOCKS autentifikaciju mora biti < 255 bajta\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Greška pisanja auth ahtjev za SOCKS proxy: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Greška ulitavanja auth odgovor od SOCKS proxy: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Neočekivan auth odgovor od SOCKS proxy: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Autentifikovano za SOCKS server koristeći lozinku\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Autentifikacija lozinkom za SOCKS server nije uspjela\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS server zahtijeva GSSAPI autentifikaciju\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS server zahtijeva autentifikaciju lozinkom\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS server zahtijeva autentifikaciju\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS server traži nepoznatu autentifikaciju tipa %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Zahtjeva SOCKS proxy konekciju za %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Greška pisanja konekcija zahtjeva SOCKS proxy: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Greška učitavanja konekcije odgovor od SOCKS proxy: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekivana konekcija odgovor od SOCKS proxy: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy greška %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy greška %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekivana adresa tipa %02x u SOXKS konekcije odgovor\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Zahtjeva HTTP proxy konekciju za %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Slanje proxy zahtjeva neuspjelo: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy CONNECT zahtjev nije uspio: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nepoznat proxy tip '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Samo http ili soket(5) proxies podržani\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgradi ponovno SSL biblioteku bez Cisco DTLS podrške\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Nije IP adresa primljena. Ukidanje\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IP adresu (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IP netmask (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IPv6 adresu (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponovno konektovanje daje drugačiju IPv6 netmask (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Primljeno je IPv6 podešavanje ali MTU %d je premali.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Ne može se analizirati server URL '%s'\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Samo https:// dozvoljeni za server URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Nema forma handler; ne može potvrditi.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Nije uspjela funkcija linije naredbi u argument: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Fatalna greška u rukovanju komandnom linijom\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Nije uspjela funkcija čitanja konzole: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Greška pretvaranja ulaza konzole: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Alokacija neuspjela za string iz stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Za pomoć pri OtvorenojKonekciji, molimo pogledajte web stranicu\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE nije prikazan" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ne može se obraditi ovaj izvršni put \"%s\"" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Alokacija za vpnc-script put nije uspjela\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Upotreba: openconnect [opcije]\n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "Pročitaj opcije iz config datoteke" #: main.c:914 msgid "Report version number" msgstr "Prijavi broj verzije" #: main.c:915 msgid "Display help text" msgstr "Pomoćni tekst na zaslonu" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Postavi login korisnicko ime" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Isključi šifru/SecurID ovjeru" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Ne očekuj unos korisnika; izađi ako je to zatraženo" #: main.c:923 msgid "Read password from standard input" msgstr "Učitaj šifru sa standardnog ulaza" #: main.c:924 msgid "Choose authentication login selection" msgstr "Odaberi ovjeru za login odabir" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Koristi SSL klijent sertifikat CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Koristi SSL privatni ključ datoteke KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Upozori kada sertifikat vrijemeživota < DANI" #: main.c:929 msgid "Set login usergroup" msgstr "Postavi login korisničkugrupu" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Postaviti ključ lozinku ili TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Lozinka je fsid od datoteke sistema" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(BILJEŠKA: libstoken (RSA SecurID) isključen u ovoj izgradnji)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NAPOMENA: „Yubikey“ OATH je isključen u ovoj izgradnji)" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Isključuje osnovne sistemske izdavače uvjerenja" #: main.c:944 msgid "Cert file for server verification" msgstr "Cert datoteka za provjeru servera" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Postavi proxy server" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Postavite proxy metode provjere autentičnosti" #: main.c:950 msgid "Disable proxy" msgstr "Onemogući proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Koristi libproxy za automatsko konfigurisanje proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(BILJEŠKA: libproxy onemogućen u ovoj izradi)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Vrijeme u sekundama nakon koga konekcija ističe" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Pročitaj cookie sa standardnog ulaza" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Ovjeri samo i printaj informacije o unosu" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Nastavi u pozadini poslije podizanja" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Napiši deamon's PID za ovu datoteku" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Odbaci privilegije poslije povezivanja" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Koristi syslog za punjenje poruka" #: main.c:978 msgid "More output" msgstr "Još izlaza" #: main.c:979 msgid "Less output" msgstr "Nema izlaza" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Smetljište HTTP ovjera puta (implicira --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Prepend timestamp u toku poruke" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Koristi IFNAME for tunel sučelje" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Okolna komandna linija za korištenje vpnc-kompatibilna onfig skripta" #: main.c:986 msgid "default" msgstr "podrazumijevano" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Prođi put do 'script' program" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Ne pitaj za IPv6 povezivanje" #: main.c:993 msgid "XML config file" msgstr "XML config datoteka" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Postaviti put MTU za/od servera" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Zahtijeva se savršeno prosljeđivanje tajnosti" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL šifra za podršku za DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Postavi paket red ogranicen na LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP zaglavlje Korisnik-Agent: polje" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Onemogući ponovnu upotrebu HTTP konekcije" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Ne pokušaL POST ovjeru" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Greška pri alociranju stringa\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Ne može uzeti red iz config datoteke: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Ne prepoznatljiva opcija u redu %d: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcija '%s' ne prima argument iz reda %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcija '%s' zahtijeva argument u redu %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Ne može otvoriti '%s' za pisanje: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Nastavljanje u pozadini; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UPOZORENJE: Ova verzija otvorene mreže je izgrađena bez iconv\n" " podržava, ali izgleda kao da koristite stari znak\n" " postavi \"%s\". Očekujte bizarnosti.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UPOZORENJE: Ova verzija otvorene veze je %s, ali\n" " libopenconnect biblioteka je %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Neuspijeh pri alociranju vpninfo strukture\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ne može koristiti 'config' opciju unutar config datoteke\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ne može otvoriti config datoteku '%s': %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Pogrešan kompresioni režim '%s'\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d previše mali\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Isključivanje svih HTTP konekcija ponovna upotreba uslijed --no-http-" "keepalive opcije.\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulta dužina reda nije dopuštena; koristi 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verzja %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Pogrešan software toke režim \"%s\"\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Previše argumenata na komandnoj liniji\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nijedan server nije specificiran\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Ova verzija openconnect je napravljena bez podrške za libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Kreiranje SSL konekcije neuspjelo\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nije obezjbeđen --script argument; DNS i usmjeravanje nije konfigurisano\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Pogledaj https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Korisnički zahtjev ponovo uspostavlja konekciju\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sesija prestaje serverom; izlazak.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Nepoznata greška; izlazak.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Ne može otvoriti %s za pisanje: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Ne može pisati config u %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certifikat od VPN servera \"%s\" neuspjela ovjera.\n" "Razlog: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Unesi '%s' za prihvatanje, '%s' za ignorisanje; bilo što drugo da vidiš: " #: main.c:2464 main.c:2483 msgid "no" msgstr "ne" #: main.c:2464 main.c:2470 msgid "yes" msgstr "da" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Heš serverskog ključa: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth izbor \"%s\" poklapa se s više opcija\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth izbor \"%s\" nije dostupan\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Korisnički unos zahtijeva ne-interaktivni režim\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Neuspješno otvaranje datoteke znaka za pisanje: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Neuspješno pisanje znaka: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Soft token string nije ispravan\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ne može otvoriti ~/.stokenrc file\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect nije izgrađen sa libstoken podrškom\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Opći neuspjeh u libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect nije izgrašen sa liboath podrškom\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Opći neuspjeh u liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Nisam našao modul Jubi ključa\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom Jubi ključa\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Opšti neuspjeh Jubi ključa: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Nije postavljen tun script\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Instaliranje tun uređaja neuspjelo\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Pozivatelj je pauzirao konekciju\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nema šta za uraditi; gašenje za %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Čekanje na više objekata nije uspelo: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() nije uspio: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() nije uspio: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Greška komuniciranja sa ntlm_auth pomoćnikom\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Pokušavanje HTTP NTLM autentičnosti za proxy (single-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Pokušana HTTP NTLM prijava na server '%s' (prosta prijava)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Pokušavanje HTTP NTLMv%d autentičnosti za proxy\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Pokušana HTTP NTLMv%d prijava na server '%s'\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Pokrešan base32 token string\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Neuspješna alokacija memorije za dekodiranje OATH tajne\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ova verzija OtvoreneKonekcije je izgrađena bez PSKC podrške\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Uredu da generišete INITIAL tokencode\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Uredu da generišete NEXT tokencode\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server je odbio soft token; promijenite na ručni ulaz\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Generisanje OATH TOTP token koda\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Generisanje OATH HOTP oznake koda\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Neočekivana dužina %d za TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Zahtijeva MTU %d od servera\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Primljen DNS server %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Primljena DNS domena pretrage %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Primljena interna IP adresa %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Primljena mrežna maska %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Primljena interna adresa mrežnog izlaza %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Primljena razdvajajuća ruta uključenja %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Primljena razdvajajuća ruta isključenja %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Primljen WINS server %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP šifrovanje: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP kompresija: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP port: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP dužina života ključa: %u bajta\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP dužina života ključa: %u sekundi\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP u SSL rezervno rješenje: %u sekundi\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP zaštita pri ponovnom izvođenju: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (izlaz): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajta ESP tajni\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nepoznata TLV grupa %d attr %d len %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Neuspjelo analizirati KMP zaglavlje\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Neuspjelo analizirati KMP poruku\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Dobijena KMP poruka %d veličine %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Primljen ne-ESP TLV (grupa %d) u ESP dogovoru KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Greška kreirajući oNCP zahtjev za pregovor\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Kratko pisanje u oNCP ugovaranju\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Pročitano %d bajta SSL zapisa\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Neočekivan odgovor veličine %d nakon hostname paketa\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serverski odgovor na hostname paket je greška 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Pogrešan paket čeka na KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Očekivana KMP poruka 301 sa servera ali je dobijeno %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Greška usaglašavanja ESP ključeva:\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "novi dolazni" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "novi odlazni" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nepoznata KMP poruka %d veličine %d\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d dodatnih bajtova neprimljeno\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Odlazni paket:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Poslan ESP omogućujući kontrolni paket\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GREŠKA: %s() pozvana sa neispravnim UTF-8 za '%s' argumentom\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Neuspjelo kreirati SSL_SESSION ASN.1 za OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL neuspio analizirati SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Postavljanje DTLSv1 sesije neuspjelo\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Postavljanje DTLSv1 CTX neuspjelo\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Postavljanje DTLS šifre neuspjelo\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ovo je možda zato što tvoj OpenSSL je pukao\n" "Pogledaj http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS spajanje neuspjelo: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Neuspjelo inicijalizirati ESP šifru:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Neuspjelo inicijalizirati ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Neuspjelo postavljanje dekripcijskog konteksta za ESP paket:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Neuspjelo dešifrovanje ESP paketa:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Neuspjelo šifrovanje ESP paketa:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nisam uspeo da uspostavim libp11 PKCS#11 kontekst:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nisam uspeo da učitam modul PKCS#11 dostavljača (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN je zaključan\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN je istekao\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Drugi korisnik je već prijavljen\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nepoznata greška prijavljivanja na PKCS#11 modul\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prijavljen sam na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim uvjerenja u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nađoh %d uvjerenja u priključku „%s“\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nisam uspeo da obradim PKCS#11 putanju „%s“\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nisam uspeo da nabrojim PKCS#11 priključke\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Prijavljujem se na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 nije dovukla sadržaj H.509 uverenja\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim ključeve u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nađoh %d ključa u priključku „%s“\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PKCS#11 podrške\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nepoznata vrsta zahtjeva KS SSL-a %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM šifra preduga (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Neuspješno preuzimanje privatnog ključa\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Neuspješno instaliranje potvrde u OpenSSL kontekstu\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Posebni cert iz %s: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Fraza PKCS#12 neuspjela (napravi uvid u greške)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ne sadrži certifikat!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ne sadrži privatni ključ!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Ne može učitati TPM engine.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Ne može pokrenuti TPM engine\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Ne može postaviti TPM SRK šifru\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Ne može učitati TPM privatni ključ\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Neuspjeh pri otvaranju certifikat datoteke %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Učitavanje certifikata neuspjelo\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Neuspješno procesiranje svih cert-ova podrške. Pokušavaj u svakom " "slučaju...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM datoteka" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Ne može kreirati BIO za keystore objekt '%s'\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Učitavanje privatnog ključa neuspjelo (pogrešna šifra?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Učitavanje privatnog ključa neuspjelo (izvrši uvid grešaka)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Neuspjelo učitavanje X509 certifikata iz keystore\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Ne može otvoriti privatnu ključ datoteku %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Ne može identifikovati tip privatnog ključa u '%s'\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Ne odgovara za altname '%s'\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certifikat ima GEN_IPADD altname sa prividnom dužinom %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Uparena %s adresa '%s'\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ne odgovara za %s adresu '%s'\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' ima ne praznu putanju; ukidanje\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Odgovarajući URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Ne odgovara za URI '%s'\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nema altname u odgovarajućem certifikatu '%s'\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Nema imena subjekta u certifikatu!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Ne može razdvojiti ime subjekta u certifikatu\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Subjekat certifikata je neusklađen ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odgovarajuće ime subjekta certifikata '%s'\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatni cert iz cafile: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Greška u klijent cert notAfter polje\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nemoguće pročitati certs iz CA datoteke '%s'\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Ne može otvoriti CA datoteku '%s'\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Spajanje SSL neuspjelo\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Neuspjelo izračunavanje OATH HMAC\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Lozinka:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odbaci lošu podjelu uključujući: \"%s\"\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odbaci lošu podjelu isključujući: \"%s\"\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nemoguće spawn script '%s' za %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Script '%s' zavrišio nenormalno (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Script '%s' vraćena greška %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Soket konekcija otkazana\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy iz libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo neuspjelo za host '%s': %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponovo se povezujem na DinDNS server koristeći prethodno pričuvanu IP " "adresu\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokušavanje povezivanja na proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokušavanje povezivanja na server %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Nemoguće alocirati sockaddr skladište\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Zaboravljam ne-delotvornu adresu prehodnog parnjaka\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nemoguće se povezati na host %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Rekonektuj za proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Ne mogu dobiti sistem datoteka ID za lozinku\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Neuspješno otvaranje datoteke privatnog ključa '%s': %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Nema greške" #: ssl.c:727 msgid "Keystore locked" msgstr "Keystore zaključano" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Keystore nepoznato" #: ssl.c:729 msgid "System error" msgstr "Sistemska greška" #: ssl.c:730 msgid "Protocol error" msgstr "Pogreška u protokolu" #: ssl.c:731 msgid "Permission denied" msgstr "Dopuštenje odbijeno" #: ssl.c:732 msgid "Key not found" msgstr "Ključ nije pronađen" #: ssl.c:733 msgid "Value corrupted" msgstr "Vrijednost nevalidna" #: ssl.c:734 msgid "Undefined action" msgstr "Ne definisana akcija" #: ssl.c:738 msgid "Wrong password" msgstr "Pogrešna šifra" #: ssl.c:739 msgid "Unknown error" msgstr "Nepoznata greška" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Neuspjelo otvaranje %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Neuspjelo fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Neuspjelo alociranje %d bajta za %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Neuspjelo čitanje %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Nepoznata protokol familija %d. Ne može kreirati UDP adresu servera\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Otvori UDP soket" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nepoznata protokol familija %d. Ne može se koristiti UDP transport\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Poveži UDP soket" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie nije više validan, završavanje zasjedanja\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spavanje %ds, Preostalo vrijeme %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI oznaka je previše velika (%ld bajta)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Slanje SSPI oznake od %lu bajta\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Neuspješno slanje SSPI autentične oznake za proxy: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Neuspješno primanje SSPI autentične oznake iz proxy: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS server provjerava SSPI greške konteksta\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat SSPI status odgovara (0x%02x) iz SOCKS servera\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Dobijena SSPI oznaka od %lu bajta: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() nije uspio: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() nije uspio: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() rezultat je previše veliki (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Slanje SSPI zaštitnog pregovaranja od %u bajta\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Neuspješno slanje SSPI zaštitnog odgovora za proxy: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Neuspješno primanje SSPI zaštitnog odgovora iz proxy: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Dobijen SSPI zaštitni odgovor od %d bajta: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage nije uspio: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neispravan SSPI zaštitni odgovor iz proxy (%lu bajta)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Unesi akreditiv da otključaš software token." #: stoken.c:107 msgid "Device ID:" msgstr "Uređaj ID:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Korisnik preskočio soft token.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Sva polja su potrebna; pokušajte ponovo.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Opšte pogreške u libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Pogrešan uređaj ID ili lozinka; pokušajte ponovo.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Soft token init bio je uspješan.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Unesi seftver oznaku PIN-a." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Neispravan PIN format; pokušajte ponovo.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Generisanje RSA token koda\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Greška prilikom pristupa ključu registra za mrežne adaptere\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Neuspjelo otvaranje %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nisam uspeo da dobijem izdanje TAP upravljačkog programa: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Greška: TAP-Windows driver v9.9 ili veći je potreban (pronađen %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nisam uspeo da podesim TAP IP adrese: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nisam uspeo da podesim stanje TAP medija: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP uređaj je prekinuo povezivost. Prekidam vezu.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nisam uspeo da čitam sa TAP uređaja: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nisam uspeo da dovršim čitanje sa TAP uređaja: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Napisano %ld bajta za tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Čekanje za tun pisanje...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Napisano %ld bajta za tun nakon čekanja\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nisam uspeo da pišem na TAP uređaj: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Miješanje tunel oznaka nije još uvijek podržano na Windowsu\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ne može otvoriti /dev/tun za protok" #: tun.c:92 msgid "Can't push IP" msgstr "Ne može staviti IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ne može postaviti ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ne može mjeriti %s za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otvori /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Neuspjeh pri kreiranju novog tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Ne može staviti tun deskriptor datoteke u poruku-odbačeni režim" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "otvori nit" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Neuspjeh pri otvaranju tun uređaja: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Neuspjelo povezivanje lokalnog tun uređaja (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Za konfiguraciju lokalne mreže, openconnect mora biti pokrenut kao root\n" "Vidi https://www.infradead.org/openconnect/nonroot.html za više informacija\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „utun%%d“ ili „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nisam uspeo da otvorim „SYSPROTO_CONTROL“ priključnicu: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nisam uspeo da propitam ib kontrole utuna: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nisam uspeo da dodijelim naziv utun uređaja\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nisam uspeo da povežem utun jedinicu: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ne ispravno ime sučelja '%s'; mora match 'tun%%d'\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ne može otvoriti '%s': %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair nije uspio: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork nije uspio: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Neuspjeh pri upisivanju dolazećeg paketa: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Izloženi host \"%s\" kao osjetljiv hostname\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Neuspjeh za SHA1 postojecu datoteku\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config datoteka SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nemoguće razdvojiti XML config datoteku %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" ima adresu \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" ima korisničku grupu \"%s\"\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" nije pronađen u config; označen kao nesiguran hostname\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nisam uspeo da pošaljem „%s“ do programčeta „ykneo-oath“: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neispravan kratak odgovor za „%s“ od programčeta „ykneo-oath“\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Neuspjeli odgovor za „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "izaberi naredbu programčeta" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nepoznat odgovor od programčeta „ykneo-oath“\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Našao sam programče „ykneo-oath“ i%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Potreban je PIN za OATH programče Jubi ključa" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Jubi ključa:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nisam uspeo da izračunam odgovor otključavanja Jubi ključa\n" #: yubikey.c:274 msgid "unlock command" msgstr "naredba otključavanja" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Pokušavam truncated-char PBKBF2 varijantu za Yubikey PIN\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nisam uspeo da uspostavim PC/SC kontekst: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC kontekst je upsostavljen\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nisam uspeo da propitam spisak čitača: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nisam uspeo da se povežem sa PC/SC čitačem „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Povezan je PC/SC čitač „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup čitaču „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "naredba spiska ključeva" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nađoh %s/%s kljzč „%s“ na „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nisam našao modul „%s“ na Jubi ključu „%s“. Tražim drugi Jubi ključ...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odbija modul Jubi ključa; prelazim na ručni unos\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Stvaram kod modula Jubi ključa\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup Jubi ključu: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "naredba izračunavanja" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nepoznat odgovor sa Jubi ključa prilikom stvaranja koda modula\n" openconnect-8.20/po/gl.po0000644000076400007640000037746414204456070017137 0ustar00dwoodhoudwoodhou00000000000000# translation of gl.po to Galego # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # Mancomún - Centro de Referencia e Servizos de Software Libre , 2009. # Fran Diéguez , 2010, 2011. # Fran Dieguez , 2013. msgid "" msgstr "" "Project-Id-Version: gl\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2013-09-12 16:45+0200\n" "Last-Translator: Fran Dieguez \n" "Language-Team: gnome-l10n-gl@gnome.org\n" "Language: gl\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Virtaal 0.7.1\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:195 msgid "No input type in form\n" msgstr "" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Fallo de asignación para a cadea desde stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "MOTOR OpenSSL non presente" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Uso: openconnect [opcións] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "Ler opcións desde un ficheiro de configuración" #: main.c:914 msgid "Report version number" msgstr "Informar do número de versión" #: main.c:915 msgid "Display help text" msgstr "Mostrar o texto de axuda" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Estabelecer o nome de usuario de inicio de sesión" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Desactivar a autenticación por contrasinal/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Non agardar entrada do usuario; saír se se require" #: main.c:923 msgid "Read password from standard input" msgstr "Ler contrasinal da entrada estándar" #: main.c:924 msgid "Choose authentication login selection" msgstr "Escoller selección da autenticación do inicio de sesión " #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Usar o certificado CERT do cliente SSL" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Usar ficheiro de chave privada SSL KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Avisar cando a vida do certificado < DÍAS" #: main.c:929 msgid "Set login usergroup" msgstr "Estabelecer o grupo de usuario de inicio de sesión" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Estabelecer a frase de paso da chave ou PIN do TPM SRK" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "A frase de paso da chave é o fsid do sistema de ficheiros" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOTA: libtoken (RSA SecurID) desactivado para esta compilación)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "Ficheiro de certificado para a verificación do servidor" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Estabelecer servidor proxy" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "Desactivar proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Usar libproxy para configurar automaticamente o proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTA: libproxy desactivado para esta compilación)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Tempo de espera do reintento de conexión en segundos" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Ler cookie desde a entrada estándar" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Só autenticar e imprimir a información de inicio de sesión" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Continuar en segundo plano despois do inicio" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Escribir o PID do daemon neste ficheiro" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Quitar privilexios despois de conectarse" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Usar syslog para as mensaxes de progreso" #: main.c:978 msgid "More output" msgstr "Máis saída" #: main.c:979 msgid "Less output" msgstr "Menos saída" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Usar IFNAME para a interface de túnel" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "predeterminado" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Pasar o tráfico ao programa «script», non tun" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Non preguntar pola conectividade de IPv6" #: main.c:993 msgid "XML config file" msgstr "Ficheiro de configuración XML" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indica a ruta MTU ao/desde o servidor" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Campo da cabeceira HTTP User-Agent:" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Desactivar a reutilización da conexión HTTP" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Non tentar a autenticación XML por POST" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" "Produciuse un fallo ao obter a liña desde o ficheiro de configuración: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Opción non recoñecida na liña %d: «%s»\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A opción «%s» non recolle un argumento na liña %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A opción «%s» require un argumento na liña %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Produciuse un erro ao abrir «%s» para escritura: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuando en segundo plando; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Produciuse un fallo na asignación da estrutura vpninfo.\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" "Non foi posíbel usar a opción «config» dendo do ficheiro de configuración\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Non é posíbel abrir o ficheiro de configuración «%s»: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d demasiado pequeno\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Non se permite a lonxitude cola cero; usando 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect versión %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Modo de token de software «%s» non válido\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Demasiados argumentos na liña de ordes\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Non se especificou ningún servidor\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Esta versión de openconnect foi compilada sen compatibilidade para libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Produciuse un fallo na creación da conexión SSL\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Non se forneceu ningún argumento --script; DNS o enrutado non están " "configurados\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Vexa https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Produciuse un erro ao abrir %s para escritura: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Produciuse un fallo ao escribir a configuración en %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Non foi posíbel verificar o certificado do servidor VPN «%s».\n" "Razón: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Escriba «%s» para aceptar, «%s» para abortar; calquera outra cousa para ver: " #: main.c:2464 main.c:2483 msgid "no" msgstr "non" #: main.c:2464 main.c:2470 msgid "yes" msgstr "si" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Elección de autenticación «%s» non dispoñíbel\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Entrada de usuario requirida no modo non-interactivo\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "A cadea do token de software non é válida\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Non é posíbel abrir o ficheiro ~/.stokenrc\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect non foi construido con compatibilidade de libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Fallo xeran en libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect non foi construido con compatibilidade de liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Fallo xeran en liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Produciuse un fallo na configuración do dispositivo tun\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Produciuse un fallo ao inicializar DTLSv1 CTX\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:726 msgid "No error" msgstr "" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "" #: ssl.c:730 msgid "Protocol error" msgstr "" #: ssl.c:731 msgid "Permission denied" msgstr "" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "" #: ssl.c:739 msgid "Unknown error" msgstr "" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Tratando equipo «%s» como un nome de equipo en bruto\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Produciuse un fallo ao xerar o SHA1 do ficheiro existente\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 do ficheiro de configuración XML: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Produciuse un erro ao analizar o ficheiro de configuración XML %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "O equipo «%s» ten o enderezo «%s»\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "O equipo «%s» ten o UserGroup «%s»\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "O equipo «%s» non está na lista de config; tratándoo como un nome de equipo " "en plano\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/sv.po0000644000076400007640000056176614204456074017171 0ustar00dwoodhoudwoodhou00000000000000# Swedish translation for network-manager-openconnect. # Copyright © 2008, 2010, 2011, 2015, 2017, 2019, 2020, 2021 Free Software Foundation, Inc. # This file is distributed under the same license as the network-manager-openconnect package. # Daniel Nylander , 2008, 2010, 2011. # Josef Andersson , 2015, 2017, 2018, 2019. # Anders Jonsson , 2019, 2020, 2021. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-10-06 18:25+0200\n" "Last-Translator: Anders Jonsson \n" "Language-Team: Swedish \n" "Language: sv\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Poedit 3.0\n" "X-Project-Style: gnome\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "Ingen ANsession-kaka hittades\n" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ogiltig kaka ”%s”\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "Hittade DNS-server %s\n" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "Erhöll sökdomän ”%s”\n" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "Okänt Array-konfigurationselement ”%s”\n" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "Initial konfig: Speed tunnel %d, krypt %d, DPD %d\n" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "Kort skrivning i Array JSON-förhandling\n" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "Misslyckades med att läsa Array JSON-svar\n" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "Oväntat svar på Array JSON-begäran\n" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "Misslyckades med att tolka Array JSON-svar\n" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "Fel vid skapande av array-förhandlingsbegäran\n" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Oväntat resultat %d från server\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "Fel vid bygge av Array DTLS-förhandlingspaket\n" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "Kort skrivning i array-förhandling\n" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "Misslyckades med att läsa UDP-förhandlingssvar\n" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "DTLS aktiverat på port %d\n" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "Nekar UPD-tunnel utan DTLS\n" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "Misslyckades med att läsa ipff-svar\n" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Allokering misslyckades\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kort paket mottogs (%d byte)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "Ta emot kontrollpaket av typ %x:\n" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Mottog datapaket på %d byte\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL skrev för få byte! Frågade efter %d, skickade %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP rekey väntas\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Återhandskakning misslyckades; provar ny tunnel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "TCP Dead Peer Detection upptäckte en död motpart!\n" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "TCP-återanslutning misslyckades\n" #: array.c:957 msgid "Send TCP DPD\n" msgstr "Skicka TCP DPD\n" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "Skicka TCP Keepalive\n" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "Skickar DTLS off-paket\n" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Skickar okomprimerade datapaket på %d byte\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Försöker med ny DTLS-anslutning\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "Misslyckades med att ta emot autentiseringssvar från DTLS\n" #: array.c:1084 msgid "DTLS session established\n" msgstr "Etablerade DTLS-session\n" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "Mottog äldre IP över DTLS; antar etablerad\n" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "Mottog IPv6 över DTLS; antar etablerad\n" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "Mottog okänt DTLS-paket\n" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "Fel vid skapande av anslutningsbegäran för DTLS-session\n" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "Misslyckades med att skriva anslutningsbegäran till DTLS-session\n" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Mottog DTLS-paket 0x%02x på %d byte\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS rekey väntas\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS-återhandskakning misslyckades, återansluter.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection upptäckte en död motpart!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Skicka DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Misslyckades med att skicka DPD-begäran. Förvänta frånkoppling\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Skickade DTLS-paket på %d byte, DTLS send returnerade %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Misslyckades med utloggning.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Utloggning lyckades.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Målformulärfält %s angavs, antar att SAML %s-autentisering slutförts.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "SAML %s-autentisering krävs via %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "SAML %s-autentisering krävs via externt skript.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "När SAML-autentisering är slutförd, ange målformulärfält genom att lägga " "till :fältnamn till inloggnings-URL.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Ange ditt användarnamn och lösenord" #: auth-globalprotect.c:159 msgid "Username" msgstr "Användarnamn" #: auth-globalprotect.c:174 msgid "Password" msgstr "Lösenord" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Utmaning: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" "GlobalProtect-inloggning returnerade oväntat argumentvärde arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect-inloggning returnerade %s=%s (förväntade %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect-inloggning returnerade tom eller saknad %s\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect-inloggning returnerade %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Rapportera gärna %d oväntade värden ovan (av vilka %d ödesdigra) till " "\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Välj GlobalProtect-gateway." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "GATEWAY:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Ignorerar portalens HIP-rapportintervall (%d minuter) eftersom intervallet " "redan satts till %d minuter.\n" # TODO: One ) too many #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Portal ställde in HIP-rapportintervall till %d minuter.\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d tillgängliga gateway-servrar:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "GlobalProtect-portalkonfiguration listar inga gateway-servrar.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Misslyckades med att generera OTP-tokenkod; inaktiverar token\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Servern är varken en GlobalProtect-portal eller en gateway.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorerar okänd formskickat objekt: ”%s\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorerar okänd forminmatningstyp: ”%s”\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Förkastar duplicerat alternativ ”%s”\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Kan inte hantera formulärmetod=”%s”, åtgärd=”%s”\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Okänt textområdesfält: ”%s”\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Misslyckades med att allokera minne för kommunikation med TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Misslyckades med att skicka kommando till TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC-stöd är ännu inte implementerat på Windows\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Ingen DSPREAUTH-kaka, provar ej TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "Försöker köra TNCC/Host Checker-trojanskriptet ”%s”.\n" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Misslyckades med att köra TNCC-skriptet %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Skickade start, väntar på svar från TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Misslyckades med att läsa svar från TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Mottog ogiltigt %s-svar från TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "TNCC-svar 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "Andra raden av TNCC-svaret: ”%s”\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Erhöll ny DSPREAUTH-kaka från TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Erhöll återautentiseringsintervall från TNCC: %d sekunder\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Oväntad icke-tom rad från TNCC efter DSPREAUTH-kaka: ”%s”\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "För många icke-tomma rader från TNCC efter DSPREAUTH-kaka\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Misslyckades med att tolka HTML-dokument\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Misslyckades med att hitta eller tolka webbformulär på inloggningssidan\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Stötte på formulär med varken ”name” eller ”id”\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" "Formuläråtgärden (%s) indikerar troligen att TNCC/Host Checker " "misslyckades.\n" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Okänt formulär (namn ”%s”, id ”%s”)\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Dumpar okänt HTML-formulär:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Formulärvalet har inget namn\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "namnet %s angavs inte\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Ingen inmatningstyp i formuläret\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Inget inmatningsnamn i formuläret\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Okänd inmatningstyp %s i formuläret\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Tomt svar från server\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Misslyckades med att tolka serversvar\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Svaret var:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Tog emot när det inte förväntades.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML-svaret har ingen ”auth”-nod\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Frågade efter lösenord men ”--no-passwd” var angivet\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "Klientcertifikat saknas eller är felaktigt (Certifikatvalideringsfel)" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Hämtar inte XML-profil eftersom SHA1 redan matchar\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Misslyckades med att öppna HTTPS-anslutningen till %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Misslyckades med att skicka GET-begäran för ny anslutning\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Hämtad konfigurationsfil matchar ej SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Hämtade ny XML-profil\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fel: Att köra trojanen ”Cisco Secure Desktop” på denna plattform stöds ej.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Misslyckades med att sätta gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Misslyckades med att sätta grupper till %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Misslyckades med att sätta uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ogiltig användare uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Misslyckades med att ändra till CSD-hemkatalogen ”%s”: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fel: Server bad oss att köra CSD hostscan.\n" "Du måste ange ett passande --csd-wrapper-argument.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fel: Server bad oss att hämta hem och köra en ”Cisco Secure Desktop”-" "trojan.\n" "Denna möjlighet är inaktiverad som standard av säkerhetsskäl, du kan vilja " "aktivera den.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Tillfälliga katalogen ”%s” är inte skrivbar: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Misslyckades med att öppna tillfälliga CSD-skriptfilen: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Misslyckades med att skriva tillfälliga CSD-skriptfilen: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "Försöker köra CSD-trojanskriptet ”%s”.\n" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "CSD-skriptet ”%s” avslutades onormalt\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "CSD-skriptet ”%s” returnerade nollskild status: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Autentisering kan misslyckas. Fixa ditt skript om det inte returnerar 0.\n" "Framtida versioner av openconnect kommer avbryta vid detta fel.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "CSD-skriptet ”%s” slutfördes korrekt.\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Varning: du kör osäker CSD-kod med root-rättigheter\n" "\t Använd kommandoradsalternativet ”--csd-user”\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Misslyckades med att köra CSD-skriptet %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Okänt svar från server\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Server begärde SSL-klientcertifikat efter att ett redan tillhandahållits\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server begärde SSL-klientcertifikat, inget var konfigurerat\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST aktiverat\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Kunde inte hämta CSD-stubbe. Fortsätter i alla fall med CSD-omslagsskript.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "Hämtade CSD-stubbe för %s-plattformen (storleken är %d byte).\n" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Uppdaterar %s efter 1 sekund…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(fel 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Fel vid beskrivning av fel!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FEL: Kan inte initiera uttag (sockets)\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "KRITISKT FEL: DTLS-huvudhemlighet är ej initierad. Rapportera detta.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Fel vid skapandet av HTTPS CONNECT-begäran\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Fel vid hämtning av HTTPS-svar\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-tjänst otillgänglig, orsak: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Erhöll opassande HTTP CONNECT-svar: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Erhöll CONNECT-svar: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Inget minne för alternativ\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID är inte 64 tecken, är: ”%s”\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID är ogiltigt, är: ”%s”\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Okänd DTLS-Content-Encoding %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Okänd CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Ingen MTU mottagen. Avbryter\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP ansluten. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Komprimeringsstart misslyckades\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Allokering av komprimeringsbuffert misslyckades\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "dekomprimering misslyckades\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-dekomprimering misslyckades: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZ4-dekomprimering misslyckades\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Okänd komprimeringstyp %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Tog emot %s komprimerade datapaket på %d byte (var %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "dekomprimering misslyckades %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Oväntad paketlängd. SSL_read returnerade %d men paket är\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Erhöll CSTP DPD-begäran\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Erhöll CSTP DPD-svar\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Erhöll CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Mottog dekomprimerade datapaket av %d byte\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Mottog serverfrånkoppling: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Mottog serverfrånkoppling\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Komprimerade paket mottogs i !komprimerat läge\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "mottog paket för serveravslut\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Okänt paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection upptäckte en död motpart!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Återanslutning misslyckades\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Skicka CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Skicka CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Skickar komprimerat datapaket på %d byte (var %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Skickar BYE-paket: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Kort skrivning vid skrivning av BYE-paket\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Försöker med Digest-autentisering till proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Försöker med Digest-autentisering till servern ”%s”\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "Försökte DTLS-ansluta med existerande fd\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Ingen DTLS-adress\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server erbjöd inget DTLS-chifferalternativ\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Ingen DTLS när ansluten via proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS initierad. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Okänt paket (län %d) mottog: %02x %02x %02x %02x…\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS här: %d, TOS senaste: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Erhöll DTLS DPD-begäran\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Misslyckades med att skicka DPD-svar. Förvänta frånkoppling\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Erhöll DTLS DPD-svar\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Erhöll DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Komprimerade DTLS-paket mottaget när komprimering inte var aktiverat\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Okänt DTLS-pakettyp %02x, län %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Skicka DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Misslyckades med att skicka keepalive-begäran. Förvänta frånkoppling\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Initierar MTU-upptäckt (min=%d, max=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Skickar MTU DPD-avsökning (%u byte)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Misslyckades med att skicka DPD-begäran (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "För lång tid i MTU-identifieringsslinga; antar överenskommen MTU.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "För lång tid i MTU-identifieringsslinga; MTU angivet till %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Mottog oväntat paket (%.2x) i MTU-upptäckt; hoppar över.\n" # TODO: declared? #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "Inget svar till storlek %u efter %d försök, redovisad MTU är %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Misslyckades med att ta emot DPD-begäran (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Mottog MTU DPD-avsökning (%u byte)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Upptäckte MTU på %d byte (var %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Ingen ändring i MTU efter upptäckt (var %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Accepterar förväntat ESP-paket med seq %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Accepterar senare-än-väntat ESP-paket med seq %u (förväntade %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Förkastar föråldrat ESP-paket med seq %u (förväntade %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Tolererar föråldrat ESP-paket med seq %u (förväntade %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Förkastar återuppspelat ESP-paket med seq %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Tolererar återuppspelat ESP-paket med seq %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Accepterar ESP-paket i oordning med seq %u (förväntade %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametrar för %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP krypteringstyp %s key 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP autentiseringstyp %s key 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "inkommande" #: esp.c:94 msgid "outgoing" msgstr "utgående" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Skicka ESP-avsökningar\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Mottog ESP-paket från gammal SPI 0x%x, seq %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Mottog ESP-paket med ogiltig SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "Mottog äldre ESP IP-paket på %d byte\n" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "Mottog äldre ESP IP-paket på %d byte (LZO-komprimerat)\n" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "Mottog ESP IPv6-paket på %d byte\n" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "Mottog ESP-paket på %d byte med okänd nyttolasttyp %02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ogiltig utfyllnadslängd %02x i ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Ogiltig utfyllnadsbyte i ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP-session etablerad med server\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Misslyckades med att allokera minne för att dekryptera ESP-paket\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO-dekomprimering av ESP-paket misslyckades\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO-dekomprimerade %d byte till %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Rekey inte implementerad än för ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP upptäckte en död motpart\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Skicka ESP-avsökningar för DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive inte implementerad än för ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Köar om misslyckad ESP-sändning: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Misslyckades med att skicka ESP-paket: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "Skickade ESP IPv%d-paket på %d byte\n" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Misslyckades med att generera slumpmässiga nycklar för ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Misslyckades med att generera ursprungligt IV för ESP-paket:\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" "VARNING: inget HTML-inloggningsformulär hittades; antar användarnamn- och " "lösenordsfält\n" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "Okänt formulär-ID ”%s” (förväntade ”auth_form”)\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Misslyckades med att tolka F5-profilsvar\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Misslyckades med att hitta VPN-profilparametrar\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Misslyckades med att tolka F5-alternativsvar\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "Tidsgräns för inaktivitet är %d minuter\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Erhöll standardrutter\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Erhöll SplitTunneling0-värde på %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Erhöll DNS-server %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Erhöll WINS/NBNS-server %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Erhöll sökdomän %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "Erhöll split-exclude-rutt %s\n" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "Erhöll split-include-rutt %s\n" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "DTLS är aktiverat på port %d\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" "VARNING: Servern aktiverar DTLS, men kräver också HDLC. Inaktiverar DTLS\n" " eftersom HDLC förhindrar avgörande av effektiv och konsekvent MTU.\n" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Misslyckades med att hitta VPN-alternativ\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Erhöll äldre IP-adress %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Erhöll IPv6-adress %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Erhöll profilparametrarna ”%s”\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Erhöll ipv4 %d ipv6 %d hdlc %d ur_Z ”%s”\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Fel vid etablering av F5-anslutning\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Erhöll inloggningsrike ”%s”\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "Misslyckades med att tolka Fortinet-konfigurations-XML\n" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Tidsgräns för inaktivitet är %d minuter.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "Rapporterad plattform är %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Erhöll IPv%d-DNS-server %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "VARNING: Erhöll split-DNS-domänerna %s (inte implementerat ännu)\n" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "VARNING: Erhöll split-DNS-servern %s (inte implementerat ännu)\n" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "Erhöll IPv%d-rutten %s\n" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "Ingen kaka med namnet SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "Fel vid etablering av Fortinet-anslutning\n" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "Fick ej förväntat svrhello-svar.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "svrhello-status var ”%.*s” snarare än ”ok”\n" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Fördröjer DTLS tills CSTP genererar en PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Misslyckades med att generera DTLS-prioritetssträng\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Misslyckades med att sätta DTLS-prioritet: ”%s”: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Misslyckades med att allokera användaruppgifter: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Misslyckades med att generera DTLS-nyckel: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Misslyckades med att sätta DTLS-nyckel: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Misslyckades med att sätta DTLS PSK-användaruppgifter: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Okända DTLS-parametrar för begärd chiffersvit ”%s”\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Misslyckades med att sätta DTLS-sessionsparametrar: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS använde %d slumpmässiga byte för ClientHello, detta borde aldrig " "inträffa\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS skickade osäkert ClientHello-slumptal. Uppgradera till 3.6.13 eller " "nyare.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Misslyckades med att initiera DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Motparts MTU %d för liten för att tillåta DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU reducerat till %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Misslyckades med att återuppta DTLS-session; möjlig MITM-attack. Inaktiverar " "DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Misslyckades med att sätta DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Etablerade DTLS-anslutning (använder GnuTLS). Chiffersvit %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-anslutningskomprimering med %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS-handskakning överskred tidsgränsen\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-handskakning misslyckades: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Hindrar en brandvägg dig från att skicka UDP-paket?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Misslyckades med att initiera ESP-chiffer: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Misslyckades med att initiera ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Misslyckades med att beräkna HMAC för ESP-paket: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Mottog ESP-paket med ogiltig HMAC\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Dekryptering av ESP-paket misslyckades: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Misslyckades med att kryptera ESP-paket: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Misslyckad select() för TLS" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "TLS/DTLS-skrivning avbröts\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Misslyckades med att skriva till TLS/DTLS-uttag: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "Misslyckad select() för TLS/DTLS" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "TLS/DTLS-läsning avbröts\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "TLS/DTLS-uttag stängdes orent\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Misslyckades med att läsa från TLS/DTLS-uttag: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Försökte läsa från ej existerande %s-session\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "Läsfel på %s-session: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "Försökte skriva till ej existerande %s-session\n" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Skrivfel på %s-session: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Kunde inte extrahera tidsgräns för certifikat\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Klientcertifikat har gått ut" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "Sekundärt klientcertifikat har gått ut" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Klientcertifikat passerar snart tidsgräns" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "Sekundärt klientcertifikat passerar snart tidsgräns" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Misslyckades med att läsa in objektet ”%s” från nyckellager: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Misslyckades med att öppna nyckel-/certifikatfil %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Misslyckades med stat nyckel-/certifikatfil %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Misslyckades med att allokera buffert för certifikat\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Misslyckades med att läsa in certifikat till minnet: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Misslyckades med att konfigurera PKCS#12-datastrukturen: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Misslyckades med att dekryptera PKCS#12-certifikatfil\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Ange PKCS#12-lösenfras:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "Ange sekundär PKCS#12-lösenfras:" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Misslyckades med att bearbeta PKCS#12-filen: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Misslyckades med att läsa PKCS#12-certifikatet: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "Misslyckades med att läsa in sekundärt PKCS#12-certifikat: %s\n" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Kunde inte initiera MD5-hash: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5-hashfel: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Saknar DEK-Info: huvud från OpenSSL-krypterad nyckel\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Kan inte bestämma PEM-krypteringstyp\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "PEM-krypteringstypen: %s stöds ej\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ogiltigt salt i krypterad PEM-fil\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Fel base64-decoding krypterad PEM-fil: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Krypterad PEM-fil för kort\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Misslyckades med att initiera chiffer för att dekryptera PEM-fil: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Misslyckades med att kryptera PEM-nyckel: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Dekryptering av PEM-nyckel misslyckades\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Ange PEM-lösenfras:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "Ange sekundär PEM-lösenfras:" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Denna binär är byggd utan stöd för systemnyckel\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Denna binär är byggd utan stöd för PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Använder PKCS#11-certifikatet %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Använder systemcertifikatet %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Fel vid inläsning av certifikat från PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Fel vid inläsning av systemcertifikatet: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Använder certifikatfilen %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "Använder sekundära certifikatfilen %s\n" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-filen innehöll inget certifikat\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Inget certifikat hittades i filen" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Misslyckades med att läsa in certifikatet: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "Misslyckades med att läsa in sekundärt certifikat: %s\n" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Använder systemnyckeln %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "Använder sekundära systemnyckeln %s\n" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Fel vid initiering av privata nyckelstrukturen: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Fel vid import av systemnyckeln %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Provar PKCS#11-nyckel-URL %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Fel vid initiering av PKCS#11-nyckelstruktur: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Fel vid import av PKCS#11-URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Använder PKCS#11-nyckeln %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Fel vid import av PKCS#11-nyckeln till privata nyckelstrukturen: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Använder privata nyckelfilen %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Denna version av OpenConnect byggdes utan TPM-stöd\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Denna version av OpenConnect byggdes utan TPM2-stöd\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Misslyckades med att tolka PEM-fil\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Misslyckades med att läsa in PKCS#1-privata nyckeln: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Misslyckades med att läsa in privat nyckel som PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Misslyckades med att dekryptera PKCS#8-certifikatfil\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Misslyckades med att bestämma typ av privat nyckel %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Ange PKCS#8-lösenfras:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Misslyckades med att hämta nyckel-ID: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Fel vid signering av testdata med privata nyckeln: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Fel vid validering av signatur mot certifikat: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Hittade inget SSL-certifikat som matchade privat nyckel\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "Hittade inget sekundärt certifikat som matchade privat nyckel\n" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "got_key-villkor uppfylldes inte!\n" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "Fel vid skapande av en abstrakt privkey från /x509_privkey: %s\n" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Använder klientcertifikatet ”%s”\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "Använder sekundära certifikatet ”%s”\n" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Misslyckades med att allokera minne för certifikat\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Erhöll ingen utfärdare från PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Erhöll nästa CA ”%s” från PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Misslyckades med att allokera minne för att stödja certifikat\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Lägger till stöd för CA ”%s”\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Misslyckades med import av X509-certifikatet: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Misslyckades med att sätta PKCS#11-certifikatet: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Misslyckades med att sätta certifikatindragningslistan: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "Privat nyckel verkar ej stödja RSA-PSS. Inaktiverar TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Misslyckades med att sätta certifikatet: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server presenterade inget certifikat\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Fel vid jämförelse av servercertifikat vid återhandskakning: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Server presenterade annat certifikat vid återhandskakning\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Server presenterade identiskt certifikat vid återhandskakning\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Fel vid initiering av X509-certifikatstruktur\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Fel vid import av servercertifikat\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Kunde inte beräkna hash för serverns certifikat\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Fel vid kontroll av status för servercertifikat\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certifikat indraget" #: gnutls.c:2098 msgid "signer not found" msgstr "undertecknare inte funnen" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "undertecknare inte ett CA-certifikat" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "osäker algoritm" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certifikat inte aktiverat" #: gnutls.c:2106 msgid "certificate expired" msgstr "certifikat har gått ut" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "signaturverifiering misslyckades" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certifikat matcher inte värdnamn" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Verifiering av servercertifikat misslyckades: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Misslyckades med att allokera minne för cafile-certifikat\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Misslyckades med att läsa certifikat från cafile: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Misslyckades med att öppna CA-filen ”%s”: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Misslyckades med att läsa in certifikat. Avbryter.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "Misslyckades med att konstruera GnuTLS-prioritetssträng\n" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Misslyckades med att sätta GnuTLS-prioritetssträngen (”%s”): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-förhandling med %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL-anslutning avbruten\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-anslutning misslyckades: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS icke-kritisk retur vid handskakning; %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Ansluten till HTTPS på %s med chiffersvit %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "Omförhandlade SSL på %s med chiffersvit %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN krävs för %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Fel PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Detta är sista försöket innan låsning!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Bara ett fåtal försök kvar innan låsning!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Ange PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "OATH HMAC algoritm stöds inte\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Misslyckades med att beräkna OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "Kunde inte sätta chiffersviter: %s\n" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Etablerade EAP-TTLS-session\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM signeringsfunktion begärde %d byte.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Misslyckades med att skapa TPM hashobjektet: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Misslyckades med att sätta värde i hashobjekt för TPM: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM-hashsignatur misslyckades: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Fel vid avkodning av TSS-nyckelblob: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Fel i TSS-nyckelblob\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Misslyckades med att skapa TPM-kontext: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Misslyckades med att ansluta TPM-kontext: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Misslyckades med att läsa in TPM SRK-nyckeln: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Misslyckades med att läsa in TPM SRK-policyobjektet; %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Misslyckades med att sätta TPM PIN: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Misslyckades med att läsa in TPM-nyckelblob: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Ange TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Misslyckades med att skapa nyckelpolicyobjektet: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Misslyckades med att tilldela policy till nyckeln; %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Ange PIN för TPM-nyckel:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "Ange PIN för sekundär TPM-nyckel:" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Misslyckades med att ange nyckel-PIN: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Okänd TPM2 EC-hashstorlek %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "Stöder inte EC-signaturalgoritmen %s\n" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Fel vid avkodning av TSS2-nyckelblob: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Misslyckades med att skapa ASN.1-typ för TPM2 %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Misslyckades med att avkoda TPM2-nyckel för ASN.1: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Misslyckades med att tolka TPM2-nyckeltyp OID: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "TPM2-nyckel har okänd OID %s ej %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Misslyckades med att tolka överordnad TPM2-nyckel: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Misslyckades med att tolka TPM2-elementet pubkey\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Misslyckades med att tolka TPM2-elementet privkey\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Tolkade TPM2-nyckel med överordnad %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2-hashvärde för stort (%d > %d)\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "PSS-kodning misslyckades; hashstorlek %d för stor för RSA-nyckel %d\n" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "TPMv2 RSA-signering anropad för okänd algoritm %s\n" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "TPM2-lösenord för långt; trunkerar\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "ägare" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "godkännande" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "plattform" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Skapar primärnycklar under hierarki %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Ange lösenord för TPM2-hierarki %s:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "Misslyckades med TPM2 Esys_TR_SetAuth: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "Misslyckades med ägarautentisering för TPM2 Esys_CreatePrimary\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "Misslyckades med TPM2 Esys_CreatePrimary: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Etablerar anslutning med TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "Misslyckades med TPM2 Esys_Initialize: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 var redan igång och orsakade därmed ett falskt misslyckande i tpm2tss-" "loggen.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" "Misslyckades med TPM2 Esys_Startup: 0x%x\n" "\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Misslyckades med Esys_TR_FromTPMPublic för referens 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Ange lösenord för överordnad TPM2-nyckel:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "Ange lösenord för sekundär överordnad TPM2-nyckel:" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Läser in TPM2-nyckelblob, överordnad %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" "Misslyckades med autentisering för TPM2 Esys_Load\n" "\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "Misslyckades med TPM2 Esys_Load failed: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" "Misslyckades med TPM2 Esys_FlushContext för genererad primärnyckel: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Ange lösenord för TPM2-nyckel:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "Ange lösenord för sekundär TPM2-nyckel:" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "TPM2 RSA-signaturfunktion anropad för %d byte, algo %s\n" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "Misslyckades med autentisering för TPM2 Esys_RSA_Decrypt\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" "TPM2 misslyckades med att generera RSA-signatur: 0x%x\n" "\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "TPM2-EC signeringsfunktion begärde %d byte.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "Okänd TPM2 EC-hashstorlek %d för algo 0x%x\n" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign auth misslyckades\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Ogiltig överordnad TPM2-referens 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "Använder SWTPM på grund av TPM_INTERFACE_TYPE-miljövariabel\n" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "TSS2_TctiLdr_Initialize misslyckades för swtpm: 0x%x\n" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Misslyckades med att importera privat nyckeldata för TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Misslyckades med att importera öppen nyckeldata för TPM2: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "TPM2-nyckeltypen %d stöds ej\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "Misslyckades med TPM2-åtgärd %s (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Utmaning: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Svaret var: %s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" "VARNING: Konfigurations-XML innehåller -tagg med värdet ”%s”.\n" " VPN-anslutbarhet kan vara inaktiverad eller begränsad.\n" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Sökväg för SSL-tunnel är ej standard: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tunneltidsgräns (intervall för rekey) är %d minuter.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Gateway-adressen i XML-konfigurationen (%s) skiljer sig åt från extern " "gateway-adress (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" "IPv6-gatewayadressen i konfigurations-XML (%s) skiljer sig från extern " "gatewayadress (%s).\n" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect-konfiguration skickade ipsec-mode=%s (förväntade esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorerar ESP-nycklar eftersom ESP-stöd inte är tillgängligt i detta bygge\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "Potentiellt IPv6-relaterad GlobalProtect-konfigurationstagg <%s>: %s\n" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Okänd GlobalProtect-konfigurationstagg <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" "IPv6-stöd för GlobalProtect är experimentellt. Rapportera gärna resultat " "till .\n" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" "Fick ej ESP-nycklar och matchande gateway i GlobalProtect-konfiguration; " "tunnel kommer endast vara TLS.\n" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP inaktiverad" #: gpst.c:661 msgid "No ESP keys received" msgstr "Inga ESP-nycklar mottagna" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "ESP-stöd ej tillgängligt i detta bygge" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" "Ingen MTU mottagen. Beräknade %d för %s%s\n" "\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Ansluter till ändpunkt för HTTPS-tunnel ...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Fel vid hämtning av HTTPS-svar med GET-tunnel.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway frånkopplad omedelbart efter begäran av GET-tunnel.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "Erhöll oväntat HTTP-svar: %.*s\n" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "VARNING: Servern bad oss att skicka in en HIP-rapport med md5sum %s.\n" " VPN-anslutning kan inaktiveras eller begränsas utan insändning av HIP-" "rapport.\n" " %s\n" "\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Men att köra skriptet för HIP-rapport på denna plattform stöds ej ännu." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Du måste ange ett argument, --csd-wrapper, med HIP-" "rapportinsändningsskriptet." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Fel: Att köra skriptet ”HIP-rapport” på denna plattform stöds ej ännu.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "Försöker köra HIP-trojanskriptet ”%s”.\n" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "Misslyckades med att skapa rör för HIP-skript\n" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "Misslyckades med att köra fork för HIP-skript\n" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "HIP-skriptet ”%s” avslutades onormalt\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "HIP-skriptet ”%s” returnerade nollskild status: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "HIP-skriptet ”%s” slutfördes korrekt (rapporten är %d byte).\n" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" "Insändning av HIP-rapport misslyckades.\n" "\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "HIP-rapport skickad.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Misslyckades med att köra HIP-skriptet %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Gateway säger att HIP-rapport behöver skickas in.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Gateway säger att ingen HIP-rapport behöver skickas in.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP-tunnel ansluten; avslutar HTTPS-huvudslinga.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Misslyckades med att ansluta ESP-tunnel; använder HTTPS istället.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Fel vid paketmottagning: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Oväntad paketlängd. SSL_read returnerade %d (inkluderar 16 byte för huvud) " "men payload_len för huvud är %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Erhöll GPST DPD/keepalive-svar\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Förväntade 0000000000000000 som sista 8 byte av pakethuvudet DPD/keepalive " "men fick:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Mottog IPv%d-datapaket på %d byte\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Förväntade 0100000000000000 som sista 8 byte av datapakethuvudet men fick:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Okänt paket. Huvuddump följer:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" "GlobalProtect HIP-kontroll väntas\n" "\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "HIP-kontroll eller rapport misslyckades\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" "GlobalProtect rekey väntas\n" "\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection upptäckte en död motpart!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Skicka GPST DPD/keepalive-begäran\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Skickar IPv%d-datapaket på %d byte\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "ICMPv%d-avsökningspaket (sekv %d) för GlobalProtect ESP:\n" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Misslyckades med att skicka ESP-avsökning\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Fel vid import av GSSAPI-namn för autentisering:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Fel vid generering av GSSAPI-svar:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Försöker med GSSAPI-autentisering till proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Försöker med GSSAPI-autentisering till servern ”%s”\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-autentisering färdig\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-token för stor (%zd byte)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Skickar GSSAPI-token på %zu byte\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Misslyckades med att skicka GSSAPI-autentiseringstoken till proxy: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Misslyckades med att ta emot GSSAPI-autentiseringstoken från proxy: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-server rapporterade misslyckat GSSAPI-kontext\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Okänd GSSAPI-status svar (0x%02x) från SOCKS-server\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Erhöll GSSAPI-token på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Skickar GSSAPI-skyddsförhandling på %zu byte\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Misslyckades med att skicka GSSAPI-skyddssvar till proxy: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Misslyckades med att ta emot GSSAPI-skyddssvar från proxy: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Erhöll GSSAPI-skyddssvar på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ogiltig GSSAPI-skyddssvar från proxy (%zu byte)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS-proxy kräver meddelandeintegritet vilket inte stöds\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS-proxy kräver meddelandekonfidentialitet vilket inte stöds\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS-proxy kräver skydd av okänd typ 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Försöker med HTTP Basic-autentisering till proxy\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Försöker med HTTP Basic-autentisering till servern ”%s”\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Försöker med HTTP Bearer-autentisering till servern ”%s”\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Denna version av OpenConnect byggdes utan GSSAPI-stöd\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Proxy begärde grundläggande autentisering vilket är inaktiverat som " "standard\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Servern ”%s” begärde grundläggande autentisering vilket är inaktiverat som " "standard\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Inga fler autentiseringsmetoder att prova\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Inget minne för att allokera kakor\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Fel vid läsning av HTTP-svar: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Misslyckades med att tolka HTTP-svaret ”%s”\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Erhöll HTTP-svar: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorerar okänd HTTP-svarsrad ”%s”\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ogiltig kaka erbjuden: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL-certifikatsautentisering misslyckades\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Svarskropp har negativ storlek (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Okänd överföringskodning: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-kropp %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Fel vid läsning av HTTP-svarskropp\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Fel vid hämtning av chunk-huvud\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "HTTP-chunklängden är negativ (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "HTTP-chunklängden är för stor (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Fel vid hämtning av HTTP-svarskropp\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "Fel i chunk-avkodning. Förväntade '', fick: '%s'\n" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Kan inte hämta HTTP 1.0-body utan att stänga anslutning\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Misslyckades med att tolka omdirigerad URL ”%s”: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Kan inte följa omdirigering till icke https-URL ”%s”\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Misslyckades med att allokera ny sökväg för relativ omdirigering: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "HTTPS-uttag stängt av motpart, öppnar igen\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Försöker igen med misslyckad %s-begäran på ny anslutning\n" #: http.c:1002 msgid "request granted" msgstr "begäran tillåten" #: http.c:1003 msgid "general failure" msgstr "allmänt fel" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "anslutning inte tillåten av regeluppsättning" #: http.c:1005 msgid "network unreachable" msgstr "nätverk ej nåbart" #: http.c:1006 msgid "host unreachable" msgstr "värd ej nåbar" #: http.c:1007 msgid "connection refused by destination host" msgstr "anslutning vägras av målvärd" #: http.c:1008 msgid "TTL expired" msgstr "TTL har gått ut" #: http.c:1009 msgid "command not supported / protocol error" msgstr "kommando stöds ej / protokollfel" #: http.c:1010 msgid "address type not supported" msgstr "adresstyp stöds ej" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOCKS-server begärde användarnamn/lösenord men vi har inga\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Användarnamn och lösenord för SOCKS-autentisering måste vara < 255 byte\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Fel vid skrivning av auth-begäran till SOCKS-proxy: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Fel vid läsning av auth-svar från SOCKS-proxy: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Oväntat auth-svar från SOCKS-proxy: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Autentiserad till SOCKS-server med lösenord\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Lösenordsautentisering till SOCKS-server misslyckades\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-server begärde GSSAPI-autentisering\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-server begärde lösenordsautentisering\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-server begärde autentisering\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-server begärde okänd autentiseringstyp %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Begär SOCKS-proxyanslutning till %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Fel vid skrivning av anslutningsbegäran till SOCKS-proxy: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Fel vid läsning av anslutningssvar från SOCKS-proxy: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Oväntat anslutningssvar från SOCKS-proxy: %02x %02x…\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS-proxyfel %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS-proxyfel %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Oväntad adresstyp %02x i SOCKS-anslutningssvar\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Begär HTTP-proxyanslutning till %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Misslyckades med att skicka proxybegäran: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Misslyckades med proxy CONNECT-begäran: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Okänd proxytyp ”%s”\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Misslyckades med att tolka proxy ”%s”\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Endast http eller socks(5)-proxyservrar stöds\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect eller openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel med Cisco AnyConnect SSL VPN såväl som ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Kompatibel med Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibel med Palo Alto Networks (PAN) GlobalProtect SSL VPN" # Detta är ett namn #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Kompatibel med Pulse Connect Secure SSL VPN" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Kompatibel med F5 BIG-IP SSL VPN" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "Fortinet SSL VPN" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Kompatibel med FortiGate SSL VPN" #: library.c:244 msgid "PPP over TLS" msgstr "PPP över TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "Oautentiserad PPP över TLS enligt RFC1661/RFC1662, för tester" #: library.c:254 msgid "Array SSL VPN" msgstr "Array SSL VPN" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "Kompatibel med Array Networks SSL VPN" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Okänt VPN-protokoll ”%s”\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Byggd mot SSL-bibliotek utan Cisco DTLS-stöd\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Ingen IP-adress mottagen. Avbryter\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Återanslutning gav en annan äldre IP-adress (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Återanslutning gav en annan äldre IP-nätmask (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Återanslutning gav en annan föråldrad IPv6-adress (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Återanslutning gav en annan IPv6-nätmask (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-konfiguration mottagen men MTU %d är för liten.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Misslyckades med att tolka server-URL ”%s”\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Endast https:// tillåtet för server-URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Okänd certifikatshash: %s\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Storleken på det tillhandahållna fingeravtrycket är mindre än det minsta som " "krävs (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Ingen formhanterare, kan inte autentisera.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() misslyckades: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kritiskt misstag i kommandoradshantering\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() misslyckades: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() misslyckades: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Fel vid konvertering av konsolinmatning: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allokeringsfel för sträng från stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "För hjälp med OpenConnect, se webbsidan på\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Använder %s. Egenskaper:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ENGINE inte tillgänglig" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "VARNING: Inget DTLS- och/eller ESP-stöd i denna binär. Prestanda kommer att " "påverkas.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Protokoll som stöds:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (standard)" #: main.c:743 msgid "Set VPN protocol" msgstr "Sätt VPN-protokoll" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kan inte bearbeta denna körbara sökväg ”%s”" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Allokering för vpnc-skriptsökväg misslyckades\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Åsidosätt värdnamnet ”%s” till ”%s”\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Användning: openconnect [flaggor] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Öppen klient för multipla VPN-protokoll, version %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Läs flaggor från konfigurationsfil" #: main.c:914 msgid "Report version number" msgstr "Rapportera versionsnummer" #: main.c:915 msgid "Display help text" msgstr "Visa hjälptext" #: main.c:919 msgid "Authentication" msgstr "Autentisering" #: main.c:920 msgid "Set login username" msgstr "Sätt användarnamn för inloggning" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Inaktivera lösenord-/SecurID-autentisering" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Förvänta inte användarinmatning, avsluta om det krävs" #: main.c:923 msgid "Read password from standard input" msgstr "Läs lösenord från standardinmatning" #: main.c:924 msgid "Choose authentication login selection" msgstr "Välj autentiseringinloggningsmarkering" #: main.c:925 msgid "Provide authentication form responses" msgstr "Tillhandahåll svar för autentiseringsformulär" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Använd SSL-klientcertifikat CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Använd privata SSL-nyckelfilen KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Varna när certifikatets livslängd < DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "Sätt användargrupp för inloggning" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Sätt lösenfras för nyckel ett TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Nyckellösenfras är fsid för filsystemet" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Programvarutokentyp: rsa, totp, hotp eller oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Programvarutokenhemlighet eller oidc-token" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(OBS: libstoken (RSA SecurID) inaktiverat i detta bygge)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(OBS: Yubikey OATH inaktiverat i detta bygge)" #: main.c:941 msgid "Server validation" msgstr "Servervalidering" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "Acceptera endast servercertifikat med detta fingeravtryck" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Inaktivera standardutfärdarna för systemcertifikat" #: main.c:944 msgid "Cert file for server verification" msgstr "Certifikatfil för serververifiering" #: main.c:946 msgid "Internet connectivity" msgstr "Internetanslutning" #: main.c:947 msgid "Set VPN server" msgstr "Sätt VPN-server" #: main.c:948 msgid "Set proxy server" msgstr "Sätt proxyserver" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Sätt proxyautentiseringsmetoder" #: main.c:950 msgid "Disable proxy" msgstr "Inaktivera proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Använd libproxy för att automatiskt konfigurera proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(OBS: libproxy inaktiverad i detta bygge)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Tidsgräns för återanslutningsförsök i sekunder" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Använd IP vid anslutning till VÄRD" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Kopiera TOS / TCLASS-fält till DTLS- och ESP-paket" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Sätt lokal port för DTLS- och ESP-datagram" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Autentisering (tvåfasig)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Använd autentiseringskakan COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Läs kaka från standard in" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Autentisera endast och skriv ut inloggningsinformation" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Hämta och skriv endast ut kakan; anslut ej" #: main.c:965 msgid "Print cookie before connecting" msgstr "Skriv ut kakan innan anslutning" #: main.c:968 msgid "Process control" msgstr "Processkontroll" #: main.c:969 msgid "Continue in background after startup" msgstr "Fortsätt i bakgrunden efter start" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Skriv demonens PID till denna fil" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Förkasta privilegier efter anslutning" #: main.c:974 msgid "Logging (two-phase)" msgstr "Loggning (tvåfasig)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Använd syslog för förloppsmeddelanden" #: main.c:978 msgid "More output" msgstr "Mer utmatning" #: main.c:979 msgid "Less output" msgstr "Mindre utmatning" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Dumpa HTTP-autentiseringstrafik (implicerar --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Lägg till tidsstämpel i början av förloppsmeddelanden" #: main.c:983 msgid "VPN configuration script" msgstr "VPN-konfigurationsskript" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Använd IFNAME för tunnelgränssnitt" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Skalkommandorad för att använda ett vpnc-kompatibelt konfigurationsskript" #: main.c:986 msgid "default" msgstr "standard" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Sänd trafik till ”script”-program, inte tun" #: main.c:991 msgid "Tunnel control" msgstr "Tunnelkontroll" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Fråga inte efter IPv6-anslutning" #: main.c:993 msgid "XML config file" msgstr "XML-konfigurationsfil" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Begär MTU från servern (endast äldre servrar)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indikerar sökvägs-MTU till/från server" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Aktivera komprimering med tillstånd (standard är tillståndslös)" #: main.c:997 msgid "Disable all compression" msgstr "Inaktivera komprimering" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Kräver perfect forward secrecy" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Inaktivera DTLS och ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-chiffer till stöd för DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Sätt paketkögräns till LEN-pkts" #: main.c:1004 msgid "Local system information" msgstr "Lokal systeminformation" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP-header User-Agent:-fält" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Lokalt värdnamn att annonsera till server" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "rapporterade versionssträng vid autentisering" #: main.c:1010 msgid "default:" msgstr "standard:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Kör Trojanbinär (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Förkasta rättigheter under trojankörning" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Kör SCRIPT istället för trojanbinär" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Serverprogramfel" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Inaktivera återanvändning av HTTP-anslutning" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Försök inte med XML POST-autentisering" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "Tillåt användning av de uråldriga, osäkra 3DES- och RC4-chiffren" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Misslyckades med att allokera sträng\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Misslyckades med att hämta rad från konfigurationsfilen %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Okänd flagga på rad %d: ”%s”\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Alternativet ”%s” tar inte argument på rad %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Alternativet ”%s” kräver ett argument på rad %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ogiltig användare ”%s”: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ogiltigt användar-ID ”%d”: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Ohanterad automatisk komplettering för flagga %d ”--%s”. Rapportera gärna.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "ansluten" #: main.c:1507 msgid "disconnected" msgstr "frånkopplad" #: main.c:1511 msgid "unsuccessful" msgstr "misslyckades" #: main.c:1516 msgid "in progress" msgstr "pågående" #: main.c:1519 msgid "disabled" msgstr "inaktiverad" #: main.c:1525 msgid "established" msgstr "etablerad" #: main.c:1528 msgid "unknown" msgstr "okänt" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "Konfigurerad som %s%s%s, med SSL%s%s %s och %s%s%s %s\n" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "RX: % paket (% B); TX: % paket (% B)\n" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "SSL-chiffersvit: %s\n" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "%s-chiffersvit: %s\n" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "Nästa SSL-rekey om %ld sekunder\n" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "Nästa %s-rekey om %ld sekunder\n" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "Nästa trojankörning om %ld sekunder\n" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Misslyckades med att öppna ”%s” för att skriva: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Fortsätter i bakgrunden, pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "VARNING: Det går inte att ange lokal: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "VARNING: Denna version av openconnect byggdes utan iconvstöd\n" " men du verkar använda den äldre teckenuppsättningen\n" " ”%s”. Förvänta dig konstiga händelser.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "VARNING: Denna version av openconnect är %s men\n" " biblioteket libopenconnect är %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" "VARNING: Detta bygge är endast avsett för felsökningssyften och\n" " kan låta dig etablera osäkra anslutningar.\n" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Misslyckades med att allokera vpninfo-struktur\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Kan inte använda ”config” inuti konfigurationsfil\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Kan inte öppna konfigurationsfilen ”%s”: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ogiltigt komprimeringsläge ”%s”\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" "Kan inte aktivera osäkra 3DES- eller RC4-chiffer för att biblioteket\n" "%s inte längre stöder dem.\n" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Misslyckades med att allokera minne\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Saknar kolon i flaggan för uppslag\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d för litet\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Inaktiverar alla HTTP-anslutningsåteranvändningar pga --no-http-keepalive.\n" "Om detta hjälper, rapportera till .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "--no-cert-check-flaggan var osäker och har tagits bort.\n" "Fixa din servers certifikat eller använd --servercert för att lita på den.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Kölängd noll tillåts inte: använder 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ogiltigt programvarutokenläge ”%s”\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "VARNING: Du angav %s. Detta bör inte vara\n" " nödvändigt, rapportera fall där en åsidosättning för\n" " en prioritetssträng är nödvändig för att ansluta till\n" " en server till .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "För många argument på kommandoraden\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Ingen server angiven\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Denna version av OpenConnect byggdes utan libproxy-stöd\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "Misslyckades med att slutföra autentisering\n" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Misslyckades med att skapa SSL-anslutning\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Misslyckades med att ställa in UDP; använder SSL istället\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Inget --script-argument givet, DNS och omdirigering är inte konfigurerade\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Se https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Användare begärde återanslutning\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "Kakan nekades av servern; avslutar.\n" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sessionen terminerades av servern; avslutar.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "Användaren avbröt (%s); avslutar.\n" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "Användare frånkopplad från session (%s); avslutar.\n" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "Oåterhämtbart in/ut-fel; avslutar.\n" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Okänt fel, avslutar.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Misslyckades med att öppna %s för att skriva: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Misslyckades med att skriva konfiguration till %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" "Accepterar på ett osäkert sätt certifikat från VPN-servern ”%s” eftersom du " "körde med --servercert=ACCEPT.\n" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "Kunde inte kontrollera serverns certifikat mot %s\n" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" "Inget av %d fingeravtryck angivna via --servercert matchar serverns " "certifikat: %s\n" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certifikatet från VPN-servern \"%s\" klarade inte verifiering.\n" "Anledning: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "För att lista på denna server i framtiden kan du lägga till detta till din " "kommandorad:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Skriv in ”%s” för att acceptera, ”%s” för att avbryta, vad som helst annat " "för att visa: " #: main.c:2464 main.c:2483 msgid "no" msgstr "nej" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ja" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Hash för servernyckel: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Auth-val ”%s” matchar flera alternativ\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth-val ”%s” ej tillgängligt\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Användarinmatning krävs i icke-interaktivt läge\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Misslyckades med att öppna tokenfil för skrivning: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Misslyckades med att skriva token: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Programvarutokensträng är ogiltig\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Kan inte öppna stoken-fil\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Kan inte öppna ~/.stokenrc-fil\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect byggdes inte med libstoken-stöd\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Allmänt fel i libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect byggdes inte med liboath-stöd\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Allmänt fel i liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-token inte funnen\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect byggdes inte med Yubikey-stöd\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Allmänt Yubikey-fel: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Kan inte öppna oidc-fil\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Allmänt fel i oidc-token\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Misslyckades med att ställa in skript för tun\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Misslyckades med att ställa in tun-enhet\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "Fördröjer tunnel med orsak: %s\n" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "Fördröjer avbryt (omedelbart återanrop).\n" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "Fördröjer avbryt.\n" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "Fördröjer paus (omedelbart återanrop).\n" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "Fördröjer paus.\n" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Anslutaren pausade anslutningen\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Inget arbete att göra, sover i %d ms…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects misslyckades: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Misslyckad select() i huvudslinga" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "Använder base_mtu på %d\n" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "Efter borttagande av %s/IPv%d-huvuden, MTU på %d\n" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" "Efter borttagande av protokollspecifikt pålägg (%d ej utfyllt, %d utfyllt, " "%d blockstorlek), MTU på %d\n" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() misslyckades: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() misslyckades: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fel vid kommunikation med ntlm_auth helper\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Försöker med HTTP NTLM-autentisering till proxy (single-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Försöker med HTTP NTLM-autentisering till servern ”%s” (single-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Försöker med HTTP NTLMv%d-autentisering till proxy\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Försöker med HTTP NTLMv%d-autentisering till servern ”%s”\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "Terminerar för att nullppp har nått nätverkstillstånd.\n" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Ogiltig base32 tokensträng\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Misslyckades med att allokera minne för att avkoda OATH-hemlighet\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Denna version av OpenConnect byggdes utan PSKC-stöd\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Ok att generera INITIAL tokenkod\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Ok att generera NEXT tokenkod\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server förkastar programvarutoken, växlar till manuellt angiven\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Genererar OATH TOTP tokenkod\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Genererar OATH HOTP tokenkod\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Oväntad längd %d för TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Mottog MTU %d från server\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Erhöll DNS-server %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Erhöll DNS-sökdomän %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Tog emot intern IP-adress %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Mottog nätmask %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Mottog intern gateway-adress %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Mottog split-include-rutt %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Mottog split-exclude-rutt %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Mottog WINS-server %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP-kryptering: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-komprimering: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP-port: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Livslängd för ESP-nyckel: %u byte\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Livslängd för ESP-nyckel: %u sekunder\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP till SSL-reserv: %u sekunder\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP-replay skydd: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (utgående): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d byte av ESP-hemligheter\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Okänd TLV grupp %d attr %d län %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Misslyckades med att tolka KMP-huvud\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Misslyckades med att tolka KMP-meddelanden\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Erhöll KMP-meddelande %d med storlek %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Mottog icke-ESP TLVs (grupp %d) i ESP-förhandling KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Fel vid skapande av begäran av oNCP-förhandling\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Kort skrivning i oNCP-förhandling\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Läste %d byte av SSL-post\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Oväntat svar på storlek %d efter värdnamnspaket\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serversvar till värdnamnspaket är fel 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Detta verkar indikera att servern har inaktiverat stöd för\n" "Junipers äldre oNCP-protokoll och endast tillåter anslutningar som\n" "använder det nyare Junos Pulse-protokollet. Denna version av\n" "OpenConnect har EXPERIMENTELLT stöd för Pulse genom --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ogiltigt paket väntar på KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Förväntad KMP-meddelande 301 från server, men fick %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-meddelande 301 från server för stort (%d byte)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Erhöll KMP-meddelande 301 med längd %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Misslyckades med att läsa fortsättning på postens längd\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Post på ytterligare %d byte för stor; skulle bli %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Misslyckades med att läsa ytterligare post på längd %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Läs ytterligare %d byte av KMP-301-meddelande\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Fel vid förhandling av ESP-nycklar\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "Utgående begäran om oNCP-förhandling:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "ny inkommande" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "ny utgående" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Läs bara 1 byte från fältet för oNCP-längd\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Servern avslutade anslutningen (sessionen har gått ut)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "Servern avslutade anslutningen (tidsgräns för inaktivitet)\n" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Servern avslutade anslutningen (orsak: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Servern skickade oNCP-post med längd 0\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Inkommande KMP-meddelande %d med storlek %d (fick %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Fortsätter att bearbeta KMP-meddelande %d med storlek %d (fick %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Okänt datapaket\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Misslyckades med att konfigurera ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Okänt KMP-meddelande %d med storlek %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d mer byte ej mottaget\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Utgående paket:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Skicka ESP enable control-paket\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FEL: %s() anropades med ogiltig UTF-8 för ”%s” argument\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Misslyckades med att beräkna DTLS-pålägg för %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Misslyckades med att generera slumpmässig nyckel\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Misslyckades med att skapa SSL_SESSION ASN.1 för OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL misslyckades med att tolka SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Misslyckades med att initiera DTLSv1-session\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "För stort program-ID\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-återanrop\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Misslyckades med att initiera DTLSv1 CTX\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Misslyckades med att ange DTLS CTX-version\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Misslyckades med att generera DTLS-nyckel\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Misslyckades med att sätta DTLS chifferlista\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "DTLS-chiffer ”%s” fanns inte\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" "SSL_set_session() misslyckades med DTLS-protokollversion 0x%x\n" "Använder du en version av OpenSSl som är äldre 0.9.8m?\n" "Se http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Använd kommandoradsflaggan --no-dtls för att undvika detta meddelande\n" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() misslyckades\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "Etablerade DTLS-anslutning (använder OpenSSL). Chiffersvit %s-%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Det är antagligen för att din OpenSSL är trasig\n" "Se http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-handskakning misslyckades: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Misslyckades med att initiera ESP-chiffer:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Misslyckades med att initiera ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Misslyckades med att konfigurera dekryptering för ESP-paket:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Misslyckades med att dekryptera ESP-paket:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Misslyckades med att kryptera ESP-paket:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Misslyckades med att etablera libp11 PKCS#11-kontext:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Misslyckades med att läsa in PKCS#11-leverantörsmodul (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN-låst\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN har gått ut\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "En annan användare är redan inloggad\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Okänt fel vid inloggning till PKCS#11-token\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Inloggad till PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Misslyckades med att räkna upp certifikat i PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Fann %d certifikat på plats ”%s”\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Misslyckades med att tolka PKCS#11 URI ”%s”\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Misslyckades med att räkna upp PKCS#11-platser\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Loggar in till PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Misslyckades med att hitta PKCS#11-cert ”%s”\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Certifikat X.509-innehåll hämtas inte med libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "Använder sekundära PKCS#11-certifikatet %s\n" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Misslyckades med att räkna upp nycklar i PKCS#11-platsen ”%s”\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Fann %d nycklar på plats ”%s”\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Certifikatet har inga öppna nycklar\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "Sekundärt certifikat har inga öppna nycklar\n" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Certifikatet stämmer inte överens med privat nyckel\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "Sekundärt certifikat stämmer inte överens med privat nyckel\n" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Kontrollerar att EC-nyckel stämmer överens med cert\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Misslyckades med att allokera signaturbuffert\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Misslyckades med att signera attrappdata för att validera EC-nyckel\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Misslyckades med att hitta PKCS#11-nyckel ”%s”\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "Använder sekundära PKCS#11-nyckeln %s\n" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "Misslyckades med att instansiera privat nyckel från PKCS#11\n" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "Misslyckades med att instansiera sekundär privat nyckel från PKCS#11\n" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Denna version av OpenConnect byggdes utan PKCS#11-stöd\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "Misslyckades med att skriva till TLS/DTLS-uttag\n" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "Misslyckades med att läsa från TLS/DTLS-uttag\n" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Läsfel på %s-session: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Skrivfel på %s-session: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Ohanterad SSL UI-begärantyp %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-lösenord för långt (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "Klientcertifikat eller nyckel saknas\n" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Misslyckades med att läsa in privat nyckel\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Misslyckades med att installera certifikat i OpenSSL-kontext\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra certifikat från %s: ”%s”\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Misslyckades med att tolka PKCS#12 (se fel ovan)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "Misslyckades med att tolka sekundär PKCS#12 (se fel ovan)\n" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 innehöll inget certifikat!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "Sekundär PKCS#12 innehöll inget certifikat!\n" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 innehöll inga privata nycklar!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "Sekundär PKCS#12 innehöll inga privata nycklar!\n" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Kan inte läsa in TPM-motor.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Misslyckades med att initiera TPM-motor\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Misslyckades med att sätta TPM SRK-lösenord\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Misslyckades med att läsa in privat TPM-nyckel\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "Misslyckades med att läsa in sekundär privat TPM-nyckel\n" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Misslyckades med att öppna certifikatfil %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "Misslyckades med att öppna sekundär certifikatfil %s: %s\n" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Misslyckades med att läsa in certifikat\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Misslyckades med att bearbeta certifikat som stöds. Försöker ändå…\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" "Misslyckades med att bearbeta sekundära certifikat som stöds. Försöker " "ändå…\n" #: openssl.c:840 msgid "PEM file" msgstr "PEM-fil" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Misslyckades med att skapa BIO för nyckellagringsobjektet ”%s”\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Misslyckades med att läsa in privat nyckel (fel lösenfras)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" "Misslyckades med att läsa in sekundär privat nyckel (felaktig lösenfras?)\n" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Inläsning av privat nyckel misslyckades (se fel ovan)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "Misslyckades med att läsa in sekundär privat nyckel (se fel ovan)\n" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Misslyckades med att läsa in X509-certifikat från nyckellager\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Misslyckades med att öppna privat nyckelfil %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "Misslyckades med att läsa in sekundär privat nyckel\n" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "Misslyckades med att dekryptera sekundär PKCS#8-certifikatfil\n" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "Ange sekundär PKCS#8-lösenfras:" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Misslyckades med att konvertera PKCS#8 till OpenSSL EVP_PKEY\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" "Misslyckades med att konvertera sekundär PKCS#8 till OpenSSL EVP_PKEY\n" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Misslyckades med att identifiera privat nyckeltyp i ”%s\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matchade DNS-altname ”%s”\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Ingen match för altname ”%s”\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certifikat har GEN_IPADD altname med påhittad längd %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matchade %s adress ”%s”\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ingen match för %s adress ”%s”\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI ”%s” har icke-tom sökväg, ignorerar\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Matchade URI ”%s”\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Ingen match för URI ”%s”\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Inget altnamn i motparts certifikat matchade ”%s”\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Inget ämnesnamn i motparts certifikat!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Misslyckades med att tolka ämnesnamn i motparts certifikat\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Motparts certifikat matchar ej ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matchade motparts certifikat ämnesnamn ”%s”\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra certifikat från cafile: ”%s”\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Fel i klientcertifikats notAfter-fält\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "Fel i sekundärt klientcertifikats notAfter-fält\n" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL-certifikat och nyckel stämmer inte överens\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Misslyckades med att läsa certifikat från CA-fil ”%s”\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Misslyckades med att öppna CA-filen ”%s”\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Misslyckades med att skapa TLSv1 CTX\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "Misslyckades med att konstruera OpenSSL-chifferlista\n" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Misslyckades med att sätta OpenSSL-chifferlistan (”%s”)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL-anslutning misslyckades\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Misslyckades med att beräknaOATH HMAC\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "EAP-TTLS-förhandling med %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "EAP-TTLS-anslutningsfel %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "Inledande HDLC-flaggsekvens (0x7e) saknas\n" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "HDLC-buffert slutade utan FCS och flaggsekvens (0x7e)\n" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "HDLC-ramen för kort (%d byte)\n" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "Felaktig FCS %04x för HDLC-paket\n" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "Av-HDLC:at paket (%ld byte -> %ld), FCS=0x%04x\n" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "Aktuellt PPP-tillstånd: %s (inkapsl %s):\n" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" " ut: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "Mottog MRU %d från server. NAK-erbjuder större MRU på %d (vår MTU)\n" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "Mottog MRU %d från server. Sätter vår MTU så den matchar.\n" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "Mottog asyncmap på 0x%08x från servern\n" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "Mottog magiskt tal på 0x%08x från servern\n" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "Mottog protokollfältkomprimering från servern\n" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "Mottog adress- och kontrollfältskomprimering från servern\n" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "Mottog föråldrade IP-adresser från servern, ignorerar\n" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "Mottog Van Jacobson TCP/IP-komprimering från servern\n" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "Mottog motpartens IPv4-adress %s från servern\n" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "Mottog motpartens länklokala IPv6-adress %s från servern\n" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "Mottog okänd %s TLV (tagg %d, län %d+2) från servern:\n" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "Mottog %ld extra byte i slutet på Config-Request:\n" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "Neka %s/id %d-konfiguration från servern\n" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "NAK %s/id %d-konfiguration från servern\n" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "ACK %s/id %d-konfiguration från servern\n" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "Begär beräknad MTU på %d\n" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "Skickar vår %s/id %d-konfigurationsbegäran till servern\n" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "Servern nekade/NAK:ade LCP MRU-alternativ\n" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "Servern nekade/NAK:ade LCP asyncmap-alternativ\n" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "Servern nekade LCP magic-alternativ\n" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "Servern nekade/NAK:ade LCP PFCOMP-alternativ\n" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "Servern nekade/NAK:ade LCP ACCOMP-alternativ\n" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "Servern NAK-erbjöd IPv4-adress: %s\n" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "Servern nekade äldre IP-adress %s\n" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "Servern nekade/NAK:ade vår IPv4-adress eller begäran: %s\n" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "Servern NAK-erbjöd IPCP-begäran för %s[%d]-server: %s\n" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "Servern nekade/NAK:ade IPCP-begäran för %s[%d]-server\n" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "Servern NAK-erbjöd länklokal IPv6-adress %s\n" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "Servern nekade/NAK:ade vår IPv6-gränssnittsidentifierare\n" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "Servern nekade/NAK:ade %s TLV (tagg %d, län %d+2)\n" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "Mottog %ld extra byte i slutet på Config-Reject:\n" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "Mottog %s/id %d %s från servern\n" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "Servern terminerar med orsak: %s\n" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "Servern nekade vår begäran att konfigurera IPv%d\n" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "PPP-tillståndsövergång från %s till %s på %s-kanal\n" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "PPP-nyttolast överskrider mottagandebuffert\n" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "Kort paket mottogs (%d byte). Väntar på mer.\n" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "Oväntat för-PPP-pakethuvud för inkapsl %d.\n" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "PPP-nyttolastlängd %d överskrider mottagandebuffert %d\n" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" "PPP-paket är ofullständigt. Erhöll %d byte på linan (inklusive %d inkapsl) " "men huvudets payload_len är %d. Väntar på mer.\n" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Ogiltig PPP-inkapsling\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "Paket innehåller %d byte efter nyttolast. Antar konkatenerat paket.\n" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "Oväntat IPv%d-paket i PPP-tillståndet %s.\n" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "Mottog IPv%d-datapaket på %d byte över %s\n" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "Förväntade %d PPP-huvudbyte men fick %ld, växlar nyttolast.\n" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "Skickar Protocol-Reject för %s. Nyttolast:\n" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "Upptäckte en död motpart!\n" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "Misslyckades med att etablera PPP\n" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "Skicka PPP-förkastandebegäran som keepalive\n" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "Skicka PPP-ekobegäran som DPD\n" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "Skickar PPP %s %s-paket över %s (id %d, %d byte totalt)\n" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "Skickar PPP %s-paket över %s (%d byte totalt)\n" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "PPP connect anropat med ogiltigt DTLS-tillstånd %d\n" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "DTLS-tunnel ansluten; avslutar HTTPS-huvudslinga.\n" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" "Misslyckades med att ansluta DTLS-tunnel; använder HTTPS istället (tillstånd " "%d).\n" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "Etablering av PPP-tunnel över TLS misslyckades\n" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "Ogiltigt DTLS-tillstånd %d\n" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "Återställning av PPP misslyckades\n" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "Misslyckades med att autentisera DTLS-session\n" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Tog emot intern äldre IP-adress %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Misslyckades med att hantera IPv6-adress\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Tog emot intern IPv6-adress %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Mottog IPv6-split-include %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Mottog IPv6-split-exclude %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Oväntad längd %d för attr 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ESP-kryptering: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Endast ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Okänd attr 0x%x län %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Läste %d byte av IF-T/TLS-post\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Kort skrivning till IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Fel vid skapande av IF-T-paket\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Fel vid skapande av EAP-paket\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Oväntad IF-T/TLS-autentiseringsutmaning:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Oväntad EAP-TTLS-nyttolast:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Ange Pulse-användarrike:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Rike:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Välj Pulse-användarrike:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Misslyckades med att tolka AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Sessionsgräns uppnådd. Välj session att döda:\n" #: pulse.c:875 msgid "Session:" msgstr "Session:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Misslyckades med att tolka sessionslista\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Ange sekundära autentiseringsuppgifter:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Ange användarautentiseringsuppgifter:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Sekundärt användarnamn:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Användarnamn:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Lösenord:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Sekundärt lösenord:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Lösenord utgånget. Ändra lösenord:" #: pulse.c:1085 msgid "Current password:" msgstr "Aktuellt lösenord:" #: pulse.c:1090 msgid "New password:" msgstr "Nytt lösenord:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Verifiera nytt lösenord:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Inga lösenord tillhandahölls.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Lösenorden stämmer inte överens.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Aktuellt lösenord för långt.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Nytt lösenord för långt.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Tokenkodbegäran:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Ange svar:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Ange din lösenkod:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Ange din sekundära tokeninformation:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Fel vid skapande av Pulse-anslutningsbegäran\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Oväntat svar på IF-T/TLS-versionsförhandling:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "IF-T/TLS-version från server: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Misslyckades med att etablera EAP-TTLS-session\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "VARNING: MD5 för certifikat tillhandahållet av server överensstämmer inte " "med dess faktiska certifikat.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" "Autentiseringsfel: Konto utlåst\n" "\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "Autentiseringsfel: Klientcertifikat krävs\n" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Autentiseringsfel: Kod 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Okänt D73-promptvärde 0x%x. Kommer efterfråga både användarnamn och " "lösenord.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Rapportera detta värde och beteendet för den officiella klienten.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Autentiseringsfel: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Pulse-servern begärde Host Checker; stöds inte ännu\n" "Pröva Juniper-läge (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "Ohanterat Pulse-autentiseringspaket, eller autentiseringsfel\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Pulse-autentiseringskaka accepterades inte\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Inmatning av Pulse-rike\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Val av Pulse-rike\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Pulse-lösenordsautentiseringsbegäran, kod 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "Pulse-lösenordsbegäran med okänd kod 0x%02x. Rapportera gärna.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Allmän tokenkodbegäran för Pulse-lösenord\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Pulse-sessionsgräns, %d sessioner\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Ohanterad Pulse-autentiseringsbegäran\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Oväntat svar istället för lyckad IF-T/TLS-autentisering:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "EAP-TTLS-fel: Spolar utdata med väntande indatabyte\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Fel vid skapandet av EAP-TTLS-buffert\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Misslyckades med att läsa EAP-TTLS Acknowledge: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Läste %d byte av IF-T/TLS EAP-TTLS-post\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Felaktigt EAP-TTLS Acknowledge-paket\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Felaktigt EAP-TTLS-paket (län %d, kvar %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Oväntat Pulse-konfigurationspaket:\n" # TODO: receive*d* #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Mottog rutt av okänd typ 0x%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Ogiltigt ESP-konfigurationspaket:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Ogiltig ESP-konfiguration\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Felaktigt IF-T/TLS-paket när konfiguration förväntades:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Oväntat IF-T/TLS-paket när konfiguration förväntades.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "Otillräcklig konfiguration hittades\n" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "ESP rekey misslyckades\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "Ödesdigert Pulse-fel (orsak: %ld): %s\n" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Okänt Pulse-paket\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Skickar IF-T/TLS-datapaket på %d byte\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Förkasta dålig split-include: ”%s”\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Förkasta dålig split-exclude: ”%s”\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "VARNING: Split-include ”%s” har värdbitar satta, ersätter med ”%s/%d”.\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "VARNING: Split-exclude ”%s” har värdbitar satta, ersätter med ”%s/%d”.\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Ignorerar äldre nätverk för att adressen ”%s” är ogiltig.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "Ignorerar äldre nätverk för att nätmasken ”%s” är ogiltig.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Misslyckades med att generera skript ”%s” för %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skriptet ”%s” avslutades onormalt (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skriptet ”%s” returnerade fel %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Misslyckad select() för uttagsanslutning (socket connect)" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Uttagsanslutning (socket connect) avbruten\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Misslyckades med setsockopt(TCP_NODELAY) på TLS-uttag:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Misslyckades med att återansluta till proxy %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Misslyckades med att återansluta till värd %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy från libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo misslyckades med värd '%s': %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "Återansluter till DynDNS-server med tidigare cachad IP-adress\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Försöker att ansluta till proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Försöker att ansluta till server %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Ansluten till %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Misslyckades med att allokera sockaddr-lagring\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Misslyckades med att ansluta till %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Glömmer icke-fungerande tidigare motpartsadress\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Misslyckades med att ansluta till värd %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Återansluter till proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Kunde inte hämta filsystems-ID för lösenfras\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Misslyckades med att öppna privata nyckelfilen ”%s”: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Inget fel" #: ssl.c:727 msgid "Keystore locked" msgstr "Nyckellager låst" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Nyckellager oinitierat" #: ssl.c:729 msgid "System error" msgstr "Systemfel" #: ssl.c:730 msgid "Protocol error" msgstr "Protokollfel" #: ssl.c:731 msgid "Permission denied" msgstr "Tillstånd nekat" #: ssl.c:732 msgid "Key not found" msgstr "Nyckel inte funnen" #: ssl.c:733 msgid "Value corrupted" msgstr "Värde korrupt" #: ssl.c:734 msgid "Undefined action" msgstr "Odefinierad åtgärd" #: ssl.c:738 msgid "Wrong password" msgstr "Fel lösenord" #: ssl.c:739 msgid "Unknown error" msgstr "Okänt fel" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Misslyckad select() för kommandots uttag (socket)" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Misslyckades med att öppna %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Misslyckades med fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Filen %s är tom\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "Filen %s har misstänkt storlek %\n" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Misslyckades med att allokera %d byte för %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Misslyckades med att läsa %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Okänd protokollfamilj %d. Kan inte skapa UDP-serveradress\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Öppna UDP-uttag (socket)" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Okänd protokollfamilj %d. Kan inte skapa UDP-transport\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Bind UDP-uttag (socket)" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Gör UDP-uttag icke-blockerande" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Kaka inte längre giltig, avslutar session\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sömn %ds, återstående tidsgräns %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Misslyckad select() för sändning från uttag (socket)" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Misslyckad select() för mottagning från uttag (socket)" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-token för stor (%ld byte)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Skickar SSPI-token på %lu byte\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Misslyckades med att skicka SSPI-autentiseringstoken till proxy: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Misslyckades med att ta emot SSPI-autentiseringstoken från proxy: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-server rapporterade misslyckat SSPI-kontext\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Okänd SSPI-status svar (0x%02x) från SOCKS-server\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Erhöll SSPI-token på %lu byte: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() misslyckades: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() misslyckades: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() resultat för stort (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Skickar SSPI-skyddsförhandling på %u byte\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Misslyckades med att skicka SSPI-skyddssvar till proxy: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Misslyckades med att ta emot SSPI-skyddssvar från proxy: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Erhöll SSPI-skyddssvar på %d byte: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage misslyckades: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ogiltig SSPI-skyddssvar från proxy (%lu byte)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Ange användaruppgifter för att låsa upp programvarutoken." #: stoken.c:107 msgid "Device ID:" msgstr "Enhets-ID:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Användare förbigången av programvarutoken.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Alla fält krävs, prova igen.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Allmänt fel i libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Fel enhets-ID eller lösenord, prova igen.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Programvarutokeninitiering lyckades.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Ange PIN för programvarutoken." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Ogiltigt PIN-format, prova igen.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Genererar RSA-tokenkod\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Fel vid åtkomst av registernyckel för nätverksadapters\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Kan inte läsa %s\\%s eller är inte sträng\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "%s\\ComponentId är okänt ”%s”\n" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Fann %s vid %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Kan inte öppna registernyckeln %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "Kan inte läsa registernyckeln %s\\%s eller är inte sträng\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() misslyckades: %s\n" "Faller tillbaka till GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() misslyckades: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Misslyckades med att öppna %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "Öppnade tun-enheten %S\n" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Misslyckades med att erhålla TAP-drivrutin i version: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "Fel: TAP-Windows drivrutin v9.9 eller större krävs (fann %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Misslyckades med att sätta TAP IP-adress: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Misslyckades med att sätta TAP mediastatus: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "Ignorerar ej matchande gränssnitt ”%S”\n" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "Kunde inte konvertera gränssnittsnamn till UTF-8\n" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "Använder %s-enhet ”%s”, index %d\n" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "Kunde inte konstruera gränssnittsnamn\n" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-enhet avslutade anslutning. Kopplar från.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Misslyckades med att läsa från TAP-enhet: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Misslyckades med att läsa från TAP-enhet: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Skrev %ld byte till tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Väntar på tun-skrivning…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Skrev %ld byte till tun efter väntan\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Misslyckades med att skriva till TAP-enhet: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Att generera tunnelskript stöds ännu inte på Windows\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Kunde inte öppna /dev/tun för plumbing" #: tun.c:92 msgid "Can't push IP" msgstr "Kan inte trycka IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Kan inte sätta ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Kan inte plumb %s för IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "öppna /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Misslyckades med att skapa ny tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Misslyckades med att stoppa tun-fildeskriptor i förkasta-meddelande-läge" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-enhet stöds ej på denna plattform\n" #: tun.c:205 msgid "open net" msgstr "öppna net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Misslyckades med att öppna tun-enhet: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Misslyckades med att binda lokal tun-enhet (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "För att konfigurera lokalt nätverk måste openconnect köras som root\n" "Se https://www.infradead.org/openconnect/nonroot.html för mer information\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Ogiltigt gränssnittsnamn '%s', måste matcha ”utun%%d” eller ”tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Misslyckades med att öppna SYSPROTO_CONTROL-uttag (socket): %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Misslyckades med att fråga utun control id: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Misslyckades med att allokera enhetsnamn för utun\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Misslyckades med att ansluta enhet för utun: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ogiltigt gränssnittsnamn ”%s”, måste matcha ”tun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Kan inte öppna ”%s”: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Misslyckades med att göra tun-uttag icke-blockerande: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair misslyckades: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "gren (fork) misslyckades: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(skript)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Misslyckades med att skriva inkommande paket: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "Kunde inte läsa in wintun.dll\n" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "Kunde inte slå upp funktioner från wintun.dll\n" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Behandlar värd ”%s” som ett rått värdnamn\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Misslyckades med SHA1 på existerande fil\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML-konfigurationsfil SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Misslyckades med att tolka XML-konfigurationsfilen %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Värd ”%s” har adress ”%s”\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Värd ”%s” har UserGroup ”%s”\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Värd ”%s” inte listad i konfiguration, behandlar som rått värdnamn\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Misslyckades med att skicka ”%s” till miniprogrammet ykneo-oath: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ogiltigt kort svar till %s från miniprogrammet ykneo-oath\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Misslyckades med svar till ”%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "välj kommando för miniprogram" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Okänt svar från miniprogrammet ykneo-oath\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Hitta miniprogrammet ykneo-oath v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN krävs för miniprogrammet Yubikey OATH" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Misslyckades med att beräkna Yubikey olåst svar\n" #: yubikey.c:274 msgid "unlock command" msgstr "låsa upp-kommando" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Provar teckentrunkerad PBKBF2-variant av Yubikey PIN\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Misslyckades med att etablera PC/SC-kontext: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Etablerade PC/SC-kontext\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Misslyckades med att fråga läslista: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Misslyckades med att ansluta till PC-/SC-läsare ”%s”: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Anslöt PC-/SC-läsare ”%s”\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Misslyckades med att erhålla exklusiv åtkomst till läsaren ”%s”: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "lista nyckelkommando" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Fann %s/%s nyckel ”%s” på ”%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "Token ”%s” fanns inte på Yubikey ”%s”. Letar efter annan Yubikey…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server förkastar Yubikey-token, växlar till manuellt angiven\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Genererar Yubikey-tokenkod\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Misslyckades med att erhålla exklusiv åtkomst till Yubi %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "kommandot beräkna" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Okänt svar från Yubikey under generering av tokenkod\n" openconnect-8.20/po/da.po0000644000076400007640000053330314204456067017111 0ustar00dwoodhoudwoodhou00000000000000# Danish translation for network-manager-openconnect. # Copyright (C) 2018 og nedenstående oversættere. # This file is distributed under the same license as the network-manager-openconnect package. # Mads Bille Lundby , 2009. # Kim Iskov , 2010. # Joe Hansen , 2011, 2012. # Alan Mortensen , 2017-19. # scootergrisen, 2020-2021. # # Using -> Anvender (for at undgå forvirring om Bruger er navne- eller udsagnsord) # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-04-29 00:00+0200\n" "Last-Translator: scootergrisen\n" "Language-Team: Danish \n" "Language: da\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Ugyldig cookie “%s”\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Uventet %d resultat fra server\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Tildeling mislykkedes\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kort pakke modtaget (%d byte)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "Modtog data-pakke på %d byte\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL skrev for få byte! Bad om %d, sendte %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP rekey forfalden\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Genforhandling mislykkedes; forsøger ny-tunnel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sender ukomprimeret datapakke på %d byte\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Forsøg ny DTLS-forbindelse\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Modtog DTLS-pakke 0x%02x på %d byte\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS rekey forfalden\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS-genforhandling mislykkedes; genopretter forbindelse.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection registrerede død modpart!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Kunne ikke sende DPD-anmodning; forvent afbrydelse\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Sendte DTLS-pakke på %d byte; DTLS-send returnerede %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Udlogning mislykkedes.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Udlogning lykkedes.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "Destinationens formularfelt %s blev angivet; antager at SAML %s-godkendelse " "er færdig.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "SAML %s-godkendelse kræves via %s\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "SAML %s-godkendelse kræves via eksternt script.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "Når SAML-godkendelse er færdig, så angiv destinationens formularfelt ved at " "tilføje :field_name til login-URL.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Indtast brugernavn og adgangskode" #: auth-globalprotect.c:159 msgid "Username" msgstr "Brugernavn" #: auth-globalprotect.c:174 msgid "Password" msgstr "Adgangskode" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Udfordring: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "GlobalProtect-login returnerede uventet argumentværdi arg[%d]=%s\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect-login returnerede %s=%s (forventede %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect-login returnerede tom eller manglende %s\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect-login returnerede %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Rapportér venligst de %d uventede værdier oven for (hvoraf %d er fatale) til " "\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Vælg GlobalProtect-gateway." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "GATEWAY:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Ignorerer portalens HIP-rapporteringsinterval (%d minutter), fordi " "intervallet allerede er indstillet til %d minutter.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Portalen indstillede HIP-rapporteringsinterval til %d minutter).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d tilgængelige gatewayservere:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "GlobalProtect-portalkonfiguration viser ikke nogle gatewayservere.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Kunne ikke danne OTP-symbolkode; deaktiverer symbol\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Serveren er hverken en GlobalProtect-portal eller -gateway.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ignorerer ukendt indsend-element “%s” i formular\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ignorerer ukendt inputtype “%s” i formular\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Kasserer duplikeret indstilling “%s”\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Kan ikke håndtere formularmetode=“%s”, handling=“%s”\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Ukendt tekstområdefelt: “%s”\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Kunne ikke allokere hukommelse til kommunikation med TNCC\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "Kunne ikke sende kommando til TNCC\n" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "Understøttelse af TNCC i Windows er endnu ikke implementeret\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Ingen DSPREAUTH-cookie; forsøger ikke TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "Prøver at køre TNCC-/værtstjekker-trojanscriptet “%s”.\n" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Kunne ikke køre TNCC-script %s: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Sendte start; venter på svar fra TNCC\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Kunne ikke læse svar fra TNCC\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Modtog mislykket %s-svar fra TNCC\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "TNCC-svar 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "TNNC-svarets anden linje: “%s”\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Fik ny DSPREAUTH-cookie fra TNCC: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "Fik reauth-interval fra TNCC: %d sekunder\n" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "Uventet linje, som ikke er tom, fra TNNC efter DSPREAUTH-cookie: “%s”\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "For mange linjer som ikke er tomme fra TNCC efter DSPREAUTH-cookie\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Kunne ikke fortolke HTML-dokument\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Kunne ikke finde eller fortolke webformular på loginside\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "Stødte på formular uden “name” eller “id”\n" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" "Formularhandling (%s) indikerer sandsynligvis at TNCC/værtstjekker " "mislykkedes.\n" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "Ukendt formular (navn “%s”, id “%s”)\n" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Dumper ukendt HTML-formular:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Formularvalg har intet navn\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "navnet %s er ikke input\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Ingen inputtype i formular\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Intet inputnavn i formular\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Ukendt inputtype %s i formular\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Tomt svar fra serveren\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Kunne ikke fortolke serverens svar\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Svaret var: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Modtog , selvom det ikke forventedes.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML-svar har ingen “auth”-knude\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Bad om adgangskode, men “--no-passwd” angivet\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Downloader ikke XML-profil, fordi SHA1 allerede matcher\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Kunne ikke åbne HTTPS-forbindelse til %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Kunne ikke sende GET-anmodning for ny konfiguration\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloadet konfigurationsfil matchede ikke tilsigtet SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Downloadede ny XML-profil\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Fejl: Kørsel af “Cisco Secure Desktop trojan” er endnu ikke understøttet på " "denne platform.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Kunne ikke indstille gid %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Kunne ikke angive grupper til %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Kunne ikke indstille uid %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Ugyldigt bruger-uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Kunne ikke skifte til CSD-hjemmemappe “%s”: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Fejl: Serveren bad os om at køre CSD-værtsskanning.\n" "Du skal angive et passende argument til --csd-wrapper.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Fejl: Serveren bad os om at downloade og køre en “Cisco Secure Desktop " "trojan”.\n" "Af sikkerhedsgrunde er denne funktion som standard deaktiveret, så du vil " "måske aktivere den.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Den midlertidige mappe “%s” er skrivebeskyttet: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Kunne ikke åbne midlertidig CSD-scriptfil: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Kunne ikke skrive midlertidig CSD-scriptfil: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "Prøver at køre CSD-trojanscriptet “%s”.\n" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "CSD-scriptet “%s” afsluttede unormalt\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "CSD-scriptet “%s” returnerede status som ikke er nul:%d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Godkendelse kan mislykkes. Hvis dit script ikke returnerer nul, så ret det.\n" "Fremtidige versioner af openconnect vil afbryde ved denne fejl.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "CSD-scriptet “%s” blev gennemført.\n" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Advarsel: Du kører usikker CSD-kode med administratorrettigheder (root)\n" "\t Brug kommandolinjetilvalget “--csd-user”\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Kunne ikke køre CSD-scriptet %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Ukendt svar fra serveren\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Serveren bad om SSL-klientcertifikat, efter en var leveret\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Serveren bad om SSL-klientcertifikat; der var ikke konfigureret noget\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST aktiveret\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "Kunne ikke hente CSD-stub. Behandler alligevel med CSD-omslagsscript.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Opdaterer %s efter 1 sekund …\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(fejl 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Der opstod en fejl under beskrivelsen af en anden fejl!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "FEJL: Kan ikke initialisere sokler\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITISK FEJL: DTLS-hovedhemmelighed er ikke initialiseret. Rapportér " "venligst dette.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Der opstod en fejl under oprettelse af HTTPS CONNECT-anmodning\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Der opstod en fejl under indhentning af HTTPS-svar\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-tjeneste utilgængelig; årsag: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Modtog upassende HTTP CONNECT-svar: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Modtog CONNECT-svar: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Ingen hukommelse til indstillinger\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-id er ikke 64 tegn; er: “%s”\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-id er ugyldig; er: “%s”\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Ukendt DTLS-Content-kodning %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Ukendt CSTP-Content-kodning %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Ingen MTU modtaget. Afbryder\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP forbundet. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Opsætning af komprimering mislykkedes\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Tildeling af buffer til pakning mislykkedes\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "udpakning mislykkedes\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS-dekomprimering mislykkedes: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZS-dekomprimering mislykkedes\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Ukendt komprimeringstype %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Modtog %s komprimeret datapakke på %d byte (var %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "pakning mislykkedes %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Uventet pakkelængde. SSL_read returnerede %d, men pakken er\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Modtog CSTP DPD-anmodning\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Modtog CSTP DPD-svar\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Modtog CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Modtog ukomprimeret datapakke på %d byte\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Modtog serverafbrydelse: %02x “%s”\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Modtog serverafbrydelse\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Komprimeret pakke modtaget i !deflate-tilstand\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "modtog serverafbrydelsespakke\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Ukendt pakke %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection registrerede død modpart!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Genoprettelse af forbindelse mislykkedes\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Sender komprimeret datapakke på %d byte (var %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE-pakke: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "Kort skriv i oNCP-forhandling\n" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Forsøger Digest-godkendelse til proxy\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Forsøger Digest-godkendelse til serveren “%s”\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DLTS-forbindelse forsøgt med en eksisterende fd\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Ingen DTLS-adresse\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Serveren tilbød ingen mulighed for en DTLS-krypteringsalgoritme\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Ingen DTLS når forbundet gennem proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS initialiseret. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Ukendt pakke (længde %d) modtaget: %02x %02x %02x %02x …\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS denne: %d, TOS seneste: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Modtog DTLS DPD-anmodning\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Kunne ikke sende DPD-svar; forvent afbrydelse\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Modtog DTLS DPD-svar\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Modtog DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Modtog komprimeret DTLS-pakke, selvom komprimering ikke er aktiveret\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Ukendt DTLS-pakketype %02x, længde %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Kunne ikke sende keepalive-anmodning; forvent afbrydelse\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "Påbegynder MTU-registrering (min=%d, maks=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Sender MTU DPD-sonde (%u byte)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Kunne ikke sende DPD-anmodning (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "For lang tid i MTU-opdagelsesløkke; antager forhandlet MTU.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "For lang tid i MTU-opdagelsesløkke; MTU sat til %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Modtog uventet pakke (%.2x) i MTU-registrering; springer over.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "Intet svar til størrelsen %u efter %d forsøg; deklarations-MTU er %u\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Modtagelse af DPD-anmodning mislykkedes (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Modtog MTU DPD-sonde (%u byte)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Opdagede MTU af %d byte (var %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Ingen ændring i MTU efter registrering (var %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Accepterer forventet ESP-pakke med sekvens %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Accepterer senere-end-forventet ESP-pakke med sekvens %u (forventede " "%)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Forkaster gammel ESP-pakke med sekvens %u (forventede %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "Tolererer gammel ESP-pakke med sekvens %u (forventede %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Forkaster genafspillet ESP-pakke med sekvens %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "Tolererer genafspillet ESP-pakke med sekvens %u\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Accepterer ude-af-rækkefølge ESP-pakker med sekvens %u (forventede " "%)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametre for %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP-krypteringstype %s nøgle 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP-godkendelsestype %s nøgle 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "indgående" #: esp.c:94 msgid "outgoing" msgstr "udgående" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Send ESP-sonder\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "Modtog ESP-pakke fra gammel SPI 0x%x, sekvens %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Modtog ESP-pakke med ugyldig SPI 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Ugyldig udfyldningslængde %02x i ESP\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Ugyldig udfyldningsbyte i ESP\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP-session oprettet med server\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Kunne ikke allokere hukommelse til dekryptering af ESP-pakke\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO-dekomprimering af ESP-pakke mislykkedes\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO dekomprimerede %d byte til %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Rekey ikke implementeret for ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP opdagede død modpart\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Send ESP-sonde for DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Keepalive ikke implementeret for ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Genindsættelse i kø mislykkedes ESP-send: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Kunne ikke sende ESP-pakke: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Kunne ikke generere tilfældige nøgler til ESP\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Kunne ikke generere indledende IV til ESP\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "Ukendt formular-id “%s” (forventede “auth_form”)\n" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "Kunne ikke fortolke svar fra F5-profil\n" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "Kunne ikke finde VPN-profilparametre\n" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "Kunne ikke fortolke svar fra F5-tilvalg\n" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "Ventetid er %d minutter\n" #: f5.c:384 msgid "Got default routes\n" msgstr "Modtog standardrute\n" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "Modtog SplitTunneling0-værdien %d\n" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "Modtog DNS-serveren %s\n" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "Modtog WINS-/NBNS-serveren %s\n" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "Modtog søgedomænet %s\n" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "Modtog opdelt ekskludér-rute %s\n" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "Modtog opdelt inkludér-rute %s\n" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "DTLS er aktiveret på port %d\n" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "Kunne ikke finde VPN-tilvalg\n" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "Modtog forældet IP-adresse %s\n" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "Modtog IPv6-adresse %s\n" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "Modtog profilparametrene “%s”\n" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "Modtog ipv4 %d ipv6 %d hdlc %d ur_Z “%s”\n" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "Fejl ved etablering af F5-forbindelse\n" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "Modtog loginrealmet “%s”\n" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Ventetid er %d minutter.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "Rapporteret platform er %s\n" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "Modtog IPv%d DNS-serveren %s\n" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "Ingen cookie ved navn SVPNCOOKIE.\n" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "Modtog ikke forventet svrhello-svar.\n" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "svrhello-status var “%.*s” fremfor “ok”\n" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "Udskyder DTLS-genoptagelse, indtil CSTP genererer en PSK\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Kunne ikke generere DTLS-prioritetsstreng\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Kunne ikke angive DTLS-prioritet: “%s”: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Kunne ikke allokere legitimationsoplysninger: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Kunne ikke generere DTLS-nøgle: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Kunne ikke angive DTLS-nøgle: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Kunne ikke angive DTLS PSK-legitimationsoplysninger: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Ukendte DTLS-parametre til anmodet CipherSuite “%s”\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Kunne ikke angive DTLS-sessionsparametre: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "GnuTLS brugte %d ClientHello random-byte; det burde aldrig ske\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS sendte usikker ClientHello random. Opgrader til 3.6.13 eller nyere.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Kunne ikke initialisere DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Peer MTU %d for lille til at tillade DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU reduceret til %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "Genoptagelse af DTLS-session mislykkedes; muligt MITM-angreb. Deaktiverer " "DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Kunne ikke angive DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Etablerede DTLS-forbindelse (med brug af GnuTLS). Ciphersuite %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS-forbindelseskomprimering med brug af %s.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS-genforhandling overskred tidsgrænsen\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS-forhandling mislykkedes: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Forhindrer en firewall dig i at sende UDP-pakker?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Kunne ikke initialisere ESP-krypteringsalgoritme: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Kunne ikke initialisere ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Kunne ikke beregne ESP-pakkers HMAC: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Modtog ESP-pakke med ugyldig HMAC\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Dekryptering af ESP-pakke mislykkedes: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Kunne ikke kryptere ESP-pakke: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "Mislykket select() for TLS" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "TLS-/DTLS-skrivning afbrudt\n" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "Kunne ikke skrive til TLS-/DTLS-sokkel: %s\n" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "Mislykket select() for TLS/DTLS" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "TLS-/DTLS-læsning afbrudt\n" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "TLS-/DTLS-sokkel lukkede ikke ordentligt\n" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "Kunne ikke læse fra TLS-/DTLS-sokkel: %s\n" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "Forsøgte at læse fra ikkeeksisterende %s-session\n" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "Læsefejl på %s-session: %s\n" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "Skrivefejl på %s-session: %s\n" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Kunne ikke uddrage certifikatets udløbstidspunkt\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Klientcertifikatet udløb den" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Klientcertifikatet udløber snart den" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Kunne ikke indlæse elementet “%s” fra nøglelageret: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Kunne ikke åbne nøgle-/certifikatfilen %s: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Kunne ikke køre stat på nøgle-/certifikatfilen %s: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Kunne ikke allokere certifikatbuffer\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Kunne ikke indlæse certifikat i hukommelsen: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Kunne ikke indstille PKCS#12-datastruktur: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Kunne ikke dekryptere PKCS#12-certifikatfilen\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Indtast PKCS#12-adgangsfrase:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Kunne ikke behandle PKCS#12-fil: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Kunne ikke indlæse PKCS#12-certifikatet: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Kunne ikke initialisere MD5-hash: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Fejl i MD5-hash: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Manglende DEK-info: header fra OpenSSL-krypteret nøgle\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Kan ikke bestemme PEM-krypteringstype\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Ikke-understøttet PEM-krypteringstype: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Ugyldig “salt” i krypteret PEM-fil\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Der opstod en fejl under base64-afkodning af krypteret PEM-fil: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Den krypterede PEM-fil er for kort\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Kunne ikke initialisere krypteringsalgoritme til dekryptering af PEM-fil: " "%s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Kunne ikke dekryptere PEM-nøgle: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Dekryptering af PEM-nøgle mislykkedes\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Indtast PEM-adgangsfrase:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Denne binærfil er bygget uden understøttelse af systemnøgle\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Denne binærfil er bygget uden understøttelse af PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Anvender PKCS#11-certifikatet %s\n" # Bruger ikke velegnet, da det kan fortolkes som navneord (user) #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Anvender systemcertifikatet %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Der opstod en fejl under indlæsning af certifikat fra PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Der opstod en fejl under indlæsning af systemcertifikat: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Anvender certifikatfilen %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11-filen indeholdt ikke noget certifikat\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Fandt ikke et certifikat i filen" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Indlæsning af certifikat mislykkedes: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Anvender systemnøglen %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" "Der opstod en fejl under initialisering af den private nøgles struktur: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Der opstod en fejl under import af systemnøglen %s: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Prøver PKCS#11-nøgles URL %s\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" "Der opstod en fejl under initialisering af PKCS#11-nøglens struktur: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Der opstod en fejl under import af PKCS#11's URL %s: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Anvender PKCS#11-nøglen %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Der opstod en fejl under import af PKCS#11-nøgle ind i privat nøglestruktur: " "%s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Anvender privat nøglefil %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Denne version af OpenConnect blev bygget uden understøttelse af TPM\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Denne version af OpenConnect blev bygget uden understøttelse af TPM2\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Kunne ikke fortolke PEM-fil\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Kunne ikke indlæse PKCS#11 privat nøgle: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Kunne ikke indlæse privat nøgle som PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Kunne ikke dekryptere PKCS#8-certifikatfil\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Kunne ikke bestemme typen af den private nøgle %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Indtast PKCS#8-adgangsfrase:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Kunne ikke få nøgle-id: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Der opstod en fejl under signering af testdata med privat nøgle: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Der opstod en fejl under validering af signatur mod certifikatet: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Fandt ikke et SSL-certifikat, der matcher privat nøgle\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Anvender klientcertifikatet “%s”\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Kunne ikke allokere hukommelse til certifikat\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Fik ingen udsteder fra PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Fik næste CA “%s” fra PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Kunne ikke allokere hukommelse til understøttelse af certifikater\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Tilføjer understøttende CA “%s”\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Import af X509-certifikatet mislykkedes: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Angivelse af PKCS#11-certifikatet mislykkedes: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Angivelse af certikattilbagekaldelsesliste mislykkedes: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Det lader ikke til, at den private nøgle understøtter RSA-PPS. Deaktiverer " "TLSv1.3\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Angivelse af certifikat mislykkedes: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server anviste ikke et certifikat\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Der opstod en fejl under sammenligning af serverens certifikat ved " "genforhandling: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Server frembød forskellige certifikater ved genforhandling\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Server frembød ens certifikater ved genforhandling\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Der opstod en fejl initialisering af X509-certifikatstrukturen\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Der opstod en fejl under import af serverens certifikat\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Kunne ikke beregne servercertifikatets hash\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Der opstod en fejl mens serverens certificeringsstatus blev tjekket\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "certifikat tilbagekaldt" #: gnutls.c:2098 msgid "signer not found" msgstr "underskriveren blev ikke fundet" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "underskriveren er ikke et CA-certifikat" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "usikker algoritme" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "certifikat endnu ikke aktiveret" #: gnutls.c:2106 msgid "certificate expired" msgstr "certifikat udløbet" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "bekræftelse af signatur mislykkedes" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certifikat matcher ikke værtsnavn" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Bekræftelse af servercertifikat mislykkedes: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Kunne ikke allokere hukommelse til CA-filcertifikater\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Kunne ikke læse certifikater i CA-filen: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Kunne ikke åbne CA-filen “%s”: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Indlæsning af certifikat mislykkedes. Afbryder.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "Kunne ikke indstille GnuTLS-prioritetsstreng (“%s”): %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL-forhandling med %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL-forbindelse annulleret\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Fejl i SSL-forbindelse: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS ikke-fatal returnering under forhandling: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "Forbundet til HTTPS på %s med ciphersuite %s\n" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "Genforhandlede SSL på %s med ciphersuite %s\n" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN påkrævet til %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Forkert PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Dette er sidste forsøg, før der låses!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Kun nogle få forsøg tilbage, før der låses!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Indtast PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "OATH HMAC-algoritmen understøttes ikke\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Kunne ikke beregne OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "Etablerede EAP-TTLS-session\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM-underskrivningsfunktion kaldet for %d byte.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Kunne ikke oprette TPM-hashelement: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Kunne ikke angive værdi i TPM-hashelement: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM-hashsignatur mislykkedes: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Der opstod en fejl under afkodning af TSS-nøgleblob: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Fejl i TSS-nøgleblob\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Kunne ikke oprette TPM-kontekst: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Kunne ikke forbinde TPM-kontekst: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Kunne ikke indlæse TPM SRK-nøgle: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Kunne ikke indlæse TPM SRK-politikelement: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Kunne ikke angive TPM PIN: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Kunne ikke indlæse TPM-nøgleblob: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Indtast TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Kunne ikke oprette nøglepolitikelement: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Kunne ikke tildele politik til nøgle: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Indtast TPM-nøgles PIN:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Kunne ikke angive nøgles PIN: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Ukendt TPM2 EC-digeststørrelse %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "Der opstod en fejl under afkodning af TSS2-nøgleblob: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "Kunne ikke oprette ASN.1-type for TPM2: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "Kunne ikke afkode TPM2-nøgle ASN.1: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "Kunne ikke fortolke OID for TPM2-nøgletype: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "TPM2-nøgletypen har en ukendt OID %s og ikke %s\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "Kunne ikke fortolke TPM2-ophavsnøgle: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "Kunne ikke fortolke element for offentlig TPM2-nøgle\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "Kunne ikke fortolke element for privat TPM2-nøgle\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "Fortolkede TPM2-nøgle med ophavet %x, emptyauth %d\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2-digest for stort: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "TPM2-adgangskode for lang; afkorter\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "ejer" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" # MS har godkendelse og påtegnelse #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "godkendelse" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Opretter primær nøgle under hierarkiet %s.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Indtast adgangskode for TPM2-hierarkiet %s:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary-ejergodkendelse mislykkedes\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Etablerer forbindelse med TPM.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" "TPM2 var allerede startet op. Derfor mislykkedes falsk positiv i tpm2tss-" "loggen.\n" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic mislykkedes for håndtaget 0x%x: 0x%x\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "Indtast adgangskode for TPM2-ophavsnøgle:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "Indlæser TPM2-nøgleblob, ophav %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2 Esys_Load auth mislykkedes\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "TPM2 Esys_FlushContext for genereret primær mislykkedes: 0x%x\n" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "Indtast TPM2-nøgles adgangskode:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt-godkendelse mislykkedes\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2 kunne ikke generere RSA-signatur: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "TPM2 EC-underskrivningsfunktion kaldet for %d byte.\n" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign-godkendelse mislykkedes\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "Ugyldigt TPM2-ophavshåndtag 0x%08x\n" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "Kunne ikke importere data for privat TPM2-nøgle: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "Kunne ikke importere data for offentlig TPM2-nøgle: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Ikke-understøttet TPM2-nøgletype %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2-handlingen %s mislykkedes (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "Udfordring: %s\n" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "Svaret var: %s\n" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Ikke en standardsti for SSL-tunnel: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tunneltimeout (interval for ny tildeling af nøgle) er %d minutter.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Gatewayadressen i konfigurations-XML'en (%s) afviger fra den eksterne " "gatewayadresse (%s).\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect-konfigurationen sendte ipsec-mode=%s (forventede esp-tunnel)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Ignorerer ESP-nøgler, da understøttelse af ESP ikke er tilgængelig i denne " "kompilering\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Ukendt GlobalProtect-konfigurationstag <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP deaktiveret" #: gpst.c:661 msgid "No ESP keys received" msgstr "Ingen ESP-nøgler modtaget" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "Understøttelse af ESP er ikke tilgængelig i denne kompilering" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "Ingen MTU modtaget. Beregnede %d for %s%s\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Forbinder til HTTPS-tunnelslutpunkt …\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "Der opstod en fejl under indhentning af HTTPS-svar fra GET-tunnel.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "Gateway afbrudt umiddelbart efter GET-tunnelanmodning.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "ADVARSEL: Serveren bad os om at indsende HIP-rapport med md5sum %s.\n" " VPN-forbindelsen kan være deaktiveret eller begrænset, hvis ikke HIP-" "rapporten indsendes.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Kørsel af sciptet til HIP-rapportindsendelse er dog endnu ikke understøttet " "på denne platform." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "Du skal angive argumentet --csd-wrapper med scriptet til HIP-" "rapportindsendelse." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Fejl: Kørsel af “HIP-rapport”-scriptet er endnu ikke understøttet på denne " "platform.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "Prøver at køre HIP-trojanscriptet “%s”.\n" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "HIP-scriptet “%s” afsluttede unormalt\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "HIP-scriptet “%s” returnerede status som ikke er nul:%d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "Indsendelse af HIP-rapporten mislykkedes.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "HIP-rapporten blev indsendt.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "Kunne ikke køre HIP-scriptet %s\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Gatewayen oplyser, at indsendelse af HIP-rapporten er nødvendig.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" "Gatewayen oplyser, at indsendelse af HIP-rapporten ikke er nødvendig.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP-tunnel forbundet. Afslutter HTTPS-hovedløkke.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "Kunne ikke tilslutte ESP-tunnel. Bruger HTTPS i stedet.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Fejl ved modtagelse af pakke: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Uventet pakkelængde. SSL_read returnerede %d (inklusive 16 byte i header), " "men headers payload_len er %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "Modtog GPST DPD/keepalive-svar\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "Forventede 0000000000000000 som de sidste 8 byte i DPD/keepalive-pakkens " "header, men fik:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "Modtog IPv%d-datapakke på %d byte\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Forventede 0100000000000000 som de sidste 8 byte i datapakkens header, men " "fik:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Ukendt pakke. Headerdump følger:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "GlobalProtect HIP-tjek forfalden\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "HIP-tjek eller -rapport mislykkedes\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect rekey forfalden\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Dead Peer Detection registrerede død peer!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "Send GPST DPD/keepalive-anmodning\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "Sender IPv%d-datapakke på %d byte\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "Kunne ikke sende ESP-sonde\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Der opstod en fejl under import af GSSAPI-navn til bekræftelse:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Der opstod en fejl under generering af GSSAPI-svar:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Forsøger GSSAPI-godkendelse til proxy\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Forsøger GSSAPI-godkendelse til serveren “%s”\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI-godkendelse gennemført\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI-symbol for stort (%zd byte)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Sender GSSAPI-symbol på %zu byte\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Kunne ikke sende GSSAPI-godkendelsessymbol til proxy: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Modtog ikke GSSAPI-godkendelsessymbol fra proxy: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS-server meldte om fejl i GSSAPI-kontekst\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Ukendt GSSAPI-statussvar (0x%02x) fra SOCKS-server\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Modtog GSSAPI-symbol på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Sender GSSAPI-beskyttelsesforhandling på %zu byte\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Kunne ikke sende GSSAPI-beskyttelsessvar til proxy: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Modtog ikke GSSAPI-beskyttelsessvar fra proxy: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Modtog GSSAPI-beskyttelsessvar på %zu byte: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Ugyldigt GSSAPI-beskyttelsessvar fra proxy (%zu byte)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS-proxy kræver beskedintegritet, hvilket ikke understøttes\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS-proxy kræver beskedfortrolighed, hvilket ikke understøttes\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS-proxy kræver beskyttelse af ukendt type 0x%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Forsøger basal HTTP-godkendelse til proxy\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Forsøger basal HTTP-godkendelse til serveren “%s”\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Forsøger HTTP Bearer-godkendelse til serveren “%s”\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" "Denne version af OpenConnect blev bygget uden understøttelse af GSSAPI\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "Proxy kræver basal godkendelse, hvilket som standard er deaktiveret\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Serveren “%s” kræver basal godkendelse, hvilket som standard er deaktiveret\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Der er ikke flere godkendelsesmetoder, som kan afprøves\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Ingen hukommelse til allokering af cookier\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "Fejl under læsning af HTTP-svar: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Kunne ikke fortolke HTTP-svaret “%s”\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Modtog HTTP-svar: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignorerer ukendt HTTP-svarlinje “%s”\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ugyldig cookie tilbudt: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Bekræftelse af SSL-certifikat mislykkedes\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Størrelsen på svarets indhold er negativt (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Ukendt overførselskodning: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP-indhold %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Der opstod en fejl under læsning af HTTP-svarindhold\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Der opstod en fejl i forsøget på at hente fragmentheader\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "Længde på HTTP-bid er negativ (%ld)\n" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "Længde på HTTP-bid er for stor (%ld)\n" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Der opstod en fejl under forsøget på at hente HTTP-svarets tekst\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Kan ikke modtage HTTP 1.0-indhold uden afsluttende forbindelse\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Kunne ikke fortolke omdirigeret URL “%s”: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Kan ikke følge omdirigering til ikke-https-URL “%s”\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allokering af ny sti til relativ omdirigering mislykkedes: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "HTTPS-sokkel blevet lukket af modpart — åbner igen\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "Prøver mislykket %s-anmodning igen på ny forbindelse\n" #: http.c:1002 msgid "request granted" msgstr "anmodning imødekommet" #: http.c:1003 msgid "general failure" msgstr "generel fejl" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "forbindelse ikke tilladt af regelsæt" #: http.c:1005 msgid "network unreachable" msgstr "netværket er utilgængeligt" #: http.c:1006 msgid "host unreachable" msgstr "værten er utilgængelig" #: http.c:1007 msgid "connection refused by destination host" msgstr "forbindelse nægtet af destinationsvært" #: http.c:1008 msgid "TTL expired" msgstr "TTL udløbet" #: http.c:1009 msgid "command not supported / protocol error" msgstr "kommando ikke understøttet/protokolfejl" #: http.c:1010 msgid "address type not supported" msgstr "adressetype ikke understøttet" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "SOSCKS-server bad om brugernavn/adgangskode, men vi har ikke nogen\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "Brugernavn og adgangskode til SOCKS-godkendelse skal være < 255 byte\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under skrivning af godkendelsesanmodning til SOCKS-proxy: " "%s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under læsning af godkendelsessvar fra SOCKS-proxy: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Uventet godkendelsessvar fra SOCKS-proxy: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Godkendt til SOCKS-server med brug af adgangskode\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Adgangskodegodkendelse til SOCKS-server mislykkedes\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-server bad om GSSAPI-godkendelse\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-server bad om adgangskodegodkendelse\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-server kræver godkendelse\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-server bad om ukendt godkendelsestype %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Beder om SOCKS-proxyforbindelse til %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under skrivning af forbindelsesanmodning til SOCKS-proxy: " "%s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" "Der opstod en fejl under læsning af forbindelsesanmodning fra SOCKS-proxy: " "%s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Uventet forbindelsesanmodning fra SOCKS-proxy: %02x %02x …\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS-proxyfejl %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS-proxyfejl %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Uventet adressetype %02x i SOCKS-forbindelsessvar\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Anmoder om HTTP-proxyforbindelse til %s: %d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Afsending af proxyanmodning mislykkedes: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Proxy CONNECT-anmodning mislykkedes: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Ukendt proxytype “%s”\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Kunne ikke fortolke proxyen “%s”\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Kun http- eller socks(5)-proxyer understøttes\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect eller openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibel med Cisco AnyConnect SSL VPN såvel som ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Kompatibel med Juniper Network Connect" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Kompatibel med Palo Alto Networks (PAN) GlobalProtect SSL VPN" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Kompatibel med Pulse Connect Secure SSL VPN" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "F5 BIG-IP SSL VPN" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "Kompatibel med F5 BIG-IP SSL VPN" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "Kompatibel med FortiGate SSL VPN" #: library.c:244 msgid "PPP over TLS" msgstr "PPP over TLS" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Ukendt VPN-protokol “%s”\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Bygget mod SSL-bibliotek uden understøttelse af Cisco DTLS\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Ingen IP-adresse modtaget. Afbryder\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" "Genoprettelse af forbindelse gav en anden, forældet IP-adresse (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Genoprettelse af forbindelse gav en anden, forældet IP-netmaske (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Genoprettelse af forbindelse gav en anden IPv6-adresse (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Genoprettelse af forbindelse gav en anden IPv6-netmaske (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6-konfiguration modtaget, men MTU %d er for lille.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Kunne ikke fortolke server-URL “%s”\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Kun https:// er tilladt til server-URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Ukendt certifikathash: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "Det angivne fingeraftryks størrelse er mindre end det mindst tilladelige " "(%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Ingen formularhåndtering; kan ikke godkende.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() mislykkedes: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Fatal fejl i håndtering af kommandolinje\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() mislykkedes: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() mislykkedes: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Der opstod en fejl under konverteringen af konsolinput: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allokeringsfejl for streng fra stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Hjælp til OpenConnect kan findes på hjemmesiden\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "Anvender %s. Tilgængelige funktioner:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL-maskine ikke tilgængelig" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "ADVARSEL: Denne binærfil mangler understøttelse af DTLS og/eller ESP. " "Ydeevnen vil være negativt påvirket.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Understøttede protokoller:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (standard)" #: main.c:743 msgid "Set VPN protocol" msgstr "Angiv VPN-protokol" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Kan ikke behandle den eksekverbare sti “%s”" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Allokering af vpnc-scriptsti mislykkedes\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Tilsidesæt værtsnavn “%s” til “%s”\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Anvendelse: openconnect [tilvalg] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Åben klient til flere VPN-protokoller, version %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Læs tilvalg fra konfigurationsfil" #: main.c:914 msgid "Report version number" msgstr "Rapportér versionsnummer" #: main.c:915 msgid "Display help text" msgstr "Vis hjælpetekst" #: main.c:919 msgid "Authentication" msgstr "Godkendelse" #: main.c:920 msgid "Set login username" msgstr "Angiv loginbrugernavn" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Deaktivér godkendelse med adgangskode/SecurID" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Forvent ikke brugerinput; afslut hvis det kræves" #: main.c:923 msgid "Read password from standard input" msgstr "Læs adgangskode fra standardinput" #: main.c:924 msgid "Choose authentication login selection" msgstr "Vælg godkendelsesloginudvælgelse" #: main.c:925 msgid "Provide authentication form responses" msgstr "Angiv svar til godkendelsesformular" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Anvend SSL-klientcertifikat CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Anvend SSL privat nøglefil NØGLE" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Advar når certifikatlevetiden < DAGE" #: main.c:929 msgid "Set login usergroup" msgstr "Angiv loginbrugergruppe" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Angiv nøgleadgangsfrase eller TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Nøgleadgangsfrase er filsystemets fsid" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Type af softwaresymbol: rsa, totp, hotp eller oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Softwaresymbols hemmelighed eller oidc-symbol" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(BEMÆRK: libstoken (RSA SecurID) er deaktiveret i denne kompilering)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(BEMÆRK: Yubikey OATH er deaktiveret i denne kompilering)" #: main.c:941 msgid "Server validation" msgstr "Servervalidering" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Deaktivér systemets standardcertifikatmyndigheder" #: main.c:944 msgid "Cert file for server verification" msgstr "Certifikatfil til bekræftelse af serveren" #: main.c:946 msgid "Internet connectivity" msgstr "Internetforbindelse" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Angiv proxyserver" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Angiv proxys godkendelsesmetoder" #: main.c:950 msgid "Disable proxy" msgstr "Deaktivér proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Anvend libproxy til automatisk konfiguration af proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(BEMÆRK: libproxy er deaktiveret i denne kompilering)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Tidsgrænse for forsøg på etablering af forbindelse igen (i sekunder)" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Anvend IP når der forbindes til VÆRT" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "Kopiér feltet TOS/TCLASS ind i DTLS- og ESP-pakkerne" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Angiv lokalport for DTLS- og ESP-datagrammer" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Godkendelse (to-trins)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Anvend godkendelsescookie COOKIE" #: main.c:962 msgid "Read cookie from standard input" msgstr "Læs cookie fra standardinput" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Godkend kun og udskriv logininformation" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Hent og udskriv kun cookie; forbind ikke" #: main.c:965 msgid "Print cookie before connecting" msgstr "Udskriv cookie før forbindelse etableres" #: main.c:968 msgid "Process control" msgstr "Proceskontrol" #: main.c:969 msgid "Continue in background after startup" msgstr "Fortsæt i baggrunden efter opstart" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Skriv dæmonens PID til denne fil" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Drop rettigheder efter forbindelse er etableret" #: main.c:974 msgid "Logging (two-phase)" msgstr "Logger (to-trins)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Anvend syslog til fremgangsbeskeder" #: main.c:978 msgid "More output" msgstr "Mere output" #: main.c:979 msgid "Less output" msgstr "Mindre output" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Dump HTTP-godkendelsestrafik (forudsætter --verbose)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Foranstil tidsstempel i fremgangsbeskeder" #: main.c:983 msgid "VPN configuration script" msgstr "VPN-konfigurationsscript" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Anvend GFNAVN til tunnelgrænseflade" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Skalkommandolinje til anvendelse af et vpnc-kompatibelt konfigurationsscript" #: main.c:986 msgid "default" msgstr "standard" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Videresend trafik til “scriptprogram” og ikke til tun" #: main.c:991 msgid "Tunnel control" msgstr "Tunnelkontrol" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Spørg ikke efter IPv6-forbindelse" #: main.c:993 msgid "XML config file" msgstr "XML-konfigurationsfil" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Bed om MTU fra server (kun forældede servere)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Indikér sti-MTU til/fra server" # https://www.ietf.org/rfc/rfc3749.txt #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "Aktivér “stateful” komprimering (standard er kun “stateless”)" #: main.c:997 msgid "Disable all compression" msgstr "Deaktivér al komprimering" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Kræv perfekt videresendingshemmelighed" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Deaktivér DTLS og ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL-krypteringsalgoritme til understøttelse af DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Indstil grænse for pakkekø til LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "Information om lokalt system" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP-header User-Agent: felt" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Lokalt værtsnavn som skal annonceres til serveren" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "versionsstreng rapporteret under godkendelsen" #: main.c:1010 msgid "default:" msgstr "standard:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Udførsel af binærfil for trojaner (CSD)" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Drop rettigheder under udførsel af trojaner" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Kør SCRIPT i stedet for binærfil for trojaner" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Serverfejl" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Deaktivér genbrug af HTTP-forbindelse" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Forsøg ikke XML POST-godkendelse" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Kunne ikke allokere streng\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Kunne ikke få linje fra konfigurationsfil: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Genkendte ikke tilvalget i linje %d: “%s”\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Tilvalget “%s” tager ikke et argument i linje %d\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Tilvalget “%s” kræver et argument i linje %d\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Ugyldig bruger “%s”: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Ugyldigt bruger-id “%d”: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" "Uhåndteret autofuldførsel for tilvalget %d “--%s”. Rapportér det venligst.\n" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "i gang" #: main.c:1519 msgid "disabled" msgstr "deaktiveret" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Kunne ikke åbne “%s” til skrivning: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Fortsætter i baggrunden; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "ADVARSEL: Kan ikke angive lokalitet: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "ADVARSEL: Denne version af openconnect blev bygget uden\n" " understøttelse af iconv, men det lader til, du bruger det\n" " forældede tegnsæt “%s”. Forvent mærkværdigheder.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ADVARSEL: Denne version af openconnect er %s,\n" " men biblioteket libopenconnect er %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Kunne ikke allokere vpninfo-struktur\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Kan ikke brug tilvalget “config” inde i konfigurationsfilen\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Kan ikke åbne konfigurationsfilen “%s”: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Ugyldig komprimeringstilstand “%s”\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Kunne ikke allokere hukommelse\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Manglende kolon i tilvalget “resolve”\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d for lille\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Deaktiverer al genbrug af HTTP-forbindelse pga. tilvalget --no-http-" "keepalive.\n" "Hvis det hjælper, så rapportér det venligst til .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Tilvalget --no-cert-check var usikkert og er blevet fjernet.\n" "Fiks din servers certifikat eller brug --servercert for at have tillid til " "det.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Kølængden nul er ikke tilladt; bruger 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Ugyldig tilstand “%s” for softwaresymbol\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "ADVARSEL: Du angav %s. Det skulle ikke være nødvendigt.\n" " Rapportér venligst tilfælde, hvor en tilsidesættelse af en\n" " prioritetsstreng er nødvendig for at oprette forbindelse til\n" " en server, til .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "For mange argumenter på kommandolinjen\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Server ikke angivet\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Denne version af openconnect blev bygget uden understøttelse af libproxy\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Oprettelse af SSL-forbindelse mislykkedes\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "Opsætning af UDP mislykkedes; bruger SSL i stedet\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Intet argument til --script angivet; DNS og routing er ikke konfigurerede\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Se https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Bruger anmodede om at genoprette forbindelsen\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Sessionen afsluttet af server; afslutter.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Ukendt fejl; afslutter.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Kunne ikke åbne %s til skrivning: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Kunne ikke skrive konfiguration til %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certifikatet fra VPN-serveren “%s” kunne ikke bekræftes.\n" "Årsag: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Tilføj følgende til din kommandolinje for at have tillid til serveren i " "fremtiden:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Indtast “%s” for at acceptere, “%s” for at afbryde eller alt andet for at " "vise: " #: main.c:2464 main.c:2483 msgid "no" msgstr "nej" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ja" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Servernøglens hash: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Godkendelsesvalget “%s” matcher flere muligheder\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Godkendelsesvalget “%s” er ikke tilgængeligt\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Input fra bruger nødvendig i ikke-interaktiv tilstand\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Kunne ikke åbne symbolfil til skrivning: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Kunne ikke skrive symbol: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Blød symbol-streng er ugyldig\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "Kan ikke åbne stoken-fil\n" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Kan ikke åbne ~/.stokenrc-filen\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect blev ikke bygget med understøttelse af libstoken\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Generel fejl i libstoken\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect blev ikke bygget med understøttelse af liboath\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Generel fejl i liboath\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey-symbol blev ikke fundet\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect blev ikke bygget med understøttelse af Yubikey\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Generel Yubikey-fejl: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "Kan ikke åbne oidc-fil\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "Generel fejl i oidc-symbol\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Opsætning af tun-script mislykkedes\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Opsætning af tun-enhed mislykkedes\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Det, der foretog opkaldet, satte den på pause\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Intet at lave; sover i %d ms …\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects mislykkedes: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "Mislykket select() i hovedløkke" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() mislykkedes: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() mislykkedes: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Fejl i kommunikationen med ntlm_auth-hjælper\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Forsøger HTTP NTLM-godkendelse til proxy (single-sign-on)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "Forsøger HTTP NTLM-godkendelse til serveren “%s” (single-sign-on)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Forsøger HTTP NTLMv%d-godkendelse til proxy\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Forsøger HTTP NTLMv%d-godkendelse til serveren “%s”\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Ugyldig base32-symbolstreng\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Kunne ikke allokere hukommelse til afkodning af OATH-hemmelighed\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Denne version af OpenConnect blev bygget uden understøttelse af PSKC\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK til generering af INITIAL-symbolkode\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK til generering af NEXT-symbolkode\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server afviser det “bløde” symbol; skifter til manuel indtastning\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Genererer OATH TOTP-symbolkode\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Genererer OATH HOTP-symbolkode\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Uventet længde %d for TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Modtog MTU %d fra server\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Modtog DNS-server %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Modtog DNS-søgedomæne %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Modtog intern IP-adresse %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Modtog netmaske %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Modtog intern gatewayadresse %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Modtog opdelt inkludér-rute %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Modtog opdelt ekskludér-rute %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Modtog WINS-server %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP -kryptering: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-komprimering: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP-port: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP-nøglelevetid: %u byte\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP-nøglelevetid: %u sekunder\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP til SSL-reserve: %u sekunder\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP-genafspilningsbeskyttelse: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (udgående): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d byte af ESP-hemmeligheder\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Ukendt TLV-gruppe %d attribut %d længde %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Kunne ikke fortolke KMP-header\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Kunne ikke fortolke KMP-besked\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Fik KMP-besked %d med størrelsen %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Modtog ikke-ESP TLV'er (gruppe %d) i ESP-forhandling KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Der opstod en fejl under oprettelse af oNCP-forhandlingsanmodning\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Kort skriv i oNCP-forhandling\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Læste %d byte af SSL-post\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Uventet svar af størrelse %d efter værtsnavnspakke\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Serversvar til værtsnavnspakke er fejl 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" "Det lader til at indikere, at serveren har deaktiveret understøttelse af \n" "Junipers gamle oNCP-protokol og kun tillader forbindelser med \n" "den nyere Junos Pulse-protokol. Denne version af OpenConnect har\n" "EKSPERIMENTEL understøttelse af Pulse med --prot=pulse\n" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Ugyldig pakke venter på KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Forventede KMP-besked 301 fra server, men fik %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP-besked 301 fra server for stor (%d byte)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Fik KMP-besked 301 med længden %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Kunne ikke læse fortsættelsespostens længde\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Post på yderligere %d byte er for stor; ville lave %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Kunne ikke læse fortsættelsesposten med længde %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Læste yderligere %d byte af KMP 301-besked\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Der opstod en fejl under forhandling om ESP-nøgler\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "oNCP-forhandlingsanmodning udgående:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "ny indgående" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "ny udgående" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Læste kun 1 byte af oNCP-længdefeltet\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Serveren afsluttede forbindelsen (sessionen udløb)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Serveren afsluttede forbindelsen (årsag: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Server sendte oNCP-post med længden nul\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Indgående KMP-besked %d af størrelsen %d (fik %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "Fortsætter med at behandle KMP-besked %d, nu med størrelsen %d (fik %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Ikke-genkendt datapakke\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "Kunne ikke opsætte ESP: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Ukendt KMP-besked %d med størrelsen %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d flere byte ikke modtaget\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Pakke udgående:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Sendte kontrolpakke til aktivering af ESP\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "FEJL: %s() kaldt med ugyldig UTF-8 for argumentet “%s”\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Ude af stand til at beregne DTLS-belastningen for %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Kunne ikke generere tilfældig nøgle\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Kunne ikke oprette SSL_SESSION ASN.1 for OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL kunne ikke fortolke SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialisering af DTLSv1-sessionen mislykkedes\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Størrelsen på program-id er for stor\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK-tilbagekald\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialisering af DTLSv1 CTX mislykkedes\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Angivelse af DTLS CTX-version mislykkedes\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Kunne ikke oprette DTLS-nøgle\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Angivelse af DTLS-krypteringsalgoritmeliste mislykkedes\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "DTLS-krypteringsalgoritmen “%s” kunne ikke findes\n" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() mislykkedes\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" "Etablerede DTLS-forbindelse (med brug af OpenSSL). Ciphersuite %s-%s.\n" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Det er sandsynligvis fordi, din OpenSSL er i stykker\n" "Se http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS-forhandling mislykkedes: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Kunne ikke initialisere ESP-krypteringsalgoritme:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Kunne ikke initialisere ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Kunne ikke indstille dekrypteringskontekst for ESP-pakker:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Kunne ikke dekryptere ESP-pakke:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Kunne ikke kryptere ESP-pakke:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Kunne ikke etablere libp11 PKCS#11-kontekst:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Kunne ikke indlæse PKCS#11-leverandørmodul (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN låst\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN udløbet\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "En anden bruger er allerede logget på\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Ukendt fejl under login til PKCS#11-symbol\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Logget på til PKCS#11-pladsen “%s”\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Kunne ikke optælle certifikater i PKCS#11-pladsen “%s”\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Fandt %d certifikater i pladsen “%s”\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Kunne ikke fortolke PKCS#11-URI'en “%s”\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Kunne ikke optælle PKCS#11-pladser\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Logger på til PKCS#11-pladsen “%s”\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Kunne ikke finde PKCS#11-certifikatet “%s”\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "Indholdet af X.509-certifikatet blev ikke hentet af libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Kunne ikke optælle nøgler i PKCS#11-pladsen “%s”\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Fandt %d nøgler i pladsen “%s”\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Certifikatet har ingen offentlig nøgle\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Certifikatet matcher ikke den private nøgle\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Tjekker at EC-nøgle matcher certifikatet\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Kunne ikke allokere signaturbuffer\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Kunne ikke underskrive eksempeldata til validering af EC-nøgle\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Anvender PKCS#11-nøglen “%s”\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" "Denne version af OpenConnect blev bygget uden understøttelse af PKCS#11\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "Læsefejl på %s-session: %d\n" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "Skrivefejl på %s-session: %d\n" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Uhåndteret SSL UI-anmodningstype %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM-adgangskode for lang (%d ≥ %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Indlæsning af privat nøgle mislykkedes\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Kunne ikke installere certifikatet i OpenSLL-kontekst\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Ekstra certifikat fra %s: “%s”\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Fortolkning af PKCS#12 mislykkedes (se ovenstående fejl)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 indeholdt intet certifikat!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 indeholdt ingen privat nøgle!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Kan ikke indlæse TPM-maskine.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Kunne ikke initialisere TPM-maskine\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Kunne ikke indstille TPM SRK-adgangskode\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Kunne ikke indlæse TPM privat nøgle\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Kunne ikke åbne certifikatfilen %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Indlæsning af certifikat mislykkedes\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Kunne ikke behandle alle understøttende certifikater: Prøver alligevel …\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM-fil" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Kunne ikke oprette BIO for nøglelagerelementet “%s”\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Indlæsning af privat nøgle mislykkedes (forkert adgangsfrase?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Indlæsning af privat nøgle mislykkedes (se ovenstående fejl)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Kunne ikke indlæse X509-certifikat fra nøglelager\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Kunne ikke åbne privat nøglefil %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Kunne ikke konvertere PKCS#8 til OpenSSL EVP_PKEY\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Kunne ikke bestemme privat nøgletype i “%s”\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matchede DNS-altnavn “%s”\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Intet match for DNS-altnavn “%s”\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certifikatet har GEN_IPADD-altnavn med falsk længde %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matchede %s-adresse “%s”\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Intet match for %s-adresse “%s”\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI'en “%s” har ikke-tom sti; ignorerer\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Matchede URI “%s”\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Intet match for URI “%s”\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Intet altnavn i peercertifikatet matchede “%s”\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Intet emnenavn i peercertifikat!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Kunne ikke fortolke emnenavn i peercertifikat\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Uoverensstemmelse i peercertifikats emnenavn (“%s” != “%s”)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matchede peercertifikats emnenavn “%s”\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Ekstra certifikat fra ca-fil: “%s”\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Fejl i klientcertifikats notAfter-felt\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL-certifikat og nøgle passer ikke sammen\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Kunne ikke læse certifikater fra CA-fil “%s”\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Kunne ikke åbne CA-filen “%s”\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Oprettelse af TLSv1 CTX mislykkedes\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "Kunne ikke angive OpenSSL-cipherliste (“%s”)\n" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL-forbindelsesfejl\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Kunne ikke beregne OATH HMAC\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "EAP-TTLS-forhandling med %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "EAP-TTLS-forbindelse mislykkedes %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "Ugyldig PPP-indkapsling\n" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Modtog intern forældet IP-adresse %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Kunne ikke håndtere IPv6-adresse\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Modtog intern IPv6-adresse %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "Modtog IPv6 opdelt inkludér %s\n" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "Modtog IPv6 opdelt ekskludér %s\n" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Uventet længde %d for attr 0x%x\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ESP-kryptering: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Kun ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Ukendt attr 0x%x længde %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "Læste %d byte af IF-T/TLS-post\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "Kort skriv til IF-T/TLS\n" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Fejl under oprettelse af IF-T-pakke\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Fejl under oprettelse af EAP-pakke\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Uventet IF-T/TLS-godkendelsesudfordring:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Uventet EAP-TTLS-nyttelast:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Indtast Pulse-brugerrealm:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Realm:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Vælg Pulse-brugerrealm:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Kunne ikke fortolke AVP\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Sessionsgrænse nået. Vælg session der skal dræbes:\n" #: pulse.c:875 msgid "Session:" msgstr "Session:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Kunne ikke fortolke sessionsliste\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Indtast sekundære legitimationsoplysninger:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Indtast brugerens legitimationsoplysninger:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Sekundært brugernavn:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Brugernavn:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Adgangskode:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Sekundær adgangskode:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Adgangskode er udløbet. Skift venligst adgangskoden:" #: pulse.c:1085 msgid "Current password:" msgstr "Nuværende adgangskode:" #: pulse.c:1090 msgid "New password:" msgstr "Ny adgangskode:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Bekræft ny adgangskode:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Adgangskoderne er ikke angivet.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Adgangskoderne er ikke ens.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Nuværende adgangskode er for lang.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Ny adgangskode er for lang.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Symbolkodeanmodning:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Indtast venligst svaret:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Indtast venligst din adgangskode:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Indtast venligst din sekundære symbolinformation:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Fejl under oprettelse af Pulse-forbindelsesanmodning\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Uventet svar til IF-T/TLS-versionsforhandling:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "IF-T/TLS-version fra server: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Kunne ikke etablere EAP-TTLS-session\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "ADVARSEL: Det af serveren angivne certifikat-MD5 er ikke magen til det " "rigtige certifikat.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Godkendelse mislykkedes: Kontoen er låst\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Godkendelse mislykkedes: Kode 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Ukendt D73-promptværdi 0x%x. Spørger om både brugernavn og adgangskode.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Rapportér venligst værdien og opførslen af den officielle klient.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Godkendelse mislykkedes: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" "Pulse-serveren anmodede om Host Checker; endnu ikke understøttet\n" "Prøv Juniper-tilstand (--protocol=nc)\n" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "Uhåndteret Pulse-godkendelsespakke, eller godkendelse mislykkedes\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Pulse-godkendelsescookie blev ikke accepteret\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "Pulse realm-post\n" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "Pulse realm-valg\n" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Godkendelsesanmodning af Pulse-adgangskode, kode 0x%02x\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" "Anmodning af Pulse-adgangskode med ukendt kode 0x%02x. Rapportér det " "venligst.\n" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Pulse-adgangskode generel symbolkodeanmodning\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "Pulse-sessionsgrænse, %d sessioner\n" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Uhåndteret Pulse-godkendelsesanmodning\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "Uventet svar i stedet for IF-T/TLS-godkendelsessucces:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "EAP-TTLS mislykkedes: Tømmer output med afventende input byte\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "Fejl under oprettelse af EAP-TTLS-buffer\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "Kunne ikke læse EAP-TTLS-tilkendegivelse: %s\n" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "Læs %d byte af IF-T/TLS EAP-TTLS-post\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "Ugyldig EAP-TTLS-tilkendegivelsespakke\n" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "Ugyldig EAP-TTLS-pakke (længde %d, tilbage %d)\n" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Uventet Pulse-konfigurationspakke:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Modtagelsesrute af ukendt type 0x%08x\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Ugyldig ESP-konfigurationspakke:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Ugyldig ESP-opsætning\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Ugyldig IF-T/TLS-pakke da konfiguration blev ventet:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Uventet IF-T/TLS-pakke da konfiguration blev ventet.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "ESP-rekey mislykkedes\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Ukendt Pulse-pakke\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "Sender IF-T/TLS-datapakke på %d byte\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Forkast ugyldigt opdelt inkludér: “%s”\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Forkast ugyldigt opdelt ekskludér: “%s”\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "ADVARSEL: Split include “%s” har værtsbit indstillet, erstatter med “%s/" "%d”.\n" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" "ADVARSEL: Split exclude “%s” har værtsbit indstillet, erstatter med “%s/" "%d”.\n" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "Ignorer forældet netværk fordi adressen “%s” er ugyldig.\n" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "Ignorer forældet netværk fordi netmasken “%s” er ugyldig.\n" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Kunne ikke kalde scriptet “%s” for %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Scriptet “%s” afsluttede unormalt (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Scriptet “%s” returnerede fejl %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "Mislykket select() for sokkelforbindelse" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Oprettelse af sokkelforbindelse annulleret\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "Mislykket setsockopt(TCP_NODELAY) på TLS-sokkel:" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Kunne ikke genoprette forbindelse til proxyen %s: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Kunne ikke genoprette forbindelse til værten %s: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy fra libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo mislykkedes for værten “%s”: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Genopretter forbindelse til DynDNS-server med brug af tidligere gemt IP-" "adresse\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Forsøger at oprette forbindelse til proxy %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Forsøger at oprette forbindelse til server %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Forbundet til %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Kunne ikke allokere sockaddr-lager\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Kunne ikke oprette forbindelse til %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Glemmer ikke-funktionel tidligere peeradresse\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Kunne ikke oprette forbindelse til værten %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Genopretter forbindelse til proxyen “%s”\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Kunne ikke opnå filsystem-id for adgangsfrase\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Kunne ikke åbne den private nøglefil “%s”: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Ingen fejl" #: ssl.c:727 msgid "Keystore locked" msgstr "Nøglelager låst" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Nøglelager ikke initialiseret" #: ssl.c:729 msgid "System error" msgstr "Systemfejl" #: ssl.c:730 msgid "Protocol error" msgstr "Protokolfejl" #: ssl.c:731 msgid "Permission denied" msgstr "Tilladelse nægtet" #: ssl.c:732 msgid "Key not found" msgstr "Nøglen blev ikke fundet" #: ssl.c:733 msgid "Value corrupted" msgstr "Værdi beskadiget" #: ssl.c:734 msgid "Undefined action" msgstr "Udefineret handling" #: ssl.c:738 msgid "Wrong password" msgstr "Forkert adgangskode" #: ssl.c:739 msgid "Unknown error" msgstr "Ukendt fejl" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Mislykket select() for kommandosokkel" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Kunne ikke åbne %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Kunne ikke fstat() %s: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Filen %s er tom\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Kunne ikke allokere %d byte til %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Kunne ikke læse %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Ukendt protokolfamilie %d. Kan ikke oprette UDP-serveradresse\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Åbn UDP-sokkel" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Ukendt protokolfamilie %d. Kan ikke bruge UDP-transport\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Tildel UDP-sokkel" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "Gør UDP-sokkel ikkeblokerende" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie er ikke længere gyldig; afslutter session\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sov %ds, resterende tidsudløb %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "Mislykket select() for sokkel send" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "Mislykket select() for sokkel modtag" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI-symbol for stor (%ld byte)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Sender SSPI-symbol på %lu byte\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Kunne ikke sende SSPI-godkendelsessymbol til proxy: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Modtog ikke SSPI-godkendelsessymbol fra proxy: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS-server rapporterede SSPI-kontekstfejl\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Ukendt SSPI-statussvar (0x%02x) fra SOCKS-server\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Fik SSPI-symbol på %lu byte: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() mislykkedes: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() mislykkedes: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Resultat af EncryptMessage() for stort (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Sender SSPI-beskyttelsesforhandling på %u byte\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Kunne ikke sende SSPI-beskyttelsessvar til proxy: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Kunne ikke sende SSPI-beskyttelsessvar til proxy: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Modtog SSPI-beskyttelsessvar på %d bytes: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage mislykkedes: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Ugyldigt SSPI-beskyttelsessvar fra proxy (%lu byte)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Indtast legitimationsoplysninger for at låse softwaresymbolet op." #: stoken.c:107 msgid "Device ID:" msgstr "Enheds-id:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Bruger omgik “blødt” symbol.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Alle felter er påkrævede; prøv igen.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Generel fejl i libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Ukorrekt enheds-id eller adgangskode; prøv igen.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Initiering af “blødt” symbol lykkedes.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Indtast PIN for softwaresymbol." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Ugyldigt PIN-format; prøv igen.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Genererer RSA-symbolkode\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Fejl i forsøget på at tilgå netværkskortenes registernøgle\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Kan ikke læse %s\\%s eller er ikke streng\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Fandt %s på %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Kan ikke åbne registreringsnøglen %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "Kan ikke læse registreringsnøglen %s\\%s eller er ikke en streng\n" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() mislykkedes: %s\n" "Vender tilbage til GetAdaptersInfo()\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() mislykkedes: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Kunne ikke åbne %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Kunne ikke indhente TAP-driverversion: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "Fejl: TAP-Windowsdriver v9.9 eller større er krævet (fandt %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Kunne ikke indstille TAP IP-adresser: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Kunne ikke indstille TAP-mediestatus: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP-enhed afbrød forbindelsen. Afbryder forbindelsen.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Kunne ikke læse fra TAP-enhed: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Kunne ikke færdiggøre aflæsning fra TAP-enhed: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Skrev %ld byte til tun\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Venter på at skrive til tun …\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Skrev %ld byte til tun efter at have ventet\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Kunne ikke skrive til TAP-enhed: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Opsplitning af tunnelscripter er endnu ikke understøttet i Windows\n" # https://www.techopedia.com/definition/31509/plumbing ? #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Kunne ikke åbne /dev/tun for rørlægning (plumbing)" #: tun.c:92 msgid "Can't push IP" msgstr "Kan ikke skubbe IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Kan ikke indstille gfnavn" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Kan ikke lægge rør (plumb) for %s til IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "åbn /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Kunne ikke oprette ny tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Kunne ikke placere tunfildescriptor i “message-discard”-tilstand" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun-enhed understøttes ikke på denne platform\n" #: tun.c:205 msgid "open net" msgstr "åbn net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Kunne ikke åbne tun-enhed: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Kunne ikke tildele lokal tun-enhed (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "For at konfigurere lokalt netværk skal openconnect køre som administrator " "(root)\n" "Se https://www.infradead.org/openconnect/nonroot.html for yderligere " "information\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Ugyldigt grænsefladenavn “%s”; skal matche “utun%%d” eller “tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Kunne ikke åbne SYSPROTO_CONTROL-sokkel: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Kunne ikke forespørge utun-kontrol-id: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Kunne ikke allokere utun-enhedsnavn\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Kunne ikke tilslutte utun-enhed: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Ugyldigt grænsefladenavn “%s”; skal matche “utun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Kan ikke åbne “%s”: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "Kunne ikke gøre tun-sokkel ikkeblokerende: %s\n" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair mislykkedes: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork mislykkedes: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Kunne ikke skrive indgående pakke: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Behandler værten “%s” som et råt (raw) værtsnavn\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Kunne ikke anvende SHA1 på eksisterende fil\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 for XML-konfigurationsfil: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Kunne ikke fortolke XML-konfigurationsfilen %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Værten “%s” har adressen “%s”\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Værten “%s” har brugergruppen (UserGroup) “%s”\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Værten “%s” er ikke opført i konfigurationen; betragter det som råt (raw) " "værtsnavn\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Kunne ikke sende “%s” til ykneo-oath-applet: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ugyldigt kort svar til “%s” fra ykneo-oath-applet\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Fejlsvar til “%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "vælg appletkommando" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Genkendte ikke svaret fra ykneo-oath-applet\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Fandt ykneo-oath-applet v%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN krævet til Yubikey OATH-applet" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey-PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Kunne ikke beregne Yubikey “lås op”-svar\n" #: yubikey.c:274 msgid "unlock command" msgstr "lås op-kommando" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Prøver afkortet-tegn PBKBF2-variant af Yubikey-PIN\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Kunne ikke oprette PS/SC-kontekst: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "Oprettede PC/SC-kontekst\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Kunne ikke forespørge læserliste: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Kunne ikke forbinde til PC/SC-læseren “%s”: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Forbundet til PC/SC-læseren “%s”\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Kunne ikke opnå eksklusiv adgang til læseren “%s”: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "vis nøglekommandoer" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Fandt %s/%s-nøglen “%s” på “%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Symbolet “%s” blev ikke fundet på Yubikey “%s”. Leder efter en anden Yubikey " "…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server afviser Yubikey-symbol; skifter til manuel indtastning\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Genererer Yubikey-symbolkode\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Kunne ikke opnå eksklusiv adgang til Yubikey: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "beregn kommando" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Svaret fra Yubikey, da symbolkoden blev oprettet, blev ikke genkendt\n" openconnect-8.20/po/hu.po0000644000076400007640000052066114204456071017137 0ustar00dwoodhoudwoodhou00000000000000# Hungarian translation for networkmanager-openconnect. # Copyright (C) 2008, 2010, 2011, 2012, 2013, 2014, 2015, 2016, 2017, 2018, 2019 Free Software Foundation, Inc, # This file is distributed under the same license as the networkmanager-openconnect package. # # Gábor Kelemen , 2008, 2010, 2011, 2013. # Máté Őry , 2011. # Balázs Úr , 2014, 2015, 2019. # Gabor Kelemen , 2016, 2017, 2018. msgid "" msgstr "" "Project-Id-Version: networkmanager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2019-09-07 18:30+0200\n" "Last-Translator: Balázs Úr \n" "Language-Team: Hungarian \n" "Language: hu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Lokalize 18.12.3\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Érvénytelen süti: „%s”\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Váratlan %d eredmény a kiszolgálótól\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "A lefoglalás meghiúsult\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Rövid csomag érkezett (%d bájt)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "Az SSL túl kevés bájtot írt! %d volt a kérés, %d lett elküldve\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP kulcsmegújítás esedékes\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Újra kézfogás sikertelen, új alagút kísérlete\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d bájt tömörítetlen adatcsomag küldése\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Új DTLS csatlakozási kísérlet\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Fogadott DTLS csomag 0x%02x / %d bájt\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS kulcsmegújítás esedékes\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS újra kézfogás sikertelen, újracsatlakozás.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "A DTLS halott csomópont felderítés halott csomópontot észlelt!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "DTLS DPD küldése\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nem sikerült a DPD kérés küldése. Leválasztás várható\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d bájt DTLS csomag küldése; a DTLS küldés visszatérése: %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Kijelentkezés sikertelen.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Kijelentkezés sikeres.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Adja meg a felhasználónevét és jelszavát" #: auth-globalprotect.c:159 msgid "Username" msgstr "Felhasználónév" #: auth-globalprotect.c:174 msgid "Password" msgstr "Jelszó" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Kihívás: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" "A GlobalProtect bejelentkezés a következőt adta vissza: %s=%s (várt: %s)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" "A GlobalProtect bejelentkezés üres vagy hiányzó %s értéket adott vissza\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "A GlobalProtect bejelentkezés a következőt adta vissza: %s=%s\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Válasszon egy GlobalProtect átjárót." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "ÁTJÁRÓ:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d átjáró kiszolgáló érhető el:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nem sikerült az OTP tokenkód előállítása, a token letiltásra kerül\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "A kiszolgáló nem GlobalProtect portál, sem átjáró.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Ismeretlen űrlap elküldési elem mellőzése: „%s”\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Ismeretlen űrlap beviteli típus mellőzése: „%s”\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Kettőzött kapcsoló eldobása: „%s”\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Nem kezelhetők az űrlap method='%s', action='%s' értékei\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Ismeretlen szövegterület mező: „%s”\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nem sikerült memóriát lefoglalni a TNCC-vel való kommunikációhoz\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "A TNCC támogatás még nincs megvalósítva Windowson\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nincs DSPREAUTH süti, TNCC nincs megpróbálva\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Nem sikerült végrehajtani a(z) %s TNCC parancsfájlt: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Indítás elküldve, várakozás a TNCC-től érkező válaszra\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Nem sikerült a válasz olvasása a TNCC-től\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "%s válasz sikertelenül érkezett a TNCC-től\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "TNCC válasz: 200 OK\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "TNCC válasz második sora: „%s”\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Új DSPREAUTH süti beszerezve a TNCC-től: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "Váratlan nem üres sor a TNCC-től a DSPREAUTH süti után: „%s”\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "Túl sok nem üres sor a TNCC-től a DSPREAUTH süti után\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Nem sikerült feldolgozni a HTML dokumentumot\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Nem sikerült megtalálni vagy feldolgozni a bejelentkező oldalon lévő webes " "űrlapot\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Ismeretlen HTML űrlap kiírása:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Az űrlap választásának nincs neve\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "a(z) %s név nem bemenet\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Nincs bemenettípus az űrlapon\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Nincs bemenetnév az űrlapon\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Ismeretlen %s bemenettípus az űrlapon\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Üres válasz a kiszolgálótól\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Nem sikerült a kiszolgáló válaszának feldolgozása\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "A válasz ez volt: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr " érkezett, amikor nem várták.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "Az XML válasznak nincs „auth” csomópontja\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Jelszót kértek, de „--no-passwd” van beállítva\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Nem kerül letöltésre az XML profil, mert az SHA1 már egyezik\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nem sikerült a HTTPS kapcsolat megnyitása ehhez: %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Nem sikerült GET kérést küldeni az új beállításhoz\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "A letöltött beállítófájl nem egyezett a szándékolt SHA1-gyel\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Új XML profil letöltve\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Hiba: A „Cisco Secure Desktop” trójai futtatása még nincs megvalósítva ezen " "a platformon.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "A(z) %ld gid beállítása nem sikerült: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "A csoportok beállítása nem sikerült erre: %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "A(z) %ld uid beállítása nem sikerült: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Érvénytelen felhasználó uid=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nem sikerült átváltani a(z) „%s” CSD saját könyvtárra: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Hiba: A kiszolgáló CSD gépkeresés futtatására kért minket.\n" "Meg kell adnia egy megfelelő --csd-wrapper argumentumot.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Hiba: A kiszolgáló egy „Cisco Secure Desktop” trójai letöltésre és " "futtatására kért meg minket.\n" "Ez a szolgáltatás biztonsági okokból alapértelmezetten le van tiltva, ezért " "érdemes lenne engedélyeznie azt.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "A(z) „%s” átmeneti könyvtár nem írható: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nem sikerült megnyitni az átmeneti CSD parancsfájlt: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nem sikerült írni az átmeneti CSD parancsfájlt: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Figyelem: nem biztonságos CSD kódot futtat rendszergazdai jogosultságokkal\n" "\t Használja a „--csd-user” parancssori kapcsolót\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nem sikerült végrehajtani a következő CSD parancsfájlt: %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Érvénytelen válasz a kiszolgálótól\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "A kiszolgáló azután kérte a kliens SSL tanúsítványát, miután meg lett adva " "egy\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "A kiszolgáló a kliens SSL tanúsítványát kérte; egyik sem volt beállítva\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST engedélyezve\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "%s frissítése 1 másodperc múlva…\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(hiba 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Hiba történt a hiba leírása során!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "HIBA: Nem lehet előkészíteni a foglalatokat\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIKUS HIBA: A DTLS mestertitok nincs előkészítve. Kérjük ezt jelentse.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Hiba a HTTPS CONNECT kérés létrehozásakor\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Hiba a HTTPS válasz lekérésekor\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "A VPN szolgáltatás nem érhető el; ok: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Nem megfelelő HTTP CONNECT válasz érkezett: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT válasz érkezett: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Nincs memória a kapcsolókhoz\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "Az X-DTLS-Session-ID nem 64 karakteres; értéke: „%s”\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "Az X-DTLS-Session-ID érvénytelen; értéke: „%s”\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Ismeretlen DTLS tartalomkódolás: %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Ismeretlen CSTP tartalomkódolás: %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Nem érkezett MTU. Megszakítás\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP kapcsolódva. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Tömörítés beállítás sikertelen\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "A deflate puffer lefoglalása meghiúsult\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "inflate meghiúsult\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Az LZS kibontás meghiúsult: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Az LZ4 kibontás meghiúsult\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Ismeretlen tömörítési típus: %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s / %d bájt tömörített adatcsomag érkezett (%d volt)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "deflate meghiúsult: %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Váratlan csomaghossz. Az SSL_read visszatérési értéke %d, de a csomag\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD kérés érkezett\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD válasz érkezett\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive érkezett\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d bájt tömörítetlen adatcsomag érkezett\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Kiszolgáló leválasztás érkezett: %02x „%s”\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Kiszolgáló leválasztás érkezett\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Tömörített csomag érkezett !deflate módban\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "kiszolgáló megszakítás csomag érkezett\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Ismeretlen csomag: %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "A CSTP halott csomópont felderítés halott csomópontot észlelt!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Újracsatlakozás sikertelen\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "CSTP DPD küldése\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive küldése\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "%d bájt tömörített adatcsomag küldése (%d volt)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE csomag küldése: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Digest hitelesítési kísérlet a proxyra\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Digest hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS csatlakozási kísérlet egy meglévő fd-vel\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Nincs DTLS cím\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "A kiszolgáló nem ajánlott DTLS titkosító lehetőséget\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Nincs DTLS proxy-n keresztüli csatlakozáskor\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS előkészítve. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Ismeretlen csomag (hossz: %d) érkezett: %02x %02x %02x %02x…\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS ez: %d, TOS utolsó: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD kérés érkezett\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nem sikerült a DPD válasz küldése. Leválasztás várható\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD válasz érkezett\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive érkezett\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" "Tömörített DTLS csomag érkezett, amikor a tömörítés nincs engedélyezve\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Ismeretlen DTLS csomagtípus: %02x, hossz: %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive küldése\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nem sikerült az életben tartás kérés küldése. Leválasztás várható\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "MTU észlelés előkészítése (min=%d, max=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "MTU DPD szonda küldése (%u bájt)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nem sikerült a DPD kérés (%d %d) küldése\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "Túl sok idő telt az MTU észlelési ciklusban; megbeszélt MTU feltételezése.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" "Túl sok idő telt az MTU észlelési ciklusban; az MTU %d értékre beállítva.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Váratlan csomag (%.2x) érkezett az MTU észlelésnél; kihagyás.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nem sikerült a DPD kérés (%d) fogadása\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "MTU DPD szonda fogadva (%u bájt)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "%d bájtos MTU észlelve (%d volt)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nincs változás az MTU-ban az észlelés után (%d volt)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "A várt ESP csomag elfogadása %u sorszámmal\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "A vártnál későbbi ESP csomag elfogadása %u sorszámmal (várt érték: " "%)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "A(z) %u sorszámú régi ESP csomag eldobása (várt érték: %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "A(z) %u sorszámú régi ESP csomag eltűrése (várt érték: %)\n" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "A(z) %u sorszámú megismételt ESP csomag eldobása\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "A(z) %u sorszámú megismételt ESP csomag eltűrése\n" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" "Sorrenden kívüli ESP csomag elfogadása %u sorszámmal (várt érték: " "%)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Paraméterek a(z) %s ESP-hez: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP titkosítási típus (%s) kulcs 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP hitelesítési típus (%s) kulcs 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "bejövő" #: esp.c:94 msgid "outgoing" msgstr "kimenő" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "ESP szondák küldése\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "ESP csomag érkezett régi 0x%x SPI-vel, sorozatszám %u\n" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "ESP csomag érkezett, érvénytelen 0x%08x SPI-vel\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Érvénytelen kitöltő hossz (%02x) az ESP-ben\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Érvénytelen kitöltő bájtok az ESP-ben\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP munkamenet létrehozva a kiszolgálóval\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" "Nem sikerült memóriát lefoglalni az ESP csomag titkosításának feloldásához\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "Az ESP csomag kibontása LZO-val sikertelen\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "%d bájt kibontása LZO-val ide: %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Az újrabeírás nincs megvalósítva az ESP-khez\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "Az ESP halott csomópontot észlelt\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "ESP szondák küldése a DPD-hez\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Az életben tartás nincs megvalósítva az ESP-khez\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Nem sikerült az ESP csomag küldése: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "Nem sikerült a véletlenszerű kulcsok előállítása az ESP-hez\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "Nem sikerült a kezdeti érték (IV) előállítása az ESP-hez\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "DTLS folytatás késleltetése amíg a CSTP egy PSK-t generál\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Nem sikerült a DTLS prioritás karakterlánc előállítása\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nem sikerült a DTLS prioritás beállítása: „%s”: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Nem sikerült a hitelesítő adatok lefoglalása: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Nem sikerült a DTLS kulcs előállítása: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nem sikerült a DTLS kulcs beállítása: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Nem sikerült a DTLS PSK hitelesítő adatok beállítása: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Ismeretlen DTLS paraméterek a kért „%s” CipherSuite esetén\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nem sikerült a DTLS munkamenet paraméterek beállítása: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "A DTLS előkészítése sikertelen: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "A partner %d MTU-ja túl kicsi a DTLS működéséhez\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "A DTLS MTU csökkentve erre: %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "A DTLS munkamenet folytatása nem sikerült; lehetséges beékelődéses támadás. " "A DTLS letiltása.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nem sikerült a DTLS MTU beállítása: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" "DTLS kapcsolat kiépítve (GnuTLS használatával). Titkosító alkalmazáscsomag: " "%s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS kapcsolattömörítés %s használatával.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "A DTLS kézfogás túllépte az időkorlátot\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "A DTLS kézfogás meghiúsult: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Egy tűzfal akadályozza az UDP csomagok küldését?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Az ESP titkosító előkészítése sikertelen: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Az ESP HMAC előkészítése sikertelen: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Az ESP csomag HMAC kódjának kiszámítása sikertelen: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Érvénytelen HMAC kódú ESP csomag érkezett\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Az ESP csomag titkosításának feloldása sikertelen: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Az ESP csomag titkosítása sikertelen: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Nem sikerült kinyerni a tanúsítvány lejárati idejét\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "A kliens tanúsítvány érvényessége lejárt" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "A kliens tanúsítvány hamarosan lejár" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" "Nem sikerült betölteni a(z) „%s” elemet a következő kulcstartóról: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s kulcs/tanúsítvány fájl megnyitása: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s kulcs/tanúsítvány fájl elérése: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Nem sikerült lefoglalni a tanúsítvány puffert\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nem sikerült a tanúsítvány beolvasása a memóriába: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nem sikerült beállítani a PKCS#12 adatszerkezetet: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nem sikerült visszafejteni a PKCS#12 tanúsítvány fájlt\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 jelmondat megadása:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nem sikerült feldolgozni a PKCS#12 fájlt: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nem sikerült betölteni a PKCS#12 tanúsítványt: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Nem sikerült az MD5 hash előkészítése: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash hiba: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Hiányzó DEK-Info: fejléc a titkosított OpenSSL kulcsból\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Nem lehet meghatározni a PEM titkosítás típusát\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nem támogatott PEM titkosítási típus: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Érvénytelen só a titkosított PEM fájlban\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Hiba a base64 dekódolt titkosított PEM fájlban: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "A titkosított PEM fájl túl rövid\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Nem sikerült a titkosító előkészítése a PEM fájl visszafejtéséhez: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nem sikerült visszafejteni a PEM kulcsot: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "A PEM kulcs visszafejtése nem sikerült\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "PEM jelmondat megadása:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Ez a program rendszerkulcs támogatás nélkül készült\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Ez a program PKCS#11 támogatás nélkül készült\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "A következő PKCS#11 tanúsítvány használata: %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Rendszertanúsítvány használata: %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Hiba a tanúsítvány betöltésekor a PKCS#11 fájlból: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Hiba a rendszertanúsítvány betöltésekor: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "A következő tanúsítványfájl használata: %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "A PKCS#11 fájl nem tartalmazott tanúsítványt\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Nem található tanúsítvány a fájlban" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "A tanúsítvány betöltése nem sikerült: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Rendszerkulcs használata: %s\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Hiba a személyes kulcs szerkezet előkészítésekor: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Hiba a(z) %s rendszerkulcs importálásakor: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "A(z) %s PKCS#11 kulcs URL próbája\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Hiba a PKCS#11 kulcs szerkezet előkészítésekor: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Hiba a(z) %s PKCS#11 URL importálásakor: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "A következő PKCS#11 kulcs használata: %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Hiba a PKCS#11 kulcs importálásakor a személyes kulcs szerkezetbe: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "A következő személyes kulcs fájl használata: %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Az OpenConnect ezen verziója TPM támogatás nélkül készült\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Az OpenConnect ezen verziója TPM2 támogatás nélkül készült\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Nem sikerült értelmezni a PEM fájlt\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nem sikerült betölteni a PKCS#1 személyes kulcsot: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nem sikerült betölteni a személyes kulcsot PKCS#8-ként: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nem sikerült visszafejteni a PKCS#8 tanúsítvány fájlt\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nem sikerült meghatározni a személyes kulcs típusát: %s\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "PKCS#8 jelmondat megadása:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nem sikerült lekérni a kulcsazonosítót: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Hiba a tesztadatok aláírásakor a személyes kulccsal: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Hiba az aláírás hitelesítésekor a tanúsítvány ellenében: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Nem található SSL tanúsítvány a személyes kulcs egyezésére\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "A következő klienstanúsítvány használata: „%s”\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Nem sikerült memóriát lefoglalni a tanúsítványhoz\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Nem kapott kibocsátót a PKCS#11-ből\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "A következő „%s” CA lekérve a PKCS#11-ből\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nem sikerült memóriát lefoglalni a tanúsítványok támogatásához\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Támogatott CA hozzáadása: „%s”\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Az X509 tanúsítvány importálása nem sikerült: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "A PKCS#11 tanúsítvány beállítása nem sikerült: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "A tanúsítvány visszavonási lista beállítása nem sikerült: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "A privát kulcs úgy tűnik, hogy nem támogatja az RSA-PSS-t. A TLSv1.3 " "letiltása\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "A tanúsítvány beállítása nem sikerült: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "A kiszolgáló nem mutatott be tanúsítványt\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Hiba a kiszolgáló tanúsítványának újbóli kézfogáskor történő " "összehasonlításakor: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" "A kiszolgáló különböző tanúsítványt mutatott be az újbóli kézfogáskor\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "A kiszolgáló azonos tanúsítványt mutatott be az újbóli kézfogáskor\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Hiba az X509 tanúsítvány szerkezet előkészítésekor\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Hiba a kiszolgáló tanúsítványának importálásakor\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Nem sikerült kiszámolni a kiszolgáló tanúsítványának hash értékét\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Hiba a kiszolgáló tanúsítványállapotának ellenőrzésekor\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "tanúsítvány visszavonva" #: gnutls.c:2098 msgid "signer not found" msgstr "aláíró nem található" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "az aláíró nem hitelesítésszolgáltatói tanúsítvány" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "nem biztonságos algoritmus" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "a tanúsítvány még nincs aktiválva" #: gnutls.c:2106 msgid "certificate expired" msgstr "a tanúsítvány lejárt" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "az aláírás ellenőrzése sikertelen" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "a tanúsítvány nem egyezik a gépnévvel" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "A kiszolgáló tanúsítványának ellenőrzése meghiúsult: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" "Nem sikerült memóriát lefoglalni a hitelesítés-szolgáltató fájl " "tanúsítványokhoz\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" "Nem sikerült a tanúsítványok olvasása a hitelesítés-szolgáltató fájlból: " "„%s”\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nem sikerült megnyitni a(z) „%s” CA fájlt: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "A tanúsítvány betöltése nem sikerült. Megszakítás.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL egyeztetés ezzel: %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "Az SSL kapcsolat megszakítva\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Az SSL kapcsolat meghiúsult: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Nem végzetes GnuTLS visszatérés a kézfogás közben: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "PIN-kód szükséges ehhez: %s" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Hibás PIN-kód" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Ez az utolsó próbálkozás a zárolás előtt!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Már csak néhány próbálkozás van a zárolás előtt!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Adja meg a PIN-kódot:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nem támogatott OATH HMAC algoritmus\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nem sikerült az OATH HMAC kiszámítása: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "EAP-TTLS munkamenet kiépítve\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM aláírás függvény meghívva %d bájthoz.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nem sikerült a TPM hash objektum létrehozása: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nem sikerült értéket beállítani a TPM hash objektumban: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "A TPM hash aláírás nem sikerült: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Hiba a TSS kulcs bináris visszafejtésekor: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Hiba a TSS kulcs binárisban\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nem sikerült a TPM környezet létrehozása: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nem sikerült a TPM környezet csatlakoztatása: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nem sikerült a TPM SRK kulcs betöltése: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nem sikerült a TPM SRK házirendobjektum betöltése: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nem sikerült a TPM PIN-kód beállítása: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nem sikerült a TPM kulcs bináris betöltése: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Adja meg a TPM SRK PIN-kódját:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nem sikerült a kulcsházirend objektum létrehozása: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nem sikerült a házirend hozzárendelése a kulcshoz: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Adja meg a TPM kulcs PIN-kódját:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nem sikerült a kulcs PIN-kódjának beállítása: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "A TPM2 jelszó túl hosszú; csonkolás\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "tulajdonos" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "Elsődleges kulcs létrehozása a(z) %s hierarchia alatt.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "Adja meg a(z) %s TPM2 hierarchia jelszavát:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth sikertelen: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary tulajdonos hitelesítése sikertelen\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary sikertelen: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "Kapcsolat kiépítése a TPM-mel.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize sikertelen: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Az ESP kulcsok figyelmen kívül hagyása, mivel az ESP támogatás nem elérhető " "ebben a verzióban\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Hiba a GSSAPI név importálásakor a hitelesítéshez:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Hiba a GSSAPI válasz előállításakor:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "GSSAPI hitelesítési kísérlet a proxyra\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "GSSAPI hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI hitelesítés befejezve\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "A GSSAPI token túl nagy (%zd bájt)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "%zu bájt GSSAPI token küldése\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "Nem sikerült elküldeni a GSSAPI hitelesítési tokent a proxynak: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Nem sikerült fogadni a GSSAPI hitelesítési tokent a proxytól: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "A SOCKS kiszolgáló GSSAPI környezet hibát jelentett\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Ismeretlen GSSAPI állapotválasz (0x%02x) a SOCKS kiszolgálótól\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bájt GSSAPI token érkezett: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "%zu bájt GSSAPI védelemegyeztetés küldése\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nem sikerült elküldeni a GSSAPI védelem választ a proxynak: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nem sikerült fogadni a GSSAPI védelem választ a proxytól: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bájt GSSAPI védelem válasz érkezett: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Érvénytelen GSSAPI védelem válasz a proxytól (%zu bájt)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "A SOCKS proxy üzenet sértetlenséget igényel, amely nem támogatott\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "A SOCKS proxy üzenet titoktartást igényel, amely nem támogatott\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "A SOCKS proxy ismeretlen 0x%02x típusú védelmet igényel\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Alap HTML hitelesítési kísérlet a proxyra\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Alap HTML hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Az OpenConnect ezen verziója GSSAPI támogatás nélkül készült\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "A proxy alap hitelesítést kért, amely alapértelmezetten le van tiltva\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "A(z) „%s” kiszolgáló alap hitelesítést kért, amely alapértelmezetten le van " "tiltva\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Nincs több kipróbálható hitelesítési eljárás\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Nincs memória a sütik lefoglalásához\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nem sikerült feldolgozni a következő HTTP választ: „%s”\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP válasz érkezett: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ismeretlen HTTP válasz sor mellőzése: „%s”\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Érvénytelen sütit ajánlottak: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Az SSL tanúsítvány hitelesítése nem sikerült\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "A választörzsnek negatív mérete van (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Ismeretlen átviteli kódolás: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP törzs %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Hiba a HTTP válasz törzsének olvasásakor\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Hiba a fejléc darabjának lekérésekor\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Hiba a HTTP válasz törzsének lekérésekor\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Nem fogadható HTTP 1.0 törzs a kapcsolat lezárása nélkül\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nem sikerült feldolgozni az átirányított „%s” URL-t: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Nem követhető az átirányítás nem HTTPS URL-re: „%s”\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Új útvonal lefoglalása a relatív átirányításhoz nem sikerült: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "kérés megadva" #: http.c:1003 msgid "general failure" msgstr "általános hiba" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "a kapcsolatot a szabálykészlet nem engedélyezi" #: http.c:1005 msgid "network unreachable" msgstr "a hálózat elérhetetlen" #: http.c:1006 msgid "host unreachable" msgstr "a gép elérhetetlen" #: http.c:1007 msgid "connection refused by destination host" msgstr "a célgép visszautasította a kapcsolatot" #: http.c:1008 msgid "TTL expired" msgstr "TTL lejárt" #: http.c:1009 msgid "command not supported / protocol error" msgstr "a parancs nem támogatott / protokollhiba" #: http.c:1010 msgid "address type not supported" msgstr "a címtípus nem támogatott" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "A SOCKS kiszolgáló felhasználónevet/jelszót kért, de nekünk nincs olyan\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "A SOCKS hitelesítés felhasználónevének és jelszavának < 255 bájtnak kell " "lennie\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy hitelesítési kérésének írásakor: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy hitelesítési válaszának olvasásakor: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Váratlan hitelesítési válasz a következő SOCKS proxy-tól: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Hitelesítés a SOCKS kiszolgálóra jelszó használatával\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "A jelszavas hitelesítés a SOCKS kiszolgálóra nem sikerült\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "A SOCKS kiszolgáló GSSAPI hitelesítést kért\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "A SOCKS kiszolgáló jelszavas hitelesítést kért\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "A SOCKS kiszolgálóhoz hitelesítés szükséges\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "A SOCKS kiszolgáló ismeretlen %02x hitelesítéstípust kért\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "SOCKS proxy csatlakozási kérés ide: %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy csatlakozási kérésének írásakor: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Hiba a SOCKS proxy csatlakozási válaszának olvasásakor: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Váratlan csatlakozási válasz a következő SOCKS proxy-tól: %02x %02x…\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy hiba %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy hiba %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Váratlan %02x címtípus a SOCKS proxy csatlakozási válaszában\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "HTTP proxy csatlakozási kérés ide: %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "A proxy kérés küldése nem sikerült: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "A proxy CSATLAKOZÁS kérés nem sikerült: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Ismeretlen proxy típus: „%s”\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Csak http vagy socks(5) proxyk támogatottak\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect vagy openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" "Kompatibilis a Cisco AnyConnect SSL VPN-nel, valamint az ocserv kiszolgálóval" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper hálózati csatlakozás" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Kompatibilis a Juniper Network Connecttel" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Kompatibilis a Pulse Connect Secure SSL VPN-nel" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Ismeretlen VPN protokoll: „%s”\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "A Cisco DTLS támogatás nélküli SSL könyvtárral szemben készítve\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Nem érkezett IP-cím. Megszakítás\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Az újracsatlakozás eltérő örökölt IP-címet adott (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Az újracsatlakozás eltérő örökölt IP hálózati maszkot adott (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Az újracsatlakozás eltérő IPv6-címet adott (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Az újracsatlakozás eltérő IPv6 hálózati maszkot adott (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6 beállítás érkezett, de a(z) %d MTU túl kicsi.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nem sikerült a kiszolgáló URL feldolgozása: „%s”\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Csak https:// engedélyezett a kiszolgáló URL-hez\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Ismeretlen tanúsítvány hash: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" "A megadott ujjlenyomat hossza kisebb a minimálisan szükségesnél (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Nincs űrlapkezelő, nem lehet hitelesíteni.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() sikertelen: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Végzetes hiba a parancssor kezelésében\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() sikertelen: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() sikertelen: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Hiba a konzolbemenet átalakításakor: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Lefoglalási hiba a szabványos bemenetről érkező szöveghez\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Ha segítségre van szüksége az OpenConnect programhoz, tekintse meg a\n" " https://www.infradead.org/openconnect/mail.html címen lévő oldalt.\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Az OpenSSL MOTOR nincs jelen" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "FIGYELEM: Nincs DTLS és/vagy ESP támogatás ebben a binárisban. A " "teljesítmény alacsonyabb lesz.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Támogatott protokollok:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (alapértelmezett)" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (szabványos bemenet)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Nem dolgozható fel ez a végrehajtható útvonal: „%s”" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "A vpnc-script útvonal lefoglalása nem sikerült\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "A(z) „%s” gépnév felülbírálása erre: „%s”\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Használat: openconnect [kapcsolók] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Nyílt kliens több VPN protokollhoz, %s verzió\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Beállítások olvasása a beállítófájlból" #: main.c:914 msgid "Report version number" msgstr "Verziószám jelentése" #: main.c:915 msgid "Display help text" msgstr "Súgószöveg megjelenítése" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Bejelentkező felhasználónév beállítása" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Jelszavas/SecurID hitelesítés letiltása" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Ne várjon felhasználói bemenetet; kilépés, ha azt megkövetelik" #: main.c:923 msgid "Read password from standard input" msgstr "Jelszó olvasása a szabványos bemenetről" #: main.c:924 msgid "Choose authentication login selection" msgstr "Hitelesítési bejelentkezés kijelölés kiválasztása" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "A CERT SSL kliens tanúsítvány használata" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "A KEY SSL személyes kulcsfájl használata" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Figyelmeztetés, ha a tanúsítvány élettartama < DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "Bejelentkezési felhasználói csoport beállítása" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Kulcsjelszó vagy TPM SRK PIN beállítása" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "A kulcs jelszava a fájlrendszer fsid értéke" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(MEGJEGYZÉS: a libstoken (RSA SecurID) le van tiltva ebben a verzióban)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(MEGJEGYZÉS: a Yubikey OATH le van tiltva ebben a verzióban)" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Az alapértelmezett rendszertanúsítvány szolgáltatók letiltása" #: main.c:944 msgid "Cert file for server verification" msgstr "Tanúsítványfájl a kiszolgáló ellenőrzéséhez" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Proxykiszolgáló beállítása" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Proxy hitelesítési eljárások beállítása" #: main.c:950 msgid "Disable proxy" msgstr "Proxy letiltása" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "A libproxy használata a proxy automatikus beállításához" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(MEGJEGYZÉS: a libproxy le van tiltva ebben a verzióban)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Csatlakozás újrapróbálkozási időkorlátja másodpercben" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "IP használata a GÉPHEZ való kapcsolódáskor" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "Helyi port beállítása a DTLS és ESP datagramokhoz" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "SÜTI hitelesítési süti használata" #: main.c:962 msgid "Read cookie from standard input" msgstr "Süti olvasása a szabványos bemenetről" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Csak hitelesítés és bejelentkezési információk kiírása" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Indítás után folytatás a háttérben" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "A démon PID értékének írása ebbe a fájlba" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Jogosultságok eldobása csatlakozás után" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "A syslog használata folyamatüzenetekhez" #: main.c:978 msgid "More output" msgstr "Több kimenet" #: main.c:979 msgid "Less output" msgstr "Kevesebb kimenet" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "A HTTP hitelesítési forgalom kiírása (magába foglalja a --verbose kapcsolót)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Időbélyeg eléfűzése az üzenetek múlásához" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "IFNAME használata az alagút csatolóhoz" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Héj parancssor egy vpnc-kompatibilis beállítófájl használatához" #: main.c:986 msgid "default" msgstr "alapértelmezett" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Forgalom átadása a „script” programnak, nem a tun-nak" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Ne kérdje IPv6 kapcsolatnál" #: main.c:993 msgid "XML config file" msgstr "XML beállítófájl" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "MTU kérése a kiszolgálótól (csak örökölt kiszolgálóknál)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Az MTU útvonal jelzése a kiszolgálóhoz/kiszolgálóról" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Tökéletes továbbító titkosságot igényel" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL titkosítók a DTLS támogatásához" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "A csomag várakozási sor korlát beállítása LEN pkts értékre" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP fejléc User-Agent: mező" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "A kiszolgáló felé hirdetett helyi gépnév" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "HTTP kapcsolat újrahasználatának letiltása" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Ne próbálkozzon XML POST hitelesítéssel" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Nem sikerült lefoglalni szöveget\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nem sikerült a sor lekérése a beállítófájlból: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Ismeretlen kapcsoló a(z) %d. sorban: „%s”\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "A(z) „%s” kapcsoló nem fogad el argumentumot a(z) %d. sorban\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "A(z) „%s” kapcsolóhoz argumentum szükséges a(z) %d. sorban\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Érvénytelen felhasználó „%s”: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Érvénytelen felhasználóazonosító „%d”: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nem sikerült a(z) „%s” megnyitása írásra: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Folytatás a háttérben; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "FIGYELMEZTETÉS: a területi beállítás nem adható meg: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "FIGYELEM: Az openconnect ezen verziója iconv támogatás nélkül\n" " készült, de úgy tűnik, hogy az örökölt „%s” karakterkészletet\n" " használja. Furcsaság várható.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "FIGYELEM: Az openconnect ezen verziója %s, de\n" " a libopenconnect függvénykönyvár %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nem sikerült lefoglalni a vpninfo szerkezetet\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Nem használható a „config” kapcsoló a beállítófájlon belül\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Nem sikerült a(z) „%s” beállítófájl megnyitása: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Érvénytelen tömörítési mód: „%s”\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Nem sikerült memóriát lefoglalni\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Hiányzó kettőspont a feloldási kapcsolóban\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "A(z) %d. MTU túl kicsi\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Minden HTTP kapcsolat újrafelhasználás letiltása a --no-http-keepalive " "miatt.\n" "Ha ez segít, jelentse a címre.\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "A --no-cert-check kapcsoló nem volt biztonságos, és el lett távolítva.\n" "Hozza rendbe a kiszolgáló tanúsítványát, vagy használja a --servercert " "kapcsolót, ha megbízik benne.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "A nulla hosszú sor nem engedélyezett; 1 használata\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect verzió: %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Érvénytelen szoftveres token mód: „%s”\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Túl sok argumentum a parancssorban\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nincs megadva kiszolgáló\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Az openconnect ezen verziója libproxy támogatás nélkül készült\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Az SSL kapcsolat létrehozása nem sikerült\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Nincs --script argumentum megadva; a DNS és az útválasztás nincs beállítva\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Lásd: https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "A felhasználó újracsatlakozást kért\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "A kiszolgáló megszakította a munkamenetet; kilépés.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Ismeretlen hiba, kilépés.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nem sikerült a(z) „%s” megnyitása írásra: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nem sikerült a beállítás írása ebbe: %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "A(z) „%s” VPN-kiszolgáló által küldött tanúsítvány ellenőrzése nem " "sikerült.\n" "Ok: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Ha megbízik a kiszolgálóban a jövőben, akkor hozzáadhatja ezt a parancs " "sorához:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "„%s” beírása az elfogadáshoz, „%s” a megszakításhoz; bármi más a " "megtekintéshez: " #: main.c:2464 main.c:2483 msgid "no" msgstr "nem" #: main.c:2464 main.c:2470 msgid "yes" msgstr "igen" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Kiszolgáló kulcs hash: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "A(z) „%s” hitelesítés-választás több kapcsolóra illeszkedik\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "A(z) „%s” hitelesítés-választás nem érhető el\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Felhasználói bemenet szükséges nem interaktív módban\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nem sikerült megnyitni a tokenfájlt írásra: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Nem sikerült a token írása: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "A szoftveres token szöveg érvénytelen\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Nem nyitható meg a ~/.stokenrc fájl\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Az OpenConnect nem libstoken támogatással készült\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Általános hiba a libstoken könyvtárban\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Az OpenConnect nem liboath támogatással készült\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Általános hiba a liboath könyvtárban\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey token nem található\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Az OpenConnect nem Yubikey támogatással készült\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Általános Yubikey hiba: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "A tun parancsfájl beállítása nem sikerült\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "A tun eszköz beállítása nem sikerült\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "A hívó szüneteltette a kapcsolatot\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Nincs tennivalója; alvás %d ms-ra…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects sikertelen: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() sikertelen: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() sikertelen: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Hiba az ntlm_auth segítővel való kommunikációkor\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "HTTP NTLM hitelesítési kísérlet a proxyra (egyszeres bejelentkezés)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "HTTP NTLM hitelesítési kísérlet a(z) „%s” kiszolgálóra (egyszeres " "bejelentkezés)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "HTTP NTLMv%d hitelesítési kísérlet a proxyra\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "HTTP NTLMv%d hitelesítési kísérlet a kiszolgálóra: „%s”\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Érvénytelen base32 token szöveg\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Nem sikerült memóriát lefoglalni az OATH titok visszafejtéséhez\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Az OpenConnect ezen verziója PSKC támogatás nélkül készült\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "OK a KEZDETI tokenkód előállításához\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "OK a KÖVETKEZŐ tokenkód előállításához\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "A kiszolgáló visszautasította a szoftveres tokent; átváltás kézi bevitelre\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP tokenkód előállítása\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP tokenkód előállítása\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Váratlan hossz (%d) ennél: TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "%d. MTU érkezett a kiszolgálótól\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "DNS-kiszolgáló érkezett: %s\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "DNS keresési tartomány érkezett: %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Belső IP-cím érkezett: %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Hálózati maszk érkezett: %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Belső átjárócím érkezett: %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Felosztott felvétel útvonal érkezett: %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Felosztott kizárás útvonal érkezett: %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "WINS kiszolgáló érkezett: %s\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP titkosítás: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP tömörítés: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP port: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP kulcs élettartam: %u bájt\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP kulcs élettartam: %u másodperc\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "ESP az SSL tartalékhoz: %u másodperc\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP ismétlési védelem: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (kimenő): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "Az ESP titkok %d bájtja\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Ismeretlen TLV csoport: %d, attribútum: %d, hossz: %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Nem sikerült feldolgozni a KMP fejlécet\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Nem sikerült feldolgozni a KMP üzenetet\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "%2$d méretű, %1$d KMP üzenet érkezett\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Nem ESP TLV-k (%d. csoport) érkeztek az ESP egyeztetési KMP-ben\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Hiba az oNCP egyeztetési kérés létrehozásakor\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Rövid írás az oCNP egyeztetésben\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "%d bájt kiolvasva az SSL rekordból\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "%d méretű ismeretlen válasz a gépnév csomag után\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "A kiszolgáló válasza a gépnév csomagra: 0x%02x hiba\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Érvénytelen várakozó csomag a KMP 301-hez\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "KMP 301 üzenet várva, de %d érkezett a kiszolgálótól\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "A szervertől érkező KMP 301 üzenet túl nagy (%d bájt)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "%d hosszú KMP 301 üzenet érkezett\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "A folytatási rekord hosszának olvasása sikertelen\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "A további %d bájtos rekord túl nagy; %d lenne\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "A(z) %d hosszú folytatási rekord olvasása sikertelen\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "A KMP 301 üzenet további %d bájtja beolvasva\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Hiba az ESP kulcsok egyeztetésekor\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "oNCP egyeztetési kérés kimenő:\n" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "új bejövő" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "új kimenő" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Az oNCP hossz mezőjének csak 1 bájtja olvasva\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "A kiszolgáló megszakította a kapcsolatot (munkamenet lejárt)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "A kiszolgáló megszakította a kapcsolatot (ok: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "A kiszolgáló nulla hosszú oNCP rekordot küldött\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Bejövő, %2$d méretű, KMP %1$d. üzenet (kapott: %3$d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" "A KMP %d üzenet feldolgozásának folytatása, mérete most: %d (kapott: %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Nem felismert adatcsomag\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Ismeretlen, %2$d méretű, KMP %1$d üzenet:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + %d további, nem fogadott bájt\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Kimenő csomag:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "ESP engedélyezési vezérlőcsomag elküldve\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" "HIBA: %s() érvénytelen UTF-8 értékkel lett meghívva a(z) „%s” argumentumnál\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Nem sikerült a DTLS ráhagyás kiszámítása ehhez: %s\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Nem sikerült az SSL_SESSION ASN.1 létrehozása az OpenSSL-nél: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Az OpenSSL nem tudta feldolgozni: SSL_SESSION ASN.1\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "A DTLSv1 munkamenet előkészítése nem sikerült\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK visszahívás\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "A DTLSv1 CTX előkészítése nem sikerült\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "A DTLS CTX verzió beállítása sikertelen\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Nem sikerült a DTLS kulcs előállítása\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "A DTLS titkosítólista beállítása nem sikerült\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Ez valószínűleg azért lehet, mert az OpenSSL törött\n" "Nézze meg a http://rt.openssl.org/Ticket/Display.html?id=2984 oldalt\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "A DTLS kézfogás meghiúsult: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Nem sikerült előkészíteni az ESP titkosítót:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Nem sikerült előkészíteni az ESP HMAC kódot\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" "Nem sikerült beállítani a titkosításfeloldási környezetet az ESP csomaghoz:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Nem sikerült feloldani az ESP csomag titkosítását: %s\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Nem sikerült az ESP csomag titkosítása:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nem sikerült libp11 PKCS#11 környezetet létesíteni:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nem sikerült betölteni a PKCS#11-et biztosító modult (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN-kód zárolva\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN-kód lejárt\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Egy másik felhasználó már bejelentkezett\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Ismeretlen hiba a PKCS#11 tokenbe való bejelentkezéskor\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Bejelentkezve a következő PKCS#11 tárolóhelyre: „%s”\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" "Nem sikerült a tanúsítványok felsorolása a következő PKCS#11 tárolóhelyen: " "„%s”\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d tanúsítvány található a következő tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nem sikerült a következő PKCS#11 URI feldolgozása: „%s”\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nem sikerült felsorolni a PKCS#11 tárolóhelyeket\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Bejelentkezés a következő PKCS#11 tárolóhelyre: „%s”\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nem sikerült megtalálni a(z) „%s” PKCS#11 tanúsítványt\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "A tanúsítvány X.509 tartalmát nem kérte le a libp11\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" "Nem sikerült a kulcsok felsorolása a következő PKCS#11 tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d kulcs található a következő tárolóhelyen: „%s”\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "A tanúsítványban nincs nyilvános kulcs\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "A tanúsítvány nem egyezik a titkos kulccsal\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Az EC kulcsellenőrzés egyezik a tanúsítvánnyal\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Nem sikerült lefoglalni a mintapuffert\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nem sikerült aláírni a látszatadatokat az EC kulcs ellenőrzéséhez\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nem sikerült megtalálni a(z) „%s” PKCS#11 kulcsot\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Az OpenConnect ezen verziója PKCS#11 támogatás nélkül készült\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Kezeletlen SSL UI kéréstípus: %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "A PEM jelszó túl hosszú (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "A személyes kulcs betöltése nem sikerült\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nem sikerült a tanúsítvány telepítése az OpenSSL környezetben\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "További tanúsítvány innen: %s: „%s”\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "A PKCS#12 feldolgozása nem sikerült (lásd a fenti hibákat)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "A PKCS#12 nem tartalmazott tanúsítványt!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "A PKCS#12 nem tartalmazott személyes kulcsot!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Nem sikerült betölteni a TPM motort.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Nem sikerült előkészíteni a TPM motort\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Nem sikerült beállítani a TPM SRK jelszót\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Nem sikerült betölteni a TPM személyes kulcsot\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nem sikerült a(z) %s tanúsítványfájl megnyitása: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "A tanúsítvány betöltése nem sikerült\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Nem sikerült minden támogatott tanúsítvány feldolgozása. Azért megpróbálom…\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM fájl" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nem sikerült a BIO létrehozása a következő kulcstartó elemnél: „%s”\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "A személyes kulcs betöltése nem sikerült (rossz jelmondat?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "A személyes kulcs betöltése nem sikerült (lásd a fenti hibákat)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nem sikerült betölteni az X509 tanúsítványt a kulcstartóról\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "A(z) %s személyes kulcsfájl megnyitása nem sikerült: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "A PKCS#8 átalakítása OpenSSL EVP_PKEY kulcsra sikertelen\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nem sikerült azonosítani a személyes kulcs típusát ebben: „%s”\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Egyező DNS altname: „%s”\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Nincs egyezés a következő altname értékre: „%s”\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "A tanúsítványnak GEN_IPADD altname értéke van hamis hosszal: %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Egyező %s cím: „%s”\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nincs egyezés a(z) %s címmel: „%s”\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "A(z) „%s” URI nem üres útvonallal rendelkezik; mellőzés\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Egyező URI: „%s”\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Nincs egyezés a következő URI-ra: „%s”\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Nincs altname érték a következőre illeszkedő csomópont tanúsítványában: " "„%s”\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Nincs tárgynév a csomópont tanúsítványában!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Nem sikerült a tárgynév feldolgozása a csomópont tanúsítványában\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "A csomópont tanúsítvány tárgya nem megfelelő („%s” != „%s”)\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Egyező csomópont tanúsítvány tárgynév: „%s”\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "További tanúsítvány a hitelesítésszolgáltató fájlból: „%s”\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Hiba a kliens tanúsítvány notAfter mezőjében\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "Az SSL tanúsítvány és a kulcs nem egyezik\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nem sikerült a tanúsítványok olvasása a CA fájlból: „%s”\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nem sikerült megnyitni a CA fájlt: „%s”\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "TLSv1 CTX létrehozása sikertelen\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Az SSL kapcsolat meghiúsult\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Nem sikerült kiszámítani a OATH HMAC kódot\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "EAP-TTLS egyeztetés ezzel: %s\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "Az EAP-TTLS kapcsolat meghiúsult: %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "Belső örökölt IP-cím érkezett: %s\n" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "Nem sikerült kezelni az IPv6-címet\n" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "Belső IPv6-cím érkezett: %s\n" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "Váratlan hossz (%d) a 0x%x attribútumnál\n" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ESP titkosítás: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Csak ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "Ismeretlen attribútum: 0x%x, hossz: %d:%s\n" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "%d bájt kiolvasva az IF-T/TLS rekordból\n" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "Hiba az IF-T csomag létrehozásakor\n" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "Hiba az EAP csomag létrehozásakor\n" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "Váratlan IF-T/TLS hitelesítés kihívás:\n" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "Váratlan EAP-TTLS adat:\n" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "Nem sikerült feldolgozni az AVP-t\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Munkamenetkorlát elérve. Válasszon munkamenetet a kilövéshez:\n" #: pulse.c:875 msgid "Session:" msgstr "Munkamenet:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Nem sikerült feldolgozni a munkamenetlistát\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Másodlagos hitelesítési adatok megadása:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Felhasználói hitelesítési adatok megadása:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Másodlagos felhasználónév:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Felhasználónév:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Jelszó:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Másodlagos jelszó:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "Tokenkód kérés:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Adja meg a választ:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Adja meg a jelkódját:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Adja meg a másodlagos token információját:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Hiba a Pulse kapcsolódási kérés létrehozásakor\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "Váratlan válasz az IF-T/TLS verzióegyeztetéshez:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "IF-T/TLS verzió a kiszolgálóról: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "Nem sikerült az EAP-TTLS munkamenet kiépítése\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Hitelesítési hiba: 0x%02x kód\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Pulse hitelesítési süti nincs elfogadva\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "Pulse jelszó hitelesítési kérés, 0x%02x kód\n" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "Pulse jelszó általános tokenkód kérés\n" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "Kezeletlen Pulse hitelesítési kérés\n" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "%d bájt kiolvasva az IF-T/TLS EAP-TTLS rekordból\n" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Érvénytelen Pulse beállítási csomag:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "Ismeretlen 0x%08x típusú útvonal érkezett\n" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Érvénytelen ESP beállítási csomag:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Érvénytelen ESP beállítás\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "ESP kulcsmegújítás sikertelen\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Ismeretlen Pulse csomag\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Rossz felosztott felvétel eldobása: „%s”\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Rossz felosztott kizárás eldobása: „%s”\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nem sikerült a(z) „%s” parancsfájl elindítása ehhez: %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "A(z) „%s” parancsfájl nem megfelelő módon lépett ki (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "A(z) „%s” parancsfájl a következő hibakóddal tért vissza: %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Foglalat-csatlakozás megszakítva\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nem sikerült újracsatlakozni a(z) %s proxyhoz: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nem sikerült újracsatlakozni a(z) %s géphez: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy a libproxy könyvtárból: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "A getaddrinfo meghiúsult a(z) „%s” gépnél: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Újracsatlakozás a DynDNS kiszolgálóhoz az előzőleg gyorsítótárazott IP-cím " "használatával\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Kapcsolódási kísérlet a következő proxy-hoz: %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Kapcsolódási kísérlet a következő kiszolgálóhoz: %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Csatlakozva ide: %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Nem sikerült lefoglalni a sockaddr tárolót\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Nem sikerült ide kapcsolódni: %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "A nem funkcionális előző csomópont címének elfelejtése\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nem sikerült kapcsolódni a következő géphez: %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Újracsatlakozás a proxyhoz: „%s”\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nem sikerült beszerezni a fájlrendszer azonosítót a jelszóhoz\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "A(z) „%s” személyes kulcsfájl megnyitása nem sikerült: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Nincs hiba" #: ssl.c:727 msgid "Keystore locked" msgstr "Kulcstároló zárolva" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Kulcstároló nincs előkészítve" #: ssl.c:729 msgid "System error" msgstr "Rendszerhiba" #: ssl.c:730 msgid "Protocol error" msgstr "Protokollhiba" #: ssl.c:731 msgid "Permission denied" msgstr "Hozzáférés megtagadva" #: ssl.c:732 msgid "Key not found" msgstr "Kulcs nem található" #: ssl.c:733 msgid "Value corrupted" msgstr "Sérült érték" #: ssl.c:734 msgid "Undefined action" msgstr "Meghatározatlan művelet" #: ssl.c:738 msgid "Wrong password" msgstr "Hibás jelszó" #: ssl.c:739 msgid "Unknown error" msgstr "Ismeretlen hiba" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nem sikerült megnyitni: %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Nem sikerült az fstat() %s hívás: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nem sikerült %d bájtot lefoglalni ehhez: %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nem sikerült beolvasni: %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Ismeretlen protokollcsalád: %d. Nem hozható létre UDP kiszolgálócím\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "UDP foglalat megnyitása" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Ismeretlen protokollcsalád: %d. Nem használható az UDP átvitel\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "UDP foglalat kötése" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "A süti nem érvényes többé, munkamenet befejezése\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "alvás: %dmp, hátralévő időkorlát: %dmp\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "Az SSPI token túl nagy (%ld bájt)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "%lu bájt SSPI token küldése\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Nem sikerült elküldeni az SSPI hitelesítési tokent a proxynak: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Nem sikerült fogadni az SSPI hitelesítési tokent a proxytól: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "A SOCKS kiszolgáló SSPI környezet hibát jelentett\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Ismeretlen SSPI állapotválasz (0x%02x) a SOCKS kiszolgálótól\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "%lu bájt SSPI token érkezett: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() sikertelen: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() sikertelen: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Az EncryptMessage() eredménye túl nagy (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "%u bájt SSPI védelemegyeztetés küldése\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nem sikerült elküldeni az SSPI védelem választ a proxynak: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nem sikerült fogadni az SSPI védelem választ a proxytól: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "%d bájt SSPI védelem válasz érkezett: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage sikertelen: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Érvénytelen SSPI védelem válasz a proxytól (%lu bájt)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Adja meg a hitelesítési adatokat a szoftveres token feloldásához." #: stoken.c:107 msgid "Device ID:" msgstr "Eszközazonosító:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "A felhasználó megkerülte a szoftveres tokent.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Minden mező kötelező, próbálja újra.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Általános hiba a libstoken könyvtárban.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Hibás eszközazonosító vagy jelszó, próbálja újra.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "A szoftveres token előkészítése sikeres volt.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Adja meg a szoftveres token PIN-kódját." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Érvénytelen PIN-formátum, próbálja újra.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "RSA tokenkód előállítása\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Hiba a hálózati adatperek rendszerleíró kulcsához való hozzáféréskor\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() sikertelen: %s\n" "Visszaállás a GetAdaptersInfo() függvényre\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() sikertelen: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Nem sikerült megnyitni: %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nem sikerült megszerezni a TAP illesztőprogram verzióját: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Hiba: TAP-Windows illesztőprogram v9.9 vagy újabb szükséges (%ld.%ld " "található)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nem sikerült beállítani a TAP IP-címeket: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nem sikerült beállítani a TAP médiaállapotot: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "A TAP eszköz megszakította a kapcsolódási lehetőséget. Leválasztás.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nem sikerült olvasni a TAP eszközről: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nem sikerült befejezni az olvasást a TAP eszközről: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld bájt kiírva a tun eszközre\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Várakozás a tun írásra…\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "%ld bájt kiírva a tun eszközre a várakozás után\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nem sikerült írni a TAP eszközre: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Alagút parancsfájlok indítása még nem támogatott Windows rendszeren\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Nem sikerült a /dev/tun megnyitása az átvizsgáláshoz" #: tun.c:92 msgid "Can't push IP" msgstr "Nem sikerült az IP küldése" #: tun.c:102 msgid "Can't set ifname" msgstr "Nem sikerült az ifname beállítása" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Nem sikerült a(z) %s átvizsgálása IPv%d esetén: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun megnyitása" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nem sikerült az új tun létrehozása" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Nem sikerült a tun fájlleíró átállítása message-discard módba" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "A tun eszköz nem támogatott ezen a platformon\n" #: tun.c:205 msgid "open net" msgstr "net megnyitása" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Nem sikerült megnyitni a tun eszközt: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nem sikerült kötni a helyi tun eszközt (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "A helyi hálózatkezelés beállításához az openconnect programot " "rendszergazdaként kell futtatni\n" "További információkért nézze meg a következő oldalt:\n" "https://www.infradead.org/openconnect/nonroot.html oldalt\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" "Érvénytelen „%s” nevű csatoló; egyeznie kell ezzel: „utun%%d” vagy „tun%%d”\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nem sikerült megnyitni a SYSPROTO_CONTROL foglalatot: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nem sikerült lekérdezni az utun vezérlő azonosítót: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nem sikerült lefoglalni az utun eszköz nevét\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nem sikerült kapcsolódni az utun egységhez: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Érvénytelen „%s” nevű csatoló; egyeznie kell ezzel: „tun%%d”\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "A(z) „%s” nem nyitható meg: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair sikertelen: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "fork sikertelen: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(parancsfájl)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nem sikerült a bejövő csomag írása: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "A(z) „%s” gép kezelése nyers gépnévként\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "A meglévő fájl SHA1 ellenőrzése nem sikerült\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML beállítófájl SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nem sikerült feldolgozni az XML beállítófájlt: %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "A(z) „%s” gépnek „%s” címe van\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "A „%s” gépnek „%s” felhasználói csoportja van\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "A(z) „%s” gép nincs felsorolva a beállításban; nyers gépnévként lesz " "kezelve\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nem sikerült a(z) „%s” küldése a ykneo-oath kisalkalmazásnak: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Érvénytelen rövid válasz a ykneo-oath kisalkalmazástól ehhez: „%s”\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Hibás válasz ehhez: „%s”: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "kisalkalmazás parancs kiválasztása" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Azonosítatlan válasz a ykneo-oath kisalkalmazástól\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "%d.%d.%d. verziójú ykneo-oath kisalkalmazás található\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "PIN-kód szükséges a Yubikey OATH kisalkalmazáshoz" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN-kód:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nem sikerült kiszámítani a Yubikey feloldási választ\n" #: yubikey.c:274 msgid "unlock command" msgstr "feloldási parancs" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "A Yubikey PIN csonkolt karakteres PBKBF2 változatának kipróbálása\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nem sikerült PC/SC környezetet létesíteni: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC környezet kiépítve\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nem sikerült lekérdezni az olvasólistát: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nem sikerült kapcsolódni a(z) „%s” PC/SC olvasóhoz: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Kapcsolódva a(z) „%s” PC/SC olvasóhoz\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" "Nem sikerült kizárólagos hozzáférést szerezni a(z) „%s” olvasóhoz: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "kulcsok listázása parancs" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "%s/%s „%s” kulcs található ezen: „%s”\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "A(z) „%s” token nem található ezen a Yubikey-en: „%s”. Másik Yubikey " "keresése…\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" "A kiszolgáló visszautasította a Yubikey tokent; átváltás kézi bevitelre\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Yubikey tokenkód előállítása\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nem sikerült kizárólagos hozzáférést szerezni a Yubikey-hez: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "kiszámítás parancs" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Azonosítatlan válasz a Yubikey-től a tokenkód előállításakor\n" openconnect-8.20/po/sr@latin.po0000644000076400007640000050123514204456074020276 0ustar00dwoodhoudwoodhou00000000000000# Serbian translations for network-manager-openconnect. # Courtesy of Prevod.org team (http://prevod.org/) -- 2011—2017. # Copyright © 2011 THE F'S COPYRIGHT HOLDER # This file is distributed under the same license as the network-manager-openconnect package. # Miroslav Nikolić , 2011—2017. msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2022-01-18 18:59+0200\n" "Last-Translator: Miroslav Nikolić \n" "Language-Team: srpski \n" "Language: sr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=4; plural=n==1? 3 : n%10==1 && n%100!=11 ? 0 : n" "%10>=2 && n%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2;\n" "X-Project-Style: gnome\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Neispravan kolačić „%s“\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Neočekivan %d rezultat sa servera\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Nije uspela raspodela\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Primljen je kratak paket (%d bajta)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL je zapisao premalo bajtova! Tražio je %d, poslao je %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "Istek promene ključa CSTP-a\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Ponovno rukovanje nije uspelo; pokušavam novi tunel\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Šaljem paket nezapakovanih podataka od %d bajta\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Pokušaj novu DTLS vezu\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Primljen je DTLS paket 0x%02x od %d bajta\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "Istek promene ključa DTLS-a\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Nije uspelo ponovno DTLS rukovanje; pnovo se povezujem.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "Otkrivanje mrtvog parnjaka DTLS-a je otkrilo mrtvog parnjaka!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Poslah DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem DPD zahtev. Očekujte prekid veze\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "Poslao sam DTLS paket od %d bajta; DTLS-ovo slanje je dalo %d\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Odjavljivanje nije uspelo\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Odjavljivanje je uspelo.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "Nisam uspeo da stvorim OTP kod modula; isključujem modul\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Zanemarujem stavku predaje nepoznatog oblika „%s“\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Zanemarujem vrstu unosa nepoznatog oblika „%s“\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Odbacujem udvostručene opcije „%s“\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ne mogu da radim sa načinom=„%s“ obrasca, radnja=„%s“\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Nepoznato polje tekstualne oblasti: „%s“\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "Nisam uspeo da dodelim memoriju za komunikaciju sa TNCC-om\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC podrška još nije primenjena na Vindouzu\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "Nema „DSPREAUTH“ kolačića; ne pokušavam TNCC\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "Nisam uspeo da izvršim TNCC skriptu „%s“: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Poslah početak; čekam na odgovor od TNCC-a\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "Nisam uspeo da pročitam odgovor od TNCC-a\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "Primih bezuspešan %s odgovor od TNCC-a\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "Dobih novi „DSPREAUTH“ kolačić od TNCC-a: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "Nisam uspeo da obradim HTML dokument\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" "Nisam uspeo da nađem ili da obradim obrazac veba na stranici prijavljivanja\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Izbacujem nepoznati HTML obrazac:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Izbor obrasca nema naziv\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "naziv „%s“ nije ulaz\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Nema vrste ulaza za obrazac\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Nema naziva ulaza u obrascu\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Nepoznata vrsta ulaza „%s“ u obrascu\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Prazan odgovor sa servera\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Nisam uspeo da obradim odgovor servera\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Odgovor je bio:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Primih kada nije očekivan.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "IksML odgovor nema čvor „auth“\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Zatražena mi je lozinka ali je postavljeno „--no-passwd“\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "Ne preuzimam IksML profil jer SHA1 već odgovara\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Nisam uspeo da otvorim HTTPS vezu sa „%s“\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Nisam uspeo da pošaljem „GET“ zahtev za novo podešavanje\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Preuzeta datoteka podešavanja ne odgovara željenom SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Preuzet je novi IkML profil\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Greška: Pokretanje trojanca „Cisko bezbedne radne površi“ na ovoj platformi " "još nije primenjeno.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "Nisam uspeo da podesim gib %ld: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Nisam uspeo da podesim grupu na %ld: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "Nisam uspeo da podesim jib %ld: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Neispravan korisnički jib=%ld: %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Nisam uspeo da pređem u lični CSD direktorijum „%s“: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Greška: Server je zatražio da pokrenemo CSD pregled domaćina.\n" "Morate da obezbedite odgovarajući „--csd-wrapper“ argument.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Greška: Server je zatražio da preuzmemo i pokrenemo trojanca „Cisko bezbedne " "radne površi“.\n" "Ova okolnost je isključena po osnovi iz bezbednosnih razloga, tako da biste " "možda želeli da je uključite.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Privremeni direktorijum „%s“ nije upisiv: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Nisam uspeo da otvorim privremenu datoteku CSD skripte: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Nisam uspeo da zapišem privremenu datoteku CSD skripte: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Upozorenje: pokrenuli ste nebezbedni CSD kod sa administratorskim " "ovlašćenjima\n" "\t Koristite opciju „--csd-user“\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Nisam uspeo da izvršim CSD skriptu „%s“\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Nepoznat odgovor sa servera\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" "Server je zatražio uverenje SSL klijenta nakon što je dostavljeno jedno\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "Server je zatražio uverenje SSL klijenta; nijedno nije podešeno\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "IksML POST je uključen\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Osvežavam „%s“ nakon 1 sekunde...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(greška 0h%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Greška prilikom opisivanja greške!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "GREŠKA: Ne mogu da pokrenem priključnice\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO prim por %d, posl por %d, por ogl %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAHSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" "KRITIČNA GREŠKA: Glavna tajna DTLS-a nije pokrenuta. Izvestite o ovome.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Greška stvaranja zahteva za HTTPS POVEZIVANJE\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Greška dovlačenja HTTPS odgovora\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN usluga nije dostupna; razlog: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Dobih neodgovarajući odgovor HTTP POVEZIVANJA: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Dobih odgovor POVEZIVANJA: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Nema memorije za opcije\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "IB sesije H-DTLS-a nije 64 znaka; već: „%s“\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "IB sesije H-DTLS-a nije ispravan; već je: „%s“\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Nepoznato kodiranje DTLS sadržaja %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Nepoznato kodiranje CSTP sadržaja %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "MTU nije primljen. Prekidam\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP je povezan. DPD %d, Održi živim %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Podešavanje pakovanja nije uspelo\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Dodela međumemorije izduvavanja nije uspela\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "naduvavanje nije uspelo\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "Nije uspelo LZS raspakivanje: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "Nije uspelo LZ4 raspakivanje\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Nepoznata vrsta pakovanja „%d“\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "Primih %s zapakovani paket podataka od %d bajta (beše %d)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "izduvavanje nije uspelo %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Neočekivana dužina paketa. SSL_čitanje je dalo %d ali paket je\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Dobih CSTP DPD zahtev\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Dobih CSTP DPD odgovor\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Dobih CSTP Održi živim\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Primih paket nezapakovanih podataka od %d bajta\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Primih prekid veze sa servera: %02x „%s“\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Primih prekid veze sa servera\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Sažeti paket je primljen u „!deflate“ režimu\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "primljen je serverov paket okončavanja\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Nepoznat paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "Otkrivanje mrtvog parnjaka CSTP-a je otkrilo mrtvog parnjaka!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Ponovno povezivanje nije uspelo\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Poslah CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Poslah CSTP Održi živim\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Šaljem paket zapakovanih podataka od %d bajta (beše %d)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Poslah paket ODLASKA: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Pokušavam svarivanje potvrđivanja identiteta sa posrednikom\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "Pokušavam prihvatanje potvrđivanja identiteta na serveru „%s“\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS veza je pokušana sa postojećim fd-om\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Nema DTLS adrese\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server je nije ponudio opciju DTLS šifrera\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Nema DTLS-a kada ste povezani putem posrednika\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS je pokrenut. DPD %d, Održi živim %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Primljen je nepoznat paket (dužine %d): %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS ovo: %d, TOS poslednje: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "Podešava opcije priključnice UDP" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Dobih DTLS DPD zahtev\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem DPD odgovor. Očekujte prekid veze\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Dobih DTLS DPD odgovor\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Dobih DTLS Održi živim\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Zapakovani DTLS paket je primljen kada zapakivanje nije uključeno\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Nepoznata vrsta DTLS paketa %02x, dužina %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Poslah DTLS Održi živim\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Nisam uspeo da pošaljem zahtev održi živim. Očekujte prekid veze\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "Šaljem MTU DPD probu (%u bajta)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "Nisam uspeo da pošaljem DPD zahtev (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "Predugo vreme u petlji MTU otkrivanja; podrazumevam pregovoreni MTU.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "Predugo vreme u petlji MTU otkrivanja; MTU je postavljen na %d.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "Primih neočekivani paket (%.2x) u MTU otkrivanju; preskačem.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "Nisam uspeo da primim DPD zahtev (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "Primih MTU DPD probu (%u bajta)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "Otrio sam MTU od %d bajta (beše %d)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Nema promene u MTU nakon otkrivanja (beše %d)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "Prihvatam očekivani ESP paket sa nizom %u\n" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" "Prihvatam ESP paket kasnije-nego-očekivano sa nizom %u (očekivah %)\n" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "Odbacujem stari ESP paket sa nizom %u (očekivah %)\n" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "Odbacujem odgovoreni ESP paket sa nizom %u\n" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "Prihvatam ESP paket bez najave sa nizom %u (očekivah %)\n" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "Parametri za %s ESP: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "Vrsta „%s“ ESP šifrovanja ključ 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "Vrsta „%s“ ESP prijavljivanja ključ 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "dolazno" #: esp.c:94 msgid "outgoing" msgstr "odlazno" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "Poslah ESP probe\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Primih ESP paket sa neispravnim SPI-em 0x%08x\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "Neispravna dužina popune %02x U ESP-u\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "Neispravni bitovi popune U ESP-u\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "ESP sesija je uspostavljena sa serverom\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "Nisam uspeo da dodelim memoriju za dešifrovanje ESP paketa\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "LZO raspakivanje ESP paketa nije uspelo\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO je raspakovao %d bajta u %d\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "Ponovno stvaranje ključa nije primenjeno za ESP\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP je otkrio mrtvog parnjaka\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "Poslah ESP probe za DPD\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "Održi živim nije primenjeno za ESP\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "Nisam uspeo da pošaljem ESP paket: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "Nisam uspeo da stvorim nisku hitnosti DTLS-a\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "Nisam uspeo da postavim hitnost DTLS-a: „%s“: %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Nisam uspeo da dodelim akreditive: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "Nisam uspeo da stvorim DTLS ključ: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "Nisam uspeo da postavim DTLS ključ: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "Nisam uspeo da postavim akreditive DTLS PSK-a: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "Nepoznati DTLS parametri za zatraženi Komplet šifrera „%s“\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Nisam uspeo da postavim parametre DTLS sesije: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "Nisam uspeo da pokrenem DTLS: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "MTU %d parnjaka je premalo da dozvoli DTLS\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU je smanjeno na %d\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "Povraćaj DTLS sesije nije uspeo; moguć MITM napad. Isključujem DTLS.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Nisam uspeo da postavim DTLS MTU: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "Uspostavljena je DTLS veza (koristim GnuTLS). Komplet šifrera %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "Zapakivanje DTLS veze sa „%s“.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "Isteklo je vreme DTLS rukovanja\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Nije uspelo DTLS rukovanje: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Da li vas mrežna barijera sprečava da pošaljete UDP pakete?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Nisam uspeo da pokrenem ESP šifrera: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "Nisam uspeo da pokrenem ESP HMAC: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "Nisam uspeo da izračunam HMAC za ESP paket: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Primih ESP paket sa neispravnim HMAC-om\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "Nije uspelo dešifrovanje ESP paketa: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "Nisam uspeo da šifrujem ESP paket: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Ne mogu da izvučem vreme isteka uverenja\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Uverenje klijenta je isteklo u" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Uverenje klijenta uskoro ističe" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Nisam uspeo da učitam „%s“ iz smeštaja ključa: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku ključa/uverenja „%s“: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "Nisam uspeo da dobavim podatke datoteke ključa/uverenja „%s“: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Nisam uspeo da dodelim međumemoriju uverenja\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Nisam uspeo da učitam uverenje u memoriju: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Nisam uspeo da postavim strukturu PKCS#12 podataka: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Nisam uspeo da dešifrujem datoteku PKCS#12 uverenja\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Unesite PKCS#12 lozinku:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Nisam uspeo da obradim PKCS#12 datoteku: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Nisam uspeo da učitam PKCS#12 uverenje: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ne mogu da pokrenem MD5 heš: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "Greška MD5 heša: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" "Nedostaje zaglavlje „DEK-Info:“ iz ključa šifrovanog Otvorenim SSl-om\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Ne mogu da odredim vrstu PEM šifrovanja\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Nepodržana vrsta PEM šifrovanja: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Neispravan prisolak u šifrovanoj PEM datoteci\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Greška šifrovane PEM datoteke osnove64-dekodiranja: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Šifrovana PEM datoteka je prekratka\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Nisam uspeo da pokrenem šifrera za dešifrovanje PEM datoteke: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Nisam uspeo da dešifrujem PEM ključ: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Nije uspelo dešifrovanje PEM ključa\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Unesite PEM lozinku:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Ova izvršna je izgrađena bez podrške ključa sistema\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Ova izvršna je izgrađena bez podrške PKCS#11\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Koristim PKCS#11 uverenje „%s“\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Koristim sistemsko uverenje „%s“\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Greška učitavanja uverenja iz PKCS#11: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Greška učitavanja sistemskog uverenja: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Koristim datoteku uverenja „%s“\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 datoteka ne sadrži uverenje\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Nisam pronašao uverenje u datoteci" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Nisam uspeo da uvezem uverenje: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Koristim sistemski ključ „%s“\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Greška pokretanja strukture ličnog ključa: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Greška uvoza sistemskog ključa „%s“: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "Pokušavam adresu PKCS#11 ključa „%s“\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Greška pokretanja strukture PKCS#11 ključa: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Greška uvoza PKCS#11 adrese „%s“: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Koristim PKCS#11 ključ „%s“\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Greška uvoza PKCS#11 ključa u strukturu ličnog ključa: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Koristim datoteku ličnog ključa „%s“\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez TPM podrške\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Nisam uspeo da protumačim PEM datoteku\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Nisam uspeo da učitam PKCS#1 lični ključ: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Nisam uspeo da učitam lični ključ kao PKCS#8: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Nisam uspeo da dešifrujem datoteku PKCS#8 uverenja\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Nisam uspeo da odredim vrstu ličnog ključa „%s“\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Unesite PKCS#8 lozinku:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Nisam uspeo da dobavim IB ključa: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Greška potpisivanja probnih podataka ličnim ključem: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Greška potvrđivanja potpisa naspram uverenja: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Nisam našao SSL uverenje koje odgovara ličnom ključu\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Koristim uverenje klijenta „%s“\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Nisam uspeo da dodelim memoriju za uverenje\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "Nisam dobio izdavača iz PKCS#11\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "Dobih sledećeg izdavača uverenja „%s“ iz PKCS#11\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Nisam uspeo da dodelim memoriju za podržavanje uverenja\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Dodajem podržavajuće „%s“ izdavača uverenja\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Nisam uspeo da uvezem H509 uverenje: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Nisam uspeo da postavim PKCS#11 uverenje: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Podešavanje spiska oporavka uverenja nije uspelo: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Nisam uspeo da podesim uverenje: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Server nije predstavio nijedno uverenje\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "Greška upoređivanja uverenja servera pri ponovnom rukovanju: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Server je predstavio drugačije uverenje pri ponovnom rukovanju\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Server je predstavio isto uverenje pri ponovnom rukovanju\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Greška pokretanja strukture X509 uverenja\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Greška uvoza serverskog uverenja\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Ne mogu da izračunam heš serverskog uverenja\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Greška provere stanja uverenja servera\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "uverenje je opozvano" #: gnutls.c:2098 msgid "signer not found" msgstr "potpisnik nije pronađen" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "potpisnik nije uverenje izdavača uverenja" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "nebezbedni algoritam" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "uverenje još nije aktivirano" #: gnutls.c:2106 msgid "certificate expired" msgstr "uverenje je isteklo" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "provera potpisa nije uspela" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "uverenje ne odgovara nazivu domaćina" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Nije uspela provera uverenja servera: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" "Nisam uspeo da dodelim memoriju za uverenja datoteke izdavača uverenja\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Nisam uspeo da pročitam uverenja iz datoteke izdavača uverenja: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Nisam uspeo da otvorim datoteku izdavača uverenja „%s“: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Nisam uspeo da učitam uverenje. Prekidam.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL pregovaranje sa „%s“\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL veza je otkazana\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "Neuspeh SSL veze: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "Ne-kobni rezultat GnuTLS-a za vreme rukovanja: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "Potreban je PIN za %s“" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Pogrešan PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Ovo je poslednji pokušaj pre zaključavanja!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Ostalo je samo nekoliko pokušaja pre zaključavanja!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Unesite PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Nepodržani OATH HMAC algoritam\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "Nisam uspeo da izračunam OATH HMAC: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "Funkcija TPM znaka je pozvana za %d bajta.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Nisam uspeo da napravim TPM heš objekat: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Nisam uspeo da podesim TPM heš objekat: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Nije uspeo TPM heš potpis: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Greška dekodiranja bloba TSS ključa: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Greška u blobu TSS ključa\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Nisam uspeo da napravim TPM kontekst: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Nisam uspeo da povežem TPM kontekst: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Nisam uspeo da učitam TPM SRK ključ: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Nisam uspeo da učitam objekt TPM SRK politike: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Nisam uspeo da podesim TPM PIN: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Nisam uspeo da učitam blob TPM ključa: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Unesite TPM SRK PIN:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Nisam uspeo da napravim objekat politike ključa: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Nisam uspeo da dodelim politiku ključu: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Unesite PIN TPM ključa:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Nisam uspeo da podesim PIN ključa: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Zanemarujem ESP ključeve pošto ESP podrška nije dostupna u ovom izdanju\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Greška uvoza GSSAPI naziva za potvrđivanje identiteta:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "Greška stvaranja GSSAPI odgovora:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Pokušavam GSSAPI potvrđivanje identiteta sa posrednikom\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "Pokušavam GSSAPI potvrđivanje identiteta sa serverom „%s“\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI potvrđivanje identiteta je obavljeno\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI modul je prevelik (%zd bajta)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "Šaljem GSSAPI modul od %zu bajta\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Nisam uspeo da pošaljem GSSAPI modul potvrđivanja identiteta posredniku: %s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" "Nisam uspeo da primim GSSAPI modul potvrđivanja identiteta od posrednika: " "%s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS server je izvestio o neuspehu GSSAPI konteksta\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat odgovor GSSAPI stanja (0h%02x) sa SOCKS servera\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobih GSSAPI modul od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "Šaljem pregovor GSSAPI zaštite od %zu bajta\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Nisam uspeo da pošaljem odgovor GSSAPI zaštite posredniku: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Nisam uspeo da primim odgovor GSSAPI zaštite od posrednika: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "Dobih odgovor GSSAPI zaštite od %zu bajta: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Neispravan odgovor GSSAPI zaštite sa posrednika (%zu bajta)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS posrednik traži celovitost poruke, što nije podržano\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS posrednik traži poverljivost poruke, što nije podržano\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS posrednik traži nepoznatu vrstu zaštite 0h%02x\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Pokušavam HTTP Osnovno potvrđivanje identiteta sa posrednikom\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "Pokušavam HTTP Osnovno potvrđivanje identiteta sa serverom „%s“\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez GSSAPI podrške\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Posrednik zahteva Osnovno potvrđivanje identiteta koje je po osnovi " "isključeno\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Server „%s“ zahteva Osnovno potvrđivanje identiteta koje je po osnovi " "isključeno\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Nema više načina potvrđivanja identiteta\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Nema memorije za dodelu kolačića\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Nisam uspeo da obradim HTTP odgovor „%s“\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Dobih HTTP odgovor: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Zanemarujem nepoznati red HTTP odgovora „%s“\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Ponuđen je neispravan kolačić: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Nije uspelo potvrđivanje identiteta SSL uverenja\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Telo odgovora ima negativnu veličinu (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Nepoznato prenosno-kodiranje: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP telo %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Greška čitanja tela HTTP odgovora\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Greška dovlačenja zaglavlja delića\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Greška dovlačenja tela HTTP odgovora\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ne mogu da primim HTTP 1.0 telo bez zatvaranja veze\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Nisam uspeo da obradim preusmerenu adresu „%s“: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ne mogu da pratim preusmerenje na ne-https adrese „%s“\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Nije uspelo dodeljivanje nove putanje za relativno preusmerenje: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "zahtev je odobren" #: http.c:1003 msgid "general failure" msgstr "opšti neuspeh" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "veza nije dozvoljena skupom pravila" #: http.c:1005 msgid "network unreachable" msgstr "mreža je nedostižna" #: http.c:1006 msgid "host unreachable" msgstr "domaćin je nedostižan" #: http.c:1007 msgid "connection refused by destination host" msgstr "vezu je odbio odredišni domaćin" #: http.c:1008 msgid "TTL expired" msgstr "TTL je isteklo" #: http.c:1009 msgid "command not supported / protocol error" msgstr "naredba nije podržana / greška protokola" #: http.c:1010 msgid "address type not supported" msgstr "vrsta adrese nije podržana" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS server je zatražio korisničko ime/lozinku ali mi nemamo nijedno\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "Korisničko ime i lozinka za SOCKS potvrđivanje identiteta moraju biti < 255 " "bajta\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" "Greška pisanja zahteva potvrđivanja identiteta na SOCKS posredniku: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" "Greška čitanja zahteva potvrđivanja identiteta sa SOCKS posrednika: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" "Neočekivan odgovor potvrđivanja identiteta sa SOCKS posrednika: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Potvrdili ste identitet na SOCKS posredniku koristeći lozinku\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "Nije uspelo potvrđivanje identiteta lozinkom na SOCKS serveru\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS server zahteva GSSAPI potvrđivanje identiteta\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS server zahteva potvrđivanje identiteta lozinkom\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS server zahteva potvrđivanje identiteta\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS server zahteva nepoznatu vrstu potvrđivanja identiteta %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Zahtevam vezu SOCKS posrednika sa %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Greška pisanja zahteva povezivanja sa SOCKS posrednikom: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Greška čitanja odgovora veze sa SOCKS posrednika: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Neočekivan odgovor veze sa SOCKS posrednika: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "Greška SOCKS posrednika %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "Greška SOCKS posrednika %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Neočekivana vrsta adrese %02x u odgovoru SOCKS veze\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Zahtevam vezu HTTP posrednika sa %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Nisam uspeo da pošaljem zahtev posrednika: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Zahtev POVEZIVANJA posrednika nije uspeo: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Nepoznata vrsta posrednika „%s“\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Podržani su samo http ili socks(5) posrednici\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisko Eni Konekt ili openkonekt" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Saglasno sa SSL VPN-om Cisko Eni Konekta, kao i sa „ocserv“-om" #: library.c:143 msgid "Juniper Network Connect" msgstr "Povezivanje Džaniper mreže" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Nepoznati VPN protokol „%s“\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "Izgrađeno je SSL bibliotekom bez Cisko DTLS podrške\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Nije primljena IP adresa. Prekidam\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju Staru IP adresu (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Ponovno povezivanje je dalo drugačiju Staru IP mrežnu masku (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju IPv6 adresu (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Ponovno povezivanje je dalo drugačiju IPv6 mrežnu masku (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "Primljeno je IPv6 podešavanje ali MTU %d je premali.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Nisam uspeo da obradim adresu servera „%s“\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Dozvoljeno je samo „https://“ za adresu servera\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Nepoznat heš uverenja: %s.\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Veličina dostavljenog otiska je manja od potrebnog minimuma (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Nema rukovaoca obrascem; ne mogu da potvrdim identitet.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "Nije uspela funkcija linije naredbi u argument: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Kobna greška u radu sa linijom naredbi\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "Nije uspela funkcija čitanja konzole: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Greška pretvaranja ulaza konzole: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Neuspeh dodeljvanja za nisku sa standardnog ulaza\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "Za ispomoć sa Otvorenim povezivanjem, pogledajte veb stranicu na\n" " „https://www.infradead.org/openconnect/mail.html“\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Nije prisutan POGON OtvorenogSSL-a" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "UPOZORENJE: Nema DTLS i/ili ESP podrške u ovoj izvršnoj. Delotvornost će " "biti umanjena.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Podržani protokoli:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (osnovno)" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdul)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ne mogu da obradim putanju ove izvršne „%s“" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Dodela za putanju vpnc-skripte nije uspela\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "Prepisuje naziv domaćina „%s“ sa „%s“\n" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Upotreba: openconnect [opcije] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Otvoreni klijent za više VPN protokola, izdanje %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Čita opcije iz datoteke podešavanja" #: main.c:914 msgid "Report version number" msgstr "Izveštava o broju izdanja" #: main.c:915 msgid "Display help text" msgstr "Prikazuje tekst pomoći" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Podešava korisničko ime prijavljivanja" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Isključuje potvrđivanje identiteta lozinkom/Bezbednim IB-om" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Ne očekuje korisnički unos; izlazi ako je zatražen" #: main.c:923 msgid "Read password from standard input" msgstr "Čita lozinku sa standardnog ulaza" #: main.c:924 msgid "Choose authentication login selection" msgstr "Bira izbor prijave potvrđivanja identiteta" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Koristi uverenje UVER SSL klijenta" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Koristi KLJUČ datoteke ličnog ključa SSL-a" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Upozorava kada je životni vek uverenja < DANA" #: main.c:929 msgid "Set login usergroup" msgstr "Podešava korisničku grupu prijavljivanja" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Podešava lozinku ključa ili TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Lozinka ključa je ib sistema datoteka ili sistem datoteka" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" "(NAPOMENA: „libstoken“ (RSA Bezbedni IB) je isključena u ovoj izgradnji)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NAPOMENA: „Yubikey“ OATH je isključen u ovoj izgradnji)" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Isključuje osnovne sistemske izdavače uverenja" #: main.c:944 msgid "Cert file for server verification" msgstr "Datoteka uverenja za proveru servera" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Podešava posrednički server" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Podešava načine potvrđivanja identiteta posrednika" #: main.c:950 msgid "Disable proxy" msgstr "Isključuje posrednika" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Koristi „libproxy“ da samostalno podesi posrednika" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NAPOMENA: „libproxy“ je isključena u ovoj izgradnji)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Vremenski rok ponovnog povezivanja u sekundama" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "Koristi IP prilikom povezivanja sa DOMAĆINOM" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Čita kolačić sa standardnog ulaza" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Samo potvrđuje identitet i ispisuje podatke o prijavi" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Nastavlja u pozadini nakon pokretanja" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Piše PIB pozadinca u ovu datoteku" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Odbacuje ovlašćenja nakon povezivanja" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Koristi sistemski dnevnik za poruke napredovanja" #: main.c:978 msgid "More output" msgstr "Više izlaza" #: main.c:979 msgid "Less output" msgstr "Manje izlaza" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" "Ispisuje saobraćaj HTTP potvrđivanja identiteta (podrazumeva „--verbose“)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Dodaje datum i vreme porukama napredovanja" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Koristi AKONAZIV za uređaj tunela" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Linija naredbe školjke za korišćenje vpnc-saglasne skripte podešavanja" #: main.c:986 msgid "default" msgstr "osnovno" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Prosleđujem saobraćaj programu „script“, a ne tunu" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Ne traži IPv6 povezivost" #: main.c:993 msgid "XML config file" msgstr "IksML datoteka podešavanja" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Zahteva MTU sa servera (samo stari serveri)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Ukazuje na MTU putanju do/od servera" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Zahteva savršenu tajnost prosleđivanja" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "Šifreri OtvorenogSSL-a za podršku DTLS-a" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Podešava ograničenje reda paketa na DUŽINU paketa" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "Korisnik-Agent HTTP zaglavlja: nije uspelo" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Naziv domaćina za obaveštavanje servera" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Isključuje ponovno korišćenje HTTP veze" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Ne pokušava IksML POST potvrđivanje identiteta" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Nisam uspeo da dodelim nisku\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Nisam uspeo da dobavim red iz datoteke podešavanja: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Nepoznata opcija u %d. redu: „%s“\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "Opcija „%s“ ne uzima argument u %d. redu\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "Opcija „%s“ zahteva argument u %d. redu\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Neispravan korisnik „%s“: %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Neispravan IB korisnika „%d“: %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Nisam uspeo da otvorim „%s“ radi upisa: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Nastavljam rad u pozadini, pib %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UPOZORENJE: Ovo izdanje otvorenog povezivanja je izgrađeno bez ikonv\n" " podrške ali izgleda da koristite nasleđeni znak\n" " podesite „%s“. Očekujte neočekivano.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UPOZORENJE: Ovo izdanje „openconnect“-a je %s ali\n" " biblioteka „libopenconnect“ je %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Nisam uspeo da dodelim strukturu vpnpodataka\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ne možete koristiti opciju „config“ unutar datoteke podešavanja\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ne mogu da otvorim datoteku podešavanja „%s“: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Neispravan režim zapakivanja „%s“\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Nisam uspeo da dodelim memoriju\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Nedostaje dvotačka u opciji rešavanja\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d je premalo\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Isključujem ponovno korišćenje svih HTTP veza zbog opcije „--no-http-" "keepalive“.\n" "Ako ovo pomogne, izvestite o tome na „“.\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "Opcija „--no-cert-check“ nije bila bezbedna i uklonjena je.\n" "Ispravite vaše uverenje servera ili koristite „--servercert“ da mu " "verujete.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Nulta dužina reda nije dozvoljena; koristim 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "Otvoreno povezivanje izdanje %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Neispravan režim softverskog modula „%s“\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Previše argumenata na liniji naredbi\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Nije naveden server\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" "Ovo izdanje otvorenog povezivanja je izgrađeno bez podrške biblioteke " "posrednika\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Nije uspelo stvaranje SSL veze\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "Nije dostavljen argument „--script“; DNS i upućivanje nisu podešeni\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Pogledajte „https://www.infradead.org/openconnect/vpnc-script.html“\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Korisnik je zatražio ponovno povezivanje\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Server je okončao sesiju; izlazim.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Nepoznata greška; izlazim.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Nisam uspeo da otvorim „%s“ radi upisa: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Nisam uspeo da upišem podešavanja u „%s“: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Nije uspelo potvrđivanje uverenja sa VPN servera „%s“.\n" "Razlog: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "Da i dalje verujete ovom serveru, dodajte ovo na liniju naredbi:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Unesite „%s“ da prihvatite, „%s“ da prekinete; bilo šta drugo da pregledate: " #: main.c:2464 main.c:2483 msgid "no" msgstr "ne" #: main.c:2464 main.c:2470 msgid "yes" msgstr "da" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Heš serverskog ključa: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Izbor potvrđivanja identiteta „%s“ se poklapa sa više opcija\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Izbor potvrđivanja „%s“ nije dostupan\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Korisnički ulaz je zatražen u nemeđudejstvenom režimu\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Nisam uspeo da otvorim datoteku modula radi upisa: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Nisam uspeo da zapišem modul: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Niska softverskog modula je neispravna\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ne mogu da otvorim datoteku „~/.stokenrc“\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom „libstoken“-a\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Opšti neuspeh u „libstoken“-u\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom „liboath“-a\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Opšti neuspeh u „liboath“-u\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Nisam našao modul Jubi ključa\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "Otvoreno povezivanje nije izgrađeno sa podrškom Jubi ključa\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Opšti neuspeh Jubi ključa: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Podešavanje tun skripte nije uspelo\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Podešavanje tun uređaja nije uspelo\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Pozivnik je pauzirao vezu\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Besposlen sam; odspavaću %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "Čekanje na više objekata nije uspelo: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "Pokretanje konteksta bezbednosti nije uspelo: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "Rukovanje nabavkom uverenja nije uspelo: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "Greška u razgovoru sa „ntlm_auth“ pomoćnikom\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" "Pokušavam HTTP NTML potvrđivanje identiteta sa posrednikom (jedna-prijava)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" "Pokušavam HTTP NTML potvrđivanje identiteta sa serverom „%s“ (jedna-" "prijava)\n" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Pokušavam HTTP NTLMv%d potvrđivanje identiteta sa posrednikom\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "Pokušavam HTTP NTLMv%d potvrđivanje identiteta sa serverom „%s“\n" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Neispravna niska modula osnove32\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "Nisam uspeo da dodelim memoriju za dekodiranje OATH tajne\n" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PSKC podrške\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Moguće je stvaranje POČETNOG koda modula\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Moguće je stvaranje SLEDEĆEG koda modula\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Server odbija softverski modul; prelazim na ručni unos\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "Stvaram kod OATH TOTP modula\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "Stvaram kod OATH HOTP modula\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "Neočekivana dužina %d za TLV %d/%d\n" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Primih MTU %d sa servera\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "Primih DNS server „%s“\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "Primih DNS domen pretrage %.*s\n" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "Primih unutrašnju IP adresu %s\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "Primih mrežnu masku %s\n" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "Primih unutrašnju adresu mrežnog prolaza %s\n" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "Primih podelu obuhvatanja rute %s\n" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "Primih podelu odbacivanja rute %s\n" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "Primih VINS server „%s“\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP šifrovanje: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP zapakivanje: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP priključnik: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "Vreme života ESP ključa: %u bajta\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "Vreme života ESP ključa: %u sekunde\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "Vraćanje sa ESP-a na SSL: %u sekunde\n" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "Zaštita ESP odgovora: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "ESP SPI (odlazeće): %x\n" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "%d bajta ESP tajni\n" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "Nepoznata TLV grupa %d atr. %d duž. %d:%s\n" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "Nisam uspeo da obradim KMP zaglavlje\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "Nisam uspeo da obradim KMP poruku\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "Dobih KMP poruku %d veličine %d\n" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "Primih ne-ESP TLV-a (grupa %d) u ESP pregovora KMP\n" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "Greška stvaranja zahteva oNCP pregovaranja\n" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "Kratko pisanje u oNCP pregovaranju\n" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "Čitam %d bajta SSL zapisa\n" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "Neočekivani odgovor veličine %d nakon paketa naziva domaćina\n" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "Odgovor servera paketu naziva domaćina je greška 0x%02x\n" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "Neispravan paket čeka na KMP 301\n" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "Očekivah KMP poruku 301 sa servera ali dobih %d\n" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "KMP poruka 301 sa servera je prevelika (%d bajta)\n" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "Dobih KMP poruku 301 veličine %d\n" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "Nisam uspeo da pročitam dužinu zapisa nastavka\n" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "Zapis dodatna %d bajta je prevelik; napraviću %d\n" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "Nisam uspeo da pročitam zapis nastavka dužine %d\n" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "Čitam dodatna %d bajta KMP 301 poruke\n" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "Greška pregovaranja ESP ključa\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "novo dolazno" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "novo odlazno" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "Čitam samo 1 bajt oNCP dužine polja\n" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Server je okončao vezu (sesija je istekla)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Server je okončao vezu (razlog: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "Server je poslao oNCP zapis nulte dužine\n" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "Dolazna KMP poruka %d veličine %d (dobih %d)\n" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "Nastavljam da obrađujem KMP poruku %d sada veličine %d (dobih %d)\n" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Nepoznati paket podataka\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "Nepoznata KMP poruka %d veličine %d:\n" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "…. + %d bajtova neprimljenih\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "Odlazni paket:\n" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "Poslah kontrolni paket ESP uključivanja\n" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "GREŠKA: „%s()“ je pozvano sa neispravnim UTF-8 za argument „%s“\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "Ne mogu da izračunam DTLS prekoračenje za „%s“\n" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "Nisam uspeo da napravim „SSL_SESSION ASN.1“ za OpenSSL: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "Open SSL nije uspeo da obradi „SSL_SESSION ASN.1“\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Nije uspelo pokretanje DTLSv1 sesije\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "PSK povratni poziv\n" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Nije uspelo pokretanje DTLSv1 CTH-a\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "Podešavanje DTLS CTIks izdanja nije uspelo\n" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "Nisam uspeo da stvorim DTLS ključ\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Nije uspelo postavljanje spiska DTLS šifrera\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Verovatno zato što je oštećen vaš Otvoreni SSL\n" "Vidite „http://rt.openssl.org/Ticket/Display.html?id=2984“\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Nije uspelo DTLS rukovanje: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Nisam uspeo da pokrenem ESP šifrera:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "Nisam uspeo da pokrenem ESP HMAC\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "Nisam uspeo da podesim kontekst dešifrovanja za ESP paket:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "Nisam uspeo da dešifrujem ESP paket:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "Nisam uspeo da šifrujem ESP paket:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "Nisam uspeo da uspostavim libp11 PKCS#11 kontekst:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "Nisam uspeo da učitam modul PKCS#11 dostavljača (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN je zaključan\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN je istekao\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Drugi korisnik je već prijavljen\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "Nepoznata greška prijavljivanja na PKCS#11 modul\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "Prijavljen sam na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim uverenja u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "Nađoh %d uverenja u priključku „%s“\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "Nisam uspeo da obradim PKCS#11 putanju „%s“\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "Nisam uspeo da nabrojim PKCS#11 priključke\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "Prijavljujem se na PKCS#11 priključak „%s“\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "Nisam uspeo da nađem PKCS#11 uverenje „%s“\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "libp11 nije dovukla sadržaj H.509 uverenja\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "Nisam uspeo da nabrojim ključeve u PKCS#11 priključku „%s“\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "Nađoh %d ključa u priključku „%s“\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Uverenje nema javni ključ\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Uverenje ne odgovara ličnom ključu\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "Provera EC ključa odgovara uverenju\n" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "Nisam uspeo da dodelim međumemoriju potpisa\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "Nisam uspeo da potpišem lažne podatke da bih potvrdio EC ključ\n" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "Nisam uspeo da nađem PKCS#11 ključ „%s“\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Ovo izdanje Otvorenog povezivanja je izgrađeno bez PKCS#11 podrške\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "Nepoznata vrsta zahteva KS SSL-a %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM lozinka je preduga (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Učitavanje ličnog ključa nije uspelo\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "Nisam uspeo da instaliram uverenje u OpenSSL kontekst\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Dodatno uverenje iz „%s“: %s\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Nije uspela obrada PKCS#12 (vidite greške iznad)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ne sadrži uverenje!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ne sadrži lični ključ!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Ne mogu da učitam TPM pogon.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Nisam uspeo da pokrenem TPM pogon\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Nisam uspeo da podesim TPM SRK lozinku\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Nisam uspeo da učitam TPM lični ključ\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku uverenja „%s“: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Nisam uspeo da učitam uverenje\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "Nisam uspeo da obradim sva podržavajuća uverenja. Ipak pokušavam...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM datoteka" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Nisam uspeo da napravim BIO za stavku smeštaja ključeva „%s“\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Učitavanje ličnog ključa nije uspelo (pogrešna lozinka?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Učitavanje ličnog ključa nije uspelo (vidite greške iznad)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Nisam uspeo da učitam H509 uverenje iz smeštaja ključa\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Nisam uspeo da otvorim datoteku ličnog ključa „%s“: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "Nisam uspeo da pretvorim PKCS#8 u OpenSSL EVP_PKLJUČ\n" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Nisam uspeo da odredim vrstu ličnog ključa u „%s“\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Poklopih DNS zamenski naziv „%s“\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Nema poklapanja za zamenski naziv „%s“\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Uverenje ima zamenski naziv „GEN_IPADD“ sa prividnom dužinom %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Poklopljena je %s adresa „%s“\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Nema poklapanja za %s adresu „%s“\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "Putanja „%s“ ima ne-praznu putanju; zanemarujem\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Odgovarajuća putanja „%s“\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Nema poklapanja za putanju „%s“\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Nema odgovarajućeg zamenskog naziva u uverenju parnjaka „%s“\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Nema naziva teme u uverenju parnjaka!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Nisam uspeo da obradim naziv teme u uverenju parnjaka\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Tema uverenja parnjaka ne odgovara ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Odgovarajući naziv teme uverenja parnjaka „%s“\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Dodatno uverenje iz datoteke izdavača uverenja: %s\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Greška u polju „nije_nakon“ u uverenju klijenta\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL uverenje i ključ se ne podudaraju\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Nisam uspeo da pročitam uverenja iz datoteke izdavača uverenja „%s“\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Nisam uspeo da otvorim datoteku izdavača uverenja „%s“\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "Stvaranje TLSv1 CTIks-a nije uspelo\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "Neuspeh SSL veze\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "Nisam uspeo da izračunam OATH HMAC\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Lozinka:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Odbacujem uključivanja loše podele: „%s“\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Odbacujem isključivanja loše podele: „%s“\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Nisam uspeo da izrodim skriptu „%s“ za %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "Skripta „%s“ je izašla neispravno (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Skripta „%s“ je dala grešku %d\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Povezivanje priključnice je otkazano\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "Nisam uspeo ponovo da se povežem sa posrednikom „%s“: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "Nisam uspeo ponovo da se povežem sa domaćinom „%s“: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Posrednik iz biblioteke posrednika: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Dobavljanje podataka adrese nije uspelo za domaćina „%s“: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Ponovo se povezujem na DinDNS server koristeći prethodno pričuvanu IP " "adresu\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "Pokušavam da se povežem sa posrednikom %s%s%s:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "Pokušavam da se povežem sa serverom %s%s%s:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Povezan sam sa %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Nisam uspeo da dodelim smeštaj adrese priključnice\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "Nisam uspeo da se povežem na %s%s%s:%s: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "Zaboravljam ne-delotvornu adresu prehodnog parnjaka\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Nisam uspeo da se povežem sa domaćinom „%s“\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Ponovo se povezujem sa posrednikom „%s“\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Ne mogu da dobijem IB sistema datoteka za lozinku\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Nisam uspeo da otvorim datoteku ličnog ključa „%s“: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Nema greške" #: ssl.c:727 msgid "Keystore locked" msgstr "Smeštaj ključa je zaključan" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Smeštaj ključa nije pokrenut" #: ssl.c:729 msgid "System error" msgstr "Greška sistema" #: ssl.c:730 msgid "Protocol error" msgstr "Greška protokola" #: ssl.c:731 msgid "Permission denied" msgstr "Pristup je odbijen" #: ssl.c:732 msgid "Key not found" msgstr "Nisam našao ključ" #: ssl.c:733 msgid "Value corrupted" msgstr "Vrednost je oštećena" #: ssl.c:734 msgid "Undefined action" msgstr "Neodređena radnja" #: ssl.c:738 msgid "Wrong password" msgstr "Pogrešna lozinka" #: ssl.c:739 msgid "Unknown error" msgstr "Nepoznata greška" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Nisam uspeo da otvorim „%s“: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "Ne mogu da dobijem podatke o „%s“: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Nisam uspeo da dodelim %d bajta za „%s“\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Nisam uspeo da pročitam „%s“: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "Nepoznata porodica protokola %d. Ne mogu da napravim adresu UDP servera\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "Otvaram UDP priključnicu" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "Nepoznata porodica protokola %d. Ne mogu da koristim UDP prenos\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "Svezujem UDP priključnicu" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Kolačić nije više ispravan, završavam sesiju\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "spavam %d sek., preostalo vreme isteka %d sek.\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI modul je prevelik (%ld bajta)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "Šaljem SSPI modul od %lu bajta\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" "Nisam uspeo da pošaljem SSPI modul potvrđivanja identiteta posredniku: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" "Nisam uspeo da primim SSPI modul potvrđivanja identiteta od posrednika: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS server je izvestio o neuspehu SSPI konteksta\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "Nepoznat odgovor SSPI stanja (0h%02x) sa SOCKS servera\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "Dobih SSPI modul od %lu bajta: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "Propitivanje kontekstnih atributa nije uspelo: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "Šifrovanje poruke nije uspelo: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "Rezultat šifrovane poruke je prevelik (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "Šaljem pregovor SSPI zaštite od %u bajta\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Nisam uspeo da pošaljem odgovor SSPI zaštite posredniku: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Nisam uspeo da primim odgovor SSPI zaštite od posrednika: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "Dobih odgovor SSPI zaštite od %d bajta: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Dešifrovanje poruke nije uspelo: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Neispravan odgovor SSPI zaštite sa posrednika (%lu bajta)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Unesite uverenja za otključavanje softverskog modula." #: stoken.c:107 msgid "Device ID:" msgstr "IB uređaja:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Korisnik je zaobišao softverski modul.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Sva polja su obavezna; pokušajte opet.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Opšti neuspeh u „libstoken“-u.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Neispravan IB uređaja ili lozinka; pokušajte ponovo.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Pokretanje softverskog modula je uspelo.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Unesite PIN softverskog modula." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Neispravan zapis PIN-a; pokušajte ponovo.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Stvaram kod RSA modula\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Greška pristupa ključu registra za mrežnim prilagođivačima\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "Nije uspelo „GetAdapterIndex()“: %s\n" "Prebacujem se na „GetAdaptersInfo()“\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "Nije uspelo „GetAdaptersInfo()“: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Nisam uspeo da otvorim „%s“\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Nisam uspeo da dobijem izdanje TAP upravljačkog programa: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Greška: Potreban je upravljački program TAP-Vindouza v9.9 ili veći (nađoh " "%ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Nisam uspeo da podesim TAP IP adrese: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Nisam uspeo da podesim stanje TAP medija: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP uređaj je prekinuo povezivost. Prekidam vezu.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Nisam uspeo da čitam sa TAP uređaja: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Nisam uspeo da dovršim čitanje sa TAP uređaja: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "Zapisah %ld bajta na tunu\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Čekam na zapisivanje tuna...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Zapisah %ld bajta na tunu nakon čekanja\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Nisam uspeo da pišem na TAP uređaj: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Izrađanje tunelskih skripti još nije podržano na Vindouzu\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ne mogu da otvorim „/dev/tun“ za omreženje" #: tun.c:92 msgid "Can't push IP" msgstr "Ne mogu da poguram IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Ne mogu da podesim „ifname“" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ne mogu da omrežim „%s“ za IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "otvaram „/dev/tun“" #: tun.c:145 msgid "Failed to create new tun" msgstr "Nisam uspeo da napravim novi tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Nisam uspeo da stavim opisnik tun datoteke u režim odbacivanja poruke" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun uređaj nije podržan na ovoj platformi\n" #: tun.c:205 msgid "open net" msgstr "otvaram mrežu" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Ne mogu da otvorim tun uređaj: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "Nisam uspeo da svežem mesni tun uređaj (TUNSETIFF): %s\n" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Za podešavanje mesnog umrežavanja, openkonekt mora biti pokrenut kao " "administrator\n" "Vidite „https://www.infradead.org/openconnect/nonroot.html“ za više " "podataka\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „utun%%d“ ili „tun%%d“\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "Nisam uspeo da otvorim „SYSPROTO_CONTROL“ priključnicu: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "Nisam uspeo da propitam ib kontrole utuna: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "Nisam uspeo da dodelim naziv utun uređaja\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "Nisam uspeo da povežem utun jedinicu: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Neispravan naziv uređaja „%s“; mora da bude „tun%%d“\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ne mogu da otvorim „%s“: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "Nije uspelo uparivanje utičnice: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "iscepljivanje nije uspelo: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(skripta)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Nisam uspeo da zapišem pristigli paket: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Smatram domaćina „%s“ za sirovi naziv domaćina\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Nisam uspeo da SHA1 postojeću datoteku\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "SHA1 datoteke IksML podešavanja: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Nisam uspeo da obradim datoteku IksML podešavanja „%s“\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Domaćin „%s“ ima adresu „%s“\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Domaćin „%s“ ima korisničku grupu „%s“\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "Domaćin „%s“ nije naveden u podešavanjima; smatram ga sirovim nazivom " "domaćina\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "Nisam uspeo da pošaljem „%s“ do programčeta „ykneo-oath“: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Neispravan kratak odgovor za „%s“ od programčeta „ykneo-oath“\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "Neuspeli odgovor za „%s“: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "izaberi naredbu programčeta" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Nepoznat odgovor od programčeta „ykneo-oath“\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "Našao sam programče „ykneo-oath“ i%d.%d.%d.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Potreban je PIN za OATH programče Jubi ključa" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "PIN Jubi ključa:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Nisam uspeo da izračunam odgovor otključavanja Jubi ključa\n" #: yubikey.c:274 msgid "unlock command" msgstr "naredba otključavanja" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "Pokušavam PBKBF2 varijantu skraćenog-znaka Jubiki PIN-a\n" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "Nisam uspeo da uspostavim PC/SC kontekst: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC kontekst je upsostavljen\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Nisam uspeo da propitam spisak čitača: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "Nisam uspeo da se povežem sa PC/SC čitačem „%s“: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "Povezan je PC/SC čitač „%s“\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup čitaču „%s“: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "naredba spiska ključeva" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "Nađoh %s/%s kljzč „%s“ na „%s“\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Nisam našao modul „%s“ na Jubi ključu „%s“. Tražim drugi Jubi ključ...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Server odbija modul Jubi ključa; prelazim na ručni unos\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Stvaram kod modula Jubi ključa\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Nisam uspeo da dobijem isključivi pristup Jubi ključu: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "naredba izračunavanja" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Nepoznat odgovor sa Jubi ključa prilikom stvaranja koda modula\n" openconnect-8.20/po/Makefile.am0000644000076400007640000000165414040533771020214 0ustar00dwoodhoudwoodhou00000000000000 LINGUAS = @LINGUAS@ MOFILES = $(LINGUAS:%=%.mo) POFILES = $(LINGUAS:%=%.po) noinst_DATA = $(MOFILES) SUFFIXES = .mo .po.mo: rm -f && $(MSGFMT) -o $@ $< clean-local: rm -f $(MOFILES) install-data-hook: all linguas="$(LINGUAS)"; \ for l in $$linguas; do \ dir="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES"; \ $(mkdir_p) $$dir; \ echo Installing $$l.mo to $$dir/$(PACKAGE).mo ; \ $(INSTALL_DATA) $$l.mo $$dir/$(PACKAGE).mo; \ done uninstall-hook: linguas="$(LINGUAS)"; \ for l in $$linguas; do \ file="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES/$(PACKAGE).mo"; \ if [ -r "$$file" ]; then \ echo "Removing $$file"; rm -f "$$file"; \ fi ; \ done # $(PACKAGE).pot is built by a rule in the parent directory Makefile # This rule isn't needed but is here for convenience if manually invoked .PHONY: $(PACKAGE).pot $(PACKAGE).pot: $(MAKE) -C .. po/$@ EXTRA_DIST = $(POFILES) LINGUAS DISTCLEANFILES=$(PACKAGE).pot openconnect-8.20/po/tr.po0000644000076400007640000052042414204456075017151 0ustar00dwoodhoudwoodhou00000000000000# Turkish translation of network-manager-openconnect. # This file is distributed under the same license as the network-manager-openconnect package. # # Ozan Çağlayan # Kaan Özdinçer , 2015. # İşbaran Akçayır , 2015. # Simge Sezgin , 2015. # Emin Tufan Çetin , 2020. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect.HEAD\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2020-04-11 19:37+0300\n" "Last-Translator: Emin Tufan Çetin \n" "Language-Team: Turkish \n" "Language: tr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=1; plural=0;\n" "X-Generator: Poedit 2.3\n" "X-POOTLE-MTIME: 1426801579.000000\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Geçersiz çerez '%s'\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Sunucudan beklenmeyen %d sonucu\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "Yer ayırma başarısız oldu\n" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "Kısa paket alındı (%d bayt)\n" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "%d baytın veri paketi alındı\n" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL çok az bayt yazdı! İstenen %d, gönderilen %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP yeniden anahtarlama zamanı\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Yeniden elsıkışma başarısız oldu; yeni-tünel deneniyor\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d bayt sıkıştırılmamış veri paketi gönderiliyor\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Yeni DTLS bağlantısı girişimi\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS paketinin 0x%02x / %d kadarı alındı\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS yeniden anahtarlama zamanı\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "DTLS Elsıkışması başarısız; yeniden bağlanılıyor.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Ölü Uç Tespiti ölü bir uç tespit etti!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "DTLS DPD Gönder\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "DPD istek gönderimi başarısız. Bağlantı kesilebilir\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d bayt DTLS paketi gönderildi; DTLS %d döndürdü\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Çıkış başarısız.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Çıkış başarılı.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" "%s hedef form alanı belirtildi; SAML %s kimlik doğrulama tamamlandığı " "varsayılıyor.\n" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "%2$s aracılığıyla SAML %1$s kimlik doğrulaması gerekli\n" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "Dış betik aracılığıyla SAML %s kimlik doğrulaması gerekli.\n" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" "SAML kimlik doğrulaması tamamlandığında, giriş URL’si sonuna :alan_adi " "ekleyerek hedef form alanı belirleyin.\n" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Kullanıcı adı ve parolanızı girin" #: auth-globalprotect.c:159 msgid "Username" msgstr "Kullanıcı adı" #: auth-globalprotect.c:174 msgid "Password" msgstr "Parola" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Parola sorma:" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "GlobalProtect girişi beklenmedik argüman değeri arg[%d]=%s döndürdü\n" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "GlobalProtect girişi %s=%s döndürdü (%s beklendi)\n" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "GlobalProtect girişi boş veya eksik %s döndürdü\n" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "GlobalProtect girişi %s=%s döndürdü\n" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" "Lütfen yukardaki %d beklenmedik değeri (hangi %d ölümcül hatanın) " " adresine bildirin\n" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Lütfen GlobalProtect geçidi seçin." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "GEÇİT:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" "Portalın HIP rapor sıklığı (%d dakika) göz ardı ediliyor, çünkü sıklık zaten " "%d dakikaya ayarlı.\n" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "Portal, HIP rapor sıklığını %d dakikaya ayarladı).\n" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "%d geçit sunucuyu uygun:\n" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "GlobalProtect portal yapılandırması geçit sunucusu listelemedi.\n" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "OTP tokencode oluşturulamadı; jeton devredışı bırakılıyor\n" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Sunucu ne GlobalProtect portalı ne de geçit.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "Bilinmeyen form gönderme (submit) ögesi '%s' göz ardı ediliyor\n" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "Bilinmeyen form girdi (input) türü '%s' göz ardı ediliyor\n" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "Çiftleme (duplicate) seçeneği '%s' kullanımdan çıkarılıyor\n" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Form yöntemi='%s', eylem='%s' işlenemiyor\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "Bilinmeyen metin (textarea) alanı '%s'\n" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "TNCC ile iletişim için bellek ayrımı başarısız\n" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "TNCC desteği henüz Windows’ta gerçeklenmemiştir\n" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "DSPREAUTH çerezi yok; TNCC denenmiyor\n" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "TNCC betiği %s çalıştırma başarısız: %s\n" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "Başlat gönderildi, TNCC’den yanıt bekleniyor\n" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "TNCC’den yanıt okunması başarısız\n" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "TNCC’den başarısız %s yanıtı alındı\n" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "TNCC yanıt 200 tamam\n" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "TNCC yanıtının ikinci satırı: '%s'\n" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "TNCC’den yeni DSPREAUTH çerezi alındı: %s\n" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" "DSPREAUTH çerezinden sonra TNCC’den beklenmedik boş olmayan satır: '%s'\n" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" "DSPREAUTH çerezinden sonra TNCC’den birçok beklenmedik boş olmayan satırlar\n" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "HTML belgesi ayrıştırma başarısız\n" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Giriş sayfasındaki web formunu ayrıştırma veya bulma başarısız\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "Bilinmeyen HTML formu dökülüyor:\n" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Form seçiminin adı yok\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "ad %s girdi değil\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Formda girdi türü yok\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Formda girdi adı yok\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Formda bilinmeyen girdi türü %s\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Sunucudan boş yanıt\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Sunucu yanıtı ayrıştırılamadı\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Yanıt:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Beklenmeyen alındı.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML yanıtı hiçbir \"auth\" düğümü içermiyor\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Parola soruluyor ama '--no-passwd' ayarlanmış\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "SHA1 özeti zaten eşleştiğinden dolayı XML profili indirilemiyor\n" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "%s hedefine HTTPS bağlantısı açılamadı\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Yeni yapılandırma için GET isteği gönderme başarısız\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "İndirilen yapılandırma dosyası istenilen SHA1 özeti ile eşleşmedi\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Yeni XML profili indirildi\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" "Hata: Bu platformda 'Cisco Secure Desktop' trojeni çalıştırma henüz " "gerçeklenmedi.\n" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "gid %ld belirleme başarısız: %s\n" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "Kümeleri %ld olarak belirleme başarısız: %s\n" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "uid %ld belirleme başarısız: %s\n" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "Geçersiz kullanıcı uid=%ld. %s\n" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "CSD ev dizinini '%s' değiştirme başarısız: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Hata: Sunucu CSD hostscan çalıştırmak istedi.\n" "Uygun bir --csd-wrapper değişkeni sunmalısınız.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Hata: Sunucu 'Cisco Secure Desktop' truva atını indirmek ve çalıştırmak " "istedi.\n" "Bu özellik, güvenlik nedeniyle varsayılan olarak devre dışıdır, bu yüzden " "bunu etkinleştirmek isteyebilirsiniz.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "Geçici dizin '%s' yazılabilir değildir: %s\n" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Geçici CSD betik dosyası açılamadı: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Geçici CSD betik dosyası yazılamadı: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "'%s' CSD betiğinden anormal çıkıldı\n" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "'%s' CSD betiği sıfır olmayan durum döndürdü: %d\n" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" "Kimlik doğrulama başarısız olabilir. Eğer betiğiniz sıfır döndürmüyorsa,\n" "sorunu giderin. openconnect’in gelecek sürümleri bu hatada çalışmayacak.\n" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Uyarı: güvenli olmayan CSD kodunu root haklarıyla çalıştırıyorsunuz\n" "\t \"--csd-user\" komut satırı seçeneğini kullan\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD betik %s çalıştırma başarısız oldu\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Sunucudan bilinmeyen yanıt\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Biri girildikten sonra sunucu SSL istemci sertifikası istedi\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Sunucu SSL istemci sertifikası istedi; ama yapılandırılmış bir sertifika " "yok\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST etkinleştirildi\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" "CSD kütüğü alınamadı. Her durumda CSD kapsayıcı betiğiyle sürdürülüyor.\n" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 saniye sonra %s tazelenecek...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(hata 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "(Hata tanımlama sırasında hata!)" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "HATA: Soketler başlatılamıyor\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "CİDDİ HATA: DTLS ana gizi ilklendirilemedi. Lütfen bunu bildirin.\n" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "HTTPS CONNECT isteği oluşturmada hata\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "HTTPS cevabı getirilirken hata\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN hizmeti kullanılamıyor; nedeni: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Uygun olmayan HTTP CONNECT yanıtı alındı: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT yanıtı alındı: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Seçenekler için bellek yok\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID, 64 karakter değil, uzunluğu: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "X-DTLS-Session-ID geçersiz; şu: \"%s\"\n" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "Bilinmeyen DTLS-Content-Encoding %s\n" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Bilinmeyen CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Hiçbir MTU alınamadı. Durduruluyor\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP bağlandı. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Sıkıştırma kurulumu başarısız oldu\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Sıkıştırılmış tampon ayırma başarısız\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "şişirmek başarısız\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "LZS açma işlemi başarısız oldu: %s\n" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "LZ4 açımı başarısız\n" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "Bilinmeyen sıkıştırma türü %d\n" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "%s bayt %d sıkıştırılmış veri paketi alındı (%d idi)\n" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "sıkıştırma başarısız %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Beklenmeyen paket uzunluğu. SSL_read %d döndü fakat paket\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD isteği alındı\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD yanıtı alındı\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive alındı\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d bayt sıkıştırılmamış veri paketi alındı\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Sunucu bağlantı kesimi: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "Sunucu bağlantı kapaması alındı\n" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "!deflate kipinde sıkıştırılmış paket alındı\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "sunucu kapatma paketi alındı\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Bilinmeyen paket %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CTSP Ölü Uç Tespiti ölü uç tespit etti!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Yeniden bağlanılamadı\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "CSTP DPD gönder\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive Gönder\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "Sıkıştırılmış %d bayt veri paketi gönderiliyor (%d idi)\n" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "BYE paketi gönder: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "Vekil sunucusuna Digest kimlik doğrulaması deneniyor\n" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "'%s' sunucusuna Digest kimlik doğrulaması deneniyor\n" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS bağlantısı var olan bir fd ile denendi\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "DTLS adresi yok\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Sunucu hiçbir DTLS şifreleme seçeneği sunmadı\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Vekil sunucu yolu ile bağlandığında DTSL yok\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS sıfırlandı. DPD %d, Keepalive %d\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Bilinmeyen paket (uzunluk %d) alındı: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "TOS bu: %d, TOS son: %d\n" #: dtls.c:228 msgid "UDP setsockopt" msgstr "UDP setsockopt" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD isteği alındı\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "DPD yanıtı gönderimi başarısız. Bağlantının kesilmesi bekleniyor\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD yanıtı alındı\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive alındı\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "Sıkıştırma etkin değilken sıkıştırılmış DTLS paketi alındı\n" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Bilinmeyen DTLS paket türü %02x, uzunluğu %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive gönder\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Keepalive isteği gönderimi başarısız. Bağlantı kesilebilir\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "MTU saptama başlatılıyor (asgari=%d, azami=%d)\n" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "MTU DPD sondası gönderiliyor (%u bayt)\n" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "DPD istemi gönderme başarısız (%d %d)\n" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" "MTU saptama döngüsünde çok uzun zaman; MTU el sıkışıldığı varsayılıyor.\n" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "MTU saptama döngüsünde çok uzun zaman; MTU %d olarak belirlendi.\n" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "MTU saptamada beklenmedik paket (%.2x) alındı; atlanıyor.\n" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" "%2$d deneme sonrası %1$u boyutuna yanıt yok; MTU’nun %3$u olduğu " "açıklanıyor\n" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "DPD istemi alma başarısız (%d)\n" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "MTU DPD sondası alındı (%u bayt)\n" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "%d baytın MTU’su saptandı (%d idi)\n" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "Saptandıktan sonra MTU değişimi yok (%d idi)\n" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "%s ESP için parametreler: SPI 0x%08x\n" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "ESP şifreleme türü %s anahtar 0x%s\n" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "ESP kimlik doğrulama türü %s anahtar 0x%s\n" #: esp.c:93 msgid "incoming" msgstr "gelen" #: esp.c:94 msgid "outgoing" msgstr "giden" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "ESP sondaları gönder\n" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "Geçersiz SPI 0x%08x olan ESP paketi alındı\n" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "ESP içinde geçersiz dolgu verisi genişliği %02x\n" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "ESP içinde geçersiz dolgu verisi baytları\n" #: esp.c:245 msgid "ESP session established with server\n" msgstr "Sunucuyla ESP oturumu kuruldu\n" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "ESP paketinin şifresini çözmek için bellek ayırma başarısız\n" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "ESP paketin LZO çözümü başarısız\n" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "LZO, %d baytı %d içine çözdü\n" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "ESP için Rekey gerçeklenmedi\n" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "ESP ölü eş saptadı\n" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "DPD için ESP sondaları gönder\n" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "ESP için Keepalive gerçeklenmedi\n" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "Başarısız ESP gönderimi yeniden sıralanıyor: %s\n" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "ESP paketi gönderimi başarısız: %s\n" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "ESP için rastgele anahtar oluşturma başarısız\n" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "ESP için ön IV oluşturma başarısız\n" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "Boşta kalma zaman aşımı %d dakikadır.\n" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "CSTP, bir PSK oluşturana dek DTLS sürdürülmesi öteleniyor\n" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "DTLS öncelik dizgesi oluşturma başarısız\n" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "DTLS önceliği belirleme başarısız: '%s': %s\n" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "Kimlik bilgileri pay edimi başarısız: %s\n" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "DTLS anahtarı oluşturma başarısız: %s\n" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "DTLS anahtarı belirleme başarısız: %s\n" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "DTLS PSK kimlik bilgileri belirleme başarısız: %s\n" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" "Sunucudan istenen Şifreleme Listesi '%s' için bilinmeyen DTLS parametreleri\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS oturum parametreleri ayarlanamadı: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" "GnuTLS, %d ClientHello rastgele baytları kullandı; bu asla olmamalıydı\n" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" "GnuTLS, güvensiz ClientHello rastgelesi gönderdi. 3.6.13 veya yenisine " "yükseltin.\n" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "DTLS ilklendirme başarısız: %s\n" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "Eş MTU’su %d DTLS’e izin vermek için çok küçük\n" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "DTLS MTU %d’e düşürüldü\n" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" "DTLS oturum sürdürme başarısız; olası MITM saldırısı. DTLS devre dışı " "bırakılıyor.\n" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "DTLS MTU ayarlanamadı: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS bağlantısı kuruldu (GnuTLS kullanarak). Şifreleme %s.\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "DTLS bağlantı sıkıştırma %s kullanıyor.\n" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS elsıkışması zaman aşımına uğradı\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS elsıkışması başarısız oldu: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Güvenlik duvarı UDP paketi göndermenizi engelliyor mu?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "ESP HMAC ilklendirme başarısız: %s\n" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "ESP paketi için HMAC hesaplama başarısız: %s\n" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "Geçersiz HMAC’i olan ESP paketi alındı\n" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "ESP paketinin şifresini çözme başarısız: %s\n" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "ESP paketi şifreleme başarısız: %s\n" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "TLS için select() başarısız" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Sertifikanın sona erme tarihi alınamadı\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "İstemci sertifikasının süresi doldu" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "İstemci sertifikası yakında sona erecek" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Anahtar deposundan '%s' ögesi yüklenemedi: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Anahtar/sertifika dosyası %s açılamadı: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "%s anahtarının/sertifika dosyasının konumu belirlenemedi: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Sertifika tampon belleği ayrılamadı\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Bellekteki sertifika okunamadı: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12 veri yapısı kurulamadı: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12 sertifika dosyasının şifresi açılamadı\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 anahtar parolası girin:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "PKCS#12 dosyası işletilemedi: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "PKCS#12 sertifika yüklemesi başarısız oldu: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5 özeti başlatılamadı: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 özet hatası: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Eksik DEK-Bilgisi: OpenSSL şifrelenmiş anahtardan bir başlık\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "PEM şifreleme türü tespit edilemiyor\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Desteklenmeyen PEM şifreleme türü: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Şifreli PEM dosyasında geçersiz salt\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Şifrelenmiş PEM dosyasında base64-decoding hatası: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Şifrelenmiş PEM dosyası çok kısa\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "PEM dosyası şifresini açmak için şifre oluşturma başarısız oldu: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "PEM anahtar şifresi açılamadı: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "PEM anahtar şifresi açma işlemi başarısız\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "PEM parolası girin:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "Bu ikili dosya sistem anahtar desteği olmadan derlenmiş\n" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Bu ikili dosya PKCS#11 desteği olmadan derlendi\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11 sertifikası %s kullanılıyor\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Sistem sertifikası %s kullanılıyor\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "PKCS#11'den sertifika yüklenirken hata: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "Sistem sertifikası yüklenirken hata: %s\n" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "%s sertifika dosyası kullanılıyor\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 dosyası hiçbir sertifika içermiyor\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Dosyada hiçbir sertifika bulunamadı" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Sertifika yüklenirken başarısız oldu: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "Sistem anahtarı %s kullanılıyor\n" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Özel anahtar yapısı oluşturulurken hata: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "Sistem anahtarı %s içeri aktarılırken hata: %s\n" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "PKCS#11 anahtar URL'i %s deneniyor\n" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "PKCS#11 anahtar yapısı oluşturulurken hata: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "PKCS#11 URL %s içeri aktarılırken hata: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11 anahtarı %s kullanılıyor\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "Özel anahtar yapısındaki PKCS#11 anahtarı içeri aktarılırken hata: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Özel anahtar dosyası %s kullanılıyor\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "OpenConnect'in bu sürümü TPM desteği olmadan derlendi\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "OpenConnect’in bu sürümü TPM2 desteği olmadan inşa edildi\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "PEM dosyası yorumlanamadı\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "PKCS#11 özel anahtarı yüklenemedi: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Özel anahtar PKCS#8 olarak yüklenemedi: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8 sertifika dosyasının şifresi açılamadı\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "%s özel anahtarının türü tespit edilemedi\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "PKCS#8 anahtar parolası girin:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Anahtar kimliği alımı başarısız oldu: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Test verisi özel anahtar ile imzalanırken hata: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Sertifika imzası onaylanırken hata: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Özel anahtar ile eşleşen sertifika bulunamadı\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "İstemci sertifikası '%s' kullanılıyor\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Sertifika için bellek ayrılamadı\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "PKCS#11’den yayıncı (issuer) alınmadı\n" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "PKCS#11'dan sonraki CA '%s' alındı\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Desteklenen sertifikalar için bellek ayrılamadı\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "Desteklenen CA '%s' ekleniyor\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "X509 sertifika içeri aktarma işlemi başarısız: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "PKCS#11 sertifika ayarlanması başarısız oldu: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Sertifika reddetme listesi belirleme başarısız: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" "Özel anahtar görünüşe göre RSA-PSS desteklemiyor. TLSv1.3 devre dışı " "bırakılıyor.\n" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Sertifika ayarlama başarısız: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Sunucu hiçbir sertifika sunamadı\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" "Yeniden el sıkışmada sunucunun sertifikasını karşılaştırmada hata: %s\n" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "Sunucu, yeniden el sıkışmada başka sertifika sundu\n" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "Sunucu, yeniden el sıkışmada özdeş sertifika sundu\n" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "X509 sertifika yapısı oluşturulurken hata\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Sunucunun sertifikası içeri aktarılırken hata\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "Sunucunun sertifikasının özeti hesaplanamadı\n" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Sunucu sertifika durumu kontrol edilirken hata\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "sertifika iptal edildi" #: gnutls.c:2098 msgid "signer not found" msgstr "imza sahibi bulunamadı" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "imza sahibi bir CA sertifikası değil" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "güvensiz algoritma" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "sertifika henüz etkinleştirilmemiş" #: gnutls.c:2106 msgid "certificate expired" msgstr "sertifikanın süresi dolmuş" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "imza doğrulama başarısız" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "sertifika ana bilgisayar adı ile eşleşmiyor" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Sunucu sertifika doğrulaması başarısız oldu: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "cafile sertifikaları için bellek ayırma başarısız\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "cafile üzerinden sertifika okuma başarısız: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "CA dosyası '%s' açma başarısız: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Sertifika yükleme başarısız oldu. Durduruluyor.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "GnuTLS öncelik dizgesi (\"%s\") belirleme başarısız: %s\n" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "%s ile SSL anlaşması\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL bağlantısı iptal edildi\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL bağlantı hatası: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS el sıkışma sırasında ölümcül olmayan bir hata döndürdü: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "%s için PIN gerekli" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Yanlış PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Bu kilitlemeden önce son deneme hakkınızdır!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Kilitlemeden önce sadece birkaç deneme hakkınız kaldı!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "PIN Girin:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "Geçersiz OATH HMAC algoritması\n" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "OATH HMAC hesaplama başarısız: %s\n" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "EAP-TTLS oturumu kuruldu\n" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "%d bayt için TPM imza fonksiyonu çağrıldı.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM özet nesnesi oluşturma başarısız: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "TPM özet nesnesinde değer ayarlama başarısız: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM özet imzası başarısız: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "TSS anahtar damlası şifresi açılırken hata: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "TSS anahtar damlasında hata\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "TPM içeriği oluşturulamadı: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "TPM içeriğine bağlanılamadı: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "TPM SRK anahtarı yüklenemedi: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "TPM SRK politika nesnesi yükleme başarısız: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "TPM PIN ayarlanamadı: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "TPM anahtar damlası yükleme başarısız: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN girin:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Anahtar politika nesnesi oluşturma başarısız: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Anahtara politika ataması başarısız: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "TPM anahtar PIN girin:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Anahtar PIN ayarlanamadı: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "Bilinmeyen TPM2 EC digest boyutu %d\n" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "TSS2 anahtar blob’u çözülürken hata: %s\n" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "TPM2 için ASN.1 türü oluşturma başarısız: %s\n" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "TPM2 anahtarı ASN.1 çözümü başarısız: %s\n" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "TPM2 anahtar türü OID ayrıştırma başarısız: %s\n" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "TPM2 anahtarının bilinmeyen OID türü %s var, %s değil\n" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "TPM2 anahtar ebeveyni ayrıştırma başarısız: %s\n" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "PTM2 pubkey ögesi ayrıştırma başarısız\n" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "TPM2 privkey ögesi ayrıştırma başarısız\n" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "%x ebeveynli, emptyauth %d olan TPM2 anahtarı ayrıştırıldı\n" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "TPM2 özeti çok geniş: %d > %d\n" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "TPM2 parolası çok uzun; kırpılıyor\n" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "sahip" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "null" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "tasdik" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "platform" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "%s hiyerarşisi altında birincil anahtar oluşturuluyor.\n" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "TPM2 %s hiyerarşi parolasını gir:" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "TPM2 Esys_TR_SetAuth başarısız: 0x%x\n" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "TPM2 Esys_CreatePrimary sahip kimlik doğrulaması başarısız\n" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "TPM2 Esys_CreatePrimary başarısız: 0x%x\n" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "TPM ile bağlantı kuruluyor.\n" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "TPM2 Esys_Initialize başarısız: 0x%x\n" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "TPM2 Esys_Startup başarısız: 0x%x\n" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "Esys_TR_FromTPMPublic, 0x%x: 0x%x ele alımı için başarısız\n" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "TPM2 ebeveyn anahtar parolasını gir:" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "TPM2 key blob’u yükleniyor, ebeveyn %x.\n" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "TPM2 Esys_Load kimlik doğrulama başarısız\n" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "TPM2 Esys_Load başarısız: 0x%x\n" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "TPM2 anahtar parolasını gir:" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "TPM2 Esys_RSA_Decrypt kimlik doğrulama başarısız\n" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "TPM2, RSA imzası oluşturmada başarısız oldu: 0x%x\n" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "TPM2 Esys_Sign kimlik doğrulama başarısız\n" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "TPM2 özel anahtar verisi içe aktarma başarısız: 0x%x\n" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "TPM2 genel anahtar verisi içe aktarma başarısız: 0x%x\n" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "Desteklenmeyen TPM2 anahtar türü %d\n" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "TPM2 %s süreci başarısız (%d): %s%s%s\n" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "Standart olmayan SSL tünel yolu: %s\n" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "Tünel zaman aşımı (yeniden anahtarlama sıklığı) %d dakikadır.\n" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" "Yapılandırma XML’indeki (%s) geçit adresi harici geçit adresinden (%s) " "başka.\n" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" "GlobalProtect yapılandırması ipsec-mode=%s gönderdi (esp-tunnel " "beklenmişti)\n" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" "Bu inşada ESP desteği olmadığı için ESP anahtarları göz ardı ediliyor\n" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "Bilinmeyen GlobalProtect yapılandırma etiketi <%s>: %s\n" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP devre dışı" #: gpst.c:661 msgid "No ESP keys received" msgstr "Alınan ESP anahtarı yok" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "ESP desteği bu inşada kullanılabilir değil" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "MTU alınmadı. %2$s%3$s için %1$d hesaplandı\n" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "HTTPS tünel son noktasına bağlanılıyor ...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "GET-tunnel HTTPS yanıtı alınırken hata.\n" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "GET-tunnel isteminden sonra geçit hemen bağlantıyı kesti.\n" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" "UYARI: Sunucu, %s md5sum’u ile HIP raporu göndermemizi istedi.\n" " VPN bağlanabilirliği, HIP raporu gönderilmeden kısıtlı veya devre dışı " "olabilir.\n" " %s\n" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" "Yine de bu platformda HIP rapor gönderim betiği çalıştırmak " "gerçeklenmemiştir." #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" "HIP rapor gönderim betiğiyle birlikte --csd-wrapper argümanı sağlamanız " "gerekir." #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" "Hata: Bu platformda 'HIP Raporu' betiği çalıştırma henüz gerçeklenmemiştir.\n" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "'%s' HIP betiği anormal biçimde çıktı\n" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "'%s' HIP betiği sıfır olmayan durum döndürdü: %d\n" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "HIP rapor gönderimi başarısız.\n" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "HIP rapor gönderimi başarılı.\n" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "%s HIP betiği çalıştırma başarısız\n" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "Geçit, HIP rapor gönderimi gerektiğini söylüyor.\n" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "Geçit, HIP rapor gönderimi gerektiğini söylemiyor.\n" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "ESP tüneline bağlandı; HTTPS ana döngüsünden çıkılıyor.\n" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "ESP tüneline bağlanma başarısız; bunun yerine HTTPS kullanılıyor.\n" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "Paket alım hatası: %s\n" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" "Beklenmedik paket genişliği. SSL_read (16 başlık baytıyla) %d döndürdü ama " "başlık payload_len’i şudur: %d\n" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "GPST DPD/keepalive yanıtı alındı\n" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" "DPD/keepalive paket başlığının son 8 baytında 0000000000000000 beklendi ama " "şu alındı:\n" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "%d bayt IPv%d veri paketi alındı\n" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" "Veri paket başlığının son 8 baytında 0100000000000000 beklendi ama şu " "alındı:\n" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "Bilinmeyen paket. Başlık şunları döktü:\n" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "GlobalProtect HIP denetim vadesi\n" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "HIP denetimi veya raporu başarısız\n" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "GlobalProtect yeniden anahtarlama vadesi\n" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "GPST Ölü Uç Saptama (Dead Peer Detection), ölü eş saptadı!\n" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "GPST DPD/keepalive istemi gönderildi\n" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "%d bayt IPv%d veri paketi gönderiliyor\n" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "ESP sondası gönderimi başarısız\n" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "Kimlik doğrulama için GSSAPI adı içeri aktarılırken hata:\n" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "GSSAPI yanıtı üretilirken hata:\n" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "Vekil sunucusuna GSSAPI kimlik doğrulaması deneniyor\n" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "'%s' sunucusuna GSSAPI kimlik doğrulaması deneniyor\n" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "GSSAPI kimlik doğrulaması tamamlandı\n" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "GSSAPI jetonu çok büyük (%zd bayt)\n" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "%zu bayt GSSAPI jetonu gönderiliyor\n" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" "Vekil sunucusuna GSSAPI kimlik doğrulama jetonu gönderimi başarısız oldu: " "%s\n" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "Vekilden GSSAPI kimlik doğrulama jetonu alma başarısız: %s\n" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "SOCKS sunucusu GSSAPI içerik hatası raporladı\n" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "SOCKS sunucusundan bilinmeyen GSSAPI durumu cevabı (0x%02x)\n" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bayt GSSAPI jetonu alındı: %02x %02x %02x %02x\n" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "%zu bayt GSSAPI koruma uzlaşması gönderiliyor\n" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "Vekile GSSAPI koruma yanıtı gönderme başarısız: %s\n" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "Vekilden GSSAPI koruma yanıtı alma başarısız: %s\n" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "%zu bayt GSSAPI koruma yanıtı alındı: %02x %02x %02x %02x\n" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "Vekil sunucudan geçersiz GSSAPI koruma yanıtı (%zu bayt)\n" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "SOCKS vekil sunucusu desteklenmeyen ileti bütünlüğü ister\n" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "SOCKS vekil sunucusu desteklenmeyen ileti gizliliği ister\n" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "SOCKS vekil sunucusu bilinmeyen koruma türü 0x%02x ister\n" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "Vekile HTTP Temel kimlik doğrulaması deneniyor\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "'%s' sunucuda HTTP Basic kimlik doğrulaması deneniyor\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "'%s' sunucuda HTTP Bearer kimlik doğrulaması deneniyor\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "OpenConnect'in bu sürümü GSSAPI desteği olmadan derlendi\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Vekil, öntanımlı olarak devredışı olan Temel kimlik doğrulaması istedi\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "'%s' sunucusu, öntanımlı olarak devre dışı olan Basic kimlik doğrulaması " "istedi\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "Denenecek kimlik doğrulama yöntemi kalmadı\n" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Çerezlere ayrılacak bellek yok\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "HTTP yanıtı okuma başarısız: %s\n" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "HTTP yanıtı '%s' ayrıştırılamadı\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP yanıtı alındı: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Bilinmeyen HTTP yanıt satırı '%s' yoksayılıyor\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Geçersiz çerez verildi: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL sertifikası kimlik doğrulama hatası\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Yanıt gövdesi sıfırdan küçük bir boyutta (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Bilinmeyen Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP gövde %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "HTTP yanıt gövdesi okunurken hata\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Yığın başlık getirilirken hata\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "HTTP yanıt gövdesi getirilirken hata\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Bağlantı kapatılmadan HTTP 1.0 gövdesi alınamıyor\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Yeniden yönlendirme URL'i '%s' ayrıştırması başarısız: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "https-olmayan yönlendirme adresi '%s' takip edilemez\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "İlgili yeniden yönlendirme için yeni yol tahsisi başarısız: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "HTTPS soketi eş tarafından kapatıldı; yeniden açılıyor\n" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "istek kabul edildi" #: http.c:1003 msgid "general failure" msgstr "genel hata" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "kural kümesine göre bağlantıya izin verilmiyor" #: http.c:1005 msgid "network unreachable" msgstr "ağ erişilemez durumda" #: http.c:1006 msgid "host unreachable" msgstr "makine erişilemez durumda" #: http.c:1007 msgid "connection refused by destination host" msgstr "bağlantı hedef makine tarafından reddedildi" #: http.c:1008 msgid "TTL expired" msgstr "TTL süresi doldu" #: http.c:1009 msgid "command not supported / protocol error" msgstr "komut desteklenmiyor / protokol hatası" #: http.c:1010 msgid "address type not supported" msgstr "adres türü desteklenmiyor" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" "SOCKS sunucusu kullanıcı adı/parola istedi fakat hiçbiri mevcut değil\n" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" "SOCKS kimlik doğrulaması için kullanıcı adı ve parola < 255 bayt olmalıdır\n" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "SOCKS vekil sunucusuna kimlik doğrulama isteği yazılırken hata: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "SOCKS vekilinden kimlik doğrulama yanıtı okunurken hata: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "SOCKS vekilinden beklenmeyen kimlik doğrulama yanıtı: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "SOCKS sunucusuna parola kullanılarak kimlik doğrulandı\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "SOCKS sunucusuna parola kimlik doğrulaması başarısız oldu\n" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS sunucusu GSSAPI kimlik doğrulaması istedi\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS sunucusu parola kimlik doğrulaması istedi\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS sunucusu kimlik doğrulama gerektirir\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS sunucusu bilinmeyen %02x kimlik doğrulama türünü ister\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Şuradan SOCKS vekil bağlantısı isteniyor %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "SOCKS vekiline bağlantı isteği yazarken hata: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "SOCKS vekilinden bağlantı yanıtı okunurken hata: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "SOCKS vekilinden beklenmeyen bağlantı yanıtı: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS vekil hatası %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS vekil hatası %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "SOCKS bağlantı adresinde beklenmeyen adres türü %02x\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "%s sunucusuna HTTP vekil bağlantısı isteniyor:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Vekil sunucu isteği gönderme başarısız oldu: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "Vekil sunucu CONNECT isteği başarısız oldu: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Bilinmeyen vekil sunucu türü '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "Vekil ayrıştırma başarısız '%s'\n" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Sadece http ya da socks(5) vekilleri destekleniyor\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect veya openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Cisco AnyConnect SSL VPN ve ocserv ile uyumludur" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Juniper Network Connect ile uyumludur" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Palo Alto Networks (PAN) GlobalProtect SSL VPN ile uyumludur" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Pulse Connect Secure SSL VPN ile uyumludur" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Bilinmeyen VPN iletişim kuralı '%s'\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "SSL kütüphanesini Cisco DTLS desteği olmadan derle\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Hiçbir IP adresi alınamadı. Durduruluyor\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Yeniden bağlantı farklı eski bir IP adresi getirdi (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Yeniden bağlantı eski bir IP ağ maskesi getirdi (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Yeniden bağlantı farklı IPv6 adresi getirdi (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Yeniden bağlantı farklı bir IPv6 ağ maskesi getirdi (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "IPv6 yapılandırması alındı fakat MTU %d çok küçük.\n" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Sunucu URL'i '%s' ayrıştırma işlemi başarısız oldu\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Sunucu URL'i için sadece https:// izinli\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "Bilinmeyen sertifika sağlaması: %s\n" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "Verilen parmak izi boyutu gerekli azami boyuttan az (%u).\n" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Form işleyicisi yok; kimlik doğrulanamıyor.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() başarısız oldu: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "Komut satırı işlemede önemli hata\n" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() başarısız oldu: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() başarısız: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "Konsol girdisi dönüştürülürken hata: %s\n" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "stdin'den gelen karakter dizisi için yer tahsis etme hatası\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "OpenConnect konusunda yardım için, lütfen\n" " https://www.infradead.org/openconnect/mail.html adresindeki web\n" "sayfasına bakın\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "%s kullanılıyor. İçerilen özellikler:" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL MOTORU mevcut değil" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" "UYARI: Bu uygulama DTLS ve/veya ESP desteğini sağlamıyor. Performans " "zayıflayacak.\n" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Desteklenen iletişim kuralları:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (öntanımlı)" #: main.c:743 msgid "Set VPN protocol" msgstr "VPN iletişim kuralı belirle" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Bu çalıştırılabilir yol \"%s\" işlenemiyor" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "vpnc betik yolu için yer ayırma başarısız\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Kullanım: openconnect [seçenekler]\n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Çoklu VPN iletişim kuralları için açık istemci, sürüm %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Yapılandırma dosyasından seçenekleri oku" #: main.c:914 msgid "Report version number" msgstr "Sürüm numarasını raporla" #: main.c:915 msgid "Display help text" msgstr "Yardım metnini göster" #: main.c:919 msgid "Authentication" msgstr "Kimlik doğrulama" #: main.c:920 msgid "Set login username" msgstr "Giriş kullanıcı adı ayarla" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Parola/SecurID kimlik doğrulamasını devre dışı bırak" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Kullanıcı girdisi bekleme; gerekirse çık" #: main.c:923 msgid "Read password from standard input" msgstr "Standart girdiden parola oku" #: main.c:924 msgid "Choose authentication login selection" msgstr "Kimlik doğrulama giriş seçimini seç" #: main.c:925 msgid "Provide authentication form responses" msgstr "Kimlik doğrulama form yanıtlarını ver" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "SSL istemci sertifikası CERT kullan" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "SSL özel anahtar dosyası KEY kullan" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Sertifika ömrü < DAYS durumuna geldiğinde uyar" #: main.c:929 msgid "Set login usergroup" msgstr "Giriş kullanıcı grubu ayarla" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Anahtar parolası ya da TPM SRK PIN ayarla" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Anahtar parolası dosya sisteminin fsid'sidir" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "Yazılım jeton türü: rsa, totp, hotp veya oidc" #: main.c:933 msgid "Software token secret or oidc token" msgstr "Yazılım jeton gizi veya oidc jetonu" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(NOT: Bu derlemede libstoken (RSA SecurID) devre dışı bırakıldı)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "(NOT: Bu derlemede Yubikey OATH devre dışı bırakıldı)" #: main.c:941 msgid "Server validation" msgstr "Sunucu doğrulama" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "Öntanımlı sistem sertifika yetkilileri kapatıldı" #: main.c:944 msgid "Cert file for server verification" msgstr "Sunucu doğrulama için sertifika dosyası" #: main.c:946 msgid "Internet connectivity" msgstr "İnternet bağlanabilirliği" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Vekil sunucu ayarla" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Vekil sunucu kimlik doğrulama yöntemlerini ayarla" #: main.c:950 msgid "Disable proxy" msgstr "Vekili kapat" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Vekili otomatik yapılandırmak için libproxy kullan" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: Bu derlemede libproxy devredışı bırakıldı)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Bağlantı yeniden deneme zaman aşımının saniye cinsinden değeri" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "ANA MAKİNEye bağlanırken IP kullan" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "TOS / TCLASS alanını DTLS ve ESP paketlerine kopyala" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Kimlik doğrulama (iki evreli)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "Kimlik doğrulama çerezi ÇEREZ kullan" #: main.c:962 msgid "Read cookie from standard input" msgstr "Standart girdiden çerez oku" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Sadece kimlik doğrula ve giriş bilgisini yazdır" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "Yalnızca çerezi al ve yazdır; bağlanma" #: main.c:965 msgid "Print cookie before connecting" msgstr "Bağlanmadan önce çerezi yazdır" #: main.c:968 msgid "Process control" msgstr "Süreç denetimi" #: main.c:969 msgid "Continue in background after startup" msgstr "Başlangıçtan sonra arkaplanda devam et" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Artalan işlemin PID bilgisini bu dosyaya yaz" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Bağlandıktan sonra ayrıcalıkları bırak" #: main.c:974 msgid "Logging (two-phase)" msgstr "Günlükleme (iki evreli)" #: main.c:976 msgid "Use syslog for progress messages" msgstr "İlerleme mesajları için syslog'u kullan" #: main.c:978 msgid "More output" msgstr "Daha fazla çıktı" #: main.c:979 msgid "Less output" msgstr "Daha az çıktı" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "HTTP kimlik doğrulama trafiğini dök (--verbose ayrıntılı)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "İlerleme mesajları için zaman damgasını başa ekle" #: main.c:983 msgid "VPN configuration script" msgstr "VPN yapılandırma betiği" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Tünel arayüzü için IFNAME kullan" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "vpnc uyumlu yapılandırma betiği kullanmak için kabuk komut satırı" #: main.c:986 msgid "default" msgstr "öntanımlı" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Trafiği tun yerine 'betik' programından geçir" #: main.c:991 msgid "Tunnel control" msgstr "Tünel denetimi" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6 bağlantısı isteme" #: main.c:993 msgid "XML config file" msgstr "XML yapılandırma dosyası" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "Sunucudan MTU iste (yalnızca eski sunucular)" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Sunucudan/sunucuya MTU yolu belirtin" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" "Durum denetimli sıkıştırmayı etkinleştir (öntanımlı, yalnızca denetimsizdir)" #: main.c:997 msgid "Disable all compression" msgstr "Tüm sıkıştırmayı devre dışı bırak" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Mükemmel ileri gizlilik iste" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "DTLS ve ESP’yi devre dışı bırak" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "DTLS desteği için OpenSSL şifreleri" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "LEN pkts için paket kuyruk sınırı ayarla" #: main.c:1004 msgid "Local system information" msgstr "Yerel sistem bilgisi" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP başlığı User-Agent: alan" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "Sunucuya tanıtılacak yerel ana makine adı" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "kimlik doğrulama sırasında bildirilen sürüm dizgesi" #: main.c:1010 msgid "default:" msgstr "öntanımlı:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Trojen uygulama (CSD) çalıştırımı" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "Trojen çalıştırırken ayrıcalıkları bırak" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "Trojen uygulaması yerine BETİK çalıştır" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "Sunucu hataları" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "HTTP bağlantısı yeniden-kullanımı devre dışı bırak" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "XML POST kimlik doğrulaması girişimi yok" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Karakter dizisi ayırma başarısız\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Yapılandırma dosyasından satır alma başarısız: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "%d satırında tanınmayan seçenek: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' seçeneği %d satırında bağımsız değişken almaz\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' seçeneği %d satırında bir değişken ister\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Geçersiz kullanıcı \"%s\": %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "Geçersiz kullanıcı kimliği \"%d\": %s\n" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "sürüyor" #: main.c:1519 msgid "disabled" msgstr "devre dışı" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "'%s' yazmak için açılamadı: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Arkaplanda devam ediyor; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "UYARI: Yerel belirlenemedi: %s\n" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" "UYARI: Openconnect uygulamasının bu sürümü iconv desteği olmadan\n" " derlendi fakat \"%s\" eski karakter kümesini kullanıyor " "görünüyorsunuz.\n" " Garip davranışlara hazır olun.\n" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "UYARI: Openconnect sürümü %s fakat\n" " libopenconnect kütüphanesi %s'dir\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Vpninfo yapısı ayrılırken başarısız olundu\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Yapılandırma dosyası içindeki 'yapılandırma' seçeneği kullanılamıyor\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Yapılandırma dosyası '%s' açılamıyor: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "Geçersiz sıkıştırma kipi '%s'\n" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "Bellek ayırma başarısız\n" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "Çözüm seçeneğinde eksik iki nokta üst üst\n" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d çok küçük\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "--no-http-keepalive seçeneğinden dolayı HTTP bağlantılarının yeniden " "kullanılması devre dışı.\n" "Eğer bu yardımcı olursa, lütfen " "adresine eposta atın.\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" "--no-cert-check option güvensizdir ve kaldırılmıştır.\n" "Sunucunuzun sertifikasını düzeltin veya güvenmek için --servercert " "kullanın.\n" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Kuyruk uzunluğu olarak sıfıra izin verilmiyor; 1 kullanılacak\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect sürümü %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Geçersiz yazılım jeton kipi \"%s\"\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" "UYARI: %s belirttiniz. Bu gerekli değildir;\n" " bir sunucuya bağlanmada öncelik dizgesinin\n" " üstüne yazılması gereken durumları şu adrese\n" " bildirin: .\n" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Komut satırında çok fazla değişken\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Sunucu belirtilmemiş\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Openconnect'in bu sürümü libproxy desteği olmadan derlendi\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL bağlantısı oluşturma işlemi başarısız oldu\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "UDP kurma başarısız; bunun yerine SSL kullanılıyor\n" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Hiçbir --script değişkeni verilmemiş; DNS ve yönlendirme yapılandırılmamış\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" "https://www.infradead.org/openconnect/vpnc-script.html adresine bakın\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "Kullanıcı yeniden bağlantı istedi\n" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "Oturum sunucu tarafından sonlandırıldı; çıkılıyor.\n" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Bilinmeyen hata; çıkılıyor.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Yazmak için %s açılırken başarısız olundu: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "%s konumuna yapılandırma yazma başarısız: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "\"%s\" VPN sunucusundan alınan sertifika doğrulanamadı.\n" "Neden: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" "Gelecekte bu sunucuya güvenmek için şunu komut satırınıza ekleyebilirsiniz:\n" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Kabul etmek için '%s', iptal etmek için '%s'; görüntülemek için başka " "herhangi bir şey girin: " #: main.c:2464 main.c:2483 msgid "no" msgstr "hayır" #: main.c:2464 main.c:2470 msgid "yes" msgstr "evet" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "Sunucu anahtar özeti: %s\n" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Kimlik doğrulama seçeneği \"%s\" birden fazla seçenek ile eşleşiyor\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Kimlik doğrulama seçeneği \"%s\" kullanılabilir değil\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Etkileşimli olmayan kipte kullanıcı girdisi istedi\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "Yazmak için jeton dosyası açma başarısız oldu: %s\n" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "Jetona yazma başarısız: %s\n" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Yazılım jeton katarı geçersiz\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "~/.stokenrc dosyası açılamıyor\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect libstoken desteğiyle derlendi\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Genel libstoken eksikliği\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect liboath desteğiyle derlendi\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Genel liboath eksikliği\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "Yubikey jetonu bulunamadı\n" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "OpenConnect Yubikey desteğiyle derlendi\n" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Genel Yubikey hatası: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "oidc dosyası açılamadı\n" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "oidc jetonunda genel başarısızlık\n" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "tun aygıtı ayarlama başarısız oldu\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "tun aygıtı ayarlama başarısız oldu\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Arayan bağlantısı durduruldu\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Yapılacak iş yok; %d ms'dir bekliyor...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "WaitForMultipleObjects başarısız oldu: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "InitializeSecurityContext() başarısız oldu: %lx\n" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "AcquireCredentialsHandle() başarısız oldu: %lx\n" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "ntlm_auth yardımcısı ile iletişim sırasında hata\n" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "Vekile HTTP NTLM kimlik doğrulaması deneniyor (tek oturum açma)\n" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "Vekile HTTP NTLMv%d kimlik doğrulaması deneniyor\n" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "Geçersiz base32 jeton dizgesi\n" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "OpenConnect'in bu sürümü PSKC desteği olmadan derlendi\n" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "INITIAL jeton kodu oluşturmak için OK basın\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "NEXT jeton kodu oluşturmak için OK basın\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "Sunucu yazılım jetonunu reddediyor; manuel giriş için değiştiriliyor\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP jeton kodu oluşturuluyor\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP jeton kodu oluşturuluyor\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "Sunucudan MTU %d alındı\n" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "DNS sunucusu %s alındı\n" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "İç IP adresi %s alındı\n" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "WINS sunucusu %s alındı\n" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP şifreleme: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP sıkıştırma: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP bağlantı noktası: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "ESP anahtar ömrü: %u bayt\n" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "ESP anahtar ömrü: %u saniye\n" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "ESP yeniden oynatma koruması: %d\n" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "KMP başlığı ayrıştırma başarısız\n" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "KMP iletisi ayrıştırma başarısız\n" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "ESP anahtarları el sıkışmasında hata\n" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "yeni gelen" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "yeni giden" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "Sunucu bağlantıyı sonlandırdı (oturum sona erdi)\n" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "Sunucu bağlantıyı sonlandırdı (neden: %d)\n" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Tanınmayan veri paketi\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "ESP kurulunu başarısız: %s\n" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr ".... + diğer %d bayt alınmadı\n" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "HATA: %s() '%s' değişkeni için geçersiz UTF-8 ile çağrıldı\n" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "Rastgele anahtar oluşturma başarısız\n" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "OpenSSL için SSL_SESSION ASN.1 oluşturma başarısız: %s\n" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "OpenSSL’in SSL_SESSION ASN.1 ayrıştırması başarısız\n" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "DTLSv1 oturumu başlatma başarısız\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "Çok geniş uygulama kimlik boyutu\n" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "DTLSv1 CTX başlatma başarısız\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "DTLS anahtarı oluşturma başarısız\n" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "DTLS şifre listesi ayarlama başarısız\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() başarısız\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Bu muhtemelen OpenSSL'inizin bozulmasından dolayıdır\n" "http://rt.openssl.org/Ticket/Display.html?id=2984 adresine bakın\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS elsıkışması başarısız oldu: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "ESP HMAC ilkendirme başarısız\n" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "ESP paketi için şifre çözme bağlamı kurulumu başarısız:\n" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "ESP paketinin şifresi çözülemedi:\n" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "ESP paketi şifrelenemedi:\n" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "libp11 PKCS#11 bağlamı sağlama başarısız oldu:\n" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "PKCS#11 sağlayıcı modül yüklemesi başarısız (%s):\n" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN kilitlendi\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN süresi doldu\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Başka kullanıcı zaten giriş yapmış\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "PKCS#11 belirteci için bilinmeyen hata günlüğü\n" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasına giriş yapıldı\n" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasındaki sertifikaların sıralaması başarısız\n" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "%d yuvasında '%s' sertifika bulundu\n" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "PKCS#11 URI '%s' ayrıştırma başarısız oldu\n" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "PKCS#11 yuvaları numaralandırma işlemi başarısız\n" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasına giriş yapılıyor\n" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "'%s' PKCS#11 sertifikası bulunamadı\n" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "X.509 sertifika içeriği libp11 ile getirilemedi\n" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "PKCS#11 '%s' yuvasındaki anahtarların sıralaması başarısız\n" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "%d yuvasında '%s' anahtarları bulundu\n" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Sertifikanın genel anahtarı yok\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Sertifika özel anahtarı eşleşmiyor\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "İmza tamponuna yer ayrılamadı\n" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "'%s' PKCS#11 anahtarı bulunamadı\n" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "OpenConnect'in bu sürümü PKCS#11 desteği olmadan derlendi\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "İşlenmeyen SSL UI istek türü %d\n" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM parolası çok uzun (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Özel anahtar yükleme başarısız\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "OpenSSL bağlamında sertifika yükleme başarısız oldu\n" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s'den fazladan sertifika: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "PKCS#12 ayrıştırma başarısız oldu (yukarıdaki hataları bakın)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 sertifika içermiyor!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 hiçbir özel anahtar içermiyor!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "TPM motoru yüklenemiyor.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "TPM motoru başlatma işlemi başarısız oldu\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "TPM SRK parolası ayarlama işlemi başarısız oldu\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "TPM özel anahtar yükleme işlemi başarısız oldu\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "%s sertifika dosyası açma işlemi başarısız oldu: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Sertifika yükleme başarısız oldu\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" "Desteklenen tüm sertifikaların işlenmesi başarısız oldu. Yine de " "deneniyor...\n" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM dosyası" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Anahtar depo ögesi '%s' için BIO oluşturma başarısız oldu\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Özel anahtar yükleme başarısız oldu (hatalı anahtar parolası mı?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Özel anahtar yükleme başarısız oldu (yukarıdaki hatalara bakın)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Anahtar deposundan X509 sertifika yükleme işlemi başarısız\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "%s özel anahtarı açma başarısız: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "'%s' konumunda özel anahtar türü tanımlama başarısız\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Eşleşmiş DNS diğer ismi '%s'\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Diğer isim '%s' için eşleşme yok\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Sertifika %d sahte uzunluklu GEN_IPADD diğer adına sahip\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "%s adresi '%s' ile eşleşti\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "%s adresi ile '%s' için eşleşme yok\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' boş olmayan yola sahip; yoksayılıyor\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Eşleşen URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "URI '%s' için eşleşme yok\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "Uç sertifikasında '%s' ile eşleşen diğer bir isim yok\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Uç sertifikada başlık adı yok!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Eş sertifikada başlık adı ayrıştırma başarısız\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Uç sertifika başlığı eşleşmiyor ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Eşleşmiş uç sertifika başlık adı '%s'\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile'dan yedek sertifika: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "İstemci sertifikasında notAfter alan hatası\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "SSL sertifikası ve anahtar eşleşmedi\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "'%s' CA dosyasından sertifikaları okuma başarısız\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "CA dosyası '%s' açma başarısız oldu\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "TLSv1 CTX oluşturma başarısız\n" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL bağlantı hatası\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "OATH HMAC hesaplama başarısız\n" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "%s ilet EAP-TTLS el sıkışması\n" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "EAP-TTLS bağlantısı başarısız %d\n" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ESP şifreleme: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "ESP HMAC: 0x%04x (%s)\n" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "Yalnızca ESP: %d\n" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "Pulse kullanıcı bölgesini girin:" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Bölge:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "Pulse kullanıcı bölgesi seçin:" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "AVP ayrıştırma başarısız\n" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "Oturum sınırı aşıldı. Öldürmek için oturum seçin:\n" #: pulse.c:875 msgid "Session:" msgstr "Oturum:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Oturum listesi ayrıştırma başarısız\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "İkincil kimlik bilgilerini girin:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Kullanıcı kimlik bilgilerini girin:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "İkincil kullanıcı adı:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Kullanıcı adı:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Parola:" #: pulse.c:1010 msgid "Secondary password:" msgstr "İkincil parola:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Parolanın süresi doldu. Lütfen parolayı değiştirin:" #: pulse.c:1085 msgid "Current password:" msgstr "Geçerli parola:" #: pulse.c:1090 msgid "New password:" msgstr "Yeni parola:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Yeni parolayı doğrula:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Parola sağlanmadı.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Parolalar eşleşmiyor.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Geçerli parola çok uzun.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Yeni parola çok uzun.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Jeton kodu istemi:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Lütfen yanıtı girin:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Lütfen geçiş kodunuzu girin:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Lütfen ikincil jeton bilginizi girin:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Pulse bağlantı isteği oluşturulurken hata\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "IF-T/TLS sürüm el sıkışmasına beklenmedik yanıt:\n" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "Sunucudan IF-T/TLS sürümü: %d\n" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "EAP-TTLS oturumu kurulamadı\n" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" "UYARI: Sunucu, kendi asıl sertifikasıyla uyuşmayan sertifika MD5’i sağladı.\n" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "Kimlik doğrulama başarısızlığı: Hesap kilitlendi\n" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Kimlik doğrulama başarısızlığı: Kod 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" "Bilinmeyen D73 istem değeri 0x%x. Hem kullanıcı hem parola için istemde " "bulunacak.\n" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "Lütfen bu değeri ve resmi istemcinin davranışını raporlayın.\n" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "Kimlik doğrulama başarısızlığı: %.*s\n" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" "Ele alınmamış Pulse kimlik doğrulama paketi veya kimlik doğrulama başarısız\n" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Pulse kimlik doğrulama çerezi kabul edilmedi\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "IF-T/TLS kimlik doğrulama başarısı yerine beklenmedik yanıt:\n" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" "EAP-TTLS başarısızlığı: Çıktı, bekleyen giriş baytlarıyla temizleniyor\n" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "EAP-TTLS tamponu oluşturulurken hata\n" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "Beklenmedik Pulse yapılandırma paketi:\n" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "Geçersiz ESP yapılandırma paketi:\n" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "Geçersiz ESP kurulumu\n" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "Yapılandırma beklenirken kötü IF-T/TLS paketi:\n" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "Yapılandırma beklerken beklenmedik IF-T/TLS paketi.\n" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "ESP yeniden anahtarlama başarısız\n" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Bilinmeyen Pulse paketi\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "%d baytın IF-T/TLS veri paketi gönderiliyor\n" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "\"%s\" dahil kötü bölmeyi çıkar\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "\"%s\" hariç kötü bölmeyi çıkar\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "%s için '%s' betiği oluşturma başarısız: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "'%s' betiğinden anormal çıkıldı (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "Betik '%s' %d hatasını döndü\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Soket bağlantısı iptal edildi\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "%s vekiline yeniden bağlanma başarısız: %s\n" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "%s ana makinesine yeniden bağlanma başarısız: %s\n" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "libproxy kütüphanesinden vekil: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "'%s' sunucusu için getaddrinfo başarısız: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" "Önceden önbellekte tutulan IP adresi kullanılarak DynDNS sunucusuna yeniden " "bağlanılıyor\n" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "%s%s%s vekiline bağlantı deneniyor:%s\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "%s%s%s sunucusuna bağlantı deneniyor:%s\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "Bağlanıldı: %s%s%s:%s\n" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "sockaddr depolama ayırma başarısız\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "%s%s%s:%s konumuna bağlanılamadı: %s\n" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "İşlevsel olmayan önceki uç adres unutuluyor\n" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "%s makinesine bağlanılamadı\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "%s vekil sunucusuna yeniden bağlanılıyor\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Anahtar parolası için dosya sistem numarası alınamadı\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Özel anahtar dosyası '%s' açılamadı: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Hata yok" #: ssl.c:727 msgid "Keystore locked" msgstr "Anahtar deposu kilitlendi" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Anahtar deposu başlatılmamış" #: ssl.c:729 msgid "System error" msgstr "Sistem hatası" #: ssl.c:730 msgid "Protocol error" msgstr "Protokol hatası" #: ssl.c:731 msgid "Permission denied" msgstr "Erişim engellendi" #: ssl.c:732 msgid "Key not found" msgstr "Anahtar bulunamadı" #: ssl.c:733 msgid "Value corrupted" msgstr "Değer bozulmuş" #: ssl.c:734 msgid "Undefined action" msgstr "Tanımlanmamış eylem" #: ssl.c:738 msgid "Wrong password" msgstr "Hatalı parola" #: ssl.c:739 msgid "Unknown error" msgstr "Bilinmeyen hata" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "%s açma başarısız: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "fstat() %s başarısız oldu: %s\n" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "%s dosyası boş\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "%d bayt %s için ayrılamadı\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "%s okunamadı: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" "%d bilinmeyen iletişim kuralı ailesi. UDP sunucu adresi oluşturulamaz\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "UDP soketi aç" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "%d bilinmeyen iletişim kuralı ailesi. UDP aktarımı kullanılamaz\n" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Çerez artık geçerli değil, oturum sonlandırılıyor\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "%ds beklemeye geç, zaman aşımına kalan zaman %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "SSPI belirteci çok büyük (%ld bayt)\n" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "%lu bayt SSPI jetonu gönderiliyor\n" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "Vekile SSPI kimlik doğrulama jetonu gönderme başarısız: %s\n" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "Vekilden SSPI kimlik doğrulama jetonu alma başarısız: %s\n" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "SOCKS sunucusu SSPI içerik hatasını raporladı\n" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "SOCKS sunucusundan bilinmeyen SSPI durum yanıtı (0x%02x)\n" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "%lu bayt SSPI jetonu alındı: %02x %02x %02x %02x\n" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "QueryContextAttributes() başarısız: %lx\n" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() başarısız: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "EncryptMessage() sonucu çok büyük (%lu + %lu + %lu)\n" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "%u bayt SSPI koruma uzlaşması gönderiliyor\n" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "Vekile SSPI koruma yanıtı gönderme başarısız: %s\n" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "Vekilden SSPI koruma yanıtı alma başarısız: %s\n" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "%d bayt SSPI koruma yanıtı alındı: %02x %02x %02x %02x\n" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "DecryptMessage başarısız oldu: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "Vekil sunucusundan geçersiz SSPI koruma yanıtı (%lu bayt)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Yazılım belirtecinin kilidini kaldırmak için kimlik bilgileri girin." #: stoken.c:107 msgid "Device ID:" msgstr "Aygıt Kimliği:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Kullanıcı yazılım jetonunu atladı.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Bütün alanların girilmesi zorunludur; tekrar deneyin.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "libstoken kütüphanesinde genel hata.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Hatalı aygıt kimliği ya da parolası; tekrar deneyin.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Yazılım jetonu başarıyla başlatıldı.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Yazılım jeton PIN'i girin." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Geçersiz PIN biçemi; tekrar deneyin.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "RSA belirteç kodu oluşturuluyor\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Ağ bağdaştırıcıları için kayıt yeri anahtarı erişim hatası\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "%s\\%s okunamadı veya dizge değil\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" "GetAdapterIndex() başarısız: %s\n" "GetAdaptersInfo() ’e geri dönülüyor\n" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "GetAdaptersInfo() başarısız: %s\n" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "%s açılamadı\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "TAP sürücü sürümü alınamadı: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Hata: TAP-Windows sürücüsü için v9.9 ya da daha büyük sürüm gerekli (bulunan " "sürüm %ld.%ld)\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "TAP IP adresleri ayarlanamadı: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "TAP ortam durumu ayarlama başarısız: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "TAP aygıtı bağlantıyı durdurdu. Bağlantı kesiliyor.\n" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "TAP aygıtından okuma başarısız: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "TAP aygıtından okuma işlemi tamamlanamadı: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld bayt tun'a yazıldı\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "Tun yazma için bekleniyor...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "Bekleme sonrası tun için %ld bayt yazıldı\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "TAP aygıtına yazılamadı: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tünel betiği oluşturma henüz Windows için desteklenmiyor\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Akış için /dev/tun açılamadı" #: tun.c:92 msgid "Can't push IP" msgstr "IP gönderilemiyor" #: tun.c:102 msgid "Can't set ifname" msgstr "Ifname ayarlanamıyor" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "%s IPv%d için boşaltılamıyor: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun aç" #: tun.c:145 msgid "Failed to create new tun" msgstr "Yeni tun oluşturma başarısız" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "message-discard kipine tun dosyası tanımlayıcısı koyma başarısız" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "tun aygıtı bu platformda desteklenmemektedir\n" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Tun aygıtı açma başarısız: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" "Yerel ağı yapılandırmak için openconnect kök olarak çalıştırılmalıdır\n" "Daha çok bilgi için https://www.infradead.org/openconnect/nonroot.html\n" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "Geçersiz arayüz adı '%s'; 'utun%%d' ya da 'tun%%d' eşleşmeli\n" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "SYSPROTO_CONTROL soketi açma işlemi başarısız: %s\n" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "utun kontrol kimliği sorgulanamadı: %s\n" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "utun aygıt adı tahsis edilemedi\n" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "utun birimine bağlanılamadı: %s\n" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "Geçersiz arayüz adı '%s'; 'tun%%d' ile eşleşmeli\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "'%s' açılamıyor: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "socketpair başarısız oldu: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "çatallama başarısız oldu: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(betik)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Gelen paketi yazma başarısız: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "\"%s\" istemcisi ham makine adı olarak işleniyor\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Mevcut dosyanın SHA1 özeti alınamadı\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML yapılandırma dosyası SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML yapılandırma dosyası %s ayrıştırılamadı\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Sunucu \"%s\" \"%s\" adresine sahip\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Sunucu \"%s\" \"%s\" KullanıcıGrubuna sahip\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "\"%s\" makinesi yapılandırmada listelenmiyor; ham makine adı olarak " "işleniyor\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "\"%s\" ykneo-oath uygulama programına gönderme başarısız: %s\n" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "Ykneo-oath uygulama programından \"%s\" konumuna geçersiz kısa yanıt\n" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "\"%s\" yanıt verme başarısız: %04x\n" #: yubikey.c:174 msgid "select applet command" msgstr "uygulama programı komutunu seç" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Ykneo-oath uygulama programından tanınmayan yanıt\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "ykneo-oat uygulama programı v%d.%d.%d bulundu.\n" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "Yubikey OATH uygulaması için PIN gerekiyor" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikey PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "Yubikey kilit kaldırma yanıtı hesaplanamadı\n" #: yubikey.c:274 msgid "unlock command" msgstr "kilit kaldırma komutu" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "PC/SC içeriği belirlenemedi: %s\n" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "PC/SC içeriği belirlendi\n" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "Okuyucu listesi sorgulanamadı: %s\n" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "PC/SC '%s' okuyucusuna bağlanılamadı: %s\n" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "PC/SC '%s' okuyucusuna bağlanıldı\n" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "'%s' okuyucusuna özel erişim alınamadı: %s\n" #: yubikey.c:412 msgid "list keys command" msgstr "anahtar listeleme komutu" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "'%s' üzerinde %s/%s anahtar '%s' bulundu\n" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" "Yubikey '%s' üzerinde '%s' jetonu bulunamadı. Başka Yubikey aranıyor...\n" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "Sunucu Yubikey jetonunu reddediyor; elle giriş için değiştiriliyor\n" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "Yubikey jeton kodu oluşturuluyor\n" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "Yubikey'e ayrıcalıklı erişim alma başarısız: %s\n" #: yubikey.c:619 msgid "calculate command" msgstr "hesapla komutu" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Tokencode oluşturulurken Yubikey'den gelen tanınmayan yanıt\n" openconnect-8.20/po/ChangeLog0000664000076400007640000000146212424411475017731 0ustar00dwoodhoudwoodhou000000000000002014-10-30 gettextize * Makefile.in.in: New file, from gettext-0.19.2. * Rules-quot: Upgrade to gettext-0.19.2. * POTFILES.in: New file. 2011-10-31 gettextize * Makefile.in.in: Upgrade to gettext-0.18.1. 2011-10-31 gettextize * Makefile.in.in: New file, from gettext-0.18.1. 2011-10-31 gettextize * Makefile.in.in: Upgrade to gettext-0.18.1. * boldquot.sed: New file, from gettext-0.18.1. * en@boldquot.header: New file, from gettext-0.18.1. * en@quot.header: New file, from gettext-0.18.1. * insert-header.sin: New file, from gettext-0.18.1. * quot.sed: New file, from gettext-0.18.1. * remove-potcdate.sin: New file, from gettext-0.18.1. * Rules-quot: New file, from gettext-0.18.1. openconnect-8.20/po/eu.po0000644000076400007640000043752614204456070017142 0ustar00dwoodhoudwoodhou00000000000000# Basque translation of network-manager-openconnect. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Iñaki Larrañaga Murgoitio , 2009, 2010, 2014, 2015. # Edurne Labaka , 2015. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2015-02-07 17:42+0100\n" "Last-Translator: Iñaki Larrañaga Murgoitio \n" "Language-Team: Basque \n" "Language: eu\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Lokalize 1.4\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Ustekabeko %d emaitza zerbitzaritik\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL-ek byte gutxiegi idatzita. %d eskatu ziren, %d bidalita\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP gakoa birnegoziatzeko zain\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "Huts egin du berriro negoziatzean. Tunel berriarekin saiatzen\n" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Konprimatu gabeko datuen paketea (%d byte) bidaltzen\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "DTLS konexio berriaren saiakera\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLSren 0x%02x paketea (%d byte) jasota\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLSren gakoa birnegoziatzeko zain\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "Huts egin du DTLS berriro negoziatzean. Birkonektatzen.\n" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLSren DPDak hildako parekoa atzeman du\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Bidali DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "Huts egin du DPD eskaera bidaltzean. Deskonektatzea espero da\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "DTLS paketea bidalita (%d byte). DTLSren bidalketak %d itzuli du\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Ezin da inprimakiaren metodoa='%s', ekintza='%s' kudeatu\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Inprimakiaren aukerak ez dauka izenik\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "'%s izena ez da sarrera\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Ez dago sarrera motarik inprimakian\n" #: auth.c:207 msgid "No input name in form\n" msgstr "Ez dago sarreraren izenik inprimakian\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "'%s' sarrera mota ezezaguna inprimakian\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Erantzun hutsa zerbitzaritik\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Huts egin du zerbitzariaren erantzuna analizatzean\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Erantzuna: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "Espero ez zen jasota.\n" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "XML erantzunak ez du 'auth' nodorik\n" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Pasahitza eskatu da baina '--no-passwd' ezarri da\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Huts egin du '%s'(r)ekin HTTPS konexioa irekitzean\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "Huts egin du konfigurazio berriaren GET eskaera bidaltzean\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" "Deskargatutako konfigurazio-fitxategia ez dator bat dagokion SHA1-ekin\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Huts egin du CSD-ren '%s' karpeta nagusira aldatzean: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" "Errorea: zerbitzariak CSD hostscan exekutatzea eskatu du.\n" "--csd-wrapper argumentu egoki bat eman beharko duzu.\n" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Errorea: zerbitzariak 'Cisco Secure Desktop' troianoa deskargatzeko eta " "exekutatzeko eskatu du\n" "Desgaituta dago segurtasunaren arrazoiak direla eta, agian gaitzea nahiko " "duzu.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Huts egin du CSD script-aren aldi baterako fitxategia irekitzean: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Huts egin du CSD script-aren aldi baterako fitxategia idaztean: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Abisua: CSD kode ez-segurua exekutatzen ari zara 'root'-aren pribilegioekin\n" "\t Erabili komando-lerroko '--csd-user' aukera\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Huts gin du '%s' CSD script-a exekutatzean\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Zerbitzariaren erantzuna ezezaguna\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "Zerbitzariak SSL bezeroaren ziurtagiria eskatu du bat eman ondoren\n" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" "Zerbitzariak SSL bezeroaren ziurtagiria eskatu du: bat ere ez dago " "konfiguratuta\n" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "XML POST gaituta\n" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "'%s' freskatzen segundo 1en ondoren...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "Errorea: ezin dira socket-ak hasieratu\n" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO %d rcv_mss, %d snd_mss, %d advmss, %d pmtu\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG: %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Errorea HTTPS erantzuna jasotzean\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN zerbitzua ez dago erabilgarri. Zergatia: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "HTTP CONNECT erantzun desegokia jasota: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT erantzuna jasota: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "Ez dago memoriarik aukerentzako\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "'X-DTLS-Session-ID'-ak ez ditu 64 karaktere. Hau du: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "%s CSTP-Content-Encoding ezezaguna\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "Ez da MTU jaso. Abortatzen\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP konektatuta. %d DPD, %d Keepalive\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Huts egin du konpresioa konfiguratzean\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Huts egin du bufferraren hustuketa esleitzean\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "huts egin du puztean\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "Huts egin du %d hustean\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" "Paketearen ustekabeko luzera. 'SSL_read'-ek %d itzuli du, baina paketea hau " "da:\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD eskaera jasota\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD erantzuna jasota\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive jasota\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Konprimatu gabeko datuen paketea (%d byte) jasota\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Zerbitzariaren deskonexioa jasota: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Konprimatutako paketea !hustu (!deflate) moduan jasota\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "zerbitzariaren amaierako paketea jasota\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Pakete ezezaguna: %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTPren DPDak hildako parekoa atzeman du\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Huts egin du birkonektatzean\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Bidali CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Bidali CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Bidali BYE paketea: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "DTLS konexioaren saiakera existitzen den deskriptore batekin\n" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "DTLS helbiderik gabe\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Zerbitzariak ez du DTLS zifraketaren aukerarik eskaini\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "DTLSrik gabe proxy bidez konektatzean\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "DTLS hasieratuta. %d DPD, %d Keepalive\n" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Pakete ezezaguna (%d luzerakoa) jasota: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD eskaera lortuta\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Huts egin du DPD erantzuna bidaltzean. Deskonektatzea espero da\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD erantzuna jasota\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive jasota\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "%02x DTLS pakete mota ezezaguna, %d luzera\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Bidali DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "Huts egin du Keepalive eskaera bidaltzean. Deskonektatzea espero da\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "'%s' CipherSuite eskaeraren DTLS parametro ezezagunak\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "Huts egin du DTLS saioaren parametroak ezartzean: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "Huts egin du DTLS MUT ezartzean: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "DTLS konexioa ezarrita (GnuTLS erabiliz). '%s' Ciphersuite\n" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS negoziazioaren denbora iraungita\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "Huts egin du DTLS negoziatzean: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "Ezin izan da ziurtagiritik iraungitze-data erauzi\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Bezeroaren ziurtagiria iraungita: " #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Bezeroaren ziurtagiria iraungitze-data laster: " #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "Huts egin du '%s' elementua gako-biltegitik kargatzean: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "Huts egin du '%s' gako-/ziurtagiri-fitxategia ireki: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" "Huts egin du '%s' gako-/ziurtagiri-fitxategiaren estatistikak lantzean: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "Huts egin du ziurtagiriaren bufferra esleitzean\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "Huts egin du ziurtagiria memorian irakurtzean: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "Huts egin du PKCS#12 datuen egitura konfiguratzean: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "Huts egin du PKCS#12 ziurtagiri-fitxategia desenkriptatzean\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "Sartu PKCS#12 pasaesaldia:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "Huts egin du PKCS#12 fitxategia prozesatzean: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "Huts egin du PKCS#12 ziurtagiria kargatzean: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Ezin izan da MD5 hash-a hasieratu: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash-aren errorea: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "Enkriptatutako gakoaren OpenSSL 'DEK-Info:' goiburua falta da\n" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "Ezin da PEM enkriptatze mota zehaztu\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "Onartu gabeko PEM enkriptatze mota: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "Baliogabeko hazia enkriptatutako PEM fitxategian\n" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "Errorea enkriptatutako PEM fitxategia base64 moduan deskodetzean: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "Enkriptatutako PEM fitxategia laburregia\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" "Huts egin du desenkriptatutako PEM fitxategia zifratzeko hasieratzean: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "Huts egin du PEM gakoa desenkriptatzean: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "Huts egin du PEM gakoa desenkriptatzean\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Sartu PEM pasaesaldia:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "Bitar hau PKCS#11 euskarririk gabe eraikita dago\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "'%s' PKCS#11 ziurtagiria erabiltzen\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "Errorea PKCS#11-tik ziurtagiria kargatzean: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "'%s' ziurtagiri-fitxategia erabiltzen\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 fitxategiak ez dauka ziurtagiririk\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Ez da ziurtagiririk aurkitu fitxategian" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Huts egin du ziurtagiria kargatzean: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "Errorea gako pribatuaren egitura hasieratzean: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "Errorea PKCS#12 gako-egitura hasieratzean: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "Errorea '%s' PKCS#11 URLa inportatzean: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "'%s' PKCS#11 gakoa erabiltzen\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "Errorea PKCS#11 gakoa gako pribatuaren egiturara inportatzean: %s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "'%s' gako pribatuaren fitxategia erabiltzen\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Openconnect-en bertsio hau 'TPM' euskarririk gabe konpilatuta\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "Huts egin du PEM fitxategia interpretatzean\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "Huts egin du PKCS#1 gako pribatua kargatzean: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "Huts egin du gako pribatua PKCS#8 gisa kargatzean: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "Huts egin du PKCS#8 ziurtagiriaren fitxategia desenkriptatzean\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "Huts egin du '%s' gako pribatuaren mota zehaztean\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Sartu PKCS#8 pasaesaldia:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "Huts egin du ID gakoa eskuratzean: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "Errorea probako datuak gako pribatuarekin sinatzean: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "Errorea ziurtagiriaren aurka sinadura egiaztatzean: %s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "Ez da gako pribatuarekin bat datorren SSL ziurtagiririk aurkitu\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "'%s' ziurtagiriaren bezeroa erabiltzen\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "Huts egin du memoria esleitzean ziurtagiriarentzako\n" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "'%s' ZE hau lortu da PKCS#11-tik\n" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "Huts egin du ziurtagiriak onartzeko memoria esleitzean\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "'%s' ZE euskarria gehitzen\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "Huts egin du X509 ziurtagiria inportatzean: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "Huts egin du PKCS#11 ziurtagiria ezartzean: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "Huts egin du ziurtagiriaren errebokazio-zerrenda ezartzean: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Huts egin du ziurtagiriaren ezarpenak: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Zerbitzariak ez du ziurtagiririk aurkeztu\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "Errorea X509 ziurtagiriaren egitura hasieratzean\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Errorea zerbitzariaren ziurtagiria inportatzean\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Errorea zerbitzariaren ziurtagiriaren egoera aztertzean\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "ziurtagiria errebokatuta" #: gnutls.c:2098 msgid "signer not found" msgstr "ez da sinatzailerik aurkitu" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "sinatzailea ez da ZE-ren ziurtagiri bat" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "algoritmo ez-segurua" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "ziurtagiria ez da oraindik aktibatu" #: gnutls.c:2106 msgid "certificate expired" msgstr "ziurtagiria iraungita" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "huts egin du sinadura egiaztatzean" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "ziurtagiria ez dator bat ostalari-izenarekin" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Huts egin du zerbitzariaren ziurtagiria egiaztatzean: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "Huts egin du cafile ziurtagirientzako memoria esleitzean\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "Huts egin du cafile-tik ziurtagiriak irakurtzean: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "Huts egin du '%s' ZE fitxategia irekitzean: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Huts egin du ziurtagiria kargatzean. Bertan behera uzten.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL '%s'(r)ekin negoziatzen\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL konexioa bertan behera utzita\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL konexioaren hutsegitea: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "GnuTLS-ren itzulera ez-larria negoziazioan: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "'%s'(r)en PINa behar da" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Okerreko PINa" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Azken saiakera da blokeatu aurretik." #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Saiakera gutxi batzuk falta dira blokeatu aurretik." #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Sartu PINa:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "TPM seinalearen funtzioari deituta %d byte-ntzako.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "Huts egin du TPM hash-aren objektua sortzean: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "Huts egin du TPM-ren hash objektuan balioa ezartzean: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "Huts egin du TPM hash-a sinatzean: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "Errorea TSS gakoaren blob-a deskodetzean: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "Errorea TSS gakoaren blob-ean\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "Huts egin du TPM-ren testuingurua sortzean: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "Huts egin du TPM testuingurua konektatzean: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "Huts egin du TPM SRK gakoa kargatzean: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "Huts egin du TPM SRK arauen objektua kargatzean: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "Huts egin du TPM-ren PINa ezartzean: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "Huts egin du TPM gakoren blob-a kargatzean: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "Sartu TPM SRK-ren PINa:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "Huts egin du gakoaren arauen objektua sortzean: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "Huts egin du araua gakoari esleitzean: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "Sartu TPM-ren gakoaren PINa:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "Huts egin du gakoaren PINa ezartzean: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "Ez dago memoriarik cookie-ak esleitzeko\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Huts egin du '%s' HTTParen erantzuna analizatzean\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTParen erantzun hau lortu da: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "HTTParen erantzunaren '%s' lerroari ez ikusi egiten\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Baliogabeko cookie-a eskaini da: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "Huts egin du SSL ziurtagiria autentifikatzean\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Erantzunaren gorputzak tamaina negatiboa du (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Transferentziaren kodeketa ezezaguna: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "'%s' HTTParen gorputza (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Errorea HTTParen erantzunaren gorputza irakurtzean\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Errorea zatiaren goiburua eskuratzean\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Errorea HTTParen erantzunaren gorputza eskuratzean\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Ezin da HTTP 1.0-ren gorputza eskuratu konexioa itxi gabe\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Huts egin du birbideratutako '%s' URLa analizatzean: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "Ezin da https ez den '%s' URLaren birbideratzera jarraipenik egin\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" "Huts egin du birbideratze erlatiboaren bide-izen berria esleitzean: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "eskaera baimenduta" #: http.c:1003 msgid "general failure" msgstr "hutsegite orokorra" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "arau-multzoak ez du konexioa baimendu" #: http.c:1005 msgid "network unreachable" msgstr "sarea atziezina" #: http.c:1006 msgid "host unreachable" msgstr "ostalaria atziezina" #: http.c:1007 msgid "connection refused by destination host" msgstr "helburuko ostalariak konexioa ukatu du" #: http.c:1008 msgid "TTL expired" msgstr "TTL iraungita" #: http.c:1009 msgid "command not supported / protocol error" msgstr "komandoa ez dago onartuta / protokoloaren errorea" #: http.c:1010 msgid "address type not supported" msgstr "helbide mota ez dago onartuta" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Errorea autentifikazioaren eskaera SOCKS proxy-an idaztean: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Errorea autentifikazioaren erantzuna SOCKS proxy-tik irakurtzean: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Ustekabeko autentifikazioaren eskaera SOCKS proxy-tik: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "SOCKS proxy-aren '%s:%d'(r)ekiko konexioa eskatzen\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Errorea konexioaren eskaera SOCKS proxyan idaztean: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Errorea SOCKS proxytik konexioaren erantzuna irakurtzean: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Ustekabeko SOCKS proxyaren konexioaren erantzuna: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy-aren '%02x' errorea: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy-aren '%02x' errorea\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Ustekabeko %02x helbide mota SOCKS konexioaren erantzunean\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "HTTP proxy konexioa '%s:%d'(r)i eskatzen\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Huts egin du proxy eskaera bidaltzean: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "'%s' proxy mota ezezaguna\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Soilik HTTP edo socks(5) proxyak onartzen dira\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "SSL liburutegiarekin eraikita, Cisco-ren DTLS euskarririk gabe.\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Ez da IP helbiderik jaso. Abortatzen\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Birkonektatzeak IP helbide zahar desberdina eman du (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" "Birkonektatzeak IP sareko maskara zahar desberdina eman du (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Birkonektatzeak IPv6 helbide desberdina eman du (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Birkonektatzeak IPv6 sareko maskara desberdina eman du (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Huts egin du '%s' zerbitzariaren URLa analizatzean\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Soilik 'https://' baimentzen da zerbitzariaren URLan\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "Ez dago inprimakiaren kudeatzailerik: ezin da autentifikatu.\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Huts egin du katea sarrera estandarretik esleitzean\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "Ez dago OpenSSL motorra" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (sarrera_estandarra)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "Ezin da '%s' bide-izen exekutagarria prozesatu" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "Huts egin du vpnc-script bide-izenaren esleipenak\n" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Erabilera: openconnect [aukerak] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "Irakurri aukerak konfigurazio-fitxategitik" #: main.c:914 msgid "Report version number" msgstr "Eman bertsio-zenbakiaren berri" #: main.c:915 msgid "Display help text" msgstr "Bistaratu laguntzaren testua" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Ezarri erabiltzaile-izena" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Desgaitu pasahitzaren/SecurID-ren autentifikazioa" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Ez itxaron erabiltzailearen sarrerarik; irten beharrezkoa izanez gero" #: main.c:923 msgid "Read password from standard input" msgstr "Irakurri pasahitza sarrera estandarretik" #: main.c:924 msgid "Choose authentication login selection" msgstr "Aukeratu autentifikazioaren saio-hasieraren hautapena" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Erabili SSL bezeroaren CERT ziurtagiria" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Erabili SSL-ren gako pribatuaren KEY fitxategia" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Abisatu ziurtagiriaren bizi-iraupena < EGUN denean" #: main.c:929 msgid "Set login usergroup" msgstr "Ezarri saio-hasieraren erabiltzaile-taldea" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Ezarri pasaesaldia edo TPM SRK PINa" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Gakoaren pasaesaldia fitxategi-sistemaren fsid-a da" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "(Oharra: 'libstoken' (RSA SecurID) desgaituta bertsio honetan)" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "Ziurtagiriaren fitxategia zerbitzaria egiaztatzeko" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Ezarri proxy zerbitzaria" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "Desgaitu proxy-a" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Erabili 'libproxy' proxy-a automatikoki konfiguratzeko" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(OHARRA: 'libproxy' desgaituta bertsio honetan)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Berriro konektatzeko saiakeraren denbora (segundotan)" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Irakurri cookie-a sarrera estandarretik" #: main.c:963 msgid "Authenticate only and print login info" msgstr "Autentifikatu soilik eta erakutsi saio-hasieraren informazioa" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Jarraitu atzeko planoan abiatu ondoren" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Idatzi daemon-aren PIDa fitxategi honetan" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Jaregin pribilegioak konektatu ondoren" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Erabili sistemaren egunkaria (syslog) aurrerapenen mezuentzako" #: main.c:978 msgid "More output" msgstr "Irteera xehatuagoa" #: main.c:979 msgid "Less output" msgstr "Irteera laburragoa" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "Irauli HTTP autentifikazioaren trafikoa (--verbose inplikatzen du)" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "Atxikitu denbora-zigilua aurretik aurrerapenen mezuei" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Erabili IFNAME tunelaren interfazearentzako" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" "Komando-lerroa vpnc-compatible konfigurazioaren script bat erabiltzeko" #: main.c:986 msgid "default" msgstr "lehenetsia" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Igorri trafikoa 'script' programari, ez TUN-ari" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Ez eskatu IPv6 konektagarritasuna" #: main.c:993 msgid "XML config file" msgstr "XML konfigurazio-fitxategia" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "Adierazi MTUren bide-izena zerbitzariari/zerbitzaritik" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Konfidentzialtasun iraunkorra (PFS) behar da" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL zifraketak DTLS onartzeko" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Mugatu paketeen ilara LEN (luzera) paketetara" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP goiburuaren 'User-Agent': eremua" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Desgaitu HTTP konexioa berrerabiltzea" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "Ez saiatu XML POST-en autentifikazioa" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "Huts egin du katea esleitzean\n" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "Huts egin du konfigurazio-fitxategitik lerroa eskuratzean: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Aukera ezezaguna %d. lerroan: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' aukerak ez du argumentu bat hartzen %d. lerroan\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' aukerak argumentu bat behar du %d. lerroan\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Huts egin du '%s' idazteko irekitzean: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Atzeko planoan jarraitzen du: %d PIDa\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Huts egin du vpninfo egitura esleitzean\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "Ezin da 'config' aukera erabili konfigurazio-fitxategi barruan\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "Ezin da '%s' konfigurazio-fitxategia ireki: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "%d MTU txikiegia da\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "HTTPren konexio guztiak berrerabiltzea desgaitzen '--no-http-keepalive' " "aukera dela eta.\n" "Honek lagun badezake, bidali honi buruzkoak helbide honetara: \n" "\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Ezin da ilararen luzera zero izan: 1 erabiltzen\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect '%s' bertsioa\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "Baliogabeko softwarearen '%s' token modua\n" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "Argumentu gehiegi komando-lerroan\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Ez da zerbitzaririk zehaztu\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Openconnect-en bertsio hau 'libproxy' euskarririk gabe konpilatuta\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Huts egin du SSL konexioa sortzean\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "Ez da --script argumenturik eman. DNSa eta bideratzea ez daude " "konfiguratuta.\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Ikus https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Huts egin du '%s' idazteko irekitzean: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Huts egin du konfigurazioa '%s'(e)n idaztean: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Huts egin du '%s' VPN zerbitzariaren ziurtagiria egiaztatzean.\n" "Zergatia: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" "Sartu '%s' onartzeko, '%s' bertan behera uzteko; beste edozer hau ikusteko:" #: main.c:2464 main.c:2483 msgid "no" msgstr "ez" #: main.c:2464 main.c:2470 msgid "yes" msgstr "bai" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "Autentifikazioaren '%s' aukera hainbat aukerekin bat dator\n" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Autentifikazioaren '%s' aukera ez dago erabilgarri\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "Erabiltzailearen sarrera behar da modu ez-interaktiboan\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "Softwarearen tokenaren katea baliogabea da\n" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Ezin da ~/.stokenrc fitxategia ireki\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "OpenConnect ez zen 'libstoken' euskarriarekin konpilatu\n" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "Hutsegite orokorra 'libstoken' liburutegian\n" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "OpenConnect ez zen 'liboath' euskarriarekin konpilatu\n" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "Hutsegite orokorra 'liboath' liburutegian\n" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "Huts egin du 'tun' script-a konfiguratzean\n" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Huts egin du TUN gailua konfiguratzean\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "Deitzaileak konexioa pausatu du\n" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "Lanik ez egiteko. %d ms lotan...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "'WaitForMultipleObjects'-ek huts egin du: %s\n" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "Ados INITIAL tokencode-a sortzeko\n" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "Ados NEXT tokencode-a sortzeko\n" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" "Zerbitzaria softwarearen tokena ukatzen ari da. Eskuzko sarrerara aldatzen\n" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "OATH TOTP tokenaren kodea sortzen\n" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "OATH HOTP tokenaren kodea sortzen\n" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Huts egin du DTLSv1 saioa hasieratzean\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Huts egin du DTLSv1 CTX hasieratzean\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Huts egin du DTLS zifraketaren zerrenda ezartzean\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Baliteke sistemako OpenSSL-a hautsita egotea\n" "Ikus http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "Huts egin du DTLS negoziatzean: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM pasahitza luzeegia da (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s-ren ziurtagiri gehigarria: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Huts egin du PKCS#12 analizatzean (ikus gaineko errorak)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ez dauka ziurtagiririk.\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ez dauka gako pribaturik.\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Ezin da TPM motorra kargatu.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Huts egin du TPM motorra hasieratzean\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Huts egin du TPM SRK pasahitza ezartzean\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Huts egin du TPMren gako probatua kargatzean\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Huts egin du '%s' ziurtagiri-fitxategia irekitzean: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Huts egin du ziurtagiria kargatzean\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "Huts egin du gako-biltegiko '%s' elementuaren BIO-a sortzean\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Huts egin du gako pribatua kargatzean (okerreko pasaesaldia?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Huts egin du gako pribatua kargatzean (ikus goiko erroreak)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "Huts egin du X509 ziurtagiria gakoen biltegitik kargatzean\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Huts egin du gako pribatuaren '%s' fitxategia irekitzean: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Huts egin du gako pribatuaren mota identifikatzean '%s'(e)n\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "'%s' DNS ordezko izenarekin bat dator\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "Ez dago '%s' DNS ordezko izenarekin bat datorrenik\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Ziurtagiriak ordezko GEN_IPADD izena du okerreko %d luzerarekin\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "%s helbide bat datoz '%s'(r)ekin\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "Ez dago bat datorrenik %s '%s' helbideekin\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "'%s' URIak ez du hutsak ez diren bide-izenik. Ez ikusi egiten\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "'%s' URIarekin bat dator\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "Ez dago '%s' URIarekin bat datorrenik\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" "Ez dago '%s'(r)ekin bat datorren ordezko izenik parekoaren ziurtagirian\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "Parekoaren ziurtagiriak ez du subjektuaren izenik\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Huts egin du parekoaren ziurtagirian subjektuaren izena analizatzean\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Parekoaren ziurtagiriaren subjektua falta da ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Parekoaren ziurtagiriaren '%s' subjektuaren izena bat dator\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile-ren ziurtagiri gehigarria: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Errorea bezeroaren ziurtagiriko 'notAfter' eremuan\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "Huts egin du '%s' ZE fitxategitik ziurtagiriak irakurtzean\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Huts egin du '%s' ZE fitxategia irekitzean\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL konexioaren hutsegitea\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Pasahitza:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Okerreko zatitzea baztertzeak hau dauka: '%s'\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Okerreko zatitzea baztertzeak ez dauka hau: '%s'\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Huts egin du '%2$s'(r)en '%1$s' scripta sortzean: %3$s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "'%s' scripta ustekabean amaitu da (%x)\n" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "'%s' script-ak %d errorea itzuli du\n" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Socket-aren konexioa bertan behera utzita\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "'libproxy'-ren proxy-a: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "Huts egin du '%s' ostalariaren getaddrinfo() funtzioak: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "'%s%s%s:%s' proxy-arekin konektatzen saiatzen\n" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "'%s%s%s:%s' zerbitzariarekin konektatzen saiatzen\n" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Huts egin du biltegiaren socketaren helbidea (sockaddr) esleitzean\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Huts egin du '%s' ostalariarekin konektatzean\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "vfs-ren estatistikak: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "fs-ren estatistikak: %s\n" #: ssl.c:726 msgid "No error" msgstr "Errorerik ez" #: ssl.c:727 msgid "Keystore locked" msgstr "Gako-biltegia blokeatuta" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Gako-biltegia hasieratu gabe" #: ssl.c:729 msgid "System error" msgstr "Sistemaren errorea" #: ssl.c:730 msgid "Protocol error" msgstr "Protokoloaren errorea" #: ssl.c:731 msgid "Permission denied" msgstr "Baimena ukatuta" #: ssl.c:732 msgid "Key not found" msgstr "Ez da gakoa aurkitu" #: ssl.c:733 msgid "Value corrupted" msgstr "Balioa hondatuta" #: ssl.c:734 msgid "Undefined action" msgstr "Zehaztu gabeko ekintza" #: ssl.c:738 msgid "Wrong password" msgstr "Okerreko pasahitza" #: ssl.c:739 msgid "Unknown error" msgstr "Errore ezezaguna" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "Cookie-a ez da gehiago baliozkoa izango, saioa amaitzen\n" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "lo: %ds; iraungitze-denbora: %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Sartu kredentzialak softwarearen tokena desblokeatzeko." #: stoken.c:107 msgid "Device ID:" msgstr "Gailuaren IDa:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Erabiltzaileak softwarearen tokena saihestu du.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Eremu guztiak beharrezkoak dira. Saiatu berriro.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Hutsegite orokorra 'libstoken' liburutegian.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Okerreko gailuaren IDa edo pasahitza. Saiatu berriro.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Softwarearen tokena ongi hasieratu da.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "PINa:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "PINaren formatua baliogabea. Saiatu berriro.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "RSA tokenaren kodea sortzen\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Errorea sareko moldagailuentzako erregistroaren gakoa atzitzean\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Huts egin du '%s' irekitzean\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "Huts egin du TAP kontrolatzailearen bertsioa eskuratzean: %s\n" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" "Errorea: TAP-Windows v9.9 or handiagoa den kontrolatzailea behar da. " "Aurkitutakoa: %ld.%ld\n" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "Huts egin du TAP IP helbideak ezartzean: %s\n" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "Huts egin du TAP euskarriaren egoera ezartzean: %s\n" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "Huts egin du TAP gailutik irakurtzean: %s\n" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "Huts egin du TAP gailutik erabat irakurtzean: %s\n" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "%ld byte 'tun'-en idatzita\n" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "'tun'-ek idatzi zain...\n" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "'tun'-en %ld byte idatzita zain egon ondoren\n" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "Huts gin du TAP gailuan idaztean: %s\n" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "Tunelaren script-ak sortzea ez dago oraindik onartuta Windows-en\n" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "Ezin izan da /dev/tun ireki zundatzeko" #: tun.c:92 msgid "Can't push IP" msgstr "Ezin da IPa bultzatu" #: tun.c:102 msgid "Can't set ifname" msgstr "Ezin da ifname ezarri" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Ezin da IPv%2$d-ren '%1$s' zundatu: %3$s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "ireki /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Huts egin d 'tun' berria sortzean" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" "Huts egin du 'tun' fitxategiaren deskriptorea 'baztertu mezua' moduan " "jartzean" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "ireki sarea" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Huts egin du 'tun' gailua irekitzean: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" "'%s' interfazearen izena baliogabea. 'tun%%d'-(r)ekin bat etorri behar du\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "Ezin da '%s' ireki: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "'socketpair'-ek huts egin du: %s\n" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "huts egin du sardetzean: %s\n" #: tun.c:497 msgid "setpgid" msgstr "setpgid" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script-a)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Huts egin du sarrerako paketea idaztean: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "'%s' ostalaria ostalari-izen gordin gisa tratatzen\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "Huts egin du existitzen den fitxategiaren SHA1 kalkulatzean\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML konfigurazio-fitxategiaren SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Huts egin du XML konfigurazio-fitxategia analizatzean: %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "'%s' ostalariak '%s' helbidea du\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "'%s' ostalariak '%s' erabiltzaile-taldea du\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "'%s' ostalaria ez dago konfigurazioan zerrendatuta; ostalari-izen gordin " "gisa erabiltzen\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/hr.po0000644000076400007640000037351214204456071017135 0ustar00dwoodhoudwoodhou00000000000000# Croatian translation for NetworkManager-openconnect. # Copyright (C) 2021 NetworkManager-openconnect's COPYRIGHT HOLDER # This file is distributed under the same license as the NetworkManager-openconnect package. # FIRST AUTHOR , YEAR. # msgid "" msgstr "" "Project-Id-Version: NetworkManager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2021-11-01 16:23+0100\n" "Last-Translator: gogo \n" "Language-Team: Croatian \n" "Language: hr\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" "%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" "X-Generator: Poedit 2.3\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Nevaljani kolačić '%s'\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "Korisničko ime" #: auth-globalprotect.c:174 msgid "Password" msgstr "Lozinka" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Izazov: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:195 msgid "No input type in form\n" msgstr "" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect ili openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibilno sa Cisco AnyConnect SSL VPN, kao i sa ocserv." #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper mrežno povezivanje" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Kompatibilno sa Juniper mrežnim povezivanjem" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "" #: main.c:915 msgid "Display help text" msgstr "" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "povezano" #: main.c:1507 msgid "disconnected" msgstr "nije povezano" #: main.c:1511 msgid "unsuccessful" msgstr "neuspješno" #: main.c:1516 msgid "in progress" msgstr "u tijeku" #: main.c:1519 msgid "disabled" msgstr "onemogućeno" #: main.c:1525 msgid "established" msgstr "uspostavljeno" #: main.c:1528 msgid "unknown" msgstr "nepoznato" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "Podešeno kao %s%s%s, sa SSL%s%s %s i %s%s%s %s\n" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" "RX: % paketi (% B); TX: % paketi (% B)\n" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "ne" #: main.c:2464 main.c:2470 msgid "yes" msgstr "da" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Područje:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "Sesija:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Neuspjela obrada popisa sesije\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Unesi pomoćne vjerodajnice:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Unesi korisničke vjerodajnice:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Pomoćno korisničko ime:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Korisničko ime:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Lozinka:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Pomoćna lozinka:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Lozinka je istekla. Promijenite lozinku:" #: pulse.c:1085 msgid "Current password:" msgstr "Trenutna lozinka:" #: pulse.c:1090 msgid "New password:" msgstr "Nova lozinka:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Potvrdi novu lozinku:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Lozinka nije navedena.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Lozinke se ne podudaraju.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Trenutna lozinka je predugačaka.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Nova lozinka je predugačaka.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "Potreban je kôd tokena:" #: pulse.c:1206 msgid "Please enter response:" msgstr "Upišite odgovor:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Upiši svoju lozinku:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "Upišite vašu pomoćnu informaciju tokena:" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "Greška stvaranja zahtjeva Pulse povezivanja\n" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:726 msgid "No error" msgstr "Bez greške" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "Greška sustava" #: ssl.c:730 msgid "Protocol error" msgstr "Greška protokola" #: ssl.c:731 msgid "Permission denied" msgstr "Pristup odbijen" #: ssl.c:732 msgid "Key not found" msgstr "Ključ nije pornađen" #: ssl.c:733 msgid "Value corrupted" msgstr "Vrijednost je oštećena" #: ssl.c:734 msgid "Undefined action" msgstr "Neodređene radnja" #: ssl.c:738 msgid "Wrong password" msgstr "Neispravna lozinka" #: ssl.c:739 msgid "Unknown error" msgstr "Nepoznata greška" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "Neusojeli select() for za naredbenu priključnicu" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "Dešifriranje poruke neuspjelo: %lx\n" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "NEvaljani odgovor SSPI zaštite iz proxya (%lu bajta)\n" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "Upišite vjerodajnice za otključavanje softverskog tokena." #: stoken.c:107 msgid "Device ID:" msgstr "ID uređaja:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "Korisnik je zaobišao softverski token.\n" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Potrebna su sva polja; pokušajte ponovno.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "Općeniti neuspjeh u libstoken.\n" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "Netočan ID uređaja ili lozinka; pokušajte ponovno.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "Pokretanje softverskog tokena je uspješno.\n" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Upišite PIN softverskog tokena." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Nevaljani PIN format; pokušajte ponovno.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Stvaranje kôda RSA tokena\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "Greška pristupanju ključu registracije za mrežne adaptere\n" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "Nemoguće je čitati %s\\%s ili nije izraz\n" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "Pronađeno je %s na %s\n" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "Nemoguće otvaranje ključa registracije %s\n" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Neuspjelo otvaranje %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "Otvoreni tun uređaj %S\n" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/Makefile.in0000644000076400007640000003772014204505636020231 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.2 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2020 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = po ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac DATA = $(noinst_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in ChangeLog DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CREATE_TPM2_KEY = @CREATE_TPM2_KEY@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ JSON_CFLAGS = @JSON_CFLAGS@ JSON_LIBS = @JSON_LIBS@ JSON_PC = @JSON_PC@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAKENSIS = @MAKENSIS@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PPPD = @PPPD@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SOCAT = @SOCAT@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SWTPM = @SWTPM@ SWTPM_IOCTL = @SWTPM_IOCTL@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_SETENV = @SYMVER_WIN32_SETENV@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2TSS_GENKEY = @TPM2TSS_GENKEY@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TPM2_STARTUP = @TPM2_STARTUP@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSSTARTUP = @TSSTARTUP@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ WINTUN_ARCH = @WINTUN_ARCH@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ have_curl = @have_curl@ have_unzip = @have_unzip@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ runstatedir = @runstatedir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ MOFILES = $(LINGUAS:%=%.mo) POFILES = $(LINGUAS:%=%.po) noinst_DATA = $(MOFILES) SUFFIXES = .mo EXTRA_DIST = $(POFILES) LINGUAS DISTCLEANFILES = $(PACKAGE).pot all: all-am .SUFFIXES: .SUFFIXES: .mo .po $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign po/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign po/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) -test -z "$(DISTCLEANFILES)" || rm -f $(DISTCLEANFILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool clean-local mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: @$(NORMAL_INSTALL) $(MAKE) $(AM_MAKEFLAGS) install-data-hook install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: @$(NORMAL_INSTALL) $(MAKE) $(AM_MAKEFLAGS) uninstall-hook .MAKE: install-am install-data-am install-strip uninstall-am .PHONY: all all-am check check-am clean clean-generic clean-libtool \ clean-local cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-data-hook install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-info \ install-info-am install-man install-pdf install-pdf-am \ install-ps install-ps-am install-strip installcheck \ installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-hook .PRECIOUS: Makefile .po.mo: rm -f && $(MSGFMT) -o $@ $< clean-local: rm -f $(MOFILES) install-data-hook: all linguas="$(LINGUAS)"; \ for l in $$linguas; do \ dir="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES"; \ $(mkdir_p) $$dir; \ echo Installing $$l.mo to $$dir/$(PACKAGE).mo ; \ $(INSTALL_DATA) $$l.mo $$dir/$(PACKAGE).mo; \ done uninstall-hook: linguas="$(LINGUAS)"; \ for l in $$linguas; do \ file="$(DESTDIR)$(localedir)/$$l/LC_MESSAGES/$(PACKAGE).mo"; \ if [ -r "$$file" ]; then \ echo "Removing $$file"; rm -f "$$file"; \ fi ; \ done # $(PACKAGE).pot is built by a rule in the parent directory Makefile # This rule isn't needed but is here for convenience if manually invoked .PHONY: $(PACKAGE).pot $(PACKAGE).pot: $(MAKE) -C .. po/$@ # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.20/po/ug.po0000644000076400007640000044667214204456075017153 0ustar00dwoodhoudwoodhou00000000000000# Uyghur translation for network-manager-openconnect. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # Gheyret Kenji , 2010. # msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2011-01-31 15:04+0000\n" "Last-Translator: Gheyret Kenji \n" "Language-Team: Uyghur Computer Science Association \n" "Language: ug\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "مۇلازىمېتىرنىڭ ئويلىشىلمىغان %d نەتىجىسى\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL يازغان بايت سانى بەك ئاز! ئىلتىماس قىلغىنى %d، يوللىغىنى %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP ئاچقۇچ يېڭىلاش سەۋەبى\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "%d بايتلىق پىرىسلانمىغان سانلىق مەلۇمات بوغچىسى يوللاۋاتىدۇ\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "يېڭى DTLS باغلىنىشىنى سىناۋاتىدۇ\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "DTLS بوغچىسى 0x%02x نى تاپشۇرۇۋالدى %d بايت\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS ئاچقۇچ يېڭىلاش سەۋەبى\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "DTLS DPD يوللا\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "DPD ئىلتىماسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "%d بايتلىق DTLS بوغچىسى يوللىدى؛ DTLS يوللاش %d قايتۇردى\n" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "كۆنەكنى بىر تەرەپ قىلالمايدۇ ئۇسۇلى='%s'، مەشغۇلات='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "كۆزنەك تاللاشنىڭ ئاتى يوق\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "%s ئات كىرگۈزۈلمىگەن\n" #: auth.c:195 msgid "No input type in form\n" msgstr "كۆزنەكتە كىرگۈزۈش تىپى يوق\n" #: auth.c:207 msgid "No input name in form\n" msgstr "كۆزنەكتە كىرگۈزۈش ئاتى يوق\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "كۆزنەكتىكى يوچۇن كىرگۈزۈش تىپى %s\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "مۇلازىمېتىر ئىنكاسىنى تەھلىل قىلالمىدى\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "ئىنكاسى: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "ئىم سورالدى ئەمما '--no-passwd' تەڭشەلگەن\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "%s غىچە HTTPS باغلىنىشىنى ئاچالمىدى\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "يېڭى سەپلىمە ئۈچۈن GET ئىلتىماسىنى يوللىيالمىدى\n" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "چۈشۈرگەن سەپلىمە ھۆججەت مۆلچەرلىگەن SHA1 بىلەن ماسلاشمىدى\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "CSD ماكان مۇندەرىجە '%s' نى ئۆزگەرتەلمىدى: %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "خاتالىق: مۇلازىمېتىر بىزدىن 'Cisco Secure Desktop' تىروياننى چۈشۈرۈپ ئىجرا " "قىلىشنى سورىدى.\n" "كۆڭۈلدىكى ئەھۋالدا بىخەتەرلىكنى چىقىش قىلىپ بۇ چەكلەندى، شۇڭلاشقا ئۇنى " "قوزغىتامسىز.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "ۋاقىتلىق CSD قوليازما ھۆججەتنى ئاچالمىدى: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "ۋاقىتلىق CSD قوليازما ھۆججەتنى يازالمىدى: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "ئاگاھلاندۇرۇش: سىز بىخەتەر بولمىغان CSD كودىنى root ھوقۇقىدا ئىجرا " "قىلىۋاتىسىز\n" "\"--csd-user\" بۇيرۇق قۇرى تاللانمىسىنى ئىشلىتىڭ\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "CSD قوليازما %s نى ئىجرا قىلالمىدى\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "مۇلازىمېتىرنىڭ يوچۇن ئىنكاسى\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 سېكۇنتتىن كېيىن %s يېڭىلايدۇ\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "HTTPS ئىنكاسىغا ئېرىشىشتە خاتالىق كۆرۈلدى\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN مۇلازىمىتىنى ئىشلەتكىلى بولمايدۇ؛ سەۋەبى: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "خاتا HTTP CONNECT ئىنكاسىغا ئېرىشتى: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "CONNECT ئىنكاسىغا ئېرىشتى: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "تاللانمىلار ئۈچۈن ئەسلەك يوق\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID بولسا 64 ھەرپ ئەمەس؛ بۇ: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "يوچۇن CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "ھېچقانداق MTU قوبۇللىمىدى. چېكىنىۋاتىدۇ\n" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP باغلاندى. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "پىرىسلاشنى تەڭشىيەلمىدى\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "كىچىكلىتىلگەن يىغلەكنى تەقسىملىيەلمىدى\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "كىچىكلىتەلمىدى\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "%d كىچىكلىتەلمىدى\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "بوغچا ئۇزۇنلۇقى توغرا ئەمەس. SSL_read %d نى قايتۇردى ئەمما بوغچا \n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "CSTP DPD ئىلتىماسىغا ئېرىشتى\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "CSTP DPD ئىنكاسىغا ئېرىشتى\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "CSTP Keepalive غا ئېرىشتى\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "%d بايتلىق پىرىسلانمىغان سانلىق مەلۇمات بوغچىسى تاپشۇرۇۋالدى\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "مۇلازىمېتىر ئۈزۈلۈشىنى تاپشۇرۇۋالدى: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "!deflate ھالەتتە پىرىسلانغان بوغچا تاپشۇرۇۋالدى\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "مۇلازىمېتىر ئاخىرلاشتۇرۇش بوغچىسىنى تاپشۇرۇۋالدى\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "يوچۇن بوغچا %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "قايتا باغلىنالمىدى\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "CSTP DPD يوللا\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "CSTP Keepalive يوللا\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "يوللىغان BYE بوغچا: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "DTLS ئادرېس يوق\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "مۇلازىمېتىر DTLS شىفىر تاللانمىسى تەمىنلىمىگەن\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "ۋاكالەتچى بىلەن باغلانغاندا DTLS يوق\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "يوچۇن بوغچا (len %d) تاپشۇرۇۋالدى: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "DTLS DPD ئىلتىماسىغا ئېرىشتى\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "DPD ئىنكاسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "DTLS DPD ئىنكاسىغا ئېرىشتى\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "DTLS Keepalive غا ئېرىشتى\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "يوچۇن DTLS بوغچا تىپى %02x، ئۇزۇنلۇقى %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "DTLS Keepalive يوللا\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "keepalive ئىلتىماسىنى يوللىيالمىدى. ئۈزۈلۈشى مۇمكىن\n" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "ئىلتىماس قىلىنغان شىفىر يۈرۈشلۈكى '%s' نىڭ يوچۇن DTLS پارامېتىرلىرى\n" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "DTLS سۆزلىشىش پارامېتىرلىرىنى تەڭشىيەلمىدى: %s\n" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "DTLS MTU نى تەڭشىيەلمىدى: %s\n" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS قول ئېلىشىش ۋاقىت ھالقىدى\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "DTLS قول ئېلىشالمىدى: %s\n" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "گۇۋاھنامىنىڭ توشىدىغان قەرەلىنى ئوقۇيالمىدى\n" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "خېرىدار گۇۋاھنامىسىنىڭ قەرەلى ئۆتىدىغان ۋاقىت" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "خېرىدار گۇۋاھنامىسىنىڭ قەرەلى توشىدىغان ۋاقىت" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "ئاچقۇچ ئامبىرىدىن '%s' تۈرنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "ئاچقۇچ/گۇۋاھنامە ھۆججىتى %s نى ئاچالمىدى: %s\n" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "ئاچقۇچ/گۇۋاھنامە ھۆججىتى %s نى سىتاتىستىكا قىلالمىدى: %s\n" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "گۇۋاھنامە يىغلەكنى تەقسىملىيەلمىدى\n" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "گۇۋاھنامىنى ئەسلەككە ئوقۇيالمىدى: %s\n" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "PKCS#12 سانلىق مەلۇمات قۇرۇلمىسىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "PKCS#12 گۇۋاھنامە ھۆججەت شىفىرىنى يېشەلمىدى\n" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "PKCS#12 ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "PKCS#12 ھۆججەتنى بىر تەرەپ قىلالمىدى: %s\n" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "PKCS#12 ھۆججەتنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "MD5 hash نى دەسلەپلەشتۈرەلمىدى: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "MD5 hash خاتالىقى: %s\n" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "PEM شىفىرلاش تىپىنى جەزملىيەلمىدى\n" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "قوللىمايدىغان PEM شىفىرلاش تىپى: %s\n" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "base64 كود يەشكۈچتە PEM ھۆججەتنى شىېفىرلىغاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "شىفىرلانغان PEM ھۆججەت بەك قىسقا\n" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "PEM ھۆججەت شىفىرىنى يېشىش ئۈچۈن شىفىرنى دەسلەپلەشتۈرەلمىدى: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "PEM ئاچقۇچ شىفىرىنى يېشەلمىدى: %s\n" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "PEM ئاچقۇچ شىفىرىنى يېشەلمىدى\n" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "PEM ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "بۇ ئىككىلىك نەشرى PKCS#11 نى قوللىمايدۇ\n" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "PKCS#11 گۇۋاھنامە %s ئىشلىتىدۇ\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "PKCS#11 دىن گۇۋاھنامە يۈكلىيەلمىدى: %s\n" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "گۇۋاھنامە ھۆججىتى %s نى ئىشلىتىۋاتىدۇ\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "PKCS#11 ھۆججەتتە گۇۋاھنامە يوق\n" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "ھۆججەتتە گۇۋاھنامە يوق" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "شەخسىي ئاچقۇچ قۇرۇلمىسىنى دەسلەپلەشتۈرۈۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "PKCS#11 ئاچقۇچ قۇرۇلمىسىنى دەسلەپلەشتۈرۈۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "PKCS#11 URL %s نى ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "PKCS#11 ئاچقۇچ %s ئىشلىتىدۇ\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" "PKCS#11 ئاچقۇچنى شەخسىي ئاچقۇچ قۇرۇلمىسىغا ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى: " "%s\n" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "شەخسىي ئاچقۇچ ھۆججەت %s نى ئىشلىتىدۇ\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "بۇ OpenConnect نەشرى TPM نى قوللىمايدۇ\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "PEM ھۆججەتنى چۈشەندۈرەلمىدى\n" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "PKCS#1 شەخسىي ئاچقۇچنى يۈكلىيەلمىدى: %s\n" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "شەخسىي ئاچقۇچنى PKCS#8 سۈپىتىدە يۈكلىيەلمىدى: %s\n" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "PKCS#8 گۇۋاھنامە ھۆججەت شىفىرىنى يېشەلمىدى\n" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "شەخسىي ئاچقۇچ %s نىڭ تىپىنى جەزملىيەلمىدى\n" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "PKCS#8 ئىم جۈملىسى كىرگۈزۈڭ:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "ئاچقۇچ ID غا ئېرىشەلمىدى: %s\n" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" "شەخسىي ئاچقۇچ بىلەن سىناق سانلىق مەلۇماتتا تىزىمغا كىرىۋاتقاندا خاتالىق " "كۆرۈلدى: %s\n" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" "گۇۋاھنامە ئىمزاسىغا نىسبەتەن دەلىللەش ئېلىپ بېرىۋاتقاندا خاتالىق كۆرۈلدى: " "%s\n" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "شەخسىي ئاچقۇچقا ماس كېلىدىغان ھېچقانداق SSL گۇۋاھنامە تېپىلمىدى\n" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "خېرىدار گۇۋاھنامىسى '%s' نى ئىشلىتىدۇ\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "قوللايدىغان گۇۋاھنامىلەر ئۈچۈن ئەسلەك تەقسىملىيەلمىدى\n" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "قوللايدىغان CA '%s' قوشۇۋاتىدۇ\n" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "X509 گۇۋاھنامىنى ئەكىرەلمىدى: %s\n" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "PKCS#11 گۇۋاھنامىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "گۇۋاھنامە كۈچتىن قېلىش تىزىمىنى تەڭشەۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "گۇۋاھنامىنى تەڭشىيەلمىدى: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "مۇلازىمېتىر تارقىتىدىغان گۇۋاھنامە يوق\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "X509 گۇۋاھنامە قۇرۇلمىسىنى دەسلەپلەشتۈرەلمىدى\n" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "مۇلازىمېتىرنىڭ گۇۋاھنامىسىنى ئەكىرىۋاتقاندا خاتالىق كۆرۈلدى\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "مۇلازىمېتىر گۇۋاھنامە ھالىتىنى تەكشۈرۈۋاتقاندا خاتالىق كۆرۈلدى\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "گۇۋاھنامە كۈچتىن قالدى" #: gnutls.c:2098 msgid "signer not found" msgstr "ئىمزا قويغۇچى تېپىلمىدى" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "ئىمزا قويغۇچى بىر CA گۇۋاھنامىسى ئەمەس" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "بىخەتەر بولمىغان ھېسابلاش ئۇسۇلى" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "گۇۋاھنامە تېخى ئاكتىپلانمىغان" #: gnutls.c:2106 msgid "certificate expired" msgstr "گۇۋاھنامىنىڭ ۋاقتى ئۆتكەن" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "ئىمزا دەلىللىيەلمىدى" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "گۇۋاھنامە ماشىنا ئاتىغا ماس كەلمىدى" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "مۇلازىمېتىر گۇۋاھنامىسىنى دەلىللىيەلمىدى: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "CA ھۆججەت گۇۋاھنامىسى ئۈچۈن ئەسلەك تەقسىملىيەلمىدى\n" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "CA ھۆججەتتىن گۇۋاھنامە ئوقۇيالمىدى: %s\n" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "CA ھۆججەت '%s' تىن گۇۋاھنامە ئاچالمىدى: %s\n" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى. چېكىنىۋاتىدۇ.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "%s بىلەن SSL كېڭىشى\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL باغلىنىشتىن ۋاز كەچتى\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL باغلىنالمىدى: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "قول ئېلىشىۋاتقاندا GnuTLS ئەجەللىك بولمىغان قايتۇرۇش: %s\n" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "%s ئۈچۈن PIN زۆرۈر" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "PIN خاتا" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "بۇ قۇلۇپلاشتىن ئىلگىرىكى ئاخىرقى سىناق!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "قۇلۇپلاشتىن ئىلگىرى بىر قانچە قېتىملىق سىناقلا قالدى!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "PIN نى كىرگۈزۈڭ" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "%d بايتلىق TPM ئىمزا فونكسىيەسىنى چاقىردى.\n" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "TPM hash نەڭ قۇرالمىدى: %s\n" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "TPM hash نەڭدە قىممەتنى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "TPM hash ئىمزالىيالمىدى: %s\n" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "TSS key blob نى كود يېشىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "TSS key blob خاتالىقى\n" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "TPM تىل مۇھىتى قۇرالمىدى: %s\n" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "TPM تىل مۇھىتىغا باغلىنالمىدى: %s\n" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "TPM SRK ئاچقۇچىنى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "TPM SRK بىخەتەرلىك نەڭنى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "TPM PIN نى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "TPM key blob نى يۈكلىيەلمىدى: %s\n" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN كىرگۈزۈڭ:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "ئاچقۇچ بىخەتەرلىك نەڭ قۇرالمىدى: %s\n" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "بىخەتەرلىك ئاچقۇچىنى تەقسىملىيەلمىدى: %s\n" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "TPM key PIN كىرگۈزۈڭ:" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "ئاچقۇچ PIN نى تەڭشىيەلمىدى: %s\n" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "cookies تەقسىملەيدىغان ئەسلەك يوق\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "HTTP ئىنكاسى '%s' نى تەھلىل قىلالمىدى\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "HTTP ئىنكاسىغا ئېرىشتى: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "يوچۇن HTTP ئىنكاس قۇرى '%s' غا پەرۋا قىلمايۋاتىدۇ\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "ئىناۋەتسىز cookie تەمىنلىگەن: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL گۇۋاھنامە دەلىللىيەلمىدى\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "ئىنكاس گەۋدىسى مەنپىي چوڭلۇقتا (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "يوچۇن يوللاش كودلىنىشى: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP گەۋدىسى %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "HTTP ئىنكاس گەۋدىسىنى ئوقۇش خاتالىقى\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "بۆلەك بېشىغا ئېرىشىش خاتالىقى\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" "ۋاكالەتچى ئىنكاسىغا ئېرىشىشتە خاتالىق كۆرۈلدىHTTP ئىنكاس گەۋدىسىگە ئېرىشىش " "خاتالىقى\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "باشلىنىش يېپىلمىغان HTTP 1.0 گەۋدىسىنى قوبۇل قىلالمايدۇ\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "قايتا نىشانلايدىغان URL '%s' نى تەھلىل قىلالمىدى: %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "قايتا نىشانلايدىغان https ئەمەس URL '%s' غا ئەگىشەلمىدى\n" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "مۇناسىۋەتلىك قايتا نىشانلاش ئۈچۈن يېڭى يولنى تەقسىملىيەلمىدى: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "ئىجازەت ئىلتىماسى" #: http.c:1003 msgid "general failure" msgstr "ئادەتتىكى مەغلۇبىيەت" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "قائىدە توپلىمى باغلىنىشقا يول قويمىدى" #: http.c:1005 msgid "network unreachable" msgstr "تورغا يېتەلمەيدۇ" #: http.c:1006 msgid "host unreachable" msgstr "ماشىنىغا يېتەلمەيدۇ" #: http.c:1007 msgid "connection refused by destination host" msgstr "نىشان ماشىنا باغلىنىشنى رەت قىلدى" #: http.c:1008 msgid "TTL expired" msgstr "TTL ۋاقتى ئۆتتى" #: http.c:1009 msgid "command not supported / protocol error" msgstr "بۇيرۇقنى قوللىمايدۇ/كېلىشىم خاتالىقى" #: http.c:1010 msgid "address type not supported" msgstr "ئادرېس تىپىنى قوللىمايدۇ" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "دەلىللەش ئىلتىماسىنى SOCKS ۋاكالەتچىگە يېزىش خاتالىقى: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "دەلىللەش ئىنكاسىنى SOCKS ۋاكالەتچىدىن ئوقۇش خاتالىقى: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "SOCKS ۋاكالەتچىنىڭ ئويلاشمىغان دەلىللەش ئىنكاسى: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "%s غا SOCKS ۋاكالەتچى باغلىنىش ئىلتىماسى: %d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" "باغلىنىش ئىلتىماسىنى SOCKS ۋاكالەتچىگە يېزىۋاتقاندا خاتالىق كۆرۈلدى: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "باغلىنىش ئىنكاسىنى SOCKS ۋاكالەتچىدىن ئوقۇش خاتالىقى: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "SOCKS ۋاكالەتچىدىن كەلگەن ئويلاشمىغان باغلىنىش ئىنكاسى: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS ۋاكالەتچى خاتالىقى %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS ۋاكالەتچى خاتالىقى %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "SOCKS باغلىنىش ئىنكاسىدىكى ئويلاشمىغان ئادرېس تىپى %02x\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "%s غا HTTP ۋاكالەتچى باغلىنىش ئىلتىماسى: %d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "ۋاكالەتچى ئىلتىماسىنى يوللىيالمىدى: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "ۋاكالەتچى CONNECT ئىلتىماسى مەغلۇپ بولدى: %d\n" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "يوچۇن ۋاكالەتچى خاتالىقى '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "پەقەت http ياكى socks(5) نىلا قوللايدۇ\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "ئىچكى SSL ئامبار نەشرىدە Cisco DTLS نى قوللىمايدۇ\n" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "ھېچقانداق IP ئادرېس قوبۇللىمىدى. چېكىنىۋاتىدۇ\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق كونا IP ئادرېس بەردى (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق كونا IP تور ماسكىسى بەردى (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق IPv6 ئادرېس بەردى (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "قايتا باغلىنىش پەرقلىق IPv6 تور ماسكىسى بەردى (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "مۇلازىمېتىر URL '%s' نى تەھلىل قىلالمىدى\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "مۇلازىمېتىر URL پەقەت https:// غىلا يول قويىدۇ\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "كۆزنەك بىر تەرەپ قىلغۇچ يوق؛ دەلىللىيەلمەيدۇ\n" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "stdin دىن ھەرپ تىزىقىنى تەقسىملىيەلمىدى\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "OpenConnect ھەققىدىكى ياردەمنى تۆۋەندىكى تورتۇرادىن كۆرۈڭ\n" "https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL موتورى مەۋجۇت ئەمەس" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "ئىشلىتىلىشى: openconnect [options] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "سەپلىمە ھۆججەتتىن تاللانمىلارنى ئوقۇ" #: main.c:914 msgid "Report version number" msgstr "دوكلات نەشر نومۇرى" #: main.c:915 msgid "Display help text" msgstr "ياردەم مەتىننى كۆرسەت" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "تىزىمغا كىرىدىغان ئىشلەتكۈچى ئاتى تەڭشىكى" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "ئىم/SecurID دەلىللەشنى چەكلە" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "ئىشلەتكۈچى كىرگۈزۈشنى ئۈمىد قىلما؛ زۆرۈر بولسا چېكىن" #: main.c:923 msgid "Read password from standard input" msgstr "ئۆلچەملىك كىرگۈزۈشتىن ئىم ئوقۇ" #: main.c:924 msgid "Choose authentication login selection" msgstr "دەلىللەپ تىزىمغا كىرىش تاللانمىسىنى تاللاڭ" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "SSL خېرىدار گۇۋاھنامىسى CERT نى ئىشلەت" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "SSL شەخسىي ئاچقۇچ ھۆججەت ئاچقۇچىنى ئىشلەت" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "گۇۋاھنامىنىڭ ئىناۋەتلىك ۋاقتىنى ئاگاھلاندۇر < DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "usergroup تىزىمغا كىرىش تەڭشىكى" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "ئاچقۇچ ئىم جۈملىسى ياكى TPM SRK PIN تەڭشىكى" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "ھۆججەت سىستېمىسىنىڭ ھالقىلىق ئىم جۈملىسى fsid" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "مۇلازىمېتىر دەلىللەش ئۈچۈن گۇۋاھنامە ھۆججەت" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "ۋاكالەتچى مۇلازىمېتىر تەڭشەك" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "ۋاكالەتچىنى چەكلە" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "ئۆزلۈكىدىن سەپلىنىدىغان ۋاكالەتچى libproxy نى ئىشلەت" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(دىققەت: libproxy بۇ نەشرىدە چەكلەنگەن)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "سېكۇنت بىلەن ئىپادىلەنگەن باغلىنىشنى قايتا سىناش مۆھلىتى" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "ئۆلچەملىك كىرگۈزۈشتىن cookie ئوقۇ" #: main.c:963 msgid "Authenticate only and print login info" msgstr "پەقەت دەلىللەش ۋە باسىدىغان تىزىمغا كىرىش ئۇچۇرى بار" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "قوزغالغاندىن كېيىن ئارقا سۇپىدا داۋاملاشتۇر" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "نازارەتچىنىڭ PID نى بۇ ھۆججەتكە ياز" #: main.c:971 msgid "Drop privileges after connecting" msgstr "باغلانغاندىن كېيىن ئالدىنلىقنى تاشلا" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "سۈرئەت ئۇچۇرى ئۈچۈن syslog ئىشلەت" #: main.c:978 msgid "More output" msgstr "تېخىمۇ كۆپ چىقىرىش" #: main.c:979 msgid "Less output" msgstr "ئازراق چىقىرىش" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "تونىل ئېغىزى ئۈچۈن IFNAME ئىشلەت" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "vpnc ماسلىشىشچان سەپلىمە قوليازمىسىنىڭ Shell بۇيرۇقى قۇرى" #: main.c:986 msgid "default" msgstr "كۆڭۈلدىكى" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "IPv6 باغلىنىشىنى سورىما" #: main.c:993 msgid "XML config file" msgstr "XML سەپلىمە ھۆججەت" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "مۇلازىمېتىرغا/دىن MTU يولىنى كۆرسەت" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "DTLS نى قوللايدىغان OpenSSL شىفىر" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "بوغچا قاتار چېكىنى LEN pkts غا تەڭشە" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP بېشىنىڭ ئىشلەتكۈچى ۋاكالەتچىسى: سۆز بۆلىكى" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "HTTP باغلىنىشىنى قايتا ئىشلىتىشنى چەكلە" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "سەپلىمە ھۆججەتتىن قۇرغا ئېرىشەلمىدى: %s\n" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "%d قۇردىكى تونۇيالمايدىغان تاللانما: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "'%s' تاللانما %d قۇردىكى ئۆزگەرگۈچىگە ئېرىشەلمىدى\n" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "'%s' تاللانما %d قۇردىكى ئۆزگەرگۈچىنى ئىلتىماس قىلدى\n" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "يېزىش ئۈچۈن «%s»نى ئاچالمىدى: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "ئارقا سۇپىدا داۋاملاشتۇر؛ pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "ئاگاھلاندۇرۇش: بۇ نەشرىدىكى openconnect بولسا %s ئەمما libopenconnect " "ئامبىرى %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "vpninfo قۇرۇلمىسىنى تەقسىملىيەلمىدى\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "سەپلىمە ھۆججەتتە 'config' تاللانمىسىنى ئىشلىتەلمەىدى\n" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "سەپلىمە ھۆججەت «%s»نى ئاچالمىدى: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d بەك كىچىك\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "تاللانما -no-http-keepalive نى قايتا ئىشلىتىش سەۋەبىدىن بارلىق HTTP باغلىنىش " "چەكلەندى.\n" "ئەگەر بۇنىڭ ياردىمى بولسا غا دوكلات " "قىلىڭ.\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "قاتار ئۇزۇنلۇقىنىڭ نۆل بولۇشىغا يول قويۇلمايدۇ؛ 1 نى ئىشلىتىڭ\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect نەشرى %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "بۇيرۇق قۇرىدا ئۆزگەرگۈچى بەك كۆپ\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "مۇلازىمېتىر بەلگىلەنمىگەن\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "openconnect نىڭ بۇ نەشرى libproxy نى قوللىمايدۇ \n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL باغلىنىشى قۇرالمىدى\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" "ھېچقانداق --script ئۆزگەرگۈچى تەمىنلەنمىگەن؛ DNS ۋە يېتەكلىگۈچ سەپلەنمىگەن\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "https://www.infradead.org/openconnect/vpnc-script.html نى كۆرۈڭ\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "يېزىش ئۈچۈن %s نى ئاچالمىدى: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "سەپلىمىنى %s غا يازالمىدى: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "VPN مۇلازىمىتىر «%s» دىن گۇۋاھنامە دەلىللىيەلمىدى.\n" "سەۋەبى: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "«%s» كىرگۈزۈلسە قوشۇلىدۇ، «%s» چېكىنىدۇ؛ ئۇنداق بولمىسا كۆرسىتىدۇ: " #: main.c:2464 main.c:2483 msgid "no" msgstr "ياق" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ھەئە" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "دەلىللەشكە «%s»نى تاللاپ ئىشلەتكىلى بولمايدۇ\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "تەسىرلەشمەيدىغان ھالەتتە ئىشلەتكۈچى كىرگۈزۈشى زۆرۈر\n" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "tun ئۈسكۈنىسىنى تەڭشىيەلمىدى\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "ھېچقانداق ئىش يوق؛ %dms ئۇخلايدۇ…\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "DTLSv1 سۆزلىشىشنى دەسلەپلەشتۈرەلمىدى\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "DTLSv1 CTX نى دەسلەپلەشتۈرەلمىدى\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "DTLS شىفىر تىزىمىنى تەڭشىيەلمىدى\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS قول ئېلىشالمىدى: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "PEM ئىم جۈملىسى بەك ئۇزۇن (%d >= %d)\n" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "%s نىڭ زىيادە گۇۋاھنامىسى: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "PKCS#12 نى تەھلىل قىلالمىدى (ئۈستىدىكى خاتالىقلارنى كۆرۈڭ)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 دا گۇۋاھنامە يوق!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 دا شەخسىي ئاچقۇچ يوق!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "TPM موتۇرنى يۈكلىيەلمىدى.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "TPM موتۇرنى دەسلەپلەشتۈرەلمىدى\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "TPM SRK ئىمنى تەڭشىيەلمىدى\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "TPM شەخسىي ئاچقۇچنى يۈكلىيەلمىدى\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "گۇۋاھنامە ھۆججىتى %s نى ئاچالمىدى: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "گۇۋاھنامىنى يۈكلىيەلمىدى\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "ئاچقۇچ ئامبار تۈرى '%s' دىن BIO نى قۇرالمىدى\n" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "شەخسىي ئاچقۇچنى يۈكلىيەلمىدى (ئىم جۈملىسى خاتا؟)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "شەخسىي ئاچقۇچنى يۈكلىيەلمىدى (ئۈستىدىكى خاتالىقلارنى كۆرۈڭ)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "ئاچقۇچ ئامبىرىدىن X509 گۇۋاھنامىنى يۈكلىيەلمىدى\n" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "شەخسىي ئاچقۇچ ھۆججىتى %s نى ئاچالمىدى: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "شەخسىي ئاچقۇچ ھۆججىتى %s نى تونۇيالمىدى\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "DNS altname '%s' ماسلاشتى\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "altname '%s' ماس كېلىدىغىنى يوق\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "ماسلاشقىنى %s ئادرېس '%s'\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "'%s' ئۈچۈن ماس كېلىدىغىنى يوق ئادرېس '%s'\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' نىڭ بوش ئەمەس يولى بار؛ پەرۋا قىلمايۋاتىدۇ\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "ماس كەلگەن URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "URI '%s' ئۈچۈن ماس كەلگىنى يوق\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "cafile دىن زىيادە گۇۋاھنامە: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "خېرىدار گۇۋاھنامەدىكى notAfter سۆز بۆلەك خاتالىقى\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "<خاتالىق>" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "CA ھۆججەت '%s' تىن گۇۋاھنامە ئوقۇش خاتالىقى\n" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "CA ھۆججەت '%s' تىن ئوقۇيالمىدى\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL باغلىنالمىدى\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "ئىم:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Socket باغلىنىشتىن ۋاز كەچتى\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "libproxy دىن كەلگەن ۋاكالەتچى: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "ماشىنا '%s' نىڭ getaddrinfo مەغلۇپ بولدى: %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "sockaddr ساقلىغۇچنى تەقسىملىيەلمىدى\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "ماشىنا %s غا باغلىنالمىدى\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "خاتالىق يوق" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "ئاچقۇچ ئامبىرى دەسلەپلەشتۈرۈلمىگەن" #: ssl.c:729 msgid "System error" msgstr "سىستېما خاتالىقى" #: ssl.c:730 msgid "Protocol error" msgstr "كېلىشىم خاتالىقى" #: ssl.c:731 msgid "Permission denied" msgstr "ھوقۇقى رەت قىلىندى" #: ssl.c:732 msgid "Key not found" msgstr "ئاچقۇچ تېپىلمىدى" #: ssl.c:733 msgid "Value corrupted" msgstr "قىممەت بۇزۇلغان" #: ssl.c:734 msgid "Undefined action" msgstr "بەلگىلەنمىگەن مەشغۇلات" #: ssl.c:738 msgid "Wrong password" msgstr "ئىم خاتا" #: ssl.c:739 msgid "Unknown error" msgstr "يوچۇن خاتالىق" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "ئۇخلاش %ds، قالغان مۆھلىتى %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "ئۈسكۈنە كىملىكى:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "ئۈسكۈنە كىملىكى ياكى ئىم خاتا؛ قايتا سىناڭ.\n" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "ئىناۋەتسىز PIN پىچىمى، قايتا سىناڭ.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "IP نى ئىتتىرەلمىدى" #: tun.c:102 msgid "Can't set ifname" msgstr "ifname نى تەڭشىيەلمىدى" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun ئاچ" #: tun.c:145 msgid "Failed to create new tun" msgstr "يېڭى tun قۇرالمىدى" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "ئوچۇق تور" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "tun ئۈسكۈنىسىنى ئاچالمىدى: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "ئىناۋەتسىز ئېغىز ئاتى '%s'؛ 'tun%%d' غا ماسلىشىش كېرەك\n" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "'%s' ئاچالمىدى: %s\n" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(قوليازما)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "كەلگەن بوغچىنى يازالمىدى: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "«%s» ماشىنىنى raw ماشىنا سۈپىتىدە بىر تەرەپ قىلىدۇ\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML سەپلىمە ھۆججەت SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML سەپلىمە ھۆججىتى «%s» نى تەھلىل قىلالمىدى\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "«%s» ماشىنىنىڭ ئادرېسى «%s»\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "«%s» ماشىنىنىڭ UserGroup «%s»\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" "«%s» ماشىنا سەپلىمە تىزىمىدا يوق؛ raw ماشىنا سۈپىتىدە بىر تەرەپ قىلىدۇ\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/tg.po0000644000076400007640000036777514204456075017160 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2014-04-10 01:06+0500\n" "Last-Translator: Victor Ibragimov \n" "Language-Team: Tajik (http://www.transifex.net/projects/p/meego/language/" "tg/)\n" "Language: tg\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Poedit 1.6.4\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:195 msgid "No input type in form\n" msgstr "" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "" #: main.c:915 msgid "Display help text" msgstr "" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "" #: main.c:2464 main.c:2470 msgid "yes" msgstr "" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Парол:" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:726 msgid "No error" msgstr "" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "Хатои системавӣ" #: ssl.c:730 msgid "Protocol error" msgstr "" #: ssl.c:731 msgid "Permission denied" msgstr "" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "Пароли нодуруст" #: ssl.c:739 msgid "Unknown error" msgstr "Хатои номаълум" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "ID-и дастгоҳ:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/sk.po0000644000076400007640000037265014204456074017146 0ustar00dwoodhoudwoodhou00000000000000# Slovak translation for NetworkManager-openconnect. # Copyright (C) 2020 NetworkManager-openconnect's COPYRIGHT HOLDER # This file is distributed under the same license as the NetworkManager-openconnect package. # Dušan Kazik , 2020. # msgid "" msgstr "" "Project-Id-Version: NetworkManager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2020-09-08 11:44+0200\n" "Last-Translator: Dušan Kazik \n" "Language-Team: Slovak \n" "Language: sk\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=3; plural=(n==1) ? 1 : (n>=2 && n<=4) ? 2 : 0;\n" "X-Generator: Poedit 2.4.1\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Prosím, zadajte vaše používateľské meno a heslo" #: auth-globalprotect.c:159 msgid "Username" msgstr "Používateľské meno" #: auth-globalprotect.c:174 msgid "Password" msgstr "Heslo" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Výzva:" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "BRÁNA:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Výber vo formulári nemá meno\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "meno %s nebolo zadané\n" #: auth.c:195 msgid "No input type in form\n" msgstr "Formulár nemá typ vstupu\n" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "overenie podpisu zlyhalo" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect alebo openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Kompatibilná s VPN Cisco AnyConnect SSL, tak ako aj s ocserv" #: library.c:143 msgid "Juniper Network Connect" msgstr "Pripojenie k sieti Juniper" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Kompatibilná s pripojením k sieti Juniper" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "Nebola prijatá žiadna IP adresa. Končím\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "" #: main.c:915 msgid "Display help text" msgstr "" #: main.c:919 msgid "Authentication" msgstr "Overenie totožnosti" #: main.c:920 msgid "Set login username" msgstr "" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "predvolené" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "zakázané" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "" #: main.c:2464 main.c:2470 msgid "yes" msgstr "áno" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "Oblasť:" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "Relácia:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "Zlyhala analýza zoznamu relácií\n" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Zadajte vedľajšie poverenia:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "Zadajte používateľské poverenia:" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Vedľajšie používateľské meno:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Používateľské meno:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Heslo:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Vedľajšie heslo:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Heslo vypršalo. Prosím, zmeňte heslo:" #: pulse.c:1085 msgid "Current password:" msgstr "Aktuálne heslo:" #: pulse.c:1090 msgid "New password:" msgstr "Nové heslo:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Overenie nového hesla:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "Heslá neboli zadané.\n" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Heslá sa nezhodujú.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Aktuálne heslo je príliš dlhé.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Nové heslo je príliš dlhé.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "Prosím, zadajte odpoveď:" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Zlyhalo pripojenie k hostiteľovi %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Znovu sa pripája k proxy %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "Nepodarilo sa získať identifikátor súborového systému pre heslo\n" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "Zlyhalo otvorenie súboru súkromného kľúča „%s“: %s\n" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "" #: ssl.c:726 msgid "No error" msgstr "Bez chyby" #: ssl.c:727 msgid "Keystore locked" msgstr "Úložisko kľúčov je uzamknuté" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "Úložisko kľúčov nie je inicializované" #: ssl.c:729 msgid "System error" msgstr "Systémová chyba" #: ssl.c:730 msgid "Protocol error" msgstr "Chyba protokolu" #: ssl.c:731 msgid "Permission denied" msgstr "Prístup zamietnutý" #: ssl.c:732 msgid "Key not found" msgstr "Kľúč sa nenašiel" #: ssl.c:733 msgid "Value corrupted" msgstr "Hodnota je poškodená" #: ssl.c:734 msgid "Undefined action" msgstr "Neurčená akcia" #: ssl.c:738 msgid "Wrong password" msgstr "Nesprávne heslo" #: ssl.c:739 msgid "Unknown error" msgstr "Neznáma chyba" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "Zlyhalo otvorenie %s: %s\n" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "Zlyhalo vyhradenie %d bajtov pre %s\n" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "Zlyhalo čítanie %s: %s\n" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "Neznáma rodina protokolu %d. Nedá sa vytvoriť adresa servera UDP\n" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/en_US.po0000644000076400007640000041132414204456070017526 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Margie Foster , 2011-2012 msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2014-02-19 09:05+0000\n" "Last-Translator: David Woodhouse \n" "Language-Team: English (United States) (http://www.transifex.com/projects/p/" "meego/language/en_US/)\n" "Language: en_US\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "Unexpected %d result from server\n" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "SSL wrote too few bytes! Asked for %d, sent %d\n" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "CSTP rekey due\n" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "Sending uncompressed data packet of %d bytes\n" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "Attempt new DTLS connection\n" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "Received DTLS packet 0x%02x of %d bytes\n" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "DTLS rekey due\n" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "DTLS Dead Peer Detection detected dead peer!\n" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "Send DTLS DPD\n" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "Cannot handle form method='%s', action='%s'\n" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "Form choice has no name\n" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "name %s not input\n" #: auth.c:195 msgid "No input type in form\n" msgstr "No input type in form\n" #: auth.c:207 msgid "No input name in form\n" msgstr "No input name in form\n" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "Unknown input type %s in form\n" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Failed to parse server response\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Response was:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Asked for password but '--no-passwd' set\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "Failed to open HTTPS connection to %s\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "Downloaded config file did not match intended SHA1\n" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "Failed to change to CSD home directory '%s': %s\n" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "Failed to open temporary CSD script file: %s\n" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "Failed to write temporary CSD script file: %s\n" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "Failed to exec CSD script %s\n" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Unknown response from server\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "Refreshing %s after 1 second...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Error fetching HTTPS response\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN service unavailable; reason: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "Got inappropriate HTTP CONNECT response: %s\n" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Got CONNECT response: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "No memory for options\n" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "Unknown CSTP-Content-Encoding %s\n" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "CSTP connected. DPD %d, Keepalive %d\n" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "Compression setup failed\n" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "Allocation of deflate buffer failed\n" #: cstp.c:786 msgid "inflate failed\n" msgstr "inflate failed\n" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "deflate failed %d\n" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "Unexpected packet length. SSL_read returned %d but packet is\n" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "Got CSTP DPD request\n" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "Got CSTP DPD response\n" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "Got CSTP Keepalive\n" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "Received uncompressed data packet of %d bytes\n" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "Received server disconnect: %02x '%s'\n" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "Compressed packet received in !deflate mode\n" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "received server terminate packet\n" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "CSTP Dead Peer Detection detected dead peer!\n" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Reconnect failed\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "Send CSTP DPD\n" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "Send CSTP Keepalive\n" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Send BYE packet: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "No DTLS address\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "Server offered no DTLS cipher option\n" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "No DTLS when connected via proxy\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "Got DTLS DPD request\n" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "Failed to send DPD response. Expect disconnect\n" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "Got DTLS DPD response\n" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "Got DTLS Keepalive\n" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "Unknown DTLS packet type %02x, len %d\n" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "Send DTLS Keepalive\n" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "Received ESP packet of %d bytes with unrecognized payload type %02x\n" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "DTLS handshake timed out\n" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "Failed to initialize ESP cipher: %s\n" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "Client certificate has expired at" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "Client certificate expires soon at" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "Could not initialize MD5 hash: %s\n" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "Failed to initialize cipher for decrypting PEM file: %s\n" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Using certificate file %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "This version of OpenConnect was built without TPM support\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "" #: gnutls.c:2098 msgid "signer not found" msgstr "" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "" #: gnutls.c:2106 msgid "certificate expired" msgstr "" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "certificate does not match hostname" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Server certificate verify failed: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Loading certificate failed. Aborting.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "SSL negotiation with %s\n" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL connection canceled\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "No memory for allocating cookies\n" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "Failed to parse HTTP response '%s'\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Got HTTP response: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "Ignoring unknown HTTP response line '%s'\n" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Invalid cookie offered: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL certificate authentication failed\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "Response body has negative size (%d)\n" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Unknown Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP body %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "Error reading HTTP response body\n" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "Error fetching chunk header\n" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "Error fetching HTTP response body\n" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "Cannot receive HTTP 1.0 body without closing connection\n" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "Failed to parse redirected URL '%s': %s\n" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "Allocating new path for relative redirect failed: %s\n" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "request granted" #: http.c:1003 msgid "general failure" msgstr "general failure" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "connection not allowed by ruleset" #: http.c:1005 msgid "network unreachable" msgstr "network unreachable" #: http.c:1006 msgid "host unreachable" msgstr "host unreachable" #: http.c:1007 msgid "connection refused by destination host" msgstr "connection refused by destination host" #: http.c:1008 msgid "TTL expired" msgstr "TTL expired" #: http.c:1009 msgid "command not supported / protocol error" msgstr "command not supported / protocol error" #: http.c:1010 msgid "address type not supported" msgstr "address type not supported" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "Error writing auth request to SOCKS proxy: %s\n" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "Error reading auth response from SOCKS proxy: %s\n" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "Unexpected auth response from SOCKS proxy: %02x %02x\n" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "Requesting SOCKS proxy connection to %s:%d\n" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "Error writing connect request to SOCKS proxy: %s\n" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "Error reading connect response from SOCKS proxy: %s\n" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "Unexpected connect response from SOCKS proxy: %02x %02x...\n" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS proxy error %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS proxy error %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "Unexpected address type %02x in SOCKS connect response\n" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "Requesting HTTP proxy connection to %s:%d\n" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "Sending proxy request failed: %s\n" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Unknown proxy type '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "Only http or socks(5) proxies supported\n" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "No IP address received. Aborting\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "Reconnect gave different Legacy IP address (%s != %s)\n" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "Reconnect gave different Legacy IP netmask (%s != %s)\n" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "Reconnect gave different IPv6 address (%s != %s)\n" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "Reconnect gave different IPv6 netmask (%s != %s)\n" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "Failed to parse server URL '%s'\n" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Only https:// permitted for server URL\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "Allocation failure for string from stdin\n" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Usage: openconnect [options] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "Report version number" #: main.c:915 msgid "Display help text" msgstr "Display help text" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "Set login username" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Disable password/SecurID authentication" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Do not expect user input; exit if it is required" #: main.c:923 msgid "Read password from standard input" msgstr "Read password from standard input" #: main.c:924 msgid "Choose authentication login selection" msgstr "Choose authentication login selection" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "Use SSL client certificate CERT" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "Use SSL private key file KEY" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "Warn when certificate lifetime < DAYS" #: main.c:929 msgid "Set login usergroup" msgstr "Set login usergroup" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "Set key passphrase or TPM SRK PIN" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "Key passphrase is fsid of file system" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "Cert file for server verification" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Set proxy server" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "Disable proxy" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "Use libproxy to automatically configure proxy" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "(NOTE: libproxy disabled in this build)" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "Connection retry timeout in seconds" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "Read cookie from standard input" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "Continue in background after startup" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "Write the daemon's PID to this file" #: main.c:971 msgid "Drop privileges after connecting" msgstr "Drop privileges after connecting" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "Use syslog for progress messages" #: main.c:978 msgid "More output" msgstr "More output" #: main.c:979 msgid "Less output" msgstr "Less output" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "Use IFNAME for tunnel interface" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "Shell command line for using a vpnc-compatible config script" #: main.c:986 msgid "default" msgstr "" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "Pass traffic to 'script' program, not tun" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "Do not ask for IPv6 connectivity" #: main.c:993 msgid "XML config file" msgstr "XML config file" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "OpenSSL ciphers to support for DTLS" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "Set packet queue limit to LEN pkts" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "HTTP header User-Agent: field" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "Disable HTTP connection re-use" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "Unrecognized option at line %d: '%s'\n" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "Failed to open '%s' for write: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "Continuing in background; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "Failed to allocate vpninfo structure\n" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d too small\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "Queue length zero not permitted; using 1\n" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect version %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "No server specified\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "This version of openconnect was built without libproxy support\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "Creating SSL connection failed\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "No --script argument provided; DNS and routing are not configured\n" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "See https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "Failed to open %s for write: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "Failed to write config to %s: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "no" #: main.c:2464 main.c:2470 msgid "yes" msgstr "yes" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "Auth choice \"%s\" not available\n" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "Set up tun device failed\n" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "No work to do; sleeping for %d ms...\n" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "Unrecognized data packet\n" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "Initialize DTLSv1 session failed\n" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "Initialize DTLSv1 CTX failed\n" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "Set DTLS cipher list failed\n" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "DTLS handshake failed: %d\n" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "Failed to initialize ESP cipher:\n" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "Extra cert from %s: '%s'\n" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "Parse PKCS#12 failed (see above errors)\n" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 contained no certificate!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 contained no private key!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "Can't load TPM engine.\n" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "Failed to init TPM engine\n" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "Failed to set TPM SRK password\n" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "Failed to load TPM private key\n" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Failed to open certificate file %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Loading certificate failed\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "Loading private key failed (wrong passphrase?)\n" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "Loading private key failed (see above errors)\n" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "Failed to open private key file %s: %s\n" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "Failed to identify private key type in '%s'\n" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "Matched DNS altname '%s'\n" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "No match for altname '%s'\n" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "Certificate has GEN_IPADD altname with bogus length %d\n" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "Matched %s address '%s'\n" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "No match for %s address '%s'\n" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "URI '%s' has non-empty path; ignoring\n" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "Matched URI '%s'\n" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "No match for URI '%s'\n" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "No altname in peer cert matched '%s'\n" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "No subject name in peer cert!\n" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "Failed to parse subject name in peer cert\n" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "Peer cert subject mismatch ('%s' != '%s')\n" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "Matched peer certificate subject name '%s'\n" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "Extra cert from cafile: '%s'\n" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "Error in client cert notAfter field\n" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "Failed to open CA file '%s'\n" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL connection failure\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "Discard bad split include: \"%s\"\n" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "Discard bad split exclude: \"%s\"\n" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "Failed to spawn script '%s' for %s: %s\n" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "Socket connect canceled\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "Proxy from libproxy: %s://%s:%d/\n" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "getaddrinfo failed for host '%s': %s\n" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "Failed to allocate sockaddr storage\n" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "Failed to connect to host %s\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "" #: ssl.c:730 msgid "Protocol error" msgstr "" #: ssl.c:731 msgid "Permission denied" msgstr "" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "" #: ssl.c:739 msgid "Unknown error" msgstr "" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "sleep %ds, remaining timeout %ds\n" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "Can't push IP" #: tun.c:102 msgid "Can't set ifname" msgstr "Can't set ifname" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "Can't plumb %s for IPv%d: %s\n" #: tun.c:139 msgid "open /dev/tun" msgstr "open /dev/tun" #: tun.c:145 msgid "Failed to create new tun" msgstr "Failed to create new tun" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "Failed to put tun file descriptor into message-discard mode" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "open net" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "Failed to open tun device: %s\n" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "execl" #: tun.c:507 msgid "(script)" msgstr "(script)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "Failed to write incoming packet: %s\n" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "Treating host \"%s\" as a raw hostname\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML config file SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "Failed to parse XML config file %s\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "Host \"%s\" has address \"%s\"\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "Host \"%s\" has UserGroup \"%s\"\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "Host \"%s\" not listed in config; treating as raw hostname\n" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "Unrecognized response from ykneo-oath applet\n" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "Unrecognized response from Yubikey when generating tokencode\n" openconnect-8.20/po/pa.po0000644000076400007640000037712614204456073017133 0ustar00dwoodhoudwoodhou00000000000000# Punjabi translation of network-manager-openconnect. # Copyright (C) 2009 network-manager-openconnect's COPYRIGHT HOLDER # This file is distributed under the same license as the network-manager-openconnect package. # # A S Alam , 2009, 2010, 2012. msgid "" msgstr "" "Project-Id-Version: network-manager-openconnect master\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2012-08-19 15:46+0530\n" "Last-Translator: A S Alam \n" "Language-Team: Punjabi/Panjabi \n" "Language: pa\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "X-Generator: Lokalize 1.4\n" "Plural-Forms: nplurals=2; plural=n != 1;\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "" #: auth-globalprotect.c:159 msgid "Username" msgstr "" #: auth-globalprotect.c:174 msgid "Password" msgstr "" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "" #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "" #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr "" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "ਨਾਂ %s ਇੰਪੁੱਟ ਨਹੀਂ\n" #: auth.c:195 msgid "No input type in form\n" msgstr "" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "ਜਵਾਬ ਸੀ: %s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "ਸਰਵਰ ਤੋਂ ਅਣਜਾਣ ਜਵਾਬ\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "1 ਸਕਿੰਟ ਦੇ ਬਾਅਦ %s ਤਾਜ਼ਾ ਕੀਤਾ ਜਾ ਰਿਹਾ ਹੈ...\n" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "" #: esp.c:94 msgid "outgoing" msgstr "" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "ਸਰਟੀਫਿਕੇਟ ਸੈੱਟ ਕਰਨ ਲਈ ਫੇਲ੍ਹ: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "" #: gnutls.c:2096 msgid "certificate revoked" msgstr "ਸਰਟੀਫਿਕੇਟ ਵਾਪਸ ਲਿਆ" #: gnutls.c:2098 msgid "signer not found" msgstr "ਦਸਤਖਤੀ ਨਹੀਂ ਲੱਭਿਆ" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "ਅਸੁਰੱਖਿਅਤ ਐਲੋਗਰਿਥਮ" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "ਸਰਟੀਫਿਕੇਟ ਹਾਲੇ ਐਕਟੀਵੇਟ ਨਹੀਂ ਹੈ" #: gnutls.c:2106 msgid "certificate expired" msgstr "ਸਰਟੀਫਿਕੇਟ ਮਿਆਦ ਪੁੱਗੀ" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "ਦਸਤਖਤ ਜਾਂਚ ਫੇਲ੍ਹ ਹੋਈ" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਫੇਲ੍ਹ ਹੋਇਆ: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "%s ਲਈ ਪਿੰਨ ਚਾਹੀਦਾ ਹੈ" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "ਗਲਤ ਪਿੰਨ" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "PIN ਦਿਓ:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "TPM SRK PIN ਦਿਓ:" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "ਅਣਜਾਣ ਟਰਾਂਸਫਰ-ਇੰਕੋਡਿੰਗ: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "HTTP ਮੁੱਖ ਭਾਗ %s (%d)\n" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "ਆਮ ਫੇਲ੍ਹ" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "ਨੈੱਟਵਰਕ ਪਹੁੰਚ 'ਚ ਨਹੀਂ" #: http.c:1006 msgid "host unreachable" msgstr "ਹੋਸਟ ਪਹੁੰਚ 'ਚ ਨਹੀਂ" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "TTL ਮਿਆਦ ਪੁੱਗੀ" #: http.c:1009 msgid "command not supported / protocol error" msgstr "" #: http.c:1010 msgid "address type not supported" msgstr "ਪਰੋਟੋਕਾਲ ਟਾਈਪ ਸਹਾਇਕ ਨਹੀਂ ਹੈ" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS ਪਰਾਕਸੀ ਗਲਤੀ %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS ਪਰਾਕਸੀ ਗਲਤੀ %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "ਅਣਜਾਣ ਪਰਾਕਸੀ ਕਿਸਮ '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "" #: library.c:143 msgid "Juniper Network Connect" msgstr "" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "" #: library.c:184 msgid "Pulse Connect Secure" msgstr "" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "OpenSSL ਇੰਜਣ ਮੌਜੂਦ ਨਹੀਂ" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "" #: main.c:728 main.c:746 msgid " (default)" msgstr "" #: main.c:743 msgid "Set VPN protocol" msgstr "" #: main.c:784 msgid "fgets (stdin)" msgstr "fgets (stdin)" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "ਵਰਤੋਂ: openconnect [options] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" #: main.c:913 msgid "Read options from config file" msgstr "" #: main.c:914 msgid "Report version number" msgstr "ਵਰਜਨ ਨੰਬਰ ਰਿਪੋਰਟ ਕਰੋ" #: main.c:915 msgid "Display help text" msgstr "ਮੱਦਦ ਟੈਕਸਟ ਵੇਖਾਓ" #: main.c:919 msgid "Authentication" msgstr "" #: main.c:920 msgid "Set login username" msgstr "ਲਾਗਇਨ ਯੂਜ਼ਰ-ਨਾਂ ਸੈੱਟ ਕਰੋ" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "" #: main.c:923 msgid "Read password from standard input" msgstr "ਸਟੈਂਡਰਡ ਆਉਟਪੁੱਟ ਤੋਂ ਪਾਸਵਰਡ ਪੜ੍ਹੋ" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "ਲਾਗਇ ਯੂਜ਼ਰ-ਗਰੁੱਪ ਸੈੱਟ ਕਰੋ" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "ਸਰਵਰ ਜਾਂਚ ਲਈ ਸਰਟ ਫਾਇਲ" #: main.c:946 msgid "Internet connectivity" msgstr "" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "" #: main.c:949 msgid "Set proxy authentication methods" msgstr "" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "ਤਰੱਕੀ ਸੁਨੇਹਿਆਂ ਲਈ syslog ਵਰਤੋਂ" #: main.c:978 msgid "More output" msgstr "ਹੋਰ ਆਉਟਪੁੱਟ" #: main.c:979 msgid "Less output" msgstr "ਘੱਟ ਆਉਟਪੁੱਟ" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "ਡਿਫਾਲਟ" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "HTTP ਕੁਨੈਕਸ਼ਨ ਮੁੜ-ਵਰਤਣਾ ਆਯੋਗ" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "'%s ਨੂੰ ਲਿਖਣ ਲਈ ਖੋਲ੍ਹਣ ਵਾਸਤੇ ਫੇਲ੍ਹ: %s\n" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "ਬੈਕਗਰਾਊਂਡ ਵਿੱਚ ਜਾਰੀ; pid %d\n" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "'%s' ਸੰਰਚਨਾ ਫਾਇਲ ਨੂੰ ਖੋਲ੍ਹਿਆ ਨਹੀਂ ਜਾ ਸਕਦਾ: %s\n" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "MTU %d ਬਹੁਤ ਛੋਟਾ ਹੈ\n" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect ਵਰਜਨ %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "ਕਮਾਂਡ ਲਾਈਨ ਲਈ ਬਹੁਤ ਸਾਰੇ ਆਰਗੂਮੈਂਟ\n" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "ਕੋਈ ਸਰਵਰ ਨਹੀਂ ਦਿੱਤਾ\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਬਣਾਉਣ ਲਈ ਫੇਲ੍ਹ\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "https://www.infradead.org/openconnect/vpnc-script.html ਵੇਖੋ\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "%s ਨੂੰ ਲਿਖਣ ਲਈ ਖੋਲ੍ਹਣ ਵਾਸਤੇ ਫੇਲ੍ਹ: %s\n" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "%s ਲਈ ਸੰਰਚਨਾ ਫਾਇਲ ਲਿਖਣ ਲਈ ਫੇਲ੍ਹ: %s\n" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr "" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "ਨਹੀਂ" #: main.c:2464 main.c:2470 msgid "yes" msgstr "ਹਾਂ" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "<ਗਲਤੀ>" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL ਕੁਨੈਕਸ਼ਨ ਫੇਲ੍ਹ ਹੋਇਆ\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "" #: pulse.c:1010 msgid "Secondary password:" msgstr "" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "" #: pulse.c:1085 msgid "Current password:" msgstr "" #: pulse.c:1090 msgid "New password:" msgstr "" #: pulse.c:1095 msgid "Verify new password:" msgstr "" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "" #: pulse.c:1123 msgid "New password too long.\n" msgstr "" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "ਸਾਕਟ ਕੁਨੈਕਸ਼ਨ ਰੱਦ ਕੀਤਾ\n" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "%s ਹੋਸਟ ਨਾਲ ਕੁਨੈਕਟ ਕਰਨ ਲਈ ਫੇਲ੍ਹ ਹੈ\n" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "statvfs: %s\n" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "ਕੋਈ ਗਲਤੀ ਨਹੀਂ" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "ਸਿਸਟਮ ਗਲਤੀ" #: ssl.c:730 msgid "Protocol error" msgstr "ਪਰੋਟੋਕਾਲ ਗਲਤੀ" #: ssl.c:731 msgid "Permission denied" msgstr "ਅਧਿਕਾਰ ਪਾਬੰਦੀ ਹੈ" #: ssl.c:732 msgid "Key not found" msgstr "" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "ਗਲਤ ਪਾਸਵਰਡ" #: ssl.c:739 msgid "Unknown error" msgstr "ਅਣਜਾਣ ਗਲਤੀ" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "" #: stoken.c:212 msgid "PIN:" msgstr "" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "/dev/tun ਖੋਲ੍ਹੋ" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "(ਸਕ੍ਰਿਪਟ)" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "ਹੋਸਟ \"%s\" ਨੂੰ ਰਾਅ ਹੋਸਟ-ਨਾਂ ਵਜੋਂ ਮੰਨੋ\n" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "SHA1 ਮੌਜੂਦਾ ਫਾਇਲ ਲਈ ਫੇਲ੍ਹ\n" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ SHA1: %s\n" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "XML ਸੰਰਚਨਾ ਫਾਇਲ %s ਪਾਰਸ ਕਰਨ ਲਈ ਫੇਲ੍ਹ\n" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "ਹੋਸਟ \"%s\" ਦਾ ਐਡਰੈਸ \"%s\" ਹੈ\n" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "ਹੋਸਟ \"%s\" ਦਾ ਯੂਜ਼ਰ-ਗਰੁੱਪ \"%s\" ਹੈ\n" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/po/fi.po0000644000076400007640000040515614204456070017121 0ustar00dwoodhoudwoodhou00000000000000# SOME DESCRIPTIVE TITLE. # Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER # This file is distributed under the same license as the PACKAGE package. # # Translators: # Jussa Jutila , 2011. # Jiri Grönroos , 2016. # msgid "" msgstr "" "Project-Id-Version: openconnect\n" "Report-Msgid-Bugs-To: openconnect-devel@lists.infradead.org\n" "POT-Creation-Date: 2022-02-20 15:16+0000\n" "PO-Revision-Date: 2020-09-09 18:47+0300\n" "Last-Translator: Jiri Grönroos \n" "Language-Team: suomi \n" "Language: fi\n" "MIME-Version: 1.0\n" "Content-Type: text/plain; charset=UTF-8\n" "Content-Transfer-Encoding: 8bit\n" "Plural-Forms: nplurals=2; plural=(n != 1);\n" "X-Generator: Poedit 2.4.1\n" #: array.c:130 msgid "No ANsession cookie found\n" msgstr "" #: array.c:158 http.c:128 #, c-format msgid "Invalid cookie '%s'\n" msgstr "Virheellinen eväste '%s'\n" #: array.c:364 #, c-format msgid "Found DNS server %s\n" msgstr "" #: array.c:391 #, c-format msgid "Got search domain '%s'\n" msgstr "" #: array.c:478 #, c-format msgid "Unknown Array config element '%s'\n" msgstr "" #: array.c:517 #, c-format msgid "Initial config: Speed tunnel %d, enc %d, DPD %d\n" msgstr "" #: array.c:548 msgid "Short write in Array JSON negotiation\n" msgstr "" #: array.c:557 msgid "Failed to read Array JSON response\n" msgstr "" #: array.c:566 msgid "Unexpected response to Array JSON request\n" msgstr "" #: array.c:579 msgid "Failed to parse Array JSON response\n" msgstr "" #: array.c:659 msgid "Error creating array negotiation request\n" msgstr "" #: array.c:675 f5.c:679 http.c:952 oncp.c:524 pulse.c:1366 #, c-format msgid "Unexpected %d result from server\n" msgstr "" #: array.c:698 msgid "Error building Array DTLS negotiation packet\n" msgstr "" #: array.c:716 array.c:763 msgid "Short write in array negotiation\n" msgstr "" #: array.c:726 msgid "Failed to read UDP negotiation response\n" msgstr "" #: array.c:738 #, c-format msgid "DTLS enabled on port %d\n" msgstr "" #: array.c:750 msgid "Refusing non-DTLS UDP tunnel\n" msgstr "" #: array.c:772 msgid "Failed to read ipff response\n" msgstr "" #: array.c:825 array.c:1060 array.c:1170 cstp.c:927 dtls.c:283 dtls.c:642 #: esp.c:166 gpst.c:1129 mainloop.c:63 oncp.c:869 ppp.c:1089 ppp.c:1676 #: pulse.c:2656 msgid "Allocation failed\n" msgstr "" #: array.c:836 cstp.c:938 gpst.c:1142 pulse.c:2668 #, c-format msgid "Short packet received (%d bytes)\n" msgstr "" #: array.c:852 array.c:1197 #, c-format msgid "Receive control packet of type %x:\n" msgstr "" #: array.c:859 pulse.c:2701 #, c-format msgid "Received data packet of %d bytes\n" msgstr "" #: array.c:902 cstp.c:1068 gpst.c:1231 oncp.c:1083 ppp.c:1376 pulse.c:2834 #, c-format msgid "SSL wrote too few bytes! Asked for %d, sent %d\n" msgstr "" #. Not that this will ever happen; we don't even process #. the setting when we're asked for it. #: array.c:920 cstp.c:1096 oncp.c:1118 pulse.c:2861 msgid "CSTP rekey due\n" msgstr "" #. if we failed rehandshake try establishing a new-tunnel instead of failing #: array.c:927 cstp.c:1103 oncp.c:1125 pulse.c:2868 msgid "Rehandshake failed; attempting new-tunnel\n" msgstr "" #: array.c:937 msgid "TCP Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:941 msgid "TCP reconnect failed\n" msgstr "" #: array.c:957 msgid "Send TCP DPD\n" msgstr "" #: array.c:974 msgid "Send TCP Keepalive\n" msgstr "" #: array.c:990 msgid "Sending DTLS off packet\n" msgstr "" #: array.c:1000 cstp.c:1182 oncp.c:1201 #, c-format msgid "Sending uncompressed data packet of %d bytes\n" msgstr "" #: array.c:1038 dtls.c:259 ppp.c:1790 msgid "Attempt new DTLS connection\n" msgstr "" #: array.c:1072 ppp.c:1688 msgid "Failed to receive authentication response from DTLS\n" msgstr "" #: array.c:1084 msgid "DTLS session established\n" msgstr "" #: array.c:1097 msgid "Received Legacy IP over DTLS; assuming established\n" msgstr "" #: array.c:1105 msgid "Received IPv6 over DTLS; assuming established\n" msgstr "" #: array.c:1111 msgid "Received unknown DTLS packet\n" msgstr "" #: array.c:1119 ppp.c:1742 msgid "Error creating connect request for DTLS session\n" msgstr "" #: array.c:1135 ppp.c:1758 msgid "Failed to write connect request to DTLS session\n" msgstr "" #: array.c:1188 dtls.c:294 #, c-format msgid "Received DTLS packet 0x%02x of %d bytes\n" msgstr "" #: array.c:1212 dtls.c:358 msgid "DTLS rekey due\n" msgstr "" #: array.c:1219 dtls.c:365 msgid "DTLS Rehandshake failed; reconnecting.\n" msgstr "" #: array.c:1228 dtls.c:374 msgid "DTLS Dead Peer Detection detected dead peer!\n" msgstr "" #: array.c:1234 dtls.c:380 msgid "Send DTLS DPD\n" msgstr "" #: array.c:1238 dtls.c:385 msgid "Failed to send DPD request. Expect disconnect\n" msgstr "" #: array.c:1277 dtls.c:452 #, c-format msgid "Sent DTLS packet of %d bytes; DTLS send returned %d\n" msgstr "" #: array.c:1303 auth-globalprotect.c:777 f5.c:714 fortinet.c:829 oncp.c:1229 msgid "Logout failed.\n" msgstr "Uloskirjautuminen epäonnistui.\n" #: array.c:1305 auth-globalprotect.c:779 f5.c:716 fortinet.c:831 oncp.c:1231 msgid "Logout successful.\n" msgstr "Uloskirjautuminen onnistui.\n" #: auth-globalprotect.c:119 msgid "" "SAML authentication required; using portal-userauthcookie to continue SAML.\n" msgstr "" #: auth-globalprotect.c:121 msgid "" "SAML authentication required; using portal-prelogonuserauthcookie to " "continue SAML.\n" msgstr "" #: auth-globalprotect.c:123 #, c-format msgid "" "Destination form field %s was specified; assuming SAML %s authentication is " "complete.\n" msgstr "" #: auth-globalprotect.c:128 #, c-format msgid "SAML %s authentication is required via %s\n" msgstr "" #: auth-globalprotect.c:132 #, c-format msgid "SAML %s authentication is required via external script.\n" msgstr "" #: auth-globalprotect.c:135 msgid "" "When SAML authentication is complete, specify destination form field by " "appending :field_name to login URL.\n" msgstr "" #: auth-globalprotect.c:150 msgid "Please enter your username and password" msgstr "Syötä käyttäjätunnuksesi ja salasanasi" #: auth-globalprotect.c:159 msgid "Username" msgstr "Käyttäjänimi" #: auth-globalprotect.c:174 msgid "Password" msgstr "Salasana" #: auth-globalprotect.c:241 msgid "Challenge: " msgstr "Haaste: " #: auth-globalprotect.c:344 #, c-format msgid "GlobalProtect login returned unexpected argument value arg[%d]=%s\n" msgstr "" #: auth-globalprotect.c:350 #, c-format msgid "GlobalProtect login returned %s=%s (expected %s)\n" msgstr "" #: auth-globalprotect.c:356 #, c-format msgid "GlobalProtect login returned empty or missing %s\n" msgstr "" #: auth-globalprotect.c:360 #, c-format msgid "GlobalProtect login returned %s=%s\n" msgstr "" #: auth-globalprotect.c:374 #, c-format msgid "" "Please report %d unexpected values above (of which %d fatal) to \n" msgstr "" #: auth-globalprotect.c:415 msgid "Please select GlobalProtect gateway." msgstr "Valitse GlobalProtect-yhdyskäytävä." #: auth-globalprotect.c:425 msgid "GATEWAY:" msgstr "YHDYSKÄYTÄVÄ:" #: auth-globalprotect.c:448 #, c-format msgid "" "Ignoring portal's HIP report interval (%d minutes), because interval is " "already set to %d minutes.\n" msgstr "" #: auth-globalprotect.c:452 #, c-format msgid "Portal set HIP report interval to %d minutes).\n" msgstr "" #. each entry looks like Label #: auth-globalprotect.c:505 #, c-format msgid "%d gateway servers available:\n" msgstr "" #: auth-globalprotect.c:526 #, c-format msgid " %s (%s)\n" msgstr " %s (%s)\n" #: auth-globalprotect.c:532 msgid "GlobalProtect portal configuration lists no gateway servers.\n" msgstr "" #: auth-globalprotect.c:620 auth-juniper.c:583 auth.c:709 fortinet.c:176 msgid "Failed to generate OTP tokencode; disabling token\n" msgstr "" #: auth-globalprotect.c:724 msgid "Server is neither a GlobalProtect portal nor a gateway.\n" msgstr "Palvelin ei ole GlobalProtect-portaali tai -yhdyskäytävä.\n" #: auth-html.c:117 #, c-format msgid "Ignoring unknown form submit item '%s'\n" msgstr "" #: auth-html.c:128 #, c-format msgid "Ignoring unknown form input type '%s'\n" msgstr "" #: auth-html.c:138 #, c-format msgid "Discarding duplicate option '%s'\n" msgstr "" #: auth-html.c:216 auth.c:438 #, c-format msgid "Cannot handle form method='%s', action='%s'\n" msgstr "" #: auth-html.c:278 #, c-format msgid "Unknown textarea field: '%s'\n" msgstr "" #: auth-juniper.c:107 msgid "Failed to allocate memory for communication with TNCC\n" msgstr "" #: auth-juniper.c:112 msgid "Failed to send command to TNCC\n" msgstr "" #: auth-juniper.c:174 msgid "TNCC support not implemented yet on Windows\n" msgstr "" #: auth-juniper.c:188 msgid "No DSPREAUTH cookie; not attempting TNCC\n" msgstr "" #: auth-juniper.c:193 #, c-format msgid "Trying to run TNCC/Host Checker Trojan script '%s'.\n" msgstr "" #: auth-juniper.c:242 #, c-format msgid "Failed to exec TNCC script %s: %s\n" msgstr "" #: auth-juniper.c:259 msgid "Sent start; waiting for response from TNCC\n" msgstr "" #: auth-juniper.c:266 msgid "Failed to read response from TNCC\n" msgstr "" #: auth-juniper.c:273 #, c-format msgid "Received unsuccessful %s response from TNCC\n" msgstr "" #: auth-juniper.c:279 msgid "TNCC response 200 OK\n" msgstr "" #: auth-juniper.c:286 #, c-format msgid "Second line of TNCC response: '%s'\n" msgstr "" #: auth-juniper.c:295 #, c-format msgid "Got new DSPREAUTH cookie from TNCC: %s\n" msgstr "" #: auth-juniper.c:308 #, c-format msgid "Got reauth interval from TNCC: %d seconds\n" msgstr "" #: auth-juniper.c:321 #, c-format msgid "Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n" msgstr "" #: auth-juniper.c:327 msgid "Too many non-empty lines from TNCC after DSPREAUTH cookie\n" msgstr "" #: auth-juniper.c:499 f5.c:155 msgid "Failed to parse HTML document\n" msgstr "" #: auth-juniper.c:516 msgid "Failed to find or parse web form in login page\n" msgstr "Kirjautumissivulta ei löydetty tai ei voitu jäsentää verkkolomaketta\n" #: auth-juniper.c:526 msgid "Encountered form with no 'name' or 'id'\n" msgstr "" #: auth-juniper.c:555 #, c-format msgid "Form action (%s) likely indicates that TNCC/Host Checker failed.\n" msgstr "" #: auth-juniper.c:561 #, c-format msgid "Unknown form (name '%s', id '%s')\n" msgstr "" #: auth-juniper.c:564 f5.c:175 #, c-format msgid "Dumping unknown HTML form:\n" msgstr "" #: auth.c:105 msgid "Form choice has no name\n" msgstr "" #: auth.c:188 #, c-format msgid "name %s not input\n" msgstr "" #: auth.c:195 msgid "No input type in form\n" msgstr "" #: auth.c:207 msgid "No input name in form\n" msgstr "" #: auth.c:237 #, c-format msgid "Unknown input type %s in form\n" msgstr "" #: auth.c:570 gpst.c:187 msgid "Empty response from server\n" msgstr "Tyhjä vastaus palvelimelta\n" #: auth.c:581 gpst.c:262 msgid "Failed to parse server response\n" msgstr "Palvelimen vastauksen jäsentäminen epäonnistui\n" #: auth.c:583 f5.c:257 f5.c:299 f5.c:342 f5.c:487 fortinet.c:351 fortinet.c:576 #, c-format msgid "Response was:%s\n" msgstr "Vastaus oli:%s\n" #: auth.c:605 msgid "Received when not expected.\n" msgstr "" #: auth.c:633 msgid "XML response has no \"auth\" node\n" msgstr "" #: auth.c:666 msgid "Asked for password but '--no-passwd' set\n" msgstr "Kysyttiin salasanaa, mutta valitsin '--no-passwd' asetettu\n" #: auth.c:692 msgid "" "Client certificate missing or incorrect (Certificate Validation Failure)" msgstr "" #: auth.c:958 msgid "Not downloading XML profile because SHA1 already matches\n" msgstr "" #: auth.c:964 cstp.c:329 http.c:886 #, c-format msgid "Failed to open HTTPS connection to %s\n" msgstr "HTTPS-yhteyden muodostus kohteeseen %s epäonnistui\n" #: auth.c:985 msgid "Failed to send GET request for new config\n" msgstr "" #: auth.c:1009 msgid "Downloaded config file did not match intended SHA1\n" msgstr "" #: auth.c:1014 msgid "Downloaded new XML profile\n" msgstr "Ladattu uusi XML-profiili\n" #: auth.c:1025 auth.c:1077 msgid "" "Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet " "implemented.\n" msgstr "" #: auth.c:1036 mainloop.c:140 #, c-format msgid "Failed to set gid %ld: %s\n" msgstr "" #: auth.c:1043 mainloop.c:147 #, c-format msgid "Failed to set groups to %ld: %s\n" msgstr "" #: auth.c:1050 mainloop.c:154 #, c-format msgid "Failed to set uid %ld: %s\n" msgstr "" #: auth.c:1057 #, c-format msgid "Invalid user uid=%ld: %s\n" msgstr "" #: auth.c:1064 #, c-format msgid "Failed to change to CSD home directory '%s': %s\n" msgstr "" #: auth.c:1086 msgid "" "Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n" msgstr "" #: auth.c:1093 msgid "" "Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish " "to enable it.\n" msgstr "" #: auth.c:1122 #, c-format msgid "Temporary directory '%s' is not writable: %s\n" msgstr "" #: auth.c:1130 #, c-format msgid "Failed to open temporary CSD script file: %s\n" msgstr "" #: auth.c:1139 #, c-format msgid "Failed to write temporary CSD script file: %s\n" msgstr "" #: auth.c:1148 #, c-format msgid "Trying to run CSD Trojan script '%s'.\n" msgstr "" #: auth.c:1160 #, c-format msgid "CSD script '%s' exited abnormally\n" msgstr "" #: auth.c:1166 #, c-format msgid "CSD script '%s' returned non-zero status: %d\n" msgstr "" #: auth.c:1171 msgid "" "Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n" msgstr "" #: auth.c:1175 #, c-format msgid "CSD script '%s' completed successfully.\n" msgstr "" #: auth.c:1203 #, c-format msgid "" "Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n" msgstr "" #: auth.c:1263 #, c-format msgid "Failed to exec CSD script %s\n" msgstr "" #: auth.c:1283 msgid "Unknown response from server\n" msgstr "Tuntematon vastaus palvelimelta\n" #: auth.c:1404 msgid "Server requested SSL client certificate after one was provided\n" msgstr "" #: auth.c:1408 msgid "Server requested SSL client certificate; none was configured\n" msgstr "" #: auth.c:1424 msgid "XML POST enabled\n" msgstr "" #: auth.c:1448 msgid "Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n" msgstr "" #: auth.c:1456 #, c-format msgid "Fetched CSD stub for %s platform (size is %d bytes).\n" msgstr "" #: auth.c:1476 #, c-format msgid "Refreshing %s after 1 second...\n" msgstr "" #: compat.c:250 #, c-format msgid "(error 0x%lx)" msgstr "(virhe 0x%lx)" #: compat.c:253 msgid "(Error while describing error!)" msgstr "" #: compat.c:276 #, c-format msgid "ERROR: Cannot initialize sockets\n" msgstr "" #: cstp.c:113 mtucalc.c:57 #, c-format msgid "TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n" msgstr "" #: cstp.c:135 mtucalc.c:76 #, c-format msgid "TCP_MAXSEG %d\n" msgstr "TCP_MAXSEG %d\n" #: cstp.c:273 msgid "" "CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n" msgstr "" #: cstp.c:306 msgid "Error creating HTTPS CONNECT request\n" msgstr "Virhe luotaessa HTTPS CONNECT -pyyntöä\n" #: cstp.c:322 msgid "Error fetching HTTPS response\n" msgstr "Virhe noutaessa HTTPS-vastausta\n" #: cstp.c:349 #, c-format msgid "VPN service unavailable; reason: %s\n" msgstr "VPN-palvelu ei ole käytettävissä; syy: %s\n" #: cstp.c:354 #, c-format msgid "Got inappropriate HTTP CONNECT response: %s\n" msgstr "" #: cstp.c:361 #, c-format msgid "Got CONNECT response: %s\n" msgstr "Saatiin CONNECT-vastaus: %s\n" #: cstp.c:397 cstp.c:406 msgid "No memory for options\n" msgstr "" #: cstp.c:416 http.c:313 msgid "" msgstr "" #: cstp.c:435 #, c-format msgid "X-DTLS-Session-ID not 64 characters; is: \"%s\"\n" msgstr "" #: cstp.c:453 #, c-format msgid "X-DTLS-Session-ID is invalid; is: \"%s\"\n" msgstr "" #: cstp.c:472 #, c-format msgid "Unknown DTLS-Content-Encoding %s\n" msgstr "" #: cstp.c:547 #, c-format msgid "Unknown CSTP-Content-Encoding %s\n" msgstr "" #: cstp.c:624 msgid "No MTU received. Aborting\n" msgstr "" #: cstp.c:645 #, c-format msgid "CSTP connected. DPD %d, Keepalive %d\n" msgstr "" #: cstp.c:707 msgid "Compression setup failed\n" msgstr "" #: cstp.c:724 msgid "Allocation of deflate buffer failed\n" msgstr "" #: cstp.c:786 msgid "inflate failed\n" msgstr "" #: cstp.c:809 #, c-format msgid "LZS decompression failed: %s\n" msgstr "" #: cstp.c:822 msgid "LZ4 decompression failed\n" msgstr "" #: cstp.c:829 #, c-format msgid "Unknown compression type %d\n" msgstr "" #: cstp.c:834 #, c-format msgid "Received %s compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:854 #, c-format msgid "deflate failed %d\n" msgstr "" #: cstp.c:951 #, c-format msgid "Unexpected packet length. SSL_read returned %d but packet is\n" msgstr "" #: cstp.c:965 msgid "Got CSTP DPD request\n" msgstr "" #: cstp.c:971 msgid "Got CSTP DPD response\n" msgstr "" #: cstp.c:976 msgid "Got CSTP Keepalive\n" msgstr "" #: cstp.c:981 oncp.c:958 #, c-format msgid "Received uncompressed data packet of %d bytes\n" msgstr "" #: cstp.c:998 #, c-format msgid "Received server disconnect: %02x '%s'\n" msgstr "" #: cstp.c:1001 msgid "Received server disconnect\n" msgstr "" #: cstp.c:1009 msgid "Compressed packet received in !deflate mode\n" msgstr "" #: cstp.c:1018 msgid "received server terminate packet\n" msgstr "" #: cstp.c:1025 #, c-format msgid "Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n" msgstr "Tuntematon paketti %02x %02x %02x %02x %02x %02x %02x %02x\n" #: cstp.c:1114 oncp.c:1136 pulse.c:2879 msgid "CSTP Dead Peer Detection detected dead peer!\n" msgstr "" #: cstp.c:1118 gpst.c:1279 oncp.c:1053 oncp.c:1140 ppp.c:1406 pulse.c:2804 #: pulse.c:2884 msgid "Reconnect failed\n" msgstr "Uudelleenyhdistys epäonnistui\n" #: cstp.c:1134 oncp.c:1156 pulse.c:2900 msgid "Send CSTP DPD\n" msgstr "" #: cstp.c:1146 oncp.c:1167 pulse.c:2912 msgid "Send CSTP Keepalive\n" msgstr "" #: cstp.c:1171 #, c-format msgid "Sending compressed data packet of %d bytes (was %d)\n" msgstr "" #: cstp.c:1222 #, c-format msgid "Send BYE packet: %s\n" msgstr "Lähetä BYE-paketti: %s\n" #: cstp.c:1229 msgid "Short write writing BYE packet\n" msgstr "" #: digest.c:252 msgid "Attempting Digest authentication to proxy\n" msgstr "" #: digest.c:255 #, c-format msgid "Attempting Digest authentication to server '%s'\n" msgstr "" #: dtls.c:105 msgid "DTLS connection attempted with an existing fd\n" msgstr "" #: dtls.c:111 dtls.c:186 msgid "No DTLS address\n" msgstr "Ei DTLS-osoitetta\n" #. We probably didn't offer it any ciphers it liked #: dtls.c:118 msgid "Server offered no DTLS cipher option\n" msgstr "" #. XXX: Theoretically, SOCKS5 proxies can do UDP too #: dtls.c:125 msgid "No DTLS when connected via proxy\n" msgstr "Ei DTLS:ää välityspalvelimen kautta yhdistettäessä\n" #: dtls.c:197 #, c-format msgid "DTLS initialised. DPD %d, Keepalive %d\n" msgstr "" #: dtls.c:217 tun.c:550 #, c-format msgid "Unknown packet (len %d) received: %02x %02x %02x %02x...\n" msgstr "" #: dtls.c:224 #, c-format msgid "TOS this: %d, TOS last: %d\n" msgstr "" #: dtls.c:228 msgid "UDP setsockopt" msgstr "" #: dtls.c:308 msgid "Got DTLS DPD request\n" msgstr "" #: dtls.c:314 msgid "Failed to send DPD response. Expect disconnect\n" msgstr "" #: dtls.c:318 msgid "Got DTLS DPD response\n" msgstr "" #: dtls.c:322 msgid "Got DTLS Keepalive\n" msgstr "" #: dtls.c:328 msgid "Compressed DTLS packet received when compression not enabled\n" msgstr "" #: dtls.c:336 #, c-format msgid "Unknown DTLS packet type %02x, len %d\n" msgstr "" #: dtls.c:398 msgid "Send DTLS Keepalive\n" msgstr "" #: dtls.c:403 msgid "Failed to send keepalive request. Expect disconnect\n" msgstr "" #: dtls.c:500 #, c-format msgid "Initiating MTU detection (min=%d, max=%d)\n" msgstr "" #: dtls.c:534 #, c-format msgid "Sending MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:538 #, c-format msgid "Failed to send DPD request (%d %d)\n" msgstr "" #: dtls.c:561 msgid "Too long time in MTU detect loop; assuming negotiated MTU.\n" msgstr "" #: dtls.c:565 #, c-format msgid "Too long time in MTU detect loop; MTU set to %d.\n" msgstr "" #: dtls.c:582 #, c-format msgid "Received unexpected packet (%.2x) in MTU detection; skipping.\n" msgstr "" #: dtls.c:589 #, c-format msgid "No response to size %u after %d tries; declare MTU is %u\n" msgstr "" #: dtls.c:596 #, c-format msgid "Failed to recv DPD request (%d)\n" msgstr "" #: dtls.c:600 #, c-format msgid "Received MTU DPD probe (%u bytes)\n" msgstr "" #: dtls.c:653 #, c-format msgid "Detected MTU of %d bytes (was %d)\n" msgstr "" #: dtls.c:656 #, c-format msgid "No change in MTU after detection (was %d)\n" msgstr "" #: esp-seqno.c:61 #, c-format msgid "Accepting expected ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:91 #, c-format msgid "" "Accepting later-than-expected ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:104 #, c-format msgid "Discarding ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:109 #, c-format msgid "Tolerating ancient ESP packet with seq %u (expected %)\n" msgstr "" #: esp-seqno.c:118 #, c-format msgid "Discarding replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:123 #, c-format msgid "Tolerating replayed ESP packet with seq %u\n" msgstr "" #: esp-seqno.c:136 #, c-format msgid "Accepting out-of-order ESP packet with seq %u (expected %)\n" msgstr "" #: esp.c:68 #, c-format msgid "Parameters for %s ESP: SPI 0x%08x\n" msgstr "" #: esp.c:71 #, c-format msgid "ESP encryption type %s key 0x%s\n" msgstr "" #: esp.c:74 #, c-format msgid "ESP authentication type %s key 0x%s\n" msgstr "" #: esp.c:93 msgid "incoming" msgstr "saapuva" #: esp.c:94 msgid "outgoing" msgstr "lähtevä" #: esp.c:96 esp.c:150 msgid "Send ESP probes\n" msgstr "" #: esp.c:190 #, c-format msgid "Received ESP packet from old SPI 0x%x, seq %u\n" msgstr "" #: esp.c:196 #, c-format msgid "Received ESP packet with invalid SPI 0x%08x\n" msgstr "" #: esp.c:207 #, c-format msgid "Received ESP Legacy IP packet of %d bytes\n" msgstr "" #: esp.c:210 #, c-format msgid "Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n" msgstr "" #: esp.c:213 #, c-format msgid "Received ESP IPv6 packet of %d bytes\n" msgstr "" #: esp.c:217 #, c-format msgid "Received ESP packet of %d bytes with unrecognised payload type %02x\n" msgstr "" #: esp.c:224 #, c-format msgid "Invalid padding length %02x in ESP\n" msgstr "" #: esp.c:236 msgid "Invalid padding bytes in ESP\n" msgstr "" #: esp.c:245 msgid "ESP session established with server\n" msgstr "" #: esp.c:256 msgid "Failed to allocate memory to decrypt ESP packet\n" msgstr "" #: esp.c:262 msgid "LZO decompression of ESP packet failed\n" msgstr "" #: esp.c:268 #, c-format msgid "LZO decompressed %d bytes into %d\n" msgstr "" #: esp.c:282 msgid "Rekey not implemented for ESP\n" msgstr "" #: esp.c:286 msgid "ESP detected dead peer\n" msgstr "" #: esp.c:294 msgid "Send ESP probes for DPD\n" msgstr "" #: esp.c:301 msgid "Keepalive not implemented for ESP\n" msgstr "" #: esp.c:374 #, c-format msgid "Requeueing failed ESP send: %s\n" msgstr "" #: esp.c:381 #, c-format msgid "Failed to send ESP packet: %s\n" msgstr "" #: esp.c:387 #, c-format msgid "Sent ESP IPv%d packet of %d bytes\n" msgstr "" #: esp.c:456 msgid "Failed to generate random keys for ESP\n" msgstr "" #: esp.c:463 msgid "Failed to generate initial IV for ESP\n" msgstr "" #: f5.c:166 msgid "" "WARNING: no HTML login form found; assuming username and password fields\n" msgstr "" #: f5.c:172 #, c-format msgid "Unknown form ID '%s' (expected 'auth_form')\n" msgstr "" #: f5.c:255 msgid "Failed to parse F5 profile response\n" msgstr "" #: f5.c:297 msgid "Failed to find VPN profile parameters\n" msgstr "" #: f5.c:340 msgid "Failed to parse F5 options response\n" msgstr "" #: f5.c:374 #, c-format msgid "Idle timeout is %d minutes\n" msgstr "" #: f5.c:384 msgid "Got default routes\n" msgstr "" #: f5.c:387 #, c-format msgid "Got SplitTunneling0 value of %d\n" msgstr "" #: f5.c:396 #, c-format msgid "Got DNS server %s\n" msgstr "" #: f5.c:403 #, c-format msgid "Got WINS/NBNS server %s\n" msgstr "" #: f5.c:410 fortinet.c:427 fortinet.c:495 #, c-format msgid "Got search domain %s\n" msgstr "" #: f5.c:440 #, c-format msgid "Got split exclude route %s\n" msgstr "" #: f5.c:444 #, c-format msgid "Got split include route %s\n" msgstr "" #. XX: DTLS always uses same port as TLS? #: f5.c:452 fortinet.c:367 #, c-format msgid "DTLS is enabled on port %d\n" msgstr "" #: f5.c:464 msgid "" "WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n" msgstr "" #: f5.c:485 fortinet.c:574 msgid "Failed to find VPN options\n" msgstr "" #: f5.c:508 fortinet.c:423 #, c-format msgid "Got Legacy IP address %s\n" msgstr "" #: f5.c:513 fortinet.c:484 fortinet.c:489 #, c-format msgid "Got IPv6 address %s\n" msgstr "" #: f5.c:563 #, c-format msgid "Got profile parameters '%s'\n" msgstr "" #: f5.c:583 #, c-format msgid "Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n" msgstr "" #: f5.c:612 msgid "Error establishing F5 connection\n" msgstr "" #: fortinet.c:127 #, c-format msgid "Got login realm '%s'\n" msgstr "" #: fortinet.c:349 msgid "Failed to parse Fortinet config XML\n" msgstr "" #: fortinet.c:378 gpst.c:389 #, c-format msgid "Idle timeout is %d minutes.\n" msgstr "" #: fortinet.c:398 #, c-format msgid "" "Server reports that reconnect-after-drop is allowed within %d seconds, %s\n" msgstr "" #: fortinet.c:400 msgid "but only from the same source IP address" msgstr "" #: fortinet.c:400 msgid "even if source IP address changes" msgstr "" #: fortinet.c:403 msgid "" "Server reports that reconnect-after-drop is not allowed. OpenConnect will " "not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n" msgstr "" #: fortinet.c:418 #, c-format msgid "Reported platform is %s\n" msgstr "" #: fortinet.c:431 fortinet.c:499 #, c-format msgid "Got IPv%d DNS server %s\n" msgstr "" #: fortinet.c:437 fortinet.c:505 #, c-format msgid "WARNING: Got split-DNS domains %s (not yet implemented)\n" msgstr "" #: fortinet.c:442 fortinet.c:510 #, c-format msgid "WARNING: Got split-DNS server %s (not yet implemented)\n" msgstr "" #: fortinet.c:464 fortinet.c:534 #, c-format msgid "Got IPv%d route %s\n" msgstr "" #: fortinet.c:550 msgid "" "WARNING: Fortinet server does not specifically enable or disable " "reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n" msgstr "" #: fortinet.c:557 msgid "" "Server did not send . " "OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection " "DOES,\n" "work please report to \n" msgstr "" #: fortinet.c:616 msgid "No cookie named SVPNCOOKIE.\n" msgstr "" #: fortinet.c:641 msgid "" "Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n" msgstr "" #: fortinet.c:680 msgid "Error establishing Fortinet connection\n" msgstr "" #: fortinet.c:781 msgid "Did not receive expected svrhello response.\n" msgstr "" #: fortinet.c:792 #, c-format msgid "svrhello status was \"%.*s\" rather than \"ok\"\n" msgstr "" #: gnutls-dtls.c:194 msgid "Deferring DTLS resumption until CSTP generates a PSK\n" msgstr "" #: gnutls-dtls.c:202 msgid "Failed to generate DTLS priority string\n" msgstr "" #: gnutls-dtls.c:210 gnutls-dtls.c:304 gnutls-dtls.c:356 #, c-format msgid "Failed to set DTLS priority: '%s': %s\n" msgstr "" #: gnutls-dtls.c:231 #, c-format msgid "Failed to allocate credentials: %s\n" msgstr "" #: gnutls-dtls.c:244 #, c-format msgid "Failed to generate DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:258 #, c-format msgid "Failed to set DTLS key: %s\n" msgstr "" #: gnutls-dtls.c:266 #, c-format msgid "Failed to set DTLS PSK credentials: %s\n" msgstr "" #: gnutls-dtls.c:294 #, c-format msgid "Unknown DTLS parameters for requested CipherSuite '%s'\n" msgstr "" #: gnutls-dtls.c:320 #, c-format msgid "Failed to set DTLS session parameters: %s\n" msgstr "" #: gnutls-dtls.c:382 #, c-format msgid "GnuTLS used %d ClientHello random bytes; this should never happen\n" msgstr "" #: gnutls-dtls.c:400 msgid "GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n" msgstr "" #: gnutls-dtls.c:416 #, c-format msgid "Failed to initialize DTLS: %s\n" msgstr "" #: gnutls-dtls.c:484 openssl-dtls.c:645 #, c-format msgid "Peer MTU %d too small to allow DTLS\n" msgstr "" #: gnutls-dtls.c:493 openssl-dtls.c:656 #, c-format msgid "DTLS MTU reduced to %d\n" msgstr "" #: gnutls-dtls.c:504 openssl-dtls.c:665 msgid "DTLS session resume failed; possible MITM attack. Disabling DTLS.\n" msgstr "" #: gnutls-dtls.c:517 #, c-format msgid "Failed to set DTLS MTU: %s\n" msgstr "" #: gnutls-dtls.c:528 #, c-format msgid "Established DTLS connection (using GnuTLS). Ciphersuite %s.\n" msgstr "" #: gnutls-dtls.c:534 openssl-dtls.c:683 #, c-format msgid "DTLS connection compression using %s.\n" msgstr "" #: gnutls-dtls.c:559 openssl-dtls.c:779 openssl-dtls.c:783 msgid "DTLS handshake timed out\n" msgstr "" #: gnutls-dtls.c:562 #, c-format msgid "DTLS handshake failed: %s\n" msgstr "" #: gnutls-dtls.c:566 msgid "(Is a firewall preventing you from sending UDP packets?)\n" msgstr "(Estääkö palomuuri lähettämästä UDP-paketteja?)\n" #: gnutls-esp.c:57 #, c-format msgid "Failed to initialise ESP cipher: %s\n" msgstr "" #: gnutls-esp.c:67 #, c-format msgid "Failed to initialize ESP HMAC: %s\n" msgstr "" #: gnutls-esp.c:129 gnutls-esp.c:172 #, c-format msgid "Failed to calculate HMAC for ESP packet: %s\n" msgstr "" #: gnutls-esp.c:136 openssl-esp.c:166 msgid "Received ESP packet with invalid HMAC\n" msgstr "" #: gnutls-esp.c:148 #, c-format msgid "Decrypting ESP packet failed: %s\n" msgstr "" #: gnutls-esp.c:164 #, c-format msgid "Failed to encrypt ESP packet: %s\n" msgstr "" #: gnutls.c:116 gnutls.c:267 gnutls.c:2430 msgid "Failed select() for TLS" msgstr "" #: gnutls.c:120 openssl.c:175 msgid "TLS/DTLS write cancelled\n" msgstr "" #: gnutls.c:124 #, c-format msgid "Failed to write to TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:170 msgid "Failed select() for TLS/DTLS" msgstr "" #: gnutls.c:175 gnutls.c:271 openssl.c:225 openssl.c:292 msgid "TLS/DTLS read cancelled\n" msgstr "" #. We've seen this with HTTP 1.0 responses followed by abrupt #. socket closure and no clean SSL shutdown. #. https://bugs.launchpad.net/bugs/1225276 #: gnutls.c:188 msgid "TLS/DTLS socket closed uncleanly\n" msgstr "" #: gnutls.c:198 gnutls.c:280 #, c-format msgid "Failed to read from TLS/DTLS socket: %s\n" msgstr "" #: gnutls.c:297 openssl.c:309 #, c-format msgid "Attempted to read from non-existent %s session\n" msgstr "" #: gnutls.c:309 #, c-format msgid "Read error on %s session: %s\n" msgstr "" #: gnutls.c:321 openssl.c:334 #, c-format msgid "Attempted to write to non-existent %s session\n" msgstr "" #: gnutls.c:355 #, c-format msgid "Write error on %s session: %s\n" msgstr "" #: gnutls.c:369 msgid "Could not extract expiration time of certificate\n" msgstr "" #: gnutls.c:374 openssl.c:1671 msgid "Client certificate has expired at" msgstr "" #: gnutls.c:375 openssl.c:1672 msgid "Secondary client certificate has expired at" msgstr "" #: gnutls.c:377 openssl.c:1677 msgid "Client certificate expires soon at" msgstr "" #: gnutls.c:378 openssl.c:1678 msgid "Secondary client certificate expires soon at" msgstr "" #: gnutls.c:427 openssl.c:863 #, c-format msgid "Failed to load item '%s' from keystore: %s\n" msgstr "" #: gnutls.c:440 #, c-format msgid "Failed to open key/certificate file %s: %s\n" msgstr "" #: gnutls.c:447 #, c-format msgid "Failed to stat key/certificate file %s: %s\n" msgstr "" #: gnutls.c:456 msgid "Failed to allocate certificate buffer\n" msgstr "" #: gnutls.c:464 #, c-format msgid "Failed to read certificate into memory: %s\n" msgstr "" #: gnutls.c:496 #, c-format msgid "Failed to setup PKCS#12 data structure: %s\n" msgstr "" #: gnutls.c:519 openssl.c:621 msgid "Failed to decrypt PKCS#12 certificate file\n" msgstr "" #: gnutls.c:526 openssl.c:627 msgid "Enter PKCS#12 pass phrase:" msgstr "" #: gnutls.c:527 openssl.c:628 msgid "Enter secondary PKCS#12 pass phrase:" msgstr "" #: gnutls.c:550 #, c-format msgid "Failed to process PKCS#12 file: %s\n" msgstr "" #: gnutls.c:562 #, c-format msgid "Failed to load PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:563 #, c-format msgid "Failed to load secondary PKCS#12 certificate: %s\n" msgstr "" #: gnutls.c:636 #, c-format msgid "Could not initialise MD5 hash: %s\n" msgstr "" #: gnutls.c:646 #, c-format msgid "MD5 hash error: %s\n" msgstr "" #: gnutls.c:704 msgid "Missing DEK-Info: header from OpenSSL encrypted key\n" msgstr "" #: gnutls.c:711 msgid "Cannot determine PEM encryption type\n" msgstr "" #: gnutls.c:724 #, c-format msgid "Unsupported PEM encryption type: %s\n" msgstr "" #: gnutls.c:749 gnutls.c:762 msgid "Invalid salt in encrypted PEM file\n" msgstr "" #: gnutls.c:786 #, c-format msgid "Error base64-decoding encrypted PEM file: %s\n" msgstr "" #: gnutls.c:794 msgid "Encrypted PEM file too short\n" msgstr "" #: gnutls.c:822 #, c-format msgid "Failed to initialise cipher for decrypting PEM file: %s\n" msgstr "" #: gnutls.c:833 #, c-format msgid "Failed to decrypt PEM key: %s\n" msgstr "" #: gnutls.c:885 msgid "Decrypting PEM key failed\n" msgstr "" #: gnutls.c:892 gnutls.c:1465 openssl.c:502 msgid "Enter PEM pass phrase:" msgstr "Anna PEM-tunnuslause:" #: gnutls.c:893 openssl.c:503 msgid "Enter secondary PEM pass phrase:" msgstr "" #: gnutls.c:1024 msgid "This binary built without system key support\n" msgstr "" #: gnutls.c:1031 msgid "This binary built without PKCS#11 support\n" msgstr "" #: gnutls.c:1075 openssl-pkcs11.c:419 #, c-format msgid "Using PKCS#11 certificate %s\n" msgstr "Käytetään PKCS#11-varmennetta %s\n" #: gnutls.c:1076 #, c-format msgid "Using system certificate %s\n" msgstr "Käytetään järjestelmävarmennetta %s\n" #: gnutls.c:1094 #, c-format msgid "Error loading certificate from PKCS#11: %s\n" msgstr "" #: gnutls.c:1095 #, c-format msgid "Error loading system certificate: %s\n" msgstr "" #: gnutls.c:1106 openssl.c:925 #, c-format msgid "Using certificate file %s\n" msgstr "Käytetään varmennetiedostoa %s\n" #: gnutls.c:1107 openssl.c:926 #, c-format msgid "Using secondary certificate file %s\n" msgstr "" #: gnutls.c:1130 msgid "PKCS#11 file contained no certificate\n" msgstr "" #: gnutls.c:1156 msgid "No certificate found in file" msgstr "Varmennetta ei löytynyt tiedostosta" #: gnutls.c:1161 #, c-format msgid "Loading certificate failed: %s\n" msgstr "Varmenteen lataaminen epäonnistui: %s\n" #: gnutls.c:1162 #, c-format msgid "Loading secondary certificate failed: %s\n" msgstr "" #: gnutls.c:1177 #, c-format msgid "Using system key %s\n" msgstr "" #: gnutls.c:1178 #, c-format msgid "Using secondary system key %s\n" msgstr "" #: gnutls.c:1184 gnutls.c:1331 #, c-format msgid "Error initialising private key structure: %s\n" msgstr "" #: gnutls.c:1195 #, c-format msgid "Error importing system key %s: %s\n" msgstr "" #: gnutls.c:1206 gnutls.c:1279 gnutls.c:1307 #, c-format msgid "Trying PKCS#11 key URL %s\n" msgstr "" #: gnutls.c:1211 #, c-format msgid "Error initialising PKCS#11 key structure: %s\n" msgstr "" #: gnutls.c:1319 #, c-format msgid "Error importing PKCS#11 URL %s: %s\n" msgstr "" #: gnutls.c:1326 openssl-pkcs11.c:655 #, c-format msgid "Using PKCS#11 key %s\n" msgstr "Käytetään PKCS#11-avainta %s\n" #: gnutls.c:1341 #, c-format msgid "Error importing PKCS#11 key into private key structure: %s\n" msgstr "" #: gnutls.c:1359 #, c-format msgid "Using private key file %s\n" msgstr "Käytetään yksityisen avaimen tiedostoa %s\n" #: gnutls.c:1370 openssl.c:747 msgid "This version of OpenConnect was built without TPM support\n" msgstr "Tämä versio OpenConnectista koostettiin ilman TPM-tukea\n" #: gnutls.c:1386 msgid "This version of OpenConnect was built without TPM2 support\n" msgstr "Tämä versio OpenConnectista koostettiin ilman TPM2-tukea\n" #: gnutls.c:1407 msgid "Failed to interpret PEM file\n" msgstr "" #: gnutls.c:1426 #, c-format msgid "Failed to load PKCS#1 private key: %s\n" msgstr "" #: gnutls.c:1439 gnutls.c:1453 #, c-format msgid "Failed to load private key as PKCS#8: %s\n" msgstr "" #: gnutls.c:1461 gnutls.c:1494 openssl.c:1075 openssl.c:1090 msgid "Failed to decrypt PKCS#8 certificate file\n" msgstr "" #: gnutls.c:1486 #, c-format msgid "Failed to determine type of private key %s\n" msgstr "" #: gnutls.c:1498 openssl.c:1085 msgid "Enter PKCS#8 pass phrase:" msgstr "Anna PKCS#8-tunnuslause:" #: gnutls.c:1514 #, c-format msgid "Failed to get key ID: %s\n" msgstr "" #: gnutls.c:1568 #, c-format msgid "Error signing test data with private key: %s\n" msgstr "" #: gnutls.c:1584 #, c-format msgid "Error validating signature against certificate: %s\n" msgstr "" #: gnutls.c:1612 msgid "No SSL certificate found to match private key\n" msgstr "" #: gnutls.c:1613 msgid "No secondary certificate found to match private key\n" msgstr "" #: gnutls.c:1625 msgid "got_key conditions not met!\n" msgstr "" #: gnutls.c:1640 #, c-format msgid "Error creating an abstract privkey from /x509_privkey: %s\n" msgstr "" #: gnutls.c:1654 openssl.c:652 openssl.c:807 #, c-format msgid "Using client certificate '%s'\n" msgstr "Käytetään asiakasvarmennetta '%s'\n" #: gnutls.c:1655 openssl.c:653 openssl.c:808 #, c-format msgid "Using secondary certificate '%s'\n" msgstr "" #: gnutls.c:1672 msgid "Failed to allocate memory for certificate\n" msgstr "" #: gnutls.c:1718 msgid "Got no issuer from PKCS#11\n" msgstr "" #: gnutls.c:1723 #, c-format msgid "Got next CA '%s' from PKCS#11\n" msgstr "" #: gnutls.c:1747 msgid "Failed to allocate memory for supporting certificates\n" msgstr "" #: gnutls.c:1761 #, c-format msgid "Adding supporting CA '%s'\n" msgstr "" #: gnutls.c:1823 #, c-format msgid "Importing X509 certificate failed: %s\n" msgstr "" #: gnutls.c:1833 #, c-format msgid "Setting PKCS#11 certificate failed: %s\n" msgstr "" #: gnutls.c:1862 #, c-format msgid "Setting certificate revocation list failed: %s\n" msgstr "" #: gnutls.c:1882 msgid "Private key appears not to support RSA-PSS. Disabling TLSv1.3\n" msgstr "" #: gnutls.c:1893 #, c-format msgid "Setting certificate failed: %s\n" msgstr "Varmenteen asettaminen epäonnistui: %s\n" #: gnutls.c:2047 msgid "Server presented no certificate\n" msgstr "Palvelin ei esittänyt varmennetta\n" #: gnutls.c:2055 #, c-format msgid "Error comparing server's cert on rehandshake: %s\n" msgstr "" #: gnutls.c:2060 openssl.c:1592 msgid "Server presented different cert on rehandshake\n" msgstr "" #: gnutls.c:2065 openssl.c:1595 msgid "Server presented identical cert on rehandshake\n" msgstr "" #: gnutls.c:2071 msgid "Error initialising X509 cert structure\n" msgstr "" #: gnutls.c:2077 msgid "Error importing server's cert\n" msgstr "Virhe tuotaessa palvelimen varmennetta\n" #: gnutls.c:2086 msgid "Could not calculate hash of server's certificate\n" msgstr "" #: gnutls.c:2091 msgid "Error checking server cert status\n" msgstr "Virhe tarkistaessa palvelimen varmenteen tilaa\n" #: gnutls.c:2096 msgid "certificate revoked" msgstr "varmenne on kumottu" #: gnutls.c:2098 msgid "signer not found" msgstr "allekirjoittajaa ei löydy" #: gnutls.c:2100 msgid "signer not a CA certificate" msgstr "" #: gnutls.c:2102 msgid "insecure algorithm" msgstr "" #: gnutls.c:2104 msgid "certificate not yet activated" msgstr "varmennetta ei ole vielä aktivoitu" #: gnutls.c:2106 msgid "certificate expired" msgstr "varmenne on vanhentunut" #. If this is set and no other reason, it apparently means #. that signature verification failed. Not entirely sure #. why we don't just set a bit for that too. #: gnutls.c:2111 msgid "signature verification failed" msgstr "" #: gnutls.c:2160 openssl.c:1472 openssl.c:1628 msgid "certificate does not match hostname" msgstr "" #: gnutls.c:2165 openssl.c:1471 openssl.c:1634 #, c-format msgid "Server certificate verify failed: %s\n" msgstr "Palvelinvarmenteen varmistaminen epäonnistui: %s\n" #: gnutls.c:2231 msgid "Failed to allocate memory for cafile certs\n" msgstr "" #: gnutls.c:2252 #, c-format msgid "Failed to read certs from cafile: %s\n" msgstr "" #: gnutls.c:2268 #, c-format msgid "Failed to open CA file '%s': %s\n" msgstr "" #: gnutls.c:2281 openssl.c:1859 msgid "Loading certificate failed. Aborting.\n" msgstr "Varmenteen lataaminen epäonnistui. Lopetetaan.\n" #: gnutls.c:2362 msgid "Failed to construct GnuTLS priority string\n" msgstr "" #: gnutls.c:2374 #, c-format msgid "Failed to set GnuTLS priority string (\"%s\"): %s\n" msgstr "" #: gnutls.c:2386 openssl.c:1942 #, c-format msgid "SSL negotiation with %s\n" msgstr "" #: gnutls.c:2434 openssl.c:1968 msgid "SSL connection cancelled\n" msgstr "SSL-yhteys peruttu\n" #: gnutls.c:2441 #, c-format msgid "SSL connection failure: %s\n" msgstr "SSL-yhteys epäonnistui: %s\n" #: gnutls.c:2450 #, c-format msgid "GnuTLS non-fatal return during handshake: %s\n" msgstr "" #: gnutls.c:2459 openssl.c:1990 #, c-format msgid "Connected to HTTPS on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2462 #, c-format msgid "Renegotiated SSL on %s with ciphersuite %s\n" msgstr "" #: gnutls.c:2616 openssl-pkcs11.c:206 #, c-format msgid "PIN required for %s" msgstr "%s vaatii PIN-koodin" #: gnutls.c:2620 openssl-pkcs11.c:209 msgid "Wrong PIN" msgstr "Väärä PIN" #: gnutls.c:2623 msgid "This is the final try before locking!" msgstr "Tämä on viimeinen yritys ennen lukkiutumista!" #: gnutls.c:2625 msgid "Only a few tries left before locking!" msgstr "Vain muutama yritys jäljellä ennen lukkiutumista!" #: gnutls.c:2630 openssl-pkcs11.c:213 msgid "Enter PIN:" msgstr "Anna PIN:" #: gnutls.c:2716 openssl.c:2118 msgid "Unsupported OATH HMAC algorithm\n" msgstr "" #: gnutls.c:2725 #, c-format msgid "Failed to calculate OATH HMAC: %s\n" msgstr "" #: gnutls.c:2739 #, c-format msgid "%s %dms\n" msgstr "" #: gnutls.c:2780 #, c-format msgid "Could not set ciphersuites: %s\n" msgstr "" #: gnutls.c:2787 openssl.c:2233 msgid "Established EAP-TTLS session\n" msgstr "" #: gnutls_tpm.c:56 #, c-format msgid "TPM sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm.c:63 #, c-format msgid "Failed to create TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:70 #, c-format msgid "Failed to set value in TPM hash object: %s\n" msgstr "" #: gnutls_tpm.c:80 #, c-format msgid "TPM hash signature failed: %s\n" msgstr "" #: gnutls_tpm.c:102 #, c-format msgid "Error decoding TSS key blob: %s\n" msgstr "" #: gnutls_tpm.c:110 gnutls_tpm.c:121 gnutls_tpm.c:134 msgid "Error in TSS key blob\n" msgstr "" #: gnutls_tpm.c:141 #, c-format msgid "Failed to create TPM context: %s\n" msgstr "" #: gnutls_tpm.c:148 #, c-format msgid "Failed to connect TPM context: %s\n" msgstr "" #: gnutls_tpm.c:156 #, c-format msgid "Failed to load TPM SRK key: %s\n" msgstr "" #: gnutls_tpm.c:163 #, c-format msgid "Failed to load TPM SRK policy object: %s\n" msgstr "" #: gnutls_tpm.c:184 #, c-format msgid "Failed to set TPM PIN: %s\n" msgstr "" #: gnutls_tpm.c:200 #, c-format msgid "Failed to load TPM key blob: %s\n" msgstr "" #: gnutls_tpm.c:207 msgid "Enter TPM SRK PIN:" msgstr "" #: gnutls_tpm.c:228 #, c-format msgid "Failed to create key policy object: %s\n" msgstr "" #: gnutls_tpm.c:236 #, c-format msgid "Failed to assign policy to key: %s\n" msgstr "" #: gnutls_tpm.c:245 msgid "Enter TPM key PIN:" msgstr "" #: gnutls_tpm.c:246 msgid "Enter secondary key TPM PIN:" msgstr "" #: gnutls_tpm.c:257 #, c-format msgid "Failed to set key PIN: %s\n" msgstr "" #: gnutls_tpm2.c:95 #, c-format msgid "Unknown TPM2 EC digest size %d\n" msgstr "" #: gnutls_tpm2.c:151 gnutls_tpm2.c:191 #, c-format msgid "Not supporting EC sign algo %s\n" msgstr "" #: gnutls_tpm2.c:247 #, c-format msgid "Error decoding TSS2 key blob: %s\n" msgstr "" #: gnutls_tpm2.c:257 #, c-format msgid "Failed to create ASN.1 type for TPM2: %s\n" msgstr "" #: gnutls_tpm2.c:266 #, c-format msgid "Failed to decode TPM2 key ASN.1: %s\n" msgstr "" #: gnutls_tpm2.c:274 #, c-format msgid "Failed to parse TPM2 key type OID: %s\n" msgstr "" #: gnutls_tpm2.c:280 #, c-format msgid "TPM2 key has unknown type OID %s not %s\n" msgstr "" #: gnutls_tpm2.c:298 #, c-format msgid "Failed to parse TPM2 key parent: %s\n" msgstr "" #: gnutls_tpm2.c:319 msgid "Failed to parse TPM2 pubkey element\n" msgstr "" #: gnutls_tpm2.c:324 msgid "Failed to parse TPM2 privkey element\n" msgstr "" #: gnutls_tpm2.c:329 #, c-format msgid "Parsed TPM2 key with parent %x, emptyauth %d\n" msgstr "" #: gnutls_tpm2.c:433 #, c-format msgid "TPM2 digest too large: %d > %d\n" msgstr "" #: gnutls_tpm2.c:487 #, c-format msgid "PSS encoding failed; hash size %d too large for RSA key %d\n" msgstr "" #: gnutls_tpm2.c:622 #, c-format msgid "TPMv2 RSA sign called for unknown algorithm %s\n" msgstr "" #: gnutls_tpm2_esys.c:177 msgid "TPM2 password too long; truncating\n" msgstr "" #: gnutls_tpm2_esys.c:195 msgid "owner" msgstr "" #: gnutls_tpm2_esys.c:196 msgid "null" msgstr "" #: gnutls_tpm2_esys.c:197 msgid "endorsement" msgstr "" #: gnutls_tpm2_esys.c:198 msgid "platform" msgstr "" #: gnutls_tpm2_esys.c:202 #, c-format msgid "Creating primary key under %s hierarchy.\n" msgstr "" #: gnutls_tpm2_esys.c:210 gnutls_tpm2_ibm.c:266 #, c-format msgid "Enter TPM2 %s hierarchy password:" msgstr "" #: gnutls_tpm2_esys.c:218 gnutls_tpm2_esys.c:316 gnutls_tpm2_esys.c:392 #, c-format msgid "TPM2 Esys_TR_SetAuth failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:230 msgid "TPM2 Esys_CreatePrimary owner auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:235 #, c-format msgid "TPM2 Esys_CreatePrimary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:254 msgid "Establishing connection with TPM.\n" msgstr "" #: gnutls_tpm2_esys.c:259 #, c-format msgid "TPM2 Esys_Initialize failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:267 msgid "" "TPM2 was already started up thus false positive failing in tpm2tss log.\n" msgstr "" #: gnutls_tpm2_esys.c:270 #, c-format msgid "TPM2 Esys_Startup failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:283 #, c-format msgid "Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:307 gnutls_tpm2_ibm.c:285 msgid "Enter TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:308 gnutls_tpm2_ibm.c:286 msgid "Enter secondary TPM2 parent key password:" msgstr "" #: gnutls_tpm2_esys.c:322 #, c-format msgid "Loading TPM2 key blob, parent %x.\n" msgstr "" #: gnutls_tpm2_esys.c:330 msgid "TPM2 Esys_Load auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:336 #, c-format msgid "TPM2 Esys_Load failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:346 #, c-format msgid "TPM2 Esys_FlushContext for generated primary failed: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:380 gnutls_tpm2_ibm.c:376 gnutls_tpm2_ibm.c:476 msgid "Enter TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:381 gnutls_tpm2_ibm.c:377 msgid "Enter secondary TPM2 key password:" msgstr "" #: gnutls_tpm2_esys.c:414 #, c-format msgid "TPM2 RSA sign function called for %d bytes, algo %s\n" msgstr "" #: gnutls_tpm2_esys.c:434 msgid "TPM2 Esys_RSA_Decrypt auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:440 gnutls_tpm2_esys.c:530 #, c-format msgid "TPM2 failed to generate RSA signature: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:484 gnutls_tpm2_ibm.c:420 #, c-format msgid "TPM2 EC sign function called for %d bytes.\n" msgstr "" #: gnutls_tpm2_esys.c:504 gnutls_tpm2_ibm.c:445 #, c-format msgid "Unknown TPM2 EC digest size %d for algo 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:524 msgid "TPM2 Esys_Sign auth failed\n" msgstr "" #: gnutls_tpm2_esys.c:564 gnutls_tpm2_ibm.c:512 #, c-format msgid "Invalid TPM2 parent handle 0x%08x\n" msgstr "" #: gnutls_tpm2_esys.c:581 msgid "Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n" msgstr "" #: gnutls_tpm2_esys.c:586 #, c-format msgid "TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:596 gnutls_tpm2_ibm.c:529 #, c-format msgid "Failed to import TPM2 private key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:605 gnutls_tpm2_ibm.c:539 #, c-format msgid "Failed to import TPM2 public key data: 0x%x\n" msgstr "" #: gnutls_tpm2_esys.c:619 gnutls_tpm2_ibm.c:550 #, c-format msgid "Unsupported TPM2 key type %d\n" msgstr "" #: gnutls_tpm2_ibm.c:55 #, c-format msgid "TPM2 operation %s failed (%d): %s%s%s\n" msgstr "" #: gpst.c:199 #, c-format msgid "%s\n" msgstr "%s\n" #: gpst.c:202 #, c-format msgid "Challenge: %s\n" msgstr "" #: gpst.c:264 #, c-format msgid "Response was: %s\n" msgstr "" #: gpst.c:300 #, c-format msgid "Unknown ESP MAC algorithm: %s\n" msgstr "" #: gpst.c:308 #, c-format msgid "Unknown ESP encryption algorithm: %s\n" msgstr "" #: gpst.c:385 #, c-format msgid "" "WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n" msgstr "" #: gpst.c:395 #, c-format msgid "Non-standard SSL tunnel path: %s\n" msgstr "" #: gpst.c:399 #, c-format msgid "Tunnel timeout (rekey interval) is %d minutes.\n" msgstr "" #: gpst.c:411 #, c-format msgid "" "Gateway address in config XML (%s) differs from external gateway address " "(%s).\n" msgstr "" #: gpst.c:418 #, c-format msgid "" "IPv6 gateway address in config XML (%s) differs from external gateway " "address (%s).\n" msgstr "" #: gpst.c:423 #, c-format msgid "" "Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n" msgstr "" #: gpst.c:501 #, c-format msgid "GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n" msgstr "" #: gpst.c:509 oncp.c:779 msgid "Ignoring ESP keys since ESP support not available in this build\n" msgstr "" #: gpst.c:527 #, c-format msgid "Potential IPv6-related GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:529 #, c-format msgid "Unknown GlobalProtect config tag <%s>: %s\n" msgstr "" #: gpst.c:571 msgid "" "GlobalProtect IPv6 support is experimental. Please report results to " ".\n" msgstr "" #: gpst.c:593 msgid "" "Did not receive ESP keys and matching gateway in GlobalProtect config; " "tunnel will be TLS only.\n" msgstr "" #: gpst.c:659 msgid "ESP disabled" msgstr "ESP ei käytössä" #: gpst.c:661 msgid "No ESP keys received" msgstr "" #: gpst.c:663 msgid "ESP support not available in this build" msgstr "" #: gpst.c:675 #, c-format msgid "No MTU received. Calculated %d for %s%s\n" msgstr "" #: gpst.c:702 msgid "Connecting to HTTPS tunnel endpoint ...\n" msgstr "Yhdistetään HTTPS-tunnelin päätepisteeseen...\n" #: gpst.c:724 msgid "Error fetching GET-tunnel HTTPS response.\n" msgstr "" #: gpst.c:733 msgid "Gateway disconnected immediately after GET-tunnel request.\n" msgstr "" #: gpst.c:745 ppp.c:1130 #, c-format msgid "Got unexpected HTTP response: %.*s\n" msgstr "" #: gpst.c:893 #, c-format msgid "" "WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report " "submission.\n" " %s\n" msgstr "" #: gpst.c:897 msgid "" "However, running the HIP report submission script on this platform is not " "yet implemented." msgstr "" #: gpst.c:899 msgid "" "You need to provide a --csd-wrapper argument with the HIP report submission " "script." msgstr "" #: gpst.c:909 msgid "" "Error: Running the 'HIP Report' script on this platform is not yet " "implemented.\n" msgstr "" #: gpst.c:914 #, c-format msgid "Trying to run HIP Trojan script '%s'.\n" msgstr "" #: gpst.c:922 msgid "Failed to create pipe for HIP script\n" msgstr "" #: gpst.c:930 msgid "Failed to fork for HIP script\n" msgstr "" #: gpst.c:946 #, c-format msgid "HIP script '%s' exited abnormally\n" msgstr "" #: gpst.c:951 #, c-format msgid "HIP script '%s' returned non-zero status: %d\n" msgstr "" #: gpst.c:956 #, c-format msgid "HIP script '%s' completed successfully (report is %d bytes).\n" msgstr "" #: gpst.c:961 msgid "HIP report submission failed.\n" msgstr "" #: gpst.c:963 msgid "HIP report submitted successfully.\n" msgstr "" #: gpst.c:999 #, c-format msgid "Failed to exec HIP script %s\n" msgstr "" #: gpst.c:1013 msgid "Gateway says HIP report submission is needed.\n" msgstr "" #: gpst.c:1017 msgid "Gateway says no HIP report submission is needed.\n" msgstr "" #: gpst.c:1074 msgid "ESP tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: gpst.c:1101 msgid "Failed to connect ESP tunnel; using HTTPS instead.\n" msgstr "" #: gpst.c:1138 #, c-format msgid "Packet receive error: %s\n" msgstr "" #: gpst.c:1159 #, c-format msgid "" "Unexpected packet length. SSL_read returned %d (includes 16 header bytes) " "but header payload_len is %d\n" msgstr "" #: gpst.c:1169 msgid "Got GPST DPD/keepalive response\n" msgstr "" #: gpst.c:1173 msgid "" "Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, " "but got:\n" msgstr "" #: gpst.c:1180 #, c-format msgid "Received IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1185 msgid "" "Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n" msgstr "" #: gpst.c:1198 msgid "Unknown packet. Header dump follows:\n" msgstr "" #: gpst.c:1245 msgid "GlobalProtect HIP check due\n" msgstr "" #: gpst.c:1257 msgid "HIP check or report failed\n" msgstr "" #: gpst.c:1270 msgid "GlobalProtect rekey due\n" msgstr "" #: gpst.c:1275 msgid "GPST Dead Peer Detection detected dead peer!\n" msgstr "" #: gpst.c:1295 msgid "Send GPST DPD/keepalive request\n" msgstr "" #: gpst.c:1318 #, c-format msgid "Sending IPv%d data packet of %d bytes\n" msgstr "" #: gpst.c:1484 #, c-format msgid "ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n" msgstr "" #: gpst.c:1492 oncp.c:1275 msgid "Failed to send ESP probe\n" msgstr "" #: gssapi.c:75 msgid "Error importing GSSAPI name for authentication:\n" msgstr "" #: gssapi.c:128 msgid "Error generating GSSAPI response:\n" msgstr "" #: gssapi.c:145 msgid "Attempting GSSAPI authentication to proxy\n" msgstr "" #: gssapi.c:148 #, c-format msgid "Attempting GSSAPI authentication to server '%s'\n" msgstr "" #: gssapi.c:203 gssapi.c:259 sspi.c:190 sspi.c:248 msgid "GSSAPI authentication completed\n" msgstr "" #: gssapi.c:214 #, c-format msgid "GSSAPI token too large (%zd bytes)\n" msgstr "" #: gssapi.c:227 #, c-format msgid "Sending GSSAPI token of %zu bytes\n" msgstr "" #: gssapi.c:232 #, c-format msgid "Failed to send GSSAPI authentication token to proxy: %s\n" msgstr "" #: gssapi.c:240 gssapi.c:267 #, c-format msgid "Failed to receive GSSAPI authentication token from proxy: %s\n" msgstr "" #: gssapi.c:246 msgid "SOCKS server reported GSSAPI context failure\n" msgstr "" #: gssapi.c:250 #, c-format msgid "Unknown GSSAPI status response (0x%02x) from SOCKS server\n" msgstr "" #: gssapi.c:271 #, c-format msgid "Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:297 #, c-format msgid "Sending GSSAPI protection negotiation of %zu bytes\n" msgstr "" #: gssapi.c:302 #, c-format msgid "Failed to send GSSAPI protection response to proxy: %s\n" msgstr "" #: gssapi.c:310 gssapi.c:320 #, c-format msgid "Failed to receive GSSAPI protection response from proxy: %s\n" msgstr "" #: gssapi.c:325 #, c-format msgid "Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n" msgstr "" #: gssapi.c:335 #, c-format msgid "Invalid GSSAPI protection response from proxy (%zu bytes)\n" msgstr "" #: gssapi.c:344 sspi.c:407 msgid "SOCKS proxy demands message integrity, which is not supported\n" msgstr "" #: gssapi.c:348 sspi.c:411 msgid "SOCKS proxy demands message confidentiality, which is not supported\n" msgstr "" #: gssapi.c:352 sspi.c:415 #, c-format msgid "SOCKS proxy demands protection unknown type 0x%02x\n" msgstr "" #: http-auth.c:69 msgid "Attempting HTTP Basic authentication to proxy\n" msgstr "" "Yritetään HTTP Basic authentication -tunnistautumista välityspalvelimelle\n" #: http-auth.c:71 #, c-format msgid "Attempting HTTP Basic authentication to server '%s'\n" msgstr "" "Yritetään HTTP Basic authentication -tunnistautumista palvelimelle '%s'\n" #: http-auth.c:98 #, c-format msgid "Attempting HTTP Bearer authentication to server '%s'\n" msgstr "Yritetään HTTP Bearer -tunnistautumista palvelimelle '%s'\n" #: http-auth.c:112 http.c:1154 msgid "This version of OpenConnect was built without GSSAPI support\n" msgstr "Tämä versio OpenConnectista koostettiin ilman GSSAPI-tukea\n" #: http-auth.c:153 msgid "Proxy requested Basic authentication which is disabled by default\n" msgstr "" "Välityspalvelin pyysi Basic authentication -tunnistautumista, mikä on " "oletuksena pois käytöstä\n" #: http-auth.c:156 #, c-format msgid "" "Server '%s' requested Basic authentication which is disabled by default\n" msgstr "" "Palvelin '%s' vaati Basic authentication -tunnistautumista, mikä on " "oletuksena pois päältä\n" #: http-auth.c:169 msgid "No more authentication methods to try\n" msgstr "" #: http.c:56 msgid "No memory for allocating cookies\n" msgstr "" #: http.c:244 http.c:270 #, c-format msgid "Error reading HTTP response: %s\n" msgstr "" #: http.c:255 #, c-format msgid "Failed to parse HTTP response '%s'\n" msgstr "HTTP-vastauksen '%s' jäsentäminen epäonnistui\n" #: http.c:261 #, c-format msgid "Got HTTP response: %s\n" msgstr "Saatiin HTTP-vastaus: %s\n" #: http.c:284 #, c-format msgid "Ignoring unknown HTTP response line '%s'\n" msgstr "" #: http.c:303 #, c-format msgid "Invalid cookie offered: %s\n" msgstr "Virheellinen eväste tarjottu: %s\n" #: http.c:323 msgid "SSL certificate authentication failed\n" msgstr "SSL-varmennetunnistautuminen epäonnistui\n" #: http.c:356 #, c-format msgid "Response body has negative size (%d)\n" msgstr "" #: http.c:367 #, c-format msgid "Unknown Transfer-Encoding: %s\n" msgstr "Tuntematon Transfer-Encoding: %s\n" #. Now the body, if there is one #: http.c:388 #, c-format msgid "HTTP body %s (%d)\n" msgstr "" #: http.c:404 http.c:448 msgid "Error reading HTTP response body\n" msgstr "" #: http.c:419 msgid "Error fetching chunk header\n" msgstr "" #: http.c:430 #, c-format msgid "HTTP chunk length is negative (%ld)\n" msgstr "" #: http.c:436 #, c-format msgid "HTTP chunk length is too large (%ld)\n" msgstr "" #: http.c:459 msgid "Error fetching HTTP response body\n" msgstr "" #: http.c:463 #, c-format msgid "Error in chunked decoding. Expected '', got: '%s'\n" msgstr "" #: http.c:476 msgid "Cannot receive HTTP 1.0 body without closing connection\n" msgstr "" #: http.c:638 #, c-format msgid "Failed to parse redirected URL '%s': %s\n" msgstr "" #: http.c:669 #, c-format msgid "Cannot follow redirection to non-https URL '%s'\n" msgstr "" #: http.c:690 #, c-format msgid "Allocating new path for relative redirect failed: %s\n" msgstr "" #: http.c:765 msgid "HTTPS socket closed by peer; reopening\n" msgstr "" #: http.c:919 #, c-format msgid "Retrying failed %s request on new connection\n" msgstr "" #: http.c:1002 msgid "request granted" msgstr "" #: http.c:1003 msgid "general failure" msgstr "yleinen virhe" #: http.c:1004 msgid "connection not allowed by ruleset" msgstr "" #: http.c:1005 msgid "network unreachable" msgstr "" #: http.c:1006 msgid "host unreachable" msgstr "" #: http.c:1007 msgid "connection refused by destination host" msgstr "" #: http.c:1008 msgid "TTL expired" msgstr "TTL vanheni" #: http.c:1009 msgid "command not supported / protocol error" msgstr "komento ei ole tuettu / yhteyskäytännön virhe" #: http.c:1010 msgid "address type not supported" msgstr "" #: http.c:1020 msgid "SOCKS server requested username/password but we have none\n" msgstr "" #: http.c:1028 msgid "Username and password for SOCKS authentication must be < 255 bytes\n" msgstr "" #: http.c:1043 http.c:1106 #, c-format msgid "Error writing auth request to SOCKS proxy: %s\n" msgstr "" #: http.c:1051 http.c:1113 #, c-format msgid "Error reading auth response from SOCKS proxy: %s\n" msgstr "" #: http.c:1058 http.c:1119 #, c-format msgid "Unexpected auth response from SOCKS proxy: %02x %02x\n" msgstr "" #: http.c:1064 msgid "Authenticated to SOCKS server using password\n" msgstr "Tunnistauduttu SOCKS-palvelimelle käyttäen salasanaa\n" #: http.c:1068 msgid "Password authentication to SOCKS server failed\n" msgstr "" #: http.c:1131 http.c:1138 msgid "SOCKS server requested GSSAPI authentication\n" msgstr "SOCKS-palvelin pyysi GSSAPI-tunnistautumisen\n" #: http.c:1144 msgid "SOCKS server requested password authentication\n" msgstr "SOCKS-palvelin pyysi salasanalla tunnistautumisen\n" #: http.c:1151 msgid "SOCKS server requires authentication\n" msgstr "SOCKS-palvelin vaatii tunnistautumisen\n" #: http.c:1160 #, c-format msgid "SOCKS server requested unknown authentication type %02x\n" msgstr "SOCKS-palvelin pyysi tuntemattoman tunnistautumistyypin %02x\n" #: http.c:1166 #, c-format msgid "Requesting SOCKS proxy connection to %s:%d\n" msgstr "" #: http.c:1181 #, c-format msgid "Error writing connect request to SOCKS proxy: %s\n" msgstr "" #: http.c:1189 http.c:1231 #, c-format msgid "Error reading connect response from SOCKS proxy: %s\n" msgstr "" #: http.c:1195 #, c-format msgid "Unexpected connect response from SOCKS proxy: %02x %02x...\n" msgstr "" #: http.c:1203 #, c-format msgid "SOCKS proxy error %02x: %s\n" msgstr "SOCKS-välityspalvelimen virhe %02x: %s\n" #: http.c:1207 #, c-format msgid "SOCKS proxy error %02x\n" msgstr "SOCKS-välityspalvelimen virhe %02x\n" #: http.c:1224 #, c-format msgid "Unexpected address type %02x in SOCKS connect response\n" msgstr "" #: http.c:1247 #, c-format msgid "Requesting HTTP proxy connection to %s:%d\n" msgstr "" #: http.c:1282 #, c-format msgid "Sending proxy request failed: %s\n" msgstr "" #: http.c:1305 #, c-format msgid "Proxy CONNECT request failed: %d\n" msgstr "" #: http.c:1324 #, c-format msgid "Unknown proxy type '%s'\n" msgstr "Tuntematon välityspalvelimen tyyppi '%s'\n" #: http.c:1350 #, c-format msgid "Failed to parse proxy '%s'\n" msgstr "" #: http.c:1374 msgid "Only http or socks(5) proxies supported\n" msgstr "" #: library.c:124 msgid "Cisco AnyConnect or openconnect" msgstr "Cisco AnyConnect tai openconnect" #: library.c:125 msgid "Compatible with Cisco AnyConnect SSL VPN, as well as ocserv" msgstr "Yhteensopiva Cisco AnyConnect SSL VPN:n sekä ocserv:in kanssa" #: library.c:143 msgid "Juniper Network Connect" msgstr "Juniper Network Connect" #: library.c:144 msgid "Compatible with Juniper Network Connect" msgstr "Yhteensopiva Juniper Network Connectin kanssa" #: library.c:164 msgid "Palo Alto Networks GlobalProtect" msgstr "Palo Alto Networks GlobalProtect" #: library.c:165 msgid "Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN" msgstr "Yhteensopiva Palo Alto Networks (PAN) GlobalProtect SSL VPN:n kanssa" #: library.c:184 msgid "Pulse Connect Secure" msgstr "Pulse Connect Secure" #: library.c:185 msgid "Compatible with Pulse Connect Secure SSL VPN" msgstr "Yhteensopiva Pulse Connect Secure SSL VPN:n kanssa" #: library.c:204 msgid "F5 BIG-IP SSL VPN" msgstr "" #: library.c:205 msgid "Compatible with F5 BIG-IP SSL VPN" msgstr "" #: library.c:224 msgid "Fortinet SSL VPN" msgstr "" #: library.c:225 msgid "Compatible with FortiGate SSL VPN" msgstr "" #: library.c:244 msgid "PPP over TLS" msgstr "" #: library.c:245 msgid "Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing" msgstr "" #: library.c:254 msgid "Array SSL VPN" msgstr "" #: library.c:255 msgid "Compatible with Array Networks SSL VPN" msgstr "" #: library.c:328 #, c-format msgid "Unknown VPN protocol '%s'\n" msgstr "Tuntematon VPN-protokolla '%s'\n" #: library.c:351 msgid "Built against SSL library with no Cisco DTLS support\n" msgstr "" #: library.c:512 msgid "No IP address received with Juniper rekey/reconnection.\n" msgstr "" #: library.c:517 msgid "No IP address received. Aborting\n" msgstr "IP-osoitetta ei saatu. Keskeytetään\n" #: library.c:525 #, c-format msgid "Reconnect gave different Legacy IP address (%s != %s)\n" msgstr "" #: library.c:534 #, c-format msgid "Reconnect gave different Legacy IP netmask (%s != %s)\n" msgstr "" #: library.c:542 #, c-format msgid "Reconnect gave different IPv6 address (%s != %s)\n" msgstr "" #: library.c:550 #, c-format msgid "Reconnect gave different IPv6 netmask (%s != %s)\n" msgstr "" #: library.c:565 #, c-format msgid "IPv6 configuration received but MTU %d is too small.\n" msgstr "" #: library.c:1030 #, c-format msgid "Failed to parse server URL '%s'\n" msgstr "" #: library.c:1036 msgid "Only https:// permitted for server URL\n" msgstr "Vain https:// sallitaan osana palvelimen osoitetta\n" #: library.c:1459 #, c-format msgid "Unknown certificate hash: %s.\n" msgstr "" #: library.c:1493 #, c-format msgid "" "The size of the provided fingerprint is less than the minimum required " "(%u).\n" msgstr "" #: library.c:1550 msgid "No form handler; cannot authenticate.\n" msgstr "" #: library.c:1554 msgid "No form ID. This is a bug in OpenConnect's authentication code.\n" msgstr "" #: main.c:386 #, c-format msgid "CommandLineToArgvW() failed: %s\n" msgstr "CommandLineToArgvW() epäonnistui: %s\n" #: main.c:399 #, c-format msgid "Fatal error in command line handling\n" msgstr "" #: main.c:436 #, c-format msgid "ReadConsole() failed: %s\n" msgstr "ReadConsole() epäonnistui: %s\n" #: main.c:455 #, c-format msgid "Operation aborted by user\n" msgstr "" #. Should never happen #: main.c:458 #, c-format msgid "ReadConsole() didn't read any input\n" msgstr "" #: main.c:467 #, c-format msgid "fgetws() failed: %s\n" msgstr "fgetws() epäonnistui: %s\n" #: main.c:487 main.c:500 #, c-format msgid "Error converting console input: %s\n" msgstr "" #: main.c:494 main.c:760 #, c-format msgid "Allocation failure for string from stdin\n" msgstr "" #: main.c:655 #, c-format msgid "" "For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n" msgstr "" #: main.c:663 #, c-format msgid "Using %s. Features present:" msgstr "" #: main.c:675 msgid "OpenSSL ENGINE not present" msgstr "" #: main.c:714 #, c-format msgid "" "WARNING: This binary lacks DTLS and/or ESP support. Performance will be " "impaired.\n" msgstr "" #: main.c:726 #, c-format msgid "Supported protocols:" msgstr "Tuetut protokollat:" #: main.c:728 main.c:746 msgid " (default)" msgstr " (oletus)" #: main.c:743 msgid "Set VPN protocol" msgstr "Aseta VPN-protokolla" #: main.c:784 msgid "fgets (stdin)" msgstr "" #: main.c:836 #, c-format msgid "Cannot process this executable path \"%s\"" msgstr "" #: main.c:842 #, c-format msgid "Allocation for vpnc-script path failed\n" msgstr "" #: main.c:882 msgid "Default vpnc-script (override with --script):" msgstr "" #: main.c:897 #, c-format msgid "Override hostname '%s' to '%s'\n" msgstr "" #: main.c:910 #, c-format msgid "Usage: openconnect [options] \n" msgstr "Käyttö: openconnect [valinnat] \n" #: main.c:911 #, c-format msgid "" "Open client for multiple VPN protocols, version %s\n" "\n" msgstr "" "Avoin asiakasohjelmisto useille VPN-protokollille, versio %s\n" "\n" #: main.c:913 msgid "Read options from config file" msgstr "Lue valinnat asetustiedostosta" #: main.c:914 msgid "Report version number" msgstr "Ilmoita versionumero" #: main.c:915 msgid "Display help text" msgstr "Näytä ohjeteksti" #: main.c:919 msgid "Authentication" msgstr "Tunnistautuminen" #: main.c:920 msgid "Set login username" msgstr "Aseta kirjautumisen käyttäjänimi" #: main.c:921 msgid "Disable password/SecurID authentication" msgstr "Poista käytöstä salasana-/SecurID-tunnistautuminen" #: main.c:922 msgid "Do not expect user input; exit if it is required" msgstr "Älä odota käyttäjäsyötettä; lopeta jos sellaista vaaditaan" #: main.c:923 msgid "Read password from standard input" msgstr "" #: main.c:924 msgid "Choose authentication login selection" msgstr "" #: main.c:925 msgid "Provide authentication form responses" msgstr "" #: main.c:926 msgid "Use SSL client certificate CERT" msgstr "" #: main.c:927 msgid "Use SSL private key file KEY" msgstr "" #: main.c:928 msgid "Warn when certificate lifetime < DAYS" msgstr "" #: main.c:929 msgid "Set login usergroup" msgstr "" #: main.c:930 msgid "Set key passphrase or TPM SRK PIN" msgstr "" #: main.c:931 msgid "Key passphrase is fsid of file system" msgstr "" #: main.c:932 msgid "Software token type: rsa, totp, hotp or oidc" msgstr "" #: main.c:933 msgid "Software token secret or oidc token" msgstr "" #: main.c:935 msgid "(NOTE: libstoken (RSA SecurID) disabled in this build)" msgstr "" #: main.c:938 msgid "(NOTE: Yubikey OATH disabled in this build)" msgstr "" #: main.c:941 msgid "Server validation" msgstr "Palvelimen vahvistaminen" #: main.c:942 msgid "Accept only server certificate with this fingerprint" msgstr "" #: main.c:943 msgid "Disable default system certificate authorities" msgstr "" #: main.c:944 msgid "Cert file for server verification" msgstr "" #: main.c:946 msgid "Internet connectivity" msgstr "Internet-yhdistettävyys" #: main.c:947 msgid "Set VPN server" msgstr "" #: main.c:948 msgid "Set proxy server" msgstr "Aseta välityspalvelin" #: main.c:949 msgid "Set proxy authentication methods" msgstr "Aseta välityspalvelimen tunnistautumistavat" #: main.c:950 msgid "Disable proxy" msgstr "" #: main.c:951 msgid "Use libproxy to automatically configure proxy" msgstr "" #: main.c:953 msgid "(NOTE: libproxy disabled in this build)" msgstr "" #: main.c:955 msgid "Connection retry timeout in seconds" msgstr "" #: main.c:956 msgid "Use IP when connecting to HOST" msgstr "" #: main.c:957 msgid "Copy TOS / TCLASS field into DTLS and ESP packets" msgstr "" #: main.c:958 msgid "Set local port for DTLS and ESP datagrams" msgstr "" #: main.c:960 msgid "Authentication (two-phase)" msgstr "Tunnistautuminen (kaksivaiheinen)" #: main.c:961 msgid "Use authentication cookie COOKIE" msgstr "" #: main.c:962 msgid "Read cookie from standard input" msgstr "" #: main.c:963 msgid "Authenticate only and print login info" msgstr "" #: main.c:964 msgid "Fetch and print cookie only; don't connect" msgstr "" #: main.c:965 msgid "Print cookie before connecting" msgstr "Tulosta eväste ennen yhdistämistä" #: main.c:968 msgid "Process control" msgstr "" #: main.c:969 msgid "Continue in background after startup" msgstr "" #: main.c:970 msgid "Write the daemon's PID to this file" msgstr "" #: main.c:971 msgid "Drop privileges after connecting" msgstr "" #: main.c:974 msgid "Logging (two-phase)" msgstr "" #: main.c:976 msgid "Use syslog for progress messages" msgstr "" #: main.c:978 msgid "More output" msgstr "" #: main.c:979 msgid "Less output" msgstr "" #: main.c:980 msgid "Dump HTTP authentication traffic (implies --verbose)" msgstr "" #: main.c:981 msgid "Prepend timestamp to progress messages" msgstr "" #: main.c:983 msgid "VPN configuration script" msgstr "" #: main.c:984 msgid "Use IFNAME for tunnel interface" msgstr "" #: main.c:985 msgid "Shell command line for using a vpnc-compatible config script" msgstr "" #: main.c:986 msgid "default" msgstr "oletus" #: main.c:988 msgid "Pass traffic to 'script' program, not tun" msgstr "" #: main.c:991 msgid "Tunnel control" msgstr "" #: main.c:992 msgid "Do not ask for IPv6 connectivity" msgstr "" #: main.c:993 msgid "XML config file" msgstr "XML-asetustiedosto" #: main.c:994 msgid "Request MTU from server (legacy servers only)" msgstr "" #: main.c:995 msgid "Indicate path MTU to/from server" msgstr "" #: main.c:996 msgid "Enable stateful compression (default is stateless only)" msgstr "" #: main.c:997 msgid "Disable all compression" msgstr "Poista kaikki pakkaus käytöstä" #: main.c:998 msgid "Set Dead Peer Detection interval (in seconds)" msgstr "" #: main.c:999 msgid "Require perfect forward secrecy" msgstr "Vaadi perfect forward secrecy" #: main.c:1000 msgid "Disable DTLS and ESP" msgstr "Poista käytöstä DTLS ja ESP" #: main.c:1001 msgid "OpenSSL ciphers to support for DTLS" msgstr "" #: main.c:1002 msgid "Set packet queue limit to LEN pkts" msgstr "" #: main.c:1004 msgid "Local system information" msgstr "" #: main.c:1005 msgid "HTTP header User-Agent: field" msgstr "" #: main.c:1006 msgid "Local hostname to advertise to server" msgstr "" #: main.c:1007 msgid "OS type to report. Allowed values are the following:" msgstr "" #: main.c:1008 msgid "linux, linux-64, win, mac-intel, android, apple-ios" msgstr "" #: main.c:1009 msgid "reported version string during authentication" msgstr "" #: main.c:1010 msgid "default:" msgstr "oletus:" #: main.c:1012 msgid "Trojan binary (CSD) execution" msgstr "Troijalaisbinäärin (CSD) suoritus" #: main.c:1014 msgid "Drop privileges during trojan execution" msgstr "" #: main.c:1015 msgid "Run SCRIPT instead of trojan binary" msgstr "" #: main.c:1017 msgid "Set minimum interval between trojan runs (in seconds)" msgstr "" #: main.c:1019 msgid "Server bugs" msgstr "" #: main.c:1020 msgid "Disable HTTP connection re-use" msgstr "" #: main.c:1021 msgid "Do not attempt XML POST authentication" msgstr "" #: main.c:1022 msgid "Allow use of the ancient, insecure 3DES and RC4 ciphers" msgstr "" #: main.c:1044 #, c-format msgid "Failed to allocate string\n" msgstr "" #: main.c:1117 #, c-format msgid "Failed to get line from config file: %s\n" msgstr "" #: main.c:1157 #, c-format msgid "Unrecognised option at line %d: '%s'\n" msgstr "" #: main.c:1167 #, c-format msgid "Option '%s' does not take an argument at line %d\n" msgstr "" #: main.c:1171 #, c-format msgid "Option '%s' requires an argument at line %d\n" msgstr "" #. Should never happen #: main.c:1187 #, c-format msgid "Internal error; option '%s' unexpectedly yielded null config_arg\n" msgstr "" #: main.c:1205 #, c-format msgid "Invalid user \"%s\": %s\n" msgstr "Virheellinen käyttäjä \"%s\": %s\n" #: main.c:1215 #, c-format msgid "Invalid user ID \"%d\": %s\n" msgstr "" #: main.c:1486 #, c-format msgid "Unhandled autocomplete for option %d '--%s'. Please report.\n" msgstr "" #: main.c:1507 main.c:1522 msgid "connected" msgstr "" #: main.c:1507 msgid "disconnected" msgstr "" #: main.c:1511 msgid "unsuccessful" msgstr "" #: main.c:1516 msgid "in progress" msgstr "" #: main.c:1519 msgid "disabled" msgstr "ei käytössä" #: main.c:1525 msgid "established" msgstr "" #: main.c:1528 msgid "unknown" msgstr "" #: main.c:1535 #, c-format msgid "Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n" msgstr "" #: main.c:1544 #, c-format msgid "Session authentication will expire at %s\n" msgstr "" #: main.c:1558 #, c-format msgid "" "RX: % packets (% B); TX: % packets (% B)\n" msgstr "" #: main.c:1562 #, c-format msgid "SSL ciphersuite: %s\n" msgstr "" #: main.c:1564 #, c-format msgid "%s ciphersuite: %s\n" msgstr "" #: main.c:1567 #, c-format msgid "Next SSL rekey in %ld seconds\n" msgstr "" #: main.c:1570 #, c-format msgid "Next %s rekey in %ld seconds\n" msgstr "" #: main.c:1574 #, c-format msgid "Next Trojan invocation in %ld seconds\n" msgstr "" #: main.c:1593 #, c-format msgid "Failed to open '%s' for write: %s\n" msgstr "" #: main.c:1610 #, c-format msgid "Continuing in background; pid %d\n" msgstr "" #: main.c:1676 #, c-format msgid "WARNING: Cannot set locale: %s\n" msgstr "" #: main.c:1689 #, c-format msgid "" "WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n" msgstr "" #: main.c:1696 #, c-format msgid "" "WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n" msgstr "" #: main.c:1703 #, c-format msgid "" "WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n" msgstr "" #: main.c:1735 #, c-format msgid "Failed to allocate vpninfo structure\n" msgstr "" #: main.c:1795 #, c-format msgid "Cannot use 'config' option inside config file\n" msgstr "" #: main.c:1803 #, c-format msgid "Cannot open config file '%s': %s\n" msgstr "" #: main.c:1820 #, c-format msgid "Invalid compression mode '%s'\n" msgstr "" #: main.c:1838 #, c-format msgid "" "Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n" msgstr "" #: main.c:1846 main.c:1867 #, c-format msgid "Failed to allocate memory\n" msgstr "" #: main.c:1862 #, c-format msgid "Missing colon in resolve option\n" msgstr "" #: main.c:1954 main.c:1964 #, c-format msgid "MTU %d too small\n" msgstr "" #: main.c:1994 #, c-format msgid "" "Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n" msgstr "" #: main.c:2000 #, c-format msgid "" "The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n" msgstr "" #: main.c:2018 #, c-format msgid "Queue length zero not permitted; using 1\n" msgstr "" #: main.c:2032 #, c-format msgid "OpenConnect version %s\n" msgstr "OpenConnect-versio %s\n" #: main.c:2080 #, c-format msgid "Invalid software token mode \"%s\"\n" msgstr "" #: main.c:2091 #, c-format msgid "" "Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n" msgstr "" #: main.c:2119 #, c-format msgid "" "WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n" msgstr "" #: main.c:2145 #, c-format msgid "Too many arguments on command line\n" msgstr "" #: main.c:2148 #, c-format msgid "No server specified\n" msgstr "Palvelinta ei ole määritetty\n" #: main.c:2162 #, c-format msgid "This version of openconnect was built without libproxy support\n" msgstr "Tämä versio openconnectista koostettiin ilman libproxy-tukea\n" #: main.c:2194 #, c-format msgid "Error opening cmd pipe: %s\n" msgstr "" #: main.c:2231 #, c-format msgid "Failed to complete authentication\n" msgstr "" #: main.c:2267 #, c-format msgid "Creating SSL connection failed\n" msgstr "SSL-yhteyden luominen epäonnistui\n" #: main.c:2282 #, c-format msgid "Set up UDP failed; using SSL instead\n" msgstr "" #: main.c:2288 msgid "No --script argument provided; DNS and routing are not configured\n" msgstr "" #: main.c:2290 msgid "See https://www.infradead.org/openconnect/vpnc-script.html\n" msgstr "Lue https://www.infradead.org/openconnect/vpnc-script.html\n" #: main.c:2303 msgid "User requested reconnect\n" msgstr "" #: main.c:2314 msgid "Cookie was rejected by server; exiting.\n" msgstr "" #: main.c:2318 msgid "Session terminated by server; exiting.\n" msgstr "" #: main.c:2322 #, c-format msgid "User cancelled (%s); exiting.\n" msgstr "" #: main.c:2332 #, c-format msgid "User detached from session (%s); exiting.\n" msgstr "" #: main.c:2342 msgid "Unrecoverable I/O error; exiting.\n" msgstr "" #: main.c:2349 msgid "Unknown error; exiting.\n" msgstr "Tuntematon virhe, poistutaan.\n" #: main.c:2369 #, c-format msgid "Failed to open %s for write: %s\n" msgstr "" #: main.c:2377 #, c-format msgid "Failed to write config to %s: %s\n" msgstr "" #: main.c:2424 #, c-format msgid "" "Insecurely accepting certificate from VPN server \"%s\" because you ran with " "--servercert=ACCEPT.\n" msgstr "" #: main.c:2437 #, c-format msgid "Could not check server's certificate against %s\n" msgstr "" #: main.c:2445 #, c-format msgid "" "None of the %d fingerprint(s) specified via --servercert match server's " "certificate: %s\n" msgstr "" #: main.c:2454 #, c-format msgid "" "\n" "Certificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n" msgstr "" "\n" "Varmenne VPN-palvelimelta \"%s\" ei läpäissyt vahvistusta.\n" "Syy: %s\n" #: main.c:2457 #, c-format msgid "" "To trust this server in future, perhaps add this to your command line:\n" msgstr "" #: main.c:2458 #, c-format msgid " --servercert %s\n" msgstr " --servercert %s\n" #: main.c:2463 #, c-format msgid "Enter '%s' to accept, '%s' to abort; anything else to view: " msgstr "" #: main.c:2464 main.c:2483 msgid "no" msgstr "ei" #: main.c:2464 main.c:2470 msgid "yes" msgstr "kyllä" #: main.c:2492 #, c-format msgid "Server key hash: %s\n" msgstr "" #: main.c:2526 #, c-format msgid "Auth choice \"%s\" matches multiple options\n" msgstr "" #: main.c:2529 #, c-format msgid "Auth choice \"%s\" not available\n" msgstr "" #: main.c:2550 msgid "User input required in non-interactive mode\n" msgstr "" #: main.c:2792 #, c-format msgid "Failed to open token file for write: %s\n" msgstr "" #: main.c:2800 #, c-format msgid "Failed to write token: %s\n" msgstr "" #: main.c:2847 main.c:2871 #, c-format msgid "Soft token string is invalid\n" msgstr "" #: main.c:2851 #, c-format msgid "Can't open stoken file\n" msgstr "" #: main.c:2853 #, c-format msgid "Can't open ~/.stokenrc file\n" msgstr "Tiedostoa ~/.stokenrc ei voi avata\n" #: main.c:2856 #, c-format msgid "OpenConnect was not built with libstoken support\n" msgstr "" #: main.c:2859 #, c-format msgid "General failure in libstoken\n" msgstr "" #: main.c:2874 #, c-format msgid "OpenConnect was not built with liboath support\n" msgstr "" #: main.c:2877 #, c-format msgid "General failure in liboath\n" msgstr "" #: main.c:2888 #, c-format msgid "Yubikey token not found\n" msgstr "" #: main.c:2891 #, c-format msgid "OpenConnect was not built with Yubikey support\n" msgstr "" #: main.c:2894 #, c-format msgid "General Yubikey failure: %s\n" msgstr "Yleinen Yubikey-virhe: %s\n" #: main.c:2903 #, c-format msgid "Can't open oidc file\n" msgstr "" #: main.c:2906 #, c-format msgid "General failure in oidc token\n" msgstr "" #: mainloop.c:121 #, c-format msgid "Set up tun script failed\n" msgstr "" #: mainloop.c:128 #, c-format msgid "Set up tun device failed\n" msgstr "" #: mainloop.c:209 #, c-format msgid "Delaying tunnel with reason: %s\n" msgstr "" #: mainloop.c:261 msgid "Delaying cancel (immediate callback).\n" msgstr "" #: mainloop.c:264 msgid "Delaying cancel.\n" msgstr "" #: mainloop.c:283 msgid "Delaying pause (immediate callback).\n" msgstr "" #: mainloop.c:286 msgid "Delaying pause.\n" msgstr "" #: mainloop.c:299 msgid "Caller paused the connection\n" msgstr "" #: mainloop.c:312 #, c-format msgid "No work to do; sleeping for %d ms...\n" msgstr "" #: mainloop.c:333 #, c-format msgid "WaitForMultipleObjects failed: %s\n" msgstr "" #: mainloop.c:369 msgid "Failed epoll_wait() in mainloop" msgstr "" #: mainloop.c:401 msgid "Failed select() in mainloop" msgstr "" #: mtucalc.c:90 #, c-format msgid "Using base_mtu of %d\n" msgstr "" #: mtucalc.c:106 #, c-format msgid "After removing %s/IPv%d headers, MTU of %d\n" msgstr "" #. MTU is now (we hope) the number of payload bytes that can fit in a UDP or #. * TCP packet exchanged with the VPN gateway. #. remove protocol-specific overhead that isn't affected by padding #. round down to a multiple of blocksize #. remove protocol-specific overhead that contributes to payload padding #: mtucalc.c:116 #, c-format msgid "" "After removing protocol specific overhead (%d unpadded, %d padded, %d " "blocksize), MTU of %d\n" msgstr "" #: ntlm.c:88 sspi.c:113 sspi.c:196 #, c-format msgid "InitializeSecurityContext() failed: %lx\n" msgstr "" #: ntlm.c:114 sspi.c:47 #, c-format msgid "AcquireCredentialsHandle() failed: %lx\n" msgstr "" #: ntlm.c:247 msgid "Error communicating with ntlm_auth helper\n" msgstr "" #: ntlm.c:266 msgid "Attempting HTTP NTLM authentication to proxy (single-sign-on)\n" msgstr "" #: ntlm.c:269 #, c-format msgid "Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n" msgstr "" #: ntlm.c:981 #, c-format msgid "Attempting HTTP NTLMv%d authentication to proxy\n" msgstr "" #: ntlm.c:985 #, c-format msgid "Attempting HTTP NTLMv%d authentication to server '%s'\n" msgstr "" #: nullppp.c:84 msgid "Terminating because nullppp has reached network state.\n" msgstr "" #: oath.c:104 msgid "Invalid base32 token string\n" msgstr "" #: oath.c:112 msgid "Failed to allocate memory to decode OATH secret\n" msgstr "" #: oath.c:218 msgid "This version of OpenConnect was built without PSKC support\n" msgstr "" #: oath.c:314 oath.c:339 stoken.c:295 yubikey.c:507 msgid "OK to generate INITIAL tokencode\n" msgstr "" #: oath.c:318 oath.c:342 stoken.c:300 yubikey.c:511 msgid "OK to generate NEXT tokencode\n" msgstr "" #: oath.c:323 oath.c:346 stoken.c:305 msgid "Server is rejecting the soft token; switching to manual entry\n" msgstr "" #: oath.c:380 msgid "Generating OATH TOTP token code\n" msgstr "" #: oath.c:526 msgid "Generating OATH HOTP token code\n" msgstr "" #: oncp.c:76 #, c-format msgid "Unexpected length %d for TLV %d/%d\n" msgstr "" #: oncp.c:82 pulse.c:371 #, c-format msgid "Received MTU %d from server\n" msgstr "" #: oncp.c:91 pulse.c:253 pulse.c:312 #, c-format msgid "Received DNS server %s\n" msgstr "" #: oncp.c:102 pulse.c:380 #, c-format msgid "Received DNS search domain %.*s\n" msgstr "" #: oncp.c:117 #, c-format msgid "Received internal IP address %s\n" msgstr "" #: oncp.c:126 pulse.c:244 #, c-format msgid "Received netmask %s\n" msgstr "" #: oncp.c:135 pulse.c:395 #, c-format msgid "Received internal gateway address %s\n" msgstr "" #: oncp.c:148 pulse.c:2368 #, c-format msgid "Received split include route %s\n" msgstr "" #: oncp.c:170 pulse.c:2381 #, c-format msgid "Received split exclude route %s\n" msgstr "" #: oncp.c:190 pulse.c:268 #, c-format msgid "Received WINS server %s\n" msgstr "" #: oncp.c:213 #, c-format msgid "ESP encryption: 0x%02x (%s)\n" msgstr "ESP-salaus: 0x%02x (%s)\n" #: oncp.c:232 #, c-format msgid "ESP HMAC: 0x%02x (%s)\n" msgstr "ESP-HMAC: 0x%02x (%s)\n" #: oncp.c:243 #, c-format msgid "ESP compression: %d\n" msgstr "ESP-pakkaus: %d\n" #: oncp.c:251 pulse.c:475 #, c-format msgid "ESP port: %d\n" msgstr "ESP-portti: %d\n" #: oncp.c:258 pulse.c:458 #, c-format msgid "ESP key lifetime: %u bytes\n" msgstr "" #: oncp.c:266 pulse.c:450 #, c-format msgid "ESP key lifetime: %u seconds\n" msgstr "" #: oncp.c:274 pulse.c:482 #, c-format msgid "ESP to SSL fallback: %u seconds\n" msgstr "" #: oncp.c:282 pulse.c:466 #, c-format msgid "ESP replay protection: %d\n" msgstr "" #: oncp.c:290 pulse.c:2469 #, c-format msgid "ESP SPI (outbound): %x\n" msgstr "" #: oncp.c:299 pulse.c:2457 #, c-format msgid "%d bytes of ESP secrets\n" msgstr "" #: oncp.c:311 #, c-format msgid "Unknown TLV group %d attr %d len %d:%s\n" msgstr "" #: oncp.c:393 msgid "Failed to parse KMP header\n" msgstr "" #: oncp.c:412 msgid "Failed to parse KMP message\n" msgstr "" #: oncp.c:421 #, c-format msgid "Got KMP message %d of size %d\n" msgstr "" #: oncp.c:437 #, c-format msgid "Received non-ESP TLVs (group %d) in ESP negotiation KMP\n" msgstr "" #: oncp.c:508 oncp.c:542 oncp.c:686 msgid "Error creating oNCP negotiation request\n" msgstr "" #: oncp.c:551 oncp.c:721 msgid "Short write in oNCP negotiation\n" msgstr "" #: oncp.c:564 oncp.c:605 #, c-format msgid "Read %d bytes of SSL record\n" msgstr "" #: oncp.c:569 #, c-format msgid "Unexpected response of size %d after hostname packet\n" msgstr "" #: oncp.c:576 #, c-format msgid "Server response to hostname packet is error 0x%02x\n" msgstr "" #: oncp.c:580 msgid "" "This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n" msgstr "" #: oncp.c:609 msgid "Invalid packet waiting for KMP 301\n" msgstr "" #: oncp.c:622 #, c-format msgid "Expected KMP message 301 from server but got %d\n" msgstr "" #: oncp.c:631 #, c-format msgid "KMP message 301 from server too large (%d bytes)\n" msgstr "" #: oncp.c:637 #, c-format msgid "Got KMP message 301 of length %d\n" msgstr "" #: oncp.c:644 msgid "Failed to read continuation record length\n" msgstr "" #: oncp.c:650 #, c-format msgid "Record of additional %d bytes too large; would make %d\n" msgstr "" #: oncp.c:659 #, c-format msgid "Failed to read continuation record of length %d\n" msgstr "" #: oncp.c:665 #, c-format msgid "Read additional %d bytes of KMP 301 message\n" msgstr "" #: oncp.c:706 msgid "Error negotiating ESP keys\n" msgstr "" #: oncp.c:715 msgid "oNCP negotiation request outgoing:\n" msgstr "" #: oncp.c:773 pulse.c:2731 msgid "new incoming" msgstr "uusi saapuva" #: oncp.c:774 pulse.c:2732 msgid "new outgoing" msgstr "uusi lähtevä" #: oncp.c:799 msgid "Read only 1 byte of oNCP length field\n" msgstr "" #: oncp.c:808 msgid "Server terminated connection (session expired)\n" msgstr "" #: oncp.c:812 msgid "Server terminated connection (idle timeout)\n" msgstr "" #: oncp.c:816 #, c-format msgid "Server terminated connection (reason: %d)\n" msgstr "" #: oncp.c:823 msgid "Server sent zero-length oNCP record\n" msgstr "" #: oncp.c:924 #, c-format msgid "Incoming KMP message %d of size %d (got %d)\n" msgstr "" #: oncp.c:927 #, c-format msgid "Continuing to process KMP message %d now size %d (got %d)\n" msgstr "" #: oncp.c:946 msgid "Unrecognised data packet\n" msgstr "" #: oncp.c:1005 #, c-format msgid "Failed to set up ESP: %s\n" msgstr "" #: oncp.c:1015 #, c-format msgid "Unknown KMP message %d of size %d:\n" msgstr "" #: oncp.c:1020 #, c-format msgid ".... + %d more bytes unreceived\n" msgstr "" #: oncp.c:1035 pulse.c:2786 msgid "Packet outgoing:\n" msgstr "" #: oncp.c:1097 msgid "Sent ESP enable control packet\n" msgstr "" #: openconnect-internal.h:1596 openconnect-internal.h:1606 #, c-format msgid "ERROR: %s() called with invalid UTF-8 for '%s' argument\n" msgstr "" #: openssl-dtls.c:94 #, c-format msgid "Unable to calculate DTLS overhead for %s\n" msgstr "" #: openssl-dtls.c:210 openssl-dtls.c:269 msgid "Failed to generate random key\n" msgstr "" #: openssl-dtls.c:232 #, c-format msgid "Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n" msgstr "" #: openssl-dtls.c:243 msgid "OpenSSL failed to parse SSL_SESSION ASN.1\n" msgstr "" #: openssl-dtls.c:259 msgid "Initialise DTLSv1 session failed\n" msgstr "" #: openssl-dtls.c:275 msgid "Too large application ID size\n" msgstr "" #: openssl-dtls.c:308 msgid "PSK callback\n" msgstr "" #: openssl-dtls.c:370 msgid "Initialise DTLSv1 CTX failed\n" msgstr "" #: openssl-dtls.c:380 msgid "Set DTLS CTX version failed\n" msgstr "" #: openssl-dtls.c:408 msgid "Failed to generate DTLS key\n" msgstr "" #: openssl-dtls.c:468 msgid "Set DTLS cipher list failed\n" msgstr "" #: openssl-dtls.c:519 #, c-format msgid "DTLS cipher '%s' not found\n" msgstr "" #: openssl-dtls.c:540 #, c-format msgid "" "SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n" msgstr "" #: openssl-dtls.c:576 msgid "SSL_set_session() failed\n" msgstr "SSL_set_session() epäonnistui\n" #: openssl-dtls.c:592 msgid "Create DTLS dgram BIO failed\n" msgstr "" #: openssl-dtls.c:677 #, c-format msgid "Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n" msgstr "" #: openssl-dtls.c:714 msgid "" "Your OpenSSL is older than the one you built against, so DTLS may fail!\n" msgstr "" #: openssl-dtls.c:780 msgid "" "This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n" msgstr "" "Tämä johtuu luultavasti siitä, että käytössäsi oleva OpenSSL on rikki\n" "Lue http://rt.openssl.org/Ticket/Display.html?id=2984\n" #: openssl-dtls.c:787 #, c-format msgid "DTLS handshake failed: %d\n" msgstr "" #: openssl-esp.c:86 msgid "Failed to initialise ESP cipher:\n" msgstr "" #: openssl-esp.c:100 msgid "Failed to initialize ESP HMAC\n" msgstr "" #: openssl-esp.c:176 msgid "Failed to set up decryption context for ESP packet:\n" msgstr "" #: openssl-esp.c:184 msgid "Failed to decrypt ESP packet:\n" msgstr "" #: openssl-esp.c:200 msgid "Failed to encrypt ESP packet:\n" msgstr "" #: openssl-pkcs11.c:45 msgid "Failed to establish libp11 PKCS#11 context:\n" msgstr "" #: openssl-pkcs11.c:51 #, c-format msgid "Failed to load PKCS#11 provider module (%s):\n" msgstr "" #: openssl-pkcs11.c:281 msgid "PIN locked\n" msgstr "PIN lukittu\n" #: openssl-pkcs11.c:284 msgid "PIN expired\n" msgstr "PIN vanhentunut\n" #: openssl-pkcs11.c:287 msgid "Another user already logged in\n" msgstr "Toinen käyttäjä on jo kirjautuneena\n" #: openssl-pkcs11.c:291 msgid "Unknown error logging in to PKCS#11 token\n" msgstr "" #: openssl-pkcs11.c:298 #, c-format msgid "Logged in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:312 #, c-format msgid "Failed to enumerate certs in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:318 #, c-format msgid "Found %d certs in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:354 openssl-pkcs11.c:576 #, c-format msgid "Failed to parse PKCS#11 URI '%s'\n" msgstr "" #: openssl-pkcs11.c:361 openssl-pkcs11.c:586 msgid "Failed to enumerate PKCS#11 slots\n" msgstr "" #: openssl-pkcs11.c:395 openssl-pkcs11.c:628 #, c-format msgid "Logging in to PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:405 #, c-format msgid "Failed to find PKCS#11 cert '%s'\n" msgstr "" #: openssl-pkcs11.c:413 msgid "Certificate X.509 content not fetched by libp11\n" msgstr "" #: openssl-pkcs11.c:420 #, c-format msgid "Using secondary PKCS#11 certificate %s\n" msgstr "" #: openssl-pkcs11.c:465 #, c-format msgid "Failed to enumerate keys in PKCS#11 slot '%s'\n" msgstr "" #: openssl-pkcs11.c:471 #, c-format msgid "Found %d keys in slot '%s'\n" msgstr "" #: openssl-pkcs11.c:505 msgid "Certificate has no public key\n" msgstr "Varmenteella ei ole julkista avainta\n" #: openssl-pkcs11.c:506 msgid "Secondary certificate has no public key\n" msgstr "" #: openssl-pkcs11.c:512 openssl-pkcs11.c:536 msgid "Certificate does not match private key\n" msgstr "Varmenne ei vastaa yksityistä avainta\n" #: openssl-pkcs11.c:513 openssl-pkcs11.c:537 msgid "Secondary certificate does not match private key\n" msgstr "" #: openssl-pkcs11.c:516 msgid "Checking EC key matches cert\n" msgstr "" #: openssl-pkcs11.c:520 msgid "Failed to allocate signature buffer\n" msgstr "" #: openssl-pkcs11.c:530 msgid "Failed to sign dummy data to validate EC key\n" msgstr "" #: openssl-pkcs11.c:649 #, c-format msgid "Failed to find PKCS#11 key '%s'\n" msgstr "" #: openssl-pkcs11.c:656 #, c-format msgid "Using secondary PKCS#11 key %s\n" msgstr "" #: openssl-pkcs11.c:662 msgid "Failed to instantiate private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:663 msgid "Failed to instantiate secondary private key from PKCS#11\n" msgstr "" #: openssl-pkcs11.c:719 openssl-pkcs11.c:725 msgid "This version of OpenConnect was built without PKCS#11 support\n" msgstr "Tämä versio OpenConnectista koostettiin ilman PKCS#11-tukea\n" #: openssl.c:168 msgid "Failed to write to TLS/DTLS socket\n" msgstr "" #: openssl.c:218 openssl.c:284 msgid "Failed to read from TLS/DTLS socket\n" msgstr "" #: openssl.c:322 #, c-format msgid "Read error on %s session: %d\n" msgstr "" #: openssl.c:357 #, c-format msgid "Write error on %s session: %d\n" msgstr "" #: openssl.c:430 #, c-format msgid "Unhandled SSL UI request type %d\n" msgstr "" #: openssl.c:510 #, c-format msgid "PEM password too long (%d >= %d)\n" msgstr "" #: openssl.c:546 msgid "Client certificate or key missing\n" msgstr "" #: openssl.c:552 openssl.c:1019 msgid "Loading private key failed\n" msgstr "Yksityisen avaimen lataaminen epäonnistui\n" #: openssl.c:559 msgid "Failed to install certificate in OpenSSL context\n" msgstr "" #: openssl.c:583 #, c-format msgid "Extra cert from %s: '%s'\n" msgstr "" #: openssl.c:639 msgid "Parse PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:640 msgid "Parse secondary PKCS#12 failed (see above errors)\n" msgstr "" #: openssl.c:657 msgid "PKCS#12 contained no certificate!\n" msgstr "PKCS#12 ei sisältänyt varmennetta!\n" #: openssl.c:658 msgid "Secondary PKCS#12 contained no certificate!\n" msgstr "" #: openssl.c:664 msgid "PKCS#12 contained no private key!\n" msgstr "PKCS#12 ei sisältänyt yksityistä avainta!\n" #: openssl.c:665 msgid "Secondary PKCS#12 contained no private key!\n" msgstr "" #: openssl.c:672 msgid "PKCS#12" msgstr "PKCS#12" #: openssl.c:699 msgid "Can't load TPM engine.\n" msgstr "" #: openssl.c:705 msgid "Failed to init TPM engine\n" msgstr "" #: openssl.c:715 msgid "Failed to set TPM SRK password\n" msgstr "" #: openssl.c:729 msgid "Failed to load TPM private key\n" msgstr "" #: openssl.c:730 msgid "Failed to load secondary TPM private key\n" msgstr "" #: openssl.c:784 openssl.c:935 #, c-format msgid "Failed to open certificate file %s: %s\n" msgstr "Ei voitu avata varmennetiedostoa %s: %s\n" #: openssl.c:785 #, c-format msgid "Failed to open secondary certificate file %s: %s\n" msgstr "" #: openssl.c:795 msgid "Loading certificate failed\n" msgstr "Varmenteen lataaminen epäonnistui\n" #: openssl.c:826 msgid "Failed to process all supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:827 msgid "Failed to process secondary supporting certs. Trying anyway...\n" msgstr "" #: openssl.c:840 msgid "PEM file" msgstr "PEM-tiedosto" #: openssl.c:869 #, c-format msgid "Failed to create BIO for keystore item '%s'\n" msgstr "" #: openssl.c:896 msgid "Loading private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:897 msgid "Loading secondary private key failed (wrong passphrase?)\n" msgstr "" #: openssl.c:903 msgid "Loading private key failed (see above errors)\n" msgstr "" #: openssl.c:904 msgid "Loading secondary private key failed (see above errors)\n" msgstr "" #: openssl.c:958 msgid "Failed to load X509 certificate from keystore\n" msgstr "" #: openssl.c:995 #, c-format msgid "Failed to open private key file %s: %s\n" msgstr "" #: openssl.c:1020 msgid "Loading secondary private key failed\n" msgstr "" #: openssl.c:1076 openssl.c:1091 msgid "Failed to decrypt secondary PKCS#8 certificate file\n" msgstr "" #: openssl.c:1086 msgid "Enter PKCS#8 secondary pass phrase:" msgstr "" #: openssl.c:1111 msgid "Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1112 msgid "Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n" msgstr "" #: openssl.c:1122 #, c-format msgid "Failed to identify private key type in '%s'\n" msgstr "" #: openssl.c:1276 #, c-format msgid "Matched DNS altname '%s'\n" msgstr "" #: openssl.c:1283 #, c-format msgid "No match for altname '%s'\n" msgstr "" #: openssl.c:1297 #, c-format msgid "Certificate has GEN_IPADD altname with bogus length %d\n" msgstr "" #: openssl.c:1308 openssl.c:1454 #, c-format msgid "Matched %s address '%s'\n" msgstr "" #: openssl.c:1315 #, c-format msgid "No match for %s address '%s'\n" msgstr "" #: openssl.c:1357 #, c-format msgid "URI '%s' has non-empty path; ignoring\n" msgstr "" #: openssl.c:1362 #, c-format msgid "Matched URI '%s'\n" msgstr "" #: openssl.c:1373 #, c-format msgid "No match for URI '%s'\n" msgstr "" #: openssl.c:1388 #, c-format msgid "No altname in peer cert matched '%s'\n" msgstr "" #: openssl.c:1396 msgid "No subject name in peer cert!\n" msgstr "" #: openssl.c:1416 msgid "Failed to parse subject name in peer cert\n" msgstr "" #: openssl.c:1423 #, c-format msgid "Peer cert subject mismatch ('%s' != '%s')\n" msgstr "" #: openssl.c:1428 openssl.c:1462 #, c-format msgid "Matched peer certificate subject name '%s'\n" msgstr "" #: openssl.c:1524 #, c-format msgid "Extra cert from cafile: '%s'\n" msgstr "" #: openssl.c:1667 msgid "Error in client cert notAfter field\n" msgstr "" #: openssl.c:1668 msgid "Error in secondary client cert notAfter field\n" msgstr "" #: openssl.c:1683 msgid "" msgstr "" #: openssl.c:1709 msgid "SSL certificate and key do not match\n" msgstr "" "SSL-varmenne ja avain eivät täsmää\n" "\n" #: openssl.c:1745 #, c-format msgid "Failed to read certs from CA file '%s'\n" msgstr "" #: openssl.c:1775 #, c-format msgid "Failed to open CA file '%s'\n" msgstr "" #: openssl.c:1823 msgid "Create TLSv1 CTX failed\n" msgstr "" #: openssl.c:1881 msgid "Failed to construct OpenSSL cipher list\n" msgstr "" #: openssl.c:1892 #, c-format msgid "Failed to set OpenSSL cipher list (\"%s\")\n" msgstr "" #: openssl.c:1958 msgid "SSL connection failure\n" msgstr "SSL-yhteys epäonnistui\n" #: openssl.c:2124 msgid "Failed to calculate OATH HMAC\n" msgstr "" #: openssl.c:2227 #, c-format msgid "EAP-TTLS negotiation with %s\n" msgstr "" #: openssl.c:2238 #, c-format msgid "EAP-TTLS connection failure %d\n" msgstr "" #: ppp.c:113 msgid "HDLC initial flag sequence (0x7e) is missing\n" msgstr "" #: ppp.c:131 msgid "HDLC buffer ended without FCS and flag sequence (0x7e)\n" msgstr "" #: ppp.c:137 #, c-format msgid "HDLC frame too short (%d bytes)\n" msgstr "" #: ppp.c:149 #, c-format msgid "Bad HDLC packet FCS %04x\n" msgstr "" #: ppp.c:154 #, c-format msgid "Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n" msgstr "" #: ppp.c:312 #, c-format msgid "Current PPP state: %s (encap %s):\n" msgstr "" #: ppp.c:314 #, c-format msgid "" " in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n" msgstr "" #: ppp.c:322 #, c-format msgid "" " out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, " "solicit_peerns=%d, got_peerns=%d\n" msgstr "" #: ppp.c:407 #, c-format msgid "Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n" msgstr "" #: ppp.c:413 #, c-format msgid "Received MRU %d from server. Setting our MTU to match.\n" msgstr "" #: ppp.c:421 #, c-format msgid "Received asyncmap of 0x%08x from server\n" msgstr "" #: ppp.c:427 #, c-format msgid "Received magic number of 0x%08x from server\n" msgstr "" #: ppp.c:432 msgid "Received protocol field compression from server\n" msgstr "" #: ppp.c:437 msgid "Received address and control field compression from server\n" msgstr "" #: ppp.c:444 msgid "Received deprecated IP-Addresses from server, ignoring\n" msgstr "" #: ppp.c:451 msgid "Received Van Jacobson TCP/IP compression from server\n" msgstr "" #: ppp.c:459 #, c-format msgid "Received peer IPv4 address %s from server\n" msgstr "" #: ppp.c:475 #, c-format msgid "Received peer IPv6 link-local address %s from server\n" msgstr "" #: ppp.c:482 #, c-format msgid "Received unknown %s TLV (tag %d, len %d+2) from server:\n" msgstr "" #: ppp.c:509 #, c-format msgid "Received %ld extra bytes at end of Config-Request:\n" msgstr "" #: ppp.c:516 #, c-format msgid "Reject %s/id %d config from server\n" msgstr "" #: ppp.c:524 #, c-format msgid "Nak %s/id %d config from server\n" msgstr "" #: ppp.c:530 #, c-format msgid "Ack %s/id %d config from server\n" msgstr "" #: ppp.c:570 #, c-format msgid "Requesting calculated MTU of %d\n" msgstr "" #: ppp.c:625 #, c-format msgid "Sending our %s/id %d config request to server\n" msgstr "" #: ppp.c:662 msgid "Server rejected/nak'ed LCP MRU option\n" msgstr "" #: ppp.c:667 msgid "Server rejected/nak'ed LCP asyncmap option\n" msgstr "" #: ppp.c:678 msgid "Server rejected LCP magic option\n" msgstr "" #: ppp.c:684 msgid "Server rejected/nak'ed LCP PFCOMP option\n" msgstr "" #: ppp.c:689 msgid "Server rejected/nak'ed LCP ACCOMP option\n" msgstr "" #: ppp.c:697 #, c-format msgid "Server nak-offered IPv4 address: %s\n" msgstr "" #: ppp.c:701 #, c-format msgid "Server rejected Legacy IP address %s\n" msgstr "" #: ppp.c:707 #, c-format msgid "Server rejected/nak'ed our IPv4 address or request: %s\n" msgstr "" #: ppp.c:723 #, c-format msgid "Server nak-offered IPCP request for %s[%d] server: %s\n" msgstr "" #: ppp.c:729 #, c-format msgid "Server rejected/nak'ed IPCP request for %s[%d] server\n" msgstr "" #: ppp.c:744 #, c-format msgid "Server nak-offered IPv6 link-local address %s\n" msgstr "" #: ppp.c:752 msgid "Server rejected/nak'ed our IPv6 interface identifier\n" msgstr "" #: ppp.c:760 #, c-format msgid "Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n" msgstr "" #: ppp.c:769 #, c-format msgid "Received %ld extra bytes at end of Config-Reject:\n" msgstr "" #: ppp.c:794 #, c-format msgid "Received %s/id %d %s from server\n" msgstr "" #: ppp.c:825 #, c-format msgid "Server terminates with reason: %s\n" msgstr "" #: ppp.c:852 #, c-format msgid "Server rejected our request to configure IPv%d\n" msgstr "" #: ppp.c:1023 #, c-format msgid "PPP state transition from %s to %s on %s channel\n" msgstr "" #: ppp.c:1106 msgid "PPP payload exceeds receive buffer\n" msgstr "" #: ppp.c:1145 #, c-format msgid "Short packet received (%d bytes). Waiting for more.\n" msgstr "" #: ppp.c:1163 #, c-format msgid "Unexpected pre-PPP packet header for encap %d.\n" msgstr "" #: ppp.c:1176 #, c-format msgid "PPP payload len %d exceeds receive buffer %d\n" msgstr "" #: ppp.c:1182 #, c-format msgid "" "PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but " "header payload_len is %d. Waiting for more.\n" msgstr "" #: ppp.c:1214 msgid "Invalid PPP encapsulation\n" msgstr "" #: ppp.c:1223 #, c-format msgid "Packet contains %d bytes after payload. Assuming concatenated packet.\n" msgstr "" #: ppp.c:1273 #, c-format msgid "Unexpected IPv%d packet in PPP state %s.\n" msgstr "" #: ppp.c:1278 #, c-format msgid "Received IPv%d data packet of %d bytes over %s\n" msgstr "" #: ppp.c:1284 #, c-format msgid "Expected %d PPP header bytes but got %ld, shifting payload.\n" msgstr "" #: ppp.c:1306 #, c-format msgid "Sending Protocol-Reject for %s. Payload:\n" msgstr "" #: ppp.c:1390 msgid "Detected dead peer!\n" msgstr "" #: ppp.c:1400 msgid "Failed to establish PPP\n" msgstr "" #: ppp.c:1419 msgid "Send PPP discard request as keepalive\n" msgstr "" #: ppp.c:1423 msgid "Send PPP echo request as DPD\n" msgstr "" #: ppp.c:1489 #, c-format msgid "Sending PPP %s %s packet over %s (id %d, %d bytes total)\n" msgstr "" #: ppp.c:1495 #, c-format msgid "Sending PPP %s packet over %s (%d bytes total)\n" msgstr "" #: ppp.c:1553 #, c-format msgid "PPP connect called with invalid DTLS state %d\n" msgstr "" #: ppp.c:1574 msgid "DTLS tunnel connected; exiting HTTPS mainloop.\n" msgstr "" #: ppp.c:1608 #, c-format msgid "Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n" msgstr "" #: ppp.c:1633 msgid "Establishing PPP tunnel over TLS failed\n" msgstr "" #: ppp.c:1644 #, c-format msgid "Invalid DTLS state %d\n" msgstr "" #. This should never happen #: ppp.c:1711 msgid "Reset PPP failed\n" msgstr "" #: ppp.c:1732 msgid "Failed to authenticate DTLS session\n" msgstr "" #: pulse.c:235 #, c-format msgid "Received internal Legacy IP address %s\n" msgstr "" #: pulse.c:283 pulse.c:301 pulse.c:320 pulse.c:343 pulse.c:499 msgid "Failed to handle IPv6 address\n" msgstr "" #: pulse.c:293 #, c-format msgid "Received internal IPv6 address %s\n" msgstr "" #: pulse.c:335 #, c-format msgid "Received IPv6 split include %s\n" msgstr "" #: pulse.c:358 #, c-format msgid "Received IPv6 split exclude %s\n" msgstr "" #: pulse.c:365 #, c-format msgid "Unexpected length %d for attr 0x%x\n" msgstr "" #: pulse.c:416 #, c-format msgid "ESP encryption: 0x%04x (%s)\n" msgstr "ESP-salaus: 0x%04x (%s)\n" #: pulse.c:440 #, c-format msgid "ESP HMAC: 0x%04x (%s)\n" msgstr "" #. Amusingly, this isn't enforced. It's client-only #: pulse.c:490 #, c-format msgid "ESP only: %d\n" msgstr "" #: pulse.c:503 #, c-format msgid "Received internal gateway IPv6 address %s\n" msgstr "" #: pulse.c:528 #, c-format msgid "Unknown attr 0x%x len %d:%s\n" msgstr "" #: pulse.c:539 #, c-format msgid "Read %d bytes of IF-T/TLS record\n" msgstr "" #: pulse.c:556 msgid "Short write to IF-T/TLS\n" msgstr "" #: pulse.c:569 msgid "Error creating IF-T packet\n" msgstr "" #: pulse.c:589 msgid "Error creating EAP packet\n" msgstr "" #: pulse.c:624 pulse.c:1432 pulse.c:1495 msgid "Unexpected IF-T/TLS authentication challenge:\n" msgstr "" #: pulse.c:642 msgid "Unexpected EAP-TTLS payload:\n" msgstr "" #: pulse.c:675 #, c-format msgid "AVP 0x%x/0x%x:%s\n" msgstr "AVP 0x%x/0x%x:%s\n" #: pulse.c:677 #, c-format msgid "AVP %d:%s\n" msgstr "AVP %d:%s\n" #: pulse.c:744 msgid "Enter Pulse user realm:" msgstr "" #: pulse.c:749 pulse.c:792 msgid "Realm:" msgstr "" #: pulse.c:787 msgid "Choose Pulse user realm:" msgstr "" #: pulse.c:803 pulse.c:1562 pulse.c:1631 msgid "Failed to parse AVP\n" msgstr "" #: pulse.c:870 msgid "Session limit reached. Choose session to kill:\n" msgstr "" #: pulse.c:875 msgid "Session:" msgstr "Istunto:" #: pulse.c:895 msgid "Failed to parse session list\n" msgstr "" #: pulse.c:990 msgid "Enter secondary credentials:" msgstr "Anna toissijaiset kirjautumistietosi:" #. Point to password prompt in case that's all we use #: pulse.c:990 msgid "Enter user credentials:" msgstr "" #: pulse.c:1000 pulse.c:1192 msgid "Secondary username:" msgstr "Toissijainen käyttäjänimi:" #: pulse.c:1000 pulse.c:1192 msgid "Username:" msgstr "Käyttäjänimi:" #: pulse.c:1010 stoken.c:114 msgid "Password:" msgstr "Salasana:" #: pulse.c:1010 msgid "Secondary password:" msgstr "Toissijainen salasana:" #: pulse.c:1081 msgid "Password expired. Please change password:" msgstr "Salasanasi on vanhentunut. Vaihda salasana:" #: pulse.c:1085 msgid "Current password:" msgstr "Nykyinen salasana:" #: pulse.c:1090 msgid "New password:" msgstr "Uusi salasana:" #: pulse.c:1095 msgid "Verify new password:" msgstr "Vahvista uusi salasana:" #: pulse.c:1107 msgid "Passwords not provided.\n" msgstr "" #: pulse.c:1113 msgid "Passwords do not match.\n" msgstr "Salasanat eivät täsmää.\n" #: pulse.c:1118 msgid "Current password too long.\n" msgstr "Nykyinen salasana on liian pitkä.\n" #: pulse.c:1123 msgid "New password too long.\n" msgstr "Uusi salasana on liian pitkä.\n" #: pulse.c:1182 msgid "Token code request:" msgstr "" #: pulse.c:1206 msgid "Please enter response:" msgstr "" #: pulse.c:1210 msgid "Please enter your passcode:" msgstr "Anna varmistuskoodi:" #: pulse.c:1212 msgid "Please enter your secondary token information:" msgstr "" #: pulse.c:1349 msgid "Error creating Pulse connection request\n" msgstr "" #: pulse.c:1392 msgid "Unexpected response to IF-T/TLS version negotiation:\n" msgstr "" #: pulse.c:1397 #, c-format msgid "IF-T/TLS version from server: %d\n" msgstr "" #: pulse.c:1524 msgid "Failed to establish EAP-TTLS session\n" msgstr "" #: pulse.c:1647 msgid "" "WARNING: Server provided certificate MD5 does not match its actual " "certificate.\n" msgstr "" #: pulse.c:1661 msgid "Authentication failure: Account locked out\n" msgstr "" #: pulse.c:1664 msgid "Authentication failure: Client certificate required\n" msgstr "" #: pulse.c:1667 #, c-format msgid "Authentication failure: Code 0x%02x\n" msgstr "Tunnistautumisvirhe: Koodi 0x%02x\n" #: pulse.c:1701 #, c-format msgid "" "Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n" msgstr "" #: pulse.c:1704 msgid "Please report this value and the behaviour of the official client.\n" msgstr "" #: pulse.c:1773 #, c-format msgid "Authentication failure: %.*s\n" msgstr "" #: pulse.c:1783 msgid "" "Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n" msgstr "" #: pulse.c:1803 msgid "Unhandled Pulse authentication packet, or authentication failure\n" msgstr "" #: pulse.c:1819 msgid "Pulse authentication cookie not accepted\n" msgstr "Pulse-tunnistautumisevästettä ei hyväksytty\n" #: pulse.c:1825 msgid "Pulse realm entry\n" msgstr "" #: pulse.c:1831 msgid "Pulse realm choice\n" msgstr "" #: pulse.c:1838 #, c-format msgid "Pulse password auth request, code 0x%02x\n" msgstr "" #: pulse.c:1851 #, c-format msgid "Pulse password request with unknown code 0x%02x. Please report.\n" msgstr "" #: pulse.c:1860 msgid "Pulse password general token code request\n" msgstr "" #: pulse.c:1871 #, c-format msgid "Pulse session limit, %d sessions\n" msgstr "" #: pulse.c:1880 msgid "Unhandled Pulse auth request\n" msgstr "" #: pulse.c:1917 msgid "Unexpected response instead of IF-T/TLS auth success:\n" msgstr "" #: pulse.c:1980 msgid "EAP-TTLS failure: Flushing output with pending input bytes\n" msgstr "" #: pulse.c:2003 msgid "Error creating EAP-TTLS buffer\n" msgstr "" #: pulse.c:2052 #, c-format msgid "Failed to read EAP-TTLS Acknowledge: %s\n" msgstr "" #: pulse.c:2060 pulse.c:2102 #, c-format msgid "Read %d bytes of IF-T/TLS EAP-TTLS record\n" msgstr "" #: pulse.c:2071 msgid "Bad EAP-TTLS Acknowledge packet\n" msgstr "" #: pulse.c:2113 #, c-format msgid "Bad EAP-TTLS packet (len %d, left %d)\n" msgstr "" #: pulse.c:2298 msgid "Unexpected Pulse config packet:\n" msgstr "" #: pulse.c:2392 #, c-format msgid "Receive route of unknown type 0x%08x\n" msgstr "" #: pulse.c:2450 msgid "Invalid ESP config packet:\n" msgstr "" #: pulse.c:2462 msgid "Invalid ESP setup\n" msgstr "" #: pulse.c:2537 msgid "Bad IF-T/TLS packet when expecting configuration:\n" msgstr "" #: pulse.c:2545 msgid "Unexpected IF-T/TLS packet when expecting configuration.\n" msgstr "" #: pulse.c:2611 msgid "Insufficient configuration found\n" msgstr "" #: pulse.c:2723 msgid "ESP rekey failed\n" msgstr "" #: pulse.c:2752 #, c-format msgid "Pulse fatal error (reason: %ld): %s\n" msgstr "" #: pulse.c:2770 msgid "Unknown Pulse packet\n" msgstr "Tuntematon Pulse-paketti\n" #: pulse.c:2948 #, c-format msgid "Sending IF-T/TLS data packet of %d bytes\n" msgstr "" #: script.c:179 #, c-format msgid "Discard bad split include: \"%s\"\n" msgstr "" #: script.c:183 #, c-format msgid "Discard bad split exclude: \"%s\"\n" msgstr "" #: script.c:211 #, c-format msgid "" "WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:215 #, c-format msgid "" "WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n" msgstr "" #: script.c:324 #, c-format msgid "Ignoring legacy network because address \"%s\" is invalid.\n" msgstr "" #: script.c:329 #, c-format msgid "Ignoring legacy network because netmask \"%s\" is invalid.\n" msgstr "" #: script.c:595 #, c-format msgid "Failed to get script exit status: %s\n" msgstr "" #: script.c:604 #, c-format msgid "Script '%s' returned error %ld\n" msgstr "" #: script.c:612 msgid "Script did not complete within 10 seconds.\n" msgstr "" #: script.c:625 script.c:673 #, c-format msgid "Failed to spawn script '%s' for %s: %s\n" msgstr "" #: script.c:680 #, c-format msgid "Script '%s' exited abnormally (%x)\n" msgstr "" #: script.c:688 #, c-format msgid "Script '%s' returned error %d\n" msgstr "" #: ssl.c:119 msgid "Failed select() for socket connect" msgstr "" #: ssl.c:124 msgid "Socket connect cancelled\n" msgstr "" #: ssl.c:196 msgid "Failed setsockopt(TCP_NODELAY) on TLS socket:" msgstr "" #: ssl.c:247 #, c-format msgid "Failed to reconnect to proxy %s: %s\n" msgstr "" #: ssl.c:251 #, c-format msgid "Failed to reconnect to host %s: %s\n" msgstr "" #: ssl.c:319 #, c-format msgid "Proxy from libproxy: %s://%s:%d/\n" msgstr "" #: ssl.c:347 #, c-format msgid "getaddrinfo failed for host '%s': %s\n" msgstr "" #: ssl.c:356 ssl.c:483 msgid "Reconnecting to DynDNS server using previously cached IP address\n" msgstr "" #: ssl.c:371 #, c-format msgid "Attempting to connect to proxy %s%s%s:%s\n" msgstr "" #: ssl.c:372 #, c-format msgid "Attempting to connect to server %s%s%s:%s\n" msgstr "" #: ssl.c:393 #, c-format msgid "Connected to %s%s%s:%s\n" msgstr "" #: ssl.c:405 msgid "Failed to allocate sockaddr storage\n" msgstr "" #: ssl.c:448 #, c-format msgid "Failed to connect to %s%s%s:%s: %s\n" msgstr "" #: ssl.c:466 msgid "Forgetting non-functional previous peer address\n" msgstr "" #: ssl.c:478 #, c-format msgid "Failed to connect to host %s\n" msgstr "" #: ssl.c:497 #, c-format msgid "Reconnecting to proxy %s\n" msgstr "Yhdistetään uudelleen välityspalvelimeen %s\n" #: ssl.c:568 #, c-format msgid "statvfs: %s\n" msgstr "" #: ssl.c:596 msgid "Could not obtain file system ID for passphrase\n" msgstr "" #: ssl.c:607 #, c-format msgid "Failed to open private key file '%s': %s\n" msgstr "" #: ssl.c:635 #, c-format msgid "statfs: %s\n" msgstr "statfs: %s\n" #: ssl.c:726 msgid "No error" msgstr "Ei virhettä" #: ssl.c:727 msgid "Keystore locked" msgstr "" #: ssl.c:728 msgid "Keystore uninitialized" msgstr "" #: ssl.c:729 msgid "System error" msgstr "Järjestelmävirhe" #: ssl.c:730 msgid "Protocol error" msgstr "Protokollavirhe" #: ssl.c:731 msgid "Permission denied" msgstr "Käyttö estetty" #: ssl.c:732 msgid "Key not found" msgstr "Avainta ei löytynyt" #: ssl.c:733 msgid "Value corrupted" msgstr "" #: ssl.c:734 msgid "Undefined action" msgstr "" #: ssl.c:738 msgid "Wrong password" msgstr "Väärä salasana" #: ssl.c:739 msgid "Unknown error" msgstr "Tuntematon virhe" #: ssl.c:872 msgid "Failed select() for command socket" msgstr "" #: ssl.c:938 #, c-format msgid "%s() used with unsupported mode '%s'\n" msgstr "" #: ssl.c:960 #, c-format msgid "Failed to open %s: %s\n" msgstr "" #: ssl.c:967 #, c-format msgid "Failed to fstat() %s: %s\n" msgstr "" #: ssl.c:974 #, c-format msgid "File %s is empty\n" msgstr "Tiedosto %s on tyhjä\n" #: ssl.c:980 #, c-format msgid "File %s has suspicious size %\n" msgstr "" #: ssl.c:989 #, c-format msgid "Failed to allocate %d bytes for %s\n" msgstr "" #: ssl.c:997 #, c-format msgid "Failed to read %s: %s\n" msgstr "" #: ssl.c:1033 #, c-format msgid "Unknown protocol family %d. Cannot create UDP server address\n" msgstr "" #: ssl.c:1052 msgid "Open UDP socket" msgstr "" #: ssl.c:1092 #, c-format msgid "Unknown protocol family %d. Cannot use UDP transport\n" msgstr "" #: ssl.c:1100 msgid "Bind UDP socket" msgstr "" #: ssl.c:1107 msgid "Connect UDP socket" msgstr "" #: ssl.c:1114 msgid "Make UDP socket non-blocking" msgstr "" #: ssl.c:1151 msgid "Cookie is no longer valid, ending session\n" msgstr "" #: ssl.c:1155 #, c-format msgid "sleep %ds, remaining timeout %ds\n" msgstr "" #: ssl.c:1226 msgid "Failed select() for socket send" msgstr "" #: ssl.c:1266 msgid "Failed select() for socket recv" msgstr "" #: sspi.c:202 #, c-format msgid "SSPI token too large (%ld bytes)\n" msgstr "" #: sspi.c:215 #, c-format msgid "Sending SSPI token of %lu bytes\n" msgstr "" #: sspi.c:220 #, c-format msgid "Failed to send SSPI authentication token to proxy: %s\n" msgstr "" #: sspi.c:228 sspi.c:256 #, c-format msgid "Failed to receive SSPI authentication token from proxy: %s\n" msgstr "" #: sspi.c:234 msgid "SOCKS server reported SSPI context failure\n" msgstr "" #: sspi.c:238 #, c-format msgid "Unknown SSPI status response (0x%02x) from SOCKS server\n" msgstr "" #: sspi.c:260 #, c-format msgid "Got SSPI token of %lu bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:276 #, c-format msgid "QueryContextAttributes() failed: %lx\n" msgstr "" #: sspi.c:312 #, c-format msgid "EncryptMessage() failed: %lx\n" msgstr "EncryptMessage() epäonnistui: %lx\n" #: sspi.c:324 #, c-format msgid "EncryptMessage() result too large (%lu + %lu + %lu)\n" msgstr "" #: sspi.c:349 #, c-format msgid "Sending SSPI protection negotiation of %u bytes\n" msgstr "" #: sspi.c:354 #, c-format msgid "Failed to send SSPI protection response to proxy: %s\n" msgstr "" #: sspi.c:362 sspi.c:372 #, c-format msgid "Failed to receive SSPI protection response from proxy: %s\n" msgstr "" #: sspi.c:377 #, c-format msgid "Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n" msgstr "" #: sspi.c:393 #, c-format msgid "DecryptMessage failed: %lx\n" msgstr "" #: sspi.c:398 #, c-format msgid "Invalid SSPI protection response from proxy (%lu bytes)\n" msgstr "" #: stoken.c:102 msgid "Enter credentials to unlock software token." msgstr "" #: stoken.c:107 msgid "Device ID:" msgstr "Laitetunniste:" #: stoken.c:141 msgid "User bypassed soft token.\n" msgstr "" #: stoken.c:147 stoken.c:232 msgid "All fields are required; try again.\n" msgstr "Kaikki kentät vaaditaan, yritä uudelleen.\n" #: stoken.c:157 stoken.c:324 msgid "General failure in libstoken.\n" msgstr "" #: stoken.c:161 msgid "Incorrect device ID or password; try again.\n" msgstr "" #: stoken.c:165 msgid "Soft token init was successful.\n" msgstr "" #: stoken.c:208 msgid "Enter software token PIN." msgstr "Anna ohjelmistopohjaisen tokenin PIN." #: stoken.c:212 msgid "PIN:" msgstr "PIN:" #: stoken.c:239 msgid "Invalid PIN format; try again.\n" msgstr "Virheellinen PIN-muoto, yritä uudelleen.\n" #: stoken.c:319 msgid "Generating RSA token code\n" msgstr "Luodaan RSA-tokenin koodia\n" #: tun-win32.c:86 msgid "Error accessing registry key for network adapters\n" msgstr "" #: tun-win32.c:112 #, c-format msgid "Cannot read %s\\%s or is not string\n" msgstr "" #: tun-win32.c:122 #, c-format msgid "%s\\ComponentId is unknown '%s'\n" msgstr "" #: tun-win32.c:128 #, c-format msgid "Found %s at %s\n" msgstr "" #: tun-win32.c:145 #, c-format msgid "Cannot open registry key %s\n" msgstr "" #: tun-win32.c:156 #, c-format msgid "Cannot read registry key %s\\%s or is not string\n" msgstr "" #: tun-win32.c:197 #, c-format msgid "" "GetAdapterIndex() failed: %s\n" "Falling back to GetAdaptersInfo()\n" msgstr "" #: tun-win32.c:211 #, c-format msgid "GetAdaptersInfo() failed: %s\n" msgstr "" #: tun-win32.c:258 #, c-format msgid "GetAdaptersAddresses() failed: %s\n" msgstr "" #: tun-win32.c:289 #, c-format msgid "" "Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n" msgstr "" #: tun-win32.c:296 #, c-format msgid "" "Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim " "the address from it.\n" msgstr "" #: tun-win32.c:309 #, c-format msgid "GetUnicastIpAddressTable() failed: %s\n" msgstr "" #: tun-win32.c:330 #, c-format msgid "DeleteUnicastIpAddressEntry() failed: %s\n" msgstr "" #: tun-win32.c:337 msgid "GetUnicastIpAddressTable() did not find matching address to reclaim\n" msgstr "" #: tun-win32.c:365 #, c-format msgid "Failed to open %s\n" msgstr "Ei voitu avata %s\n" #: tun-win32.c:370 #, c-format msgid "Opened tun device %S\n" msgstr "" #: tun-win32.c:378 #, c-format msgid "Failed to obtain TAP driver version: %s\n" msgstr "" #: tun-win32.c:384 #, c-format msgid "Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n" msgstr "" #: tun-win32.c:405 #, c-format msgid "Failed to set TAP IP addresses: %s\n" msgstr "" #: tun-win32.c:417 tun-win32.c:662 #, c-format msgid "Failed to set TAP media status: %s\n" msgstr "" #: tun-win32.c:431 #, c-format msgid "Ignoring non-matching interface \"%S\"\n" msgstr "" #: tun-win32.c:454 msgid "Could not convert interface name to UTF-8\n" msgstr "" #: tun-win32.c:468 #, c-format msgid "Using %s device '%s', index %d\n" msgstr "" #: tun-win32.c:473 msgid "" "WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n" msgstr "" #: tun-win32.c:485 msgid "Could not construct interface name\n" msgstr "" #: tun-win32.c:527 msgid "" "Access denied creating Wintun adapter. Are you running with Administrator " "privileges?\n" msgstr "" #: tun-win32.c:533 msgid "" "Neither Windows-TAP nor Wintun adapters were found. Is the driver " "installed?\n" msgstr "" #: tun-win32.c:560 msgid "TAP device aborted connectivity. Disconnecting.\n" msgstr "" #: tun-win32.c:565 #, c-format msgid "Failed to read from TAP device: %s\n" msgstr "" #: tun-win32.c:579 #, c-format msgid "Failed to complete read from TAP device: %s\n" msgstr "" #: tun-win32.c:605 #, c-format msgid "Wrote %ld bytes to tun\n" msgstr "" #: tun-win32.c:615 msgid "Waiting for tun write...\n" msgstr "" #: tun-win32.c:618 #, c-format msgid "Wrote %ld bytes to tun after waiting\n" msgstr "" #: tun-win32.c:625 #, c-format msgid "Failed to write to TAP device: %s\n" msgstr "" #: tun-win32.c:679 msgid "Spawning tunnel scripts is not yet supported on Windows\n" msgstr "" #: tun.c:88 msgid "Could not open /dev/tun for plumbing" msgstr "" #: tun.c:92 msgid "Can't push IP" msgstr "" #: tun.c:102 msgid "Can't set ifname" msgstr "" #: tun.c:109 #, c-format msgid "Can't open %s: %s\n" msgstr "" #: tun.c:118 #, c-format msgid "Can't plumb %s for IPv%d: %s\n" msgstr "" #: tun.c:139 msgid "open /dev/tun" msgstr "" #: tun.c:145 msgid "Failed to create new tun" msgstr "" #: tun.c:151 msgid "Failed to put tun file descriptor into message-discard mode" msgstr "" #: tun.c:183 msgid "tun device is unsupported on this platform\n" msgstr "" #: tun.c:205 msgid "open net" msgstr "" #: tun.c:214 msgid "SIOCSIFMTU" msgstr "SIOCSIFMTU" #: tun.c:242 tun.c:428 #, c-format msgid "Failed to open tun device: %s\n" msgstr "" #: tun.c:253 #, c-format msgid "Failed to bind local tun device (TUNSETIFF): %s\n" msgstr "" #: tun.c:257 msgid "" "To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n" msgstr "" #: tun.c:322 #, c-format msgid "Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n" msgstr "" #: tun.c:331 #, c-format msgid "Failed to open SYSPROTO_CONTROL socket: %s\n" msgstr "" #: tun.c:340 #, c-format msgid "Failed to query utun control id: %s\n" msgstr "" #: tun.c:358 msgid "Failed to allocate utun device name\n" msgstr "" #: tun.c:369 #, c-format msgid "Failed to connect utun unit: %s\n" msgstr "" #: tun.c:388 #, c-format msgid "Invalid interface name '%s'; must match 'tun%%d'\n" msgstr "" #: tun.c:398 #, c-format msgid "Cannot open '%s': %s\n" msgstr "" #: tun.c:437 msgid "TUNSIFHEAD" msgstr "TUNSIFHEAD" #: tun.c:461 #, c-format msgid "Failed to make tun socket nonblocking: %s\n" msgstr "" #: tun.c:488 #, c-format msgid "socketpair failed: %s\n" msgstr "" #: tun.c:493 #, c-format msgid "fork failed: %s\n" msgstr "" #: tun.c:497 msgid "setpgid" msgstr "" #: tun.c:502 msgid "execl" msgstr "" #: tun.c:507 msgid "(script)" msgstr "" #: tun.c:575 #, c-format msgid "Failed to write incoming packet: %s\n" msgstr "" #: vhost.c:77 #, c-format msgid "Failed to set vring #%d size: %s\n" msgstr "" #: vhost.c:85 vhost.c:97 #, c-format msgid "Failed to set vring #%d base: %s\n" msgstr "" #: vhost.c:107 #, c-format msgid "Failed to set vring #%d RX backend: %s\n" msgstr "" #: vhost.c:115 #, c-format msgid "Failed to set vring #%d call eventfd: %s\n" msgstr "" #: vhost.c:123 #, c-format msgid "Failed to set vring #%d kick eventfd: %s\n" msgstr "" #: vhost.c:142 #, c-format msgid "Not using vhost-net due to low queue length %d\n" msgstr "" #: vhost.c:156 #, c-format msgid "Failed to open /dev/vhost-net: %s\n" msgstr "" #: vhost.c:163 #, c-format msgid "Failed to set vhost ownership: %s\n" msgstr "" #: vhost.c:172 #, c-format msgid "Failed to get vhost features: %s\n" msgstr "" #: vhost.c:177 #, c-format msgid "vhost-net lacks required features: %llx\n" msgstr "" #: vhost.c:185 #, c-format msgid "Failed to set vhost features: %s\n" msgstr "" #: vhost.c:193 #, c-format msgid "Failed to open vhost kick eventfd: %s\n" msgstr "" #: vhost.c:200 #, c-format msgid "Failed to open vhost call eventfd: %s\n" msgstr "" #: vhost.c:218 #, c-format msgid "Failed to set vhost memory map: %s\n" msgstr "" #: vhost.c:241 #, c-format msgid "Failed to set tun sndbuf: %s\n" msgstr "" #: vhost.c:246 #, c-format msgid "Using vhost-net for tun acceleration, ring size %d\n" msgstr "" #: vhost.c:369 #, c-format msgid "Error: vhost gave back invalid descriptor %d, len %d\n" msgstr "" #: vhost.c:379 #, c-format msgid "vhost gave back empty descriptor %d\n" msgstr "" #: vhost.c:390 #, c-format msgid "Free TX packet %p [%d] [used %d]\n" msgstr "" #: vhost.c:402 #, c-format msgid "RX packet %p(%d) [%d] [used %d]\n" msgstr "" #: vhost.c:467 #, c-format msgid "Queue TX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:475 #, c-format msgid "Queue RX packet %p at desc %d avail %d\n" msgstr "" #: vhost.c:509 #, c-format msgid "Immediate wake because vhost ring moved on from 0x%x to 0x%x\n" msgstr "" #: vhost.c:536 msgid "Failed to kick vhost-net eventfd\n" msgstr "" #: vhost.c:539 msgid "Kick vhost ring\n" msgstr "" #: wintun.c:74 msgid "Could not load wintun.dll\n" msgstr "" #: wintun.c:89 msgid "Could not resolve functions from wintun.dll\n" msgstr "" #: wintun.c:143 #, c-format msgid "Loaded Wintun v%u.%u\n" msgstr "" #: wintun.c:150 #, c-format msgid "Failed to create Wintun session: %s\n" msgstr "" #: wintun.c:173 #, c-format msgid "Could not retrieve packet from Wintun adapter '%S': %s\n" msgstr "" #: wintun.c:185 #, c-format msgid "Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n" msgstr "" #: wintun.c:200 #, c-format msgid "Could not send packet through Wintun adapter '%S': %s\n" msgstr "" #: xml.c:77 xml.c:102 #, c-format msgid "Treating host \"%s\" as a raw hostname\n" msgstr "" #: xml.c:84 #, c-format msgid "Failed to SHA1 existing file\n" msgstr "" #: xml.c:92 #, c-format msgid "XML config file SHA1: %s\n" msgstr "" #: xml.c:100 #, c-format msgid "Failed to parse XML config file %s\n" msgstr "" #: xml.c:137 #, c-format msgid "Host \"%s\" has address \"%s\"\n" msgstr "" #: xml.c:147 #, c-format msgid "Host \"%s\" has UserGroup \"%s\"\n" msgstr "" #: xml.c:161 #, c-format msgid "Host \"%s\" not listed in config; treating as raw hostname\n" msgstr "" #: yubikey.c:96 #, c-format msgid "Failed to send \"%s\" to ykneo-oath applet: %s\n" msgstr "" #: yubikey.c:103 #, c-format msgid "Invalid short response to \"%s\" from ykneo-oath applet\n" msgstr "" #: yubikey.c:120 #, c-format msgid "Failure response to \"%s\": %04x\n" msgstr "" #: yubikey.c:174 msgid "select applet command" msgstr "" #: yubikey.c:185 yubikey.c:424 msgid "Unrecognised response from ykneo-oath applet\n" msgstr "" #: yubikey.c:201 #, c-format msgid "Found ykneo-oath applet v%d.%d.%d.\n" msgstr "" #: yubikey.c:225 msgid "PIN required for Yubikey OATH applet" msgstr "" #: yubikey.c:230 msgid "Yubikey PIN:" msgstr "Yubikeyn PIN:" #: yubikey.c:257 msgid "Failed to calculate Yubikey unlock response\n" msgstr "" #: yubikey.c:274 msgid "unlock command" msgstr "" #: yubikey.c:306 msgid "Trying truncated-char PBKBF2 variant of Yubikey PIN\n" msgstr "" #: yubikey.c:342 #, c-format msgid "Failed to establish PC/SC context: %s\n" msgstr "" #: yubikey.c:347 msgid "Established PC/SC context\n" msgstr "" #: yubikey.c:353 yubikey.c:365 #, c-format msgid "Failed to query reader list: %s\n" msgstr "" #: yubikey.c:392 #, c-format msgid "Failed to connect to PC/SC reader '%s': %s\n" msgstr "" #: yubikey.c:397 #, c-format msgid "Connected PC/SC reader '%s'\n" msgstr "" #: yubikey.c:402 #, c-format msgid "Failed to obtain exclusive access to reader '%s': %s\n" msgstr "" #: yubikey.c:412 msgid "list keys command" msgstr "" #. Translators: This is filled in with mode and hash type, and the key identifier. #. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" #: yubikey.c:445 #, c-format msgid "Found %s/%s key '%s' on '%s'\n" msgstr "" #: yubikey.c:468 #, c-format msgid "" "Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n" msgstr "" #: yubikey.c:516 msgid "Server is rejecting the Yubikey token; switching to manual entry\n" msgstr "" #: yubikey.c:570 msgid "Generating Yubikey token code\n" msgstr "" #: yubikey.c:575 #, c-format msgid "Failed to obtain exclusive access to Yubikey: %s\n" msgstr "" #: yubikey.c:619 msgid "calculate command" msgstr "" #: yubikey.c:627 msgid "Unrecognised response from Yubikey when generating tokencode\n" msgstr "" openconnect-8.20/tun.c0000644000076400007640000003474714171606260016524 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include #include #include #if defined(__APPLE__) && defined(HAVE_NET_UTUN_H) #include #include #include #endif #include #include #include #include #include #include /* * If an if_tun.h include file was found anywhere (by the Makefile), it's * included. Else, we end up assuming that we have BSD-style devices such * as /dev/tun0 etc. */ #ifdef IF_TUN_HDR #include IF_TUN_HDR #endif /* * The OS X tun/tap driver doesn't provide a header file; you're expected * to define this for yourself. */ #ifdef __APPLE__ #define TUNSIFHEAD _IOW('t', 96, int) #endif /* * OpenBSD always puts the protocol family prefix onto packets. Other * systems let us enable that with the TUNSIFHEAD ioctl, and some of them * (e.g. FreeBSD) _need_ it otherwise they'll interpret IPv6 packets as IPv4. */ #if defined(__OpenBSD__) || defined(TUNSIFHEAD) #define TUN_HAS_AF_PREFIX 1 #endif #ifdef __sun__ #include #include #ifndef TUNNEWPPA #error "Install TAP driver from http://www.whiteboard.ne.jp/~admin2/tuntap/" #endif static int link_proto(struct openconnect_info *vpninfo, int unit_nr, const char *devname, uint64_t flags) { int ip_fd, mux_id, tun2_fd; struct lifreq ifr; tun2_fd = open("/dev/tun", O_RDWR); if (tun2_fd < 0) { vpn_perror(vpninfo, _("Could not open /dev/tun for plumbing")); return -EIO; } if (ioctl(tun2_fd, I_PUSH, "ip") < 0) { vpn_perror(vpninfo, _("Can't push IP")); close(tun2_fd); return -EIO; } sprintf(ifr.lifr_name, "tun%d", unit_nr); ifr.lifr_ppa = unit_nr; ifr.lifr_flags = flags; if (ioctl(tun2_fd, SIOCSLIFNAME, &ifr) < 0) { vpn_perror(vpninfo, _("Can't set ifname")); close(tun2_fd); return -1; } ip_fd = open(devname, O_RDWR); if (ip_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Can't open %s: %s\n"), devname, strerror(errno)); close(tun2_fd); return -1; } mux_id = ioctl(ip_fd, I_LINK, tun2_fd); if (mux_id < 0) { vpn_progress(vpninfo, PRG_ERR, _("Can't plumb %s for IPv%d: %s\n"), ifr.lifr_name, (flags == IFF_IPV4) ? 4 : 6, strerror(errno)); close(tun2_fd); close(ip_fd); return -1; } close(tun2_fd); return ip_fd; } intptr_t os_setup_tun(struct openconnect_info *vpninfo) { int tun_fd = -1; static char tun_name[80]; int unit_nr; tun_fd = open("/dev/tun", O_RDWR); if (tun_fd < 0) { vpn_perror(vpninfo, _("open /dev/tun")); return -EIO; } unit_nr = ioctl(tun_fd, TUNNEWPPA, -1); if (unit_nr < 0) { vpn_perror(vpninfo, _("Failed to create new tun")); close(tun_fd); return -EIO; } if (ioctl(tun_fd, I_SRDOPT, RMSGD) < 0) { vpn_perror(vpninfo, _("Failed to put tun file descriptor into message-discard mode")); close(tun_fd); return -EIO; } sprintf(tun_name, "tun%d", unit_nr); vpninfo->ifname = strdup(tun_name); vpninfo->ip_fd = link_proto(vpninfo, unit_nr, "/dev/udp", IFF_IPV4); if (vpninfo->ip_fd < 0) { close(tun_fd); return -EIO; } if (vpninfo->ip_info.addr6 || vpninfo->ip_info.netmask6) { vpninfo->ip6_fd = link_proto(vpninfo, unit_nr, "/dev/udp6", IFF_IPV6); if (vpninfo->ip6_fd < 0) { close(tun_fd); close(vpninfo->ip_fd); vpninfo->ip_fd = -1; return -EIO; } } else vpninfo->ip6_fd = -1; return tun_fd; } #elif defined(__native_client__) intptr_t os_setup_tun(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("tun device is unsupported on this platform\n")); return -EOPNOTSUPP; } #else /* !__sun__ && !__native_client__ */ /* MTU setting code for both Linux and BSD systems */ static void ifreq_set_ifname(struct openconnect_info *vpninfo, struct ifreq *ifr) { char *ifname = openconnect_utf8_to_legacy(vpninfo, vpninfo->ifname); strncpy(ifr->ifr_name, ifname, sizeof(ifr->ifr_name) - 1); if (ifname != vpninfo->ifname) free(ifname); } static int set_tun_mtu(struct openconnect_info *vpninfo) { struct ifreq ifr; int net_fd; net_fd = socket(PF_INET, SOCK_DGRAM, 0); if (net_fd < 0) { vpn_perror(vpninfo, _("open net")); return -EINVAL; } memset(&ifr, 0, sizeof(ifr)); ifreq_set_ifname(vpninfo, &ifr); ifr.ifr_mtu = vpninfo->ip_info.mtu; if (ioctl(net_fd, SIOCSIFMTU, &ifr) < 0) vpn_perror(vpninfo, _("SIOCSIFMTU")); close(net_fd); return 0; } #ifdef IFF_TUN /* Linux */ intptr_t os_setup_tun(struct openconnect_info *vpninfo) { int tun_fd = -1; struct ifreq ifr; int tunerr; tun_fd = open("/dev/net/tun", O_RDWR); if (tun_fd < 0) { /* Android has /dev/tun instead of /dev/net/tun Since other systems might have too, just try it as a fallback instead of using ifdef __ANDROID__ */ tunerr = errno; tun_fd = open("/dev/tun", O_RDWR); } if (tun_fd < 0) { /* If the error on /dev/tun is ENOENT, that's boring. Use the error we got on /dev/net/tun instead */ if (errno != ENOENT) tunerr = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open tun device: %s\n"), strerror(tunerr)); return -EIO; } memset(&ifr, 0, sizeof(ifr)); ifr.ifr_flags = IFF_TUN | IFF_NO_PI; if (vpninfo->ifname) ifreq_set_ifname(vpninfo, &ifr); if (ioctl(tun_fd, TUNSETIFF, (void *) &ifr) < 0) { int err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to bind local tun device (TUNSETIFF): %s\n"), strerror(err)); if (err == EPERM) { vpn_progress(vpninfo, PRG_ERR, _("To configure local networking, openconnect must be running as root\n" "See https://www.infradead.org/openconnect/nonroot.html for more information\n")); } close(tun_fd); return -EIO; } if (!vpninfo->ifname) vpninfo->ifname = strdup(ifr.ifr_name); /* Ancient vpnc-scripts might not get this right */ set_tun_mtu(vpninfo); return tun_fd; } #else /* BSD et al, including OS X */ #ifdef SIOCIFCREATE static int bsd_open_tun(char *tun_name) { int fd; int s; struct ifreq ifr; fd = open(tun_name, O_RDWR); if (fd == -1) { s = socket(AF_INET, SOCK_DGRAM, 0); if (s < 0) return -1; memset(&ifr, 0, sizeof(ifr)); strncpy(ifr.ifr_name, tun_name + 5, sizeof(ifr.ifr_name) - 1); if (!ioctl(s, SIOCIFCREATE, &ifr)) fd = open(tun_name, O_RDWR); close(s); } return fd; } #else #define bsd_open_tun(tun_name) open(tun_name, O_RDWR) #endif intptr_t os_setup_tun(struct openconnect_info *vpninfo) { static char tun_name[80]; int unit_nr = 0; int tun_fd = -1; #if defined(__APPLE__) && defined (HAVE_NET_UTUN_H) /* OS X (since 10.6) can do this as well as the traditional BSD devices supported via tuntaposx. */ struct sockaddr_ctl sc; struct ctl_info ci; if (vpninfo->ifname) { char *endp = NULL; if (!strncmp(vpninfo->ifname, "tun", 3)) goto do_bsdtun; if (strncmp(vpninfo->ifname, "utun", 4) || (unit_nr = strtol(vpninfo->ifname + 4, &endp, 10), !endp) || (unit_nr && vpninfo->ifname[4] == '0') || *endp) { vpn_progress(vpninfo, PRG_ERR, _("Invalid interface name '%s'; must match 'utun%%d' or 'tun%%d'\n"), vpninfo->ifname); return -EINVAL; } } tun_fd = socket(PF_SYSTEM, SOCK_DGRAM, SYSPROTO_CONTROL); if (tun_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open SYSPROTO_CONTROL socket: %s\n"), strerror(errno)); goto utun_fail; } snprintf(ci.ctl_name, sizeof(ci.ctl_name), UTUN_CONTROL_NAME); if (ioctl(tun_fd, CTLIOCGINFO, &ci) == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to query utun control id: %s\n"), strerror(errno)); close(tun_fd); goto utun_fail; } sc.sc_id = ci.ctl_id; sc.sc_len = sizeof(sc); sc.sc_family = AF_SYSTEM; sc.ss_sysaddr = AF_SYS_CONTROL; do { sc.sc_unit = unit_nr + 1; if (!connect(tun_fd, (struct sockaddr * )&sc, sizeof(sc))) { if (!vpninfo->ifname && asprintf(&vpninfo->ifname, "utun%d", unit_nr) == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate utun device name\n")); close(tun_fd); goto utun_fail; } return tun_fd; } unit_nr++; } while (sc.sc_unit < 255 && !vpninfo->ifname); vpn_progress(vpninfo, PRG_ERR, _("Failed to connect utun unit: %s\n"), strerror(errno)); close(tun_fd); utun_fail: /* If we were explicitly asked for a utun device, fail. Else try tuntaposx */ if (vpninfo->ifname) return -EIO; tun_fd = -1; do_bsdtun: #endif /* __APPLE__ && HAVE_NET_UTUN_H */ if (vpninfo->ifname) { char *endp = NULL; if (strncmp(vpninfo->ifname, "tun", 3) || ((void)strtol(vpninfo->ifname + 3, &endp, 10), !endp) || *endp) { vpn_progress(vpninfo, PRG_ERR, _("Invalid interface name '%s'; must match 'tun%%d'\n"), vpninfo->ifname); return -EINVAL; } snprintf(tun_name, sizeof(tun_name), "/dev/%s", vpninfo->ifname); tun_fd = bsd_open_tun(tun_name); if (tun_fd < 0) { int err = errno; vpn_progress(vpninfo, PRG_ERR, _("Cannot open '%s': %s\n"), tun_name, strerror(err)); return -EINVAL; } } #ifdef HAVE_FDEVNAME_R /* We don't have to iterate over the possible devices; on FreeBSD at least, opening /dev/tun will give us the next available device. */ if (tun_fd < 0) { tun_fd = open("/dev/tun", O_RDWR); if (tun_fd >= 0) { if (!fdevname_r(tun_fd, tun_name, sizeof(tun_name)) || strncmp(tun_name, "tun", 3)) { close(tun_fd); tun_fd = -1; } else vpninfo->ifname = strdup(tun_name); } } #endif if (tun_fd < 0) { for (unit_nr = 0; unit_nr < 255; unit_nr++) { sprintf(tun_name, "/dev/tun%d", unit_nr); tun_fd = bsd_open_tun(tun_name); if (tun_fd >= 0) break; } if (tun_fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open tun device: %s\n"), strerror(errno)); return -EIO; } vpninfo->ifname = strdup(tun_name + 5); } #ifdef TUNSIFHEAD unit_nr = 1; if (ioctl(tun_fd, TUNSIFHEAD, &unit_nr) < 0) { vpn_perror(vpninfo, _("TUNSIFHEAD")); close(tun_fd); return -EIO; } #endif /* Ancient vpnc-scripts might not get this right */ set_tun_mtu(vpninfo); return tun_fd; } #endif /* !IFF_TUN (i.e. BSD) */ #endif /* !__sun__ */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, int tun_fd) { set_fd_cloexec(tun_fd); if (vpninfo->tun_fd != -1) unmonitor_fd(vpninfo, tun); vpninfo->tun_fd = tun_fd; if (set_sock_nonblock(tun_fd)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to make tun socket nonblocking: %s\n"), strerror(errno)); return -EIO; } #ifdef HAVE_VHOST if (!setup_vhost(vpninfo, tun_fd)) return 0; #endif monitor_fd_new(vpninfo, tun); monitor_read_fd(vpninfo, tun); return 0; } int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script) { pid_t child; int fds[2]; STRDUP(vpninfo->vpnc_script, tun_script); vpninfo->script_tun = 1; prepare_script_env(vpninfo); if (socketpair(AF_UNIX, SOCK_DGRAM, 0, fds)) { vpn_progress(vpninfo, PRG_ERR, _("socketpair failed: %s\n"), strerror(errno)); return -EIO; } child = fork(); if (child < 0) { vpn_progress(vpninfo, PRG_ERR, _("fork failed: %s\n"), strerror(errno)); return -EIO; } else if (!child) { if (setpgid(0, getpid()) < 0) perror(_("setpgid")); close(fds[0]); script_setenv_int(vpninfo, "VPNFD", fds[1]); apply_script_env(vpninfo->script_env); execl("/bin/sh", "/bin/sh", "-c", vpninfo->vpnc_script, NULL); perror(_("execl")); exit(1); } close(fds[1]); vpninfo->script_tun = child; vpninfo->ifname = strdup(_("(script)")); return openconnect_setup_tun_fd(vpninfo, fds[0]); } int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { int prefix_size = 0; int len; #ifdef TUN_HAS_AF_PREFIX if (!vpninfo->script_tun) prefix_size = sizeof(int); #endif /* Sanity. Just non-blocking reads on a select()able file descriptor... */ len = read(vpninfo->tun_fd, pkt->data - prefix_size, pkt->len + prefix_size); if (len <= prefix_size) return -1; pkt->len = len - prefix_size; return 0; } int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { unsigned char *data = pkt->data; int len = pkt->len; #ifdef TUN_HAS_AF_PREFIX if (!vpninfo->script_tun) { struct ip *iph = (void *)data; int type; if (iph->ip_v == 6) type = AF_INET6; else if (iph->ip_v == 4) type = AF_INET; else { static int complained; /* static variable initialised to 0 */ if (!complained) { complained = 1; vpn_progress(vpninfo, PRG_ERR, _("Unknown packet (len %d) received: %02x %02x %02x %02x...\n"), len, data[0], data[1], data[2], data[3]); } return 0; } data -= sizeof(int); len += sizeof(int); *(int *)data = htonl(type); } #endif if (write(vpninfo->tun_fd, data, len) < 0) { /* Handle death of "script" socket */ if (vpninfo->script_tun && errno == ENOTCONN) { vpninfo->quit_reason = "Client connection terminated"; return -1; } /* The tun device in the Linux kernel returns -ENOMEM when * the queue is full, so theoretically we could check for * that and retry too. But it doesn't let us poll() for * the no-longer-full situation, so let's not bother. */ if (errno == ENOBUFS || errno == EAGAIN || errno == EWOULDBLOCK) { monitor_write_fd(vpninfo, tun); return -1; } vpn_progress(vpninfo, PRG_ERR, _("Failed to write incoming packet: %s\n"), strerror(errno)); } return 0; } void os_shutdown_tun(struct openconnect_info *vpninfo) { if (vpninfo->script_tun) { /* nuke the whole process group */ kill(-vpninfo->script_tun, SIGHUP); } else { script_config_tun(vpninfo, "disconnect"); #ifdef __sun__ close(vpninfo->ip_fd); vpninfo->ip_fd = -1; if (vpninfo->ip6_fd != -1) { close(vpninfo->ip6_fd); vpninfo->ip6_fd = -1; } #endif } #ifdef HAVE_VHOST shutdown_vhost(vpninfo); #endif if (vpninfo->vpnc_script) close(vpninfo->tun_fd); vpninfo->tun_fd = -1; } openconnect-8.20/stoken.c0000644000076400007640000002043214067426206017207 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2012-2014 Kevin Cernekee * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #ifndef STOKEN_CHECK_VER #define STOKEN_CHECK_VER(x,y) 0 #endif int set_libstoken_mode(struct openconnect_info *vpninfo, const char *token_str) { int ret; char *file_token = NULL; if (!vpninfo->stoken_ctx) { vpninfo->stoken_ctx = stoken_new(); if (!vpninfo->stoken_ctx) return -EIO; } if (token_str) { switch(token_str[0]) { case '@': token_str++; /* fall through */ case '/': ret = openconnect_read_file(vpninfo, token_str, &file_token); if (ret < 0) return ret; } } /* Ug. If it's an XML STDID file or a raw token string, we need to * pass its contents to stoken_import_string(). If it's an rcfile, * we need to pass the *filename* to stoken_import_rcfile(). So * let's just depend on stoken_import_string() failing gracefully. */ if (file_token) { ret = stoken_import_string(vpninfo->stoken_ctx, file_token); free(file_token); if (ret == -EINVAL) ret = stoken_import_rcfile(vpninfo->stoken_ctx, token_str); } else if (token_str) { ret = stoken_import_string(vpninfo->stoken_ctx, token_str); } else { ret = stoken_import_rcfile(vpninfo->stoken_ctx, NULL); } if (ret) return ret; vpninfo->token_mode = OC_TOKEN_MODE_STOKEN; return 0; } /* * A SecurID token can be encrypted with a device ID, a password, both, * or neither. Gather the required information, decrypt the token, and * check the hash to make sure it is sane. * * Return value: * < 0, on error * = 0, on success * = 1, if the user cancelled the form submission * = 2, if the user left the entire form blank and clicked OK */ static int decrypt_stoken(struct openconnect_info *vpninfo) { struct oc_auth_form form; struct oc_form_opt opts[2], *opt = opts; char **devid = NULL, **pass = NULL; int ret = 0; memset(&form, 0, sizeof(form)); memset(&opts, 0, sizeof(opts)); form.opts = opts; form.message = _("Enter credentials to unlock software token."); if (stoken_devid_required(vpninfo->stoken_ctx)) { opt->type = OC_FORM_OPT_TEXT; opt->name = (char *)"devid"; opt->label = _("Device ID:"); devid = &opt->_value; opt++; } if (stoken_pass_required(vpninfo->stoken_ctx)) { opt->type = OC_FORM_OPT_PASSWORD; opt->name = (char *)"password"; opt->label = _("Password:"); pass = &opt->_value; opt++; } opts[0].next = opts[1].type ? &opts[1] : NULL; while (1) { nuke_opt_values(opts); /* don't bug the user if there's nothing to enter */ if (opts[0].type) { int some_empty = 0, all_empty = 1; /* < 0 for error; 1 if cancelled */ ret = process_auth_form(vpninfo, &form); if (ret) break; for (opt = opts; opt; opt = opt->next) { if (!opt->_value || !strlen(opt->_value)) some_empty = 1; else all_empty = 0; } if (all_empty) { vpn_progress(vpninfo, PRG_INFO, _("User bypassed soft token.\n")); ret = 2; break; } if (some_empty) { vpn_progress(vpninfo, PRG_INFO, _("All fields are required; try again.\n")); continue; } } ret = stoken_decrypt_seed(vpninfo->stoken_ctx, pass ? *pass : NULL, devid ? *devid : NULL); if (ret == -EIO || (ret && !devid && !pass)) { vpn_progress(vpninfo, PRG_ERR, _("General failure in libstoken.\n")); break; } else if (ret != 0) { vpn_progress(vpninfo, PRG_INFO, _("Incorrect device ID or password; try again.\n")); continue; } vpn_progress(vpninfo, PRG_DEBUG, _("Soft token init was successful.\n")); ret = 0; break; } nuke_opt_values(opts); return ret; } static void get_stoken_details(struct openconnect_info *vpninfo) { #if STOKEN_CHECK_VER(1,3) struct stoken_info *info = stoken_get_info(vpninfo->stoken_ctx); if (info) { vpninfo->stoken_concat_pin = !info->uses_pin; vpninfo->stoken_interval = info->interval; return; } #endif vpninfo->stoken_concat_pin = 0; vpninfo->stoken_interval = 60; } /* * Return value: * < 0, on error * = 0, on success * = 1, if the user cancelled the form submission */ static int request_stoken_pin(struct openconnect_info *vpninfo) { struct oc_auth_form form; struct oc_form_opt opts[1], *opt = opts; int ret = 0; if (!vpninfo->stoken_concat_pin && !stoken_pin_required(vpninfo->stoken_ctx)) return 0; memset(&form, 0, sizeof(form)); memset(&opts, 0, sizeof(opts)); form.opts = opts; form.message = _("Enter software token PIN."); opt->type = OC_FORM_OPT_PASSWORD; opt->name = (char *)"password"; opt->label = _("PIN:"); opt->flags = OC_FORM_OPT_NUMERIC; while (1) { char *pin; nuke_opt_values(opts); /* < 0 for error; 1 if cancelled */ ret = process_auth_form(vpninfo, &form); if (ret) break; pin = opt->_value; if (!pin || !strlen(pin)) { /* in some cases there really is no PIN */ if (vpninfo->stoken_concat_pin) return 0; vpn_progress(vpninfo, PRG_INFO, _("All fields are required; try again.\n")); continue; } if (!vpninfo->stoken_concat_pin && stoken_check_pin(vpninfo->stoken_ctx, pin) != 0) { vpn_progress(vpninfo, PRG_INFO, _("Invalid PIN format; try again.\n")); continue; } free(vpninfo->stoken_pin); vpninfo->stoken_pin = strdup(pin); if (!vpninfo->stoken_pin) ret = -ENOMEM; break; } nuke_opt_values(opts); return ret; } /* * If the user clicks OK on the devid/password prompt without entering * any data, we will continue connecting but bypass soft token generation * for the duration of this "obtain_cookie" session. (They might not even * have the credentials that we're prompting for.) * * If the user clicks Cancel, we will abort the connection. * * Return value: * < 0, on error * = 0, on success (or if the user bypassed soft token init) * = 1, if the user cancelled the form submission */ int prepare_stoken(struct openconnect_info *vpninfo) { int ret; vpninfo->token_tries = 0; vpninfo->token_bypassed = 0; ret = decrypt_stoken(vpninfo); if (ret == 2) { vpninfo->token_bypassed = 1; return 0; } else if (ret != 0) return ret; get_stoken_details(vpninfo); return request_stoken_pin(vpninfo); } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1 && form->message && strcasestr(form->message, "next tokencode")) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += vpninfo->stoken_interval; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } int do_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[STOKEN_MAX_TOKENCODE + 1]; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating RSA token code\n")); /* This doesn't normally fail */ if (stoken_compute_tokencode(vpninfo->stoken_ctx, vpninfo->token_time, vpninfo->stoken_pin, tokencode) < 0) { vpn_progress(vpninfo, PRG_ERR, _("General failure in libstoken.\n")); return -EIO; } vpninfo->token_tries++; if (asprintf(&opt->_value, "%s%s", (vpninfo->stoken_concat_pin && vpninfo->stoken_pin) ? vpninfo->stoken_pin : "", tokencode) < 0) return -ENOMEM; return 0; } openconnect-8.20/openconnect.pc.in0000644000076400007640000000064114062600131020766 0ustar00dwoodhoudwoodhou00000000000000prefix=@prefix@ exec_prefix=@exec_prefix@ libdir=@libdir@ includedir=@includedir@ Name: openconnect Description: OpenConnect VPN client Version: @VERSION@ Requires.private: @LIBPROXY_PC@ @ZLIB_PC@ @JSON_PC@ @LIBLZ4_PC@ @SSL_PC@ @P11KIT_PC@ @LIBSTOKEN_PC@ @LIBPSKC_PC@ @LIBPCSCLITE_PC@ libxml-2.0 Libs: -L${libdir} -lopenconnect Libs.private: @INTL_LIBS@ @system_pcsc_libs@ @openssl_pc_libs@ Cflags: -I${includedir} openconnect-8.20/jni.c0000644000076400007640000012033614100007334016451 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect.h" #include #include #include #include #include #include #include #include #include struct libctx { JNIEnv *jenv; jobject jobj; jobject async_lock; struct openconnect_info *vpninfo; int cmd_fd; int loglevel; }; static void throw_excep(JNIEnv *jenv, const char *exc, int line) { jclass excep; char msg[64]; snprintf(msg, 64, "%s:%d", __FILE__, line); (*jenv)->ExceptionClear(jenv); excep = (*jenv)->FindClass(jenv, exc); if (excep) (*jenv)->ThrowNew(jenv, excep, msg); } #define OOM(jenv) throw_excep(jenv, "java/lang/OutOfMemoryError", __LINE__) static struct libctx *getctx(JNIEnv *jenv, jobject jobj) { jclass jcls = (*jenv)->GetObjectClass(jenv, jobj); jfieldID jfld = (*jenv)->GetFieldID(jenv, jcls, "libctx", "J"); if (!jfld) return NULL; return (void *)(unsigned long)(*jenv)->GetLongField(jenv, jobj, jfld); } /* * GetMethodID() and GetFieldID() and NewStringUTF() will automatically throw exceptions on error */ static jmethodID get_obj_mid(struct libctx *ctx, jobject jobj, const char *name, const char *sig) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, sig); return mid; } static jstring dup_to_jstring(JNIEnv *jenv, const char *in) { /* * Many implementations of NewStringUTF() will return NULL on * NULL input, but that isn't guaranteed: * https://gcc.gnu.org/bugzilla/show_bug.cgi?id=35979 */ return in ? (*jenv)->NewStringUTF(jenv, in) : NULL; } static int get_cstring(JNIEnv *jenv, jstring in, const char **out) { const char *tmp; if (in == NULL) { *out = NULL; return 0; } tmp = (*jenv)->GetStringUTFChars(jenv, in, NULL); if (!tmp) { OOM(jenv); return -1; } *out = tmp; return 0; } static void release_cstring(JNIEnv *jenv, jstring jstr, const char *cstr) { if (cstr) (*jenv)->ReleaseStringUTFChars(jenv, jstr, cstr); } static int set_int(struct libctx *ctx, jobject jobj, const char *name, int value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "I"); if (!jfld) return -1; (*ctx->jenv)->SetIntField(ctx->jenv, jobj, jfld, value); return 0; } static int set_long(struct libctx *ctx, jobject jobj, const char *name, uint64_t value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "J"); if (!jfld) return -1; (*ctx->jenv)->SetLongField(ctx->jenv, jobj, jfld, (jlong)value); return 0; } static int set_string(struct libctx *ctx, jobject jobj, const char *name, const char *value) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, name, "Ljava/lang/String;"); jstring jarg; if (!jfld) return -1; jarg = dup_to_jstring(ctx->jenv, value); if (value && !jarg) return -1; (*ctx->jenv)->SetObjectField(ctx->jenv, jobj, jfld, jarg); return 0; } static int add_string(struct libctx *ctx, jclass jcls, jobject jobj, const char *name, const char *value) { jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, "(Ljava/lang/String;)V"); jstring jarg; if (!value) return 0; if (!mid) return -1; jarg = dup_to_jstring(ctx->jenv, value); if (!jarg) return -1; (*ctx->jenv)->CallVoidMethod(ctx->jenv, jobj, mid, jarg); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg); return 0; } static int add_string_pair(struct libctx *ctx, jclass jcls, jobject jobj, const char *name, const char *key, const char *value) { jmethodID mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, name, "(Ljava/lang/String;Ljava/lang/String;)V"); jstring jarg0, jarg1; if (!key || !value) return -1; if (!mid) return -1; jarg0 = dup_to_jstring(ctx->jenv, key); if (!jarg0) return -1; jarg1 = dup_to_jstring(ctx->jenv, value); if (!jarg1) { (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg0); return -1; } (*ctx->jenv)->CallVoidMethod(ctx->jenv, jobj, mid, jarg0, jarg1); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg1); (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jarg0); return 0; } static int validate_peer_cert_cb(void *privdata, const char *reason) { struct libctx *ctx = privdata; jstring jreason; int ret = -1; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; jreason = dup_to_jstring(ctx->jenv, reason); if (!jreason) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onValidatePeerCert", "(Ljava/lang/String;)I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jreason); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static int write_new_config_cb(void *privdata, const char *buf, int buflen) { struct libctx *ctx = privdata; jmethodID mid; jbyteArray jbuf; int ret = -1; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; mid = get_obj_mid(ctx, ctx->jobj, "onWriteNewConfig", "([B)I"); if (!mid) goto out; jbuf = (*ctx->jenv)->NewByteArray(ctx->jenv, buflen); if (!jbuf) goto out; (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, jbuf, 0, buflen, (jbyte *)buf); ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jbuf); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static void protect_socket_cb(void *privdata, int fd) { struct libctx *ctx = privdata; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; mid = get_obj_mid(ctx, ctx->jobj, "onProtectSocket", "(I)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, fd); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static void stats_cb(void *privdata, const struct oc_stats *stats) { struct libctx *ctx = privdata; jmethodID mid; jclass jcls; jobject jobj = NULL; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$VPNStats"); if (jcls == NULL) goto out; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) goto out; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) goto out; if (set_long(ctx, jobj, "txPkts", stats->tx_pkts) || set_long(ctx, jobj, "txBytes", stats->tx_bytes) || set_long(ctx, jobj, "rxPkts", stats->rx_pkts) || set_long(ctx, jobj, "rxBytes", stats->rx_bytes)) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onStatsUpdate", "(Lorg/infradead/libopenconnect/LibOpenConnect$VPNStats;)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, jobj); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static void setup_tun_cb(void *privdata) { struct libctx *ctx = privdata; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; mid = get_obj_mid(ctx, ctx->jobj, "onSetupTun", "()V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static void reconnected_cb(void *privdata) { struct libctx *ctx = privdata; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; mid = get_obj_mid(ctx, ctx->jobj, "onReconnected", "()V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static jobject new_auth_form(struct libctx *ctx, struct oc_auth_form *form) { jmethodID mid; jclass jcls; jobject jobj = NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$AuthForm"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "banner", form->banner) || set_string(ctx, jobj, "message", form->message) || set_string(ctx, jobj, "error", form->error) || set_string(ctx, jobj, "authID", form->auth_id) || set_string(ctx, jobj, "method", form->method) || set_string(ctx, jobj, "action", form->action) || set_int(ctx, jobj, "authgroupSelection", form->authgroup_selection)) { return NULL; } return jobj; } static jobject new_form_choice(struct libctx *ctx, struct oc_choice *choice) { jmethodID mid; jclass jcls; jobject jobj = NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$FormChoice"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "name", choice->name) || set_string(ctx, jobj, "label", choice->label) || set_string(ctx, jobj, "authType", choice->auth_type) || set_string(ctx, jobj, "overrideName", choice->override_name) || set_string(ctx, jobj, "overrideLabel", choice->override_label)) { return NULL; } return jobj; } static int populate_select_choices(struct libctx *ctx, jobject jopt, struct oc_form_opt_select *opt) { jmethodID mid; int i; mid = get_obj_mid(ctx, jopt, "addChoice", "(Lorg/infradead/libopenconnect/LibOpenConnect$FormChoice;)V"); if (!mid) return -1; for (i = 0; i < opt->nr_choices; i++) { jobject jformchoice = new_form_choice(ctx, opt->choices[i]); if (!jformchoice) return -1; (*ctx->jenv)->CallVoidMethod(ctx->jenv, jopt, mid, jformchoice); } return 0; } static int add_form_option(struct libctx *ctx, jobject jform, struct oc_form_opt *opt, int is_authgroup) { jmethodID addOpt; jobject jopt; addOpt = get_obj_mid(ctx, jform, "addOpt", "(Z)Lorg/infradead/libopenconnect/LibOpenConnect$FormOpt;"); if (!addOpt) return -1; jopt = (*ctx->jenv)->CallObjectMethod(ctx->jenv, jform, addOpt, is_authgroup); if (jopt == NULL) return -1; if (set_int(ctx, jopt, "type", opt->type) || set_string(ctx, jopt, "name", opt->name) || set_string(ctx, jopt, "label", opt->label) || set_string(ctx, jopt, "value", opt->_value) || set_long(ctx, jopt, "flags", opt->flags)) return -1; if (opt->type == OC_FORM_OPT_SELECT && populate_select_choices(ctx, jopt, (struct oc_form_opt_select *)opt)) return -1; return 0; } static char *lookup_choice_name(struct oc_form_opt_select *opt, const char *name) { int i; /* opt->_value is NOT a caller-allocated string for OC_FORM_OPT_SELECT */ for (i = 0; i < opt->nr_choices; i++) if (!strcmp(opt->choices[i]->name, name)) return opt->choices[i]->name; return NULL; } static int process_auth_form_cb(void *privdata, struct oc_auth_form *form) { struct libctx *ctx = privdata; jobject jform; jmethodID callback, getOptValue; struct oc_form_opt *opt; jint ret; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; /* create and populate new AuthForm object and option/choice lists */ jform = new_auth_form(ctx, form); if (!jform) goto err; getOptValue = get_obj_mid(ctx, jform, "getOptValue", "(Ljava/lang/String;)Ljava/lang/String;"); if (!getOptValue) goto err; for (opt = form->opts; opt; opt = opt->next) { int is_authgroup = opt == (void *)form->authgroup_opt; if (add_form_option(ctx, jform, opt, is_authgroup) < 0) goto err; } /* invoke onProcessAuthForm callback */ callback = get_obj_mid(ctx, ctx->jobj, "onProcessAuthForm", "(Lorg/infradead/libopenconnect/LibOpenConnect$AuthForm;)I"); if (!callback) goto err; ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, callback, jform); /* copy any populated form fields back into the C structs */ for (opt = form->opts; opt; opt = opt->next) { jstring jname, jvalue; jname = dup_to_jstring(ctx->jenv, opt->name); if (!jname) goto err; jvalue = (*ctx->jenv)->CallObjectMethod(ctx->jenv, jform, getOptValue, jname); if (jvalue) { const char *tmp = (*ctx->jenv)->GetStringUTFChars(ctx->jenv, jvalue, NULL); if (!tmp) goto err; if (opt->type == OC_FORM_OPT_SELECT) opt->_value = lookup_choice_name((void *)opt, tmp); else { free(opt->_value); opt->_value = strdup(tmp); if (!opt->_value) OOM(ctx->jenv); } (*ctx->jenv)->ReleaseStringUTFChars(ctx->jenv, jvalue, tmp); } } (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; err: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return -1; } static void __attribute__ ((format(printf, 3, 4))) progress_cb(void *privdata, int level, const char *fmt, ...) { struct libctx *ctx = privdata; va_list ap; char *msg; jstring jmsg; int ret, loglevel; jmethodID mid; (*ctx->jenv)->MonitorEnter(ctx->jenv, ctx->async_lock); loglevel = ctx->loglevel; (*ctx->jenv)->MonitorExit(ctx->jenv, ctx->async_lock); if (level > loglevel) return; va_start(ap, fmt); ret = vasprintf(&msg, fmt, ap); va_end(ap); if (ret < 0) { OOM(ctx->jenv); return; } if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return; jmsg = dup_to_jstring(ctx->jenv, msg); free(msg); if (!jmsg) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onProgress", "(ILjava/lang/String;)V"); if (mid) (*ctx->jenv)->CallVoidMethod(ctx->jenv, ctx->jobj, mid, level, jmsg); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); } static int lock_token_cb(void *privdata) { struct libctx *ctx = privdata; jmethodID mid; int ret = -1; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; mid = get_obj_mid(ctx, ctx->jobj, "onTokenLock", "()I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid); (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } static int unlock_token_cb(void *privdata, const char *new_token) { struct libctx *ctx = privdata; jstring jtoken; int ret = -1; jmethodID mid; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) return -1; jtoken = dup_to_jstring(ctx->jenv, new_token); if (!jtoken) goto out; mid = get_obj_mid(ctx, ctx->jobj, "onTokenUnlock", "(Ljava/lang/String;)I"); if (mid) ret = (*ctx->jenv)->CallIntMethod(ctx->jenv, ctx->jobj, mid, jtoken); out: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); return ret; } /* Library init/uninit */ static jobject init_async_lock(struct libctx *ctx) { jclass jcls = (*ctx->jenv)->GetObjectClass(ctx->jenv, ctx->jobj); jfieldID jfld = (*ctx->jenv)->GetFieldID(ctx->jenv, jcls, "asyncLock", "Ljava/lang/Object;"); jobject jobj = (*ctx->jenv)->GetObjectField(ctx->jenv, ctx->jobj, jfld); if (jobj) jobj = (*ctx->jenv)->NewGlobalRef(ctx->jenv, jobj); return jobj; } JNIEXPORT jlong JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_init( JNIEnv *jenv, jobject jobj, jstring juseragent) { char *useragent; struct libctx *ctx = calloc(1, sizeof(*ctx)); if (!ctx) goto bad; ctx->jenv = jenv; ctx->jobj = (*jenv)->NewGlobalRef(jenv, jobj); if (!ctx->jobj) goto bad_free_ctx; ctx->async_lock = init_async_lock(ctx); if (!ctx->async_lock) goto bad_delete_obj_ref; useragent = (char *)(*jenv)->GetStringUTFChars(jenv, juseragent, NULL); if (!useragent) goto bad_delete_ref; ctx->vpninfo = openconnect_vpninfo_new(useragent, validate_peer_cert_cb, write_new_config_cb, process_auth_form_cb, progress_cb, ctx); (*jenv)->ReleaseStringUTFChars(jenv, juseragent, useragent); if (!ctx->vpninfo) goto bad_delete_ref; openconnect_set_token_callbacks(ctx->vpninfo, ctx, lock_token_cb, unlock_token_cb); openconnect_set_protect_socket_handler(ctx->vpninfo, protect_socket_cb); openconnect_set_stats_handler(ctx->vpninfo, stats_cb); openconnect_set_setup_tun_handler(ctx->vpninfo, setup_tun_cb); openconnect_set_reconnected_handler(ctx->vpninfo, reconnected_cb); ctx->cmd_fd = openconnect_setup_cmd_pipe(ctx->vpninfo); if (ctx->cmd_fd < 0) goto bad_free_vpninfo; ctx->loglevel = PRG_DEBUG; return (jlong)(unsigned long)ctx; bad_free_vpninfo: openconnect_vpninfo_free(ctx->vpninfo); bad_delete_ref: (*jenv)->DeleteGlobalRef(jenv, ctx->async_lock); bad_delete_obj_ref: (*jenv)->DeleteGlobalRef(jenv, ctx->jobj); bad_free_ctx: free(ctx); bad: OOM(jenv); return 0; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_free( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_vpninfo_free(ctx->vpninfo); (*jenv)->DeleteGlobalRef(jenv, ctx->async_lock); (*jenv)->DeleteGlobalRef(jenv, ctx->jobj); free(ctx); } static void write_cmd_pipe(JNIEnv *jenv, jobject jobj, char cmd) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; if (write(ctx->cmd_fd, &cmd, 1) < 0) { /* probably dead already */ } } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_doCancel( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_CANCEL); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_pause( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_PAUSE); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_requestStats( JNIEnv *jenv, jobject jobj) { write_cmd_pipe(jenv, jobj, OC_CMD_STATS); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_globalInit( JNIEnv *jenv, jclass jcls) { openconnect_init_ssl(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_obtainCookie( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return 0; return openconnect_obtain_cookie(ctx->vpninfo); } /* special handling: caller-allocated buffer */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertHash( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); const char *hash; jstring jresult = NULL; if (!ctx) return NULL; hash = openconnect_get_peer_cert_hash(ctx->vpninfo); if (!hash) return NULL; jresult = dup_to_jstring(ctx->jenv, hash); if (!jresult) OOM(ctx->jenv); return jresult; } /* special handling: callee-allocated, caller-freed string */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertDetails( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); char *buf = NULL; jstring jresult = NULL; if (!ctx) return NULL; buf = openconnect_get_peer_cert_details(ctx->vpninfo); if (!buf) return NULL; jresult = dup_to_jstring(ctx->jenv, buf); if (!jresult) OOM(ctx->jenv); openconnect_free_cert_info(ctx->vpninfo, buf); return jresult; } /* special handling: callee-allocated, caller-freed binary buffer */ JNIEXPORT jbyteArray JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertDER( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); unsigned char *buf = NULL; int ret; jbyteArray jresult = NULL; if (!ctx) return NULL; ret = openconnect_get_peer_cert_DER(ctx->vpninfo, &buf); if (ret < 0) return NULL; jresult = (*ctx->jenv)->NewByteArray(ctx->jenv, ret); if (jresult) (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, jresult, 0, ret, (jbyte *) buf); openconnect_free_cert_info(ctx->vpninfo, buf); return jresult; } /* special handling: callee-allocated, caller-freed binary buffer */ JNIEXPORT jbyteArray JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPeerCertChain( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); struct oc_cert *chain = NULL, *p; int cert_list_size, i; jobjectArray jresult = NULL; jclass jcls; if (!ctx) goto err; cert_list_size = openconnect_get_peer_cert_chain(ctx->vpninfo, &chain); if (cert_list_size <= 0) goto err; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "[B"); if (!jcls) goto err; jresult = (*ctx->jenv)->NewObjectArray(ctx->jenv, cert_list_size, jcls, NULL); if (!jresult) goto err; if ((*ctx->jenv)->PushLocalFrame(ctx->jenv, 256) < 0) goto err; for (i = 0, p = chain; i < cert_list_size; i++, p++) { jbyteArray cert = (*ctx->jenv)->NewByteArray(ctx->jenv, p->der_len); if (!cert) goto err2; (*ctx->jenv)->SetByteArrayRegion(ctx->jenv, cert, 0, p->der_len, (jbyte *)p->der_data); (*ctx->jenv)->SetObjectArrayElement(ctx->jenv, jresult, i, cert); } (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); openconnect_free_peer_cert_chain(ctx->vpninfo, chain); return jresult; err2: (*ctx->jenv)->PopLocalFrame(ctx->jenv, NULL); err: if (jresult) (*ctx->jenv)->DeleteLocalRef(ctx->jenv, jresult); if (chain) openconnect_free_peer_cert_chain(ctx->vpninfo, chain); return NULL; } /* special handling: two string arguments */ JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setClientCert( JNIEnv *jenv, jobject jobj, jstring jcert, jstring jsslkey) { struct libctx *ctx = getctx(jenv, jobj); const char *cert = NULL, *sslkey = NULL; if (!ctx) return; if (!get_cstring(ctx->jenv, jcert, &cert) && !get_cstring(ctx->jenv, jsslkey, &sslkey)) openconnect_set_client_cert(ctx->vpninfo, cert, sslkey); release_cstring(ctx->jenv, jcert, cert); release_cstring(ctx->jenv, jsslkey, sslkey); } /* special handling: multiple string arguments */ JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunDevice( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL; int ret = -ENOMEM; if (!ctx) return -EINVAL; if (!get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1)) ret = openconnect_setup_tun_device(ctx->vpninfo, arg0, arg1); release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); return ret; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCSDWrapper( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1, jstring jarg2) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL, *arg2 = NULL; if (!ctx) return; if (!get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1) && !get_cstring(ctx->jenv, jarg2, &arg2)) { openconnect_setup_csd(ctx->vpninfo, getuid(), 1, arg0); if (arg1) openconnect_set_csd_environ(ctx->vpninfo, "TMPDIR", arg1); if (arg2) openconnect_set_csd_environ(ctx->vpninfo, "PATH", arg2); } release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); release_cstring(ctx->jenv, jarg2, arg2); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setMobileInfo( JNIEnv *jenv, jobject jobj, jstring jarg0, jstring jarg1, jstring jarg2) { struct libctx *ctx = getctx(jenv, jobj); const char *arg0 = NULL, *arg1 = NULL, *arg2 = NULL; if (!ctx) return; if (!get_cstring(ctx->jenv, jarg0, &arg0) && !get_cstring(ctx->jenv, jarg1, &arg1) && !get_cstring(ctx->jenv, jarg2, &arg2)) openconnect_set_mobile_info(ctx->vpninfo, arg0, arg1, arg2); release_cstring(ctx->jenv, jarg0, arg0); release_cstring(ctx->jenv, jarg1, arg1); release_cstring(ctx->jenv, jarg2, arg2); } /* class methods (general library info) */ JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getVersion( JNIEnv *jenv, jclass jcls) { return dup_to_jstring(jenv, openconnect_get_version()); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasPKCS11Support( JNIEnv *jenv, jclass jcls) { return openconnect_has_pkcs11_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasTSSBlobSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_tss_blob_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasTSS2BlobSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_tss2_blob_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasStokenSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_stoken_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasOATHSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_oath_support(); } JNIEXPORT jboolean JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_hasYubiOATHSupport( JNIEnv *jenv, jclass jcls) { return openconnect_has_yubioath_support(); } /* simple cases: void or int params */ JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getPort( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_get_port(ctx->vpninfo); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_passphraseFromFSID( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_passphrase_from_fsid(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_clearCookie( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_clear_cookie(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_resetSSL( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_reset_ssl(ctx->vpninfo); } JNIEXPORT int JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_disableIPv6( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_disable_ipv6(ctx->vpninfo); } JNIEXPORT int JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_disableDTLS( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_disable_dtls(ctx->vpninfo); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCertExpiryWarning( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_cert_expiry_warning(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setReqMTU( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_reqmtu(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setDPD( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_dpd(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setTrojanInterval( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_trojan_interval(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setPassTOS( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_pass_tos(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setPFS( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_pfs(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setAllowInsecureCrypto( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_set_allow_insecure_crypto(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setSystemTrust( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_system_trust(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_makeCSTPConnection( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_make_cstp_connection(ctx->vpninfo); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupDTLS( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_setup_dtls(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_mainloop( JNIEnv *jenv, jobject jobj, jint arg0, jint arg1) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_mainloop(ctx->vpninfo, arg0, arg1); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setLogLevel( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; (*ctx->jenv)->MonitorEnter(ctx->jenv, ctx->async_lock); ctx->loglevel = arg; (*ctx->jenv)->MonitorExit(ctx->jenv, ctx->async_lock); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunFD( JNIEnv *jenv, jobject jobj, jint arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_setup_tun_fd(ctx->vpninfo, arg); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setXMLPost( JNIEnv *jenv, jobject jobj, jboolean arg) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return; openconnect_set_xmlpost(ctx->vpninfo, arg); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIdleTimeout( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); if (!ctx) return -EINVAL; return openconnect_get_idle_timeout(ctx->vpninfo); } JNIEXPORT jobject JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getAuthExpiration( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); jmethodID mid; jobject result; jclass jcls; time_t auth_expiration; if (!ctx) return NULL; auth_expiration = openconnect_get_auth_expiration(ctx->vpninfo); jcls = (*ctx->jenv)->FindClass(ctx->jenv, "java/time/Instant"); if (jcls == NULL) goto err; mid = (*jenv)->GetStaticMethodID(jenv, jcls, "ofEpochSecond", "(J)Ljava/time/Instant;"); if (!mid) goto err; result = (*jenv)->CallStaticObjectMethod(jenv, jcls, mid, auth_expiration); if (result == NULL) goto err; return result; err: return NULL; } /* simple cases: return a const string (no need to free it) */ #define RETURN_STRING_START \ struct libctx *ctx = getctx(jenv, jobj); \ const char *buf = NULL; \ jstring jresult = NULL; \ if (!ctx) \ return NULL; \ #define RETURN_STRING_END \ if (!buf) \ return NULL; \ jresult = dup_to_jstring(ctx->jenv, buf); \ if (!jresult) \ OOM(ctx->jenv); \ return jresult; JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getHostname( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_hostname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getDNSName( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_dnsname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getUrlpath( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_urlpath(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCookie( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cookie(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIFName( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_ifname(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getDTLSCipher( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_dtls_cipher(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getDTLSCompression( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_dtls_compression(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCSTPCompression( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cstp_compression(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getCSTPCipher( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_cstp_cipher(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getProtocol( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_protocol(ctx->vpninfo); RETURN_STRING_END } JNIEXPORT jstring JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getConnectUrl( JNIEnv *jenv, jobject jobj) { RETURN_STRING_START buf = openconnect_get_connect_url(ctx->vpninfo); RETURN_STRING_END } #define SET_STRING_START() \ struct libctx *ctx = getctx(jenv, jobj); \ const char *arg = NULL; \ if (!ctx) \ return -EINVAL; \ if (get_cstring(ctx->jenv, jarg, &arg)) \ return -ENOMEM; #define SET_STRING_START_VOID() \ struct libctx *ctx = getctx(jenv, jobj); \ const char *arg = NULL; \ if (!ctx) \ return; \ if (get_cstring(ctx->jenv, jarg, &arg)) \ return; #define SET_STRING_END() \ release_cstring(ctx->jenv, jarg, arg) JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_checkPeerCertHash( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START() ret = openconnect_check_peer_cert_hash(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_parseURL( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START() ret = openconnect_parse_url(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setProxyAuth( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START() ret = openconnect_set_proxy_auth(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setHTTPProxy( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START() ret = openconnect_set_http_proxy(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setProtocol( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START() ret = openconnect_set_protocol(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setXMLSHA1( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START_VOID() openconnect_set_xmlsha1(ctx->vpninfo, arg, strlen(arg) + 1); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setHostname( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START_VOID() openconnect_set_hostname(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setVersionString( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START_VOID() openconnect_set_version_string(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setUrlpath( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START_VOID() openconnect_set_urlpath(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCookie( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START_VOID() openconnect_set_cookie(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setLocalName( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START_VOID() openconnect_set_localname(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT void JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setCAFile( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START_VOID() openconnect_set_cafile(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setReportedOS( JNIEnv *jenv, jobject jobj, jstring jarg) { SET_STRING_START() return openconnect_set_reported_os(ctx->vpninfo, arg); SET_STRING_END(); } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setTokenMode( JNIEnv *jenv, jobject jobj, jint mode, jstring jarg) { int ret; SET_STRING_START() ret = openconnect_set_token_mode(ctx->vpninfo, mode, arg); SET_STRING_END(); return ret; } JNIEXPORT jint JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_setupTunScript( JNIEnv *jenv, jobject jobj, jstring jarg) { int ret; SET_STRING_START() ret = openconnect_setup_tun_script(ctx->vpninfo, arg); SET_STRING_END(); return ret; } JNIEXPORT jobject JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getIPInfo( JNIEnv *jenv, jobject jobj) { struct libctx *ctx = getctx(jenv, jobj); jmethodID mid; jclass jcls; const struct oc_ip_info *ip; const struct oc_vpn_option *cstp, *dtls; struct oc_split_include *inc; int i; if (!ctx) return NULL; if (openconnect_get_ip_info(ctx->vpninfo, &ip, &cstp, &dtls) < 0) return NULL; if (!ip) return NULL; jcls = (*ctx->jenv)->FindClass(ctx->jenv, "org/infradead/libopenconnect/LibOpenConnect$IPInfo"); if (jcls == NULL) return NULL; mid = (*ctx->jenv)->GetMethodID(ctx->jenv, jcls, "", "()V"); if (!mid) return NULL; jobj = (*ctx->jenv)->NewObject(ctx->jenv, jcls, mid); if (!jobj) return NULL; if (set_string(ctx, jobj, "addr", ip->addr) || set_string(ctx, jobj, "netmask", ip->netmask) || set_string(ctx, jobj, "addr6", ip->addr6) || set_string(ctx, jobj, "netmask6", ip->netmask6) || set_string(ctx, jobj, "domain", ip->domain) || set_string(ctx, jobj, "proxyPac", ip->proxy_pac) || set_string(ctx, jobj, "gatewayAddr", ip->gateway_addr) || set_int(ctx, jobj, "MTU", ip->mtu)) return NULL; for (i = 0; i < 3; i++) { if (ip->dns[i] && add_string(ctx, jcls, jobj, "addDNS", ip->dns[i])) return NULL; if (ip->nbns[i] && add_string(ctx, jcls, jobj, "addNBNS", ip->nbns[i])) return NULL; } for (inc = ip->split_dns; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitDNS", inc->route)) return NULL; for (inc = ip->split_includes; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitInclude", inc->route)) return NULL; for (inc = ip->split_excludes; inc; inc = inc->next) if (add_string(ctx, jcls, jobj, "addSplitExclude", inc->route)) return NULL; for (; cstp; cstp = cstp->next) if (add_string_pair(ctx, jcls, jobj, "addCSTPOption", cstp->option, cstp->value)) return NULL; for (; dtls; dtls = dtls->next) if (add_string_pair(ctx, jcls, jobj, "addDTLSOption", dtls->option, dtls->value)) return NULL; return jobj; } JNIEXPORT jobjectArray JNICALL Java_org_infradead_libopenconnect_LibOpenConnect_getSupportedProtocols( JNIEnv *jenv, jclass jcls) { jmethodID mid; jobjectArray result; struct libctx ctx = { .jenv = jenv, .jobj = NULL, .async_lock = NULL, .vpninfo = NULL, .cmd_fd = -1, .loglevel = -1 }; /* call C library */ struct oc_vpn_proto *protos; int np, ii; np = openconnect_get_supported_protocols(&protos); if (np < 0) return NULL; /* get VPNProto class, its init method, and create array */ jcls = (*jenv)->FindClass(jenv, "org/infradead/libopenconnect/LibOpenConnect$VPNProto"); if (jcls == NULL) goto err; mid = (*jenv)->GetMethodID(jenv, jcls, "", "()V"); if (!mid) goto err; result = (*jenv)->NewObjectArray(jenv, np, jcls, NULL); if (result == NULL) goto nomem; for (ii=0; iiNewObject(jenv, jcls, mid); if (!jobj) goto nomem; if (set_string(&ctx, jobj, "name", protos[ii].name) || set_string(&ctx, jobj, "prettyName", protos[ii].pretty_name) || set_string(&ctx, jobj, "description", protos[ii].description) || set_int (&ctx, jobj, "flags", protos[ii].flags)) goto nomem; (*jenv)->SetObjectArrayElement(jenv, result, ii, jobj); } openconnect_free_supported_protocols(protos); return result; nomem: OOM(jenv); err: openconnect_free_supported_protocols(protos); return NULL; } openconnect-8.20/oath.c0000644000076400007640000003157214067426206016646 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include static int b32_char(char in) { if (in >= 'A' && in <= 'Z') return in - 'A'; if (in >= 'a' && in <= 'z') return in - 'a'; if (in >= '2' && in <= '7') return in - '2' + 26; if (in == '=') return -2; return -1; } /* Take a group of 8 base32 chars, convert to (up to) 5 bytes of data */ static int decode_b32_group(unsigned char *out, const char *in) { uint32_t d = 0; int c, i, len; for (i = 0; i < 8; i++) { c = b32_char(in[i]); if (c == -1) return -EINVAL; if (c == -2) break; d <<= 5; d |= c; /* Write the top bits before they disappear off the top of 'd' which is only a uint32_t */ if (i == 1) out[0] = d >> 2; } len = i; /* There must be at least two base32 chars to provide one byte of data. * Bail out early to avoid an undefined shift. */ if (len < 2) return -EINVAL; if (i < 8) { d <<= 5 * (8 - i); while (++i < 8) { if (in[i] != '=') return -EINVAL; } } store_be32(out + 1, d); switch(len) { case 8: return 5; case 7: return 4; case 5: return 3; case 4: return 2; case 2: return 1; default: return -EINVAL; } } static int decode_base32(struct openconnect_info *vpninfo, const char *b32, int len) { unsigned char *output = NULL; int inpos, outpos; int outlen; int ret; if (len % 8) { invalid: vpn_progress(vpninfo, PRG_ERR, _("Invalid base32 token string\n")); free(output); return -EINVAL; } outlen = len / 8 * 5; output = malloc(outlen); if (!output) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory to decode OATH secret\n")); return -ENOMEM; } outpos = inpos = 0; while (inpos < len) { ret = decode_b32_group(output + outpos, b32 + inpos); if (ret < 0) goto invalid; inpos += 8; if (ret != 5 && inpos != len) goto invalid; outpos += ret; } vpninfo->oath_secret = (void *)output; vpninfo->oath_secret_len = outpos; return 0; } static char *parse_hex(const char *tok, int len) { unsigned char *data, *p; if (len <= 1) return NULL; data = malloc((len + 1) / 2); if (!data) return NULL; p = data; if (len & 1) { char b[2] = { '0', tok[0] }; if (!isxdigit((int)(unsigned char)tok[0])) { free(data); return NULL; } *(p++) = unhex(b); tok++; len--; } while (len) { if (!isxdigit((int)(unsigned char)tok[0]) || !isxdigit((int)(unsigned char)tok[1])) { free(data); return NULL; } *(p++) = unhex(tok); tok += 2; len -= 2; } return (char *)data; } static int pskc_decode(struct openconnect_info *vpninfo, const char *token_str, int toklen, int mode) { #ifdef HAVE_LIBPSKC pskc_t *container; pskc_key_t *key; const char *key_algo; const char *want_algo; size_t klen; if (pskc_global_init()) return -EIO; if (pskc_init(&container)) return -ENOMEM; if (pskc_parse_from_memory(container, toklen, token_str)) return -EINVAL; key = pskc_get_keypackage(container, 0); if (!key) { pskc_done(container); return -EINVAL; } if (mode == OC_TOKEN_MODE_HOTP) want_algo = "urn:ietf:params:xml:ns:keyprov:pskc:hotp"; else want_algo = "urn:ietf:params:xml:ns:keyprov:pskc:totp"; key_algo = pskc_get_key_algorithm(key); if (!key_algo || strcmp(key_algo, want_algo)) { pskc_done(container); return -EINVAL; } vpninfo->oath_secret = (char *)pskc_get_key_data_secret(key, &klen); vpninfo->oath_secret_len = klen; if (!vpninfo->oath_secret) { pskc_done(container); return -EINVAL; } vpninfo->token_time = pskc_get_key_data_counter(key, NULL); vpninfo->pskc = container; vpninfo->pskc_key = key; return 0; #else /* !HAVE_LIBPSKC */ vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PSKC support\n")); return -EINVAL; #endif /* HAVE_LIBPSKC */ } int set_oath_mode(struct openconnect_info *vpninfo, const char *token_str, oc_token_mode_t token_mode) { int ret, toklen; if (!token_str) return -EINVAL; toklen = strlen(token_str); while (toklen && isspace((int)(unsigned char)token_str[toklen-1])) toklen--; if (strncmp(token_str, "hotp_secret_format = HOTP_SECRET_PSKC; ret = pskc_decode(vpninfo, token_str, toklen, token_mode); if (ret) return -EINVAL; vpninfo->token_mode = token_mode; return 0; } if (!strncasecmp(token_str, "sha1:", 5)) { token_str += 5; toklen -= 5; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; } else if (!strncasecmp(token_str, "sha256:", 7)) { token_str += 7; toklen -= 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA256; } else if (!strncasecmp(token_str, "sha512:", 7)) { toklen -= 7; token_str += 7; vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA512; } else vpninfo->oath_hmac_alg = OATH_ALG_HMAC_SHA1; if (token_mode == OC_TOKEN_MODE_HOTP) { char *p = strrchr(token_str, ','); if (p) { long counter; toklen = p - token_str; p++; counter = strtol(p, &p, 0); if (counter < 0) return -EINVAL; while (*p) { if (isspace((int)(unsigned char)*p)) p++; else return -EINVAL; } vpninfo->token_time = counter; } else { while (toklen && isspace((int)(unsigned char)token_str[toklen-1])) toklen--; } } if (strncasecmp(token_str, "base32:", strlen("base32:")) == 0) { vpninfo->hotp_secret_format = HOTP_SECRET_BASE32; ret = decode_base32(vpninfo, token_str + strlen("base32:"), toklen - strlen("base32:")); if (ret) return ret; } else if (strncmp(token_str, "0x", 2) == 0) { vpninfo->hotp_secret_format = HOTP_SECRET_HEX; vpninfo->oath_secret_len = (toklen - 2) / 2; vpninfo->oath_secret = parse_hex(token_str + 2, toklen - 2); if (!vpninfo->oath_secret) return -EINVAL; } else { vpninfo->hotp_secret_format = HOTP_SECRET_RAW; vpninfo->oath_secret = strdup(token_str); vpninfo->oath_secret_len = toklen; } vpninfo->token_mode = token_mode; return 0; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += 30; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the soft token; switching to manual entry\n")); return -ENOENT; } return 0; } static int gen_hotp(struct openconnect_info *vpninfo, uint64_t data, char *output) { uint32_t data_be[2]; int digest; data_be[0] = htonl(data >> 32); data_be[1] = htonl(data); digest = hotp_hmac(vpninfo, data_be); if (digest < 0) return digest; digest %= 1000000; snprintf(output, 7, "%06d", digest); return 0; } int do_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[7]; uint64_t challenge; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating OATH TOTP token code\n")); /* XXX: Support non-standard start time and step size */ challenge = vpninfo->token_time / 30; if (gen_hotp(vpninfo, challenge, tokencode)) return -EIO; vpninfo->token_tries++; opt->_value = strdup(tokencode); return opt->_value ? 0 : -ENOMEM; } static void buf_append_base32(struct oc_text_buf *buf, void *data, int len) { static const char alphabet[] = "ABCDEFGHIJKLMNOPQRSTUVWXYZ234567"; unsigned char *bytes = data; int i, j, b32_len = ((len + 4) / 5) * 8; uint32_t d; char b32[8]; if (buf_ensure_space(buf, b32_len + 1)) return; for (i = 0; i < (len - 4); i += 5) { /* Load low 4 input bytes into 'd' */ d = load_be32(&bytes[i + 1]); /* Loop backwardd over output group, emitting low * 5 bits of 'd' each time and shifting. */ for (j = 7; j >= 0; j--) { b32[j] = alphabet[d & 31]; d >>= 5; /* Mask in the last input byte when we can fit it */ if (j == 5) d |= bytes[i] << 17; } buf_append_bytes(buf, b32, 8); } if (i < len) { d = 0; /* This is basically load_be32(bytes + i) but substituting * zeroes instead of reading off the end. */ for (j = 0; j < 4; j++) { d <<= 8; if (i + j < len) d |= bytes[i + j]; } /* Now, work out how much '=' padding we need */ memset(b32, '=', 8); b32_len = (((len - i) * 8) + 4) / 5; memset(b32 + b32_len, '=', 8 - b32_len); /* If we need 7 characters of data then put the seventh * in manually because the LSB of 'd' is actually bit 3 * of the output character. */ if (b32_len == 7) { b32[6] = alphabet[(d & 3) << 3]; b32_len--; } /* Now shift bits into the right place and do the simple * loop emitting characters from the low 5 bits of 'd'. */ d >>= ((8 - b32_len) * 5) - 8; for (j = b32_len - 1; j >= 0; j--) { b32[j] = alphabet[d & 31]; d >>= 5; } buf_append_bytes(buf, b32, 8); } } static char *regen_hotp_secret(struct openconnect_info *vpninfo) { char *new_secret = NULL; struct oc_text_buf *buf; switch (vpninfo->hotp_secret_format) { case HOTP_SECRET_BASE32: buf = buf_alloc(); buf_append(buf, "base32:"); buf_append_base32(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_HEX: buf = buf_alloc(); buf_append(buf, "0x"); buf_append_hex(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_RAW: buf = buf_alloc(); buf_append_bytes(buf, vpninfo->oath_secret, vpninfo->oath_secret_len); break; case HOTP_SECRET_PSKC: #ifdef HAVE_LIBPSKC { size_t len; if (!vpninfo->pskc_key || !vpninfo->pskc) return NULL; pskc_set_key_data_counter(vpninfo->pskc_key, vpninfo->token_time); pskc_build_xml(vpninfo->pskc, &new_secret, &len); /* FFS #1: libpskc craps all over itself on pskc_build_xml(). https://bugzilla.redhat.com/show_bug.cgi?id=1129491 Hopefully this will be fixed by 2.4.2 but make it unconditional for now... */ if (1 || !pskc_check_version("2.4.2")) { pskc_done(vpninfo->pskc); vpninfo->pskc = NULL; vpninfo->pskc_key = NULL; if (pskc_init(&vpninfo->pskc) || pskc_parse_from_memory(vpninfo->pskc, len, new_secret)) { pskc_done(vpninfo->pskc); vpninfo->pskc = NULL; } else { vpninfo->pskc_key = pskc_get_keypackage(vpninfo->pskc, 0); vpninfo->oath_secret = (char *)pskc_get_key_data_secret(vpninfo->pskc_key, NULL); } } /* FFS #2: No terminating NUL byte */ realloc_inplace(new_secret, len + 1); if (new_secret) new_secret[len] = 0; return new_secret; } #endif default: return NULL; } buf_append(buf,",%ld", (long)vpninfo->token_time); if (!buf_error(buf)) { new_secret = buf->data; buf->data = NULL; } buf_free(buf); return new_secret; } int do_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { char tokencode[7]; int ret; vpn_progress(vpninfo, PRG_INFO, _("Generating OATH HOTP token code\n")); if (vpninfo->lock_token) { /* This may call openconnect_set_token_mode() again to update * the token if it's changed. */ ret = vpninfo->lock_token(vpninfo->tok_cbdata); if (ret) return ret; } if (gen_hotp(vpninfo, vpninfo->token_time, tokencode)) return -EIO; vpninfo->token_time++; vpninfo->token_tries++; opt->_value = strdup(tokencode); if (vpninfo->unlock_token) { char *new_tok = regen_hotp_secret(vpninfo); vpninfo->unlock_token(vpninfo->tok_cbdata, new_tok); free(new_tok); } return opt->_value ? 0 : -ENOMEM; } openconnect-8.20/config.sub0000755000076400007640000007530414076063213017526 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Configuration validation subroutine script. # Copyright 1992-2018 Free Software Foundation, Inc. timestamp='2018-08-29' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # Please send patches to . # # Configuration subroutine to validate and canonicalize a configuration type. # Supply the specified configuration type as an argument. # If it is invalid, we print an error message on stderr and exit with code 1. # Otherwise, we print the canonical config type on stdout and succeed. # You can get the latest version of this script from: # https://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.sub # This file is supposed to be the same for all GNU packages # and recognize all the CPU types, system types and aliases # that are meaningful with *any* GNU software. # Each package is responsible for reporting which valid configurations # it does not support. The user should be able to distinguish # a failure to support a valid configuration from a meaningless # configuration. # The goal of this file is to map all the various variations of a given # machine specification into a single specification in the form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or in some cases, the newer four-part form: # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # It is wrong to echo any other type of specification. me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] CPU-MFR-OPSYS or ALIAS Canonicalize a configuration name. Options: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.sub ($timestamp) Copyright 1992-2018 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" exit 1 ;; *local*) # First pass through any local machine types. echo "$1" exit ;; * ) break ;; esac done case $# in 0) echo "$me: missing argument$help" >&2 exit 1;; 1) ;; *) echo "$me: too many arguments$help" >&2 exit 1;; esac # Split fields of configuration type IFS="-" read -r field1 field2 field3 field4 <&2 exit 1 ;; *-*-*-*) basic_machine=$field1-$field2 os=$field3-$field4 ;; *-*-*) # Ambiguous whether COMPANY is present, or skipped and KERNEL-OS is two # parts maybe_os=$field2-$field3 case $maybe_os in nto-qnx* | linux-gnu* | linux-android* | linux-dietlibc \ | linux-newlib* | linux-musl* | linux-uclibc* | uclinux-uclibc* \ | uclinux-gnu* | kfreebsd*-gnu* | knetbsd*-gnu* | netbsd*-gnu* \ | netbsd*-eabi* | kopensolaris*-gnu* | cloudabi*-eabi* \ | storm-chaos* | os2-emx* | rtmk-nova*) basic_machine=$field1 os=$maybe_os ;; android-linux) basic_machine=$field1-unknown os=linux-android ;; *) basic_machine=$field1-$field2 os=$field3 ;; esac ;; *-*) # A lone config we happen to match not fitting any patern case $field1-$field2 in decstation-3100) basic_machine=mips-dec os= ;; *-*) # Second component is usually, but not always the OS case $field2 in # Prevent following clause from handling this valid os sun*os*) basic_machine=$field1 os=$field2 ;; # Manufacturers dec* | mips* | sequent* | encore* | pc533* | sgi* | sony* \ | att* | 7300* | 3300* | delta* | motorola* | sun[234]* \ | unicom* | ibm* | next | hp | isi* | apollo | altos* \ | convergent* | ncr* | news | 32* | 3600* | 3100* \ | hitachi* | c[123]* | convex* | sun | crds | omron* | dg \ | ultra | tti* | harris | dolphin | highlevel | gould \ | cbm | ns | masscomp | apple | axis | knuth | cray \ | microblaze* | sim | cisco \ | oki | wec | wrs | winbond) basic_machine=$field1-$field2 os= ;; *) basic_machine=$field1 os=$field2 ;; esac ;; esac ;; *) # Convert single-component short-hands not valid as part of # multi-component configurations. case $field1 in 386bsd) basic_machine=i386-pc os=bsd ;; a29khif) basic_machine=a29k-amd os=udi ;; adobe68k) basic_machine=m68010-adobe os=scout ;; alliant) basic_machine=fx80-alliant os= ;; altos | altos3068) basic_machine=m68k-altos os= ;; am29k) basic_machine=a29k-none os=bsd ;; amdahl) basic_machine=580-amdahl os=sysv ;; amiga) basic_machine=m68k-unknown os= ;; amigaos | amigados) basic_machine=m68k-unknown os=amigaos ;; amigaunix | amix) basic_machine=m68k-unknown os=sysv4 ;; apollo68) basic_machine=m68k-apollo os=sysv ;; apollo68bsd) basic_machine=m68k-apollo os=bsd ;; aros) basic_machine=i386-pc os=aros ;; aux) basic_machine=m68k-apple os=aux ;; balance) basic_machine=ns32k-sequent os=dynix ;; blackfin) basic_machine=bfin-unknown os=linux ;; cegcc) basic_machine=arm-unknown os=cegcc ;; convex-c1) basic_machine=c1-convex os=bsd ;; convex-c2) basic_machine=c2-convex os=bsd ;; convex-c32) basic_machine=c32-convex os=bsd ;; convex-c34) basic_machine=c34-convex os=bsd ;; convex-c38) basic_machine=c38-convex os=bsd ;; cray) basic_machine=j90-cray os=unicos ;; crds | unos) basic_machine=m68k-crds os= ;; da30) basic_machine=m68k-da30 os= ;; decstation | pmax | pmin | dec3100 | decstatn) basic_machine=mips-dec os= ;; delta88) basic_machine=m88k-motorola os=sysv3 ;; dicos) basic_machine=i686-pc os=dicos ;; djgpp) basic_machine=i586-pc os=msdosdjgpp ;; ebmon29k) basic_machine=a29k-amd os=ebmon ;; es1800 | OSE68k | ose68k | ose | OSE) basic_machine=m68k-ericsson os=ose ;; gmicro) basic_machine=tron-gmicro os=sysv ;; go32) basic_machine=i386-pc os=go32 ;; h8300hms) basic_machine=h8300-hitachi os=hms ;; h8300xray) basic_machine=h8300-hitachi os=xray ;; h8500hms) basic_machine=h8500-hitachi os=hms ;; harris) basic_machine=m88k-harris os=sysv3 ;; hp300) basic_machine=m68k-hp ;; hp300bsd) basic_machine=m68k-hp os=bsd ;; hp300hpux) basic_machine=m68k-hp os=hpux ;; hppaosf) basic_machine=hppa1.1-hp os=osf ;; hppro) basic_machine=hppa1.1-hp os=proelf ;; i386mach) basic_machine=i386-mach os=mach ;; vsta) basic_machine=i386-pc os=vsta ;; isi68 | isi) basic_machine=m68k-isi os=sysv ;; m68knommu) basic_machine=m68k-unknown os=linux ;; magnum | m3230) basic_machine=mips-mips os=sysv ;; merlin) basic_machine=ns32k-utek os=sysv ;; mingw64) basic_machine=x86_64-pc os=mingw64 ;; mingw32) basic_machine=i686-pc os=mingw32 ;; mingw32ce) basic_machine=arm-unknown os=mingw32ce ;; monitor) basic_machine=m68k-rom68k os=coff ;; morphos) basic_machine=powerpc-unknown os=morphos ;; moxiebox) basic_machine=moxie-unknown os=moxiebox ;; msdos) basic_machine=i386-pc os=msdos ;; msys) basic_machine=i686-pc os=msys ;; mvs) basic_machine=i370-ibm os=mvs ;; nacl) basic_machine=le32-unknown os=nacl ;; ncr3000) basic_machine=i486-ncr os=sysv4 ;; netbsd386) basic_machine=i386-pc os=netbsd ;; netwinder) basic_machine=armv4l-rebel os=linux ;; news | news700 | news800 | news900) basic_machine=m68k-sony os=newsos ;; news1000) basic_machine=m68030-sony os=newsos ;; necv70) basic_machine=v70-nec os=sysv ;; nh3000) basic_machine=m68k-harris os=cxux ;; nh[45]000) basic_machine=m88k-harris os=cxux ;; nindy960) basic_machine=i960-intel os=nindy ;; mon960) basic_machine=i960-intel os=mon960 ;; nonstopux) basic_machine=mips-compaq os=nonstopux ;; os400) basic_machine=powerpc-ibm os=os400 ;; OSE68000 | ose68000) basic_machine=m68000-ericsson os=ose ;; os68k) basic_machine=m68k-none os=os68k ;; paragon) basic_machine=i860-intel os=osf ;; parisc) basic_machine=hppa-unknown os=linux ;; pw32) basic_machine=i586-unknown os=pw32 ;; rdos | rdos64) basic_machine=x86_64-pc os=rdos ;; rdos32) basic_machine=i386-pc os=rdos ;; rom68k) basic_machine=m68k-rom68k os=coff ;; sa29200) basic_machine=a29k-amd os=udi ;; sei) basic_machine=mips-sei os=seiux ;; sequent) basic_machine=i386-sequent os= ;; sps7) basic_machine=m68k-bull os=sysv2 ;; st2000) basic_machine=m68k-tandem os= ;; stratus) basic_machine=i860-stratus os=sysv4 ;; sun2) basic_machine=m68000-sun os= ;; sun2os3) basic_machine=m68000-sun os=sunos3 ;; sun2os4) basic_machine=m68000-sun os=sunos4 ;; sun3) basic_machine=m68k-sun os= ;; sun3os3) basic_machine=m68k-sun os=sunos3 ;; sun3os4) basic_machine=m68k-sun os=sunos4 ;; sun4) basic_machine=sparc-sun os= ;; sun4os3) basic_machine=sparc-sun os=sunos3 ;; sun4os4) basic_machine=sparc-sun os=sunos4 ;; sun4sol2) basic_machine=sparc-sun os=solaris2 ;; sun386 | sun386i | roadrunner) basic_machine=i386-sun os= ;; sv1) basic_machine=sv1-cray os=unicos ;; symmetry) basic_machine=i386-sequent os=dynix ;; t3e) basic_machine=alphaev5-cray os=unicos ;; t90) basic_machine=t90-cray os=unicos ;; toad1) basic_machine=pdp10-xkl os=tops20 ;; tpf) basic_machine=s390x-ibm os=tpf ;; udi29k) basic_machine=a29k-amd os=udi ;; ultra3) basic_machine=a29k-nyu os=sym1 ;; v810 | necv810) basic_machine=v810-nec os=none ;; vaxv) basic_machine=vax-dec os=sysv ;; vms) basic_machine=vax-dec os=vms ;; vxworks960) basic_machine=i960-wrs os=vxworks ;; vxworks68) basic_machine=m68k-wrs os=vxworks ;; vxworks29k) basic_machine=a29k-wrs os=vxworks ;; xbox) basic_machine=i686-pc os=mingw32 ;; ymp) basic_machine=ymp-cray os=unicos ;; *) basic_machine=$1 os= ;; esac ;; esac # Decode 1-component or ad-hoc basic machines case $basic_machine in # Here we handle the default manufacturer of certain CPU types. It is in # some cases the only manufacturer, in others, it is the most popular. w89k) cpu=hppa1.1 vendor=winbond ;; op50n) cpu=hppa1.1 vendor=oki ;; op60c) cpu=hppa1.1 vendor=oki ;; ibm*) cpu=i370 vendor=ibm ;; orion105) cpu=clipper vendor=highlevel ;; mac | mpw | mac-mpw) cpu=m68k vendor=apple ;; pmac | pmac-mpw) cpu=powerpc vendor=apple ;; # Recognize the various machine names and aliases which stand # for a CPU type and a company and sometimes even an OS. 3b1 | 7300 | 7300-att | att-7300 | pc7300 | safari | unixpc) cpu=m68000 vendor=att ;; 3b*) cpu=we32k vendor=att ;; bluegene*) cpu=powerpc vendor=ibm os=cnk ;; decsystem10* | dec10*) cpu=pdp10 vendor=dec os=tops10 ;; decsystem20* | dec20*) cpu=pdp10 vendor=dec os=tops20 ;; delta | 3300 | motorola-3300 | motorola-delta \ | 3300-motorola | delta-motorola) cpu=m68k vendor=motorola ;; dpx2*) cpu=m68k vendor=bull os=sysv3 ;; encore | umax | mmax) cpu=ns32k vendor=encore ;; elxsi) cpu=elxsi vendor=elxsi os=${os:-bsd} ;; fx2800) cpu=i860 vendor=alliant ;; genix) cpu=ns32k vendor=ns ;; h3050r* | hiux*) cpu=hppa1.1 vendor=hitachi os=hiuxwe2 ;; hp3k9[0-9][0-9] | hp9[0-9][0-9]) cpu=hppa1.0 vendor=hp ;; hp9k2[0-9][0-9] | hp9k31[0-9]) cpu=m68000 vendor=hp ;; hp9k3[2-9][0-9]) cpu=m68k vendor=hp ;; hp9k6[0-9][0-9] | hp6[0-9][0-9]) cpu=hppa1.0 vendor=hp ;; hp9k7[0-79][0-9] | hp7[0-79][0-9]) cpu=hppa1.1 vendor=hp ;; hp9k78[0-9] | hp78[0-9]) # FIXME: really hppa2.0-hp cpu=hppa1.1 vendor=hp ;; hp9k8[67]1 | hp8[67]1 | hp9k80[24] | hp80[24] | hp9k8[78]9 | hp8[78]9 | hp9k893 | hp893) # FIXME: really hppa2.0-hp cpu=hppa1.1 vendor=hp ;; hp9k8[0-9][13679] | hp8[0-9][13679]) cpu=hppa1.1 vendor=hp ;; hp9k8[0-9][0-9] | hp8[0-9][0-9]) cpu=hppa1.0 vendor=hp ;; i*86v32) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=sysv32 ;; i*86v4*) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=sysv4 ;; i*86v) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=sysv ;; i*86sol2) cpu=`echo "$1" | sed -e 's/86.*/86/'` vendor=pc os=solaris2 ;; j90 | j90-cray) cpu=j90 vendor=cray os=${os:-unicos} ;; iris | iris4d) cpu=mips vendor=sgi case $os in irix*) ;; *) os=irix4 ;; esac ;; miniframe) cpu=m68000 vendor=convergent ;; *mint | mint[0-9]* | *MiNT | *MiNT[0-9]*) cpu=m68k vendor=atari os=mint ;; news-3600 | risc-news) cpu=mips vendor=sony os=newsos ;; next | m*-next) cpu=m68k vendor=next case $os in nextstep* ) ;; ns2*) os=nextstep2 ;; *) os=nextstep3 ;; esac ;; np1) cpu=np1 vendor=gould ;; op50n-* | op60c-*) cpu=hppa1.1 vendor=oki os=proelf ;; pa-hitachi) cpu=hppa1.1 vendor=hitachi os=hiuxwe2 ;; pbd) cpu=sparc vendor=tti ;; pbb) cpu=m68k vendor=tti ;; pc532) cpu=ns32k vendor=pc532 ;; pn) cpu=pn vendor=gould ;; power) cpu=power vendor=ibm ;; ps2) cpu=i386 vendor=ibm ;; rm[46]00) cpu=mips vendor=siemens ;; rtpc | rtpc-*) cpu=romp vendor=ibm ;; sde) cpu=mipsisa32 vendor=sde os=${os:-elf} ;; simso-wrs) cpu=sparclite vendor=wrs os=vxworks ;; tower | tower-32) cpu=m68k vendor=ncr ;; vpp*|vx|vx-*) cpu=f301 vendor=fujitsu ;; w65) cpu=w65 vendor=wdc ;; w89k-*) cpu=hppa1.1 vendor=winbond os=proelf ;; none) cpu=none vendor=none ;; leon|leon[3-9]) cpu=sparc vendor=$basic_machine ;; leon-*|leon[3-9]-*) cpu=sparc vendor=`echo "$basic_machine" | sed 's/-.*//'` ;; *-*) IFS="-" read -r cpu vendor <&2 exit 1 ;; esac ;; esac # Here we canonicalize certain aliases for manufacturers. case $vendor in digital*) vendor=dec ;; commodore*) vendor=cbm ;; *) ;; esac # Decode manufacturer-specific aliases for certain operating systems. if [ x$os != x ] then case $os in # First match some system type aliases that might get confused # with valid system types. # solaris* is a basic system type, with this one exception. auroraux) os=auroraux ;; bluegene*) os=cnk ;; solaris1 | solaris1.*) os=`echo $os | sed -e 's|solaris1|sunos4|'` ;; solaris) os=solaris2 ;; unixware*) os=sysv4.2uw ;; gnu/linux*) os=`echo $os | sed -e 's|gnu/linux|linux-gnu|'` ;; # es1800 is here to avoid being matched by es* (a different OS) es1800*) os=ose ;; # Some version numbers need modification chorusos*) os=chorusos ;; isc) os=isc2.2 ;; sco6) os=sco5v6 ;; sco5) os=sco3.2v5 ;; sco4) os=sco3.2v4 ;; sco3.2.[4-9]*) os=`echo $os | sed -e 's/sco3.2./sco3.2v/'` ;; sco3.2v[4-9]* | sco5v6*) # Don't forget version if it is 3.2v4 or newer. ;; scout) # Don't match below ;; sco*) os=sco3.2v2 ;; psos*) os=psos ;; # Now accept the basic system types. # The portable systems comes first. # Each alternative MUST end in a * to match a version number. # sysv* is not here because it comes later, after sysvr4. gnu* | bsd* | mach* | minix* | genix* | ultrix* | irix* \ | *vms* | esix* | aix* | cnk* | sunos | sunos[34]*\ | hpux* | unos* | osf* | luna* | dgux* | auroraux* | solaris* \ | sym* | kopensolaris* | plan9* \ | amigaos* | amigados* | msdos* | newsos* | unicos* | aof* \ | aos* | aros* | cloudabi* | sortix* \ | nindy* | vxsim* | vxworks* | ebmon* | hms* | mvs* \ | clix* | riscos* | uniplus* | iris* | isc* | rtu* | xenix* \ | knetbsd* | mirbsd* | netbsd* \ | bitrig* | openbsd* | solidbsd* | libertybsd* \ | ekkobsd* | kfreebsd* | freebsd* | riscix* | lynxos* \ | bosx* | nextstep* | cxux* | aout* | elf* | oabi* \ | ptx* | coff* | ecoff* | winnt* | domain* | vsta* \ | udi* | eabi* | lites* | ieee* | go32* | aux* | hcos* \ | chorusrdb* | cegcc* | glidix* \ | cygwin* | msys* | pe* | moss* | proelf* | rtems* \ | midipix* | mingw32* | mingw64* | linux-gnu* | linux-android* \ | linux-newlib* | linux-musl* | linux-uclibc* \ | uxpv* | beos* | mpeix* | udk* | moxiebox* \ | interix* | uwin* | mks* | rhapsody* | darwin* \ | openstep* | oskit* | conix* | pw32* | nonstopux* \ | storm-chaos* | tops10* | tenex* | tops20* | its* \ | os2* | vos* | palmos* | uclinux* | nucleus* \ | morphos* | superux* | rtmk* | windiss* \ | powermax* | dnix* | nx6 | nx7 | sei* | dragonfly* \ | skyos* | haiku* | rdos* | toppers* | drops* | es* \ | onefs* | tirtos* | phoenix* | fuchsia* | redox* | bme* \ | midnightbsd*) # Remember, each alternative MUST END IN *, to match a version number. ;; qnx*) case $cpu in x86 | i*86) ;; *) os=nto-$os ;; esac ;; hiux*) os=hiuxwe2 ;; nto-qnx*) ;; nto*) os=`echo $os | sed -e 's|nto|nto-qnx|'` ;; sim | xray | os68k* | v88r* \ | windows* | osx | abug | netware* | os9* \ | macos* | mpw* | magic* | mmixware* | mon960* | lnews*) ;; linux-dietlibc) os=linux-dietlibc ;; linux*) os=`echo $os | sed -e 's|linux|linux-gnu|'` ;; lynx*178) os=lynxos178 ;; lynx*5) os=lynxos5 ;; lynx*) os=lynxos ;; mac*) os=`echo "$os" | sed -e 's|mac|macos|'` ;; opened*) os=openedition ;; os400*) os=os400 ;; sunos5*) os=`echo "$os" | sed -e 's|sunos5|solaris2|'` ;; sunos6*) os=`echo "$os" | sed -e 's|sunos6|solaris3|'` ;; wince*) os=wince ;; utek*) os=bsd ;; dynix*) os=bsd ;; acis*) os=aos ;; atheos*) os=atheos ;; syllable*) os=syllable ;; 386bsd) os=bsd ;; ctix* | uts*) os=sysv ;; nova*) os=rtmk-nova ;; ns2) os=nextstep2 ;; nsk*) os=nsk ;; # Preserve the version number of sinix5. sinix5.*) os=`echo $os | sed -e 's|sinix|sysv|'` ;; sinix*) os=sysv4 ;; tpf*) os=tpf ;; triton*) os=sysv3 ;; oss*) os=sysv3 ;; svr4*) os=sysv4 ;; svr3) os=sysv3 ;; sysvr4) os=sysv4 ;; # This must come after sysvr4. sysv*) ;; ose*) os=ose ;; *mint | mint[0-9]* | *MiNT | MiNT[0-9]*) os=mint ;; zvmoe) os=zvmoe ;; dicos*) os=dicos ;; pikeos*) # Until real need of OS specific support for # particular features comes up, bare metal # configurations are quite functional. case $cpu in arm*) os=eabi ;; *) os=elf ;; esac ;; nacl*) ;; ios) ;; none) ;; *-eabi) ;; *) echo Invalid configuration \`"$1"\': system \`"$os"\' not recognized 1>&2 exit 1 ;; esac else # Here we handle the default operating systems that come with various machines. # The value should be what the vendor currently ships out the door with their # machine or put another way, the most popular os provided with the machine. # Note that if you're going to try to match "-MANUFACTURER" here (say, # "-sun"), then you have to tell the case statement up towards the top # that MANUFACTURER isn't an operating system. Otherwise, code above # will signal an error saying that MANUFACTURER isn't an operating # system, and we'll never get to this point. case $cpu-$vendor in score-*) os=elf ;; spu-*) os=elf ;; *-acorn) os=riscix1.2 ;; arm*-rebel) os=linux ;; arm*-semi) os=aout ;; c4x-* | tic4x-*) os=coff ;; c8051-*) os=elf ;; clipper-intergraph) os=clix ;; hexagon-*) os=elf ;; tic54x-*) os=coff ;; tic55x-*) os=coff ;; tic6x-*) os=coff ;; # This must come before the *-dec entry. pdp10-*) os=tops20 ;; pdp11-*) os=none ;; *-dec | vax-*) os=ultrix4.2 ;; m68*-apollo) os=domain ;; i386-sun) os=sunos4.0.2 ;; m68000-sun) os=sunos3 ;; m68*-cisco) os=aout ;; mep-*) os=elf ;; mips*-cisco) os=elf ;; mips*-*) os=elf ;; or32-*) os=coff ;; *-tti) # must be before sparc entry or we get the wrong os. os=sysv3 ;; sparc-* | *-sun) os=sunos4.1.1 ;; pru-*) os=elf ;; *-be) os=beos ;; *-ibm) os=aix ;; *-knuth) os=mmixware ;; *-wec) os=proelf ;; *-winbond) os=proelf ;; *-oki) os=proelf ;; *-hp) os=hpux ;; *-hitachi) os=hiux ;; i860-* | *-att | *-ncr | *-altos | *-motorola | *-convergent) os=sysv ;; *-cbm) os=amigaos ;; *-dg) os=dgux ;; *-dolphin) os=sysv3 ;; m68k-ccur) os=rtu ;; m88k-omron*) os=luna ;; *-next) os=nextstep ;; *-sequent) os=ptx ;; *-crds) os=unos ;; *-ns) os=genix ;; i370-*) os=mvs ;; *-gould) os=sysv ;; *-highlevel) os=bsd ;; *-encore) os=bsd ;; *-sgi) os=irix ;; *-siemens) os=sysv4 ;; *-masscomp) os=rtu ;; f30[01]-fujitsu | f700-fujitsu) os=uxpv ;; *-rom68k) os=coff ;; *-*bug) os=coff ;; *-apple) os=macos ;; *-atari*) os=mint ;; *-wrs) os=vxworks ;; *) os=none ;; esac fi # Here we handle the case where we know the os, and the CPU type, but not the # manufacturer. We pick the logical manufacturer. case $vendor in unknown) case $os in riscix*) vendor=acorn ;; sunos*) vendor=sun ;; cnk*|-aix*) vendor=ibm ;; beos*) vendor=be ;; hpux*) vendor=hp ;; mpeix*) vendor=hp ;; hiux*) vendor=hitachi ;; unos*) vendor=crds ;; dgux*) vendor=dg ;; luna*) vendor=omron ;; genix*) vendor=ns ;; clix*) vendor=intergraph ;; mvs* | opened*) vendor=ibm ;; os400*) vendor=ibm ;; ptx*) vendor=sequent ;; tpf*) vendor=ibm ;; vxsim* | vxworks* | windiss*) vendor=wrs ;; aux*) vendor=apple ;; hms*) vendor=hitachi ;; mpw* | macos*) vendor=apple ;; *mint | mint[0-9]* | *MiNT | MiNT[0-9]*) vendor=atari ;; vos*) vendor=stratus ;; esac ;; esac echo "$cpu-$vendor-$os" exit # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: openconnect-8.20/nullppp.c0000644000076400007640000000437014067426206017401 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020 David Woodhouse * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "ppp.h" #include #include #include #include #include #include #include #include #include #include int nullppp_obtain_cookie(struct openconnect_info *vpninfo) { if (!(vpninfo->cookie = strdup(""))) return -ENOMEM; return 0; } int nullppp_connect(struct openconnect_info *vpninfo) { int ret; int ipv4, ipv6, hdlc; /* XX: cookie hack. Use -C hdlc,noipv4,noipv6,term on the * command line to set options. */ hdlc = strstr(vpninfo->cookie, "hdlc") ? 1 : 0; ipv4 = strstr(vpninfo->cookie, "noipv4") ? 0 : 1; ipv6 = strstr(vpninfo->cookie, "noipv6") ? 0 : 1; /* Now establish the actual connection */ ret = openconnect_open_https(vpninfo); if (ret) goto out; ret = openconnect_ppp_new(vpninfo, hdlc ? PPP_ENCAP_RFC1662_HDLC : PPP_ENCAP_RFC1661, ipv4, ipv6); if (!ret) { /* Trigger the first PPP negotiations and ensure the PPP state * is PPPS_ESTABLISH so that ppp_tcp_mainloop() knows we've started. */ ppp_start_tcp_mainloop(vpninfo); } out: if (ret) openconnect_close_https(vpninfo, 0); else { monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); } return ret; } int nullppp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { if (vpninfo->ppp->ppp_state >= PPPS_NETWORK && strstr(vpninfo->cookie, "term")) { vpninfo->got_cancel_cmd = 1; vpn_progress(vpninfo, PRG_ERR, _("Terminating because nullppp has reached network state.\n")); } return ppp_tcp_mainloop(vpninfo, timeout, readable); } openconnect-8.20/openssl-pkcs11.c0000644000076400007640000004704014171606260020467 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #ifdef HAVE_LIBP11 /* And p11-kit */ #include #include static PKCS11_CTX *pkcs11_ctx(struct openconnect_info *vpninfo) { PKCS11_CTX *ctx; if (!vpninfo->pkcs11_ctx) { ERR_load_PKCS11_strings(); ctx = PKCS11_CTX_new(); if (!ctx) { vpn_progress(vpninfo, PRG_ERR, _("Failed to establish libp11 PKCS#11 context:\n")); openconnect_report_ssl_errors(vpninfo); return NULL; } if (PKCS11_CTX_load(ctx, DEFAULT_PKCS11_MODULE) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#11 provider module (%s):\n"), DEFAULT_PKCS11_MODULE); openconnect_report_ssl_errors(vpninfo); PKCS11_CTX_free(ctx); return NULL; } vpninfo->pkcs11_ctx = ctx; } return vpninfo->pkcs11_ctx; } static int parse_uri_attr(const char *attr, int attrlen, unsigned char **field, size_t *field_len) { size_t outlen = 0; unsigned char *out; int ret = 0; out = malloc(attrlen + 1); if (!out) return -ENOMEM; while (!ret && attrlen) { if (*attr == '%') { if (attrlen < 3) { ret = -EINVAL; } else { out[outlen++] = unhex(attr+1); attrlen -= 3; attr += 3; } } else { out[outlen++] = *(attr++); attrlen--; } } if (ret) free(out); else { if (field_len) *field_len = outlen; out[outlen] = 0; *field = out; } return ret; } static int parse_pkcs11_uri(const char *uri, PKCS11_TOKEN **p_tok, unsigned char **id, size_t *id_len, char **label, char **pin) { PKCS11_TOKEN *tok; char *newlabel = NULL; const char *end, *p; int ret = 0; tok = calloc(1, sizeof(*tok)); if (!tok) { fprintf(stderr, "Could not allocate memory for token info\n"); return -ENOMEM; } *id = NULL; /* We are only ever invoked if the string starts with 'pkcs11:' */ end = uri + 6; while (!ret && end[0] && end[1]) { p = end + 1; end = strchr(p, ';'); if (!end) end = p + strlen(p); if (!strncmp(p, "model=", 6)) { p += 6; ret = parse_uri_attr(p, end - p, (void *)&tok->model, NULL); } else if (!strncmp(p, "manufacturer=", 13)) { p += 13; ret = parse_uri_attr(p, end - p, (void *)&tok->manufacturer, NULL); } else if (!strncmp(p, "token=", 6)) { p += 6; ret = parse_uri_attr(p, end - p, (void *)&tok->label, NULL); } else if (!strncmp(p, "serial=", 7)) { p += 7; ret = parse_uri_attr(p, end - p, (void *)&tok->serialnr, NULL); } else if (!strncmp(p, "object=", 7)) { p += 7; ret = parse_uri_attr(p, end - p, (void *)&newlabel, NULL); } else if (!strncmp(p, "id=", 3)) { p += 3; ret = parse_uri_attr(p, end - p, (void *)id, id_len); } else if (!strncmp(p, "type=", 5) || !strncmp(p, "object-type=", 12)) { p = strchr(p, '=') + 1; if ((end - p == 4 && !strncmp(p, "cert", 4)) || (end - p == 7 && !strncmp(p, "private", 7))) { /* Actually, just ignore it */ } else ret = -EINVAL; /* Ignore object type for now. */ } else if (!strncmp(p, "pin-value=", 10)) { /* XXX We could do better than this but it'll cover all sane use cases. */ char *pinvalue = NULL; p += 10; ret = parse_uri_attr(p, end - p, (void *)&pinvalue, NULL); if (pinvalue) { free(*pin); *pin = pinvalue; } } else { ret = -EINVAL; } } if (!ret) { *label = newlabel; *p_tok = tok; } else { free(tok); tok = NULL; free(newlabel); free(*id); *id = NULL; } return ret; } static int request_pin(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct pin_cache *cache, int retrying) { struct oc_auth_form f; struct oc_form_opt o; char message[1024]; int ret; if (!vpninfo || !vpninfo->process_auth_form) return -EINVAL; if (certinfo->password) { cache->pin = certinfo->password; certinfo->password = NULL; return 0; } memset(&f, 0, sizeof(f)); f.auth_id = (char *)certinfo_string(certinfo, "pkcs11_pin", "secondary_pkcs11_pin"); f.opts = &o; message[sizeof(message)-1] = 0; snprintf(message, sizeof(message) - 1, _("PIN required for %s"), cache->token); f.message = message; if (retrying) f.error = (char *)_("Wrong PIN"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"pkcs11_pin"; o.label = (char *)_("Enter PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret || !o._value) return -EIO; cache->pin = o._value; return 0; } static int slot_login(struct openconnect_info *vpninfo, struct cert_info *certinfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot) { PKCS11_TOKEN *token = slot->token; struct pin_cache *cache = vpninfo->pin_cache; int ret, retrying = 0; retry: ERR_clear_error(); if (!token->secureLogin) { if (!cache) { for (cache = vpninfo->pin_cache; cache; cache = cache->next) if (!strcmp(slot->description, cache->token)) break; } if (!cache) { cache = malloc(sizeof(*cache)); if (!cache) return -ENOMEM; cache->pin = NULL; cache->next = vpninfo->pin_cache; cache->token = strdup(slot->description); if (!cache->token) { free(cache); return -ENOMEM; } vpninfo->pin_cache = cache; } if (!cache->pin) { ret = request_pin(vpninfo, certinfo, cache, retrying); if (ret) return ret; } } ret = PKCS11_login(slot, 0, cache ? cache->pin : NULL); if (ret) { unsigned long err = ERR_peek_error(); #if OPENSSL_VERSION_NUMBER < 0x30000000L if (ERR_GET_LIB(err) == ERR_LIB_PKCS11 && ERR_GET_FUNC(err) == PKCS11_F_PKCS11_LOGIN) #else if (ERR_GET_LIB(err) == ERR_LIB_PKCS11) #endif err = ERR_GET_REASON(err); else err = CKR_OK; /* Anything we don't explicitly match */ switch (ERR_GET_REASON(err)) { case CKR_PIN_INCORRECT: /* They'll be told about it in the next UI prompt */ if (cache) { free(cache->pin); cache->pin = NULL; } retrying = 1; goto retry; case CKR_PIN_LOCKED: vpn_progress(vpninfo, PRG_ERR, _("PIN locked\n")); break; case CKR_PIN_EXPIRED: vpn_progress(vpninfo, PRG_ERR, _("PIN expired\n")); break; case CKR_USER_ANOTHER_ALREADY_LOGGED_IN: vpn_progress(vpninfo, PRG_ERR, _("Another user already logged in\n")); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown error logging in to PKCS#11 token\n")); openconnect_report_ssl_errors(vpninfo); } ERR_clear_error(); return -EPERM; } vpn_progress(vpninfo, PRG_TRACE, _("Logged in to PKCS#11 slot '%s'\n"), slot->description); return 0; } static PKCS11_CERT *slot_find_cert(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot, const char *cert_label, unsigned char *cert_id, size_t cert_id_len) { PKCS11_CERT *cert_list = NULL, *cert = NULL; unsigned int cert_count; if (PKCS11_enumerate_certs(slot->token, &cert_list, &cert_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate certs in PKCS#11 slot '%s'\n"), slot->description); return NULL; } vpn_progress(vpninfo, PRG_TRACE, _("Found %d certs in slot '%s'\n"), cert_count, slot->description); for (cert = cert_list; cert < &cert_list[cert_count]; cert++) { if (cert_label && strcmp(cert_label, cert->label)) continue; if (cert_id && (cert_id_len != cert->id_len || memcmp(cert_id, cert->id, cert_id_len))) continue; return cert; } return NULL; } int load_pkcs11_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, X509 **certp) { PKCS11_CTX *ctx; PKCS11_TOKEN *match_tok = NULL; PKCS11_CERT *cert = NULL; char *cert_label = NULL; unsigned char *cert_id = NULL; size_t cert_id_len = 0; PKCS11_SLOT *slot_list = NULL, *slot, *login_slot = NULL; unsigned int slot_count, matching_slots = 0; int ret = 0; ctx = pkcs11_ctx(vpninfo); if (!ctx) return -EIO; if (parse_pkcs11_uri(certinfo->cert, &match_tok, &cert_id, &cert_id_len, &cert_label, &certinfo->password) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse PKCS#11 URI '%s'\n"), certinfo->cert); return -EINVAL; } if (PKCS11_enumerate_slots(ctx, &slot_list, &slot_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate PKCS#11 slots\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } for (slot = slot_list; slot < &slot_list[slot_count] && slot != login_slot; slot++) { if (!slot->token) continue; if (match_tok->label && strcmp(match_tok->label, slot->token->label)) continue; if (match_tok->manufacturer && strcmp(match_tok->manufacturer, slot->token->manufacturer)) continue; if (match_tok->model && strcmp(match_tok->model, slot->token->model)) continue; if (match_tok->serialnr && strcmp(match_tok->serialnr, slot->token->serialnr)) continue; cert = slot_find_cert(vpninfo, ctx, slot, cert_label, cert_id, cert_id_len); if (cert) goto got_cert; login_slot = slot; matching_slots++; } /* If there was precisely one matching slot, and we still didn't find the cert, try logging in to it. */ if (matching_slots == 1 && (login_slot->token->loginRequired || login_slot->token->userPinSet)) { slot = login_slot; vpn_progress(vpninfo, PRG_INFO, _("Logging in to PKCS#11 slot '%s'\n"), slot->description); if (!slot_login(vpninfo, certinfo, ctx, slot)) { cert = slot_find_cert(vpninfo, ctx, slot, cert_label, cert_id, cert_id_len); if (cert) goto got_cert; } } ret = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("Failed to find PKCS#11 cert '%s'\n"), certinfo->cert); got_cert: if (cert) { /* This happens if the cert is too large for the fixed buffer in libp11 :( */ if (!cert->x509) { vpn_progress(vpninfo, PRG_ERR, _("Certificate X.509 content not fetched by libp11\n")); ret = -EIO; goto out; } vpn_progress(vpninfo, PRG_DEBUG, certinfo_string(certinfo, _("Using PKCS#11 certificate %s\n"), _("Using secondary PKCS#11 certificate %s\n")), certinfo->cert); *certp = cert->x509; /* If the key is in PKCS#11 too (which is likely), then keep the slot around. We might want to know which slot the certificate was found in, so we can log into it to find the key. */ if (!strncmp(certinfo->key, "pkcs11:", 7)) { vpninfo->pkcs11_slot_list = slot_list; vpninfo->pkcs11_slot_count = slot_count; vpninfo->pkcs11_cert_slot = slot; slot_list = NULL; } /* Also remember the ID of the cert, in case it helps us find the matching key */ vpninfo->pkcs11_cert_id = malloc(cert->id_len); if (vpninfo->pkcs11_cert_id) { vpninfo->pkcs11_cert_id_len = cert->id_len; memcpy(vpninfo->pkcs11_cert_id, cert->id, cert->id_len); } } out: if (match_tok) { free(match_tok->model); free(match_tok->manufacturer); free(match_tok->serialnr); free(match_tok->label); free(match_tok); } free(cert_id); free(cert_label); if (slot_list) PKCS11_release_all_slots(ctx, slot_list, slot_count); return ret; } static PKCS11_KEY *slot_find_key(struct openconnect_info *vpninfo, PKCS11_CTX *ctx, PKCS11_SLOT *slot, const char *key_label, unsigned char *key_id, size_t key_id_len) { PKCS11_KEY *key_list = NULL, *key = NULL; unsigned int key_count; if (PKCS11_enumerate_keys(slot->token, &key_list, &key_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate keys in PKCS#11 slot '%s'\n"), slot->description); return NULL; } vpn_progress(vpninfo, PRG_TRACE, _("Found %d keys in slot '%s'\n"), key_count, slot->description); for (key = key_list; key < &key_list[key_count]; key++) { if (key_label && strcmp(key_label, key->label)) continue; if (key_id && (key_id_len != key->id_len || memcmp(key_id, key->id, key_id_len))) continue; return key; } return NULL; } #ifndef OPENSSL_NO_EC #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) #define EVP_PKEY_id(k) ((k)->type) #endif static int validate_ecdsa_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, EC_KEY *priv_ec) { EVP_PKEY *pub_pkey; EC_KEY *pub_ec; unsigned char rdata[SHA1_SIZE]; unsigned int siglen = ECDSA_size(priv_ec); unsigned char *sig; int ret = -EINVAL; pub_pkey = X509_get_pubkey(vpninfo->cert_x509); if (!pub_pkey) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Certificate has no public key\n"), _("Secondary certificate has no public key\n"))); goto out; } pub_ec = EVP_PKEY_get1_EC_KEY(pub_pkey); if (!pub_ec) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Certificate does not match private key\n"), _("Secondary certificate does not match private key\n"))); goto out_pkey; } vpn_progress(vpninfo, PRG_TRACE, _("Checking EC key matches cert\n")); sig = malloc(siglen); if (!sig) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate signature buffer\n")); ret = -ENOMEM; goto out_pubec; } if (!RAND_bytes(rdata, sizeof(rdata))) { /* Actually, who cares? */ } if (!ECDSA_sign(NID_sha1, rdata, sizeof(rdata), sig, &siglen, priv_ec)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to sign dummy data to validate EC key\n")); openconnect_report_ssl_errors(vpninfo); goto out_sig; } if (!ECDSA_verify(NID_sha1, rdata, sizeof(rdata), sig, siglen, pub_ec)) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Certificate does not match private key\n"), _("Secondary certificate does not match private key\n"))); goto out_sig; } /* Finally, copy the public EC_POINT data now that we know it really did match */ EC_KEY_set_public_key(priv_ec, EC_KEY_get0_public_key(pub_ec)); ret = 0; out_sig: free(sig); out_pubec: EC_KEY_free(pub_ec); out_pkey: EVP_PKEY_free(pub_pkey); out: return ret; } #endif int load_pkcs11_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, EVP_PKEY **keyp) { PKCS11_CTX *ctx; PKCS11_TOKEN *match_tok = NULL; PKCS11_KEY *key = NULL; EVP_PKEY *pkey = NULL; char *key_label = NULL; unsigned char *key_id = NULL; size_t key_id_len = 0; PKCS11_SLOT *slot_list = NULL, *slot, *login_slot = NULL; unsigned int slot_count, matching_slots = 0; int ret = 0; ctx = pkcs11_ctx(vpninfo); if (!ctx) return -EIO; if (parse_pkcs11_uri(certinfo->key, &match_tok, &key_id, &key_id_len, &key_label, &certinfo->password) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse PKCS#11 URI '%s'\n"), certinfo->key); return -EINVAL; } if (vpninfo->pkcs11_slot_list) { slot_list = vpninfo->pkcs11_slot_list; slot_count = vpninfo->pkcs11_slot_count; } else if (PKCS11_enumerate_slots(ctx, &slot_list, &slot_count) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to enumerate PKCS#11 slots\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } for (slot = slot_list; slot < &slot_list[slot_count] && slot != login_slot; slot++) { if (!slot->token) continue; if (match_tok->label && strcmp(match_tok->label, slot->token->label)) continue; if (match_tok->manufacturer && strcmp(match_tok->manufacturer, slot->token->manufacturer)) continue; if (match_tok->model && strcmp(match_tok->model, slot->token->model)) continue; if (match_tok->serialnr && strcmp(match_tok->serialnr, slot->token->serialnr)) continue; key = slot_find_key(vpninfo, ctx, slot, key_label, key_id, key_id_len); if (key) goto got_key; login_slot = slot; matching_slots++; } /* If there was precisely one matching slot, or if we know which slot the cert was found in and the key wasn't separately specified, then try that slot. */ if (matching_slots != 1 && vpninfo->pkcs11_cert_slot && certinfo->key == certinfo->cert) { /* Use the slot the cert was found in, if one specifier was given for both */ matching_slots = 1; login_slot = vpninfo->pkcs11_cert_slot; vpninfo->pkcs11_cert_slot = NULL; } if (matching_slots == 1 && (login_slot->token->loginRequired || login_slot->token->userPinSet)) { slot = login_slot; vpn_progress(vpninfo, PRG_INFO, _("Logging in to PKCS#11 slot '%s'\n"), slot->description); if (!slot_login(vpninfo, certinfo, ctx, slot)) { key = slot_find_key(vpninfo, ctx, slot, key_label, key_id, key_id_len); if (key) goto got_key; /* We still haven't found it. If we weren't explicitly given a URI for the key and we're inferring the location of the key from the cert, then drop the label and try matching the CKA_ID of the cert. */ if (certinfo->cert == certinfo->key && vpninfo->pkcs11_cert_id && (key_label || !key_id)) { key = slot_find_key(vpninfo, ctx, slot, NULL, vpninfo->pkcs11_cert_id, vpninfo->pkcs11_cert_id_len); if (key) goto got_key; } } } ret = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("Failed to find PKCS#11 key '%s'\n"), certinfo->key); got_key: if (key) { vpn_progress(vpninfo, PRG_DEBUG, certinfo_string(certinfo, _("Using PKCS#11 key %s\n"), _("Using secondary PKCS#11 key %s\n")), certinfo->key); pkey = PKCS11_get_private_key(key); if (!pkey) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to instantiate private key from PKCS#11\n"), _("Failed to instantiate secondary private key from PKCS#11\n"))); openconnect_report_ssl_errors(vpninfo); ret = -EIO; goto out; } #ifndef OPENSSL_NO_EC /* * If an EC EVP_PKEY has no public key, OpenSSL will crash * when trying to check it matches the certificate: * https://github.com/openssl/openssl/issues/1532 * * Work around this by detecting this condition, manually * checking that the certificate *does* match by performing * a signature and validating it against the cert, then * copying the EC_POINT public key information from the cert. */ if (EVP_PKEY_id(pkey) == EVP_PKEY_EC) { EC_KEY *priv_ec = EVP_PKEY_get1_EC_KEY(pkey); ret = 0; if (!EC_KEY_get0_public_key(priv_ec)) ret = validate_ecdsa_key(vpninfo, certinfo, priv_ec); EC_KEY_free(priv_ec); if (ret) goto out; } #endif *keyp = pkey; /* We have to keep the entire slot list around, because the EVP_PKEY depends on the one we're using, and we have no way to free the others. */ vpninfo->pkcs11_slot_list = slot_list; vpninfo->pkcs11_slot_count = slot_count; slot_list = NULL; } out: if (match_tok) { free(match_tok->model); free(match_tok->manufacturer); free(match_tok->serialnr); free(match_tok->label); free(match_tok); } free(key_id); free(key_label); if (slot_list) PKCS11_release_all_slots(ctx, slot_list, slot_count); return ret; } #else int load_pkcs11_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, EVP_PKEY **keyp) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PKCS#11 support\n")); return -EINVAL; } int load_pkcs11_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, X509 **certp) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without PKCS#11 support\n")); return -EINVAL; } #endif openconnect-8.20/openconnect.8.in0000644000076400007640000005720114176202121020542 0ustar00dwoodhoudwoodhou00000000000000.TH OPENCONNECT 8 .SH NAME openconnect \- Multi-protocol VPN client, for Cisco AnyConnect VPNs and others .SH SYNOPSIS .SY openconnect .OP \-\-config configfile .OP \-b,\-\-background .OP \-\-pid\-file pidfile .OP \-c,\-\-certificate cert .OP \-e,\-\-cert\-expire\-warning days .OP \-k,\-\-sslkey key .OP \-C,\-\-cookie cookie .OP \-\-cookie\-on\-stdin .OP \-\-compression MODE .OP \-d,\-\-deflate .OP \-D,\-\-no\-deflate .OP \-\-force\-dpd interval .OP \-\-force\-trojan interval .OP \-F,\-\-form\-entry form:opt=value .OP \-g,\-\-usergroup group .OP \-h,\-\-help .OP \-\-http\-auth methods .OP \-i,\-\-interface ifname .OP \-l,\-\-syslog .OP \-\-timestamp .OP \-\-passtos .OP \-U,\-\-setuid user .OP \-\-csd\-user user .OP \-m,\-\-mtu mtu .OP \-\-base\-mtu mtu .OP \-p,\-\-key\-password pass .OP \-P,\-\-proxy proxyurl .OP \-\-proxy\-auth methods .OP \-\-no\-proxy .OP \-\-libproxy .OP \-\-key\-password\-from\-fsid .OP \-q,\-\-quiet .OP \-Q,\-\-queue\-len len .OP \-s,\-\-script vpnc\-script .OP \-S,\-\-script\-tun .OP \-u,\-\-user name .OP \-V,\-\-version .OP \-v,\-\-verbose .OP \-x,\-\-xmlconfig config .OP \-\-authgroup group .OP \-\-authenticate .OP \-\-cookieonly .OP \-\-printcookie .OP \-\-cafile file .OP \-\-disable\-ipv6 .OP \-\-dtls\-ciphers list .OP \-\-dtls12\-ciphers list .OP \-\-dtls\-local\-port port .OP \-\-dump\-http\-traffic .OP \-\-no\-system\-trust .OP \-\-pfs .OP \-\-no\-dtls .OP \-\-no\-http\-keepalive .OP \-\-no\-passwd .OP \-\-no\-xmlpost .OP \-\-non\-inter .OP \-\-passwd\-on\-stdin .OP \-\-protocol proto .OP \-\-token\-mode mode .OP \-\-token\-secret {secret\fR[\fI,counter\fR]|@\fIfile\fR} .OP \-\-reconnect\-timeout .OP \-\-resolve host:ip .OP \-\-servercert sha1 .OP \-\-useragent string .OP \-\-version\-string string .OP \-\-local-hostname string .OP \-\-os string .B [\-\-server] [https://]\fIhost\fB[:\fIport\fB][/\fIgroup\fB] .YS .SH DESCRIPTION The program .B openconnect connects to VPN servers which use standard TLS/SSL, DTLS, and ESP protocols for data transport. It was originally written to support Cisco "AnyConnect" VPN servers, and has since been extended with experimental support for Juniper Network Connect .RB ( \-\-protocol=nc ) Junos Pulse VPN servers, .RB ( \-\-protocol=pulse ) PAN GlobalProtect VPN servers, .RB ( \-\-protocol=gp ) F5 Big-IP VPN servers, .RB ( \-\-protocol=f5 ) Fortinet Fortigate VPN servers, .RB ( \-\-protocol=fortinet ) and Array Networks SSL VPN servers, .RB ( \-\-protocol=array ) . The connection happens in two phases. First there is a simple HTTPS connection over which the user authenticates somehow \- by using a certificate, or password or SecurID, etc. Having authenticated, the user is rewarded with an authentication cookie which can be used to make the real VPN connection. The second phase uses that cookie to connect to a tunnel via HTTPS, and data packets can be passed over the resulting connection. When possible, a UDP tunnel is also configured: AnyConnect uses DTLS, while Juniper and GlobalProtect use UDP-encapsulated ESP. The UDP tunnel may be disabled with .BR \-\-no\-dtls , but is preferred when correctly supported by the server and network for performance reasons. (TCP performs poorly and unreliably over TCP-based tunnels; see .IR http://sites.inka.de/~W1011/devel/tcp-tcp.html .) .SH OPTIONS .TP .B \-\-config=CONFIGFILE Read further options from .I CONFIGFILE before continuing to process options from the command line. The file should contain long-format options as would be accepted on the command line, but without the two leading \-\- dashes. Empty lines, or lines where the first non-space character is a # character, are ignored. Any option except the .B config option may be specified in the file. .TP .B \-b,\-\-background Continue in background after startup .TP .B \-\-pid\-file=PIDFILE Save the pid to .I PIDFILE when backgrounding .TP .B \-c,\-\-certificate=CERT Use SSL client certificate .I CERT which may be either a file name or, if OpenConnect has been built with an appropriate version of GnuTLS, a PKCS#11 URL. .TP .B \-e,\-\-cert\-expire\-warning=DAYS Give a warning when SSL client certificate has .I DAYS left before expiry .TP .B \-k,\-\-sslkey=KEY Use SSL private key .I KEY which may be either a file name or, if OpenConnect has been built with an appropriate version of GnuTLS, a PKCS#11 URL. .TP .B \-C,\-\-cookie=COOKIE Use authentication cookie .IR COOKIE . .TP .B \-\-cookie\-on\-stdin Read cookie from standard input. .TP .B \-d,\-\-deflate Enable all compression, including stateful modes. By default, only stateless compression algorithms are enabled. .TP .B \-D,\-\-no\-deflate Disable all compression. .TP .B \-\-compression=MODE Set compression mode, where .I MODE is one of .IR "stateless" , .IR "none" , or .IR "all" . By default, only stateless compression algorithms which do not maintain state from one packet to the next (and which can be used on UDP transports) are enabled. By setting the mode to .I "all" stateful algorithms (currently only zlib deflate) can be enabled. Or all compression can be disabled by setting the mode to .IR "none" . .TP .B \-\-force\-dpd=INTERVAL Use .I INTERVAL as Dead Peer Detection interval (in seconds). This will cause the client to use DPD at the specified interval even if the server hasn't requested it, or at a different interval from the one requested by the server. DPD mechanisms vary by protocol and by transport (TLS or DTLS/ESP), but are all functionally similar: they enable either the VPN client or the VPN server to transmit a signal to the peer, requesting an immediate reply which can be used to confirm that the link between the two peers is still working. .TP .B \-g,\-\-usergroup=GROUP Use .I GROUP as login UserGroup .TP .B \-F,\-\-form\-entry=FORM:OPTION=VALUE Provide authentication form input, where .I FORM and .I OPTION are the identifiers from the form and the specific input field, and .I VALUE is the string to be filled in automatically. For example, the standard username field .I (also handled by the \-\-user option) could also be provided with this option thus: .I \-\-form\-entry .IR main:username=joebloggs . This option should .I not be used to enter passwords. .I \-\-passwd\-on\-stdin should be used for that purpose. Not only will this option expose the password value via the OpenConnect process's command line, but unlike .I \-\-passwd\-on\-stdin this option will not recognize the case of an incorrect password, and stop trying to re-enter it repeatedly. .TP .B \-h,\-\-help Display help text .TP .B \-\-http\-auth=METHODS Use only the specified methods for HTTP authentication to a server. By default, only Negotiate, NTLM and Digest authentication are enabled. Basic authentication is also supported but because it is insecure it must be explicitly enabled. The argument is a comma-separated list of methods to be enabled. Note that the order does not matter: OpenConnect will use Negotiate, NTLM, Digest and Basic authentication in that order, if each is enabled, regardless of the order specified in the METHODS string. .TP .B \-i,\-\-interface=IFNAME Use .I IFNAME for tunnel interface .TP .B \-l,\-\-syslog After tunnel is brought up, use syslog for further progress messages .TP .B \-\-timestamp Prepend a timestamp to each progress message .TP .B \-\-passtos Copy TOS / TCLASS of payload packet into DTLS and ESP packets. This is not set by default because it may leak information about the payload (for example, by differentiating voice/video traffic). .TP .B \-U,\-\-setuid=USER Drop privileges after connecting, to become user .I USER .TP .B \-\-csd\-user=USER Drop privileges during execution of trojan binary or script (CSD, TNCC, or HIP). .TP .B \-\-csd\-wrapper=SCRIPT Run .I SCRIPT instead of the trojan binary or script. .TP .B \-\-force-trojan=INTERVAL Use .I INTERVAL as interval (in seconds) for repeat execution of Trojan binary or script, overriding default and/or server-set interval. .TP .B \-m,\-\-mtu=MTU Request .I MTU from server as the MTU of the tunnel. .TP .B \-\-base\-mtu=MTU Indicate .I MTU as the path MTU between client and server on the unencrypted network. Newer servers will automatically calculate the MTU to be used on the tunnel from this value. .TP .B \-p,\-\-key\-password=PASS Provide passphrase for certificate file, or SRK (System Root Key) PIN for TPM .TP .B \-P,\-\-proxy=PROXYURL Use HTTP or SOCKS proxy for connection. A username and password can be provided in the given URL, and will be used for authentication. If authentication is required but no credentials are given, GSSAPI and automatic NTLM authentication using Samba's ntlm_auth helper tool may be attempted. .TP .B \-\-proxy\-auth=METHODS Use only the specified methods for HTTP authentication to a proxy. By default, only Negotiate, NTLM and Digest authentication are enabled. Basic authentication is also supported but because it is insecure it must be explicitly enabled. The argument is a comma-separated list of methods to be enabled. Note that the order does not matter: OpenConnect will use Negotiate, NTLM, Digest and Basic authentication in that order, if each is enabled, regardless of the order specified in the METHODS string. .TP .B \-\-no\-proxy Disable use of proxy .TP .B \-\-libproxy Use libproxy to configure proxy automatically (when built with libproxy support) .TP .B \-\-key\-password\-from\-fsid Passphrase for certificate file is automatically generated from the .I fsid of the file system on which it is stored. The .I fsid is obtained from the .BR statvfs (2) or .BR statfs (2) system call, depending on the operating system. On a Linux or similar system with GNU coreutils, the .I fsid used by this option should be equal to the output of the command: .EX stat \-\-file\-system \-\-printf=%i\e\en $CERTIFICATE .EE It is not the same as the 128\-bit UUID of the file system. .TP .B \-q,\-\-quiet Less output .TP .B \-Q,\-\-queue\-len=LEN Set packet queue limit to .I LEN packets. The default is 10. A high value may allow better overall bandwidth but at a cost of latency. If you run Voice over IP or other interactive traffic over the VPN, you don't want those packets to be queued behind thousands of other large packets which are part of a bulk transfer. This option sets the maximum inbound and outbound packet queue sizes in OpenConnect itself, which control how many packets will be sent and received in a single batch, as well as affecting other buffering such as the socket send buffer (SO_SNDBUF) for network connections and the OS tunnel device. Ultimately, the right size for a queue is "just enough packets that it never quite gets empty before more are pushed to it". Any higher than that is simply introducing bufferbloat and additional latency with no benefit. With the default of 10, we are able to saturate a single Gigabit Ethernet from modest hardware, which is more than enough for most VPN users. If OpenConnect is built with vhost-net support, it will only be used if the queue length is set to 16 or more. This is because vhost-net introduces a small amount of additional latency, but improves total bandwidth quite considerably for those operating at high traffic rates. Thus it makes sense to use it when the user has indicated a preference for bandwidth over latency, by increasing the queue size. .TP .B \-s,\-\-script=SCRIPT Invoke .I SCRIPT to configure the network after connection. Without this, routing and name service are unlikely to work correctly. The script is expected to be compatible with the .B vpnc\-script which is shipped with the "vpnc" VPN client. See .I https://www.infradead.org/openconnect/vpnc-script.html for more information. This version of OpenConnect is configured to use \fB@DEFAULT_VPNCSCRIPT@\fR by default. On Windows, a relative directory for the default script will be handled as starting from the directory that the openconnect executable is running from, rather than the current directory. The script will be invoked with the command-based script host \fBcscript.exe\fR. .TP .B \-S,\-\-script\-tun Pass traffic to 'script' program over a UNIX socket, instead of to a kernel tun/tap device. This allows the VPN IP traffic to be handled entirely in userspace, for example by a program which uses lwIP to provide SOCKS access into the VPN. .TP .B \-\-server=[https://]\fIHOST\fB[:\fIPORT\fB][/\fIGROUP\fB] Define the VPN server as a simple .I HOST or as an URL containing the . I HOST and optionally the .I PORT number and the login .I GROUP or realm. As an alternative, define the VPN server as non-option command line argument. .TP .B \-u,\-\-user=NAME Set login username to .I NAME .TP .B \-V,\-\-version Report version number .TP .B \-v,\-\-verbose More output (may be specified multiple times for additional output) .TP .B \-x,\-\-xmlconfig=CONFIG XML config file .TP .B \-\-authgroup=GROUP Choose authentication login selection .TP .B \-\-authenticate Authenticate to the VPN, output the information needed to make the connection in a form which can be used to set shell environment variables, and then exit. When invoked with this option, OpenConnect will not actually create the VPN connection or configure a tunnel interface, but if successful will print something like the following to stdout: .nf .B COOKIE='3311180634@13561856@1339425499@B315A0E29D16C6FD92EE...' .B HOST='10.0.0.1' .B CONNECT_URL='https://vpnserver.example.com' .B FINGERPRINT='469bb424ec8835944d30bc77c77e8fc1d8e23a42' .B RESOLVE='vpnserver.example.com:10.0.0.1' .fi Thus, you can invoke openconnect as a non-privileged user .I (with access to the user's PKCS#11 tokens, etc.) for authentication, and then invoke openconnect separately to make the actual connection as root: .nf .B eval `openconnect --authenticate https://vpnserver.example.com`; .B [ -n "$COOKIE" ] && echo "$COOKIE" | .B \ \ sudo openconnect --cookie-on-stdin $CONNECT_URL --servercert $FINGERPRINT --resolve $RESOLVE .fi Earlier versions of OpenConnect produced only the .B HOST variable (containing the numeric server address), and not the .B CONNECT_URL or .B RESOLVE variables. Subsequently, we discovered that servers behind proxies may not respond correctly unless the correct DNS name is present in the connection phase, and we added support for VPN protocols where the server URL's .I path component may be significant in the connection phase, prompting the addition of .B CONNECT_URL and .BR RESOLVE , and the recommendation to use them as described above. If you are not certain that you are invoking a newer version of OpenConnect which outputs these variables, use the following command-line (compatible with most Bourne shell derivatives) which will work with either a newer or older version: .nf .B sudo openconnect --cookie-on-stdin ${CONNECT_URL:-$HOST} --servercert $FINGERPRINT ${RESOLVE:+--resolve=$RESOLVE} .fi .TP .B \-\-cookieonly Fetch and print cookie only; don't connect (this is essentially a subset of .BR \-\-authenticate ). .TP .B \-\-printcookie Print cookie to stdout before connecting (see .B \-\-authenticate for the meaning of this cookie) .TP .B \-\-cafile=FILE Additional CA file for server verification. By default, this simply causes OpenConnect to trust additional root CA certificate(s) in addition to those trusted by the system. Use .B \-\-no\-system\-trust to prevent OpenConnect from trusting the system default certificate authorities. .TP .B \-\-no\-system\-trust Do not trust the system default certificate authorities. If this option is given, only certificate authorities given with the .B \-\-cafile option, if any, will be trusted automatically. .TP .B \-\-disable\-ipv6 Do not advertise IPv6 capability to server .TP .B \-\-dtls\-ciphers=LIST Set OpenSSL ciphers to support for DTLS .TP .B \-\-dtls12\-ciphers=LIST Set OpenSSL ciphers for Cisco's DTLS v1.2 .TP .B \-\-dtls\-local\-port=PORT Use .I PORT as the local port for DTLS and UDP datagrams .TP .B \-\-dump\-http\-traffic Enable verbose output of all HTTP requests and the bodies of all responses received from the server. .TP .B \-\-pfs Enforces Perfect Forward Secrecy (PFS). That ensures that if the server's long-term key is compromised, any session keys established before the compromise will be unaffected. If this option is provided and the server does not support PFS in the TLS channel the connection will fail. PFS is available in Cisco ASA releases 9.1(2) and higher; a suitable cipher suite may need to be manually enabled by the administrator using the .B ssl encryption setting. .TP .B \-\-no\-dtls Disable DTLS and ESP .TP .B \-\-no\-http\-keepalive Version 8.2.2.5 of the Cisco ASA software has a bug where it will forget the client's SSL certificate when HTTP connections are being re\-used for multiple requests. So far, this has only been seen on the initial connection, where the server gives an HTTP/1.0 redirect response with an explicit .B Connection: Keep\-Alive directive. OpenConnect as of v2.22 has an unconditional workaround for this, which is never to obey that directive after an HTTP/1.0 response. However, Cisco's support team has failed to give any competent response to the bug report and we don't know under what other circumstances their bug might manifest itself. So this option exists to disable ALL re\-use of HTTP sessions and cause a new connection to be made for each request. If your server seems not to be recognizing your certificate, try this option. If it makes a difference, please report this information to the .B openconnect\-devel@lists.infradead.org mailing list. .TP .B \-\-no\-passwd Never attempt password (or SecurID) authentication. .TP .B \-\-no\-xmlpost Do not attempt to post an XML authentication/configuration request to the server; use the old style GET method which was used by older clients and servers instead. This option is a temporary safety net, to work around potential compatibility issues with the code which falls back to the old method automatically. It causes OpenConnect to behave more like older versions (4.08 and below) did. If you find that you need to use this option, then you have found a bug in OpenConnect. Please see https://www.infradead.org/openconnect/mail.html and report this to the developers. .TP .B \-\-allow\-insecure\-crypto The ancient, broken 3DES and RC4 ciphers are insecure; we explicitly disable them by default. However, some still-in-use VPN servers can't do any better. This option enables use of these insecure ciphers, as well as the use of SHA1 for server certificate validation. .TP .B \-\-non\-inter Do not expect user input; exit if it is required. .TP .B \-\-passwd\-on\-stdin Read password from standard input .TP .B \-\-protocol=PROTO Select VPN protocol .I PROTO to be used for the connection. Supported protocols are .I anyconnect for Cisco AnyConnect (the default), .I nc for experimental support for Juniper Network Connect (also supported by most Junos Pulse servers), .I pulse for experimental support for Junos Pulse, .I gp for experimental support for PAN GlobalProtect, .I f5 for experimental support for F5 Big-IP, .I fortinet for experimental support for Fortinet Fortigate, and .I array for experimental support for Array Networks SSL VPN. See .I https://www.infradead.org/openconnect/protocols.html for details on features and deficiencies of the individual protocols. OpenConnect does not yet support all of the authentication options used by Pulse, nor does it support Host Checker/TNCC with Pulse. If your Junos Pulse VPN is not yet supported with .BR \-\-protocol=pulse , then .B \-\-protocol=nc may be a useful fallback option. .TP .B \-\-token\-mode=MODE Enable one-time password generation using the .I MODE algorithm. .B \-\-token\-mode=rsa will call libstoken to generate an RSA SecurID tokencode, .B \-\-token\-mode=totp will call liboath to generate an RFC 6238 time-based password, and .B \-\-token\-mode=hotp will call liboath to generate an RFC 4226 HMAC-based password. Yubikey tokens which generate OATH codes in hardware are supported with .B \-\-token\-mode=yubioath. \-\-token\-mode=oidc will use the provided OpenIDConnect token as an RFC 6750 bearer token. .TP .B \-\-token\-secret={ SECRET[,COUNTER] | @FILENAME } The secret to use when generating one-time passwords/verification codes. Base 32-encoded TOTP/HOTP secrets can be used by specifying "base32:" at the beginning of the secret, and for HOTP secrets the token counter can be specified following a comma. RSA SecurID secrets can be specified as an Android/iPhone URI or a raw numeric CTF string (with or without dashes). For Yubikey OATH the token secret specifies the name of the credential to be used. If not provided, the first OATH credential found on the device will be used. For OIDC the secret is the bearer token to be used. .IR FILENAME , if specified, can contain any of the above strings. Or, it can contain a SecurID XML (SDTID) seed. If this option is omitted, and \-\-token\-mode is "rsa", libstoken will try to use the software token seed saved in .B ~/.stokenrc by the "stoken import" command. .TP .B \-\-reconnect\-timeout Keep reconnect attempts until so much seconds are elapsed. The default timeout is 300 seconds, which means that openconnect can recover VPN connection after a temporary network down time of 300 seconds. .TP .B \-\-resolve=HOST:IP Automatically resolve the hostname .IR HOST to .IR IP instead of using the normal resolver to look it up. .TP .B \-\-servercert=HASH Accept server's SSL certificate only if it matches the provided fingerprint. This option implies \-\-no\-system\-trust, and may be specified multiple times in order to accept multiple possible fingerprints. The allowed fingerprint types are .IR SHA1 , .IR SHA256 , and .IR PIN-SHA256 . They are distinguished by the 'sha1:', 'sha256:' and 'pin-sha256:' prefixes to the encoded hash. The first two are custom identifiers providing hex encoding of the peer's public key, while 'pin-sha256:' is the RFC7469 key PIN, which utilizes base64 encoding. To ease certain testing use-cases, a partial match of the hash will also be accepted, if it is at least 4 characters past the prefix. .TP .B \-\-useragent=STRING Use .I STRING as 'User\-Agent:' field value in HTTP header. (e.g. \-\-useragent 'Cisco AnyConnect VPN Agent for Windows 2.2.0133') .TP .B \-\-version\-string=STRING Use .I STRING as the software version reported to the head end. (e.g. \-\-version\-string '2.2.0133') .TP .B \-\-local-hostname=STRING Use .I STRING as 'X\-CSTP\-Hostname:' field value in HTTP header. For example \-\-local\-hostname 'mypc', will advertise the value 'mypc' as the suggested hostname to point to the provided IP address. .TP .B \-\-os=STRING OS type to report to gateway. Recognized values are: .BR linux , .BR linux\-64 , .BR win , .BR mac\-intel , .BR android , .BR apple\-ios . Reporting a different OS type may affect the dynamic access policy (DAP) applied to the VPN session. If the gateway requires CSD, it will also cause the corresponding CSD trojan binary to be downloaded, so you may need to use .B \-\-csd\-wrapper if this code is not executable on the local machine. .SH SIGNALS In the data phase of the connection, the following signals are handled: .TP .B SIGINT / SIGTERM performs a clean shutdown by logging the session off, disconnecting from the gateway, and running the vpnc\-script to restore the network configuration. .TP .B SIGHUP disconnects from the gateway and runs the vpnc\-script, but does not log the session off; this allows for reconnection later using .BR \-\-cookie . .TP .B SIGUSR1 writes progress message with detailed connection information and statistics. .TP .B SIGUSR2 forces an immediate disconnection and reconnection; this can be used to quickly recover from LAN IP address changes. .TP .SH LIMITATIONS Note that although IPv6 has been tested on all platforms on which .B openconnect is known to run, it depends on a suitable .B vpnc\-script to configure the network. The standard .B vpnc\-script shipped with vpnc 0.5.3 is not capable of setting up IPv6 routes; the one from .B https://gitlab.com/openconnect/vpnc\-scripts will be required. .SH SEE ALSO .BR ocserv (8) .SH AUTHORS David Woodhouse openconnect-8.20/cstp.c0000644000076400007640000011114014171606260016646 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #ifdef HAVE_LZ4 #include #ifndef HAVE_LZ4_COMPRESS_DEFAULT #define LZ4_compress_default LZ4_compress_limitedOutput #endif #endif #include #include #include #if defined(__linux__) /* For TCP_INFO */ # include #endif #include #include #include #include #include #include #include /* * Data packets are encapsulated in the SSL stream as follows: * * 0000: Magic "STF\x1" * 0004: Big-endian 16-bit length (not including 8-byte header) * 0006: Byte packet type (see openconnect-internal.h) * 0008: data payload */ static const char data_hdr[8] = { 'S', 'T', 'F', 1, 0, 0, /* Length */ AC_PKT_DATA, /* Type */ 0 /* Unknown */ }; /* Strange initialisers here to work around GCC PR#10676 (which was * fixed in GCC 4.6 but it takes a while for some systems to catch * up. */ static const struct pkt keepalive_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_KEEPALIVE, 0 } } }; static const struct pkt dpd_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_DPD_OUT, 0 } } }; static const struct pkt dpd_resp_pkt = { .next = NULL, { .cstp.hdr = { 'S', 'T', 'F', 1, 0, 0, AC_PKT_DPD_RESP, 0 } } }; #define UDP_HEADER_SIZE 8 #define IPV4_HEADER_SIZE 20 #define IPV6_HEADER_SIZE 40 /* Calculate MTU to request. Old servers simply use the X-CSTP-MTU: header, * which represents the tunnel MTU, while new servers do calculations on the * X-CSTP-Base-MTU: header which represents the link MTU between client * and server. * * If possible, the legacy MTU value should be the TCP MSS less 5 bytes of * TLS and 8 bytes of CSTP overhead. We can get the MSS from either the * TCP_INFO or TCP_MAXSEG sockopts. * * The base MTU comes from the TCP_INFO sockopt under Linux, but I don't know * how to work it out on other systems. So leave it blank and do things the * legacy way there. Contributions welcome... * * If we don't even have TCP_MAXSEG, then default to sending a legacy MTU of * 1406 which is what we always used to do. */ static void calculate_dtls_mtu(struct openconnect_info *vpninfo, int *base_mtu, int *mtu) { *mtu = vpninfo->reqmtu; *base_mtu = vpninfo->basemtu; #if defined(__linux__) && defined(TCP_INFO) if (!*mtu || !*base_mtu) { struct tcp_info ti; socklen_t ti_size = sizeof(ti); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_INFO, &ti, &ti_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n"), ti.tcpi_rcv_mss, ti.tcpi_snd_mss, ti.tcpi_advmss, ti.tcpi_pmtu); if (!*base_mtu) { *base_mtu = ti.tcpi_pmtu; } if (!*base_mtu) { if (ti.tcpi_rcv_mss < ti.tcpi_snd_mss) *base_mtu = ti.tcpi_rcv_mss - 13; else *base_mtu = ti.tcpi_snd_mss - 13; } } } #endif #ifdef TCP_MAXSEG if (!*base_mtu) { int mss; socklen_t mss_size = sizeof(mss); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_MAXSEG, &mss, &mss_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_MAXSEG %d\n"), mss); *base_mtu = mss - 13; } } #endif if (!*base_mtu) { /* Default */ *base_mtu = 1406; } if (*base_mtu < 1280) *base_mtu = 1280; if (!*mtu) { /* remove IP/UDP and DTLS overhead from base MTU to calculate tunnel MTU */ *mtu = *base_mtu - DTLS_OVERHEAD - UDP_HEADER_SIZE; if (vpninfo->peer_addr->sa_family == AF_INET6) *mtu -= IPV6_HEADER_SIZE; else *mtu -= IPV4_HEADER_SIZE; } } static void append_compr_types(struct oc_text_buf *buf, const char *proto, int avail) { if (avail) { const char sep = ','; buf_append(buf, "X-%s-Accept-Encoding:", proto); if (avail & COMPR_LZ4) { buf_append(buf, "%coc-lz4", sep); } if (avail & COMPR_LZS) { buf_append(buf, "%clzs", sep); } if (avail & COMPR_DEFLATE) { buf_append(buf, "%cdeflate", sep); } buf_append(buf, "\r\n"); } } static void append_mobile_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { if (vpninfo->mobile_platform_version) { buf_append(buf, "X-AnyConnect-Identifier-ClientVersion: %s\r\n", vpninfo->version_string ? : openconnect_version_str); buf_append(buf, "X-AnyConnect-Identifier-Platform: %s\r\n", vpninfo->platname); buf_append(buf, "X-AnyConnect-Identifier-PlatformVersion: %s\r\n", vpninfo->mobile_platform_version); buf_append(buf, "X-AnyConnect-Identifier-DeviceType: %s\r\n", vpninfo->mobile_device_type); buf_append(buf, "X-AnyConnect-Identifier-Device-UniqueID: %s\r\n", vpninfo->mobile_device_uniqueid); } } static int parse_hex_val(const char *str, unsigned char *storage, unsigned int max_storage_len, int *changed) { int len = strlen(str); unsigned i; if (len % 2 == 1 || len > 2*max_storage_len) { return -EINVAL; } for (i = 0; i < len; i += 2) { unsigned char c = unhex(str + i); if (storage[i/2] != c) { storage[i/2] = c; *changed = 1; } } return len/2; } static int start_cstp_connection(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; char buf[65536]; int i; int dtls_secret_set = 0; int retried = 0, sessid_found = 0; const char *old_addr = vpninfo->ip_info.addr; const char *old_addr6 = vpninfo->ip_info.addr6; const char *banner = NULL; int base_mtu = 0, mtu = 0; retry: calculate_dtls_mtu(vpninfo, &base_mtu, &mtu); vpninfo->cstp_basemtu = base_mtu; reqbuf = buf_alloc(); buf_append(reqbuf, "CONNECT /CSCOSSLC/tunnel HTTP/1.1\r\n"); if (vpninfo->port != 443) buf_append(reqbuf, "Host: %s:%d\r\n", vpninfo->hostname, vpninfo->port); else buf_append(reqbuf, "Host: %s\r\n", vpninfo->hostname); buf_append(reqbuf, "User-Agent: %s\r\n", vpninfo->useragent); buf_append(reqbuf, "Cookie: webvpn=%s\r\n", vpninfo->cookie); buf_append(reqbuf, "X-CSTP-Version: 1\r\n"); buf_append(reqbuf, "X-CSTP-Hostname: %s\r\n", vpninfo->localname); append_mobile_headers(vpninfo, reqbuf); append_compr_types(reqbuf, "CSTP", vpninfo->req_compr); buf_append(reqbuf, "X-CSTP-Base-MTU: %d\r\n", base_mtu); if (mtu) buf_append(reqbuf, "X-CSTP-MTU: %d\r\n", mtu); buf_append(reqbuf, "X-CSTP-Address-Type: %s\r\n", vpninfo->disable_ipv6 ? "IPv4" : "IPv6,IPv4"); /* Explicitly request the same IPv4 and IPv6 addresses on reconnect * * XX: It's not clear which Cisco servers attempt to follow specific * IP address requests from the X-CSTP-Address headers in the CONNECT * request; most seem to ignore it. */ if (old_addr) buf_append(reqbuf, "X-CSTP-Address: %s\r\n", old_addr); if (!vpninfo->disable_ipv6) { buf_append(reqbuf, "X-CSTP-Full-IPv6-Capability: true\r\n"); if (old_addr6) buf_append(reqbuf, "X-CSTP-Address: %s\r\n", old_addr6); } #ifdef HAVE_DTLS if (vpninfo->dtls_state != DTLS_DISABLED) { /* The X-DTLS-Master-Secret is only used for the legacy protocol negotiation * which required the client to send explicitly the secret. In the PSK-NEGOTIATE * method, the master secret is implicitly agreed on */ buf_append(reqbuf, "X-DTLS-Master-Secret: "); for (i = 0; i < sizeof(vpninfo->dtls_secret); i++) { buf_append(reqbuf, "%02X", vpninfo->dtls_secret[i]); dtls_secret_set |= vpninfo->dtls_secret[i]; } buf_append(reqbuf, "\r\n"); if (!dtls_secret_set) { vpn_progress(vpninfo, PRG_ERR, _("CRITICAL ERROR: DTLS master secret is uninitialised. Please report this.\n")); buf_free(reqbuf); return -EINVAL; } if (vpninfo->dtls_ciphers || vpninfo->dtls12_ciphers) { if (vpninfo->dtls_ciphers) buf_append(reqbuf, "X-DTLS-CipherSuite: %s\r\n", vpninfo->dtls_ciphers); if (vpninfo->dtls12_ciphers) buf_append(reqbuf, "X-DTLS12-CipherSuite: %s\r\n", vpninfo->dtls12_ciphers); } else { struct oc_text_buf *dtls_cl, *dtls12_cl; dtls_cl = buf_alloc(); dtls12_cl = buf_alloc(); gather_dtls_ciphers(vpninfo, dtls_cl, dtls12_cl); if (!buf_error(dtls_cl) && dtls_cl->pos) buf_append(reqbuf, "X-DTLS-CipherSuite: %s\r\n", dtls_cl->data); if (!buf_error(dtls12_cl) && dtls12_cl->pos) buf_append(reqbuf, "X-DTLS12-CipherSuite: %s\r\n", dtls12_cl->data); buf_free(dtls_cl); buf_free(dtls12_cl); } append_compr_types(reqbuf, "DTLS", vpninfo->req_compr & ~COMPR_DEFLATE); vpninfo->delay_tunnel_reason = "DTLS MTU detection"; } #endif buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating HTTPS CONNECT request\n")); return buf_free(reqbuf); } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); buf_free(reqbuf); /* FIXME: Use process_http_response() instead of reimplementing it. It has a header callback function, and can cope with CONNECT requests. */ if ((i = vpninfo->ssl_gets(vpninfo, buf, 65536)) < 0) { if (i == -EINTR) return i; vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTPS response\n")); if (!retried) { retried = 1; openconnect_close_https(vpninfo, 0); if (openconnect_open_https(vpninfo)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); return -EIO; } goto retry; } return -EINVAL; } if (strncmp(buf, "HTTP/1.1 200 ", 13)) { if (!strncmp(buf, "HTTP/1.1 503 ", 13)) { /* "Service Unavailable. Why? */ const char *reason = ""; while ((vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { if (!strncmp(buf, "X-Reason: ", 10)) { reason = buf + 10; break; } } vpn_progress(vpninfo, PRG_ERR, _("VPN service unavailable; reason: %s\n"), reason); return -EINVAL; } vpn_progress(vpninfo, PRG_ERR, _("Got inappropriate HTTP CONNECT response: %s\n"), buf); if (!strncmp(buf, "HTTP/1.1 401 ", 13)) return -EPERM; return -EINVAL; } vpn_progress(vpninfo, PRG_INFO, _("Got CONNECT response: %s\n"), buf); /* We may have advertised it, but we only do it if the server agrees */ vpninfo->cstp_compr = vpninfo->dtls_compr = 0; mtu = 0; struct oc_vpn_option *new_cstp_opts = NULL; struct oc_vpn_option *new_dtls_opts = NULL; struct oc_vpn_option **next_dtls_option = &new_dtls_opts; struct oc_vpn_option **next_cstp_option = &new_cstp_opts; struct oc_ip_info new_ip_info = {}; int ret = 0; while ((ret = vpninfo->ssl_gets(vpninfo, buf, sizeof(buf)))) { struct oc_vpn_option *new_option; char *colon; if (ret < 0) goto err; colon = strchr(buf, ':'); if (!colon) continue; *colon = 0; colon++; if (*colon == ' ') colon++; if (strncmp(buf, "X-DTLS-", 7) && strncmp(buf, "X-CSTP-", 7) && strncmp(buf, "X-DTLS12-", 9)) continue; new_option = malloc(sizeof(*new_option)); if (!new_option) { vpn_progress(vpninfo, PRG_ERR, _("No memory for options\n")); ret = -ENOMEM; goto err; } new_option->option = strdup(buf); new_option->value = strdup(colon); new_option->next = NULL; if (!new_option->option || !new_option->value) { vpn_progress(vpninfo, PRG_ERR, _("No memory for options\n")); free(new_option->option); free(new_option->value); free(new_option); ret = -ENOMEM; goto err; } /* This contains the whole document, including the webvpn cookie. */ if (!strcasecmp(buf, "X-CSTP-Post-Auth-XML")) vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, _("")); else vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", buf, colon); if (!strncmp(buf, "X-DTLS-", (i = 7)) || !strncmp(buf, "X-DTLS12-", (i = 9))) { *next_dtls_option = new_option; next_dtls_option = &new_option->next; if (!strcmp(buf + i, "MTU")) { int dtlsmtu = atol(colon); if (dtlsmtu > mtu) mtu = dtlsmtu; } else if (!strcmp(buf + i, "Session-ID")) { int dtls_sessid_changed = 0; int vsize; vsize = parse_hex_val(colon, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id), &dtls_sessid_changed); if (vsize != 32) { vpn_progress(vpninfo, PRG_ERR, _("X-DTLS-Session-ID not 64 characters; is: \"%s\"\n"), colon); vpninfo->dtls_attempt_period = 0; ret = -EINVAL; goto err; } sessid_found = 1; if (dtls_sessid_changed && vpninfo->dtls_state > DTLS_SLEEPING) vpninfo->dtls_need_reconnect = 1; } else if (!strcmp(buf + i, "App-ID")) { int dtls_appid_changed = 0; int vsize; vsize = parse_hex_val(colon, vpninfo->dtls_app_id, sizeof(vpninfo->dtls_app_id), &dtls_appid_changed); if (vsize <= 0) { vpn_progress(vpninfo, PRG_ERR, _("X-DTLS-Session-ID is invalid; is: \"%s\"\n"), colon); vpninfo->dtls_attempt_period = 0; ret = -EINVAL; goto err; } vpninfo->dtls_app_id_size = vsize; sessid_found = 1; if (dtls_appid_changed && vpninfo->dtls_state > DTLS_SLEEPING) vpninfo->dtls_need_reconnect = 1; } else if (!strcmp(buf + i, "Content-Encoding")) { if (!strcmp(colon, "lzs")) vpninfo->dtls_compr = COMPR_LZS; else if (!strcmp(colon, "oc-lz4")) vpninfo->dtls_compr = COMPR_LZ4; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS-Content-Encoding %s\n"), colon); ret = -EINVAL; goto err; } } else if (!strcmp(buf + i, "CipherSuite")) { /* Remember if it came from a 'X-DTLS12-CipherSuite:' header */ vpninfo->dtls12 = (i == 9); vpninfo->dtls_cipher = strdup(colon); } else if (!strcmp(buf + i, "Port")) { int dtls_port = atol(colon); if (dtls_port) udp_sockaddr(vpninfo, dtls_port); } else if (!strcmp(buf + i, "Keepalive")) { vpninfo->dtls_times.keepalive = atol(colon); } else if (!strcmp(buf + i, "DPD")) { int j = atol(colon); if (j && !vpninfo->dtls_times.dpd) vpninfo->dtls_times.dpd = j; } else if (!strcmp(buf + i, "Rekey-Method")) { if (!strcmp(colon, "new-tunnel")) vpninfo->dtls_times.rekey_method = REKEY_TUNNEL; else if (!strcmp(colon, "ssl")) vpninfo->dtls_times.rekey_method = REKEY_SSL; else vpninfo->dtls_times.rekey_method = REKEY_NONE; } else if (!strcmp(buf + i, "Rekey-Time")) { vpninfo->dtls_times.rekey = atol(colon); } continue; } /* CSTP options... */ *next_cstp_option = new_option; next_cstp_option = &new_option->next; if (!strcmp(buf + 7, "Keepalive")) { vpninfo->ssl_times.keepalive = atol(colon); } else if (!strcmp(buf + 7, "Lease-Duration") || !strcmp(buf + 7, "Session-Timeout") || !strcmp(buf + 7, "Session-Timeout-Remaining")) { /* XX: Distinction between Lease-Duration and Session-Timeout is rather unclear. Cisco doc: * https://www.cisco.com/assets/sol/sb/RV345P_Emulators/RV345P_Emulator_v1-0-01-17/help/help/t_SSL_VPN.html * Empirically, it appears that the best behavior is to accept whichever of these headers has the * lowest non-zero value. */ long j = atol(colon); if (j && (!vpninfo->auth_expiration || j < vpninfo->auth_expiration)) vpninfo->auth_expiration = time(NULL) + j; } else if (!strcmp(buf + 7, "Idle-Timeout")) { vpninfo->idle_timeout = atol(colon); } else if (!strcmp(buf + 7, "DPD")) { int j = atol(colon); if (j && !vpninfo->ssl_times.dpd) vpninfo->ssl_times.dpd = j; } else if (!strcmp(buf + 7, "Rekey-Time")) { vpninfo->ssl_times.rekey = atol(colon); } else if (!strcmp(buf + 7, "Rekey-Method")) { if (!strcmp(colon, "new-tunnel")) vpninfo->ssl_times.rekey_method = REKEY_TUNNEL; else if (!strcmp(colon, "ssl")) vpninfo->ssl_times.rekey_method = REKEY_SSL; else vpninfo->ssl_times.rekey_method = REKEY_NONE; } else if (!strcmp(buf + 7, "Content-Encoding")) { if (!strcmp(colon, "deflate")) vpninfo->cstp_compr = COMPR_DEFLATE; else if (!strcmp(colon, "lzs")) vpninfo->cstp_compr = COMPR_LZS; else if (!strcmp(colon, "oc-lz4")) vpninfo->cstp_compr = COMPR_LZ4; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown CSTP-Content-Encoding %s\n"), colon); ret= -EINVAL; goto err; } } else if (!strcmp(buf + 7, "Base-MTU")) { vpninfo->cstp_basemtu = atol(colon); } else if (!strcmp(buf + 7, "MTU")) { int cstpmtu = atol(colon); if (cstpmtu > mtu) mtu = cstpmtu; } else if (!strcmp(buf + 7, "DynDNS")) { if (!strcmp(colon, "true")) vpninfo->is_dyndns = 1; } else if (!strcmp(buf + 7, "Address-IP6")) { new_ip_info.netmask6 = new_option->value; } else if (!strcmp(buf + 7, "Address")) { if (strchr(new_option->value, ':')) { if (!vpninfo->disable_ipv6) new_ip_info.addr6 = new_option->value; } else new_ip_info.addr = new_option->value; } else if (!strcmp(buf + 7, "Netmask")) { if (strchr(new_option->value, ':')) { if (!vpninfo->disable_ipv6) new_ip_info.netmask6 = new_option->value; } else new_ip_info.netmask = new_option->value; } else if (!strcmp(buf + 7, "DNS") || !strcmp(buf + 7, "DNS-IP6")) { int j; for (j = 0; j < 3; j++) { if (!new_ip_info.dns[j]) { new_ip_info.dns[j] = new_option->value; break; } } } else if (!strcmp(buf + 7, "NBNS")) { int j; for (j = 0; j < 3; j++) { if (!new_ip_info.nbns[j]) { new_ip_info.nbns[j] = new_option->value; break; } } } else if (!strcmp(buf + 7, "Default-Domain")) { new_ip_info.domain = new_option->value; } else if (!strcmp(buf + 7, "MSIE-Proxy-PAC-URL")) { new_ip_info.proxy_pac = new_option->value; } else if (!strcmp(buf + 7, "Banner")) { banner = new_option->value; } else if (!strcmp(buf + 7, "Split-DNS")) { struct oc_split_include *dns = malloc(sizeof(*dns)); if (!dns) continue; dns->route = new_option->value; dns->next = new_ip_info.split_dns; new_ip_info.split_dns = dns; } else if (!strcmp(buf + 7, "Split-Include") || !strcmp(buf + 7, "Split-Include-IP6")) { struct oc_split_include *inc = malloc(sizeof(*inc)); if (!inc) continue; inc->route = new_option->value; inc->next = new_ip_info.split_includes; new_ip_info.split_includes = inc; } else if (!strcmp(buf + 7, "Split-Exclude") || !strcmp(buf + 7, "Split-Exclude-IP6")) { struct oc_split_include *exc = malloc(sizeof(*exc)); if (!exc) continue; exc->route = new_option->value; exc->next = new_ip_info.split_excludes; new_ip_info.split_excludes = exc; } } if (!mtu) { vpn_progress(vpninfo, PRG_ERR, _("No MTU received. Aborting\n")); ret = -EINVAL; goto err; } new_ip_info.mtu = mtu; ret = install_vpn_opts(vpninfo, new_cstp_opts, &new_ip_info); if (ret) { err: free_optlist(new_cstp_opts); free_optlist(new_dtls_opts); free_split_routes(&new_ip_info); return ret; } /* DTLS opts are a special case. Perhaps should have been in the * CSTP opts list anyway. This all very Cisco-specific. */ free_optlist(vpninfo->dtls_options); vpninfo->dtls_options = new_dtls_opts; vpninfo->banner = banner; vpn_progress(vpninfo, PRG_INFO, _("CSTP connected. DPD %d, Keepalive %d\n"), vpninfo->ssl_times.dpd, vpninfo->ssl_times.keepalive); monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); if (!sessid_found) vpninfo->dtls_attempt_period = 0; if (vpninfo->ssl_times.rekey <= 0) vpninfo->ssl_times.rekey_method = REKEY_NONE; vpninfo->ssl_times.last_rekey = vpninfo->ssl_times.last_rx = vpninfo->ssl_times.last_tx = time(NULL); return 0; } int cstp_connect(struct openconnect_info *vpninfo) { int ret; int deflate_bufsize = 0; int compr_type; /* This needs to be done before openconnect_setup_dtls() because it's sent with the CSTP CONNECT handshake. Even if we don't end up doing DTLS. */ if (vpninfo->dtls_state == DTLS_NOSECRET) { if (openconnect_random(vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret))) return -EINVAL; /* The application will later call openconnect_setup_dtls() */ vpninfo->dtls_state = DTLS_SECRET; } ret = openconnect_open_https(vpninfo); if (ret) return ret; ret = start_cstp_connection(vpninfo); if (ret) goto out; /* Allow for the theoretical possibility of having *different* * compression type for CSTP and DTLS. Although all we've seen * in practice is that one is enabled and the other isn't. */ compr_type = vpninfo->cstp_compr | vpninfo->dtls_compr; /* This will definitely be smaller than zlib's */ if (compr_type & (COMPR_LZS|COMPR_LZ4)) deflate_bufsize = vpninfo->ip_info.mtu; /* If deflate compression is enabled (which is CSTP-only), it needs its * context to be allocated. */ if (compr_type & COMPR_DEFLATE) { vpninfo->deflate_adler32 = 1; vpninfo->inflate_adler32 = 1; if (inflateInit2(&vpninfo->inflate_strm, -12) || deflateInit2(&vpninfo->deflate_strm, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY)) { vpn_progress(vpninfo, PRG_ERR, _("Compression setup failed\n")); ret = -ENOMEM; goto out; } /* Add four bytes for the adler32 */ deflate_bufsize = deflateBound(&vpninfo->deflate_strm, vpninfo->ip_info.mtu) + 4; } /* If *any* compression is enabled, we'll need a deflate_pkt to compress into */ if (deflate_bufsize > vpninfo->deflate_pkt_size) { free_pkt(vpninfo, vpninfo->deflate_pkt); vpninfo->deflate_pkt = alloc_pkt(vpninfo, deflate_bufsize); if (!vpninfo->deflate_pkt) { vpninfo->deflate_pkt_size = 0; vpn_progress(vpninfo, PRG_ERR, _("Allocation of deflate buffer failed\n")); ret = -ENOMEM; goto out; } vpninfo->deflate_pkt_size = deflate_bufsize; memset(vpninfo->deflate_pkt, 0, sizeof(struct pkt)); memcpy(vpninfo->deflate_pkt->cstp.hdr, data_hdr, 8); vpninfo->deflate_pkt->cstp.hdr[6] = AC_PKT_COMPRESSED; } out: if (ret < 0) openconnect_close_https(vpninfo, 0); return ret; } static int cstp_reconnect(struct openconnect_info *vpninfo) { if (vpninfo->cstp_compr == COMPR_DEFLATE) { /* Requeue the original packet that was deflated */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { vpninfo->current_ssl_pkt = NULL; queue_packet(&vpninfo->outgoing_queue, vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } inflateEnd(&vpninfo->inflate_strm); deflateEnd(&vpninfo->deflate_strm); } return ssl_reconnect(vpninfo); } int decompress_and_queue_packet(struct openconnect_info *vpninfo, int compr_type, unsigned char *buf, int len) { /* Some servers send us packets that are larger than negotiated MTU after decompression. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); struct pkt *new = alloc_pkt(vpninfo, receive_mtu); const char *comprname = ""; if (!new) return -ENOMEM; new->next = NULL; if (compr_type == COMPR_DEFLATE) { uint32_t pkt_sum; comprname = "deflate"; vpninfo->inflate_strm.next_in = buf; vpninfo->inflate_strm.avail_in = len - 4; vpninfo->inflate_strm.next_out = new->data; vpninfo->inflate_strm.avail_out = receive_mtu; vpninfo->inflate_strm.total_out = 0; if (inflate(&vpninfo->inflate_strm, Z_SYNC_FLUSH)) { vpn_progress(vpninfo, PRG_ERR, _("inflate failed\n")); free(new); return -EINVAL; } new->len = vpninfo->inflate_strm.total_out; vpninfo->inflate_adler32 = adler32(vpninfo->inflate_adler32, new->data, new->len); pkt_sum = load_be32(buf + len - 4); if (vpninfo->inflate_adler32 != pkt_sum) vpninfo->quit_reason = "Compression (inflate) adler32 failure"; } else if (compr_type == COMPR_LZS) { comprname = "LZS"; new->len = lzs_decompress(new->data, receive_mtu, buf, len); if (new->len < 0) { len = new->len; if (len == 0) len = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("LZS decompression failed: %s\n"), strerror(-len)); free(new); return len; } #ifdef HAVE_LZ4 } else if (compr_type == COMPR_LZ4) { comprname = "LZ4"; new->len = LZ4_decompress_safe((void *)buf, (void *)new->data, len, receive_mtu); if (new->len <= 0) { len = new->len; if (len == 0) len = -EINVAL; vpn_progress(vpninfo, PRG_ERR, _("LZ4 decompression failed\n")); free(new); return len; } #endif } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown compression type %d\n"), compr_type); free(new); return -EINVAL; } vpn_progress(vpninfo, PRG_TRACE, _("Received %s compressed data packet of %d bytes (was %d)\n"), comprname, new->len, len); queue_packet(&vpninfo->incoming_queue, new); return 0; } int compress_packet(struct openconnect_info *vpninfo, int compr_type, struct pkt *this) { int ret; if (compr_type == COMPR_DEFLATE) { vpninfo->deflate_strm.next_in = this->data; vpninfo->deflate_strm.avail_in = this->len; vpninfo->deflate_strm.next_out = (void *)vpninfo->deflate_pkt->data; vpninfo->deflate_strm.avail_out = vpninfo->deflate_pkt_size - 4; vpninfo->deflate_strm.total_out = 0; ret = deflate(&vpninfo->deflate_strm, Z_SYNC_FLUSH); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("deflate failed %d\n"), ret); /* Things are going to go horribly wrong if we try to do any more compression. Give up entirely. */ vpninfo->cstp_compr = 0; return -EIO; } /* Add ongoing adler32 to tail of compressed packet */ vpninfo->deflate_adler32 = adler32(vpninfo->deflate_adler32, this->data, this->len); store_be32(&vpninfo->deflate_pkt->data[vpninfo->deflate_strm.total_out], vpninfo->deflate_adler32); vpninfo->deflate_pkt->len = vpninfo->deflate_strm.total_out + 4; return 0; } else if (compr_type == COMPR_LZS) { if (this->len < 40) return -EFBIG; ret = lzs_compress(vpninfo->deflate_pkt->data, this->len, this->data, this->len); if (ret < 0) return ret; vpninfo->deflate_pkt->len = ret; return 0; #ifdef HAVE_LZ4 } else if (compr_type == COMPR_LZ4) { if (this->len < 40) return -EFBIG; ret = LZ4_compress_default((void *)this->data, (void *)vpninfo->deflate_pkt->data, this->len, this->len); if (ret <= 0) { if (ret == 0) ret = -EFBIG; return ret; } vpninfo->deflate_pkt->len = ret; return 0; #endif } else return -EINVAL; return 0; } int cstp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->deflate_pkt_size ? : vpninfo->ip_info.mtu); int len, payload_len; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = alloc_pkt(vpninfo, receive_mtu); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } len = ssl_nonblock_read(vpninfo, 0, vpninfo->cstp_pkt->cstp.hdr, receive_mtu + 8); if (!len) break; if (len < 0) goto do_reconnect; if (len < 8) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } if (vpninfo->cstp_pkt->cstp.hdr[0] != 'S' || vpninfo->cstp_pkt->cstp.hdr[1] != 'T' || vpninfo->cstp_pkt->cstp.hdr[2] != 'F' || vpninfo->cstp_pkt->cstp.hdr[3] != 1 || vpninfo->cstp_pkt->cstp.hdr[7]) goto unknown_pkt; payload_len = load_be16(vpninfo->cstp_pkt->cstp.hdr + 4); if (len != 8 + payload_len) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected packet length. SSL_read returned %d but packet is\n"), len); vpn_progress(vpninfo, PRG_ERR, "%02x %02x %02x %02x %02x %02x %02x %02x\n", vpninfo->cstp_pkt->cstp.hdr[0], vpninfo->cstp_pkt->cstp.hdr[1], vpninfo->cstp_pkt->cstp.hdr[2], vpninfo->cstp_pkt->cstp.hdr[3], vpninfo->cstp_pkt->cstp.hdr[4], vpninfo->cstp_pkt->cstp.hdr[5], vpninfo->cstp_pkt->cstp.hdr[6], vpninfo->cstp_pkt->cstp.hdr[7]); continue; } vpninfo->ssl_times.last_rx = time(NULL); switch (vpninfo->cstp_pkt->cstp.hdr[6]) { case AC_PKT_DPD_OUT: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP DPD request\n")); vpninfo->owe_ssl_dpd_response = 1; continue; case AC_PKT_DPD_RESP: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP DPD response\n")); continue; case AC_PKT_KEEPALIVE: vpn_progress(vpninfo, PRG_DEBUG, _("Got CSTP Keepalive\n")); continue; case AC_PKT_DATA: vpn_progress(vpninfo, PRG_TRACE, _("Received uncompressed data packet of %d bytes\n"), payload_len); vpninfo->cstp_pkt->len = payload_len; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; work_done = 1; continue; case AC_PKT_DISCONN: { int i; if (payload_len >= 2) { for (i = 1; i < payload_len; i++) { if (!isprint(vpninfo->cstp_pkt->data[i])) vpninfo->cstp_pkt->data[i] = '.'; } vpninfo->cstp_pkt->data[payload_len] = 0; vpn_progress(vpninfo, PRG_ERR, _("Received server disconnect: %02x '%s'\n"), vpninfo->cstp_pkt->data[0], vpninfo->cstp_pkt->data + 1); } else { vpn_progress(vpninfo, PRG_ERR, _("Received server disconnect\n")); } vpninfo->quit_reason = "Server request"; return -EPIPE; } case AC_PKT_COMPRESSED: if (!vpninfo->cstp_compr) { vpn_progress(vpninfo, PRG_ERR, _("Compressed packet received in !deflate mode\n")); goto unknown_pkt; } decompress_and_queue_packet(vpninfo, vpninfo->cstp_compr, vpninfo->cstp_pkt->data, payload_len); work_done = 1; continue; case AC_PKT_TERM_SERVER: vpn_progress(vpninfo, PRG_ERR, _("received server terminate packet\n")); vpninfo->quit_reason = "Server request"; return -EPIPE; } unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown packet %02x %02x %02x %02x %02x %02x %02x %02x\n"), vpninfo->cstp_pkt->cstp.hdr[0], vpninfo->cstp_pkt->cstp.hdr[1], vpninfo->cstp_pkt->cstp.hdr[2], vpninfo->cstp_pkt->cstp.hdr[3], vpninfo->cstp_pkt->cstp.hdr[4], vpninfo->cstp_pkt->cstp.hdr[5], vpninfo->cstp_pkt->cstp.hdr[6], vpninfo->cstp_pkt->cstp.hdr[7]); vpninfo->quit_reason = "Unknown packet received"; return 1; } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); ret = ssl_nonblock_write(vpninfo, 0, vpninfo->current_ssl_pkt->cstp.hdr, vpninfo->current_ssl_pkt->len + 8); if (ret < 0) goto do_reconnect; else if (!ret) { /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ break; } } if (ret != vpninfo->current_ssl_pkt->len + 8) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 8, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free_pkt(vpninfo, vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } else if (vpninfo->current_ssl_pkt != &dpd_pkt && vpninfo->current_ssl_pkt != &dpd_resp_pkt && vpninfo->current_ssl_pkt != &keepalive_pkt) free_pkt(vpninfo, vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_CONNECTED && vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_CONNECTED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; if (vpninfo->cstp_compr) { ret = compress_packet(vpninfo, vpninfo->cstp_compr, this); if (ret < 0) goto uncompr; store_be16(vpninfo->deflate_pkt->cstp.hdr + 4, vpninfo->deflate_pkt->len); /* DTLS compression may have screwed with this */ vpninfo->deflate_pkt->cstp.hdr[7] = 0; vpn_progress(vpninfo, PRG_TRACE, _("Sending compressed data packet of %d bytes (was %d)\n"), vpninfo->deflate_pkt->len, this->len); vpninfo->pending_deflated_pkt = this; vpninfo->current_ssl_pkt = vpninfo->deflate_pkt; } else { uncompr: memcpy(this->cstp.hdr, data_hdr, 8); store_be16(this->cstp.hdr + 4, this->len); vpn_progress(vpninfo, PRG_TRACE, _("Sending uncompressed data packet of %d bytes\n"), this->len); vpninfo->current_ssl_pkt = this; } goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int cstp_bye(struct openconnect_info *vpninfo, const char *reason) { unsigned char *bye_pkt; int reason_len; int ret; /* already lost connection? */ #if defined(OPENCONNECT_OPENSSL) if (!vpninfo->https_ssl) return 0; #elif defined(OPENCONNECT_GNUTLS) if (!vpninfo->https_sess) return 0; #endif reason_len = strlen(reason); bye_pkt = malloc(reason_len + 9); if (!bye_pkt) return -ENOMEM; memcpy(bye_pkt, data_hdr, 8); memcpy(bye_pkt + 9, reason, reason_len); store_be16(bye_pkt + 4, reason_len + 1); bye_pkt[6] = AC_PKT_DISCONN; bye_pkt[8] = 0xb0; vpn_progress(vpninfo, PRG_INFO, _("Send BYE packet: %s\n"), reason); ret = ssl_nonblock_write(vpninfo, 0, bye_pkt, reason_len + 9); if (ret == reason_len + 9) { ret = 0; } else if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write writing BYE packet\n")); ret = -EIO; } free(bye_pkt); return ret; } void cstp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { http_common_headers(vpninfo, buf); buf_append(buf, "Accept: */*\r\n"); buf_append(buf, "Accept-Encoding: identity\r\n"); buf_append(buf, "X-Transcend-Version: 1\r\n"); if (vpninfo->xmlpost) buf_append(buf, "X-Aggregate-Auth: 1\r\n"); if (vpninfo->try_http_auth) buf_append(buf, "X-Support-HTTP-Auth: true\r\n"); append_mobile_headers(vpninfo, buf); } openconnect-8.20/ssl.c0000644000076400007640000007753214204454432016515 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #if defined(__linux__) || defined(__ANDROID__) #include #elif defined(__FreeBSD__) || defined(__FreeBSD_kernel__) || defined(__OpenBSD__) || defined(__APPLE__) #include #include #elif defined(__sun__) || defined(__NetBSD__) || defined(__DragonFly__) #include #elif defined(__GNU__) #include #endif /* setsockopt and TCP_NODELAY */ #ifndef _WIN32 #include #include #endif #ifdef ANDROID_KEYSTORE #include #endif #include #include #include #include #include #include /* OSX < 1.6 doesn't have AI_NUMERICSERV */ #ifndef AI_NUMERICSERV #define AI_NUMERICSERV 0 #endif /* GNU Hurd doesn't yet declare IPV6_TCLASS */ #ifndef IPV6_TCLASS #if defined(__GNU__) #define IPV6_TCLASS 61 #elif defined(__APPLE__) #define IPV6_TCLASS 36 #endif #endif static inline int connect_pending(void) { #ifdef _WIN32 return WSAGetLastError() == WSAEWOULDBLOCK; #else return errno == EINPROGRESS; #endif } /* Windows is interminably horrid, and has disjoint errno spaces. * So if we return a positive value, that's a WSA Error and should * be handled with openconnect__win32_strerror(). But if we return a * negative value, that's a normal errno and should be handled with * strerror(). No, you can't just pass the latter value (negated) to * openconnect__win32_strerror() because it gives nonsense results. */ static int cancellable_connect(struct openconnect_info *vpninfo, int sockfd, const struct sockaddr *addr, socklen_t addrlen) { struct sockaddr_storage peer; socklen_t peerlen = sizeof(peer); fd_set wr_set, rd_set, ex_set; int maxfd = sockfd; int err; if (set_sock_nonblock(sockfd)) goto sockerr; if (vpninfo->protect_socket) vpninfo->protect_socket(vpninfo->cbdata, sockfd); if (connect(sockfd, addr, addrlen) < 0 && !connect_pending()) { sockerr: #ifdef _WIN32 return WSAGetLastError(); #else return -errno; #endif } do { FD_ZERO(&wr_set); FD_ZERO(&rd_set); FD_ZERO(&ex_set); FD_SET(sockfd, &wr_set); #ifdef _WIN32 /* Windows indicates failure this way, not in wr_set */ FD_SET(sockfd, &ex_set); #endif cmd_fd_set(vpninfo, &rd_set, &maxfd); if (select(maxfd + 1, &rd_set, &wr_set, &ex_set, NULL) < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for socket connect")); return -EIO; } if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("Socket connect cancelled\n")); return -EINTR; } } while (!FD_ISSET(sockfd, &wr_set) && !FD_ISSET(sockfd, &ex_set) && !vpninfo->got_pause_cmd); /* Check whether connect() succeeded or failed by using getpeername(). See https://cr.yp.to/docs/connect.html */ if (!getpeername(sockfd, (void *)&peer, &peerlen)) return 0; #ifdef _WIN32 /* On Windows, use getsockopt() to determine the error. * We don't ddo this on Windows because it just reports * -ENOTCONN, which we already knew. */ err = WSAGetLastError(); if (err == WSAENOTCONN) { socklen_t errlen = sizeof(err); getsockopt(sockfd, SOL_SOCKET, SO_ERROR, (void *)&err, &errlen); } #else err = -errno; if (err == -ENOTCONN) { char ch; if (read(sockfd, &ch, 1) < 0) err = -errno; /* It should *always* fail! */ } #endif return err; } /* checks whether the provided string is an IP or a hostname. */ unsigned string_is_hostname(const char *str) { struct in_addr buf; /* We don't use inet_pton() because an IPv6 literal is likely to be encased in []. So just check for a colon, which shouldn't occur in hostnames anyway. */ if (!str || inet_aton(str, &buf) || strchr(str, ':')) return 0; return 1; } static int match_sockaddr(struct sockaddr *a, struct sockaddr *b) { if (a->sa_family == AF_INET) { struct sockaddr_in *a4 = (void *)a; struct sockaddr_in *b4 = (void *)b; return (a4->sin_addr.s_addr == b4->sin_addr.s_addr) && (a4->sin_port == b4->sin_port); } else if (a->sa_family == AF_INET6) { struct sockaddr_in6 *a6 = (void *)a; struct sockaddr_in6 *b6 = (void *)b; return !memcmp(&a6->sin6_addr, &b6->sin6_addr, sizeof(a6->sin6_addr)) && a6->sin6_port == b6->sin6_port; } else return 0; } static int set_tcp_nodelay(struct openconnect_info *vpninfo, int ssl_sock) { int flag = 1; if (setsockopt(ssl_sock, IPPROTO_TCP, TCP_NODELAY, (void *)(&flag), sizeof(flag)) < 0) {; vpn_perror(vpninfo, _("Failed setsockopt(TCP_NODELAY) on TLS socket:")); #ifdef _WIN32 return WSAGetLastError(); #else return -errno; #endif } return 0; } int connect_https_socket(struct openconnect_info *vpninfo) { int ssl_sock = -1; int err; /* If we're talking to a server which told us it has dynamic DNS, don't just re-use its previous IP address. If we're talking to a proxy, we can use *its* previous IP address. We expect it'll re-do the DNS lookup for the server anyway. */ if (vpninfo->peer_addr && (!vpninfo->is_dyndns || vpninfo->proxy)) { reconnect: #ifdef SOCK_CLOEXEC ssl_sock = socket(vpninfo->peer_addr->sa_family, SOCK_STREAM | SOCK_CLOEXEC, IPPROTO_IP); if (ssl_sock < 0) #endif { ssl_sock = socket(vpninfo->peer_addr->sa_family, SOCK_STREAM, IPPROTO_IP); if (ssl_sock < 0) { #ifdef _WIN32 err = WSAGetLastError(); #else err = -errno; #endif goto reconn_err; } set_fd_cloexec(ssl_sock); } set_tcp_nodelay(vpninfo, ssl_sock); err = cancellable_connect(vpninfo, ssl_sock, vpninfo->peer_addr, vpninfo->peer_addrlen); if (err) { char *errstr; reconn_err: #ifdef _WIN32 if (err > 0) errstr = openconnect__win32_strerror(err); else #endif errstr = strerror(-err); if (vpninfo->proxy) { vpn_progress(vpninfo, PRG_ERR, _("Failed to reconnect to proxy %s: %s\n"), vpninfo->proxy, errstr); } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to reconnect to host %s: %s\n"), vpninfo->hostname, errstr); } #ifdef _WIN32 if (err > 0) free(errstr); #endif if (ssl_sock >= 0) closesocket(ssl_sock); ssl_sock = -EINVAL; goto out; } } else { struct addrinfo hints, *result, *rp; char *hostname; char port[6]; memset(&hints, 0, sizeof(struct addrinfo)); hints.ai_family = AF_UNSPEC; hints.ai_socktype = SOCK_STREAM; hints.ai_flags = AI_PASSIVE | AI_NUMERICSERV; hints.ai_protocol = 0; hints.ai_canonname = NULL; hints.ai_addr = NULL; hints.ai_next = NULL; /* The 'port' variable is a string because it's easier this way than if we pass NULL to getaddrinfo() and then try to fill in the numeric value into different types of returned sockaddr_in{6,}. */ #ifdef LIBPROXY_HDR if (vpninfo->proxy_factory) { struct oc_text_buf *url_buf = buf_alloc(); char **proxies; int i = 0; free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; buf_append(url_buf, "https://%s", vpninfo->hostname); if (vpninfo->port != 443) buf_append(url_buf, ":%d", vpninfo->port); buf_append(url_buf, "/%s", vpninfo->urlpath?:""); if (buf_error(url_buf)) { buf_free(url_buf); ssl_sock = -ENOMEM; goto out; } proxies = px_proxy_factory_get_proxies(vpninfo->proxy_factory, url_buf->data); i = 0; while (proxies && proxies[i]) { if (!vpninfo->proxy && (!strncmp(proxies[i], "http://", 7) || !strncmp(proxies[i], "socks://", 8) || !strncmp(proxies[i], "socks5://", 9))) internal_parse_url(proxies[i], &vpninfo->proxy_type, &vpninfo->proxy, &vpninfo->proxy_port, NULL, 0); i++; } buf_free(url_buf); free(proxies); if (vpninfo->proxy) vpn_progress(vpninfo, PRG_DEBUG, _("Proxy from libproxy: %s://%s:%d/\n"), vpninfo->proxy_type, vpninfo->proxy, vpninfo->port); } #endif if (vpninfo->proxy) { hostname = vpninfo->proxy; snprintf(port, 6, "%d", vpninfo->proxy_port); } else { hostname = vpninfo->hostname; snprintf(port, 6, "%d", vpninfo->port); } if (hostname[0] == '[' && hostname[strlen(hostname)-1] == ']') { hostname = strndup(hostname + 1, strlen(hostname) - 2); if (!hostname) { ssl_sock = -ENOMEM; goto out; } hints.ai_flags |= AI_NUMERICHOST; } if (vpninfo->getaddrinfo_override) err = vpninfo->getaddrinfo_override(vpninfo->cbdata, hostname, port, &hints, &result); else err = getaddrinfo(hostname, port, &hints, &result); if (err) { vpn_progress(vpninfo, PRG_ERR, _("getaddrinfo failed for host '%s': %s\n"), hostname, gai_strerror(err)); if (hints.ai_flags & AI_NUMERICHOST) free(hostname); ssl_sock = -EINVAL; /* If we were just retrying for dynamic DNS, reconnect using the previously-known IP address */ if (vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Reconnecting to DynDNS server using previously cached IP address\n")); goto reconnect; } goto out; } if (hints.ai_flags & AI_NUMERICHOST) free(hostname); for (rp = result; rp ; rp = rp->ai_next) { char host[80]; host[0] = 0; if (!getnameinfo(rp->ai_addr, rp->ai_addrlen, host, sizeof(host), NULL, 0, NI_NUMERICHOST)) vpn_progress(vpninfo, PRG_DEBUG, vpninfo->proxy_type ? _("Attempting to connect to proxy %s%s%s:%s\n") : _("Attempting to connect to server %s%s%s:%s\n"), rp->ai_family == AF_INET6 ? "[" : "", host, rp->ai_family == AF_INET6 ? "]" : "", port); ssl_sock = socket(rp->ai_family, rp->ai_socktype, rp->ai_protocol); if (ssl_sock < 0) continue; set_fd_cloexec(ssl_sock); set_tcp_nodelay(vpninfo, ssl_sock); err = cancellable_connect(vpninfo, ssl_sock, rp->ai_addr, rp->ai_addrlen); if (!err) { /* Store the peer address we actually used, so that DTLS can use it again later */ free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; if (host[0]) { vpninfo->ip_info.gateway_addr = strdup(host); vpn_progress(vpninfo, PRG_INFO, _("Connected to %s%s%s:%s\n"), rp->ai_family == AF_INET6 ? "[" : "", host, rp->ai_family == AF_INET6 ? "]" : "", port); } free(vpninfo->peer_addr); vpninfo->peer_addrlen = 0; vpninfo->peer_addr = malloc(rp->ai_addrlen); if (!vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate sockaddr storage\n")); closesocket(ssl_sock); ssl_sock = -ENOMEM; freeaddrinfo(result); goto out; } vpninfo->peer_addrlen = rp->ai_addrlen; memcpy(vpninfo->peer_addr, rp->ai_addr, rp->ai_addrlen); /* If no proxy, ensure that we output *this* IP address in * authentication results because we're going to need to * reconnect to the *same* server from the rotation. And with * some trick DNS setups, it might possibly be a "rotation" * even if we only got one result from getaddrinfo() this * time. * * If there's a proxy, we're kind of screwed; we can't know * which IP address we connected to. Perhaps we ought to do * the DNS lookup locally and connect to a specific IP? */ if (!vpninfo->proxy && host[0]) { char *p = malloc(strlen(host) + 3); if (p) { free(vpninfo->unique_hostname); vpninfo->unique_hostname = p; if (rp->ai_family == AF_INET6) *p++ = '['; memcpy(p, host, strlen(host)); p += strlen(host); if (rp->ai_family == AF_INET6) *p++ = ']'; *p = 0; } } break; } if (host[0]) { char *errstr; #ifdef _WIN32 if (err > 0) errstr = openconnect__win32_strerror(err); else #endif errstr = strerror(-err); vpn_progress(vpninfo, PRG_INFO, _("Failed to connect to %s%s%s:%s: %s\n"), rp->ai_family == AF_INET6 ? "[" : "", host, rp->ai_family == AF_INET6 ? "]" : "", port, errstr); #ifdef _WIN32 if (err > 0) free(errstr); #endif } closesocket(ssl_sock); ssl_sock = -1; /* If we're in DynDNS mode but this *was* the cached IP address, * don't bother falling back to it if it didn't work. */ if (vpninfo->peer_addr && vpninfo->peer_addrlen == rp->ai_addrlen && match_sockaddr(vpninfo->peer_addr, rp->ai_addr)) { vpn_progress(vpninfo, PRG_TRACE, _("Forgetting non-functional previous peer address\n")); free(vpninfo->peer_addr); vpninfo->peer_addr = 0; vpninfo->peer_addrlen = 0; free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; } } freeaddrinfo(result); if (ssl_sock < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to connect to host %s\n"), vpninfo->proxy?:vpninfo->hostname); ssl_sock = -EINVAL; if (vpninfo->peer_addr) { vpn_progress(vpninfo, PRG_ERR, _("Reconnecting to DynDNS server using previously cached IP address\n")); goto reconnect; } goto out; } } if (vpninfo->proxy) { err = process_proxy(vpninfo, ssl_sock); if (err) { closesocket(ssl_sock); if (err == -EAGAIN) { /* Proxy authentication failed and we need to retry */ vpn_progress(vpninfo, PRG_DEBUG, _("Reconnecting to proxy %s\n"), vpninfo->proxy); goto reconnect; } ssl_sock = err; } } out: /* If proxy processing returned -EAGAIN to reconnect before attempting further auth, and we failed to reconnect, we have to clean up here. */ clear_auth_states(vpninfo, vpninfo->proxy_auth, 1); return ssl_sock; } int __attribute__ ((format (printf, 2, 3))) openconnect_SSL_printf(struct openconnect_info *vpninfo, const char *fmt, ...) { char buf[1024]; va_list args; buf[1023] = 0; va_start(args, fmt); vsnprintf(buf, 1023, fmt, args); va_end(args); return vpninfo->ssl_write(vpninfo, buf, strlen(buf)); } int __attribute__ ((format(printf, 4, 5))) request_passphrase(struct openconnect_info *vpninfo, const char *label, char **response, const char *fmt, ...) { struct oc_auth_form f; struct oc_form_opt o; char buf[1024]; va_list args; int ret; buf[1023] = 0; memset(&f, 0, sizeof(f)); va_start(args, fmt); vsnprintf(buf, 1023, fmt, args); va_end(args); f.auth_id = (char *)label; f.opts = &o; o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)label; o.label = buf; o._value = NULL; ret = process_auth_form(vpninfo, &f); if (!ret) { *response = o._value; return 0; } return -EIO; } #if defined(__sun__) || defined(__NetBSD__) || defined(__DragonFly__) int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { struct statvfs buf; char *sslkey = openconnect_utf8_to_legacy(vpninfo, vpninfo->certinfo[0].key); int err = 0; if (statvfs(sslkey, &buf)) { err = -errno; vpn_progress(vpninfo, PRG_ERR, _("statvfs: %s\n"), strerror(errno)); } else if (asprintf(&vpninfo->certinfo[0].password, "%lx", buf.f_fsid) == -1) err = -ENOMEM; if (sslkey != vpninfo->certinfo[0].key) free(sslkey); return err; } #elif defined(_WIN32) #include typedef BOOL WINAPI (*GVIBH)(HANDLE, LPWSTR, DWORD, LPDWORD, LPDWORD, LPDWORD, LPWSTR, DWORD); int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { HANDLE h; DWORD serial; HINSTANCE kernlib; GVIBH func = NULL; int success; int fd; /* Some versions of Windows don't have this so don't use standard load-time linking or it'll cause failures. */ kernlib = LoadLibraryA("Kernel32.dll"); if (!kernlib) { notsupp: vpn_progress(vpninfo, PRG_ERR, _("Could not obtain file system ID for passphrase\n")); return -EOPNOTSUPP; } func = (void *)GetProcAddress(kernlib, "GetVolumeInformationByHandleW"); FreeLibrary(kernlib); if (!func) goto notsupp; fd = openconnect_open_utf8(vpninfo, vpninfo->certinfo[0].key, O_RDONLY); if (fd == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open private key file '%s': %s\n"), vpninfo->certinfo[0].key, strerror(errno)); return -ENOENT; } h = (HANDLE)_get_osfhandle(fd); success = func(h, NULL, 0, &serial, NULL, NULL, NULL, 0); close(fd); if (!success) return -EIO; if (asprintf(&vpninfo->certinfo[0].password, "%lx", serial) == -1) return -ENOMEM; return 0; } #elif defined(HAVE_STATFS) int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { char *sslkey = openconnect_utf8_to_legacy(vpninfo, vpninfo->certinfo[0].key); struct statfs buf; unsigned *fsid = (unsigned *)&buf.f_fsid; unsigned long long fsid64; int err = 0; if (statfs(sslkey, &buf)) { err = -errno; vpn_progress(vpninfo, PRG_ERR, _("statfs: %s\n"), strerror(errno)); return -err; } else { fsid64 = ((unsigned long long)fsid[0] << 32) | fsid[1]; if (asprintf(&vpninfo->certinfo[0].password, "%llx", fsid64) == -1) err = -ENOMEM; } if (sslkey != vpninfo->certinfo[0].key) free(sslkey); return err; } #else int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo) { return -EOPNOTSUPP; } #endif #if defined(OPENCONNECT_OPENSSL) /* We put this here rather than in openssl.c because it might be needed for OpenSSL DTLS support even when GnuTLS is being used for HTTPS */ int openconnect_print_err_cb(const char *str, size_t len, void *ptr) { struct openconnect_info *vpninfo = ptr; vpn_progress(vpninfo, PRG_ERR, "%s", str); return 0; } #endif #ifdef FAKE_ANDROID_KEYSTORE char *keystore_strerror(int err) { return (char *)strerror(-err); } int keystore_fetch(const char *key, unsigned char **result) { unsigned char *data; struct stat st; int fd; int ret; fd = open(key, O_RDONLY); if (fd < 0) return -errno; if (fstat(fd, &st)) { ret = -errno; goto out_fd; } data = malloc(st.st_size + 1); if (!data) { ret = -ENOMEM; goto out_fd; } if (read(fd, data, st.st_size) != st.st_size) { ret = -EIO; free(data); goto out_fd; } data[st.st_size] = 0; *result = data; ret = st.st_size; out_fd: close(fd); return ret; } #elif defined(ANDROID_KEYSTORE) /* keystore.h isn't in the NDK so we need to define these */ #define NO_ERROR 1 #define LOCKED 2 #define UNINITIALIZED 3 #define SYSTEM_ERROR 4 #define PROTOCOL_ERROR 5 #define PERMISSION_DENIED 6 #define KEY_NOT_FOUND 7 #define VALUE_CORRUPTED 8 #define UNDEFINED_ACTION 9 #define WRONG_PASSWORD 10 const char *keystore_strerror(int err) { switch (-err) { case NO_ERROR: return _("No error"); case LOCKED: return _("Keystore locked"); case UNINITIALIZED: return _("Keystore uninitialized"); case SYSTEM_ERROR: return _("System error"); case PROTOCOL_ERROR: return _("Protocol error"); case PERMISSION_DENIED: return _("Permission denied"); case KEY_NOT_FOUND: return _("Key not found"); case VALUE_CORRUPTED: return _("Value corrupted"); case UNDEFINED_ACTION: return _("Undefined action"); case WRONG_PASSWORD: case WRONG_PASSWORD+1: case WRONG_PASSWORD+2: case WRONG_PASSWORD+3: return _("Wrong password"); default: return _("Unknown error"); } } /* Returns length, or a negative errno in its own namespace (handled by its own strerror function above). The numbers are from Android's keystore.h */ int keystore_fetch(const char *key, unsigned char **result) { struct sockaddr_un sa = { AF_UNIX, "/dev/socket/keystore" }; socklen_t sl = offsetof(struct sockaddr_un, sun_path) + strlen(sa.sun_path) + 1; unsigned char *data, *p; unsigned char buf[3]; int len, fd; int ret = -SYSTEM_ERROR; fd = socket(AF_UNIX, SOCK_STREAM, 0); if (fd < 0) return -SYSTEM_ERROR; if (connect(fd, (void *)&sa, sl)) { close(fd); return -SYSTEM_ERROR; } len = strlen(key); buf[0] = 'g'; store_be16(buf + 1, len); if (send(fd, buf, 3, 0) != 3 || send(fd, key, len, 0) != len || shutdown(fd, SHUT_WR) || recv(fd, buf, 1, 0) != 1) goto out; if (buf[0] != NO_ERROR) { /* Should never be zero */ ret = buf[0] ? -buf[0] : -PROTOCOL_ERROR; goto out; } if (recv(fd, buf, 2, 0) != 2) goto out; len = load_be16(buf); data = malloc(len); if (!data) goto out; p = data; ret = len; while (len) { int got = recv(fd, p, len, 0); if (got <= 0) { free(data); ret = -PROTOCOL_ERROR; goto out; } len -= got; p += got; } *result = data; out: close(fd); return ret; } #endif void cmd_fd_set(struct openconnect_info *vpninfo, fd_set *fds, int *maxfd) { if (vpninfo->cmd_fd != -1) { FD_SET(vpninfo->cmd_fd, fds); if (vpninfo->cmd_fd > *maxfd) *maxfd = vpninfo->cmd_fd; } } void check_cmd_fd(struct openconnect_info *vpninfo, fd_set *fds) { char cmd; if (vpninfo->cmd_fd == -1 || !FD_ISSET(vpninfo->cmd_fd, fds)) return; if (vpninfo->cmd_fd_write == -1) { /* legacy openconnect_set_cancel_fd() users */ vpninfo->got_cancel_cmd = 1; return; } #ifdef _WIN32 if (recv(vpninfo->cmd_fd, &cmd, 1, 0) != 1) return; #else if (read(vpninfo->cmd_fd, &cmd, 1) != 1) return; #endif switch (cmd) { case OC_CMD_CANCEL: case OC_CMD_DETACH: vpninfo->got_cancel_cmd = 1; vpninfo->cancel_type = cmd; break; case OC_CMD_PAUSE: vpninfo->got_pause_cmd = 1; break; case OC_CMD_STATS: if (vpninfo->stats_handler) vpninfo->stats_handler(vpninfo->cbdata, &vpninfo->stats); } } int is_cancel_pending(struct openconnect_info *vpninfo, fd_set *fds) { check_cmd_fd(vpninfo, fds); return vpninfo->got_cancel_cmd || vpninfo->got_pause_cmd; } void poll_cmd_fd(struct openconnect_info *vpninfo, int timeout) { fd_set rd_set; int maxfd = 0; time_t expiration = time(NULL) + timeout, now = 0; while (now < expiration && !vpninfo->got_cancel_cmd && !vpninfo->got_pause_cmd) { struct timeval tv; now = time(NULL); tv.tv_sec = now >= expiration ? 0 : expiration - now; tv.tv_usec = 0; /* If the cmd_fd is internal and we've been told to poll it, * don't *keep* doing so afterwards. */ vpninfo->need_poll_cmd_fd = !vpninfo->cmd_fd_internal; FD_ZERO(&rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); if (select(maxfd + 1, &rd_set, NULL, NULL, &tv) < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for command socket")); } if (FD_ISSET(vpninfo->cmd_fd, &rd_set)) { vpninfo->need_poll_cmd_fd = 1; /* Until it's *empty */ check_cmd_fd(vpninfo, &rd_set); } } } #ifdef _WIN32 #include #include int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode) { wchar_t *fname_w; int nr_chars = MultiByteToWideChar(CP_UTF8, 0, fname, -1, NULL, 0); int fd; if (!nr_chars) { errno = EINVAL; return -1; } fname_w = malloc(nr_chars * sizeof(wchar_t)); if (!fname_w) { errno = ENOMEM; return -1; } MultiByteToWideChar(CP_UTF8, 0, fname, -1, fname_w, nr_chars); fd = _wopen(fname_w, mode, _S_IREAD | _S_IWRITE); free(fname_w); return fd; } #else int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode) { char *legacy_fname = openconnect_utf8_to_legacy(vpninfo, fname); int fd; fd = open(legacy_fname, mode, 0644); if (legacy_fname != fname) free(legacy_fname); return fd; } #endif FILE *openconnect_fopen_utf8(struct openconnect_info *vpninfo, const char *fname, const char *mode) { int fd; int flags; if (!strcmp(mode, "r")) flags = O_RDONLY|O_CLOEXEC; else if (!strcmp(mode, "rb")) flags = O_RDONLY|O_CLOEXEC|O_BINARY; else if (!strcmp(mode, "w")) flags = O_WRONLY|O_CLOEXEC|O_CREAT|O_TRUNC; else if (!strcmp(mode, "wb")) flags = O_WRONLY|O_CLOEXEC|O_CREAT|O_TRUNC|O_BINARY; else { /* This should never happen, but if we forget and start using other modes without implementing proper mode->flags conversion, complain! */ vpn_progress(vpninfo, PRG_ERR, _("%s() used with unsupported mode '%s'\n"), __func__, mode); return NULL; } fd = openconnect_open_utf8(vpninfo, fname, flags); if (fd == -1) return NULL; return fdopen(fd, mode); } ssize_t openconnect_read_file(struct openconnect_info *vpninfo, const char *fname, char **ptr) { int fd, len; struct stat st; char *buf; fd = openconnect_open_utf8(vpninfo, fname, O_RDONLY|O_BINARY); if (fd < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open %s: %s\n"), fname, strerror(errno)); return -ENOENT; } if (fstat(fd, &st)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to fstat() %s: %s\n"), fname, strerror(errno)); close(fd); return -EIO; } if (st.st_size == 0) { vpn_progress(vpninfo, PRG_INFO, _("File %s is empty\n"), vpninfo->xmlconfig); close(fd); return -ENOENT; } if (st.st_size >= INT_MAX || st.st_size < 0) { vpn_progress(vpninfo, PRG_INFO, _("File %s has suspicious size %" PRId64 "\n"), vpninfo->xmlconfig, (int64_t)st.st_size); close(fd); return -EIO; } len = st.st_size; buf = malloc(len + 1); if (!buf) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate %d bytes for %s\n"), len + 1, fname); close(fd); return -ENOMEM; } if (read(fd, buf, len) != len) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read %s: %s\n"), fname, strerror(errno)); free(buf); close(fd); return -EIO; } buf[len] = 0; close(fd); *ptr = buf; return len; } int udp_sockaddr(struct openconnect_info *vpninfo, int port) { free(vpninfo->dtls_addr); vpninfo->dtls_addr = malloc(vpninfo->peer_addrlen); if (!vpninfo->dtls_addr) return -ENOMEM; memcpy(vpninfo->dtls_addr, vpninfo->peer_addr, vpninfo->peer_addrlen); if (vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in *sin = (void *)vpninfo->dtls_addr; sin->sin_port = htons(port); vpninfo->dtls_tos_proto = IPPROTO_IP; vpninfo->dtls_tos_optname = IP_TOS; } else if (vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 *sin = (void *)vpninfo->dtls_addr; sin->sin6_port = htons(port); #if defined(IPV6_TCLASS) vpninfo->dtls_tos_proto = IPPROTO_IPV6; vpninfo->dtls_tos_optname = IPV6_TCLASS; #endif } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown protocol family %d. Cannot create UDP server address\n"), vpninfo->peer_addr->sa_family); return -EINVAL; } /* in case DTLS TOS copy is disabled, reset the optname value */ /* so that the copy won't be applied in dtls.c / dtls_mainloop() */ if (!vpninfo->dtls_pass_tos) vpninfo->dtls_tos_optname = 0; return 0; } int udp_connect(struct openconnect_info *vpninfo) { int fd, sndbuf; fd = socket(vpninfo->peer_addr->sa_family, SOCK_DGRAM, IPPROTO_UDP); if (fd < 0) { vpn_perror(vpninfo, _("Open UDP socket")); return -EINVAL; } if (vpninfo->protect_socket) vpninfo->protect_socket(vpninfo->cbdata, fd); sndbuf = vpninfo->ip_info.mtu; if (!sndbuf) sndbuf = 1500; sndbuf *= vpninfo->max_qlen; if (setsockopt(fd, SOL_SOCKET, SO_SNDBUF, (void *)&sndbuf, sizeof(sndbuf)) < 0) { vpn_perror(vpninfo, "Set UDP socket send buffer"); } socklen_t l = sizeof(sndbuf); if (!getsockopt(fd, SOL_SOCKET, SO_SNDBUF, (void *)&sndbuf, &l)) vpn_progress(vpninfo, PRG_DEBUG, "UDP SO_SNDBUF: %d\n", sndbuf); if (vpninfo->dtls_local_port) { union { struct sockaddr_in in; struct sockaddr_in6 in6; } dtls_bind_addr; int dtls_bind_addrlen; memset(&dtls_bind_addr, 0, sizeof(dtls_bind_addr)); if (vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in *addr = &dtls_bind_addr.in; dtls_bind_addrlen = sizeof(*addr); addr->sin_family = AF_INET; addr->sin_addr.s_addr = INADDR_ANY; addr->sin_port = htons(vpninfo->dtls_local_port); } else if (vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 *addr = &dtls_bind_addr.in6; dtls_bind_addrlen = sizeof(*addr); addr->sin6_family = AF_INET6; addr->sin6_addr = in6addr_any; addr->sin6_port = htons(vpninfo->dtls_local_port); } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown protocol family %d. Cannot use UDP transport\n"), vpninfo->peer_addr->sa_family); vpninfo->dtls_attempt_period = 0; closesocket(fd); return -EINVAL; } if (bind(fd, (struct sockaddr *)&dtls_bind_addr, dtls_bind_addrlen)) { vpn_perror(vpninfo, _("Bind UDP socket")); closesocket(fd); return -EINVAL; } } if (connect(fd, vpninfo->dtls_addr, vpninfo->peer_addrlen)) { vpn_perror(vpninfo, _("Connect UDP socket")); closesocket(fd); return -EINVAL; } set_fd_cloexec(fd); if (set_sock_nonblock(fd)) { vpn_perror(vpninfo, _("Make UDP socket non-blocking")); closesocket(fd); return -EIO; } return fd; } int ssl_reconnect(struct openconnect_info *vpninfo) { int ret; int timeout; int interval; int tun_up = tun_is_up(vpninfo); openconnect_close_https(vpninfo, 0); timeout = vpninfo->reconnect_timeout; interval = vpninfo->reconnect_interval; free_pkt(vpninfo, vpninfo->dtls_pkt); vpninfo->dtls_pkt = NULL; free_pkt(vpninfo, vpninfo->tun_pkt); vpninfo->tun_pkt = NULL; while (1) { if (tun_up) script_config_tun(vpninfo, "attempt-reconnect"); ret = vpninfo->proto->tcp_connect(vpninfo); if (!ret) break; if (timeout <= 0) return ret; if (ret == -EPERM) { vpn_progress(vpninfo, PRG_ERR, _("Cookie is no longer valid, ending session\n")); return ret; } vpn_progress(vpninfo, PRG_INFO, _("sleep %ds, remaining timeout %ds\n"), interval, timeout); poll_cmd_fd(vpninfo, interval); if (vpninfo->got_cancel_cmd) return -EINTR; if (vpninfo->got_pause_cmd) return 0; timeout -= interval; interval += vpninfo->reconnect_interval; if (interval > RECONNECT_INTERVAL_MAX) interval = RECONNECT_INTERVAL_MAX; } if (tun_up) { script_config_tun(vpninfo, "reconnect"); if (vpninfo->reconnected) vpninfo->reconnected(vpninfo->cbdata); } return 0; } int cancellable_gets(struct openconnect_info *vpninfo, int fd, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while ((ret = cancellable_recv(vpninfo, fd, (void *)(buf + i), 1)) == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } buf[i] = 0; return i ?: ret; } int cancellable_send(struct openconnect_info *vpninfo, int fd, char *buf, size_t len) { size_t count; if (fd == -1) return -EINVAL; for (count = 0; count < len; ) { fd_set rd_set, wr_set; int maxfd = fd; int i; FD_ZERO(&wr_set); FD_ZERO(&rd_set); FD_SET(fd, &wr_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); if (select(maxfd + 1, &rd_set, &wr_set, NULL, NULL) < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for socket send")); return -EIO; } if (is_cancel_pending(vpninfo, &rd_set)) return -EINTR; /* Not that this should ever be able to happen... */ if (!FD_ISSET(fd, &wr_set)) continue; i = send(fd, (void *)&buf[count], len - count, 0); if (i < 0) return -errno; count += i; } return count; } int cancellable_recv(struct openconnect_info *vpninfo, int fd, char *buf, size_t len) { size_t count; if (fd == -1) return -EINVAL; for (count = 0; count < len; ) { fd_set rd_set; int maxfd = fd; int i; FD_ZERO(&rd_set); FD_SET(fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); if (select(maxfd + 1, &rd_set, NULL, NULL, NULL) < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for socket recv")); return -EIO; } if (is_cancel_pending(vpninfo, &rd_set)) return -EINTR; /* Not that this should ever be able to happen... */ if (!FD_ISSET(fd, &rd_set)) continue; i = recv(fd, (void *)&buf[count], len - count, 0); if (i < 0) return -errno; else if (i == 0) return -ECONNRESET; count += i; } return count; } openconnect-8.20/install-sh0000755000076400007640000003643513533126751017555 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # install - install a program, script, or datafile scriptversion=2018-03-11.20; # UTC # This originates from X11R5 (mit/util/scripts/install.sh), which was # later released in X11R6 (xc/config/util/install.sh) with the # following copyright and license. # # Copyright (C) 1994 X Consortium # # Permission is hereby granted, free of charge, to any person obtaining a copy # of this software and associated documentation files (the "Software"), to # deal in the Software without restriction, including without limitation the # rights to use, copy, modify, merge, publish, distribute, sublicense, and/or # sell copies of the Software, and to permit persons to whom the Software is # furnished to do so, subject to the following conditions: # # The above copyright notice and this permission notice shall be included in # all copies or substantial portions of the Software. # # THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR # IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, # FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE # X CONSORTIUM BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER LIABILITY, WHETHER IN # AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, OUT OF OR IN CONNEC- # TION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE SOFTWARE. # # Except as contained in this notice, the name of the X Consortium shall not # be used in advertising or otherwise to promote the sale, use or other deal- # ings in this Software without prior written authorization from the X Consor- # tium. # # # FSF changes to this file are in the public domain. # # Calling this script install-sh is preferred over install.sh, to prevent # 'make' implicit rules from creating a file called install from it # when there is no Makefile. # # This script is compatible with the BSD install script, but was written # from scratch. tab=' ' nl=' ' IFS=" $tab$nl" # Set DOITPROG to "echo" to test this script. doit=${DOITPROG-} doit_exec=${doit:-exec} # Put in absolute file names if you don't have them in your path; # or use environment vars. chgrpprog=${CHGRPPROG-chgrp} chmodprog=${CHMODPROG-chmod} chownprog=${CHOWNPROG-chown} cmpprog=${CMPPROG-cmp} cpprog=${CPPROG-cp} mkdirprog=${MKDIRPROG-mkdir} mvprog=${MVPROG-mv} rmprog=${RMPROG-rm} stripprog=${STRIPPROG-strip} posix_mkdir= # Desired mode of installed file. mode=0755 chgrpcmd= chmodcmd=$chmodprog chowncmd= mvcmd=$mvprog rmcmd="$rmprog -f" stripcmd= src= dst= dir_arg= dst_arg= copy_on_change=false is_target_a_directory=possibly usage="\ Usage: $0 [OPTION]... [-T] SRCFILE DSTFILE or: $0 [OPTION]... SRCFILES... DIRECTORY or: $0 [OPTION]... -t DIRECTORY SRCFILES... or: $0 [OPTION]... -d DIRECTORIES... In the 1st form, copy SRCFILE to DSTFILE. In the 2nd and 3rd, copy all SRCFILES to DIRECTORY. In the 4th, create DIRECTORIES. Options: --help display this help and exit. --version display version info and exit. -c (ignored) -C install only if different (preserve the last data modification time) -d create directories instead of installing files. -g GROUP $chgrpprog installed files to GROUP. -m MODE $chmodprog installed files to MODE. -o USER $chownprog installed files to USER. -s $stripprog installed files. -t DIRECTORY install into DIRECTORY. -T report an error if DSTFILE is a directory. Environment variables override the default commands: CHGRPPROG CHMODPROG CHOWNPROG CMPPROG CPPROG MKDIRPROG MVPROG RMPROG STRIPPROG " while test $# -ne 0; do case $1 in -c) ;; -C) copy_on_change=true;; -d) dir_arg=true;; -g) chgrpcmd="$chgrpprog $2" shift;; --help) echo "$usage"; exit $?;; -m) mode=$2 case $mode in *' '* | *"$tab"* | *"$nl"* | *'*'* | *'?'* | *'['*) echo "$0: invalid mode: $mode" >&2 exit 1;; esac shift;; -o) chowncmd="$chownprog $2" shift;; -s) stripcmd=$stripprog;; -t) is_target_a_directory=always dst_arg=$2 # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac shift;; -T) is_target_a_directory=never;; --version) echo "$0 $scriptversion"; exit $?;; --) shift break;; -*) echo "$0: invalid option: $1" >&2 exit 1;; *) break;; esac shift done # We allow the use of options -d and -T together, by making -d # take the precedence; this is for compatibility with GNU install. if test -n "$dir_arg"; then if test -n "$dst_arg"; then echo "$0: target directory not allowed when installing a directory." >&2 exit 1 fi fi if test $# -ne 0 && test -z "$dir_arg$dst_arg"; then # When -d is used, all remaining arguments are directories to create. # When -t is used, the destination is already specified. # Otherwise, the last argument is the destination. Remove it from $@. for arg do if test -n "$dst_arg"; then # $@ is not empty: it contains at least $arg. set fnord "$@" "$dst_arg" shift # fnord fi shift # arg dst_arg=$arg # Protect names problematic for 'test' and other utilities. case $dst_arg in -* | [=\(\)!]) dst_arg=./$dst_arg;; esac done fi if test $# -eq 0; then if test -z "$dir_arg"; then echo "$0: no input file specified." >&2 exit 1 fi # It's OK to call 'install-sh -d' without argument. # This can happen when creating conditional directories. exit 0 fi if test -z "$dir_arg"; then if test $# -gt 1 || test "$is_target_a_directory" = always; then if test ! -d "$dst_arg"; then echo "$0: $dst_arg: Is not a directory." >&2 exit 1 fi fi fi if test -z "$dir_arg"; then do_exit='(exit $ret); exit $ret' trap "ret=129; $do_exit" 1 trap "ret=130; $do_exit" 2 trap "ret=141; $do_exit" 13 trap "ret=143; $do_exit" 15 # Set umask so as not to create temps with too-generous modes. # However, 'strip' requires both read and write access to temps. case $mode in # Optimize common cases. *644) cp_umask=133;; *755) cp_umask=22;; *[0-7]) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw='% 200' fi cp_umask=`expr '(' 777 - $mode % 1000 ')' $u_plus_rw`;; *) if test -z "$stripcmd"; then u_plus_rw= else u_plus_rw=,u+rw fi cp_umask=$mode$u_plus_rw;; esac fi for src do # Protect names problematic for 'test' and other utilities. case $src in -* | [=\(\)!]) src=./$src;; esac if test -n "$dir_arg"; then dst=$src dstdir=$dst test -d "$dstdir" dstdir_status=$? else # Waiting for this to be detected by the "$cpprog $src $dsttmp" command # might cause directories to be created, which would be especially bad # if $src (and thus $dsttmp) contains '*'. if test ! -f "$src" && test ! -d "$src"; then echo "$0: $src does not exist." >&2 exit 1 fi if test -z "$dst_arg"; then echo "$0: no destination specified." >&2 exit 1 fi dst=$dst_arg # If destination is a directory, append the input filename. if test -d "$dst"; then if test "$is_target_a_directory" = never; then echo "$0: $dst_arg: Is a directory" >&2 exit 1 fi dstdir=$dst dstbase=`basename "$src"` case $dst in */) dst=$dst$dstbase;; *) dst=$dst/$dstbase;; esac dstdir_status=0 else dstdir=`dirname "$dst"` test -d "$dstdir" dstdir_status=$? fi fi case $dstdir in */) dstdirslash=$dstdir;; *) dstdirslash=$dstdir/;; esac obsolete_mkdir_used=false if test $dstdir_status != 0; then case $posix_mkdir in '') # Create intermediate dirs using mode 755 as modified by the umask. # This is like FreeBSD 'install' as of 1997-10-28. umask=`umask` case $stripcmd.$umask in # Optimize common cases. *[2367][2367]) mkdir_umask=$umask;; .*0[02][02] | .[02][02] | .[02]) mkdir_umask=22;; *[0-7]) mkdir_umask=`expr $umask + 22 \ - $umask % 100 % 40 + $umask % 20 \ - $umask % 10 % 4 + $umask % 2 `;; *) mkdir_umask=$umask,go-w;; esac # With -d, create the new directory with the user-specified mode. # Otherwise, rely on $mkdir_umask. if test -n "$dir_arg"; then mkdir_mode=-m$mode else mkdir_mode= fi posix_mkdir=false case $umask in *[123567][0-7][0-7]) # POSIX mkdir -p sets u+wx bits regardless of umask, which # is incompatible with FreeBSD 'install' when (umask & 300) != 0. ;; *) # Note that $RANDOM variable is not portable (e.g. dash); Use it # here however when possible just to lower collision chance. tmpdir=${TMPDIR-/tmp}/ins$RANDOM-$$ trap 'ret=$?; rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" 2>/dev/null; exit $ret' 0 # Because "mkdir -p" follows existing symlinks and we likely work # directly in world-writeable /tmp, make sure that the '$tmpdir' # directory is successfully created first before we actually test # 'mkdir -p' feature. if (umask $mkdir_umask && $mkdirprog $mkdir_mode "$tmpdir" && exec $mkdirprog $mkdir_mode -p -- "$tmpdir/a/b") >/dev/null 2>&1 then if test -z "$dir_arg" || { # Check for POSIX incompatibilities with -m. # HP-UX 11.23 and IRIX 6.5 mkdir -m -p sets group- or # other-writable bit of parent directory when it shouldn't. # FreeBSD 6.1 mkdir -m -p sets mode of existing directory. test_tmpdir="$tmpdir/a" ls_ld_tmpdir=`ls -ld "$test_tmpdir"` case $ls_ld_tmpdir in d????-?r-*) different_mode=700;; d????-?--*) different_mode=755;; *) false;; esac && $mkdirprog -m$different_mode -p -- "$test_tmpdir" && { ls_ld_tmpdir_1=`ls -ld "$test_tmpdir"` test "$ls_ld_tmpdir" = "$ls_ld_tmpdir_1" } } then posix_mkdir=: fi rmdir "$tmpdir/a/b" "$tmpdir/a" "$tmpdir" else # Remove any dirs left behind by ancient mkdir implementations. rmdir ./$mkdir_mode ./-p ./-- "$tmpdir" 2>/dev/null fi trap '' 0;; esac;; esac if $posix_mkdir && ( umask $mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir" ) then : else # The umask is ridiculous, or mkdir does not conform to POSIX, # or it failed possibly due to a race condition. Create the # directory the slow way, step by step, checking for races as we go. case $dstdir in /*) prefix='/';; [-=\(\)!]*) prefix='./';; *) prefix='';; esac oIFS=$IFS IFS=/ set -f set fnord $dstdir shift set +f IFS=$oIFS prefixes= for d do test X"$d" = X && continue prefix=$prefix$d if test -d "$prefix"; then prefixes= else if $posix_mkdir; then (umask=$mkdir_umask && $doit_exec $mkdirprog $mkdir_mode -p -- "$dstdir") && break # Don't fail if two instances are running concurrently. test -d "$prefix" || exit 1 else case $prefix in *\'*) qprefix=`echo "$prefix" | sed "s/'/'\\\\\\\\''/g"`;; *) qprefix=$prefix;; esac prefixes="$prefixes '$qprefix'" fi fi prefix=$prefix/ done if test -n "$prefixes"; then # Don't fail if two instances are running concurrently. (umask $mkdir_umask && eval "\$doit_exec \$mkdirprog $prefixes") || test -d "$dstdir" || exit 1 obsolete_mkdir_used=true fi fi fi if test -n "$dir_arg"; then { test -z "$chowncmd" || $doit $chowncmd "$dst"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dst"; } && { test "$obsolete_mkdir_used$chowncmd$chgrpcmd" = false || test -z "$chmodcmd" || $doit $chmodcmd $mode "$dst"; } || exit 1 else # Make a couple of temp file names in the proper directory. dsttmp=${dstdirslash}_inst.$$_ rmtmp=${dstdirslash}_rm.$$_ # Trap to clean up those temp files at exit. trap 'ret=$?; rm -f "$dsttmp" "$rmtmp" && exit $ret' 0 # Copy the file name to the temp name. (umask $cp_umask && { test -z "$stripcmd" || { # Create $dsttmp read-write so that cp doesn't create it read-only, # which would cause strip to fail. if test -z "$doit"; then : >"$dsttmp" # No need to fork-exec 'touch'. else $doit touch "$dsttmp" fi } } && $doit_exec $cpprog "$src" "$dsttmp") && # and set any options; do chmod last to preserve setuid bits. # # If any of these fail, we abort the whole thing. If we want to # ignore errors from any of these, just make sure not to ignore # errors from the above "$doit $cpprog $src $dsttmp" command. # { test -z "$chowncmd" || $doit $chowncmd "$dsttmp"; } && { test -z "$chgrpcmd" || $doit $chgrpcmd "$dsttmp"; } && { test -z "$stripcmd" || $doit $stripcmd "$dsttmp"; } && { test -z "$chmodcmd" || $doit $chmodcmd $mode "$dsttmp"; } && # If -C, don't bother to copy if it wouldn't change the file. if $copy_on_change && old=`LC_ALL=C ls -dlL "$dst" 2>/dev/null` && new=`LC_ALL=C ls -dlL "$dsttmp" 2>/dev/null` && set -f && set X $old && old=:$2:$4:$5:$6 && set X $new && new=:$2:$4:$5:$6 && set +f && test "$old" = "$new" && $cmpprog "$dst" "$dsttmp" >/dev/null 2>&1 then rm -f "$dsttmp" else # Rename the file to the real destination. $doit $mvcmd -f "$dsttmp" "$dst" 2>/dev/null || # The rename failed, perhaps because mv can't rename something else # to itself, or perhaps because mv is so ancient that it does not # support -f. { # Now remove or move aside any old file at destination location. # We try this two ways since rm can't unlink itself on some # systems and the destination file might be busy for other # reasons. In this case, the final cleanup might fail but the new # file should still install successfully. { test ! -f "$dst" || $doit $rmcmd -f "$dst" 2>/dev/null || { $doit $mvcmd -f "$dst" "$rmtmp" 2>/dev/null && { $doit $rmcmd -f "$rmtmp" 2>/dev/null; :; } } || { echo "$0: cannot unlink or rename $dst" >&2 (exit 1); exit 1 } } && # Now rename the file to the real destination. $doit $mvcmd "$dsttmp" "$dst" } fi || exit 1 trap '' 0 fi done # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.20/missing0000755000076400007640000001533613603173140017135 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Common wrapper for a few potentially missing GNU programs. scriptversion=2018-03-07.03; # UTC # Copyright (C) 1996-2020 Free Software Foundation, Inc. # Originally written by Fran,cois Pinard , 1996. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2, or (at your option) # any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that program. if test $# -eq 0; then echo 1>&2 "Try '$0 --help' for more information" exit 1 fi case $1 in --is-lightweight) # Used by our autoconf macros to check whether the available missing # script is modern enough. exit 0 ;; --run) # Back-compat with the calling convention used by older automake. shift ;; -h|--h|--he|--hel|--help) echo "\ $0 [OPTION]... PROGRAM [ARGUMENT]... Run 'PROGRAM [ARGUMENT]...', returning a proper advice when this fails due to PROGRAM being missing or too old. Options: -h, --help display this help and exit -v, --version output version information and exit Supported PROGRAM values: aclocal autoconf autoheader autom4te automake makeinfo bison yacc flex lex help2man Version suffixes to PROGRAM as well as the prefixes 'gnu-', 'gnu', and 'g' are ignored when checking the name. Send bug reports to ." exit $? ;; -v|--v|--ve|--ver|--vers|--versi|--versio|--version) echo "missing $scriptversion (GNU Automake)" exit $? ;; -*) echo 1>&2 "$0: unknown '$1' option" echo 1>&2 "Try '$0 --help' for more information" exit 1 ;; esac # Run the given program, remember its exit status. "$@"; st=$? # If it succeeded, we are done. test $st -eq 0 && exit 0 # Also exit now if we it failed (or wasn't found), and '--version' was # passed; such an option is passed most likely to detect whether the # program is present and works. case $2 in --version|--help) exit $st;; esac # Exit code 63 means version mismatch. This often happens when the user # tries to use an ancient version of a tool on a file that requires a # minimum version. if test $st -eq 63; then msg="probably too old" elif test $st -eq 127; then # Program was missing. msg="missing on your system" else # Program was found and executed, but failed. Give up. exit $st fi perl_URL=https://www.perl.org/ flex_URL=https://github.com/westes/flex gnu_software_URL=https://www.gnu.org/software program_details () { case $1 in aclocal|automake) echo "The '$1' program is part of the GNU Automake package:" echo "<$gnu_software_URL/automake>" echo "It also requires GNU Autoconf, GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/autoconf>" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; autoconf|autom4te|autoheader) echo "The '$1' program is part of the GNU Autoconf package:" echo "<$gnu_software_URL/autoconf/>" echo "It also requires GNU m4 and Perl in order to run:" echo "<$gnu_software_URL/m4/>" echo "<$perl_URL>" ;; esac } give_advice () { # Normalize program name to check for. normalized_program=`echo "$1" | sed ' s/^gnu-//; t s/^gnu//; t s/^g//; t'` printf '%s\n' "'$1' is $msg." configure_deps="'configure.ac' or m4 files included by 'configure.ac'" case $normalized_program in autoconf*) echo "You should only need it if you modified 'configure.ac'," echo "or m4 files included by it." program_details 'autoconf' ;; autoheader*) echo "You should only need it if you modified 'acconfig.h' or" echo "$configure_deps." program_details 'autoheader' ;; automake*) echo "You should only need it if you modified 'Makefile.am' or" echo "$configure_deps." program_details 'automake' ;; aclocal*) echo "You should only need it if you modified 'acinclude.m4' or" echo "$configure_deps." program_details 'aclocal' ;; autom4te*) echo "You might have modified some maintainer files that require" echo "the 'autom4te' program to be rebuilt." program_details 'autom4te' ;; bison*|yacc*) echo "You should only need it if you modified a '.y' file." echo "You may want to install the GNU Bison package:" echo "<$gnu_software_URL/bison/>" ;; lex*|flex*) echo "You should only need it if you modified a '.l' file." echo "You may want to install the Fast Lexical Analyzer package:" echo "<$flex_URL>" ;; help2man*) echo "You should only need it if you modified a dependency" \ "of a man page." echo "You may want to install the GNU Help2man package:" echo "<$gnu_software_URL/help2man/>" ;; makeinfo*) echo "You should only need it if you modified a '.texi' file, or" echo "any other file indirectly affecting the aspect of the manual." echo "You might want to install the Texinfo package:" echo "<$gnu_software_URL/texinfo/>" echo "The spurious makeinfo call might also be the consequence of" echo "using a buggy 'make' (AIX, DU, IRIX), in which case you might" echo "want to install GNU make:" echo "<$gnu_software_URL/make/>" ;; *) echo "You might have modified some files without having the proper" echo "tools for further handling them. Check the 'README' file, it" echo "often tells you about the needed prerequisites for installing" echo "this package. You may also peek at any GNU archive site, in" echo "case some other package contains this missing '$1' program." ;; esac } give_advice "$1" | sed -e '1s/^/WARNING: /' \ -e '2,$s/^/ /' >&2 # Propagate the correct exit status (expected to be 127 for a program # not found, 63 for a program that failed due to version mismatch). exit $st # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "scriptversion=" # time-stamp-format: "%:y-%02m-%02d.%02H" # time-stamp-time-zone: "UTC0" # time-stamp-end: "; # UTC" # End: openconnect-8.20/gnutls_tpm2.c0000644000076400007640000004354314100236700020154 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2018 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "gnutls.h" #include #include #include #ifdef HAVE_TSS2 #include /* * TPMKey ::= SEQUENCE { * type OBJECT IDENTIFIER, * emptyAuth [0] EXPLICIT BOOLEAN OPTIONAL, * parent INTEGER, * pubkey OCTET STRING, * privkey OCTET STRING * } */ const asn1_static_node tpmkey_asn1_tab[] = { { "TPMKey", 536875024, NULL }, { NULL, 1073741836, NULL }, { "TPMKey", 536870917, NULL }, { "type", 1073741836, NULL }, { "emptyAuth", 1610637316, NULL }, { NULL, 2056, "0"}, { "parent", 1073741827, NULL }, { "pubkey", 1073741831, NULL }, { "privkey", 7, NULL }, { NULL, 0, NULL } }; const asn1_static_node tpmkey_asn1_tab_old[] = { { "TPMKey", 536875024, NULL }, { NULL, 1073741836, NULL }, { "TPMKey", 536870917, NULL }, { "type", 1073741836, NULL }, { "emptyAuth", 1610637316, NULL }, { NULL, 2056, "0"}, { "parent", 1610637315, NULL }, { NULL, 2056, "1"}, { "pubkey", 1610637319, NULL }, { NULL, 2056, "2"}, { "privkey", 7, NULL }, { NULL, 0, NULL } }; static const char OID_legacy_loadableKey[] = "2.23.133.10.2"; static const char OID_loadableKey[] = "2.23.133.10.1.3"; #if GNUTLS_VERSION_NUMBER < 0x030600 static int tpm2_rsa_sign_fn(gnutls_privkey_t key, void *_certinfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { return tpm2_rsa_sign_hash_fn(key, GNUTLS_SIGN_UNKNOWN, _certinfo, 0, data, sig); } static int tpm2_ec_sign_fn(gnutls_privkey_t key, void *_certinfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; gnutls_sign_algorithm_t algo; switch (data->size) { case SHA1_SIZE: algo = GNUTLS_SIGN_ECDSA_SHA1; break; case SHA256_SIZE: algo = GNUTLS_SIGN_ECDSA_SHA256; break; case SHA384_SIZE: algo = GNUTLS_SIGN_ECDSA_SHA384; break; case SHA512_SIZE: algo = GNUTLS_SIGN_ECDSA_SHA512; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown TPM2 EC digest size %d\n"), data->size); return GNUTLS_E_PK_SIGN_FAILED; } return tpm2_ec_sign_hash_fn(key, algo, certinfo, 0, data, sig); } #endif #if GNUTLS_VERSION_NUMBER >= 0x030600 static int rsa_key_info(gnutls_privkey_t key, unsigned int flags, void *_certinfo) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; if (flags & GNUTLS_PRIVKEY_INFO_PK_ALGO) return GNUTLS_PK_RSA; if (flags & GNUTLS_PRIVKEY_INFO_SIGN_ALGO) return GNUTLS_SIGN_RSA_RAW; int bits = tpm2_rsa_key_bits(vpninfo, certinfo); if (flags & GNUTLS_PRIVKEY_INFO_PK_ALGO_BITS) return bits; if (flags & GNUTLS_PRIVKEY_INFO_HAVE_SIGN_ALGO) { gnutls_sign_algorithm_t algo = GNUTLS_FLAGS_TO_SIGN_ALGO(flags); switch (algo) { case GNUTLS_SIGN_RSA_RAW: case GNUTLS_SIGN_RSA_SHA1: case GNUTLS_SIGN_RSA_SHA256: case GNUTLS_SIGN_RSA_SHA384: case GNUTLS_SIGN_RSA_SHA512: return 1; /* Only support RSA-PSS for a given hash if the key is large * enough, since RFC8446 mandates that the salt length MUST * equal the digest output length. So we need 2N + 2 bytes. */ case GNUTLS_SIGN_RSA_PSS_SHA256: case GNUTLS_SIGN_RSA_PSS_RSAE_SHA256: if (bits >= (SHA256_SIZE * 16) + 16) return 1; /* Fall through */ case GNUTLS_SIGN_RSA_PSS_SHA384: case GNUTLS_SIGN_RSA_PSS_RSAE_SHA384: if (bits >= (SHA384_SIZE * 16) + 16) return 1; /* Fall through */ case GNUTLS_SIGN_RSA_PSS_SHA512: case GNUTLS_SIGN_RSA_PSS_RSAE_SHA512: if (bits >= (SHA512_SIZE * 16) + 16) return 1; /* Fall through */ default: vpn_progress(vpninfo, PRG_DEBUG, _("Not supporting EC sign algo %s\n"), gnutls_sign_get_name(algo)); return 0; } } return -1; } #endif #if GNUTLS_VERSION_NUMBER >= 0x030400 static int ec_key_info(gnutls_privkey_t key, unsigned int flags, void *_certinfo) { if (flags & GNUTLS_PRIVKEY_INFO_PK_ALGO) return GNUTLS_PK_EC; #ifdef GNUTLS_PRIVKEY_INFO_HAVE_SIGN_ALGO if (flags & GNUTLS_PRIVKEY_INFO_HAVE_SIGN_ALGO) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; uint16_t tpm2_curve = tpm2_key_curve(vpninfo, certinfo); gnutls_sign_algorithm_t algo = GNUTLS_FLAGS_TO_SIGN_ALGO(flags); switch (algo) { case GNUTLS_SIGN_ECDSA_SHA1: case GNUTLS_SIGN_ECDSA_SHA256: return 1; case GNUTLS_SIGN_ECDSA_SECP256R1_SHA256: return tpm2_curve == 0x0003; /* TPM2_ECC_NIST_P256 */ case GNUTLS_SIGN_ECDSA_SECP384R1_SHA384: return tpm2_curve == 0x0004; /* TPM2_ECC_NIST_P384 */ case GNUTLS_SIGN_ECDSA_SECP521R1_SHA512: return tpm2_curve == 0x0005; /* TPM2_ECC_NIST_P521 */ default: vpn_progress(vpninfo, PRG_DEBUG, _("Not supporting EC sign algo %s\n"), gnutls_sign_get_name(algo)); return 0; } } #endif if (flags & GNUTLS_PRIVKEY_INFO_SIGN_ALGO) return GNUTLS_SIGN_ECDSA_SHA256; return -1; } #endif static int decode_data(ASN1_TYPE n, gnutls_datum_t *r) { ASN1_DATA_NODE d; int len, lenlen; if (!n) return -EINVAL; if (asn1_read_node_value(n, &d) != ASN1_SUCCESS) return -EINVAL; len = asn1_get_length_der(d.value, d.value_len, &lenlen); if (len < 0) return -EINVAL; r->data = (unsigned char *)d.value + lenlen; r->size = len; return 0; } int load_tpm2_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig) { gnutls_datum_t asn1, pubdata, privdata; ASN1_TYPE tpmkey_def = ASN1_TYPE_EMPTY, tpmkey = ASN1_TYPE_EMPTY; const char *oid = NULL; char value_buf[16]; int value_buflen; int emptyauth = 0; unsigned int parent; int err, ret = -EINVAL; const asn1_static_node *asn1tab; err = gnutls_pem_base64_decode_alloc("TSS2 PRIVATE KEY", fdata, &asn1); if (!err) { asn1tab = tpmkey_asn1_tab; oid = OID_loadableKey; } else { if (gnutls_pem_base64_decode_alloc("TSS2 KEY BLOB", fdata, &asn1)) { /* Report the first error */ vpn_progress(vpninfo, PRG_ERR, _("Error decoding TSS2 key blob: %s\n"), gnutls_strerror(err)); return -EINVAL; } asn1tab = tpmkey_asn1_tab_old; oid = OID_legacy_loadableKey; } err = asn1_array2tree(asn1tab, &tpmkey_def, NULL); if (err != ASN1_SUCCESS) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create ASN.1 type for TPM2: %s\n"), asn1_strerror(err)); goto out_asn1; } asn1_create_element(tpmkey_def, "TPMKey.TPMKey", &tpmkey); err = asn1_der_decoding(&tpmkey, asn1.data, asn1.size, NULL); if (err != ASN1_SUCCESS) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decode TPM2 key ASN.1: %s\n"), asn1_strerror(err)); goto out_tpmkey; } value_buflen = sizeof(value_buf); if (asn1_read_value(tpmkey, "type", value_buf, &value_buflen)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 key type OID: %s\n"), asn1_strerror(err)); goto out_tpmkey; } if (strncmp(value_buf, oid, value_buflen)) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 key has unknown type OID %s not %s\n"), value_buf, oid); goto out_tpmkey; } value_buflen = sizeof(value_buf); if (!asn1_read_value(tpmkey, "emptyAuth", value_buf, &value_buflen) && !strcmp(value_buf, "TRUE")) emptyauth = 1; memset(value_buf, 0, 5); value_buflen = 5; err = asn1_read_value(tpmkey, "parent", value_buf, &value_buflen); if (err == ASN1_ELEMENT_NOT_FOUND) parent = 0x40000001; // RH_OWNER else if (err != ASN1_SUCCESS) { badparent: vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 key parent: %s\n"), asn1_strerror(err)); goto out_tpmkey; } else { int i = 0; parent = 0; if (value_buflen == 5) { if (value_buf[0]) goto badparent; /* Skip the leading zero */ i++; } for ( ; i < value_buflen; i++) { parent <<= 8; parent |= value_buf[i]; } } if (decode_data(asn1_find_node(tpmkey, "pubkey"), &pubdata) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 pubkey element\n")); goto out_tpmkey; } if (decode_data(asn1_find_node(tpmkey, "privkey"), &privdata) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse TPM2 privkey element\n")); goto out_tpmkey; } vpn_progress(vpninfo, PRG_DEBUG, _("Parsed TPM2 key with parent %x, emptyauth %d\n"), parent, emptyauth); /* Now we've extracted what we need from the ASN.1, invoke the * actual TPM2 code (whichever implementation we end up with */ ret = install_tpm2_key(vpninfo, certinfo, pkey, pkey_sig, parent, emptyauth, asn1tab == tpmkey_asn1_tab_old, &privdata, &pubdata); if (ret < 0) goto out_tpmkey; gnutls_privkey_init(pkey); switch(ret) { case GNUTLS_PK_RSA: #if GNUTLS_VERSION_NUMBER >= 0x030600 gnutls_privkey_import_ext4(*pkey, certinfo, NULL, tpm2_rsa_sign_hash_fn, NULL, NULL, rsa_key_info, 0); #else gnutls_privkey_import_ext(*pkey, GNUTLS_PK_RSA, certinfo, tpm2_rsa_sign_fn, NULL, 0); #endif break; case GNUTLS_PK_ECC: #if GNUTLS_VERSION_NUMBER >= 0x030600 gnutls_privkey_import_ext4(*pkey, certinfo, NULL, tpm2_ec_sign_hash_fn, NULL, NULL, ec_key_info, 0); #elif GNUTLS_VERSION_NUMBER >= 0x030400 gnutls_privkey_import_ext3(*pkey, certinfo, tpm2_ec_sign_fn, NULL, NULL, ec_key_info, 0); #else gnutls_privkey_import_ext(*pkey, GNUTLS_PK_EC, certinfo, tpm2_ec_sign_fn, NULL, 0); #endif break; } ret = 0; out_tpmkey: asn1_delete_structure(&tpmkey); asn1_delete_structure(&tpmkey_def); out_asn1: free(asn1.data); return ret; } #if GNUTLS_VERSION_NUMBER < 0x030600 static void append_bignum(struct oc_text_buf *sig_der, const gnutls_datum_t *d) { unsigned char derlen[2]; buf_append_bytes(sig_der, "\x02", 1); // INTEGER derlen[0] = d->size; /* If it might be interpreted as negative, prepend a zero */ if (d->data[0] >= 0x80) { derlen[0]++; derlen[1] = 0; buf_append_bytes(sig_der, derlen, 2); } else { buf_append_bytes(sig_der, derlen, 1); } buf_append_bytes(sig_der, d->data, d->size); } int oc_gnutls_encode_rs_value(gnutls_datum_t *sig, const gnutls_datum_t *sig_r, const gnutls_datum_t *sig_s) { struct oc_text_buf *sig_der = NULL; /* * Create the DER-encoded SEQUENCE containing R and S: * * DSASignatureValue ::= SEQUENCE { * r INTEGER, * s INTEGER * } */ sig_der = buf_alloc(); buf_append_bytes(sig_der, "\x30\x80", 2); // SEQUENCE, indeterminate length append_bignum(sig_der, sig_r); append_bignum(sig_der, sig_s); /* If the length actually fits in one byte (which it should), do * it that way. Else, leave it indeterminate and add two * end-of-contents octets to mark the end of the SEQUENCE. */ if (!buf_error(sig_der) && sig_der->pos <= 0x80) sig_der->data[1] = sig_der->pos - 2; else { buf_append_bytes(sig_der, "\0\0", 2); if (buf_error(sig_der)) goto out; } sig->data = (void *)sig_der->data; sig->size = sig_der->pos; sig_der->data = NULL; out: return buf_free(sig_der); } #endif /* GnuTLS < 3.6.0 */ /* EMSA-PKCS1-v1_5 padding in accordance with RFC3447 §9.2 */ #define PKCS1_PAD_OVERHEAD 11 static int oc_pkcs1_pad(struct openconnect_info *vpninfo, unsigned char *buf, int size, const gnutls_datum_t *data) { if (data->size + PKCS1_PAD_OVERHEAD > size) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 digest too large: %d > %d\n"), data->size, size - PKCS1_PAD_OVERHEAD); return GNUTLS_E_PK_SIGN_FAILED; } buf[0] = 0; buf[1] = 1; memset(buf + 2, 0xff, size - data->size - 3); buf[size - data->size - 1] = 0; memcpy(buf + size - data->size, data->data, data->size); return 0; } #if GNUTLS_VERSION_NUMBER >= 0x030600 /* EMSA-PSS encoding in accordance with RFC3447 §9.1 */ static int oc_pss_mgf1_pad(struct openconnect_info *vpninfo, gnutls_digest_algorithm_t dig, unsigned char *emBuf, int emLen, const gnutls_datum_t *mHash, int keybits) { gnutls_hash_hd_t hashctx = NULL; int err = GNUTLS_E_PK_SIGN_FAILED; /* The emBits for EMSA-PSS encoding is actually one *fewer* bit than * the RSA modulus. As RFC3447 §8.1.1 points out, "the octet length * of EM will be one less than k if modBits - 1 is divisible by 8 * and equal to k otherwise". Where k is the input emLen, which we * thus need to adjust before using it as emLen for the following * operations. Not that it matters much since I don't think the TPM * can cope with RSA keys whose modulus isn't a multiple of 8 bits * anyway. */ int msbits = (keybits - 1) & 7; if (!msbits) { *(emBuf++) = 0; emLen--; } /* GnuTLS gives us a predigested mHash from which we create M' and * continue the process. Can we infer all the PSS parameters from * the digest size, including the salt size? Or does GnuTLS need * a gnutls_privkey_import_ext5() which lets us have the params too? * Better still, could GnuTLS just do this all for us and we only * do a raw signature — really raw, unlike GNUTLS_SIGN_RSA_RAW * which AIUI is actually padded. */ /* Actually, RFC8446 §4.2.3 mandates that the salt length MUST be * equal to the length of the output of the digest algorithm. So * truncating is it *wrong*. * * • https://gitlab.com/gnutls/gnutls/-/issues/1258 * • https://github.com/openssl/openssl/issues/16167 */ int sLen = mHash->size; if (sLen + mHash->size > emLen - 2) { vpn_progress(vpninfo, PRG_ERR, _("PSS encoding failed; hash size %d too large for RSA key %d\n"), mHash->size, emLen); return GNUTLS_E_PK_SIGN_FAILED; } /* * We don't truncate salt since RFC8446 forbids it for TLSv1.3 and * that's all we are using it for. * * if (sLen + mHash->size > emLen - 2) * sLen = emLen - 2 - mHash->size; */ char salt[SHA512_SIZE]; if (sLen) { err = gnutls_rnd(GNUTLS_RND_NONCE, salt, sLen); if (err) goto out; } /* Hash M' (8 zeroes || mHash || salt) into its place in EM */ if ((err = gnutls_hash_init(&hashctx, dig)) || (err = gnutls_hash(hashctx, "\0\0\0\0\0\0\0\0", 8)) || (err = gnutls_hash(hashctx, mHash->data, mHash->size)) || (sLen && (err = gnutls_hash(hashctx, salt, sLen)))) goto out; int maskedDBLen = emLen - mHash->size - 1; gnutls_hash_output(hashctx, emBuf + maskedDBLen); emBuf[emLen - 1] = 0xbc; /* Although gnutls_hash_output() is supposed to reset the context, * it doesn't actually seem to work at least for SHA384; the later * gnutls_hash_copy() ends up wrong somehow, and gives incorrect * output. Unless we completely destroy the context and make a * new one. https://gitlab.com/gnutls/gnutls/-/issues/1257 */ gnutls_hash_deinit(hashctx, NULL); err = gnutls_hash_init(&hashctx, dig); if (err) { hashctx = NULL; goto out; } /* Now the MGF1 function as defined in RFC3447 Appendix B, although * it's somewhat easier to read in NIST SP 800-56B §7.2.2.2. * * We repeatedly hash (M' || C) where C is an incrementing 32-bit * counter, so hash M' first and then use gnutls_hash_copy() each * time to add C to the copy. */ err = gnutls_hash(hashctx, emBuf + maskedDBLen, mHash->size); if (err) goto out; int mgflen = 0, mgf_count = 0; while (mgflen < maskedDBLen) { gnutls_hash_hd_t ctx2 = gnutls_hash_copy(hashctx); if (!ctx2) { err = GNUTLS_E_PK_SIGN_FAILED; goto out; } uint32_t be_count = htonl(mgf_count++); err = gnutls_hash(ctx2, &be_count, sizeof(be_count)); if (err) { gnutls_hash_deinit(ctx2, NULL); goto out; } if (mgflen + mHash->size <= maskedDBLen) { gnutls_hash_deinit(ctx2, emBuf + mgflen); mgflen += mHash->size; } else { char md[SHA512_SIZE]; gnutls_hash_deinit(ctx2, md); memcpy(emBuf + mgflen, md, maskedDBLen - mgflen); mgflen = maskedDBLen; } } /* Back to EMSA-PSS-ENCODE step 10. The MGF result was directly placed * into emBuf, so now XOR with DB, which is (zeroes || 0x01 || salt) */ int dst = maskedDBLen - 1; while (sLen--) emBuf[dst--] ^= salt[sLen]; emBuf[dst] ^= 0x01; /* Now mask out the high bits. In the case where msbits is zero, we * skipped the entire first byte so do nothing. */ if (msbits) emBuf[0] &= 0xFF >> (8 - msbits); err = 0; out: if (hashctx) gnutls_hash_deinit(hashctx, NULL); return err; } #endif int oc_pad_rsasig(struct openconnect_info *vpninfo, gnutls_sign_algorithm_t algo, unsigned char *buf, int size, const gnutls_datum_t *data, int keybits) { switch(algo) { case GNUTLS_SIGN_UNKNOWN: case GNUTLS_SIGN_RSA_SHA1: case GNUTLS_SIGN_RSA_SHA256: case GNUTLS_SIGN_RSA_SHA384: case GNUTLS_SIGN_RSA_SHA512: return oc_pkcs1_pad(vpninfo, buf, size, data); #if GNUTLS_VERSION_NUMBER >= 0x030600 /* Really PKCS#1.5 padding, yes. */ case GNUTLS_SIGN_RSA_RAW: return oc_pkcs1_pad(vpninfo, buf, size, data); case GNUTLS_SIGN_RSA_PSS_SHA256: case GNUTLS_SIGN_RSA_PSS_RSAE_SHA256: if (data->size != SHA256_SIZE) return GNUTLS_E_PK_SIGN_FAILED; return oc_pss_mgf1_pad(vpninfo, GNUTLS_DIG_SHA256, buf, size, data, keybits); case GNUTLS_SIGN_RSA_PSS_SHA384: case GNUTLS_SIGN_RSA_PSS_RSAE_SHA384: if (data->size != SHA384_SIZE) return GNUTLS_E_PK_SIGN_FAILED; return oc_pss_mgf1_pad(vpninfo, GNUTLS_DIG_SHA384, buf, size, data, keybits); case GNUTLS_SIGN_RSA_PSS_SHA512: case GNUTLS_SIGN_RSA_PSS_RSAE_SHA512: if (data->size != SHA512_SIZE) return GNUTLS_E_PK_SIGN_FAILED; return oc_pss_mgf1_pad(vpninfo, GNUTLS_DIG_SHA512, buf, size, data, keybits); #endif /* 3.6.0+ */ default: vpn_progress(vpninfo, PRG_ERR, _("TPMv2 RSA sign called for unknown algorithm %s\n"), gnutls_sign_get_name(algo)); return GNUTLS_E_PK_SIGN_FAILED; } } #endif /* HAVE_TSS2 */ openconnect-8.20/openconnect-internal.h0000644000076400007640000015354014204467463022050 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_INTERNAL_H__ #define __OPENCONNECT_INTERNAL_H__ #define __OPENCONNECT_PRIVATE__ /* * We need to include or before openconnect.h. * Indeed openconnect.h is specifically intended not to be self-sufficient, * so that end-users can choose between and . */ #ifdef _WIN32 #include #endif #include "openconnect.h" #include "json.h" #if defined(OPENCONNECT_OPENSSL) #include #include /* Ick */ #if OPENSSL_VERSION_NUMBER >= 0x00909000L #define method_const const #else #define method_const #endif #endif #if defined(OPENCONNECT_GNUTLS) #include #include #include #include #endif #ifdef HAVE_ICONV #include #include #endif #ifdef LIBPROXY_HDR #include LIBPROXY_HDR #endif #ifdef HAVE_LIBSTOKEN #include #endif #ifdef HAVE_GSSAPI #include GSSAPI_HDR #endif #ifdef HAVE_LIBPSKC #include #endif #ifdef HAVE_LIBP11 #include #endif #ifdef HAVE_EPOLL #include #endif #ifdef ENABLE_NLS #include #define _(s) dgettext("openconnect", s) #else #define _(s) ((char *)(s)) #endif #define N_(s) s #include #include #ifdef _WIN32 #ifndef _Out_cap_c_ #define _Out_cap_c_(sz) #endif #ifndef _Ret_bytecount_ #define _Ret_bytecount_(sz) #endif #ifndef _Post_maybenull_ #define _Post_maybenull_ #endif #include "wintun.h" #include #ifndef SECURITY_WIN32 #define SECURITY_WIN32 1 #endif #include #else #include #include #include #include #include #include #endif #include #include #include #include #include #include /* Equivalent of "/dev/null" on Windows. * See https://stackoverflow.com/a/44163934 */ #ifdef _WIN32 #define DEVNULL "NUL:" #else #define DEVNULL "/dev/null" #endif #define SHA512_SIZE 64 #define SHA384_SIZE 48 #define SHA256_SIZE 32 #define SHA1_SIZE 20 #define MD5_SIZE 16 /* FreeBSD provides this in */ #ifndef MAX #define MAX(x,y) (((x)>(y))?(x):(y)) #endif #ifndef MIN #define MIN(x,y) (((x)<(y))?(x):(y)) #endif /* At least MinGW headers seem not to provide IPPROTO_IPIP */ #ifndef IPPROTO_IPIP #define IPPROTO_IPIP 0x04 #endif #ifdef HAVE_VHOST #include #include struct oc_vring { struct vring_desc *desc; struct vring_avail *avail; struct vring_used *used; uint16_t seen_used; }; #endif #define ARRAY_SIZE(x) (sizeof(x) / sizeof((x)[0])) /****************************************************************************/ struct pkt { int alloc_len; int len; struct pkt *next; union { struct { uint32_t spi; uint32_t seq; unsigned char iv[16]; unsigned char payload[]; } esp; struct { unsigned char pad[2]; unsigned char rec[2]; unsigned char kmp[20]; } oncp; struct { unsigned char pad[16]; unsigned char hdr[8]; } cstp; struct { unsigned char pad[8]; unsigned char hdr[16]; } gpst; struct { unsigned char pad[8]; uint32_t vendor; uint32_t type; uint32_t len; uint32_t ident; } pulse; struct { uint32_t hlen; /* variable-length */ uint16_t proto; unsigned char hdr[18]; } ppp; #ifdef HAVE_VHOST struct { unsigned char pad[12]; struct virtio_net_hdr_mrg_rxbuf h; } virtio; #endif }; unsigned char data[]; }; #define pkt_offset(field) ((intptr_t)&((struct pkt *)NULL)->field) #define pkt_from_hdr(addr, field) ((struct pkt *) ((intptr_t)(addr) - pkt_offset(field) )) #define REKEY_NONE 0 #define REKEY_TUNNEL 1 #define REKEY_SSL 2 #define KA_NONE 0 #define KA_DPD 1 #define KA_DPD_DEAD 2 #define KA_KEEPALIVE 3 #define KA_REKEY 4 #define DTLS_NOSECRET 0 /* Random secret has not been generated yet */ #define DTLS_SECRET 1 /* Secret is present, ready to attempt DTLS */ #define DTLS_DISABLED 2 /* DTLS was disabled on the *client* side */ #define DTLS_SLEEPING 3 /* For ESP, sometimes sending probes */ #define DTLS_CONNECTING 4 /* DTLS (re)handshaking. Not used for ESP */ #define DTLS_CONNECTED 5 /* Transport connected but not yet enabled */ #define DTLS_ESTABLISHED 6 /* Data path fully established */ /* Not to be confused with OC_PROTO_xxx flags which are library-visible */ #define PROTO_ANYCONNECT 0 #define PROTO_NC 1 #define PROTO_GPST 2 #define PROTO_PULSE 3 #define PROTO_F5 4 #define PROTO_FORTINET 5 #define PROTO_NULLPPP 6 #define PROTO_ARRAY 7 /* All supported PPP packet framings/encapsulations */ #define PPP_ENCAP_RFC1661 1 /* Plain/synchronous/pre-framed PPP (RFC1661) */ #define PPP_ENCAP_RFC1662_HDLC 2 /* PPP with HDLC-like framing (RFC1662) */ #define PPP_ENCAP_F5 3 /* F5 BigIP no HDLC */ #define PPP_ENCAP_F5_HDLC 4 /* F5 BigIP HDLC */ #define PPP_ENCAP_FORTINET 5 /* Fortinet no HDLC */ #define PPP_ENCAP_MAX PPP_ENCAP_FORTINET #define COMPR_DEFLATE (1<<0) #define COMPR_LZS (1<<1) #define COMPR_LZ4 (1<<2) #define COMPR_LZO (1<<3) #define COMPR_MAX COMPR_LZO #ifdef HAVE_LZ4 #define COMPR_STATELESS (COMPR_LZS | COMPR_LZ4 | COMPR_LZO) #else #define COMPR_STATELESS (COMPR_LZS) #endif #define COMPR_ALL (COMPR_STATELESS | COMPR_DEFLATE) #define DTLS_APP_ID_EXT 48018 struct keepalive_info { int dpd; int keepalive; int rekey; int rekey_method; time_t last_rekey; time_t last_tx; time_t last_rx; time_t last_dpd; }; struct pin_cache { struct pin_cache *next; char *token; char *pin; }; struct oc_text_buf { char *data; int pos; int buf_len; int error; }; #define TLS_MASTER_KEY_SIZE 48 #define RECONNECT_INTERVAL_MIN 10 #define RECONNECT_INTERVAL_MAX 100 #define HTTP_NO_FLAGS 0 #define HTTP_REDIRECT 1 #define HTTP_REDIRECT_TO_GET 2 #define HTTP_BODY_ON_ERROR 4 #define REDIR_TYPE_NONE 0 #define REDIR_TYPE_NEWHOST 1 #define REDIR_TYPE_LOCAL 2 #define AUTH_TYPE_GSSAPI 0 #define AUTH_TYPE_NTLM 1 #define AUTH_TYPE_DIGEST 2 #define AUTH_TYPE_BASIC 3 #define AUTH_TYPE_BEARER 4 #define MAX_AUTH_TYPES 5 #define AUTH_DEFAULT_DISABLED -3 #define AUTH_DISABLED -2 #define AUTH_FAILED -1 /* Failed */ #define AUTH_UNSEEN 0 /* Server has not offered it */ #define AUTH_AVAILABLE 1 /* Server has offered it, we have not tried it */ /* Individual auth types may use 2 onwards for their own state */ #define AUTH_IN_PROGRESS 2 /* In-progress attempt */ struct http_auth_state { int state; char *challenge; union { #ifdef HAVE_GSSAPI struct { gss_name_t gss_target_name; gss_ctx_id_t gss_context; }; #endif #ifdef _WIN32 struct { CredHandle ntlm_sspi_cred; CtxtHandle ntlm_sspi_ctx; }; struct { CredHandle sspi_cred; CtxtHandle sspi_ctx; SEC_WCHAR *sspi_target_name; }; #else struct { int ntlm_helper_fd; }; #endif }; }; #define TLS_OVERHEAD 5 /* packet + header */ #define DTLS_OVERHEAD (1 /* packet + header */ + 13 /* DTLS header */ + \ 20 /* biggest supported MAC (SHA1) */ + 32 /* biggest supported IV (AES-256) */ + \ 16 /* max padding */) struct esp { #if defined(OPENCONNECT_GNUTLS) gnutls_cipher_hd_t cipher; gnutls_hmac_hd_t hmac; #elif defined(OPENCONNECT_OPENSSL) HMAC_CTX *hmac; EVP_CIPHER_CTX *cipher; #endif uint64_t seq_backlog; uint64_t seq; uint32_t spi; /* Stored network-endian */ unsigned char enc_key[0x40]; /* Encryption key */ unsigned char hmac_key[0x40]; /* HMAC key */ unsigned char iv[16]; }; struct oc_pcsc_ctx; struct oc_tpm1_ctx; struct oc_tpm2_ctx; struct openconnect_info; struct cert_info { struct openconnect_info *vpninfo; char *cert; char *key; char *password; #if defined(OPENCONNECT_GNUTLS) && defined(HAVE_TROUSERS) struct oc_tpm1_ctx *tpm1; #endif #if defined(OPENCONNECT_GNUTLS) && defined (HAVE_TSS2) struct oc_tpm2_ctx *tpm2; #endif }; struct pkt_q { struct pkt *head; struct pkt **tail; int count; }; struct vpn_proto; struct openconnect_info { const struct vpn_proto *proto; #ifdef HAVE_ICONV iconv_t ic_legacy_to_utf8; iconv_t ic_utf8_to_legacy; #endif char *redirect_url; int redirect_type; unsigned char esp_hmac; unsigned char esp_enc; unsigned char esp_compr; uint32_t esp_replay_protect; uint32_t esp_lifetime_bytes; uint32_t esp_lifetime_seconds; uint32_t esp_ssl_fallback; int current_esp_in; int old_esp_maxseq; struct esp esp_in[2]; struct esp esp_out; int enc_key_len; int hmac_key_len; int hmac_out_len; int esp_magic_af; unsigned char esp_magic[16]; /* GlobalProtect magic ping address (network-endian) */ struct oc_ppp *ppp; struct oc_text_buf *ppp_tls_connect_req; struct oc_text_buf *ppp_dtls_connect_req; int tncc_fd; /* For Juniper TNCC */ char *platname; char *mobile_platform_version; char *mobile_device_type; char *mobile_device_uniqueid; char *csd_token; char *csd_ticket; char *csd_stuburl; char *csd_starturl; char *csd_waiturl; char *csd_preurl; char *csd_scriptname; xmlNode *opaque_srvdata; char *profile_url; char *profile_sha1; #ifdef LIBPROXY_HDR pxProxyFactory *proxy_factory; #endif char *proxy_type; char *proxy; int proxy_port; int proxy_fd; char *proxy_user; char *proxy_pass; char *bearer_token; int proxy_close_during_auth; int retry_on_auth_fail; int try_http_auth; struct http_auth_state http_auth[MAX_AUTH_TYPES]; struct http_auth_state proxy_auth[MAX_AUTH_TYPES]; char *localname; char *hostname; /* This is the original hostname (or IP address) * we were asked to connect to */ char *unique_hostname; /* This is the IP address of the actual host * that we connected to; the result of the * DNS lookup. We do this so that we can be * sure we reconnect to the same server we * authenticated to. */ int port; char *urlpath; /* The application might ask us to recreate a connection URL, * and we own the string so cache it for later freeing. */ struct oc_text_buf *connect_urlbuf; int cert_expire_warning; struct cert_info certinfo[1]; char *cafile; unsigned no_system_trust; const char *xmlconfig; char xmlsha1[(SHA1_SIZE * 2) + 1]; char *authgroup; int nopasswd; int xmlpost; char *dtls_ciphers; char *dtls12_ciphers; char *csd_wrapper; int trojan_interval; time_t last_trojan; int no_http_keepalive; int dump_http_traffic; int token_mode; int token_bypassed; int token_tries; time_t token_time; #ifdef HAVE_LIBSTOKEN struct stoken_ctx *stoken_ctx; char *stoken_pin; int stoken_concat_pin; int stoken_interval; #endif #ifdef HAVE_LIBPSKC pskc_t *pskc; pskc_key_t *pskc_key; #endif char *oath_secret; size_t oath_secret_len; enum { OATH_ALG_HMAC_SHA1 = 0, OATH_ALG_HMAC_SHA256, OATH_ALG_HMAC_SHA512, } oath_hmac_alg; enum { HOTP_SECRET_BASE32 = 1, HOTP_SECRET_RAW, HOTP_SECRET_HEX, HOTP_SECRET_PSKC, } hotp_secret_format; /* We need to give it back in the same form */ #ifdef HAVE_LIBPCSCLITE struct oc_pcsc_ctx *pcsc; unsigned char yubikey_pwhash[16]; #endif openconnect_lock_token_vfn lock_token; openconnect_unlock_token_vfn unlock_token; void *tok_cbdata; void *peer_cert; /* The SHA1 and SHA256 hashes of the peer's public key */ uint8_t peer_cert_sha1_raw[SHA1_SIZE]; uint8_t peer_cert_sha256_raw[SHA256_SIZE]; /* this value is cache for openconnect_get_peer_cert_hash */ char *peer_cert_hash; void *cert_list_handle; int cert_list_size; char *cookie; /* Pointer to within cookies list */ struct oc_vpn_option *cookies; struct oc_vpn_option *cstp_options; struct oc_vpn_option *dtls_options; struct oc_vpn_option *script_env; struct oc_vpn_option *csd_env; unsigned pfs; unsigned no_tls13; unsigned allow_insecure_crypto; /* Allow 3DES and RC4 (known-insecure, but the best that some ancient servers can do) */ #if defined(OPENCONNECT_OPENSSL) #ifdef HAVE_LIBP11 PKCS11_CTX *pkcs11_ctx; PKCS11_SLOT *pkcs11_slot_list; unsigned int pkcs11_slot_count; PKCS11_SLOT *pkcs11_cert_slot; unsigned char *pkcs11_cert_id; size_t pkcs11_cert_id_len; #endif X509 *cert_x509; SSL_CTX *https_ctx; SSL *https_ssl; BIO_METHOD *ttls_bio_meth; #elif defined(OPENCONNECT_GNUTLS) gnutls_session_t https_sess; gnutls_session_t eap_ttls_sess; gnutls_certificate_credentials_t https_cred; gnutls_psk_client_credentials_t psk_cred; char local_cert_md5[MD5_SIZE * 2 + 1]; /* For CSD */ #endif /* OPENCONNECT_GNUTLS */ char *ciphersuite_config; struct oc_text_buf *ttls_pushbuf; uint8_t ttls_eap_ident; unsigned char *ttls_recvbuf; int ttls_recvpos; int ttls_recvlen; uint32_t ttls_msgleft; struct pin_cache *pin_cache; struct keepalive_info ssl_times; int owe_ssl_dpd_response; int deflate_pkt_size; /* It may need to be larger than MTU */ struct pkt *deflate_pkt; /* For compressing outbound packets into */ struct pkt *pending_deflated_pkt; /* The original packet associated with above */ struct pkt *current_ssl_pkt; /* Partially sent SSL packet */ int partial_rec_size; /* For tracking partially-received packets */ /* Packet buffers for receiving into */ struct pkt *cstp_pkt; struct pkt *dtls_pkt; struct pkt *tun_pkt; int pkt_trailer; /* How many bytes after payload for encryption (ESP HMAC) */ z_stream inflate_strm; uint32_t inflate_adler32; z_stream deflate_strm; uint32_t deflate_adler32; int disable_ipv6; int reconnect_timeout; int reconnect_interval; int dtls_attempt_period; time_t auth_expiration; time_t new_dtls_started; #if defined(OPENCONNECT_OPENSSL) SSL_CTX *dtls_ctx; SSL *dtls_ssl; #elif defined(OPENCONNECT_GNUTLS) /* Call this dtls_ssl rather than dtls_sess because it's just a pointer, and generic code in dtls.c wants to check if it's NULL or not or pass it to DTLS_SEND/DTLS_RECV. This way we have fewer ifdefs and accessor macros for it. */ gnutls_session_t dtls_ssl; #endif char *cstp_cipher; /* library-dependent description of TLS cipher */ char *dtls_cipher_desc; /* library-dependent description of DTLS cipher, cached for openconnect_get_dtls_cipher() */ int dtls_state; int dtls_need_reconnect; int tcp_blocked_for_udp; /* Some protocols explicitly *tell* the server * over the TCP channel to switch to UDP. */ struct keepalive_info dtls_times; unsigned char dtls_session_id[32]; unsigned char dtls_secret[TLS_MASTER_KEY_SIZE]; unsigned char dtls_app_id[32]; unsigned dtls_app_id_size; uint32_t ift_seq; int dtls12; /* For PPP protocols with anonymous DTLS, this being zero indicates that * the server *cannot* handle DTLSv1.2 and we mustn't even try to negotiate * it (e.g. F5 BIG-IP v15 and lower). If it's 1, we can try anything; * even DTLSv1.3. * * For AnyConnect, it means the Cisco server sent the X-DTLS12-CipherSuite * header, rather than X-DTLS-CipherSuite which indicates their DTLSv0.9. */ char *dtls_cipher; /* Only set for AnyConnect. Defines the session to be "resumed" * ("PSK-NEGOTIATE", or an OpenSSL cipher name). */ char *vpnc_script; #ifndef _WIN32 int uid_csd_given; uid_t uid_csd; gid_t gid_csd; uid_t uid; gid_t gid; #endif int use_tun_script; int script_tun; char *ifname; char *cmd_ifname; int reqmtu, basemtu; /* Local static configured values */ const char *banner; struct oc_ip_info ip_info; int cstp_basemtu; /* Returned by server */ int idle_timeout; /* Returned by server */ #ifdef _WIN32 long dtls_monitored, ssl_monitored, cmd_monitored, tun_monitored; HANDLE dtls_event, ssl_event, cmd_event; #else int _select_nfds; fd_set _select_rfds; fd_set _select_wfds; fd_set _select_efds; #ifdef HAVE_EPOLL int epoll_fd; int epoll_update; uint32_t tun_epoll, ssl_epoll, dtls_epoll, cmd_epoll; #ifdef HAVE_VHOST uint32_t vhost_call_epoll; #endif #endif #endif #ifdef __sun__ int ip_fd; int ip6_fd; #endif #ifdef HAVE_VHOST int vhost_ring_size; int vhost_fd, vhost_call_fd, vhost_kick_fd; struct oc_vring tx_vring, rx_vring; #endif #ifdef _WIN32 HMODULE wintun; wchar_t *ifname_w; WINTUN_ADAPTER_HANDLE wintun_adapter; WINTUN_SESSION_HANDLE wintun_session; HANDLE tun_fh; OVERLAPPED tun_rd_overlap, tun_wr_overlap; int tun_idx, tun_rd_pending; #else int tun_fd; #endif int ssl_fd; int dtls_fd; int dtls_tos_current; int dtls_pass_tos; int dtls_tos_proto, dtls_tos_optname; /* An optimisation for the case where our own code is the only * thing that *could* write to the cmd_fd, to avoid constantly * polling on it while we're busy shovelling packets. */ int need_poll_cmd_fd; int cmd_fd_internal; int cmd_fd; int cmd_fd_write; int got_cancel_cmd; int got_pause_cmd; char cancel_type; struct pkt_q free_queue; struct pkt_q incoming_queue; struct pkt_q outgoing_queue; struct pkt_q tcp_control_queue; /* Control packets to be sent via TCP */ int max_qlen; struct oc_stats stats; openconnect_stats_vfn stats_handler; socklen_t peer_addrlen; struct sockaddr *peer_addr; struct sockaddr *dtls_addr; int dtls_local_port; int req_compr; /* What we requested */ int cstp_compr; /* Accepted for CSTP */ int dtls_compr; /* Accepted for DTLS */ int is_dyndns; /* Attempt to redo DNS lookup on each CSTP reconnect */ char *useragent; char *version_string; const char *quit_reason; const char *delay_tunnel_reason; /* If non-null, provides a reason why protocol is not yet ready for tunnel setup */ enum { NO_DELAY_CLOSE = 0, DELAY_CLOSE_WAIT, DELAY_CLOSE_IMMEDIATE_CALLBACK, } delay_close; /* Delay close of mainloop */ int verbose; void *cbdata; openconnect_validate_peer_cert_vfn validate_peer_cert; openconnect_write_new_config_vfn write_new_config; openconnect_process_auth_form_vfn process_auth_form; openconnect_progress_vfn progress; openconnect_protect_socket_vfn protect_socket; openconnect_getaddrinfo_vfn getaddrinfo_override; openconnect_setup_tun_vfn setup_tun; openconnect_reconnected_vfn reconnected; int (*ssl_read)(struct openconnect_info *vpninfo, char *buf, size_t len); int (*ssl_gets)(struct openconnect_info *vpninfo, char *buf, size_t len); int (*ssl_write)(struct openconnect_info *vpninfo, char *buf, size_t len); }; struct vpn_proto { const char *name; const char *pretty_name; const char *description; const char *secure_cookie; const char *udp_protocol; int proto; unsigned int flags; int (*vpn_close_session)(struct openconnect_info *vpninfo, const char *reason); /* This does the full authentication, calling back as appropriate */ int (*obtain_cookie)(struct openconnect_info *vpninfo); /* Establish the TCP connection (and obtain configuration) */ int (*tcp_connect)(struct openconnect_info *vpninfo); int (*tcp_mainloop)(struct openconnect_info *vpninfo, int *timeout, int readable); /* Add headers common to each HTTP request */ void (*add_http_headers)(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* Set up the UDP (DTLS) connection. Doesn't actually *start* it. */ int (*udp_setup)(struct openconnect_info *vpninfo); /* This will actually complete the UDP connection setup/handshake on the wire, as well as transporting packets */ int (*udp_mainloop)(struct openconnect_info *vpninfo, int *timeout, int readable); /* Close the connection but leave the session setup so it restarts */ void (*udp_close)(struct openconnect_info *vpninfo); /* Close and destroy the (UDP) session */ void (*udp_shutdown)(struct openconnect_info *vpninfo); /* Send probe packets to start or maintain the (UDP) session */ int (*udp_send_probes)(struct openconnect_info *vpninfo); /* Catch probe packet confirming the (UDP) session */ int (*udp_catch_probe)(struct openconnect_info *vpninfo, struct pkt *p); }; static inline struct pkt *dequeue_packet(struct pkt_q *q) { struct pkt *ret = q->head; if (ret) { struct pkt *next = ret->next; if (!--q->count) q->tail = &q->head; q->head = next; } return ret; } static inline void requeue_packet(struct pkt_q *q, struct pkt *p) { p->next = q->head; q->head = p; if (!q->count++) q->tail = &p->next; } static inline int queue_packet(struct pkt_q *q, struct pkt *p) { *(q->tail) = p; p->next = NULL; q->tail = &p->next; return ++q->count; } static inline void init_pkt_queue(struct pkt_q *q) { q->tail = &q->head; } static inline struct pkt *alloc_pkt(struct openconnect_info *vpninfo, int len) { int alloc_len = sizeof(struct pkt) + len; if (vpninfo->free_queue.head && vpninfo->free_queue.head->alloc_len >= alloc_len) return dequeue_packet(&vpninfo->free_queue); if (alloc_len < 2048) alloc_len = 2048; struct pkt *pkt = malloc(alloc_len); if (pkt) pkt->alloc_len = alloc_len; return pkt; } static inline void free_pkt(struct openconnect_info *vpninfo, struct pkt *pkt) { if (!pkt) return; if (vpninfo->free_queue.count < vpninfo->max_qlen * 2) requeue_packet(&vpninfo->free_queue, pkt); else free(pkt); } #define vpn_progress(_v, lvl, ...) do { \ if ((_v)->verbose >= (lvl)) \ (_v)->progress((_v)->cbdata, lvl, __VA_ARGS__); \ } while(0) #define vpn_perror(vpninfo, msg) vpn_progress((vpninfo), PRG_ERR, "%s: %s\n", (msg), strerror(errno)) #ifdef _WIN32 #define monitor_read_fd(_v, _n) (_v->_n##_monitored |= FD_READ) #define monitor_write_fd(_v, _n) (_v->_n##_monitored |= FD_WRITE) #define monitor_except_fd(_v, _n) (_v->_n##_monitored |= FD_CLOSE) #define unmonitor_read_fd(_v, _n) (_v->_n##_monitored &= ~FD_READ) #define unmonitor_write_fd(_v, _n) (_v->_n##_monitored &= ~FD_WRITE) #define unmonitor_except_fd(_v, _n) (_v->_n##_monitored &= ~FD_CLOSE) #define monitor_fd_new(_v, _n) do { if (!_v->_n##_event) _v->_n##_event = CreateEvent(NULL, FALSE, FALSE, NULL); } while (0) #define read_fd_monitored(_v, _n) (_v->_n##_monitored & FD_READ) #define __unmonitor_fd(_v, _n) do { CloseHandle(_v->_n##_event); \ _v->_n##_event = (HANDLE)0; \ } while(0) #else #ifdef HAVE_EPOLL static inline void __sync_epoll_fd(struct openconnect_info *vpninfo, int fd, uint32_t *fd_evts) { if (vpninfo->epoll_fd >= 0 && fd >= 0) { struct epoll_event ev = { 0 }; ev.data.fd = fd; if (FD_ISSET(fd, &vpninfo->_select_rfds)) ev.events |= EPOLLIN; if (FD_ISSET(fd, &vpninfo->_select_wfds)) ev.events |= EPOLLOUT; if (ev.events != *fd_evts) { if (epoll_ctl(vpninfo->epoll_fd, EPOLL_CTL_MOD, fd, &ev)) { vpn_perror(vpninfo, "EPOLL_CTL_MOD"); close(vpninfo->epoll_fd); vpninfo->epoll_fd = -1; } *fd_evts = ev.events; } } } #define update_epoll_fd(_v, _n) __sync_epoll_fd(_v, _v->_n##_fd, &_v->_n##_epoll) static inline void __remove_epoll_fd(struct openconnect_info *vpninfo, int fd) { struct epoll_event ev = { 0 }; if (vpninfo->epoll_fd >= 0 && epoll_ctl(vpninfo->epoll_fd, EPOLL_CTL_DEL, fd, &ev) < 0 && errno != ENOENT) vpn_perror(vpninfo, "EPOLL_CTL_DEL"); /* No other action on error; if it truly matters we'll bail later * and fall back to select(). We also explicitly ignore ENOENT * because openconnect_close_https() will always unmonitor the * ssl_fd even when we never got to the point of using it in the * main loop and actually monitoring it. */ } #define __unmonitor_fd(_v, _n) do { \ __remove_epoll_fd(_v, _v->_n##_fd); \ _v->_n##_epoll = 0; } while(0) #else /* !HAVE_POLL */ #define __unmonitor_fd(_v, _n) do { } while(0) #endif static inline void __monitor_fd_event(struct openconnect_info *vpninfo, int fd, fd_set *set) { if (fd < 0 || FD_ISSET(fd, set)) return; FD_SET(fd, set); #ifdef HAVE_EPOLL vpninfo->epoll_update = 1; #endif } static inline void __unmonitor_fd_event(struct openconnect_info *vpninfo, int fd, fd_set *set) { if (fd < 0 || !FD_ISSET(fd, set)) return; FD_CLR(fd, set); #ifdef HAVE_EPOLL vpninfo->epoll_update = 1; #endif } #define monitor_read_fd(_v, _n) __monitor_fd_event(_v, _v->_n##_fd, &_v->_select_rfds) #define unmonitor_read_fd(_v, _n) __unmonitor_fd_event(_v, _v->_n##_fd, &_v->_select_rfds) #define monitor_write_fd(_v, _n) __monitor_fd_event(_v, _v->_n##_fd, &_v->_select_wfds) #define unmonitor_write_fd(_v, _n) __unmonitor_fd_event(_v, _v->_n##_fd, &_v->_select_wfds) #define monitor_except_fd(_v, _n) __monitor_fd_event(_v, _v->_n##_fd, &_v->_select_efds) #define unmonitor_except_fd(_v, _n) __unmonitor_fd_event(_v, _v->_n##_fd, &_v->_select_efds) static inline void __monitor_fd_new(struct openconnect_info *vpninfo, int fd) { if (vpninfo->_select_nfds <= fd) vpninfo->_select_nfds = fd + 1; #ifdef HAVE_EPOLL if (vpninfo->epoll_fd >= 0) { struct epoll_event ev = { 0 }; ev.data.fd = fd; if (epoll_ctl(vpninfo->epoll_fd, EPOLL_CTL_ADD, fd, &ev)) { vpn_perror(vpninfo, "EPOLL_CTL_ADD"); close(vpninfo->epoll_fd); vpninfo->epoll_fd = -1; } } #endif } #define monitor_fd_new(_v, _n) __monitor_fd_new(_v, _v->_n##_fd) #define read_fd_monitored(_v, _n) FD_ISSET(_v->_n##_fd, &_v->_select_rfds) #endif /* !WIN32 */ /* This is for all platforms */ #define unmonitor_fd(_v, _n) do { \ unmonitor_read_fd(_v, _n); \ unmonitor_write_fd(_v, _n); \ unmonitor_except_fd(_v, _n); \ __unmonitor_fd(_v, _n); \ } while(0) /* Key material for DTLS-PSK */ #define PSK_LABEL "EXPORTER-openconnect-psk" #define PSK_LABEL_SIZE (sizeof(PSK_LABEL) - 1) #define PSK_KEY_SIZE 32 /* Packet types */ #define AC_PKT_DATA 0 /* Uncompressed data */ #define AC_PKT_DPD_OUT 3 /* Dead Peer Detection */ #define AC_PKT_DPD_RESP 4 /* DPD response */ #define AC_PKT_DISCONN 5 /* Client disconnection notice */ #define AC_PKT_KEEPALIVE 7 /* Keepalive */ #define AC_PKT_COMPRESSED 8 /* Compressed data */ #define AC_PKT_TERM_SERVER 9 /* Server kick */ /* Encryption and HMAC algorithms (matching Juniper/Pulse binary encoding) */ #define ENC_AES_128_CBC 2 #define ENC_AES_256_CBC 5 #define HMAC_MD5 1 #define HMAC_SHA1 2 #define HMAC_SHA256 3 #define MAX_HMAC_SIZE 32 /* SHA256 */ #define MAX_IV_SIZE 16 #define MAX_ESP_PAD 17 /* Including the next-header field */ /****************************************************************************/ /* Oh Solaris how we hate thee! */ #ifdef HAVE_SUNOS_BROKEN_TIME #define time(x) openconnect__time(x) time_t openconnect__time(time_t *t); #endif #ifndef HAVE_VASPRINTF #define vasprintf openconnect__vasprintf int openconnect__vasprintf(char **strp, const char *fmt, va_list ap); #endif #ifndef HAVE_ASPRINTF #define asprintf openconnect__asprintf int openconnect__asprintf(char **strp, const char *fmt, ...); #endif #ifndef HAVE_GETLINE #define getline openconnect__getline ssize_t openconnect__getline(char **lineptr, size_t *n, FILE *stream); #endif #ifndef HAVE_STRCASESTR #define strcasestr openconnect__strcasestr char *openconnect__strcasestr(const char *haystack, const char *needle); #endif #ifndef HAVE_STRNDUP #undef strndup #define strndup openconnect__strndup char *openconnect__strndup(const char *s, size_t n); #endif #ifndef HAVE_STRCHRNUL #undef strchrnul #define strchrnul openconnect__strchrnul const char *openconnect__strchrnul(const char *s, int c); #endif #ifndef HAVE_INET_ATON #define inet_aton openconnect__inet_aton int openconnect__inet_aton(const char *cp, struct in_addr *addr); #endif static inline int set_sock_nonblock(int fd) { #ifdef _WIN32 unsigned long mode = 1; return ioctlsocket(fd, FIONBIO, &mode); #else return fcntl(fd, F_SETFL, fcntl(fd, F_GETFL) | O_NONBLOCK); #endif } static inline int set_fd_cloexec(int fd) { #ifdef _WIN32 return 0; /* Windows has O_INHERIT but... */ #else int ret = fcntl(fd, F_SETFD, fcntl(fd, F_GETFD) | FD_CLOEXEC); /* * Coverity gets really sad if we don't check the error here. * But really, we're doing this to be a 'good citizen' when * running as a library, and we aren't even going to bother * printing a debug message if it fails. We just don't care. */ if (ret) return ret; return 0; #endif } static inline int tun_is_up(struct openconnect_info *vpninfo) { #ifdef _WIN32 return vpninfo->tun_fh != NULL; #else return vpninfo->tun_fd != -1; #endif } #ifdef _WIN32 #define pipe(fds) _pipe(fds, 4096, O_BINARY) int openconnect__win32_sock_init(void); char *openconnect__win32_strerror(DWORD err); #undef setenv #define setenv openconnect__win32_setenv int openconnect__win32_setenv(const char *name, const char *value, int overwrite); #undef inet_pton #define inet_pton openconnect__win32_inet_pton int openconnect__win32_inet_pton(int af, const char *src, void *dst); #define OPENCONNECT_CMD_SOCKET SOCKET int dumb_socketpair(OPENCONNECT_CMD_SOCKET socks[2], int make_overlapped); #else #define closesocket close #define OPENCONNECT_CMD_SOCKET int #ifndef O_BINARY #define O_BINARY 0 #endif #endif /* For systems that don't support O_CLOEXEC, just don't bother. We don't keep files open for long anyway. */ #ifndef O_CLOEXEC #define O_CLOEXEC 0 #endif /* I always coded as if it worked like this. Now it does. */ #define realloc_inplace(p, size) do { \ void *__realloc_old = p; \ p = realloc(p, size); \ if (size && !p) \ free(__realloc_old); \ } while (0) /****************************************************************************/ /* iconv.c */ #ifdef HAVE_ICONV char *openconnect_utf8_to_legacy(struct openconnect_info *vpninfo, const char *utf8); char *openconnect_legacy_to_utf8(struct openconnect_info *vpninfo, const char *legacy); #else #define openconnect_utf8_to_legacy(v, str) ((char *)str) #define openconnect_legacy_to_utf8(v, str) ((char *)str) #endif /* script.c */ unsigned char unhex(const char *data); int script_setenv(struct openconnect_info *vpninfo, const char *opt, const char *val, int trunc, int append); int script_setenv_int(struct openconnect_info *vpninfo, const char *opt, int value); void prepare_script_env(struct openconnect_info *vpninfo); int script_config_tun(struct openconnect_info *vpninfo, const char *reason); int apply_script_env(struct oc_vpn_option *envs); void free_split_routes(struct oc_ip_info *ip_info); int install_vpn_opts(struct openconnect_info *vpninfo, struct oc_vpn_option *opt, struct oc_ip_info *ip_info); /* vhost.h */ int setup_vhost(struct openconnect_info *vpninfo, int tun_fd); void shutdown_vhost(struct openconnect_info *vpninfo); int vhost_tun_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable, int did_work); /* tun.c / tun-win32.c */ void os_shutdown_tun(struct openconnect_info *vpninfo); int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt); int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt); intptr_t os_setup_tun(struct openconnect_info *vpninfo); #ifdef _WIN32 #define OPEN_TUN_SOFTFAIL 0 #define OPEN_TUN_HARDFAIL -1 /* wintun.c */ void os_shutdown_wintun(struct openconnect_info *vpninfo); int os_read_wintun(struct openconnect_info *vpninfo, struct pkt *pkt); int os_write_wintun(struct openconnect_info *vpninfo, struct pkt *pkt); intptr_t os_setup_wintun(struct openconnect_info *vpninfo); int setup_wintun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd); intptr_t open_wintun(struct openconnect_info *vpninfo, char *guid, wchar_t *wname); int create_wintun(struct openconnect_info *vpninfo); #endif /* {gnutls,openssl}-dtls.c */ int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd); int dtls_try_handshake(struct openconnect_info *vpninfo, int *timeout); unsigned dtls_set_mtu(struct openconnect_info *vpninfo, unsigned mtu); void dtls_ssl_free(struct openconnect_info *vpninfo); void *establish_eap_ttls(struct openconnect_info *vpninfo); void destroy_eap_ttls(struct openconnect_info *vpninfo, void *sess); /* dtls.c */ int dtls_setup(struct openconnect_info *vpninfo); int dtls_reconnect(struct openconnect_info *vpninfo, int *timeout); int udp_tos_update(struct openconnect_info *vpninfo, struct pkt *pkt); int dtls_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); void dtls_close(struct openconnect_info *vpninfo); void dtls_shutdown(struct openconnect_info *vpninfo); void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12); void dtls_detect_mtu(struct openconnect_info *vpninfo); int openconnect_dtls_read(struct openconnect_info *vpninfo, void *buf, size_t len, unsigned ms); int openconnect_dtls_write(struct openconnect_info *vpninfo, void *buf, size_t len); char *openconnect_bin2hex(const char *prefix, const uint8_t *data, unsigned len); char *openconnect_bin2base64(const char *prefix, const uint8_t *data, unsigned len); /* mtucalc.c */ int calculate_mtu(struct openconnect_info *vpninfo, int is_udp, int unpadded_overhead, int padded_overhead, int block_size); /* cstp.c */ void cstp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int cstp_connect(struct openconnect_info *vpninfo); int cstp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int cstp_bye(struct openconnect_info *vpninfo, const char *reason); int decompress_and_queue_packet(struct openconnect_info *vpninfo, int compr_type, unsigned char *buf, int len); int compress_packet(struct openconnect_info *vpninfo, int compr_type, struct pkt *this); /* auth-html.c */ xmlNodePtr htmlnode_next(xmlNodePtr top, xmlNodePtr node); xmlNodePtr htmlnode_dive(xmlNodePtr top, xmlNodePtr node); xmlNodePtr find_form_node(xmlDocPtr doc); int parse_input_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node, const char *submit_button, int (*can_gen_tokencode)(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt)); int parse_select_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node); struct oc_auth_form *parse_form_node(struct openconnect_info *vpninfo, xmlNodePtr node, const char *submit_button, int (*can_gen_tokencode)(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt)); /* auth-juniper.c */ int oncp_obtain_cookie(struct openconnect_info *vpninfo); int oncp_send_tncc_command(struct openconnect_info *vpninfo, int first); void oncp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* oncp.c */ int oncp_connect(struct openconnect_info *vpninfo); int oncp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int oncp_bye(struct openconnect_info *vpninfo, const char *reason); void oncp_esp_close(struct openconnect_info *vpninfo); int oncp_esp_send_probes(struct openconnect_info *vpninfo); int oncp_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt); /* pulse.c */ int pulse_obtain_cookie(struct openconnect_info *vpninfo); void pulse_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int pulse_connect(struct openconnect_info *vpninfo); int pulse_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int pulse_bye(struct openconnect_info *vpninfo, const char *reason); int pulse_eap_ttls_send(struct openconnect_info *vpninfo, const void *data, int len); int pulse_eap_ttls_recv(struct openconnect_info *vpninfo, void *data, int len); /* nullppp.c */ int nullppp_obtain_cookie(struct openconnect_info *vpninfo); int nullppp_connect(struct openconnect_info *vpninfo); int nullppp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); /* f5.c */ int f5_obtain_cookie(struct openconnect_info *vpninfo); int f5_connect(struct openconnect_info *vpninfo); int f5_bye(struct openconnect_info *vpninfo, const char *reason); int f5_dtls_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt); /* fortinet.c */ void fortinet_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int fortinet_obtain_cookie(struct openconnect_info *vpninfo); int fortinet_connect(struct openconnect_info *vpninfo); int fortinet_bye(struct openconnect_info *vpninfo, const char *reason); int fortinet_dtls_catch_svrhello(struct openconnect_info *vpninfo, struct pkt *pkt); /* ppp.c */ struct oc_ppp; void buf_append_ppphdlc(struct oc_text_buf *buf, const unsigned char *bytes, int len, uint32_t asyncmap); void buf_append_ppp_hdr(struct oc_text_buf *buf, struct oc_ppp *ppp, uint16_t proto, uint8_t code, uint8_t id); int ppp_negotiate_config(struct openconnect_info *vpninfo); int ppp_tcp_should_connect(struct openconnect_info *vpninfo); int ppp_start_tcp_mainloop(struct openconnect_info *vpninfo); int ppp_tcp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int ppp_udp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int openconnect_ppp_new(struct openconnect_info *vpninfo, int encap, int want_ipv4, int want_ipv6); int ppp_reset(struct openconnect_info *vpninfo); int check_http_status(const char *buf, int len); /* array.c */ int array_obtain_cookie(struct openconnect_info *vpninfo); int array_connect(struct openconnect_info *vpninfo); int array_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int array_dtls_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int array_bye(struct openconnect_info *vpninfo, const char *reason); /* auth-globalprotect.c */ int gpst_obtain_cookie(struct openconnect_info *vpninfo); void gpst_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); int gpst_bye(struct openconnect_info *vpninfo, const char *reason); const char *gpst_os_name(struct openconnect_info *vpninfo); /* gpst.c */ int gpst_xml_or_error(struct openconnect_info *vpninfo, char *response, int (*xml_cb)(struct openconnect_info *, xmlNode *xml_node, void *cb_data), int (*challenge_cb)(struct openconnect_info *, char *prompt, char *inputStr, void *cb_data), void *cb_data); int gpst_setup(struct openconnect_info *vpninfo); int gpst_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); int gpst_esp_send_probes(struct openconnect_info *vpninfo); int gpst_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt); /* lzs.c */ int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); /* ssl.c */ unsigned string_is_hostname(const char* str); int connect_https_socket(struct openconnect_info *vpninfo); int __attribute__ ((format(printf, 4, 5))) request_passphrase(struct openconnect_info *vpninfo, const char *label, char **response, const char *fmt, ...); int __attribute__ ((format (printf, 2, 3))) openconnect_SSL_printf(struct openconnect_info *vpninfo, const char *fmt, ...); int openconnect_print_err_cb(const char *str, size_t len, void *ptr); #define openconnect_report_ssl_errors(v) ERR_print_errors_cb(openconnect_print_err_cb, (v)) #if defined(FAKE_ANDROID_KEYSTORE) || defined(__ANDROID__) #define ANDROID_KEYSTORE #endif #ifdef ANDROID_KEYSTORE const char *keystore_strerror(int err); int keystore_fetch(const char *key, unsigned char **result); #endif void cmd_fd_set(struct openconnect_info *vpninfo, fd_set *fds, int *maxfd); void check_cmd_fd(struct openconnect_info *vpninfo, fd_set *fds); int is_cancel_pending(struct openconnect_info *vpninfo, fd_set *fds); void poll_cmd_fd(struct openconnect_info *vpninfo, int timeout); int openconnect_open_utf8(struct openconnect_info *vpninfo, const char *fname, int mode); FILE *openconnect_fopen_utf8(struct openconnect_info *vpninfo, const char *fname, const char *mode); ssize_t openconnect_read_file(struct openconnect_info *vpninfo, const char *fname, char **ptr); int udp_sockaddr(struct openconnect_info *vpninfo, int port); int udp_connect(struct openconnect_info *vpninfo); int ssl_reconnect(struct openconnect_info *vpninfo); void openconnect_clear_cookies(struct openconnect_info *vpninfo); int cancellable_gets(struct openconnect_info *vpninfo, int fd, char *buf, size_t len); int cancellable_send(struct openconnect_info *vpninfo, int fd, char *buf, size_t len); int cancellable_recv(struct openconnect_info *vpninfo, int fd, char *buf, size_t len); #if defined(OPENCONNECT_OPENSSL) /* openssl-pkcs11.c */ int load_pkcs11_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, EVP_PKEY **keyp); int load_pkcs11_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, X509 **certp); #endif /* esp.c */ int verify_packet_seqno(struct openconnect_info *vpninfo, struct esp *esp, uint32_t seq); int esp_setup(struct openconnect_info *vpninfo); int esp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable); void esp_close(struct openconnect_info *vpninfo); void esp_shutdown(struct openconnect_info *vpninfo); int print_esp_keys(struct openconnect_info *vpninfo, const char *name, struct esp *esp); int openconnect_setup_esp_keys(struct openconnect_info *vpninfo, int new_keys); int construct_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, uint8_t next_hdr); /* {gnutls,openssl}-esp.c */ void destroy_esp_ciphers(struct esp *esp); int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *out, struct esp *in); int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt); int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, int crypt_len); /* {gnutls,openssl}.c */ const char *openconnect_get_tls_library_version(void); int can_enable_insecure_crypto(void); int ssl_nonblock_read(struct openconnect_info *vpninfo, int dtls, void *buf, int maxlen); int ssl_nonblock_write(struct openconnect_info *vpninfo, int dtls, void *buf, int buflen); int openconnect_open_https(struct openconnect_info *vpninfo); void openconnect_close_https(struct openconnect_info *vpninfo, int final); int cstp_handshake(struct openconnect_info *vpninfo, unsigned init); int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf); int openconnect_sha1(unsigned char *result, void *data, int len); int openconnect_sha256(unsigned char *result, void *data, int len); int openconnect_md5(unsigned char *result, void *data, int len); int openconnect_random(void *bytes, int len); int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf); int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result); int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len); int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge); #if defined(OPENCONNECT_OPENSSL) #define openconnect_https_connected(_v) ((_v)->https_ssl) #elif defined (OPENCONNECT_GNUTLS) #define openconnect_https_connected(_v) ((_v)->https_sess) #endif #ifdef OPENCONNECT_OPENSSL int openconnect_install_ctx_verify(struct openconnect_info *vpninfo, SSL_CTX *ctx); #endif /* mainloop.c */ int tun_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable, int did_work); int queue_new_packet(struct openconnect_info *vpninfo, struct pkt_q *q, void *buf, int len); int keepalive_action(struct keepalive_info *ka, int *timeout); int ka_stalled_action(struct keepalive_info *ka, int *timeout); int ka_check_deadline(int *timeout, time_t now, time_t due); int trojan_check_deadline(struct openconnect_info *vpninfo, int *timeout); /* xml.c */ int config_lookup_host(struct openconnect_info *vpninfo, const char *host); /* oath.c */ int set_oath_mode(struct openconnect_info *vpninfo, const char *token_str, oc_token_mode_t token_mode); int can_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int can_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_totp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_hotp_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int set_oidc_token(struct openconnect_info *vpninfo, const char *token_str); /* stoken.c */ int prepare_stoken(struct openconnect_info *vpninfo); int set_libstoken_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_stoken_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* yubikey.c */ int set_yubikey_mode(struct openconnect_info *vpninfo, const char *token_str); int can_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int do_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); void release_pcsc_ctx(struct openconnect_info *info); /* auth.c */ int cstp_obtain_cookie(struct openconnect_info *vpninfo); int set_csd_user(struct openconnect_info *vpninfo); /* auth-common.c */ int xmlnode_is_named(xmlNode *xml_node, const char *name); int xmlnode_get_val(xmlNode *xml_node, const char *name, char **var); int xmlnode_get_prop(xmlNode *xml_node, const char *name, char **var); int xmlnode_match_prop(xmlNode *xml_node, const char *name, const char *match); int append_opt(struct oc_text_buf *body, const char *opt, const char *name); int append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body); void clear_mem(void *p, size_t s); void free_pass(char **p); void free_opt(struct oc_form_opt *opt); void free_auth_form(struct oc_auth_form *form); int do_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form); int can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); /* textbuf,c */ struct oc_text_buf *buf_alloc(void); int buf_error(struct oc_text_buf *buf); int buf_free(struct oc_text_buf *buf); void buf_truncate(struct oc_text_buf *buf); int buf_ensure_space(struct oc_text_buf *buf, int len); void buf_append_bytes(struct oc_text_buf *buf, const void *bytes, int len); void __attribute__ ((format (printf, 2, 3))) buf_append(struct oc_text_buf *buf, const char *fmt, ...); void buf_append_urlencoded(struct oc_text_buf *buf, const char *str); void buf_append_xmlescaped(struct oc_text_buf *buf, const char *str); void buf_append_be16(struct oc_text_buf *buf, uint16_t val); void buf_append_be32(struct oc_text_buf *buf, uint32_t val); void buf_append_le16(struct oc_text_buf *buf, uint16_t val); void buf_append_hex(struct oc_text_buf *buf, const void *str, unsigned len); int buf_append_utf16le(struct oc_text_buf *buf, const char *utf8); int get_utf8char(const char **utf8); void buf_append_from_utf16le(struct oc_text_buf *buf, const void *utf16); void buf_append_base64(struct oc_text_buf *buf, const void *bytes, int len, int line_len); /* http.c */ void dump_buf(struct openconnect_info *vpninfo, char prefix, char *buf); void dump_buf_hex(struct openconnect_info *vpninfo, int loglevel, char prefix, unsigned char *buf, int len); char *openconnect_create_useragent(const char *base); int process_proxy(struct openconnect_info *vpninfo, int ssl_sock); int internal_parse_url(const char *url, char **res_proto, char **res_host, int *res_port, char **res_path, int default_port); char *internal_get_url(struct openconnect_info *vpninfo); int do_https_request(struct openconnect_info *vpninfo, const char *method, const char *request_body_type, struct oc_text_buf *request_body, char **form_buf, int (*header_cb)(struct openconnect_info *, char *, char *), int flags); int http_add_cookie(struct openconnect_info *vpninfo, const char *option, const char *value, int replace); int internal_split_cookies(struct openconnect_info *vpninfo, int replace, const char *def_cookie); int urldecode_inplace(char *p); int process_http_response(struct openconnect_info *vpninfo, int connect, int (*header_cb)(struct openconnect_info *, char *, char *), struct oc_text_buf *body); int handle_redirect(struct openconnect_info *vpninfo); void http_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf); /* http-auth.c */ void *openconnect_base64_decode(int *len, const char *in); void clear_auth_states(struct openconnect_info *vpninfo, struct http_auth_state *auth_states, int reset); int proxy_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val); int http_auth_hdrs(struct openconnect_info *vpninfo, char *hdr, char *val); int gen_authorization_hdr(struct openconnect_info *vpninfo, int proxy, struct oc_text_buf *buf); /* ntlm.c */ int ntlm_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state); /* gssapi.c */ int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state); int socks_gssapi_auth(struct openconnect_info *vpninfo); /* digest.c */ int digest_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf); /* jsondump.c */ void dump_json(struct openconnect_info *vpninfo, int lvl, json_value *value); /* library.c */ void nuke_opt_values(struct oc_form_opt *opt); const char *add_option_dup(struct oc_vpn_option **list, const char *opt, const char *val, int val_len); const char *add_option_steal(struct oc_vpn_option **list, const char *opt, char **val); const char *add_option_ipaddr(struct oc_vpn_option **list, const char *opt, int af, void *addr); void free_optlist(struct oc_vpn_option *opt); int process_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form); /* This is private for now since we haven't yet worked out what the API will be */ void openconnect_set_juniper(struct openconnect_info *vpninfo); /* version.c */ extern const char *openconnect_version_str; static inline int certinfo_is_primary(struct cert_info *certinfo) { return certinfo == &certinfo->vpninfo->certinfo[0]; } static inline int certinfo_is_secondary(struct cert_info *certinfo) { return certinfo == &certinfo->vpninfo->certinfo[1]; } #define certinfo_string(ci, strA, strB) (certinfo_is_primary(ci) ? (strA) : (strB)) /* strncasecmp() just checks that the first n characters match. This function ensures that the first n characters of the left-hand side are a *precise* match for the right-hand side. */ static inline int strprefix_match(const char *str, int len, const char *match) { return len == strlen(match) && !strncasecmp(str, match, len); } #define STRDUP(res, arg) \ do { \ if (res != arg) { \ free(res); \ if (arg) { \ res = strdup(arg); \ if (res == NULL) return -ENOMEM; \ } else res = NULL; \ } \ } while(0) #define UTF8CHECK(arg) \ do { \ if ((arg) && buf_append_utf16le(NULL, (arg))) { \ vpn_progress(vpninfo, PRG_ERR, \ _("ERROR: %s() called with invalid UTF-8 for '%s' argument\n"),\ __func__, #arg); \ return -EILSEQ; \ } \ } while(0) #define UTF8CHECK_VOID(arg) \ do { \ if ((arg) && buf_append_utf16le(NULL, (arg))) { \ vpn_progress(vpninfo, PRG_ERR, \ _("ERROR: %s() called with invalid UTF-8 for '%s' argument\n"),\ __func__, #arg); \ return; \ } \ } while(0) /* Let's stop open-coding big-endian and little-endian loads/stores. * * Start with a packed structure so that we can let the compiler * decide whether the target CPU can cope with unaligned load/stores * or not. Then there are three cases to handle: * - For big-endian loads/stores, just use htons() et al. * - For little-endian when we *know* the CPU is LE, just load/store * - For little-endian otherwise, do the data access byte-wise */ struct oc_packed_uint32_t { uint32_t d; } __attribute__((packed)); struct oc_packed_uint16_t { uint16_t d; } __attribute__((packed)); static inline uint32_t load_be32(const void *_p) { const struct oc_packed_uint32_t *p = _p; return ntohl(p->d); } static inline uint16_t load_be16(const void *_p) { const struct oc_packed_uint16_t *p = _p; return ntohs(p->d); } static inline void store_be32(void *_p, uint32_t d) { struct oc_packed_uint32_t *p = _p; p->d = htonl(d); } static inline void store_be16(void *_p, uint16_t d) { struct oc_packed_uint16_t *p = _p; p->d = htons(d); } /* It doesn't matter if we don't find one. It'll default to the * "not known to be little-endian" case, and do the bytewise * load/store. Modern compilers might even spot the pattern and * optimise it (see GCC PR#55177 around comment 15). */ #ifdef ENDIAN_HDR #include ENDIAN_HDR #endif #if defined(_WIN32) || \ (defined(_LITTLE_ENDIAN) && !defined(_BIG_ENDIAN)) /* Solaris */ || \ (defined(__LITTLE_ENDIAN) && defined(__BIG_ENDIAN) && defined(__BYTE_ORDER) \ && __BYTE_ORDER == __LITTLE_ENDIAN) /* Linux */ || \ (defined(LITTLE_ENDIAN) && defined(BIG_ENDIAN) && defined(BYTE_ORDER) \ && BYTE_ORDER == LITTLE_ENDIAN) /* *BSD */ static inline uint32_t load_le32(const void *_p) { const struct oc_packed_uint32_t *p = _p; return p->d; } static inline uint16_t load_le16(const void *_p) { const struct oc_packed_uint16_t *p = _p; return p->d; } static inline void store_le32(void *_p, uint32_t d) { struct oc_packed_uint32_t *p = _p; p->d = d; } static inline void store_le16(void *_p, uint16_t d) { struct oc_packed_uint16_t *p = _p; p->d = d; } #else static inline uint32_t load_le32(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8) | (p[2] << 16) | (p[3] << 24); } static inline uint16_t load_le16(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8); } static inline void store_le16(void *_p, uint16_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; } static inline void store_le32(void *_p, uint32_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; p[2] = d >> 16; p[3] = d >> 24; } #endif /* !Not known to be little-endian */ #endif /* __OPENCONNECT_INTERNAL_H__ */ openconnect-8.20/lzs.c0000644000076400007640000002261214100007334016477 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #define GET_BITS(bits) \ do { \ /* Strictly speaking, this check ought to be on \ * (srclen < 1 + (bits_left < bits)). However, when bits == 9 \ * the (bits_left < bits) comparison is always true so it \ * always comes out as (srclen < 2). \ * And bits is only anything *other* than 9 when we're reading \ * reading part of a match encoding. And in that case, there \ * damn well ought to be an end marker (7 more bits) after \ * what we're reading now, so it's perfectly OK to use \ * (srclen < 2) in that case too. And a *lot* cheaper. */ \ if (srclen < 2) \ return -EINVAL; \ /* Explicit comparison with 8 to optimise it into a tautology \ * in the bits == 9 case, because the compiler doesn't * know that bits_left can never be larger than 8. */ \ if (bits >= 8 || bits >= bits_left) { \ /* We need *all* the bits that are left in the current \ * byte. Take them and bump the input pointer. */ \ data = (src[0] << (bits - bits_left)) & ((1 << bits) - 1); \ src++; \ srclen--; \ bits_left += 8 - bits; \ if (bits > 8 || bits_left < 8) { \ /* We need bits from the next byte too... */ \ data |= src[0] >> bits_left; \ /* ...if we used *all* of them then (which can \ * only happen if bits > 8), then bump the \ * input pointer again so we never leave \ * bits_left == 0. */ \ if (bits > 8 && !bits_left) { \ bits_left = 8; \ src++; \ srclen--; \ } \ } \ } else { \ /* We need fewer bits than are left in the current byte */ \ data = (src[0] >> (bits_left - bits)) & ((1ULL << bits) - 1); \ bits_left -= bits; \ } \ } while (0) int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen) { int outlen = 0; int bits_left = 8; /* Bits left in the current byte at *src */ uint32_t data; uint16_t offset, length; while (1) { /* Get 9 bits, which is the minimum and a common case */ GET_BITS(9); /* 0bbbbbbbb is a literal byte. The loop gives a hint to * the compiler that we expect to see a few of these. */ while (data < 0x100) { if (outlen == dstlen) return -EFBIG; dst[outlen++] = data; GET_BITS(9); } /* 110000000 is the end marker */ if (data == 0x180) return outlen; /* 11bbbbbbb is a 7-bit offset */ offset = data & 0x7f; /* 10bbbbbbbbbbb is an 11-bit offset, so get the next 4 bits */ if (data < 0x180) { GET_BITS(4); offset <<= 4; offset |= data; } /* This is a compressed sequence; now get the length */ GET_BITS(2); if (data != 3) { /* 00, 01, 10 ==> 2, 3, 4 */ length = data + 2; } else { GET_BITS(2); if (data != 3) { /* 1100, 1101, 1110 => 5, 6, 7 */ length = data + 5; } else { /* For each 1111 prefix add 15 to the length. Then add the value of final nybble. */ length = 8; while (1) { GET_BITS(4); if (data != 15) { length += data; break; } length += 15; } } } if (!offset || offset > outlen) return -EINVAL; if (length + outlen > dstlen) return -EFBIG; while (length) { dst[outlen] = dst[outlen - offset]; outlen++; length--; } } return -EINVAL; } #define PUT_BITS(nr, bits) \ do { \ outbits <<= (nr); \ outbits |= (bits); \ nr_outbits += (nr); \ if ((nr) > 8) { \ nr_outbits -= 8; \ if (outpos == dstlen) \ return -EFBIG; \ dst[outpos++] = outbits >> nr_outbits; \ } \ if (nr_outbits >= 8) { \ nr_outbits -= 8; \ if (outpos == dstlen) \ return -EFBIG; \ dst[outpos++] = outbits >> nr_outbits; \ } \ } while (0) /* * Much of the compression algorithm used here is based very loosely on ideas * from isdn_lzscomp.c by Andre Beck: http://micky.ibh.de/~beck/stuff/lzs4i4l/ */ int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen) { int length, offset; int inpos = 0, outpos = 0; uint16_t longest_match_len; uint16_t hofs, longest_match_ofs; uint16_t hash; uint32_t outbits = 0; int nr_outbits = 0; /* * This is theoretically a hash. But RAM is cheap and just loading the * 16-bit value and using it as a hash is *much* faster. */ #define HASH_BITS 16 #define HASH_TABLE_SIZE (1ULL << HASH_BITS) #define HASH(p) (((struct oc_packed_uint16_t *)(p))->d) /* * There are two data structures for tracking the history. The first * is the true hash table, an array indexed by the hash value described * above. It yields the offset in the input buffer at which the given * hash was most recently seen. We use INVALID_OFS (0xffff) for none * since we know IP packets are limited to 64KiB and we can never be * *starting* a match at the penultimate byte of the packet. */ #define INVALID_OFS 0xffff uint16_t hash_table[HASH_TABLE_SIZE]; /* Buffer offset for first match */ /* * The second data structure allows us to find the previous occurrences * of the same hash value. It is a ring buffer containing links only for * the latest MAX_HISTORY bytes of the input. The lookup for a given * offset will yield the previous offset at which the same data hash * value was found. */ #define MAX_HISTORY (1<<11) /* Highest offset LZS can represent is 11 bits */ uint16_t hash_chain[MAX_HISTORY]; /* Just in case anyone tries to use this in a more general-purpose * scenario... */ if (srclen > INVALID_OFS + 1) return -EFBIG; /* No need to initialise hash_chain since we can only ever follow * links to it that have already been initialised. */ memset(hash_table, 0xff, sizeof(hash_table)); while (inpos < srclen - 2) { hash = HASH(src + inpos); hofs = hash_table[hash]; hash_chain[inpos & (MAX_HISTORY - 1)] = hofs; hash_table[hash] = inpos; if (hofs == INVALID_OFS || hofs + MAX_HISTORY <= inpos) { PUT_BITS(9, src[inpos]); inpos++; continue; } /* Since the hash is 16-bits, we *know* the first two bytes match */ longest_match_len = 2; longest_match_ofs = hofs; for (; hofs != INVALID_OFS && hofs + MAX_HISTORY > inpos; hofs = hash_chain[hofs & (MAX_HISTORY - 1)]) { /* We only get here if longest_match_len is >= 2. We need to find a match of longest_match_len + 1 for it to be interesting. */ if (!memcmp(src + hofs + 2, src + inpos + 2, longest_match_len - 1)) { longest_match_ofs = hofs; do { longest_match_len++; /* If we cannot *have* a longer match because we're at the * end of the input, stop looking */ if (longest_match_len + inpos == srclen) goto got_match; } while (src[longest_match_len + inpos] == src[longest_match_len + hofs]); } /* Typical compressor tuning would have a break out of the loop here depending on the number of potential match locations we've tried, or a value of longest_match_len that's considered "good enough" so we stop looking for something better. We could also do a hybrid where we count the total bytes compared, so 5 attempts to find a match better than 10 bytes is worth the same as 10 attempts to find a match better than 5 bytes. Or something. Anyway, we currently don't give up until we run out of reachable history — maximal compression. */ } got_match: /* Output offset, as 7-bit or 11-bit as appropriate */ offset = inpos - longest_match_ofs; length = longest_match_len; if (offset < 0x80) PUT_BITS(9, 0x180 | offset); else PUT_BITS(13, 0x1000 | offset); /* Output length */ if (length < 5) PUT_BITS(2, length - 2); else if (length < 8) PUT_BITS(4, length + 7); else { length += 7; while (length >= 30) { PUT_BITS(8, 0xff); length -= 30; } if (length >= 15) PUT_BITS(8, 0xf0 + length - 15); else PUT_BITS(4, length); } /* If we're already done, don't bother updating the hash tables. */ if (inpos + longest_match_len >= srclen - 2) { inpos += longest_match_len; break; } /* We already added the first byte to the hash tables. Add the rest. */ inpos++; while (--longest_match_len) { hash = HASH(src + inpos); hash_chain[inpos & (MAX_HISTORY - 1)] = hash_table[hash]; hash_table[hash] = inpos++; } } /* Special cases at the end */ if (inpos == srclen - 2) { hash = HASH(src + inpos); hofs = hash_table[hash]; if (hofs != INVALID_OFS && hofs + MAX_HISTORY > inpos) { offset = inpos - hofs; if (offset < 0x80) PUT_BITS(9, 0x180 | offset); else PUT_BITS(13, 0x1000 | offset); /* The length is 2 bytes */ PUT_BITS(2, 0); } else { PUT_BITS(9, src[inpos]); PUT_BITS(9, src[inpos + 1]); } } else if (inpos == srclen - 1) { PUT_BITS(9, src[inpos]); } /* End marker, with 7 trailing zero bits to ensure that it's flushed. */ PUT_BITS(16, 0xc000); return outpos; } openconnect-8.20/esp-seqno.c0000644000076400007640000001175414067426206017625 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #define DTLS_EMPTY_BITMAP (0xFFFFFFFFFFFFFFFFULL) /* Eventually we're going to have to have more than one incoming ESP context at a time, to allow for the overlap period during a rekey. So pass the 'esp' even though for now it's redundant. */ int verify_packet_seqno(struct openconnect_info *vpninfo, struct esp *esp, uint32_t seq) { /* * For incoming, esp->seq is the next *expected* packet, being * the sequence number *after* the latest we have received. * * Since it must always be true that packet esp->seq-1 has been * received, so there's no need to explicitly record that. * * So the backlog bitmap covers the 64 packets prior to that, * with the LSB representing packet (esp->seq - 2), and the MSB * representing (esp->seq - 65). A received packet is represented * by a zero bit, and a missing packet is represented by a one. * * Thus we can allow out-of-order reception of packets that are * within a reasonable interval of the latest packet received. */ if (seq == esp->seq) { /* The common case. This is the packet we expected next. */ esp->seq_backlog <<= 1; /* This might reach a value higher than the 32-bit ESP sequence * numbers can actually reach. Which is fine. When that * happens, we'll do the right thing and just not accept any * newer packets. Someone needs to start a new epoch. */ esp->seq++; vpn_progress(vpninfo, PRG_TRACE, _("Accepting expected ESP packet with seq %u\n"), seq); return 0; } else if (seq > esp->seq) { /* The packet we were expecting has gone missing; this one is newer. * We always advance the window to accommodate it. */ uint32_t delta = seq - esp->seq; if (delta >= 64) { /* We jumped a long way into the future. We have not seen * any of the previous 32 packets so set the backlog bitmap * to all ones. */ esp->seq_backlog = DTLS_EMPTY_BITMAP; } else if (delta == 63) { /* Avoid undefined behaviour that shifting by 64 would incur. * The (clear) top bit represents the packet which is currently * esp->seq - 1, which we know was already received. */ esp->seq_backlog = DTLS_EMPTY_BITMAP >> 1; } else { /* We have missed (delta) packets. Shift the backlog by that * amount *plus* the one we would have shifted it anyway if * we'd received the packet we were expecting. The zero bit * representing the packet which is currently esp->seq - 1, * which we know has been received, ends up at bit position * (1<seq_backlog <<= delta + 1; esp->seq_backlog |= (1ULL << delta) - 1; } vpn_progress(vpninfo, PRG_TRACE, _("Accepting later-than-expected ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); esp->seq = (uint64_t)seq + 1; return 0; } else { /* This packet is older than the one we were expecting. By how much...? */ uint32_t delta = esp->seq - seq; /* delta==0 is the overflow case where esp->seq is 0x100000000 and seq is 0 */ if (delta > 65 || delta == 0) { /* Too old. We can't know if it's a replay. */ if (vpninfo->esp_replay_protect) { vpn_progress(vpninfo, PRG_DEBUG, _("Discarding ancient ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); return -EINVAL; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Tolerating ancient ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); return 0; } } else if (delta == 1) { /* Not in the bitmask since it is by definition already received. */ replayed: if (vpninfo->esp_replay_protect) { vpn_progress(vpninfo, PRG_DEBUG, _("Discarding replayed ESP packet with seq %u\n"), seq); return -EINVAL; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Tolerating replayed ESP packet with seq %u\n"), seq); return 0; } } else { /* Within the backlog window, so we remember whether we've seen it or not. */ uint64_t mask = 1ULL << (delta - 2); if (!(esp->seq_backlog & mask)) goto replayed; esp->seq_backlog &= ~mask; vpn_progress(vpninfo, PRG_TRACE, _("Accepting out-of-order ESP packet with seq %u (expected %" PRIu64 ")\n"), seq, esp->seq); return 0; } } } openconnect-8.20/gnutls.c0000644000076400007640000023154114171606260017221 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "gnutls.h" #include #include #include #include #include #ifdef HAVE_P11KIT #include #include #include #endif #include #include #include #include #include #include #include #include #include #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) static int gnutls_pin_callback(void *priv, int attempt, const char *uri, const char *token_label, unsigned int flags, char *pin, size_t pin_max); #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ /* GnuTLS 2.x lacked this. But GNUTLS_E_UNEXPECTED_PACKET_LENGTH basically * does the same thing. * https://lists.infradead.org/pipermail/openconnect-devel/2014-March/001726.html */ #ifndef GNUTLS_E_PREMATURE_TERMINATION #define GNUTLS_E_PREMATURE_TERMINATION GNUTLS_E_UNEXPECTED_PACKET_LENGTH #endif /* GnuTLS 3.5.0 added this flag to send a client cert, even if its issuer is * mismatched to the list of issuers requested by the server. OpenSSL does * this by default. * https://github.com/curl/curl/issues/1411 */ #ifndef GNUTLS_FORCE_CLIENT_CERT #define GNUTLS_FORCE_CLIENT_CERT 0 #endif static char tls_library_version[32] = ""; const char *openconnect_get_tls_library_version(void) { if (!*tls_library_version) { snprintf(tls_library_version, sizeof(tls_library_version), "GnuTLS %s", gnutls_check_version(NULL)); } return tls_library_version; } int can_enable_insecure_crypto(void) { /* XX: As of GnuTLS 3.6.13, no released version has (yet) removed 3DES/RC4 from default builds, * but like OpenSSL (removed in 1.1.0) it may happen. */ if (gnutls_cipher_get_id("3DES-CBC") == GNUTLS_CIPHER_UNKNOWN || gnutls_cipher_get_id("ARCFOUR-128") == GNUTLS_CIPHER_UNKNOWN) return -ENOENT; return 0; } /* Helper functions for reading/writing lines over TLS/DTLS. */ static int _openconnect_gnutls_write(gnutls_session_t ses, int fd, struct openconnect_info *vpninfo, char *buf, size_t len) { size_t orig_len = len; while (len) { int done = gnutls_record_send(ses, buf, len); if (done > 0) len -= done; else if (done == GNUTLS_E_AGAIN || done == GNUTLS_E_INTERRUPTED) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (gnutls_record_get_direction(ses)) FD_SET(fd, &wr_set); else FD_SET(fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); if (select(maxfd + 1, &rd_set, &wr_set, NULL, NULL) < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for TLS")); return -EIO; } if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("TLS/DTLS write cancelled\n")); return -EINTR; } } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to write to TLS/DTLS socket: %s\n"), gnutls_strerror(done)); return -EIO; } } return orig_len; } static int openconnect_gnutls_write(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_gnutls_write(vpninfo->https_sess, vpninfo->ssl_fd, vpninfo, buf, len); } int openconnect_dtls_write(struct openconnect_info *vpninfo, void *buf, size_t len) { return _openconnect_gnutls_write(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len); } static int _openconnect_gnutls_read(gnutls_session_t ses, int fd, struct openconnect_info *vpninfo, char *buf, size_t len, unsigned ms) { int done, ret; struct timeval timeout, *tv = NULL; if (ms) { timeout.tv_sec = ms/1000; timeout.tv_usec = (ms%1000)*1000; tv = &timeout; } while ((done = gnutls_record_recv(ses, buf, len)) < 0) { if (done == GNUTLS_E_AGAIN || done == GNUTLS_E_INTERRUPTED) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (gnutls_record_get_direction(ses)) FD_SET(fd, &wr_set); else FD_SET(fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); ret = select(maxfd + 1, &rd_set, &wr_set, NULL, tv); if (ret < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for TLS/DTLS")); return -EIO; } if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("TLS/DTLS read cancelled\n")); done = -EINTR; goto cleanup; } if (ret == 0) { done = -ETIMEDOUT; goto cleanup; } } else if (done == GNUTLS_E_PREMATURE_TERMINATION) { /* We've seen this with HTTP 1.0 responses followed by abrupt socket closure and no clean SSL shutdown. https://bugs.launchpad.net/bugs/1225276 */ vpn_progress(vpninfo, PRG_DEBUG, _("TLS/DTLS socket closed uncleanly\n")); done = 0; goto cleanup; } else if (done == GNUTLS_E_REHANDSHAKE) { int ret = cstp_handshake(vpninfo, 0); if (ret) { done = ret; goto cleanup; } } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from TLS/DTLS socket: %s\n"), gnutls_strerror(done)); if (done == GNUTLS_E_TIMEDOUT) { done = -ETIMEDOUT; goto cleanup; } else { done = -EIO; goto cleanup; } } } cleanup: return done; } static int openconnect_gnutls_read(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_gnutls_read(vpninfo->https_sess, vpninfo->ssl_fd, vpninfo, buf, len, 0); } int openconnect_dtls_read(struct openconnect_info *vpninfo, void *buf, size_t len, unsigned ms) { return _openconnect_gnutls_read(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len, ms); } static int openconnect_gnutls_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while (1) { ret = gnutls_record_recv(vpninfo->https_sess, buf + i, 1); if (ret == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } else if (ret == GNUTLS_E_AGAIN || ret == GNUTLS_E_INTERRUPTED) { /* Wait for something to happen on the socket, or on cmd_fd */ fd_set rd_set, wr_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&rd_set); FD_ZERO(&wr_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(vpninfo->ssl_fd, &wr_set); else FD_SET(vpninfo->ssl_fd, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); if (select(maxfd + 1, &rd_set, &wr_set, NULL, NULL) < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for TLS")); return -EIO; } if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("TLS/DTLS read cancelled\n")); ret = -EINTR; break; } } else if (ret == GNUTLS_E_REHANDSHAKE) { ret = cstp_handshake(vpninfo, 0); if (ret) return ret; } else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from TLS/DTLS socket: %s\n"), gnutls_strerror(ret)); ret = -EIO; break; } } buf[i] = 0; return i ?: ret; } int ssl_nonblock_read(struct openconnect_info *vpninfo, int dtls, void *buf, int maxlen) { gnutls_session_t sess = dtls ? vpninfo->dtls_ssl : vpninfo->https_sess; int ret; if (!sess) { vpn_progress(vpninfo, PRG_ERR, _("Attempted to read from non-existent %s session\n"), dtls ? "DTLS" : "TLS"); return -1; } ret = gnutls_record_recv(sess, buf, maxlen); if (ret > 0) return ret; if (ret == GNUTLS_E_AGAIN || ret == GNUTLS_E_INTERRUPTED) return 0; vpn_progress(vpninfo, PRG_ERR, _("Read error on %s session: %s\n"), dtls ? "DTLS" : "SSL", gnutls_strerror(ret)); return -1; } int ssl_nonblock_write(struct openconnect_info *vpninfo, int dtls, void *buf, int buflen) { gnutls_session_t sess = dtls ? vpninfo->dtls_ssl : vpninfo->https_sess; int ret; if (!sess) { vpn_progress(vpninfo, PRG_ERR, _("Attempted to write to non-existent %s session\n"), dtls ? "DTLS" : "TLS"); return -1; } ret = gnutls_record_send(sess, buf, buflen); if (ret > 0) return ret; if (ret == GNUTLS_E_AGAIN || ret == GNUTLS_E_INTERRUPTED) { /* * Before 3.3.13, GnuTLS could return zero instead of one, * indicating that it was waiting for a read when in fact * it was waiting for a write. That caused us to block for * ever, waiting for the read that it said it wanted. * * So instead, just *assume* it actually wants a write. * Which is true most of the time, and on the rare occasion * that it *isn't* true, the failure mode will just be that * we keep waking up and calling GnuTLS again until the read * that it's waiting for does arrive. */ if (GNUTLS_VERSION_NUMBER < 0x03030d || gnutls_record_get_direction(sess)) { /* Waiting for the socket to become writable — it's probably stalled, and/or the buffers are full */ if (dtls) monitor_write_fd(vpninfo, dtls); else monitor_write_fd(vpninfo, ssl); } return 0; } vpn_progress(vpninfo, PRG_ERR, _("Write error on %s session: %s\n"), dtls ? "DTLS" : "SSL", gnutls_strerror(ret)); return -1; } static int check_certificate_expiry(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_x509_crt_t cert) { const char *reason = NULL; time_t expires = gnutls_x509_crt_get_expiration_time(cert); time_t now = time(NULL); if (expires == -1) { vpn_progress(vpninfo, PRG_ERR, _("Could not extract expiration time of certificate\n")); return -EINVAL; } if (expires < now) reason = certinfo_string(certinfo, _("Client certificate has expired at"), _("Secondary client certificate has expired at")); else if (expires < now + vpninfo->cert_expire_warning) reason = certinfo_string(certinfo, _("Client certificate expires soon at"), _("Secondary client certificate expires soon at")); if (reason) { char buf[80]; #ifdef _WIN32 /* * Windows doesn't have gmtime_r but apparently its gmtime() * *is* thread-safe because it uses a per-thread static buffer. * cf. https://sourceforge.net/p/mingw/bugs/1625/ * * We also explicitly say 'GMT' because %Z would give us the * Microsoft stupidity "GMT Standard Time". Which is not only * silly, but also ambiguous because Windows actually says that * even when it means British Summer Time (GMT+1). And having * used gmtime() we really *are* giving the time in GMT. */ struct tm *tm = gmtime(&expires); strftime(buf, 80, "%a, %d %b %Y %H:%M:%S GMT", tm); #else struct tm tm; gmtime_r(&expires, &tm); strftime(buf, 80, "%a, %d %b %Y %T %Z", &tm); #endif vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", reason, buf); } return 0; } static int load_datum(struct openconnect_info *vpninfo, gnutls_datum_t *datum, const char *fname) { struct stat st; int fd, err; #ifdef ANDROID_KEYSTORE if (!strncmp(fname, "keystore:", 9)) { int len; const char *p = fname + 9; /* Skip first two slashes if the user has given it as keystore://foo ... */ if (*p == '/') p++; if (*p == '/') p++; len = keystore_fetch(p, &datum->data); if (len <= 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load item '%s' from keystore: %s\n"), p, keystore_strerror(len)); return -EINVAL; } datum->size = len; return 0; } #endif /* ANDROID_KEYSTORE */ fd = openconnect_open_utf8(vpninfo, fname, O_RDONLY|O_CLOEXEC|O_BINARY); if (fd == -1) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open key/certificate file %s: %s\n"), fname, strerror(err)); return -ENOENT; } if (fstat(fd, &st)) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to stat key/certificate file %s: %s\n"), fname, strerror(err)); close(fd); return -EIO; } datum->size = st.st_size; datum->data = gnutls_malloc(st.st_size + 1); if (!datum->data) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate certificate buffer\n")); close(fd); return -ENOMEM; } errno = EAGAIN; if (read(fd, datum->data, datum->size) != datum->size) { err = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to read certificate into memory: %s\n"), strerror(err)); close(fd); gnutls_free(datum->data); return -EIO; } datum->data[st.st_size] = 0; close(fd); return 0; } /* A non-zero, non-error return to make load_certificate() continue and interpreting the file as other types */ #define NOT_PKCS12 1 static int load_pkcs12_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_datum_t *datum, gnutls_x509_privkey_t *key, gnutls_x509_crt_t **chain, unsigned int *chain_len, gnutls_x509_crt_t **extra_certs, unsigned int *extra_certs_len, gnutls_x509_crl_t *crl) { gnutls_pkcs12_t p12; char *pass; int err; err = gnutls_pkcs12_init(&p12); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to setup PKCS#12 data structure: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_pkcs12_import(p12, datum, GNUTLS_X509_FMT_DER, 0); if (err) { gnutls_pkcs12_deinit(p12); return NOT_PKCS12; } pass = certinfo->password; while ((err = gnutls_pkcs12_verify_mac(p12, pass)) == GNUTLS_E_MAC_VERIFY_FAILED) { if (!pass) { /* OpenSSL's PKCS12_parse() code will try both NULL and "" automatically, * but GnuTLS requires two separate attempts. */ err = gnutls_pkcs12_verify_mac(p12, ""); if (!err) { pass = strdup(""); break; } } else vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#12 certificate file\n")); free_pass(&pass); certinfo->password = NULL; err = request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_pkcs12", "openconnect_secondary_pkcs12"), &pass, certinfo_string(certinfo, _("Enter PKCS#12 pass phrase:"), _("Enter secondary PKCS#12 pass phrase:"))); if (err) { gnutls_pkcs12_deinit(p12); return -EINVAL; } } /* If it wasn't GNUTLS_E_MAC_VERIFY_FAILED, then the problem wasn't just a bad password. Give up. */ if (err) { int level = PRG_ERR; int ret = -EINVAL; gnutls_pkcs12_deinit(p12); /* If the first attempt, and we didn't know for sure it was PKCS#12 anyway, bail out and try loading it as something different. */ if (pass == certinfo->password) { /* Make it non-fatal... */ level = PRG_DEBUG; ret = NOT_PKCS12; } vpn_progress(vpninfo, level, _("Failed to process PKCS#12 file: %s\n"), gnutls_strerror(err)); return ret; } err = gnutls_pkcs12_simple_parse(p12, pass, key, chain, chain_len, extra_certs, extra_certs_len, crl, 0); free_pass(&pass); certinfo->password = NULL; gnutls_pkcs12_deinit(p12); if (err) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to load PKCS#12 certificate: %s\n"), _("Failed to load secondary PKCS#12 certificate: %s\n")), gnutls_strerror(err)); return -EINVAL; } return 0; } static int count_x509_certificates(gnutls_datum_t *datum) { int count = 0; char *p = (char *)datum->data; while (p) { p = strstr(p, "-----BEGIN "); if (!p) break; p += 11; if (!strncmp(p, "CERTIFICATE", 11) || !strncmp(p, "X509 CERTIFICATE", 16)) count++; } return count; } static int get_cert_name(gnutls_x509_crt_t cert, char *name, size_t namelen) { /* When the name buffer is not big enough, gnutls_x509_crt_get_dn*() will * update the length argument to the required size, and return * GNUTLS_E_SHORT_MEMORY_BUFFER. We need to avoid clobbering the original * length variable. */ size_t nl = namelen; if (gnutls_x509_crt_get_dn_by_oid(cert, GNUTLS_OID_X520_COMMON_NAME, 0, 0, name, &nl)) { nl = namelen; if (gnutls_x509_crt_get_dn(cert, name, &nl)) { name[namelen-1] = 0; snprintf(name, namelen-1, ""); return -EINVAL; } } return 0; } #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined (HAVE_GNUTLS_SYSTEM_KEYS) static int verify_signed_data(gnutls_pubkey_t pubkey, gnutls_privkey_t privkey, gnutls_digest_algorithm_t dig, const gnutls_datum_t *data, const gnutls_datum_t *sig) { gnutls_sign_algorithm_t algo; unsigned flags = 0; #ifdef GNUTLS_VERIFY_ALLOW_BROKEN flags |= GNUTLS_VERIFY_ALLOW_BROKEN; #endif algo = gnutls_pk_to_sign(gnutls_privkey_get_pk_algorithm(privkey, NULL), dig); return gnutls_pubkey_verify_data2(pubkey, algo, flags, data, sig); } #endif /* (P11KIT || TROUSERS || TSS2 || SYSTEM_KEYS) */ static int openssl_hash_password(struct openconnect_info *vpninfo, char *pass, gnutls_datum_t *key, gnutls_datum_t *salt) { unsigned char md5[16]; gnutls_hash_hd_t hash; int count = 0; int err; while (count < key->size) { err = gnutls_hash_init(&hash, GNUTLS_DIG_MD5); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Could not initialise MD5 hash: %s\n"), gnutls_strerror(err)); return -EIO; } if (count) { err = gnutls_hash(hash, md5, sizeof(md5)); if (err) { hash_err: gnutls_hash_deinit(hash, NULL); vpn_progress(vpninfo, PRG_ERR, _("MD5 hash error: %s\n"), gnutls_strerror(err)); return -EIO; } } if (pass) { err = gnutls_hash(hash, pass, strlen(pass)); if (err) goto hash_err; } /* We only use the first 8 bytes of the salt for this */ err = gnutls_hash(hash, salt->data, 8); if (err) goto hash_err; gnutls_hash_deinit(hash, md5); if (key->size - count <= sizeof(md5)) { memcpy(&key->data[count], md5, key->size - count); break; } memcpy(&key->data[count], md5, sizeof(md5)); count += sizeof(md5); } return 0; } static int import_openssl_pem(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_x509_privkey_t key, char type, char *pem_header, size_t pem_size) { gnutls_cipher_hd_t handle; gnutls_cipher_algorithm_t cipher; gnutls_datum_t constructed_pem; gnutls_datum_t b64_data; gnutls_datum_t salt, enc_key; unsigned char *key_data; const char *begin; char *pass, *p; char *pem_start = pem_header; int ret, err, i; if (type == 'E') begin = "EC PRIVATE KEY"; else if (type == 'R') begin = "RSA PRIVATE KEY"; else if (type == 'D') begin = "DSA PRIVATE KEY"; else return -EINVAL; while (*pem_header == '\r' || *pem_header == '\n') pem_header++; if (strncmp(pem_header, "DEK-Info: ", 10)) { vpn_progress(vpninfo, PRG_ERR, _("Missing DEK-Info: header from OpenSSL encrypted key\n")); return -EIO; } pem_header += 10; p = strchr(pem_header, ','); if (!p) { vpn_progress(vpninfo, PRG_ERR, _("Cannot determine PEM encryption type\n")); return -EINVAL; } *p = 0; cipher = gnutls_cipher_get_id(pem_header); /* GnuTLS calls this '3DES-CBC' but all other names match */ if (cipher == GNUTLS_CIPHER_UNKNOWN && !strcmp(pem_header, "DES-EDE3-CBC")) cipher = GNUTLS_CIPHER_3DES_CBC; if (cipher == GNUTLS_CIPHER_UNKNOWN) { vpn_progress(vpninfo, PRG_ERR, _("Unsupported PEM encryption type: %s\n"), pem_header); return -EINVAL; } pem_header = p + 1; /* No supported algorithms have an IV larger than this, and dynamically allocating it would be painful. */ salt.size = 64; salt.data = malloc(salt.size); if (!salt.data) return -ENOMEM; for (i = 0; i < salt.size * 2; i++) { unsigned char x; char *c = &pem_header[i]; if (*c >= '0' && *c <= '9') x = (*c) - '0'; else if (*c >= 'A' && *c <= 'F') x = (*c) - 'A' + 10; else if ((*c == '\r' || *c == '\n') && i >= 16 && !(i % 16)) { salt.size = i / 2; break; } else { vpn_progress(vpninfo, PRG_ERR, _("Invalid salt in encrypted PEM file\n")); ret = -EINVAL; goto out_salt; } if (i & 1) salt.data[i/2] |= x; else salt.data[i/2] = x << 4; } pem_header += salt.size * 2; if (*pem_header != '\r' && *pem_header != '\n') { vpn_progress(vpninfo, PRG_ERR, _("Invalid salt in encrypted PEM file\n")); ret = -EINVAL; goto out_salt; } while (*pem_header == '\n' || *pem_header == '\r') pem_header++; /* pem_header should now point to the start of the base64 content. Put a -----BEGIN banner in place before it, so that we can use gnutls_pem_base64_decode_alloc(). The banner has to match the -----END banner, so make sure we get it right... */ pem_header -= 6; memcpy(pem_header, "-----\n", 6); pem_header -= strlen(begin); memcpy(pem_header, begin, strlen(begin)); pem_header -= 11; memcpy(pem_header, "-----BEGIN ", 11); constructed_pem.data = (void *)pem_header; constructed_pem.size = pem_size - (pem_header - pem_start); err = gnutls_pem_base64_decode_alloc(begin, &constructed_pem, &b64_data); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error base64-decoding encrypted PEM file: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out_salt; } if (b64_data.size < 16) { /* Just to be sure our parsing is OK */ vpn_progress(vpninfo, PRG_ERR, _("Encrypted PEM file too short\n")); ret = -EINVAL; goto out_b64; } ret = -ENOMEM; enc_key.size = gnutls_cipher_get_key_size(cipher); enc_key.data = malloc(enc_key.size); if (!enc_key.data) goto out_b64; key_data = malloc(b64_data.size); if (!key_data) goto out_enc_key; pass = certinfo->password; certinfo->password = NULL; while (1) { memcpy(key_data, b64_data.data, b64_data.size); ret = openssl_hash_password(vpninfo, pass, &enc_key, &salt); if (ret) goto out; err = gnutls_cipher_init(&handle, cipher, &enc_key, &salt); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise cipher for decrypting PEM file: %s\n"), gnutls_strerror(err)); gnutls_cipher_deinit(handle); ret = -EIO; goto out; } err = gnutls_cipher_decrypt(handle, key_data, b64_data.size); gnutls_cipher_deinit(handle); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PEM key: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } /* We have to strip any padding for GnuTLS to accept it. So a bit more ASN.1 parsing for us. FIXME: Consolidate with similar code in gnutls_tpm.c */ if (key_data[0] == 0x30) { gnutls_datum_t key_datum; int blocksize = gnutls_cipher_get_block_size(cipher); int keylen = key_data[1]; int ofs = 2; if (keylen & 0x80) { int lenlen = keylen & 0x7f; keylen = 0; if (lenlen > 3) goto fail; while (lenlen) { keylen <<= 8; keylen |= key_data[ofs++]; lenlen--; } } keylen += ofs; /* If there appears to be more or less padding than required, fail */ if (b64_data.size - keylen > blocksize || b64_data.size < keylen + 1) goto fail; /* If the padding bytes aren't all equal to the amount of padding, fail */ ofs = keylen; while (ofs < b64_data.size) { if (key_data[ofs] != b64_data.size - keylen) goto fail; ofs++; } key_datum.data = key_data; key_datum.size = keylen; err = gnutls_x509_privkey_import(key, &key_datum, GNUTLS_X509_FMT_DER); if (!err) { ret = 0; goto out; } } fail: if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Decrypting PEM key failed\n")); free_pass(&pass); } err = request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_pem", "openconnect_secondary_pem"), &pass, certinfo_string(certinfo, _("Enter PEM pass phrase:"), _("Enter secondary PEM pass phrase:"))); if (err) { ret = -EINVAL; goto out; } } out: free(key_data); free_pass(&pass); out_enc_key: free(enc_key.data); out_b64: free(b64_data.data); out_salt: free(salt.data); return ret; } static void fill_token_info(char *buf, size_t s, unsigned char *dst, size_t dstlen) { if (s && !gtls_ver(3,6,0)) s--; if (s > dstlen) s = dstlen; memcpy(dst, buf, s); if (s < dstlen) memset(dst + s, ' ', dstlen - s); } struct gtls_cert_info { gnutls_x509_crl_t crl; gnutls_privkey_t pkey; gnutls_x509_crt_t *certs; unsigned int nr_certs; }; static void free_gtls_cert_info(struct gtls_cert_info *gci) { gnutls_x509_crl_deinit(gci->crl); gnutls_privkey_deinit(gci->pkey); for (unsigned int i = 0; i < gci->nr_certs; i++) gnutls_x509_crt_deinit(gci->certs[i]); gnutls_free(gci->certs); *gci = (struct gtls_cert_info) {0}; } static int import_cert(gnutls_x509_crt_t *cert, const gnutls_datum_t *der) { gnutls_x509_crt_t crt = NULL; int ret; if (!cert) return GNUTLS_E_INVALID_REQUEST; ret = gnutls_x509_crt_init(&crt); if (ret < 0) goto done; ret = gnutls_x509_crt_import(crt, der, GNUTLS_X509_FMT_DER); if (ret < 0) { gnutls_x509_crt_deinit(crt); crt = NULL; } done: *cert = crt; return ret; } static int copy_cert(gnutls_x509_crt_t *cert_copy, gnutls_x509_crt_t cert) { gnutls_datum_t data = { NULL, 0 }; gnutls_x509_crt_t copy = NULL; int ret; if (!cert_copy) return GNUTLS_E_INVALID_REQUEST; ret = gnutls_x509_crt_export2(cert, GNUTLS_X509_FMT_DER, &data); if (ret < 0) goto done; ret = import_cert(©, &data); gnutls_free(data.data); done: *cert_copy = copy; return ret; } static int load_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct gtls_cert_info *gci) { gnutls_datum_t fdata; #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined(HAVE_GNUTLS_SYSTEM_KEYS) gnutls_datum_t pkey_sig = {NULL, 0}; void *dummy_hash_data = &load_certificate; #endif #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) char *cert_url = (char *)certinfo->cert; #endif #ifdef HAVE_P11KIT char *key_url = (char *)certinfo->key; gnutls_pkcs11_privkey_t p11key = NULL; #endif char *pem_header; gnutls_x509_crt_t last_cert, cert = NULL; gnutls_x509_crt_t *extra_certs = NULL; unsigned int nr_extra_certs = 0; int err; /* GnuTLS error */ int ret; int i; int cert_is_p11 = 0, key_is_p11 = 0; int cert_is_sys = 0, key_is_sys = 0; unsigned char key_id[20]; size_t key_id_size = sizeof(key_id); char name[80]; gnutls_x509_privkey_t x509key = NULL; certinfo->vpninfo = vpninfo; fdata.data = NULL; key_is_p11 = !strncmp(certinfo->key, "pkcs11:", 7); cert_is_p11 = !strncmp(certinfo->cert, "pkcs11:", 7); /* GnuTLS returns true for pkcs11:, tpmkey:, system:, and custom URLs. */ key_is_sys = !key_is_p11 && gnutls_url_is_supported(certinfo->key); cert_is_sys = !cert_is_p11 && gnutls_url_is_supported(certinfo->cert); #ifndef HAVE_GNUTLS_SYSTEM_KEYS if (key_is_sys || cert_is_sys) { vpn_progress(vpninfo, PRG_ERR, _("This binary built without system key support\n")); return -EINVAL; } #endif #ifndef HAVE_P11KIT if (key_is_p11 || cert_is_p11) { vpn_progress(vpninfo, PRG_ERR, _("This binary built without PKCS#11 support\n")); return -EINVAL; } #else /* Install PIN handler if either certificate or key are coming from PKCS#11 */ if (key_is_p11 || cert_is_p11) { CK_OBJECT_CLASS class; CK_ATTRIBUTE attr; P11KitUri *uri; uri = p11_kit_uri_new(); attr.type = CKA_CLASS; attr.pValue = &class; attr.ulValueLen = sizeof(class); /* Add appropriate pin-source and object-type attributes to both certificate and key URLs, unless they already exist. */ if (cert_is_p11 && !p11_kit_uri_parse(cert_url, P11_KIT_URI_FOR_ANY, uri)) { if (!p11_kit_uri_get_attribute(uri, CKA_CLASS)) { class = CKO_CERTIFICATE; p11_kit_uri_set_attribute(uri, &attr); } p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &cert_url); } if (key_is_p11 && !p11_kit_uri_parse(key_url, P11_KIT_URI_FOR_ANY, uri)) { if (certinfo->key == certinfo->cert || !p11_kit_uri_get_attribute(uri, CKA_CLASS)) { class = CKO_PRIVATE_KEY; p11_kit_uri_set_attribute(uri, &attr); } p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url); } p11_kit_uri_free(uri); } #endif /* HAVE_PKCS11 */ #if defined (HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) /* Load certificate(s) first... */ if (cert_is_p11 || cert_is_sys) { vpn_progress(vpninfo, PRG_DEBUG, cert_is_p11 ? _("Using PKCS#11 certificate %s\n") : _("Using system certificate %s\n"), cert_url); err = gnutls_x509_crt_init(&cert); if (err) { ret = -ENOMEM; goto out; } gnutls_x509_crt_set_pin_function(cert, gnutls_pin_callback, certinfo); /* Yes, even for *system* URLs the only API GnuTLS offers us is ...import_pkcs11_url(). */ err = gnutls_x509_crt_import_pkcs11_url(cert, cert_url, 0); if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE) err = gnutls_x509_crt_import_pkcs11_url(cert, cert_url, GNUTLS_PKCS11_OBJ_FLAG_LOGIN); if (err) { vpn_progress(vpninfo, PRG_ERR, cert_is_p11 ? _("Error loading certificate from PKCS#11: %s\n") : _("Error loading system certificate: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } goto got_certs; } #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ /* OK, not a PKCS#11 certificate so it must be coming from a file... */ vpn_progress(vpninfo, PRG_DEBUG, certinfo_string(certinfo, _("Using certificate file %s\n"), _("Using secondary certificate file %s\n")), certinfo->cert); /* Load file contents */ ret = load_datum(vpninfo, &fdata, certinfo->cert); if (ret) return ret; /* Is it PKCS#12? */ if (!key_is_p11) { /* PKCS#12 should actually contain certificates *and* private key */ ret = load_pkcs12_certificate(vpninfo, certinfo, &fdata, &x509key, &gci->certs, &gci->nr_certs, &extra_certs, &nr_extra_certs, &gci->crl); if (ret < 0) goto out; else if (!ret) { if (gci->nr_certs) { cert = gci->certs[0]; goto got_key; } vpn_progress(vpninfo, PRG_ERR, _("PKCS#11 file contained no certificate\n")); ret = -EINVAL; goto out; } /* It returned NOT_PKCS12. Fall through to try PEM formats. */ } /* We need to know how many there are in *advance*; it won't just allocate the array for us :( */ nr_extra_certs = count_x509_certificates(&fdata); if (!nr_extra_certs) nr_extra_certs = 1; /* wtf? Oh well, we'll fail later... */ extra_certs = gnutls_calloc(nr_extra_certs, sizeof(cert)); if (!extra_certs) { nr_extra_certs = 0; ret = -ENOMEM; goto out; } err = gnutls_x509_crt_list_import(extra_certs, &nr_extra_certs, &fdata, GNUTLS_X509_FMT_PEM, 0); if (err <= 0) { const char *reason; if (!err || err == GNUTLS_E_NO_CERTIFICATE_FOUND) reason = _("No certificate found in file"); else reason = gnutls_strerror(err); vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Loading certificate failed: %s\n"), _("Loading secondary certificate failed: %s\n")), reason); nr_extra_certs = 0; ret = -EINVAL; goto out; } nr_extra_certs = err; goto got_certs; got_certs: /* Now we have either a single certificate in 'cert', or an array of them in extra_certs[]. Next we look for the private key ... */ #ifdef HAVE_GNUTLS_SYSTEM_KEYS if (key_is_sys) { vpn_progress(vpninfo, PRG_DEBUG, certinfo_string(certinfo, _("Using system key %s\n"), _("Using secondary system key %s\n")), certinfo->key); err = gnutls_privkey_init(&gci->pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising private key structure: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } gnutls_privkey_set_pin_function(gci->pkey, gnutls_pin_callback, certinfo); err = gnutls_privkey_import_url(gci->pkey, certinfo->key, 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing system key %s: %s\n"), certinfo->key, gnutls_strerror(err)); ret = -EIO; goto out; } goto match_cert; } #endif /* HAVE_GNUTLS_SYSTEM_KEYS */ #if defined(HAVE_P11KIT) if (key_is_p11) { vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_init(&p11key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising PKCS#11 key structure: %s\n"), gnutls_strerror(err)); ret = -EIO; goto out; } gnutls_pkcs11_privkey_set_pin_function(p11key, gnutls_pin_callback, certinfo); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); /* Annoyingly, some tokens don't even admit the *existence* of the key until they're logged in. And thus a search doesn't work unless it specifies the *token* too. But if the URI for key and cert are the same, and the cert was found, then we can work out what token the *cert* was found in and try that before we give up... */ if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && certinfo->cert == certinfo->key) { gnutls_pkcs11_obj_t crt; P11KitUri *uri; CK_TOKEN_INFO *token; char buf[65]; size_t s; if (gnutls_pkcs11_obj_init(&crt)) goto key_err; if (gnutls_pkcs11_obj_import_url(crt, cert_url, 0)) goto key_err_obj; uri = p11_kit_uri_new(); if (!uri) goto key_err_obj; if (p11_kit_uri_parse(key_url, P11_KIT_URI_FOR_ANY, uri)) goto key_err_uri; token = p11_kit_uri_get_token_info(uri); if (!token) goto key_err_uri; if (!token->label[0]) { s = sizeof(token->label) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_LABEL, buf, &s)) fill_token_info(buf, s, token->label, sizeof(token->label)); } if (!token->manufacturerID[0]) { s = sizeof(token->manufacturerID) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_MANUFACTURER, buf, &s)) fill_token_info(buf, s, token->manufacturerID, sizeof(token->manufacturerID)); } if (!token->model[0]) { s = sizeof(token->model) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_MODEL, buf, &s)) fill_token_info(buf, s, token->model, sizeof(token->model)); } if (!token->serialNumber[0]) { s = sizeof(token->serialNumber) + 1; if (!gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_TOKEN_SERIAL, buf, &s)) fill_token_info(buf, s, token->serialNumber, sizeof(token->serialNumber)); } free(key_url); key_url = NULL; if (p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url)) goto key_err_uri; vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); /* If it still doesn't work then try dropping CKA_LABEL and adding the CKA_ID of the cert. */ if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && (p11_kit_uri_get_attribute(uri, CKA_LABEL) || !p11_kit_uri_get_attribute(uri, CKA_ID))) { CK_ATTRIBUTE attr; s = sizeof(buf); if (gnutls_pkcs11_obj_get_info(crt, GNUTLS_PKCS11_OBJ_ID, buf, &s)) goto key_err_uri; attr.type = CKA_ID; attr.pValue = buf; attr.ulValueLen = s; p11_kit_uri_set_attribute(uri, &attr); p11_kit_uri_clear_attribute(uri, CKA_LABEL); free(key_url); key_url = NULL; if (p11_kit_uri_format(uri, P11_KIT_URI_FOR_ANY, &key_url)) goto key_err_uri; vpn_progress(vpninfo, PRG_TRACE, _("Trying PKCS#11 key URL %s\n"), key_url); err = gnutls_pkcs11_privkey_import_url(p11key, key_url, 0); } key_err_uri: p11_kit_uri_free(uri); key_err_obj: gnutls_pkcs11_obj_deinit(crt); key_err: ; } if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing PKCS#11 URL %s: %s\n"), key_url, gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } vpn_progress(vpninfo, PRG_DEBUG, _("Using PKCS#11 key %s\n"), key_url); err = gnutls_privkey_init(&gci->pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising private key structure: %s\n"), gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } err = gnutls_privkey_import_pkcs11(gci->pkey, p11key, GNUTLS_PRIVKEY_IMPORT_AUTO_RELEASE); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing PKCS#11 key into private key structure: %s\n"), gnutls_strerror(err)); gnutls_pkcs11_privkey_deinit(p11key); ret = -EIO; goto out; } goto match_cert; } #endif /* HAVE_P11KIT */ /* OK, not a PKCS#11 key so it must be coming from a file... load the file into memory, unless it's the same as the cert file and we already loaded that. */ if (!fdata.data || certinfo->key != certinfo->cert) { gnutls_free(fdata.data); fdata.data = NULL; vpn_progress(vpninfo, PRG_DEBUG, _("Using private key file %s\n"), certinfo->key); ret = load_datum(vpninfo, &fdata, certinfo->key); if (ret) goto out; } /* Is it a PEM file with a TPM key blob? */ if (strstr((char *)fdata.data, "-----BEGIN TSS KEY BLOB-----")) { #ifndef HAVE_TROUSERS vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM support\n")); return -EINVAL; #else ret = load_tpm1_key(vpninfo, certinfo, &fdata, &gci->pkey, &pkey_sig); if (ret) goto out; goto match_cert; #endif } /* Is it a PEM file with a TPM key blob? */ if (strstr((char *)fdata.data, "-----BEGIN TSS2 PRIVATE KEY-----") || strstr((char *)fdata.data, "-----BEGIN TSS2 KEY BLOB-----")) { #ifndef HAVE_TSS2 vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM2 support\n")); return -EINVAL; #else ret = load_tpm2_key(vpninfo, certinfo, &fdata, &gci->pkey, &pkey_sig); if (ret) goto out; goto match_cert; #endif } /* OK, try other PEM files... */ gnutls_x509_privkey_init(&x509key); if ((pem_header = strstr((char *)fdata.data, "-----BEGIN RSA PRIVATE KEY-----")) || (pem_header = strstr((char *)fdata.data, "-----BEGIN DSA PRIVATE KEY-----")) || (pem_header = strstr((char *)fdata.data, "-----BEGIN EC PRIVATE KEY-----"))) { /* PKCS#1 files, including OpenSSL's odd encrypted version */ char type = pem_header[11]; char *p = strchr(pem_header, '\n'); if (!p) { vpn_progress(vpninfo, PRG_ERR, _("Failed to interpret PEM file\n")); ret = -EINVAL; goto out; } while (*p == '\n' || *p == '\r') p++; if (!strncmp(p, "Proc-Type: 4,ENCRYPTED", 22)) { p += 22; while (*p == '\n' || *p == '\r') p++; ret = import_openssl_pem(vpninfo, certinfo, x509key, type, p, fdata.size - (p - (char *)fdata.data)); if (ret) goto out; } else { err = gnutls_x509_privkey_import(x509key, &fdata, GNUTLS_X509_FMT_PEM); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load PKCS#1 private key: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } } else if (strstr((char *)fdata.data, "-----BEGIN PRIVATE KEY-----")) { /* Unencrypted PKCS#8 */ err = gnutls_x509_privkey_import_pkcs8(x509key, &fdata, GNUTLS_X509_FMT_PEM, NULL, GNUTLS_PKCS_PLAIN); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load private key as PKCS#8: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } else if (strstr((char *)fdata.data, "-----BEGIN ENCRYPTED PRIVATE KEY-----")) { /* Encrypted PKCS#8 */ char *pass = certinfo->password; while ((err = gnutls_x509_privkey_import_pkcs8(x509key, &fdata, GNUTLS_X509_FMT_PEM, pass?:"", 0))) { if (err != GNUTLS_E_DECRYPTION_FAILED) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load private key as PKCS#8: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } certinfo->password = NULL; if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#8 certificate file\n")); free_pass(&pass); } err = request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PEM pass phrase:")); if (err) { ret = -EINVAL; goto out; } } free_pass(&pass); certinfo->password = NULL; } else if (!gnutls_x509_privkey_import(x509key, &fdata, GNUTLS_X509_FMT_DER) || !gnutls_x509_privkey_import_pkcs8(x509key, &fdata, GNUTLS_X509_FMT_DER, NULL, GNUTLS_PKCS_PLAIN)) { /* Unencrypted DER (PKCS#1 or PKCS#8) */ } else { /* Last chance: try encrypted PKCS#8 DER. And give up if it's not that */ char *pass = certinfo->password; while ((err = gnutls_x509_privkey_import_pkcs8(x509key, &fdata, GNUTLS_X509_FMT_DER, pass?:"", 0))) { if (err != GNUTLS_E_DECRYPTION_FAILED) { vpn_progress(vpninfo, PRG_ERR, _("Failed to determine type of private key %s\n"), certinfo->key); ret = -EINVAL; goto out; } certinfo->password = NULL; if (pass) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#8 certificate file\n")); free_pass(&pass); } err = request_passphrase(vpninfo, "openconnect_pem", &pass, _("Enter PKCS#8 pass phrase:")); if (err) { ret = -EINVAL; goto out; } } free_pass(&pass); certinfo->password = NULL; } /* Now attempt to make sure we use the *correct* certificate, to match the key. Since we have a software key, we can easily query it and compare its key_id with each certificate till we find a match. */ err = gnutls_x509_privkey_get_key_id(x509key, 0, key_id, &key_id_size); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to get key ID: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } /* If extra_certs[] is NULL, we have one candidate in 'cert' to check. */ for (i = 0; i < (extra_certs ? nr_extra_certs : 1); i++) { unsigned char cert_id[20]; size_t cert_id_size = sizeof(cert_id); err = gnutls_x509_crt_get_key_id(extra_certs ? extra_certs[i] : cert, 0, cert_id, &cert_id_size); if (err) continue; if (cert_id_size == key_id_size && !memcmp(cert_id, key_id, key_id_size)) { if (extra_certs) { cert = extra_certs[i]; extra_certs[i] = NULL; } goto got_key; } } /* There's no pkey (there's an x509 key), so even if p11-kit or trousers is enabled we'll fall straight through the bit at match_cert: below, and go directly to the bit where it prints the 'no match found' error and exits. */ #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined(HAVE_GNUTLS_SYSTEM_KEYS) match_cert: /* If we have a privkey from PKCS#11 or TPM, we can't do the simple comparison of key ID that we do for software keys to find which certificate is a match. So sign some dummy data and then check the signature against each of the available certificates until we find the right one. */ if (gci->pkey) { /* The TPM code may have already signed it, to test authorisation. We only sign here for PKCS#11 keys, in which case fdata might be empty too so point it at dummy data. We try multiple hashes because depending on the algorithm or device not all may be usable */ unsigned j; gnutls_digest_algorithm_t *dig, digs[] = { GNUTLS_DIG_SHA256, GNUTLS_DIG_SHA1, GNUTLS_DIG_SHA512, GNUTLS_DIG_UNKNOWN }; for (dig = digs; *dig != GNUTLS_DIG_UNKNOWN; dig++) { if (!pkey_sig.data) { if (!fdata.data) { fdata.data = dummy_hash_data; fdata.size = 20; } err = gnutls_privkey_sign_data(gci->pkey, *dig, 0, &fdata, &pkey_sig); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error signing test data with private key: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } /* If extra_certs[] is NULL, we have one candidate in 'cert' to check. */ for (j = 0; j < (extra_certs ? nr_extra_certs : 1); j++) { gnutls_pubkey_t pubkey = NULL; err = gnutls_pubkey_init(&pubkey); if (err >= 0) err = gnutls_pubkey_import_x509(pubkey, extra_certs ? extra_certs[j] : cert, 0); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error validating signature against certificate: %s\n"), gnutls_strerror(err)); /* We'll probably fail shortly if we don't find it. */ gnutls_pubkey_deinit(pubkey); continue; } err = verify_signed_data(pubkey, gci->pkey, *dig, &fdata, &pkey_sig); gnutls_pubkey_deinit(pubkey); if (err >= 0) { if (extra_certs) { cert = extra_certs[j]; extra_certs[j] = NULL; } gnutls_free(pkey_sig.data); pkey_sig.data = NULL; goto got_key; } } gnutls_free(pkey_sig.data); pkey_sig.data = NULL; } } #endif /* P11KIT || TROUSERS || TSS2 || SYSTEM_KEYS */ /* We shouldn't reach this. It means that we didn't find *any* matching cert */ vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("No SSL certificate found to match private key\n"), _("No secondary certificate found to match private key\n"))); ret = -EINVAL; goto out; /********************************************************************/ got_key: /* Now we have a key in either 'x509key' or 'gci->pkey', a matching cert in 'cert', and potentially a list of other certs in 'extra_certs[]'. If we loaded a PKCS#12 file we may have a trust chain in 'gci->certs[]' too. */ if (!((!gci->pkey != !x509key) && cert)) vpn_progress(vpninfo, PRG_ERR, _("got_key conditions not met!\n")); /* Transform the x509key to abstract key */ if (!gci->pkey) { err = gnutls_privkey_init(&gci->pkey); if (err >= 0) { gnutls_privkey_set_pin_function(gci->pkey, gnutls_pin_callback, certinfo); err = gnutls_privkey_import_x509(gci->pkey, x509key, GNUTLS_PRIVKEY_IMPORT_AUTO_RELEASE); } if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error creating an abstract privkey from /x509_privkey: %s\n"), gnutls_strerror(err)); /* gci->pkey will be freed in out */ ret = -EIO; goto out; } } /* pkey owns x509key */ x509key = NULL; check_certificate_expiry(vpninfo, certinfo, cert); get_cert_name(cert, name, sizeof(name)); vpn_progress(vpninfo, PRG_INFO, certinfo_string(certinfo, _("Using client certificate '%s'\n"), _("Using secondary certificate '%s'\n")), name); /* OpenSSL has problems with certificate chains — if there are multiple certs with the same name, it doesn't necessarily choose the _right_ one. (RT#1942) Pick the right ones for ourselves and add them manually. */ /* We may have already got a bunch of certs from PKCS#12 file. Remember how many need to be freed when we're done, since we'll expand the gci->certs array with more from the cafile and extra_certs[] array if we can, and those extra certs must not be freed (twice). */ if (!gci->nr_certs) { gci->certs = gnutls_malloc(sizeof(*gci->certs)); if (!gci->certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for certificate\n")); ret = -ENOMEM; goto out; } gci->certs[0] = cert; gci->nr_certs = 1; } last_cert = gci->certs[gci->nr_certs-1]; while (1) { gnutls_x509_crt_t issuer = NULL; gnutls_x509_crt_t *saved_cert_list = NULL; for (i = 0; i < nr_extra_certs; i++) { if (extra_certs[i] && gnutls_x509_crt_check_issuer(last_cert, extra_certs[i])) break; } if (i < nr_extra_certs) { /* We found the next cert in the chain in extra_certs[] */ issuer = extra_certs[i]; extra_certs[i] = NULL; } else { /* Look for it in the system trust cafile too. */ err = gnutls_certificate_get_issuer(vpninfo->https_cred, last_cert, &issuer, 0); /* GnuTLS 3.2.10 does not support flag GNUTLS_TL_GET_COPY, * which makes a copy of the issuer. Therefore, we make * an explicit copy of the certificate */ if (err >= 0) err = copy_cert(&issuer, issuer); #ifdef HAVE_P11KIT if (err == GNUTLS_E_REQUESTED_DATA_NOT_AVAILABLE && cert_is_p11) { gnutls_datum_t t = {NULL, 0}; err = gnutls_pkcs11_get_raw_issuer(cert_url, last_cert, &t, GNUTLS_X509_FMT_DER, 0); if (err >= 0) { err = import_cert(&issuer, &t); gnutls_free(t.data); } if (err < 0) { vpn_progress(vpninfo, PRG_TRACE, _("Got no issuer from PKCS#11\n")); } else { get_cert_name(issuer, name, sizeof(name)); vpn_progress(vpninfo, PRG_ERR, _("Got next CA '%s' from PKCS#11\n"), name); } } #endif if (err) break; } if (gnutls_x509_crt_check_issuer(issuer, issuer)) { /* Don't actually include the root CA. If they don't already trust it, then handing it to them isn't going to help. But don't omit the original certificate if it's self-signed. */ gnutls_x509_crt_deinit(issuer); break; } /* OK, we found a new cert to add to our chain. */ saved_cert_list = gci->certs; gci->certs = gnutls_realloc(gci->certs, sizeof(cert) * (gci->nr_certs+1)); if (!gci->certs) { gci->certs = saved_cert_list; vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for supporting certificates\n")); gnutls_x509_crt_deinit(issuer); break; } /* Append the new one */ gci->certs[gci->nr_certs] = issuer; gci->nr_certs++; last_cert = issuer; } for (i = 1; i < gci->nr_certs; i++) { get_cert_name(gci->certs[i], name, sizeof(name)); vpn_progress(vpninfo, PRG_DEBUG, _("Adding supporting CA '%s'\n"), name); } ret = 0; /* OK, now we've checked the cert expiry and warned the user if it's going to expire soon, and we've built up as much of a trust chain in gci->certs[] as we can find, to help the server work around OpenSSL RT#1942. Set up the GnuTLS credentials with the appropriate key and certs. GnuTLS makes us do this differently for X509 privkeys vs. TPM/PKCS#11 "generic" privkeys, and the latter is particularly 'fun' for GnuTLS 2.12... */ out: gnutls_x509_privkey_deinit(x509key); if (cert && !gci->certs) { /* Not if gci->certs. It's gci->certs[0] then and will be * freed as such. This is only for the error path. */ gnutls_x509_crt_deinit(cert); } for (i = 0; i < nr_extra_certs; i++) { if (extra_certs[i]) gnutls_x509_crt_deinit(extra_certs[i]); } gnutls_free(extra_certs); #if defined(HAVE_P11KIT) || defined(HAVE_TROUSERS) || defined(HAVE_TSS2) || defined(HAVE_GNUTLS_SYSTEM_KEYS) /* If we support arbitrary privkeys, we might have abused fdata.data just to point to something to hash. Don't free it in that case! */ if (fdata.data != dummy_hash_data) #endif gnutls_free(fdata.data); #ifdef HAVE_P11KIT /* This exists in the HAVE_GNUTLS_SYSTEM_KEYS case but will never change so it's OK not to add to the #ifdef mess here. */ if (cert_url != certinfo->cert) free(cert_url); if (key_url != certinfo->key) free(key_url); #endif if (ret) free_gtls_cert_info(gci); return ret; } /* We have to convert the array of X509 certificates to gnutls_pcert_st for ourselves. There's no function that takes a gnutls_privkey_t as the key and gnutls_x509_crt_t certificates. */ static int assign_privkey(struct openconnect_info *vpninfo, struct gtls_cert_info *gci) { gnutls_pcert_st *pcerts = gnutls_calloc(gci->nr_certs, sizeof(*pcerts)); unsigned int i; int err; if (!pcerts) return GNUTLS_E_MEMORY_ERROR; for (i = 0 ; i < gci->nr_certs; i++) { err = gnutls_pcert_import_x509(pcerts + i, gci->certs[i], 0); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Importing X509 certificate failed: %s\n"), gnutls_strerror(err)); goto free_pcerts; } } err = gnutls_certificate_set_key(vpninfo->https_cred, NULL, 0, pcerts, gci->nr_certs, gci->pkey); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting PKCS#11 certificate failed: %s\n"), gnutls_strerror(err)); free_pcerts: for (i = 0 ; i < gci->nr_certs; i++) gnutls_pcert_deinit(pcerts + i); } else gci->pkey = NULL; /* We gave it away */ free(pcerts); return err; } static int load_primary_certificate(struct openconnect_info *vpninfo) { struct gtls_cert_info gci = {}; int err; int ret = load_certificate(vpninfo, &vpninfo->certinfo[0], &gci); if (ret) return ret; gnutls_x509_crt_t cert = gci.certs[0]; get_cert_md5_fingerprint(vpninfo, cert, vpninfo->local_cert_md5); if (gci.crl) { err = gnutls_certificate_set_x509_crl(vpninfo->https_cred, &gci.crl, 1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting certificate revocation list failed: %s\n"), gnutls_strerror(err)); ret = -EINVAL; goto out; } } #if GNUTLS_VERSION_NUMBER >= 0x030600 if (gnutls_privkey_get_pk_algorithm(gci.pkey, NULL) == GNUTLS_PK_RSA) { /* * For hardware RSA keys, we need to check if they can cope with PSS. * If not, disable TLSv1.3 which would make PSS mandatory. * https://bugzilla.redhat.com/show_bug.cgi?id=1663058 */ gnutls_datum_t fdata= { (void *)&gci, sizeof(gci) }; gnutls_datum_t pkey_sig = { NULL, 0 }; err = gnutls_privkey_sign_data2(gci.pkey, GNUTLS_SIGN_RSA_PSS_RSAE_SHA256, 0, &fdata, &pkey_sig); if (err) { vpn_progress(vpninfo, PRG_INFO, _("Private key appears not to support RSA-PSS. Disabling TLSv1.3\n")); vpninfo->no_tls13 = 1; } free(pkey_sig.data); } #endif err = assign_privkey(vpninfo, &gci); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Setting certificate failed: %s\n"), gnutls_strerror(err)); ret = -EIO; } else ret = 0; out: free_gtls_cert_info(&gci); return ret; } static int get_cert_fingerprint(struct openconnect_info *vpninfo, gnutls_x509_crt_t cert, gnutls_digest_algorithm_t algo, char *buf) { unsigned char md[256]; size_t md_size = sizeof(md); unsigned int i; if (gnutls_x509_crt_get_fingerprint(cert, algo, md, &md_size)) return -EIO; for (i = 0; i < md_size; i++) sprintf(&buf[i*2], "%02X", md[i]); return 0; } int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf) { return get_cert_fingerprint(vpninfo, cert, GNUTLS_DIG_MD5, buf); } static int set_peer_cert_hash(struct openconnect_info *vpninfo) { size_t shalen; gnutls_pubkey_t pkey; gnutls_datum_t d; int err; err = gnutls_pubkey_init(&pkey); if (err) return err; err = gnutls_pubkey_import_x509(pkey, vpninfo->peer_cert, 0); if (!err) err = gnutls_pubkey_export2(pkey, GNUTLS_X509_FMT_DER, &d); gnutls_pubkey_deinit(pkey); if (err) return err; shalen = sizeof(vpninfo->peer_cert_sha256_raw); err = gnutls_fingerprint(GNUTLS_DIG_SHA256, &d, vpninfo->peer_cert_sha256_raw, &shalen); if (err) { gnutls_free(d.data); return err; } shalen = sizeof(vpninfo->peer_cert_sha1_raw); err = gnutls_fingerprint(GNUTLS_DIG_SHA1, &d, vpninfo->peer_cert_sha1_raw, &shalen); if (err) { gnutls_free(d.data); return err; } gnutls_free(d.data); return 0; } char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo) { gnutls_datum_t buf; if (gnutls_x509_crt_print(vpninfo->peer_cert, GNUTLS_CRT_PRINT_FULL, &buf)) return NULL; return (char *)buf.data; } int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf) { size_t l = 0; unsigned char *ret = NULL; if (gnutls_x509_crt_export(vpninfo->peer_cert, GNUTLS_X509_FMT_DER, ret, &l) != GNUTLS_E_SHORT_MEMORY_BUFFER) return -EIO; ret = gnutls_malloc(l); if (!ret) return -ENOMEM; if (gnutls_x509_crt_export(vpninfo->peer_cert, GNUTLS_X509_FMT_DER, ret, &l)) { gnutls_free(ret); return -EIO; } *buf = ret; return l; } void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf) { gnutls_free(buf); } int openconnect_get_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert **chainp) { struct oc_cert *chain, *p; const gnutls_datum_t *cert_list = vpninfo->cert_list_handle; int i, cert_list_size = vpninfo->cert_list_size; if (!cert_list) return -EINVAL; if (cert_list_size <= 0) return -EIO; p = chain = calloc(cert_list_size, sizeof(struct oc_cert)); if (!chain) return -ENOMEM; for (i = 0; i < cert_list_size; i++, p++) { p->der_data = (unsigned char *)cert_list[i].data; p->der_len = cert_list[i].size; } *chainp = chain; return cert_list_size; } void openconnect_free_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert *chain) { free(chain); } static int verify_peer(gnutls_session_t session) { struct openconnect_info *vpninfo = gnutls_session_get_ptr(session); const gnutls_datum_t *cert_list; gnutls_x509_crt_t cert; unsigned int status, cert_list_size; const char *reason = NULL; int err = 0; cert_list = gnutls_certificate_get_peers(session, &cert_list_size); if (!cert_list) { vpn_progress(vpninfo, PRG_ERR, _("Server presented no certificate\n")); return GNUTLS_E_CERTIFICATE_ERROR; } if (vpninfo->peer_cert) { unsigned char *prev_der = NULL; int der_len = openconnect_get_peer_cert_DER(vpninfo, &prev_der); if (der_len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error comparing server's cert on rehandshake: %s\n"), strerror(-der_len)); return GNUTLS_E_CERTIFICATE_ERROR; } if (cert_list[0].size != der_len || memcmp(cert_list[0].data, prev_der, der_len)) { vpn_progress(vpninfo, PRG_ERR, _("Server presented different cert on rehandshake\n")); gnutls_free(prev_der); return GNUTLS_E_CERTIFICATE_ERROR; } gnutls_free(prev_der); vpn_progress(vpninfo, PRG_TRACE, _("Server presented identical cert on rehandshake\n")); return 0; } err = gnutls_x509_crt_init(&cert); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error initialising X509 cert structure\n")); return GNUTLS_E_CERTIFICATE_ERROR; } err = gnutls_x509_crt_import(cert, &cert_list[0], GNUTLS_X509_FMT_DER); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error importing server's cert\n")); gnutls_x509_crt_deinit(cert); return GNUTLS_E_CERTIFICATE_ERROR; } vpninfo->peer_cert = cert; err = set_peer_cert_hash(vpninfo); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Could not calculate hash of server's certificate\n")); } err = gnutls_certificate_verify_peers2(session, &status); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error checking server cert status\n")); return GNUTLS_E_CERTIFICATE_ERROR; } if (status & GNUTLS_CERT_REVOKED) reason = _("certificate revoked"); else if (status & GNUTLS_CERT_SIGNER_NOT_FOUND) reason = _("signer not found"); else if (status & GNUTLS_CERT_SIGNER_NOT_CA) reason = _("signer not a CA certificate"); else if (status & GNUTLS_CERT_INSECURE_ALGORITHM) reason = _("insecure algorithm"); else if (status & GNUTLS_CERT_NOT_ACTIVATED) reason = _("certificate not yet activated"); else if (status & GNUTLS_CERT_EXPIRED) reason = _("certificate expired"); else if (status & GNUTLS_CERT_INVALID) /* If this is set and no other reason, it apparently means that signature verification failed. Not entirely sure why we don't just set a bit for that too. */ reason = _("signature verification failed"); if (reason) goto done; if (!gnutls_x509_crt_check_hostname(cert, vpninfo->hostname)) { int i, ret; unsigned char addrbuf[sizeof(struct in6_addr)]; unsigned char certaddr[sizeof(struct in6_addr)]; size_t addrlen = 0, certaddrlen; /* gnutls_x509_crt_check_hostname() doesn't cope with IPv6 literals in URI form with surrounding [] so we must check for ourselves. */ if (vpninfo->hostname[0] == '[' && vpninfo->hostname[strlen(vpninfo->hostname)-1] == ']') { char *p = &vpninfo->hostname[strlen(vpninfo->hostname)-1]; *p = 0; if (inet_pton(AF_INET6, vpninfo->hostname + 1, addrbuf) > 0) addrlen = 16; *p = ']'; } #if GNUTLS_VERSION_NUMBER < 0x030306 /* And before 3.3.6 it didn't check IP addresses at all. */ else if (inet_pton(AF_INET, vpninfo->hostname, addrbuf) > 0) addrlen = 4; else if (inet_pton(AF_INET6, vpninfo->hostname, addrbuf) > 0) addrlen = 16; #endif if (!addrlen) { /* vpninfo->hostname was not a bare IP address. Nothing to do */ goto badhost; } for (i = 0; ; i++) { certaddrlen = sizeof(certaddr); ret = gnutls_x509_crt_get_subject_alt_name(cert, i, certaddr, &certaddrlen, NULL); /* If this happens, it wasn't an IP address. */ if (ret == GNUTLS_E_SHORT_MEMORY_BUFFER) continue; if (ret < 0) break; if (ret != GNUTLS_SAN_IPADDRESS) continue; if (certaddrlen == addrlen && !memcmp(addrbuf, certaddr, addrlen)) goto done; } badhost: reason = _("certificate does not match hostname"); } done: if (reason) { vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), reason); if (vpninfo->validate_peer_cert) { vpninfo->cert_list_handle = (void *)cert_list; vpninfo->cert_list_size = cert_list_size; err = vpninfo->validate_peer_cert(vpninfo->cbdata, reason) ? GNUTLS_E_CERTIFICATE_ERROR : 0; vpninfo->cert_list_handle = NULL; } else err = GNUTLS_E_CERTIFICATE_ERROR; } return err; } int openconnect_open_https(struct openconnect_info *vpninfo) { int ssl_sock = -1; int err; if (vpninfo->https_sess) return 0; if (vpninfo->peer_cert) { gnutls_x509_crt_deinit(vpninfo->peer_cert); vpninfo->peer_cert = NULL; } free(vpninfo->peer_cert_hash); vpninfo->peer_cert_hash = NULL; gnutls_free(vpninfo->cstp_cipher); vpninfo->cstp_cipher = NULL; ssl_sock = connect_https_socket(vpninfo); if (ssl_sock < 0) return ssl_sock; if (!vpninfo->https_cred) { gnutls_certificate_allocate_credentials(&vpninfo->https_cred); if (!vpninfo->no_system_trust) gnutls_certificate_set_x509_system_trust(vpninfo->https_cred); gnutls_certificate_set_verify_function(vpninfo->https_cred, verify_peer); #ifdef ANDROID_KEYSTORE if (vpninfo->cafile && !strncmp(vpninfo->cafile, "keystore:", 9)) { gnutls_datum_t datum; unsigned int nr_certs; err = load_datum(vpninfo, &datum, vpninfo->cafile); if (err < 0) { gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; return err; } /* For GnuTLS 3.x We should use gnutls_x509_crt_list_import2() */ nr_certs = count_x509_certificates(&datum); if (nr_certs) { gnutls_x509_crt_t *certs; int i; certs = calloc(nr_certs, sizeof(*certs)); if (!certs) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for cafile certs\n")); gnutls_free(datum.data); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -ENOMEM; } err = gnutls_x509_crt_list_import(certs, &nr_certs, &datum, GNUTLS_X509_FMT_PEM, 0); gnutls_free(datum.data); if (err >= 0) { nr_certs = err; err = gnutls_certificate_set_x509_trust(vpninfo->https_cred, certs, nr_certs); } for (i = 0; i < nr_certs; i++) gnutls_x509_crt_deinit(certs[i]); free(certs); if (err < 0) { /* From crt_list_import or set_x509_trust */ vpn_progress(vpninfo, PRG_ERR, _("Failed to read certs from cafile: %s\n"), gnutls_strerror(err)); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -EINVAL; } } } else #endif if (vpninfo->cafile) { err = gnutls_certificate_set_x509_trust_file(vpninfo->https_cred, vpninfo->cafile, GNUTLS_X509_FMT_PEM); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open CA file '%s': %s\n"), vpninfo->cafile, gnutls_strerror(err)); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return -EINVAL; } } if (vpninfo->certinfo[0].cert) { err = load_primary_certificate(vpninfo); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed. Aborting.\n")); gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; closesocket(ssl_sock); return err; } } } gnutls_init(&vpninfo->https_sess, GNUTLS_CLIENT|GNUTLS_FORCE_CLIENT_CERT); gnutls_session_set_ptr(vpninfo->https_sess, (void *) vpninfo); /* * For versions of GnuTLS older than 3.2.9, we try to avoid long * packets by silently disabling extensions such as SNI. * * See comments above regarding COMPAT and DUMBFW. */ if (string_is_hostname(vpninfo->hostname)) gnutls_server_name_set(vpninfo->https_sess, GNUTLS_NAME_DNS, vpninfo->hostname, strlen(vpninfo->hostname)); /* * If a ClientHello is between 256 and 511 bytes, the * server cannot distinguish between a SSLv2 formatted * packet and a SSLv3 formatted packet. * * F5 BIG-IP reverse proxies in particular will * silently drop an ambiguous ClientHello. * * GnuTLS fixes this in v3.2.9+ by padding ClientHello * packets to at least 512 bytes if %COMPAT or %DUMBFW * is specified. * * Discussion: * https://www.ietf.org/mail-archive/web/tls/current/msg10423.html * * GnuTLS commits: * b6d29bb1737f96ac44a8ef9cc9fe7f9837e20465 * a9bd8c4d3a639c40adb964349297f891f583a21b * 531bec47037e882af32963f8461988f8c724919e * 7c45ebbdd877cd994b6b938bd6faef19558a01e1 * 8d28901a3ebd2589d0fc9941475d50f04047f6fe * 28065ce3896b1b0f87972d0bce9b17641ebb69b9 */ if (!vpninfo->ciphersuite_config) { struct oc_text_buf *buf = buf_alloc(); #ifdef DEFAULT_PRIO buf_append(buf, "%s", DEFAULT_PRIO ":%COMPAT"); #else /* GnuTLS 3.5.19 and onward remove AES-CBC-HMAC-SHA256 from NORMAL, * but some Cisco servers can't do anything better, so * explicitly add '+SHA256' to allow it. Yay Cisco. * - GnuTLS commit that removed: c433cdf92349afae66c703bdacedf987f423605e * - Old server requiring SHA256: https://gitlab.com/openconnect/openconnect/-/issues/21 * * Likewise, GnuTLS 3.6.0 and onward remove 3DES-CBC from NORMAL, * but some ancient servers can't do anything better. This (and ARCFOUR-128) * should not be re-enabled by default due to serious security flaws, so adding as * an option, --allow-insecure-crypto. Yay ancient, unpatched servers. * - GnuTLS commit that removed: 66f2a0a271bcc10e8fb68771f9349a3d3ecf6dda * - Old server requiring 3DES-CBC: https://gitlab.com/openconnect/openconnect/-/issues/145 */ buf_append(buf, "NORMAL:-VERS-SSL3.0:+SHA256:%%COMPAT"); #endif if (vpninfo->pfs) buf_append(buf, ":-RSA"); if (vpninfo->no_tls13) buf_append(buf, ":-VERS-TLS1.3"); if (vpninfo->allow_insecure_crypto) { buf_append(buf, ":+3DES-CBC:+ARCFOUR-128:+SHA1"); if (gnutls_check_version_numeric(3,6,0)) buf_append(buf, ":%%VERIFY_ALLOW_SIGN_WITH_SHA1"); } else buf_append(buf, ":-3DES-CBC:-ARCFOUR-128"); if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to construct GnuTLS priority string\n")); return buf_free(buf); } vpninfo->ciphersuite_config = buf->data; buf->data = NULL; buf_free(buf); } err = gnutls_priority_set_direct(vpninfo->https_sess, vpninfo->ciphersuite_config, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set GnuTLS priority string (\"%s\"): %s\n"), vpninfo->ciphersuite_config, gnutls_strerror(err)); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EIO; } gnutls_record_disable_padding(vpninfo->https_sess); gnutls_credentials_set(vpninfo->https_sess, GNUTLS_CRD_CERTIFICATE, vpninfo->https_cred); gnutls_transport_set_ptr(vpninfo->https_sess,(gnutls_transport_ptr_t)(intptr_t)ssl_sock); vpn_progress(vpninfo, PRG_INFO, _("SSL negotiation with %s\n"), vpninfo->hostname); #ifdef GNUTLS_DEFAULT_HANDSHAKE_TIMEOUT gnutls_handshake_set_timeout(vpninfo->https_sess, GNUTLS_DEFAULT_HANDSHAKE_TIMEOUT); #endif err = cstp_handshake(vpninfo, 1); if (err) return err; vpninfo->ssl_fd = ssl_sock; vpninfo->ssl_read = openconnect_gnutls_read; vpninfo->ssl_write = openconnect_gnutls_write; vpninfo->ssl_gets = openconnect_gnutls_gets; return 0; } int cstp_handshake(struct openconnect_info *vpninfo, unsigned init) { int err; int ssl_sock = -1; ssl_sock = (intptr_t)gnutls_transport_get_ptr(vpninfo->https_sess); while ((err = gnutls_handshake(vpninfo->https_sess))) { if (err == GNUTLS_E_AGAIN || err == GNUTLS_E_INTERRUPTED) { fd_set rd_set, wr_set; int maxfd = ssl_sock; FD_ZERO(&rd_set); FD_ZERO(&wr_set); if (gnutls_record_get_direction(vpninfo->https_sess)) FD_SET(ssl_sock, &wr_set); else FD_SET(ssl_sock, &rd_set); cmd_fd_set(vpninfo, &rd_set, &maxfd); if (select(maxfd + 1, &rd_set, &wr_set, NULL, NULL) < 0 && errno != EINTR) { vpn_perror(vpninfo, _("Failed select() for TLS")); return -EIO; } if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection cancelled\n")); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EINTR; } } else if (gnutls_error_is_fatal(err)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection failure: %s\n"), gnutls_strerror(err)); gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; closesocket(ssl_sock); return -EIO; } else { /* non-fatal error or warning. Ignore it and continue */ vpn_progress(vpninfo, PRG_DEBUG, _("GnuTLS non-fatal return during handshake: %s\n"), gnutls_strerror(err)); } } gnutls_free(vpninfo->cstp_cipher); vpninfo->cstp_cipher = get_gnutls_cipher(vpninfo->https_sess); if (init) { vpn_progress(vpninfo, PRG_INFO, _("Connected to HTTPS on %s with ciphersuite %s\n"), vpninfo->hostname, vpninfo->cstp_cipher); } else { vpn_progress(vpninfo, PRG_INFO, _("Renegotiated SSL on %s with ciphersuite %s\n"), vpninfo->hostname, vpninfo->cstp_cipher); } return 0; } void openconnect_close_https(struct openconnect_info *vpninfo, int final) { if (vpninfo->https_sess) { gnutls_deinit(vpninfo->https_sess); vpninfo->https_sess = NULL; } if (vpninfo->ssl_fd != -1) { unmonitor_fd(vpninfo, ssl); closesocket(vpninfo->ssl_fd); vpninfo->ssl_fd = -1; } if (final && vpninfo->https_cred) { gnutls_certificate_free_credentials(vpninfo->https_cred); vpninfo->https_cred = NULL; #ifdef HAVE_TROUSERS release_tpm1_ctx(vpninfo, &vpninfo->certinfo[0]); #endif #ifdef HAVE_TSS2 release_tpm2_ctx(vpninfo, &vpninfo->certinfo[0]); #endif } } int openconnect_init_ssl(void) { #ifdef _WIN32 int ret = openconnect__win32_sock_init(); if (ret) return ret; #endif if (gnutls_global_init()) return -EIO; return 0; } char *get_gnutls_cipher(gnutls_session_t session) { return gnutls_session_get_desc(session); } int openconnect_sha1(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t shalen = SHA1_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_SHA1, &d, result, &shalen)) return -1; return 0; } int openconnect_sha256(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t shalen = SHA256_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_SHA256, &d, result, &shalen)) return -1; return 0; } int openconnect_md5(unsigned char *result, void *data, int datalen) { gnutls_datum_t d; size_t md5len = MD5_SIZE; d.data = data; d.size = datalen; if (gnutls_fingerprint(GNUTLS_DIG_MD5, &d, result, &md5len)) return -1; return 0; } int openconnect_random(void *bytes, int len) { if (gnutls_rnd(GNUTLS_RND_RANDOM, bytes, len)) return -EIO; return 0; } int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf) { memcpy(buf, vpninfo->local_cert_md5, sizeof(vpninfo->local_cert_md5)); return 0; } #if defined(HAVE_P11KIT) || defined(HAVE_GNUTLS_SYSTEM_KEYS) static int gnutls_pin_callback(void *priv, int attempt, const char *uri, const char *token_label, unsigned int flags, char *pin, size_t pin_max) { struct cert_info *certinfo = priv; struct openconnect_info *vpninfo = certinfo->vpninfo; struct pin_cache **cache = &vpninfo->pin_cache; struct oc_auth_form f; struct oc_form_opt o; char message[1024]; int ret; if (!vpninfo || !vpninfo->process_auth_form) return -1; while (*cache) { if (!strcmp(uri, (*cache)->token)) { if ((*cache)->pin) { if (attempt == 0) { snprintf(pin, pin_max, "%s", (*cache)->pin); return 0; } memset((*cache)->pin, 0x5a, strlen((*cache)->pin)); free((*cache)->pin); (*cache)->pin = NULL; } break; } cache = &(*cache)->next; } if (!*cache) { *cache = calloc(1, sizeof(struct pin_cache)); if (!*cache) return -1; (*cache)->token = strdup(uri); } if (!attempt && certinfo->password) { snprintf(pin, pin_max, "%s", certinfo->password); (*cache)->pin = certinfo->password; certinfo->password = NULL; return 0; } memset(&f, 0, sizeof(f)); f.auth_id = (char *)certinfo_string(certinfo, "pkcs11_pin", "secondary_pkcs11_pin"); f.opts = &o; message[sizeof(message)-1] = 0; snprintf(message, sizeof(message) - 1, _("PIN required for %s"), token_label); f.message = message; if (flags & GNUTLS_PIN_WRONG) f.error = (char *)_("Wrong PIN"); if (flags & GNUTLS_PIN_FINAL_TRY) f.banner = (char *)_("This is the final try before locking!"); else if (flags & GNUTLS_PIN_COUNT_LOW) f.banner = (char *)_("Only a few tries left before locking!"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"pkcs11_pin"; o.label = (char *)_("Enter PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret || !o._value) return -1; snprintf(pin, pin_max, "%s", o._value); (*cache)->pin = o._value; return 0; } #endif /* HAVE_P11KIT || HAVE_GNUTLS_SYSTEM_KEYS */ #ifdef HAVE_LIBPCSCLITE int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len) { unsigned char U[SHA1_SIZE]; gnutls_hmac_hd_t dgst; int ret = -EIO; int i, j; if (gnutls_hmac_init(&dgst, GNUTLS_MAC_SHA1, password, pwlen)) return -EIO; if (gnutls_hmac(dgst, ident, id_len)) goto out; /* This is a subset of full PBKDF2, where we know the outer loop is only * run once because our output length (16) is less than the hash output * size (20). So just hard-code the value. */ if (gnutls_hmac(dgst, "\x0\x0\x0\x1", 4)) goto out; gnutls_hmac_output(dgst, U); memcpy(vpninfo->yubikey_pwhash, U, 16); for (i = 1; i < 1000; i++) { if (gnutls_hmac(dgst, U, SHA1_SIZE)) goto out; gnutls_hmac_output(dgst, U); for (j = 0; j < 16; j++) vpninfo->yubikey_pwhash[j] ^= U[j]; } ret = 0; out: gnutls_hmac_deinit(dgst, NULL); return ret; } int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result) { if (gnutls_hmac_fast(GNUTLS_MAC_SHA1, vpninfo->yubikey_pwhash, 16, challenge, chall_len, result)) return -EIO; return 0; } #endif int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge) { int ret; int hpos; unsigned char hash[64]; /* Enough for a SHA256 */ gnutls_mac_algorithm_t alg; switch(vpninfo->oath_hmac_alg) { case OATH_ALG_HMAC_SHA1: alg = GNUTLS_MAC_SHA1; hpos = 19; break; case OATH_ALG_HMAC_SHA256: alg = GNUTLS_MAC_SHA256; hpos = 31; break; case OATH_ALG_HMAC_SHA512: alg = GNUTLS_MAC_SHA512; hpos = 63; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unsupported OATH HMAC algorithm\n")); return -EINVAL; } ret = gnutls_hmac_fast(alg, vpninfo->oath_secret, vpninfo->oath_secret_len, challenge, 8, hash); if (ret) { vpninfo->progress(vpninfo, PRG_ERR, _("Failed to calculate OATH HMAC: %s\n"), gnutls_strerror(ret)); return -EINVAL; } hpos = hash[hpos] & 15; return load_be32(&hash[hpos]) & 0x7fffffff; } static int ttls_pull_timeout_func(gnutls_transport_ptr_t t, unsigned int ms) { struct openconnect_info *vpninfo = t; vpn_progress(vpninfo, PRG_TRACE, _("%s %dms\n"), __func__, ms); return 0; } static ssize_t ttls_pull_func(gnutls_transport_ptr_t t, void *buf, size_t len) { int ret = pulse_eap_ttls_recv(t, buf, len); if (ret >= 0) return ret; else return GNUTLS_E_PULL_ERROR; } static ssize_t ttls_push_func(gnutls_transport_ptr_t t, const void *buf, size_t len) { int ret = pulse_eap_ttls_send(t, buf, len); if (ret >= 0) return ret; else return GNUTLS_E_PUSH_ERROR; } void *establish_eap_ttls(struct openconnect_info *vpninfo) { gnutls_session_t ttls_sess = NULL; int err; gnutls_init(&ttls_sess, GNUTLS_CLIENT); gnutls_session_set_ptr(ttls_sess, (void *) vpninfo); gnutls_transport_set_ptr(ttls_sess, (void *) vpninfo); gnutls_transport_set_push_function(ttls_sess, ttls_push_func); gnutls_transport_set_pull_function(ttls_sess, ttls_pull_func); gnutls_transport_set_pull_timeout_function(ttls_sess, ttls_pull_timeout_func); gnutls_credentials_set(ttls_sess, GNUTLS_CRD_CERTIFICATE, vpninfo->https_cred); err = gnutls_priority_set_direct(ttls_sess, vpninfo->ciphersuite_config, NULL); if (err < 0) { vpn_progress(vpninfo, PRG_TRACE, _("Could not set ciphersuites: %s\n"), vpninfo->ciphersuite_config); goto fail; } err = gnutls_handshake(ttls_sess); if (!err) { vpn_progress(vpninfo, PRG_TRACE, _("Established EAP-TTLS session\n")); return ttls_sess; } fail: gnutls_deinit(ttls_sess); return NULL; } void destroy_eap_ttls(struct openconnect_info *vpninfo, void *sess) { gnutls_deinit(sess); } openconnect-8.20/vhost.c0000644000076400007640000004015014100007334017027 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2021 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #define debug_vhost 0 #define barrier() __sync_synchronize() #if __BYTE_ORDER__ == __ORDER_LITTLE_ENDIAN__ #define vio16(x) ((uint16_t)(x)) #define vio32(x) ((uint32_t)(x)) #define vio64(x) ((uint64_t)(x)) #else #define vio16(x) ((uint16_t)__builtin_bswap16(x)) #define vio32(x) ((uint32_t)__builtin_bswap32(x)) #define vio64(x) ((uint64_t)__builtin_bswap64(x)) #endif static int setup_vring(struct openconnect_info *vpninfo, int idx) { struct oc_vring *vring = idx ? &vpninfo->tx_vring : &vpninfo->rx_vring; int ret; if (getenv("NOVHOST")) return -EINVAL; vring->desc = calloc(vpninfo->vhost_ring_size, sizeof(*vring->desc)); vring->avail = calloc(vpninfo->vhost_ring_size + 3, 2); vring->used = calloc(1 + (vpninfo->vhost_ring_size * 2), 4); if (!vring->desc || !vring->avail || !vring->used) return -ENOMEM; for (int i = 0; i < vpninfo->vhost_ring_size; i++) vring->avail->ring[i] = i; struct vhost_vring_state vs = { }; vs.index = idx; vs.num = vpninfo->vhost_ring_size; if (ioctl(vpninfo->vhost_fd, VHOST_SET_VRING_NUM, &vs) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to set vring #%d size: %s\n"), idx, strerror(-ret)); return ret; } vs.num = 0; if (ioctl(vpninfo->vhost_fd, VHOST_SET_VRING_BASE, &vs) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to set vring #%d base: %s\n"), idx, strerror(-ret)); return ret; } struct vhost_vring_addr va = { }; va.index = idx; va.desc_user_addr = (uint64_t)vring->desc; va.avail_user_addr = (uint64_t)vring->avail; va.used_user_addr = (uint64_t)vring->used; if (ioctl(vpninfo->vhost_fd, VHOST_SET_VRING_ADDR, &va) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to set vring #%d base: %s\n"), idx, strerror(-ret)); return ret; } struct vhost_vring_file vf = { }; vf.index = idx; vf.fd = vpninfo->tun_fd; if (ioctl(vpninfo->vhost_fd, VHOST_NET_SET_BACKEND, &vf) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to set vring #%d RX backend: %s\n"), idx, strerror(-ret)); return ret; } vf.fd = vpninfo->vhost_call_fd; if (ioctl(vpninfo->vhost_fd, VHOST_SET_VRING_CALL, &vf) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to set vring #%d call eventfd: %s\n"), idx, strerror(-ret)); return ret; } vf.fd = vpninfo->vhost_kick_fd; if (ioctl(vpninfo->vhost_fd, VHOST_SET_VRING_KICK, &vf) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to set vring #%d kick eventfd: %s\n"), idx, strerror(-ret)); return ret; } return 0; } #define OC_VHOST_NET_FEATURES ((1ULL << VHOST_NET_F_VIRTIO_NET_HDR) | \ (1ULL << VIRTIO_F_VERSION_1) | \ (1ULL << VIRTIO_RING_F_EVENT_IDX)) int setup_vhost(struct openconnect_info *vpninfo, int tun_fd) { int ret; /* If tuned for latency not bandwidth, that isn't vhost-net */ if (vpninfo->max_qlen < 16) { vpn_progress(vpninfo, PRG_DEBUG, _("Not using vhost-net due to low queue length %d\n"), vpninfo->max_qlen); return -EINVAL; } vpninfo->vhost_ring_size = 1 << (32 - __builtin_clz(vpninfo->max_qlen - 1)); if (vpninfo->vhost_ring_size < 32) vpninfo->vhost_ring_size = 32; if (vpninfo->vhost_ring_size > 32768) vpninfo->vhost_ring_size = 32768; vpninfo->vhost_fd = open("/dev/vhost-net", O_RDWR); if (vpninfo->vhost_fd == -1) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open /dev/vhost-net: %s\n"), strerror(-ret)); goto err; } if (ioctl(vpninfo->vhost_fd, VHOST_SET_OWNER, NULL) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_DEBUG, _("Failed to set vhost ownership: %s\n"), strerror(-ret)); goto err; } uint64_t features; if (ioctl(vpninfo->vhost_fd, VHOST_GET_FEATURES, &features) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_DEBUG, _("Failed to get vhost features: %s\n"), strerror(-ret)); goto err; } if ((features & OC_VHOST_NET_FEATURES) != OC_VHOST_NET_FEATURES) { vpn_progress(vpninfo, PRG_DEBUG, _("vhost-net lacks required features: %llx\n"), (unsigned long long)features); return -EOPNOTSUPP; } features = OC_VHOST_NET_FEATURES; if (ioctl(vpninfo->vhost_fd, VHOST_SET_FEATURES, &features) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to set vhost features: %s\n"), strerror(-ret)); goto err; } vpninfo->vhost_kick_fd = eventfd(0, EFD_CLOEXEC|EFD_NONBLOCK); if (vpninfo->vhost_kick_fd == -1) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open vhost kick eventfd: %s\n"), strerror(-ret)); goto err; } vpninfo->vhost_call_fd = eventfd(0, EFD_CLOEXEC|EFD_NONBLOCK); if (vpninfo->vhost_call_fd == -1) { ret = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open vhost call eventfd: %s\n"), strerror(-ret)); goto err; } struct vhost_memory *vmem = alloca(sizeof(*vmem) + sizeof(vmem->regions[0])); memset(vmem, 0, sizeof(*vmem) + sizeof(vmem->regions[0])); vmem->nregions = 1; #ifdef __x86_64__ vmem->regions[0].guest_phys_addr = 4096; vmem->regions[0].memory_size = 0x7fffffffe000; /* Why doesn't it allow 0x7fffffff000? */ vmem->regions[0].userspace_addr = 4096; #else #error Need magic vhost numbers for this platform #endif if (ioctl(vpninfo->vhost_fd, VHOST_SET_MEM_TABLE, vmem) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_DEBUG, _("Failed to set vhost memory map: %s\n"), strerror(-ret)); goto err; } ret = setup_vring(vpninfo, 0); if (ret) goto err; ret = setup_vring(vpninfo, 1); if (ret) goto err; /* This isn't just for bufferbloat; there are various issues with the XDP * code path: * https://lore.kernel.org/netdev/2433592d2b26deec33336dd3e83acfd273b0cf30.camel@infradead.org/T/ */ int sndbuf = vpninfo->ip_info.mtu; if (!sndbuf) sndbuf = 1500; sndbuf *= 2 * vpninfo->max_qlen; if (ioctl(vpninfo->tun_fd, TUNSETSNDBUF, &sndbuf) < 0) { ret = -errno; vpn_progress(vpninfo, PRG_INFO, _("Failed to set tun sndbuf: %s\n"), strerror(-ret)); goto err; } vpn_progress(vpninfo, PRG_INFO, _("Using vhost-net for tun acceleration, ring size %d\n"), vpninfo->vhost_ring_size); monitor_fd_new(vpninfo, vhost_call); monitor_read_fd(vpninfo, vhost_call); return 0; err: shutdown_vhost(vpninfo); return ret; } static void free_vring(struct openconnect_info *vpninfo, struct oc_vring *vring) { if (vring->desc) { for (int i = 0; i < vpninfo->vhost_ring_size; i++) { if (vring->desc[i].addr) free_pkt(vpninfo, pkt_from_hdr(vio64(vring->desc[i].addr), virtio.h)); } free(vring->desc); vring->desc = NULL; } free(vring->avail); vring->avail = NULL; free(vring->used); vring->used = NULL; } void shutdown_vhost(struct openconnect_info *vpninfo) { if (vpninfo->vhost_fd != -1) close(vpninfo->vhost_fd); if (vpninfo->vhost_kick_fd != -1) close(vpninfo->vhost_kick_fd); if (vpninfo->vhost_call_fd != -1) close(vpninfo->vhost_call_fd); vpninfo->vhost_fd = vpninfo->vhost_kick_fd = vpninfo->vhost_call_fd = -1; free_vring(vpninfo, &vpninfo->rx_vring); free_vring(vpninfo, &vpninfo->tx_vring); } /* used_event is the uint16_t element after the end of the * avail ring: * * struct virtq_avail { * le16 flags; * le16 idx; * le16 ring[ Queue Size ]; * le16 used_event; * }; */ #define USED_EVENT(v, r) ((r)->avail->ring[(v)->vhost_ring_size]) /* avail_event is the uint16_t element after the end of the * used ring, which is slightly less trivial to reference * than the used_event: * * struct virtq_used_elem { * le32 id; * le32 len; * }; * * struct virtq_used { * le16 flags; * le16 idx; * struct virtq_used_elem ring[ Queue Size ]; * le16 avail_event; * }; * * So if we thought of it as an array of 16-bit values, 'flags' would * be at element [0], 'idx' at [1], the ring would start at [2], the * *second* element of the ring would be at [ 2 + 4 ] since each element * is as big as four 16-bit values, and thus avail_event would be at * [2 + 4 * RING_SIZE ] */ #define AVAIL_EVENT(v, r) ((&(r)->used->flags)[2 + ((v)->vhost_ring_size * 4)]) static void dump_vring(struct openconnect_info *vpninfo, struct oc_vring *ring) { vpn_progress(vpninfo, PRG_ERR, "next_avail 0x%x, used idx 0x%x seen_used 0x%x\n", vio16(ring->avail->idx), vio16(ring->used->idx), ring->seen_used); vpn_progress(vpninfo, PRG_ERR, "# ADDR AVAIL USED\n"); /* Not an off-by-one; it's dumping avail_event and used_event too. */ for (int i = 0; i < vpninfo->vhost_ring_size + 1; i++) vpn_progress(vpninfo, PRG_ERR, "%d %p %x %x\n", i, (void *)vio64(ring->desc[i].addr), vio16(ring->avail->ring[i]), vio32(ring->used->ring[i].id)); } /* With thanks to Eugenio Pérez Martin for writing * https://www.redhat.com/en/blog/virtqueues-and-virtio-ring-how-data-travels * which saved a lot of time and caffeine in getting this to work. */ static inline int process_ring(struct openconnect_info *vpninfo, int tx, uint64_t *kick) { struct oc_vring *ring = tx ? &vpninfo->tx_vring : &vpninfo->rx_vring; const unsigned int ring_mask = vpninfo->vhost_ring_size - 1; int did_work = 0; /* First handle 'used' packets handed back to us from the ring. * For TX packets (incoming from VPN into the tun device) we just * free them now. For RX packets from the tun device we fill in * the length and queue them for sending over the VPN. */ uint16_t used_idx = vio16(ring->used->idx); while (used_idx != ring->seen_used) { uint32_t desc = vio32(ring->used->ring[ring->seen_used & ring_mask].id); uint32_t len = vio32(ring->used->ring[ring->seen_used & ring_mask].len); if (desc > ring_mask) { inval: vpn_progress(vpninfo, PRG_ERR, _("Error: vhost gave back invalid descriptor %d, len %d\n"), desc, len); dump_vring(vpninfo, ring); vpninfo->quit_reason = "vhost error"; return -EIO; } uint64_t addr = vio64(ring->desc[desc].addr); if (!addr) { vpn_progress(vpninfo, PRG_ERR, _("vhost gave back empty descriptor %d\n"), desc); dump_vring(vpninfo, ring); vpninfo->quit_reason = "vhost error"; return -EIO; } struct pkt *this = pkt_from_hdr(addr, virtio.h); if (tx) { vpn_progress(vpninfo, PRG_TRACE, _("Free TX packet %p [%d] [used %d]\n"), this, ring->seen_used, used_idx); vpninfo->stats.rx_pkts++; vpninfo->stats.rx_bytes += this->len; free_pkt(vpninfo, this); } else { if (len < sizeof(this->virtio.h)) goto inval; this->len = len - sizeof(this->virtio.h); vpn_progress(vpninfo, PRG_TRACE, _("RX packet %p(%d) [%d] [used %d]\n"), this, this->len, ring->seen_used, used_idx); if (debug_vhost) dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *) &this->virtio.h, this->len + sizeof(this->virtio.h)); /* If the incoming queue fill up, pretend we can't see any more * by contracting our idea of 'used_idx' back to *this* one. */ if (queue_packet(&vpninfo->outgoing_queue, this) >= vpninfo->max_qlen) used_idx = ring->seen_used + 1; did_work = 1; } /* Zero the descriptor and line it up in the next slot in the avail ring. */ ring->desc[desc].addr = 0; ring->avail->ring[ring->seen_used++ & ring_mask] = vio32(desc); } /* Now handle 'avail' and prime the RX ring full of empty buffers, or * the TX ring with anything we have on the VPN incoming queue. */ uint16_t next_avail = vio16(ring->avail->idx); uint32_t desc = ring->avail->ring[next_avail & ring_mask]; while (!ring->desc[desc].addr) { struct pkt *this; if (tx) { this = dequeue_packet(&vpninfo->incoming_queue); if (!this) break; /* If only a few packets on the queue, just send them * directly. The latency is much better. We benefit from * vhost-net TX when we're overloaded and want to use all * our CPU on the RX and crypto; there's not a lot of point * otherwise. */ if (!*kick && vpninfo->incoming_queue.count < vpninfo->max_qlen / 2 && next_avail == AVAIL_EVENT(vpninfo, ring)) { if (!os_write_tun(vpninfo, this)) { vpninfo->stats.rx_pkts++; vpninfo->stats.rx_bytes += this->len; free_pkt(vpninfo, this); continue; } /* Failed! Pretend it never happened; queue for vhost */ } memset(&this->virtio.h, 0, sizeof(this->virtio.h)); } else { int len = vpninfo->ip_info.mtu; this = alloc_pkt(vpninfo, len + vpninfo->pkt_trailer); if (!this) break; this->len = len; } if (!tx) ring->desc[desc].flags = vio16(VRING_DESC_F_WRITE); ring->desc[desc].addr = vio64((uint64_t)this + pkt_offset(virtio.h)); ring->desc[desc].len = vio32(this->len + sizeof(this->virtio.h)); barrier(); if (debug_vhost) { if (tx) { vpn_progress(vpninfo, PRG_TRACE, _("Queue TX packet %p at desc %d avail %d\n"), this, desc, next_avail); if (debug_vhost) dump_buf_hex(vpninfo, PRG_TRACE, '>', (void *)&this->virtio.h, this->len + sizeof(this->virtio.h)); } else vpn_progress(vpninfo, PRG_TRACE, _("Queue RX packet %p at desc %d avail %d\n"), this, desc, next_avail); } ring->avail->idx = vio16(++next_avail); barrier(); uint16_t avail_event = AVAIL_EVENT(vpninfo, ring); barrier(); if (avail_event == vio16(next_avail-1)) *kick = 1; desc = ring->avail->ring[next_avail & ring_mask]; } return did_work; } static int set_ring_wake(struct openconnect_info *vpninfo, int tx) { /* No wakeup for tun RX if the queue is already full. */ if (!tx && vpninfo->outgoing_queue.count >= vpninfo->max_qlen) return 0; struct oc_vring *ring = tx ? &vpninfo->tx_vring : &vpninfo->rx_vring; uint16_t wake_idx = vio16(ring->seen_used); /* Ask it to wake us if the used idx moves on. */ USED_EVENT(vpninfo, ring) = wake_idx; barrier(); /* If it already did, loop again immediately */ if (ring->used->idx != wake_idx) { vpn_progress(vpninfo, PRG_TRACE, _("Immediate wake because vhost ring moved on from 0x%x to 0x%x\n"), ring->used->idx, wake_idx); return 1; } return 0; } int vhost_tun_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable, int did_work) { uint64_t kick = 0; if (vpninfo->outgoing_queue.count < vpninfo->max_qlen) { did_work += process_ring(vpninfo, 0, &kick); if (vpninfo->quit_reason) return 0; } did_work += process_ring(vpninfo, 1, &kick); if (vpninfo->quit_reason) return 0; if (kick) { barrier(); if (write(vpninfo->vhost_kick_fd, &kick, sizeof(kick)) != sizeof(kick)) { /* Can never happen */ vpn_progress(vpninfo, PRG_ERR, _("Failed to kick vhost-net eventfd\n")); } vpn_progress(vpninfo, PRG_TRACE, _("Kick vhost ring\n")); did_work = 1; } /* We only read from the eventfd when we're done with *actual* * work, which is when !did_work. Except in the cases where * we race with setting the ring wakeup and have to go round * again. */ if (!did_work && readable) { uint64_t evt; if (read(vpninfo->vhost_call_fd, &evt, sizeof(evt)) != sizeof(evt)) { /* Do nothing */ } } /* If we aren't going to have one more turn around the mainloop, * set the wake event indices. And if we find the rings have * moved on while we're doing that, take one more turn around * the mainloop... */ return did_work || set_ring_wake(vpninfo, 1) || set_ring_wake(vpninfo, 0); } openconnect-8.20/dtls.c0000644000076400007640000004276114100007334016644 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #ifndef _WIN32 #include #include #endif #include #include #include #include /* * The master-secret is generated randomly by the client. The server * responds with a DTLS Session-ID. These, done over the HTTPS * connection, are enough to 'resume' a DTLS session, bypassing all * the normal setup of a normal DTLS connection. * * Cisco use a version of the protocol which predates RFC4347, but * isn't quite the same as the pre-RFC version of the protocol which * was in OpenSSL 0.9.8e -- it includes backports of some later * OpenSSL patches. * * The openssl/ directory of this source tree should contain both a * small patch against OpenSSL 0.9.8e to make it support Cisco's * snapshot of the protocol, and a larger patch against newer OpenSSL * which gives us an option to use the old protocol again. * * Cisco's server also seems to respond to the official version of the * protocol, with a change in the ChangeCipherSpec packet which implies * that it does know the difference and isn't just repeating the version * number seen in the ClientHello. But although I can make the handshake * complete by hacking tls1_mac() to use the _old_ protocol version * number when calculating the MAC, the server still seems to be ignoring * my subsequent data packets. So we use the old protocol, which is what * their clients use anyway. */ char *openconnect_bin2hex(const char *prefix, const uint8_t *data, unsigned len) { struct oc_text_buf *buf; char *p = NULL; buf = buf_alloc(); if (prefix) buf_append(buf, "%s", prefix); buf_append_hex(buf, data, len); if (!buf_error(buf)) { p = buf->data; buf->data = NULL; } buf_free(buf); return p; } char *openconnect_bin2base64(const char *prefix, const uint8_t *data, unsigned len) { struct oc_text_buf *buf; char *p = NULL; buf = buf_alloc(); if (prefix) buf_append(buf, "%s", prefix); buf_append_base64(buf, data, len, 0); if (!buf_error(buf)) { p = buf->data; buf->data = NULL; } buf_free(buf); return p; } static int connect_dtls_socket(struct openconnect_info *vpninfo, int *timeout) { int dtls_fd, ret; /* Sanity check for the removal of new_dtls_{fd,ssl} */ if (vpninfo->dtls_fd != -1) { vpn_progress(vpninfo, PRG_ERR, _("DTLS connection attempted with an existing fd\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!vpninfo->dtls_addr) { vpn_progress(vpninfo, PRG_ERR, _("No DTLS address\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (vpninfo->proto->proto == PROTO_ANYCONNECT && !vpninfo->dtls_cipher) { /* We probably didn't offer it any ciphers it liked */ vpn_progress(vpninfo, PRG_ERR, _("Server offered no DTLS cipher option\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (vpninfo->proxy) { /* XXX: Theoretically, SOCKS5 proxies can do UDP too */ vpn_progress(vpninfo, PRG_ERR, _("No DTLS when connected via proxy\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } dtls_fd = udp_connect(vpninfo); if (dtls_fd < 0) return -EINVAL; ret = start_dtls_handshake(vpninfo, dtls_fd); if (ret) { closesocket(dtls_fd); return ret; } vpninfo->dtls_state = DTLS_CONNECTING; vpninfo->dtls_fd = dtls_fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); time(&vpninfo->new_dtls_started); return dtls_try_handshake(vpninfo, timeout); } void dtls_close(struct openconnect_info *vpninfo) { if (vpninfo->dtls_ssl) { dtls_ssl_free(vpninfo); unmonitor_fd(vpninfo, dtls); closesocket(vpninfo->dtls_fd); vpninfo->dtls_ssl = NULL; vpninfo->dtls_fd = -1; } vpninfo->dtls_state = DTLS_SLEEPING; } int dtls_reconnect(struct openconnect_info *vpninfo, int *timeout) { dtls_close(vpninfo); if (vpninfo->dtls_state == DTLS_DISABLED) return -EINVAL; vpninfo->dtls_state = DTLS_SLEEPING; return connect_dtls_socket(vpninfo, timeout); } int dtls_setup(struct openconnect_info *vpninfo) { if (vpninfo->dtls_state == DTLS_DISABLED || vpninfo->dtls_state == DTLS_NOSECRET) return -EINVAL; if (!vpninfo->dtls_attempt_period) return 0; if (!vpninfo->dtls_addr) { vpn_progress(vpninfo, PRG_ERR, _("No DTLS address\n")); vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (vpninfo->dtls_times.rekey <= 0) vpninfo->dtls_times.rekey_method = REKEY_NONE; if (connect_dtls_socket(vpninfo, NULL)) return -EINVAL; vpn_progress(vpninfo, PRG_DEBUG, _("DTLS initialised. DPD %d, Keepalive %d\n"), vpninfo->dtls_times.dpd, vpninfo->dtls_times.keepalive); return 0; } int udp_tos_update(struct openconnect_info *vpninfo, struct pkt *pkt) { int tos; /* Extract TOS field from IP header (IPv4 and IPv6 differ) */ switch(pkt->data[0] >> 4) { case 4: tos = pkt->data[1]; break; case 6: tos = (load_be16(pkt->data) >> 4) & 0xff; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown packet (len %d) received: %02x %02x %02x %02x...\n"), pkt->len, pkt->data[0], pkt->data[1], pkt->data[2], pkt->data[3]); return -EINVAL; } /* set the actual value */ if (tos != vpninfo->dtls_tos_current) { vpn_progress(vpninfo, PRG_DEBUG, _("TOS this: %d, TOS last: %d\n"), tos, vpninfo->dtls_tos_current); if (setsockopt(vpninfo->dtls_fd, vpninfo->dtls_tos_proto, vpninfo->dtls_tos_optname, (void *)&tos, sizeof(tos))) vpn_perror(vpninfo, _("UDP setsockopt")); else vpninfo->dtls_tos_current = tos; } return 0; } int dtls_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int work_done = 0; char magic_pkt; if (vpninfo->dtls_need_reconnect) { vpninfo->dtls_need_reconnect = 0; dtls_reconnect(vpninfo, timeout); return 1; } if (vpninfo->dtls_state == DTLS_CONNECTING) { dtls_try_handshake(vpninfo, timeout); if (vpninfo->dtls_state != DTLS_CONNECTED) { vpninfo->delay_tunnel_reason = "DTLS MTU detection"; return 0; } return 1; } if (vpninfo->dtls_state == DTLS_SLEEPING) { int when = vpninfo->new_dtls_started + vpninfo->dtls_attempt_period - time(NULL); if (when <= 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Attempt new DTLS connection\n")); if (connect_dtls_socket(vpninfo, timeout) < 0) *timeout = 1000; } else if ((when * 1000) < *timeout) { *timeout = when * 1000; } return 0; } /* Nothing to do here for Cisco DTLS as it is preauthenticated */ if (vpninfo->dtls_state == DTLS_CONNECTED) vpninfo->dtls_state = DTLS_ESTABLISHED; while (readable) { int len = MAX(16384, vpninfo->ip_info.mtu); unsigned char *buf; if (vpninfo->incoming_queue.count >= vpninfo->max_qlen) { work_done = 1; break; } if (!vpninfo->dtls_pkt) { vpninfo->dtls_pkt = alloc_pkt(vpninfo, len); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } buf = vpninfo->dtls_pkt->data - 1; len = ssl_nonblock_read(vpninfo, 1, buf, len + 1); if (len <= 0) break; vpn_progress(vpninfo, PRG_TRACE, _("Received DTLS packet 0x%02x of %d bytes\n"), buf[0], len); vpninfo->dtls_times.last_rx = time(NULL); switch (buf[0]) { case AC_PKT_DATA: vpninfo->dtls_pkt->len = len - 1; queue_packet(&vpninfo->incoming_queue, vpninfo->dtls_pkt); vpninfo->dtls_pkt = NULL; work_done = 1; break; case AC_PKT_DPD_OUT: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS DPD request\n")); /* FIXME: What if the packet doesn't get through? */ magic_pkt = AC_PKT_DPD_RESP; if (ssl_nonblock_write(vpninfo, 1, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD response. Expect disconnect\n")); continue; case AC_PKT_DPD_RESP: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS DPD response\n")); break; case AC_PKT_KEEPALIVE: vpn_progress(vpninfo, PRG_DEBUG, _("Got DTLS Keepalive\n")); break; case AC_PKT_COMPRESSED: if (!vpninfo->dtls_compr) { vpn_progress(vpninfo, PRG_ERR, _("Compressed DTLS packet received when compression not enabled\n")); goto unknown_pkt; } decompress_and_queue_packet(vpninfo, vpninfo->dtls_compr, vpninfo->dtls_pkt->data, len - 1); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS packet type %02x, len %d\n"), buf[0], len); if (1) { /* Some versions of OpenSSL have bugs with receiving out-of-order * packets. Not only do they wrongly decide to drop packets if * two packets get swapped in transit, but they also _fail_ to * drop the packet in non-blocking mode; instead they return * the appropriate length of garbage. So don't abort... for now. */ break; } else { unknown_pkt: vpninfo->quit_reason = "Unknown packet received"; return 1; } } } switch (keepalive_action(&vpninfo->dtls_times, timeout)) { case KA_REKEY: { int ret; vpn_progress(vpninfo, PRG_INFO, _("DTLS rekey due\n")); if (vpninfo->dtls_times.rekey_method == REKEY_SSL) { time(&vpninfo->new_dtls_started); vpninfo->dtls_state = DTLS_CONNECTING; ret = dtls_try_handshake(vpninfo, timeout); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("DTLS Rehandshake failed; reconnecting.\n")); return connect_dtls_socket(vpninfo, timeout); } } return 1; } case KA_DPD_DEAD: vpn_progress(vpninfo, PRG_ERR, _("DTLS Dead Peer Detection detected dead peer!\n")); /* Fall back to SSL, and start a new DTLS connection */ dtls_reconnect(vpninfo, timeout); return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send DTLS DPD\n")); magic_pkt = AC_PKT_DPD_OUT; if (ssl_nonblock_write(vpninfo, 1, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD request. Expect disconnect\n")); /* last_dpd will just have been set */ vpninfo->dtls_times.last_tx = vpninfo->dtls_times.last_dpd; work_done = 1; break; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send DTLS Keepalive\n")); magic_pkt = AC_PKT_KEEPALIVE; if (ssl_nonblock_write(vpninfo, 1, &magic_pkt, 1) != 1) vpn_progress(vpninfo, PRG_ERR, _("Failed to send keepalive request. Expect disconnect\n")); time(&vpninfo->dtls_times.last_tx); work_done = 1; break; case KA_NONE: ; } /* Service outgoing packet queue */ unmonitor_write_fd(vpninfo, dtls); while (vpninfo->outgoing_queue.head) { struct pkt *this = dequeue_packet(&vpninfo->outgoing_queue); struct pkt *send_pkt = this; int ret; /* If TOS optname is set, we want to copy the TOS/TCLASS header to the outer UDP packet */ if (vpninfo->dtls_tos_optname) udp_tos_update(vpninfo, this); /* One byte of header */ this->cstp.hdr[7] = AC_PKT_DATA; /* We can compress into vpninfo->deflate_pkt unless CSTP * currently has a compressed packet pending — which it * shouldn't if DTLS is active. */ if (vpninfo->dtls_compr && vpninfo->current_ssl_pkt != vpninfo->deflate_pkt && !compress_packet(vpninfo, vpninfo->dtls_compr, this)) { send_pkt = vpninfo->deflate_pkt; send_pkt->cstp.hdr[7] = AC_PKT_COMPRESSED; } ret = ssl_nonblock_write(vpninfo, 1, &send_pkt->cstp.hdr[7], send_pkt->len + 1); if (ret <= 0) { /* Zero is -EAGAIN; just requeue. dtls_nonblock_write() * will have added the socket to the poll wfd list. */ requeue_packet(&vpninfo->outgoing_queue, this); if (ret < 0) { /* If it's a real error, kill the DTLS connection so the requeued packet will be sent over SSL */ dtls_reconnect(vpninfo, timeout); work_done = 1; } return work_done; } time(&vpninfo->dtls_times.last_tx); vpn_progress(vpninfo, PRG_TRACE, _("Sent DTLS packet of %d bytes; DTLS send returned %d\n"), this->len, ret); free_pkt(vpninfo, this); } return work_done; } /* This symbol is missing in glibc < 2.22 (bug 18643). */ #if defined(__linux__) && !defined(HAVE_IPV6_PATHMTU) # define HAVE_IPV6_PATHMTU 1 # define IPV6_PATHMTU 61 #endif #define PKT_INTERVAL_MS 50 /* Performs a binary search to detect MTU. * @buf: is preallocated with MTU size * * Returns: new MTU or 0 */ static int probe_mtu(struct openconnect_info *vpninfo, unsigned char *buf) { int max, min, cur, ret, absolute_min, last; int tries = 0; /* Number of loops in bin search - includes resends */ uint32_t id, id_len; struct timeval start_tv, now_tv, last_tv; absolute_min = 576; if (vpninfo->ip_info.addr6) absolute_min = 1280; /* We'll assume that it is at least functional, and permits the bare * minimum MTU for the protocol(s) it transports. All else is mad. */ min = absolute_min; /* First send a probe at the configured maximum. Most of the time, this one will probably work. */ last = cur = max = vpninfo->ip_info.mtu; if (max <= min) goto fail; /* Generate unique ID */ if (openconnect_random(&id, sizeof(id)) < 0) goto fail; vpn_progress(vpninfo, PRG_DEBUG, _("Initiating MTU detection (min=%d, max=%d)\n"), min, max); gettimeofday(&start_tv, NULL); last_tv = start_tv; while (1) { int wait_ms; #ifdef HAVE_IPV6_PATHMTU if (vpninfo->peer_addr->sa_family == AF_INET6) { struct ip6_mtuinfo mtuinfo; socklen_t len = sizeof(mtuinfo); int newmax; if (getsockopt(vpninfo->dtls_fd, IPPROTO_IPV6, IPV6_PATHMTU, &mtuinfo, &len) >= 0) { newmax = mtuinfo.ip6m_mtu; if (newmax > 0) { newmax = dtls_set_mtu(vpninfo, newmax) - /*ipv6*/40 - /*udp*/20 - /*oc dtls*/1; if (absolute_min > newmax) goto fail; if (max > newmax) max = newmax; if (cur > newmax) cur = newmax; } } } #endif buf[0] = AC_PKT_DPD_OUT; id_len = id + cur; memcpy(&buf[1], &id_len, sizeof(id_len)); vpn_progress(vpninfo, PRG_TRACE, _("Sending MTU DPD probe (%u bytes)\n"), cur); ret = openconnect_dtls_write(vpninfo, buf, cur + 1); if (ret != cur + 1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD request (%d %d)\n"), cur, ret); if (cur == max) { max = --cur; if (cur >= absolute_min) continue; } goto fail; } if (last == cur) tries++; else { tries = 0; last = cur; } memset(buf, 0, sizeof(id)+1); keep_waiting: gettimeofday(&now_tv, NULL); if (now_tv.tv_sec > start_tv.tv_sec + 10) { if (absolute_min == min) { /* Hm, we never got *anything* back successfully? */ vpn_progress(vpninfo, PRG_ERR, _("Too long time in MTU detect loop; assuming negotiated MTU.\n")); goto fail; } else { vpn_progress(vpninfo, PRG_ERR, _("Too long time in MTU detect loop; MTU set to %d.\n"), min); ret = min; goto out; } } wait_ms = PKT_INTERVAL_MS - ((now_tv.tv_sec - last_tv.tv_sec) * 1000) - ((now_tv.tv_usec - last_tv.tv_usec) / 1000); if (wait_ms <= 0 || wait_ms > PKT_INTERVAL_MS) wait_ms = PKT_INTERVAL_MS; ret = openconnect_dtls_read(vpninfo, buf, max+1, wait_ms); if (ret > 0 && (buf[0] != AC_PKT_DPD_RESP || !memcpy(&id_len, &buf[1], sizeof(id_len)) || id_len != id + ret - 1)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received unexpected packet (%.2x) in MTU detection; skipping.\n"), (unsigned)buf[0]); goto keep_waiting; } if (ret == -ETIMEDOUT) { if (tries >= 6) { vpn_progress(vpninfo, PRG_DEBUG, _("No response to size %u after %d tries; declare MTU is %u\n"), last, tries, min); ret = min; goto out; } } else if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to recv DPD request (%d)\n"), ret); goto fail; } else if (ret > 0) { vpn_progress(vpninfo, PRG_TRACE, _("Received MTU DPD probe (%u bytes)\n"), ret - 1); ret--; tries = 0; } if (ret == max) goto out; if (ret > min) { min = ret; if (min >= last) { cur = (min + max + 1) / 2; } else { cur = (min + last + 1) / 2; } } else { cur = (min + last + 1) / 2; } } fail: ret = 0; out: return ret; } void dtls_detect_mtu(struct openconnect_info *vpninfo) { int mtu; int prev_mtu = vpninfo->ip_info.mtu; unsigned char *buf; if (vpninfo->proto->proto != PROTO_ANYCONNECT) return; if (vpninfo->ip_info.mtu < 1 + sizeof(uint32_t)) return; /* detect MTU */ buf = calloc(1, 1 + vpninfo->ip_info.mtu); if (!buf) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); return; } mtu = probe_mtu(vpninfo, buf); if (mtu == 0) goto skip_mtu; vpninfo->ip_info.mtu = mtu; if (prev_mtu != vpninfo->ip_info.mtu) { vpn_progress(vpninfo, PRG_INFO, _("Detected MTU of %d bytes (was %d)\n"), vpninfo->ip_info.mtu, prev_mtu); } else { vpn_progress(vpninfo, PRG_DEBUG, _("No change in MTU after detection (was %d)\n"), prev_mtu); } skip_mtu: free(buf); } openconnect-8.20/gnutls_tpm2_esys.c0000644000076400007640000004636714204454673021246 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2018 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* Portions taken from tpm2-tss-engine, copyright as below: */ /******************************************************************************* * Copyright 2017-2018, Fraunhofer SIT sponsored by Infineon Technologies AG * All rights reserved. * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions are met: * * 1. Redistributions of source code must retain the above copyright notice, * this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright notice, * this list of conditions and the following disclaimer in the documentation * and/or other materials provided with the distribution. * * 3. Neither the name of tpm2-tss-engine nor the names of its contributors * may be used to endorse or promote products derived from this software * without specific prior written permission. * * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" * AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE * LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR * CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF * SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS * INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN * CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) * ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF * THE POSSIBILITY OF SUCH DAMAGE. ******************************************************************************/ #include #include "openconnect-internal.h" #include "gnutls.h" #include #include #include #include #include #include struct oc_tpm2_ctx { TSS2_TCTI_CONTEXT *tcti_ctx; TPM2B_PUBLIC pub; TPM2B_PRIVATE priv; TPM2B_DIGEST userauth; TPM2B_DIGEST ownerauth; unsigned int need_userauth:1; unsigned int need_ownerauth:1; unsigned int did_ownerauth:1; unsigned int legacy_srk:1; unsigned int parent; }; static const TPM2B_PUBLIC primaryTemplate = { .publicArea = { .type = TPM2_ALG_ECC, .nameAlg = TPM2_ALG_SHA256, .objectAttributes = (TPMA_OBJECT_USERWITHAUTH | TPMA_OBJECT_RESTRICTED | TPMA_OBJECT_DECRYPT | TPMA_OBJECT_FIXEDTPM | TPMA_OBJECT_FIXEDPARENT | TPMA_OBJECT_NODA | TPMA_OBJECT_SENSITIVEDATAORIGIN), .authPolicy = { .size = 0, }, .parameters.eccDetail = { .symmetric = { .algorithm = TPM2_ALG_AES, .keyBits.aes = 128, .mode.aes = TPM2_ALG_CFB, }, .scheme = { .scheme = TPM2_ALG_NULL, .details = {} }, .curveID = TPM2_ECC_NIST_P256, .kdf = { .scheme = TPM2_ALG_NULL, .details = {} }, }, .unique.ecc = { .x.size = 0, .y.size = 0 } } }; static const TPM2B_PUBLIC primaryTemplate_legacy = { .publicArea = { .type = TPM2_ALG_ECC, .nameAlg = TPM2_ALG_SHA256, .objectAttributes = (TPMA_OBJECT_USERWITHAUTH | TPMA_OBJECT_RESTRICTED | TPMA_OBJECT_DECRYPT | TPMA_OBJECT_NODA | TPMA_OBJECT_SENSITIVEDATAORIGIN), .authPolicy = { .size = 0, }, .parameters.eccDetail = { .symmetric = { .algorithm = TPM2_ALG_AES, .keyBits.aes = 128, .mode.aes = TPM2_ALG_CFB, }, .scheme = { .scheme = TPM2_ALG_NULL, .details = {} }, .curveID = TPM2_ECC_NIST_P256, .kdf = { .scheme = TPM2_ALG_NULL, .details = {} }, }, .unique.ecc = { .x.size = 0, .y.size = 0 } } }; static const TPM2B_SENSITIVE_CREATE primarySensitive = { .sensitive = { .userAuth = { .size = 0, }, .data = { .size = 0, } } }; static const TPM2B_DATA allOutsideInfo = { .size = 0, }; static const TPML_PCR_SELECTION allCreationPCR = { .count = 0, }; #define rc_is_key_auth_failed(rc) (((rc) & 0xff) == TPM2_RC_BAD_AUTH) #define rc_is_parent_auth_failed(rc) (((rc) & 0xff) == TPM2_RC_AUTH_FAIL) static void install_tpm_passphrase(struct openconnect_info *vpninfo, TPM2B_DIGEST *auth, char *pass) { int pwlen = strlen(pass); if (pwlen > sizeof(auth->buffer) - 1) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 password too long; truncating\n")); pwlen = sizeof(auth->buffer) - 1; } auth->size = pwlen; memcpy(auth->buffer, pass, pwlen); pass[pwlen] = 0; free_pass(&pass); } static int init_tpm2_primary(struct openconnect_info *vpninfo, struct cert_info *certinfo, ESYS_CONTEXT *ctx, ESYS_TR *primaryHandle) { TSS2_RC r; const char *hierarchy_name; ESYS_TR hierarchy; switch(certinfo->tpm2->parent) { case TPM2_RH_OWNER: hierarchy = ESYS_TR_RH_OWNER; hierarchy_name = _("owner"); break; case TPM2_RH_NULL: hierarchy = ESYS_TR_RH_NULL; hierarchy_name = _("null"); break; case TPM2_RH_ENDORSEMENT:hierarchy = ESYS_TR_RH_ENDORSEMENT; hierarchy_name = _("endorsement"); break; case TPM2_RH_PLATFORM: hierarchy = ESYS_TR_RH_PLATFORM; hierarchy_name = _("platform"); break; default: return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Creating primary key under %s hierarchy.\n"), hierarchy_name); reauth: if (certinfo->tpm2->need_ownerauth) { char *pass = NULL; if (request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_tpm2_hierarchy", "openconnect_secondary_tpm2_hierarchy"), &pass, _("Enter TPM2 %s hierarchy password:"), hierarchy_name)) return -EPERM; install_tpm_passphrase(vpninfo, &certinfo->tpm2->ownerauth, pass); certinfo->tpm2->need_ownerauth = 0; } r = Esys_TR_SetAuth(ctx, hierarchy, &certinfo->tpm2->ownerauth); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_TR_SetAuth failed: 0x%x\n"), r); return -EPERM; } r = Esys_CreatePrimary(ctx, hierarchy, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &primarySensitive, certinfo->tpm2->legacy_srk ? &primaryTemplate_legacy : &primaryTemplate, &allOutsideInfo, &allCreationPCR, primaryHandle, NULL, NULL, NULL, NULL); if (rc_is_key_auth_failed(r)) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_CreatePrimary owner auth failed\n")); certinfo->tpm2->need_ownerauth = 1; goto reauth; } else if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_CreatePrimary failed: 0x%x\n"), r); return -EIO; } return 0; } #define parent_is_generated(parent) ((parent) >> TPM2_HR_SHIFT == TPM2_HT_PERMANENT) #define parent_is_persistent(parent) ((parent) >> TPM2_HR_SHIFT == TPM2_HT_PERSISTENT) static int init_tpm2_key(ESYS_CONTEXT **ctx, ESYS_TR *keyHandle, struct openconnect_info *vpninfo, struct cert_info *certinfo) { ESYS_TR parentHandle = ESYS_TR_NONE; TSS2_RC r; *keyHandle = ESYS_TR_NONE; vpn_progress(vpninfo, PRG_DEBUG, _("Establishing connection with TPM.\n")); r = Esys_Initialize(ctx, certinfo->tpm2->tcti_ctx, NULL); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_Initialize failed: 0x%x\n"), r); goto error; } r = Esys_Startup(*ctx, TPM2_SU_CLEAR); if (r == TPM2_RC_INITIALIZE) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 was already started up thus false positive failing in tpm2tss log.\n")); } else if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_Startup failed: 0x%x\n"), r); goto error; } if (parent_is_generated(certinfo->tpm2->parent)) { if (init_tpm2_primary(vpninfo, certinfo, *ctx, &parentHandle)) goto error; } else { r = Esys_TR_FromTPMPublic(*ctx, certinfo->tpm2->parent, ESYS_TR_NONE, ESYS_TR_NONE, ESYS_TR_NONE, &parentHandle); if (r) { vpn_progress(vpninfo, PRG_ERR, _("Esys_TR_FromTPMPublic failed for handle 0x%x: 0x%x\n"), certinfo->tpm2->parent, r); goto error; } /* If we don't already have a password (and haven't already authenticated * successfully), check the NODA flag on the parent and demand one if DA * protection is enabled (since that strongly implies there is a non-empty * password). */ if (!certinfo->tpm2->did_ownerauth && !certinfo->tpm2->ownerauth.size) { TPM2B_PUBLIC *pub = NULL; r = Esys_ReadPublic(*ctx, parentHandle, ESYS_TR_NONE, ESYS_TR_NONE, ESYS_TR_NONE, &pub, NULL, NULL); if (!r && !(pub->publicArea.objectAttributes & TPMA_OBJECT_NODA)) certinfo->tpm2->need_ownerauth = 1; Esys_Free(pub); } reauth: if (certinfo->tpm2->need_ownerauth) { char *pass = NULL; if (request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_tpm2_parent", "openconnect_secondary_tpm2_parent"), &pass, certinfo_string(certinfo, _("Enter TPM2 parent key password:"), _("Enter secondary TPM2 parent key password:")))) return -EPERM; install_tpm_passphrase(vpninfo, &certinfo->tpm2->ownerauth, pass); certinfo->tpm2->need_ownerauth = 0; } r = Esys_TR_SetAuth(*ctx, parentHandle, &certinfo->tpm2->ownerauth); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_TR_SetAuth failed: 0x%x\n"), r); goto error; } } vpn_progress(vpninfo, PRG_DEBUG, _("Loading TPM2 key blob, parent %x.\n"), parentHandle); r = Esys_Load(*ctx, parentHandle, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &certinfo->tpm2->priv, &certinfo->tpm2->pub, keyHandle); if (rc_is_parent_auth_failed(r)) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_Load auth failed\n")); certinfo->tpm2->need_ownerauth = 1; goto reauth; } if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_Load failed: 0x%x\n"), r); goto error; } certinfo->tpm2->did_ownerauth = 1; if (parent_is_generated(certinfo->tpm2->parent)) { r = Esys_FlushContext(*ctx, parentHandle); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_FlushContext for generated primary failed: 0x%x\n"), r); } /* But it's non-fatal. */ } return 0; error: if (parent_is_generated(certinfo->tpm2->parent) && parentHandle != ESYS_TR_NONE) Esys_FlushContext(*ctx, parentHandle); if (*keyHandle != ESYS_TR_NONE) Esys_FlushContext(*ctx, *keyHandle); *keyHandle = ESYS_TR_NONE; Esys_Finalize(ctx); return -EIO; } static int auth_tpm2_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, ESYS_CONTEXT *ctx, ESYS_TR key_handle) { TSS2_RC r; if (certinfo->tpm2->need_userauth) { char *pass = NULL; if (certinfo->password) { pass = certinfo->password; certinfo->password = NULL; } else { int err = request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_tpm2_key", "openconnect_secondary_tpm2_key"), &pass, certinfo_string(certinfo, _("Enter TPM2 key password:"), _("Enter secondary TPM2 key password:"))); if (err) return err; } install_tpm_passphrase(vpninfo, &certinfo->tpm2->userauth, pass); certinfo->tpm2->need_userauth = 0; } r = Esys_TR_SetAuth(ctx, key_handle, &certinfo->tpm2->userauth); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 Esys_TR_SetAuth failed: 0x%x\n"), r); return -EIO; } return 0; } int tpm2_rsa_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_certinfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; int ret = GNUTLS_E_PK_SIGN_FAILED; ESYS_CONTEXT *ectx = NULL; TPM2B_PUBLIC_KEY_RSA digest, *tsig = NULL; TPM2B_DATA label = { .size = 0 }; TPMT_RSA_DECRYPT inScheme = { .scheme = TPM2_ALG_NULL }; ESYS_TR key_handle = ESYS_TR_NONE; TSS2_RC r; vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 RSA sign function called for %d bytes, algo %s\n"), data->size, gnutls_sign_get_name(algo)); digest.size = certinfo->tpm2->pub.publicArea.unique.rsa.size; if (oc_pad_rsasig(vpninfo, algo, digest.buffer, digest.size, data, certinfo->tpm2->pub.publicArea.parameters.rsaDetail.keyBits)) return GNUTLS_E_PK_SIGN_FAILED; if (init_tpm2_key(&ectx, &key_handle, vpninfo, certinfo)) goto out; reauth: if (auth_tpm2_key(vpninfo, certinfo, ectx, key_handle)) goto out; r = Esys_RSA_Decrypt(ectx, key_handle, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &digest, &inScheme, &label, &tsig); if (rc_is_key_auth_failed(r)) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_RSA_Decrypt auth failed\n")); certinfo->tpm2->need_userauth = 1; goto reauth; } if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 failed to generate RSA signature: 0x%x\n"), r); goto out; } sig->data = malloc(tsig->size); if (!sig->data) goto out; memcpy(sig->data, tsig->buffer, tsig->size); sig->size = tsig->size; ret = 0; out: Esys_Free(tsig); if (key_handle != ESYS_TR_NONE) Esys_FlushContext(ectx, key_handle); if (ectx) Esys_Finalize(&ectx); return ret; } int tpm2_ec_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_certinfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; int ret = GNUTLS_E_PK_SIGN_FAILED; ESYS_CONTEXT *ectx = NULL; TPM2B_DIGEST digest; TPMT_SIGNATURE *tsig = NULL; ESYS_TR key_handle = ESYS_TR_NONE; TSS2_RC r; TPMT_TK_HASHCHECK validation = { .tag = TPM2_ST_HASHCHECK, .hierarchy = TPM2_RH_NULL, .digest.size = 0 }; TPMT_SIG_SCHEME inScheme = { .scheme = TPM2_ALG_ECDSA }; gnutls_datum_t sig_r, sig_s; vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 EC sign function called for %d bytes.\n"), data->size); /* FIPS-186-4 §6.4 says "When the length of the output of the hash * function is greater than the bit length of n, then the leftmost * n bits of the hash function output block shall be used in any * calculation using the hash function output during the generation * or verification of a digital signature." * * So GnuTLS is expected to *truncate* a larger hash to fit the * curve bit length, and then we lie to the TPM about which hash * it was because the TPM only really cares about the size of the * data anyway. */ switch (data->size) { case SHA1_SIZE: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA1; break; case SHA256_SIZE: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA256; break; case SHA384_SIZE: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA384; break; case SHA512_SIZE: inScheme.details.ecdsa.hashAlg = TPM2_ALG_SHA512; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unknown TPM2 EC digest size %d for algo 0x%x\n"), data->size, algo); return GNUTLS_E_PK_SIGN_FAILED; } memcpy(digest.buffer, data->data, data->size); digest.size = data->size; if (init_tpm2_key(&ectx, &key_handle, vpninfo, certinfo)) goto out; reauth: if (auth_tpm2_key(vpninfo, certinfo, ectx, key_handle)) goto out; r = Esys_Sign(ectx, key_handle, ESYS_TR_PASSWORD, ESYS_TR_NONE, ESYS_TR_NONE, &digest, &inScheme, &validation, &tsig); if (rc_is_key_auth_failed(r)) { vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 Esys_Sign auth failed\n")); certinfo->tpm2->need_userauth = 1; goto reauth; } if (r) { vpn_progress(vpninfo, PRG_ERR, _("TPM2 failed to generate RSA signature: 0x%x\n"), r); goto out; } sig_r.data = tsig->signature.ecdsa.signatureR.buffer; sig_r.size = tsig->signature.ecdsa.signatureR.size; sig_s.data = tsig->signature.ecdsa.signatureS.buffer; sig_s.size = tsig->signature.ecdsa.signatureS.size; ret = gnutls_encode_rs_value(sig, &sig_r, &sig_s); out: Esys_Free(tsig); if (key_handle != ESYS_TR_NONE) Esys_FlushContext(ectx, key_handle); if (ectx) Esys_Finalize(&ectx); return ret; } int install_tpm2_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig, unsigned int parent, int emptyauth, int legacy, gnutls_datum_t *privdata, gnutls_datum_t *pubdata) { TSS2_RC r; if (!parent_is_persistent(parent) && parent != TPM2_RH_OWNER && parent != TPM2_RH_NULL && parent != TPM2_RH_ENDORSEMENT && parent != TPM2_RH_PLATFORM) { vpn_progress(vpninfo, PRG_ERR, _("Invalid TPM2 parent handle 0x%08x\n"), parent); return -EINVAL; } certinfo->tpm2 = calloc(1, sizeof(*certinfo->tpm2)); if (!certinfo->tpm2) return -ENOMEM; certinfo->tpm2->parent = parent; /* This is the variable which the *IBM* TSS uses, to force it to use * the swtpm; it happens in the library automatically. To allow the * swtpm test to work on platforms where a real TPM is available, * emulate the same thing. Not really intended for production use. */ const char *tpm_type = getenv("TPM_INTERFACE_TYPE"); if (tpm_type && !strcmp(tpm_type, "socsim")) { vpn_progress(vpninfo, PRG_DEBUG, _("Using SWTPM due to TPM_INTERFACE_TYPE environment variable\n")); r = Tss2_TctiLdr_Initialize("swtpm", &certinfo->tpm2->tcti_ctx); if (r) { vpn_progress(vpninfo, PRG_ERR, _("TSS2_TctiLdr_Initialize failed for swtpm: 0x%x\n"), r); goto err_out; } } r = Tss2_MU_TPM2B_PRIVATE_Unmarshal(privdata->data, privdata->size, NULL, &certinfo->tpm2->priv); if (r) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 private key data: 0x%x\n"), r); goto err_out; } r = Tss2_MU_TPM2B_PUBLIC_Unmarshal(pubdata->data, pubdata->size, NULL, &certinfo->tpm2->pub); if (r) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 public key data: 0x%x\n"), r); goto err_out; } certinfo->tpm2->need_userauth = !emptyauth; certinfo->tpm2->legacy_srk = legacy; switch(certinfo->tpm2->pub.publicArea.type) { case TPM2_ALG_RSA: return GNUTLS_PK_RSA; case TPM2_ALG_ECC: return GNUTLS_PK_ECC; } vpn_progress(vpninfo, PRG_ERR, _("Unsupported TPM2 key type %d\n"), certinfo->tpm2->pub.publicArea.type); err_out: release_tpm2_ctx(vpninfo, certinfo); return -EINVAL; } uint16_t tpm2_key_curve(struct openconnect_info *vpninfo, struct cert_info *certinfo) { return certinfo->tpm2->pub.publicArea.parameters.eccDetail.curveID; } int tpm2_rsa_key_bits(struct openconnect_info *vpninfo, struct cert_info *certinfo) { return certinfo->tpm2->pub.publicArea.parameters.rsaDetail.keyBits; } void release_tpm2_ctx(struct openconnect_info *vpninfo, struct cert_info *certinfo) { if (certinfo->tpm2) { clear_mem(certinfo->tpm2->ownerauth.buffer, sizeof(certinfo->tpm2->ownerauth.buffer)); clear_mem(certinfo->tpm2->userauth.buffer, sizeof(certinfo->tpm2->userauth.buffer)); if (certinfo->tpm2->tcti_ctx) Tss2_TctiLdr_Finalize(&certinfo->tpm2->tcti_ctx); free(certinfo->tpm2); } certinfo->tpm2 = NULL; } openconnect-8.20/ppp.c0000644000076400007640000016153014100007334016471 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020-2021 David Woodhouse, Daniel Lenski * * Authors: David Woodhouse , Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "ppp.h" #include static const uint16_t fcstab[256] = { 0x0000, 0x1189, 0x2312, 0x329b, 0x4624, 0x57ad, 0x6536, 0x74bf, 0x8c48, 0x9dc1, 0xaf5a, 0xbed3, 0xca6c, 0xdbe5, 0xe97e, 0xf8f7, 0x1081, 0x0108, 0x3393, 0x221a, 0x56a5, 0x472c, 0x75b7, 0x643e, 0x9cc9, 0x8d40, 0xbfdb, 0xae52, 0xdaed, 0xcb64, 0xf9ff, 0xe876, 0x2102, 0x308b, 0x0210, 0x1399, 0x6726, 0x76af, 0x4434, 0x55bd, 0xad4a, 0xbcc3, 0x8e58, 0x9fd1, 0xeb6e, 0xfae7, 0xc87c, 0xd9f5, 0x3183, 0x200a, 0x1291, 0x0318, 0x77a7, 0x662e, 0x54b5, 0x453c, 0xbdcb, 0xac42, 0x9ed9, 0x8f50, 0xfbef, 0xea66, 0xd8fd, 0xc974, 0x4204, 0x538d, 0x6116, 0x709f, 0x0420, 0x15a9, 0x2732, 0x36bb, 0xce4c, 0xdfc5, 0xed5e, 0xfcd7, 0x8868, 0x99e1, 0xab7a, 0xbaf3, 0x5285, 0x430c, 0x7197, 0x601e, 0x14a1, 0x0528, 0x37b3, 0x263a, 0xdecd, 0xcf44, 0xfddf, 0xec56, 0x98e9, 0x8960, 0xbbfb, 0xaa72, 0x6306, 0x728f, 0x4014, 0x519d, 0x2522, 0x34ab, 0x0630, 0x17b9, 0xef4e, 0xfec7, 0xcc5c, 0xddd5, 0xa96a, 0xb8e3, 0x8a78, 0x9bf1, 0x7387, 0x620e, 0x5095, 0x411c, 0x35a3, 0x242a, 0x16b1, 0x0738, 0xffcf, 0xee46, 0xdcdd, 0xcd54, 0xb9eb, 0xa862, 0x9af9, 0x8b70, 0x8408, 0x9581, 0xa71a, 0xb693, 0xc22c, 0xd3a5, 0xe13e, 0xf0b7, 0x0840, 0x19c9, 0x2b52, 0x3adb, 0x4e64, 0x5fed, 0x6d76, 0x7cff, 0x9489, 0x8500, 0xb79b, 0xa612, 0xd2ad, 0xc324, 0xf1bf, 0xe036, 0x18c1, 0x0948, 0x3bd3, 0x2a5a, 0x5ee5, 0x4f6c, 0x7df7, 0x6c7e, 0xa50a, 0xb483, 0x8618, 0x9791, 0xe32e, 0xf2a7, 0xc03c, 0xd1b5, 0x2942, 0x38cb, 0x0a50, 0x1bd9, 0x6f66, 0x7eef, 0x4c74, 0x5dfd, 0xb58b, 0xa402, 0x9699, 0x8710, 0xf3af, 0xe226, 0xd0bd, 0xc134, 0x39c3, 0x284a, 0x1ad1, 0x0b58, 0x7fe7, 0x6e6e, 0x5cf5, 0x4d7c, 0xc60c, 0xd785, 0xe51e, 0xf497, 0x8028, 0x91a1, 0xa33a, 0xb2b3, 0x4a44, 0x5bcd, 0x6956, 0x78df, 0x0c60, 0x1de9, 0x2f72, 0x3efb, 0xd68d, 0xc704, 0xf59f, 0xe416, 0x90a9, 0x8120, 0xb3bb, 0xa232, 0x5ac5, 0x4b4c, 0x79d7, 0x685e, 0x1ce1, 0x0d68, 0x3ff3, 0x2e7a, 0xe70e, 0xf687, 0xc41c, 0xd595, 0xa12a, 0xb0a3, 0x8238, 0x93b1, 0x6b46, 0x7acf, 0x4854, 0x59dd, 0x2d62, 0x3ceb, 0x0e70, 0x1ff9, 0xf78f, 0xe606, 0xd49d, 0xc514, 0xb1ab, 0xa022, 0x92b9, 0x8330, 0x7bc7, 0x6a4e, 0x58d5, 0x495c, 0x3de3, 0x2c6a, 0x1ef1, 0x0f78 }; #define foldfcs(fcs, c) ( ( (fcs) >> 8 ) ^ fcstab[(fcs ^ (c)) & 0xff] ) #define NEED_ESCAPE(c, map) ( (((c) < 0x20) && (map && (1UL << (c)))) || ((c) == 0x7d) || ((c) == 0x7e) ) #define HDLC_OUT(outp, c, map) do { \ if (NEED_ESCAPE((c), map)) { \ *outp++ = 0x7d; \ *outp++ = (c) ^ 0x20; \ } else \ *outp++ = (c); \ } while (0) static struct pkt *hdlc_into_new_pkt(struct openconnect_info *vpninfo, struct pkt *old, int asyncmap) { int len = old->len + old->ppp.hlen; const unsigned char *inp = old->data - old->ppp.hlen, *endp = inp + len; unsigned char *outp; uint16_t fcs = PPPINITFCS16; /* Every byte in payload and 2-byte FCS potentially expands to two bytes, * plus 2 for flag (0x7e) at start and end. We know that we will output * at least 4 bytes so we can stash those in the header. */ struct pkt *p = alloc_pkt(vpninfo, len*2 + 2); if (!p) return NULL; outp = p->data - 4; *outp++ = 0x7e; for (; inp < endp; inp++) { fcs = foldfcs(fcs, *inp); HDLC_OUT(outp, *inp, asyncmap); } /* Append FCS, escaped, little-endian */ fcs ^= 0xffff; HDLC_OUT(outp, fcs & 0xff, asyncmap); HDLC_OUT(outp, fcs >> 8, asyncmap); *outp++ = 0x7e; p->ppp.hlen = 4; p->len = outp - p->data; return p; } static int unhdlc_in_place(struct openconnect_info *vpninfo, unsigned char *bytes, int len, unsigned char **next) { unsigned char *inp = bytes, *endp = bytes + len; unsigned char *outp = bytes; int escape = 0; uint16_t fcs = PPPINITFCS16; if (*inp == 0x7e) inp++; else vpn_progress(vpninfo, PRG_TRACE, _("HDLC initial flag sequence (0x7e) is missing\n")); while (inp < endp) { unsigned char c = *inp++; if (c == 0x7e) goto done; else if (escape) { c ^= 0x20; escape = 0; } else if (c == 0x7d) { escape = 1; continue; } fcs = foldfcs(fcs, c); *outp++ = c; } vpn_progress(vpninfo, PRG_ERR, _("HDLC buffer ended without FCS and flag sequence (0x7e)\n")); return -EINVAL; done: if (outp < bytes + 2) { vpn_progress(vpninfo, PRG_ERR, _("HDLC frame too short (%d bytes)\n"), (int)(outp - bytes)); return -EINVAL; } outp -= 2; /* FCS */ if (next) *next = inp; /* Pointing at the byte AFTER final 0x7e */ if (fcs != PPPGOODFCS16) { vpn_progress(vpninfo, PRG_INFO, _("Bad HDLC packet FCS %04x\n"), fcs); dump_buf_hex(vpninfo, PRG_INFO, '<', bytes, len); return -EINVAL; } else { vpn_progress(vpninfo, PRG_TRACE, _("Un-HDLC'ed packet (%ld bytes -> %ld), FCS=0x%04x\n"), (long)(inp - bytes), (long)(outp - bytes), fcs); return outp - bytes; } } static const char *ppps_names[] = { "DEAD", "ESTABLISH", "OPENED", "AUTHENTICATE", "NETWORK", "TERMINATE" }; static const char *encap_names[PPP_ENCAP_MAX+1] = { NULL, "RFC1661", "RFC1662 HDLC", "F5", "F5 HDLC", "FORTINET", }; static const char *lcp_names[] = { NULL, "Configure-Request", "Configure-Ack", "Configure-Nak", "Configure-Reject", "Terminate-Request", "Terminate-Ack", "Code-Reject", "Protocol-Reject", "Echo-Request", "Echo-Reply", "Discard-Request", }; static inline const char *proto_names(uint16_t proto) { static char unknown[21]; switch (proto) { case PPP_LCP: return "LCP"; case PPP_IPCP: return "IPCP"; case PPP_IP6CP: return "IP6CP"; case PPP_CCP: return "CCP"; case PPP_IP: return "IPv4"; case PPP_IP6: return "IPv6"; default: snprintf(unknown, 21, "unknown proto 0x%04x", proto); return unknown; } } int openconnect_ppp_new(struct openconnect_info *vpninfo, int encap, int want_ipv4, int want_ipv6) { free(vpninfo->ppp); struct oc_ppp *ppp = vpninfo->ppp = calloc(sizeof(*ppp), 1); if (!ppp) return -ENOMEM; /* Delay tunnel setup during PPP negotiation */ vpninfo->delay_tunnel_reason = "PPP negotiation"; /* Outgoing IPv4 address and IPv6 interface identifier bits, * if already configured via another mechanism */ if (vpninfo->ip_info.addr) ppp->out_ipv4_addr.s_addr = inet_addr(vpninfo->ip_info.addr); if (vpninfo->ip_info.netmask6) { char *slash = strchr(vpninfo->ip_info.netmask6, '/'); if (slash) *slash=0; inet_pton(AF_INET6, vpninfo->ip_info.netmask6, &ppp->out_ipv6_addr); if (slash) *slash='/'; } else if (vpninfo->ip_info.addr6) { inet_pton(AF_INET6, vpninfo->ip_info.addr6, &ppp->out_ipv6_addr); } /* Nameservers to request from peer * (see https://tools.ietf.org/html/rfc1877#section-1) */ if (!vpninfo->ip_info.dns[0] && !vpninfo->ip_info.nbns[0]) ppp->solicit_peerns = IPCP_DNS0|IPCP_DNS1|IPCP_NBNS0|IPCP_NBNS1; ppp->encap = encap; ppp->want_ipv4 = want_ipv4; ppp->want_ipv6 = want_ipv6 && !vpninfo->disable_ipv6; return ppp_reset(vpninfo); } int ppp_reset(struct openconnect_info *vpninfo) { struct oc_ppp *ppp = vpninfo->ppp; if (!ppp) return -EINVAL; memset(&ppp->lcp, 0, sizeof(ppp->lcp)); memset(&ppp->ipcp, 0, sizeof(ppp->ipcp)); memset(&ppp->ip6cp, 0, sizeof(ppp->ip6cp)); ppp->ppp_state = PPPS_DEAD; ppp->out_asyncmap = 0; ppp->out_lcp_opts = BIT_MRU | BIT_MAGIC | BIT_PFCOMP | BIT_ACCOMP | BIT_MRU_COAX; ppp->check_http_response = 0; switch (ppp->encap) { case PPP_ENCAP_F5: ppp->encap_len = 4; break; case PPP_ENCAP_FORTINET: /* XX: Fortinet server rejects asyncmap and header compression. Don't blame me. */ ppp->out_lcp_opts &= ~(BIT_PFCOMP | BIT_ACCOMP); ppp->encap_len = 6; break; case PPP_ENCAP_F5_HDLC: case PPP_ENCAP_RFC1662_HDLC: ppp->encap_len = 0; ppp->hdlc = 1; break; case PPP_ENCAP_RFC1661: ppp->encap_len = 0; break; default: free(ppp); return -EINVAL; } if (ppp->hdlc) ppp->out_lcp_opts |= BIT_ASYNCMAP; ppp->exp_ppp_hdr_size = 4; /* Address(1), Control(1), Proto(2) */ return 0; } static void print_ppp_state(struct openconnect_info *vpninfo, int level) { struct oc_ppp *ppp = vpninfo->ppp; char buf4[20]; char buf6[40]; if (ppp->want_ipv4) inet_ntop(AF_INET, &ppp->in_ipv4_addr, buf4, sizeof(buf4)); else snprintf(buf4, sizeof(buf4), "none"); if (ppp->want_ipv6) inet_ntop(AF_INET6, &ppp->in_ipv6_addr, buf6, sizeof(buf6)); else snprintf(buf6, sizeof(buf6), "none"); vpn_progress(vpninfo, level, _("Current PPP state: %s (encap %s):\n"), ppps_names[ppp->ppp_state], encap_names[ppp->encap]); vpn_progress(vpninfo, level, _(" in: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s\n"), ppp->in_asyncmap, ppp->in_lcp_opts, (unsigned)ntohl(ppp->in_lcp_magic), buf4, buf6); if (ppp->want_ipv4) inet_ntop(AF_INET, &ppp->out_ipv4_addr, buf4, sizeof(buf4)); if (ppp->want_ipv6) inet_ntop(AF_INET6, &ppp->out_ipv6_addr, buf6, sizeof(buf6)); vpn_progress(vpninfo, level, _(" out: asyncmap=0x%08x, lcp_opts=%d, lcp_magic=0x%08x, ipv4=%s, ipv6=%s, solicit_peerns=%d, got_peerns=%d\n"), ppp->out_asyncmap, ppp->out_lcp_opts, (unsigned)ntohl(ppp->out_lcp_magic), buf4, buf6, ppp->solicit_peerns, ppp->got_peerns); } static int buf_append_ppp_tlv(struct oc_text_buf *buf, int tag, int len, const void *data) { unsigned char b[2]; b[0] = tag; b[1] = len + 2; buf_append_bytes(buf, b, 2); if (len) buf_append_bytes(buf, data, len); return b[1]; } static int buf_append_ppp_tlv_be16(struct oc_text_buf *buf, int tag, uint16_t value) { uint16_t val_be; store_be16(&val_be, value); return buf_append_ppp_tlv(buf, tag, 2, &val_be); } static int buf_append_ppp_tlv_be32(struct oc_text_buf *buf, int tag, uint32_t value) { uint32_t val_be; store_be32(&val_be, value); return buf_append_ppp_tlv(buf, tag, 4, &val_be); } static int queue_config_packet(struct openconnect_info *vpninfo, uint16_t proto, int id, int code, int len, const void *payload) { struct pkt *p = alloc_pkt(vpninfo, len + 4); if (!p) return -ENOMEM; p->ppp.proto = proto; p->data[0] = code; p->data[1] = id; p->len = 4 + len; /* payload length includes code, id, own 2 bytes */ store_be16(p->data + 2, p->len); if (len) memcpy(p->data + 4, payload, len); queue_packet(&vpninfo->tcp_control_queue, p); return 0; } #define PROTO_TAG_LEN(p, t, l) ((((uint32_t)(p)) << 16) | ((t) << 8) | (l)) static int handle_config_request(struct openconnect_info *vpninfo, int proto, int id, unsigned char *payload, int len) { struct oc_ppp *ppp = vpninfo->ppp; struct oc_text_buf *rejbuf = NULL, *nakbuf = NULL; int ret; struct oc_ncp *ncp; unsigned char *p; char abuf[MAX(INET_ADDRSTRLEN, INET6_ADDRSTRLEN)]; switch (proto) { case PPP_LCP: ncp = &ppp->lcp; break; case PPP_IPCP: ncp = &ppp->ipcp; break; case PPP_IP6CP: ncp = &ppp->ip6cp; break; default: return -EINVAL; } for (p = payload ; p+1 < payload+len && p+p[1] <= payload+len; p += p[1]) { unsigned char t = p[0], l = p[1]; switch (PROTO_TAG_LEN(proto, t, l-2)) { case PROTO_TAG_LEN(PPP_LCP, LCP_MRU, 2): { int mru = load_be16(p + 2); if ((ppp->out_lcp_opts & BIT_MRU_COAX) && mru < vpninfo->ip_info.mtu) { /* XX: nak-offer our (larger) MTU to the server, but only try this once */ store_be16(p + 2, vpninfo->ip_info.mtu); ppp->out_lcp_opts &= ~BIT_MRU_COAX; vpn_progress(vpninfo, PRG_DEBUG, _("Received MRU %d from server. Nak-offering larger MRU of %d (our MTU)\n"), mru, vpninfo->ip_info.mtu); goto nak; } else { vpninfo->ip_info.mtu = mru; vpn_progress(vpninfo, PRG_DEBUG, _("Received MRU %d from server. Setting our MTU to match.\n"), mru); } break; } case PROTO_TAG_LEN(PPP_LCP, LCP_ASYNCMAP, 4): ppp->in_asyncmap = load_be32(p+2); vpn_progress(vpninfo, PRG_DEBUG, _("Received asyncmap of 0x%08x from server\n"), ppp->in_asyncmap); break; case PROTO_TAG_LEN(PPP_LCP, LCP_MAGIC, 4): memcpy(&ppp->in_lcp_magic, p+2, 4); vpn_progress(vpninfo, PRG_DEBUG, _("Received magic number of 0x%08x from server\n"), (unsigned)ntohl(ppp->in_lcp_magic)); break; case PROTO_TAG_LEN(PPP_LCP, LCP_PFCOMP, 0): vpn_progress(vpninfo, PRG_DEBUG, _("Received protocol field compression from server\n")); ppp->in_lcp_opts |= BIT_PFCOMP; break; case PROTO_TAG_LEN(PPP_LCP, LCP_ACCOMP, 0): vpn_progress(vpninfo, PRG_DEBUG, _("Received address and control field compression from server\n")); ppp->in_lcp_opts |= BIT_ACCOMP; break; case PROTO_TAG_LEN(PPP_IPCP, IPCP_IPADDRS, 8): /* XX: Ancient and deprecated. We're supposed to ignore it if we receive it, unless * we've been Nak'ed. https://tools.ietf.org/html/rfc1332#section-3.1 */ vpn_progress(vpninfo, PRG_DEBUG, _("Received deprecated IP-Addresses from server, ignoring\n")); break; case PROTO_TAG_LEN(PPP_IPCP, IPCP_IPCOMP, 4): if (load_be16(p+2) == 0x002d) { /* Van Jacobson TCP/IP compression. Includes an * additional 2 payload bytes (Max-Slot-Id, Comp-Slot-Id) */ vpn_progress(vpninfo, PRG_DEBUG, _("Received Van Jacobson TCP/IP compression from server\n")); /* No. Just no. */ goto reject; } goto unknown; case PROTO_TAG_LEN(PPP_IPCP, IPCP_IPADDR, 4): memcpy(&ppp->in_ipv4_addr, p+2, 4); vpn_progress(vpninfo, PRG_DEBUG, _("Received peer IPv4 address %s from server\n"), inet_ntop(AF_INET, &ppp->in_ipv4_addr, abuf, sizeof(abuf))); break; case PROTO_TAG_LEN(PPP_IP6CP, IP6CP_INT_ID, 8): { unsigned char ipv6_ll[16] = {0xfe, 0x80, 0, 0, 0, 0, 0, 0}; /* XX: The server has allegedly sent us its link-local IPv6 address. * However, on the only server I have access to which supports IPv6, * this is just a random/garbage value, and `ping6 -I $TUNDEV $THIS_LL_ADDRESS` * returns an "unreachable" result from the server's actual LL address, * which is not sent over PPP configuration. This is probably just an * ignorable vestige of before the days of IPv6 address autoconfiguration. */ memcpy(ipv6_ll + 8, p+2, 8); memcpy(&ppp->in_ipv6_addr, ipv6_ll, 16); vpn_progress(vpninfo, PRG_DEBUG, _("Received peer IPv6 link-local address %s from server\n"), inet_ntop(AF_INET6, &ppp->in_ipv6_addr, abuf, sizeof(abuf))); break; } default: unknown: vpn_progress(vpninfo, PRG_DEBUG, _("Received unknown %s TLV (tag %d, len %d+2) from server:\n"), proto_names(proto), t, l-2); dump_buf_hex(vpninfo, PRG_DEBUG, '<', p, (int)p[1]); reject: if (!rejbuf) rejbuf = buf_alloc(); if (!rejbuf) { ret = -ENOMEM; goto out; } buf_append_bytes(rejbuf, p, l); break; nak: if (!nakbuf) nakbuf = buf_alloc(); if (!nakbuf) { ret = -ENOMEM; goto out; } buf_append_bytes(nakbuf, p, l); } } ncp->state |= NCP_CONF_REQ_RECEIVED; if (p != payload+len) { vpn_progress(vpninfo, PRG_DEBUG, _("Received %ld extra bytes at end of Config-Request:\n"), (long)(payload + len - p)); dump_buf_hex(vpninfo, PRG_DEBUG, '<', p, payload + len - p); } if (rejbuf) { if ((ret = buf_error(rejbuf))) goto out; vpn_progress(vpninfo, PRG_DEBUG, _("Reject %s/id %d config from server\n"), proto_names(proto), id); if ((ret = queue_config_packet(vpninfo, proto, id, CONFREJ, rejbuf->pos, rejbuf->data)) >= 0) { ret = 0; } } if (nakbuf) { if ((ret = buf_error(nakbuf))) goto out; vpn_progress(vpninfo, PRG_DEBUG, _("Nak %s/id %d config from server\n"), proto_names(proto), id); if ((ret = queue_config_packet(vpninfo, proto, id, CONFNAK, nakbuf->pos, nakbuf->data)) >= 0) { ret = 0; } } if (!rejbuf && !nakbuf) { vpn_progress(vpninfo, PRG_DEBUG, _("Ack %s/id %d config from server\n"), proto_names(proto), id); if ((ret = queue_config_packet(vpninfo, proto, id, CONFACK, len, payload)) >= 0) { ncp->state |= NCP_CONF_ACK_SENT; ret = 0; } } out: buf_free(rejbuf); buf_free(nakbuf); return ret; } static int queue_config_request(struct openconnect_info *vpninfo, int proto) { struct oc_ppp *ppp = vpninfo->ppp; const uint32_t zero = 0; int ret, id, b; struct oc_ncp *ncp; struct oc_text_buf *buf; buf = buf_alloc(); ret = buf_ensure_space(buf, 64); if (ret) goto out; switch (proto) { case PPP_LCP: ncp = &ppp->lcp; if (!vpninfo->ip_info.mtu) { int overhead = TLS_OVERHEAD + ppp->encap_len /* TLS and encapsulation overhead */ + (ppp->hdlc ? 4 : 0) /* HDLC framing and FCS */ + (ppp->out_lcp_opts & BIT_ACCOMP ? 0 : 2) /* PPP header AC fields */ + (ppp->out_lcp_opts & BIT_PFCOMP ? 1 : 2); /* PPP header protocol field */ vpninfo->ip_info.mtu = calculate_mtu(vpninfo, 0 /* not UDP */, overhead, 0 /* no footer */, 1 /* no block padding */); /* XX: HDLC fudge factor (average overhead on random payload is 1/128, we'll use 4x that) */ if (ppp->hdlc) vpninfo->ip_info.mtu -= vpninfo->ip_info.mtu >> 5; vpn_progress(vpninfo, PRG_INFO, _("Requesting calculated MTU of %d\n"), vpninfo->ip_info.mtu); } if (ppp->out_lcp_opts & BIT_MRU) buf_append_ppp_tlv_be16(buf, LCP_MRU, vpninfo->ip_info.mtu); if (ppp->out_lcp_opts & BIT_ASYNCMAP) buf_append_ppp_tlv_be32(buf, LCP_ASYNCMAP, ppp->out_asyncmap); if (ppp->out_lcp_opts & BIT_MAGIC) { ret = openconnect_random(&ppp->out_lcp_magic, sizeof(ppp->out_lcp_magic)); if (ret) goto out; buf_append_ppp_tlv(buf, LCP_MAGIC, 4, &ppp->out_lcp_magic); } if (ppp->out_lcp_opts & BIT_PFCOMP) buf_append_ppp_tlv(buf, LCP_PFCOMP, 0, NULL); if (ppp->out_lcp_opts & BIT_ACCOMP) buf_append_ppp_tlv(buf, LCP_ACCOMP, 0, NULL); break; case PPP_IPCP: ncp = &ppp->ipcp; /* XX: send zero for IPv4/DNS/NBNS to request via NAK */ buf_append_ppp_tlv(buf, IPCP_IPADDR, 4, &ppp->out_ipv4_addr.s_addr); /* XX: See ppp.h for why bitfields work here */ for (b=0; b<4; b++) if (ppp->solicit_peerns & (1<ip6cp; /* Send zero here if we need a link-local IPv6 address, because * we don't yet have a global IPv6 address. Otherwise, just send * the interface bits of our global IPv6 address, to avoid getting * a CONFREQ/CONFNAK/re-CONFREQ round trip */ buf_append_ppp_tlv(buf, IP6CP_INT_ID, 8, ppp->out_ipv6_addr.s6_addr + 8); break; default: ret = -EINVAL; goto out; } if ((ret = buf_error(buf)) != 0) goto out; id = ++ncp->id; vpn_progress(vpninfo, PRG_DEBUG, _("Sending our %s/id %d config request to server\n"), proto_names(proto), id); if ((ret = queue_config_packet(vpninfo, proto, id, CONFREQ, buf->pos, buf->data)) >= 0) { ncp->state |= NCP_CONF_REQ_SENT; ret = 0; } out: buf_free(buf); return ret; } static int handle_config_rejnak(struct openconnect_info *vpninfo, int proto, int id, int code, unsigned char *payload, int len) { struct oc_ppp *ppp = vpninfo->ppp; struct oc_ncp *ncp; unsigned char *p; char abuf[MAX(INET_ADDRSTRLEN, INET6_ADDRSTRLEN)]; switch (proto) { case PPP_LCP: ncp = &ppp->lcp; break; case PPP_IPCP: ncp = &ppp->ipcp; break; case PPP_IP6CP: ncp = &ppp->ip6cp; break; default: return -EINVAL; } /* If it isn't a response to our latest ConfReq, we don't care */ if (id != ncp->id) return 0; for (p = payload ; p+1 < payload+len && p+p[1] <= payload+len; p += p[1]) { unsigned char t = p[0], l = p[1]; switch (PROTO_TAG_LEN(proto, t, l-2)) { case PROTO_TAG_LEN(PPP_LCP, LCP_MRU, 2): /* XX: If this happens, should we try a smaller MRU? */ vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected/nak'ed LCP MRU option\n")); ppp->out_lcp_opts &= ~BIT_MRU; break; case PROTO_TAG_LEN(PPP_LCP, LCP_ASYNCMAP, 4): vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected/nak'ed LCP asyncmap option\n")); ppp->out_asyncmap = ASYNCMAP_LCP; ppp->out_lcp_opts &= ~BIT_ASYNCMAP; break; case PROTO_TAG_LEN(PPP_LCP, LCP_MAGIC, 4): if (code == CONFNAK) { /* XX: If this happens, we are will select a new magic number in * our next CONFREQ, in case it's 1984 and our RS-232 nullmodem is * looped back. (https://tools.ietf.org/html/rfc1661#section-6.4) */ } else { vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected LCP magic option\n")); ppp->out_lcp_opts &= ~BIT_MAGIC; } break; case PROTO_TAG_LEN(PPP_LCP, LCP_PFCOMP, 0): vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected/nak'ed LCP PFCOMP option\n")); ppp->out_lcp_opts &= ~BIT_PFCOMP; break; case PROTO_TAG_LEN(PPP_LCP, LCP_ACCOMP, 0): vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected/nak'ed LCP ACCOMP option\n")); ppp->out_lcp_opts &= ~BIT_ACCOMP; break; case PROTO_TAG_LEN(PPP_IPCP, IPCP_IPADDR, 4): { struct in_addr *a = (void *)(p + 2); inet_ntop(AF_INET, a, abuf, sizeof(abuf)); if (code == CONFNAK && a->s_addr) { vpn_progress(vpninfo, PRG_DEBUG, _("Server nak-offered IPv4 address: %s\n"), abuf); ppp->out_ipv4_addr = *a; if (vpninfo->ip_info.addr) { vpn_progress(vpninfo, PRG_ERR, _("Server rejected Legacy IP address %s\n"), vpninfo->ip_info.addr); ppp->want_ipv4 = 0; } } else { vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected/nak'ed our IPv4 address or request: %s\n"), abuf); return -EINVAL; } break; } case PROTO_TAG_LEN(PPP_IPCP, IPCP_xNS_BASE + 0, 4): case PROTO_TAG_LEN(PPP_IPCP, IPCP_xNS_BASE + 1, 4): case PROTO_TAG_LEN(PPP_IPCP, IPCP_xNS_BASE + 2, 4): case PROTO_TAG_LEN(PPP_IPCP, IPCP_xNS_BASE + 3, 4): { struct in_addr *a = (void *)(p + 2); /* XX: see ppp.h for why bitfields work here */ int is_dns = t&1; int entry = (t&2)>>1; inet_ntop(AF_INET, a, abuf, sizeof(abuf)); if (code == CONFNAK && a->s_addr) { vpn_progress(vpninfo, PRG_DEBUG, _("Server nak-offered IPCP request for %s[%d] server: %s\n"), is_dns ? "DNS" : "NBNS", entry, abuf); ppp->nameservers[t & 3] = *a; ppp->got_peerns |= (1<<(t-IPCP_xNS_BASE)); } else { vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected/nak'ed IPCP request for %s[%d] server\n"), is_dns ? "DNS" : "NBNS", entry); } /* Stop soliciting */ ppp->solicit_peerns &= ~(1<<(t-IPCP_xNS_BASE)); break; } case PROTO_TAG_LEN(PPP_IP6CP, IP6CP_INT_ID, 8): { uint64_t *val = (void *)(p + 2); if (code == CONFNAK && *val != 0) { unsigned char ipv6_ll[16] = {0xfe, 0x80, 0, 0, 0, 0, 0, 0}; memcpy(ipv6_ll + 8, val, 8); inet_ntop(AF_INET6, ipv6_ll, abuf, sizeof(abuf)); vpn_progress(vpninfo, PRG_DEBUG, _("Server nak-offered IPv6 link-local address %s\n"), abuf); /* If we don't already have a valid global IPv6 address, then we are * supposed to use this one to create a valid link-local IPv6 * address to allow autoconfiguration (https://tools.ietf.org/html/rfc5072) */ memcpy(&ppp->out_ipv6_addr, ipv6_ll, 16); } else { vpn_progress(vpninfo, PRG_INFO, _("Server rejected/nak'ed our IPv6 interface identifier\n")); ppp->want_ipv6 = 0; return 0; } break; } default: vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected/nak'ed %s TLV (tag %d, len %d+2)\n"), proto_names(proto), t, l-2); dump_buf_hex(vpninfo, PRG_DEBUG, '<', p, (int)p[1]); /* XX: Should abort negotiation */ return -EINVAL; } } if (p != payload+len) { vpn_progress(vpninfo, PRG_DEBUG, _("Received %ld extra bytes at end of Config-Reject:\n"), (long)(payload + len - p)); dump_buf_hex(vpninfo, PRG_DEBUG, '<', p, payload + len - p); } return queue_config_request(vpninfo, proto); } static int handle_config_packet(struct openconnect_info *vpninfo, uint16_t proto, unsigned char *p, int len) { struct oc_ppp *ppp = vpninfo->ppp; int code = p[0], id = p[1]; int ret = 0, add_state = 0; /* XX: The NCP header consist of 4 bytes: u8 code, u8 id, u16 length (length includes this header) */ if (load_be16(p + 2) > len) { vpn_progress(vpninfo, PRG_ERR, "PPP config packet too short (header says %d bytes, received %d)\n", load_be16(p+2), len); dump_buf_hex(vpninfo, PRG_ERR, '<', p, len); return -EINVAL; } else if (load_be16(p + 2) < len) { vpn_progress(vpninfo, PRG_DEBUG, "PPP config packet has junk at end (header says %d bytes, received %d)\n", load_be16(p+2), len); len = load_be16(p + 2); } if (code > 0 && code <= 11) vpn_progress(vpninfo, PRG_TRACE, _("Received %s/id %d %s from server\n"), proto_names(proto), id, lcp_names[code]); switch (code) { case CONFREQ: ret = handle_config_request(vpninfo, proto, id, p + 4, len - 4); break; case CONFACK: /* XX: we could verify that the ack/reply bytes match the request bytes, * and the ID is the expected one, but it isn't 1992, so let's not. */ add_state = NCP_CONF_ACK_RECEIVED; break; case ECHOREQ: if (ppp->ppp_state >= PPPS_OPENED) ret = queue_config_packet(vpninfo, proto, id, ECHOREP, 4, &ppp->out_lcp_magic); break; case TERMREQ: add_state = NCP_TERM_REQ_RECEIVED; ret = queue_config_packet(vpninfo, proto, id, TERMACK, 0, NULL); if (ret >= 0) add_state = NCP_TERM_ACK_SENT; goto set_quit_reason; case TERMACK: add_state = NCP_TERM_ACK_RECEIVED; set_quit_reason: if (!vpninfo->quit_reason && len > 4) { vpninfo->quit_reason = strndup((char *)(p + 4), len - 4); vpn_progress(vpninfo, PRG_ERR, _("Server terminates with reason: %s\n"), vpninfo->quit_reason); } ppp->ppp_state = PPPS_TERMINATE; vpninfo->delay_close = NO_DELAY_CLOSE; break; case ECHOREP: case DISCREQ: break; case CONFREJ: case CONFNAK: ret = handle_config_rejnak(vpninfo, proto, id, code, p + 4, len - 4); break; case PROTREJ: /* Only handle rejection of IPCP or IP6CP */ if (proto != PPP_LCP || len < 6) goto unknown; proto = load_be16(p + 4); if (proto == PPP_IPCP) ppp->want_ipv4 = 0; else if (proto == PPP_IP6CP) ppp->want_ipv6 = 0; else goto unknown; vpn_progress(vpninfo, PRG_DEBUG, _("Server rejected our request to configure IPv%d\n"), proto == PPP_IP6CP ? 6 : 4); break; case CODEREJ: default: unknown: ret = -EINVAL; } switch (proto) { case PPP_LCP: ppp->lcp.state |= add_state; break; case PPP_IPCP: ppp->ipcp.state |= add_state; break; case PPP_IP6CP: ppp->ip6cp.state |= add_state; break; default: return -EINVAL; } return ret; } static int handle_state_transition(struct openconnect_info *vpninfo, int dtls, struct keepalive_info *kai, int *timeout) { struct oc_ppp *ppp = vpninfo->ppp; time_t now = time(NULL); int last_state = ppp->ppp_state, network, ret = 0; switch (ppp->ppp_state) { case PPPS_DEAD: /* Prevent race conditions after recovering dead peer connection */ kai->last_rx = kai->last_tx = now; /* Drop any failed outgoing packet from previous connection; * we need to reconfigure before we can send data packets. */ free_pkt(vpninfo, vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; vpninfo->partial_rec_size = 0; ppp->ppp_state = PPPS_ESTABLISH; /* fall through */ case PPPS_ESTABLISH: if ((ppp->lcp.state & NCP_CONF_ACK_RECEIVED) && (ppp->lcp.state & NCP_CONF_ACK_SENT)) ppp->ppp_state = PPPS_OPENED; else { if (ka_check_deadline(timeout, now, ppp->lcp.last_req + 3)) { ppp->lcp.last_req = now; if ((ret = queue_config_request(vpninfo, PPP_LCP)) < 0) goto out; } break; } /* fall through */ case PPPS_OPENED: network = 1; if (!ppp->want_ipv4 && !ppp->want_ipv6) { vpninfo->quit_reason = "No network protocols configured"; return -EINVAL; } if (ppp->want_ipv4) { if (!(ppp->ipcp.state & NCP_CONF_ACK_SENT) || !(ppp->ipcp.state & NCP_CONF_ACK_RECEIVED)) { network = 0; if (ka_check_deadline(timeout, now, ppp->ipcp.last_req + 3)) { ppp->ipcp.last_req = now; if ((ret = queue_config_request(vpninfo, PPP_IPCP)) < 0) goto out; } } } if (ppp->want_ipv6) { if (!(ppp->ip6cp.state & NCP_CONF_ACK_SENT) || !(ppp->ip6cp.state & NCP_CONF_ACK_RECEIVED)) { network = 0; if (ka_check_deadline(timeout, now, ppp->ip6cp.last_req + 3)) { ppp->ip6cp.last_req = now; if ((ret = queue_config_request(vpninfo, PPP_IP6CP)) < 0) goto out; } } } if (!network) break; ppp->ppp_state = PPPS_NETWORK; /* Ensure that we use the addresses we configured on PPP */ if (ppp->want_ipv4 && !vpninfo->ip_info.addr) { vpninfo->ip_info.addr = add_option_ipaddr(&vpninfo->cstp_options, "ppp_ipv4", AF_INET, &ppp->out_ipv4_addr); } /* Ensure that we use the addresses we configured on PPP */ if (ppp->want_ipv6 && !vpninfo->ip_info.addr6 && !vpninfo->ip_info.netmask6) { vpninfo->ip_info.addr6 = add_option_ipaddr(&vpninfo->cstp_options, "ppp_ipv6", AF_INET6, &ppp->out_ipv6_addr); } if (ppp->got_peerns & IPCP_NBNS0) vpninfo->ip_info.nbns[0] = add_option_ipaddr(&vpninfo->cstp_options, "ppp_nbns0", AF_INET, &ppp->nameservers[0]); if (ppp->got_peerns & IPCP_DNS0) vpninfo->ip_info.dns[0] = add_option_ipaddr(&vpninfo->cstp_options, "ppp_dns0", AF_INET, &ppp->nameservers[1]); if (ppp->got_peerns & IPCP_NBNS1) vpninfo->ip_info.nbns[1] = add_option_ipaddr(&vpninfo->cstp_options, "ppp_nbns1", AF_INET, &ppp->nameservers[2]); if (ppp->got_peerns & IPCP_DNS1) vpninfo->ip_info.dns[1] = add_option_ipaddr(&vpninfo->cstp_options, "ppp_dns1", AF_INET, &ppp->nameservers[3]); /* on close, we will need to send TERMREQ, then receive TERMACK */ vpninfo->delay_close = DELAY_CLOSE_IMMEDIATE_CALLBACK; break; case PPPS_NETWORK: /* XX: When we pause and reconnect, we expect the auth cookie/session (external to the * PPP layer) to remain valid, and to negotiate the same IP addresses on reconnection. * * However, most servers cancel our session or cancel our IP address allocation if we * TERMINATE at the PPP layer, so we shouldn't do it when pausing. */ if (vpninfo->got_cancel_cmd || (vpninfo->got_pause_cmd && ppp->terminate_on_pause)) ppp->ppp_state = PPPS_TERMINATE; else break; /* fall through */ case PPPS_TERMINATE: /* XX: If server terminated, we already ACK'ed it */ if (ppp->lcp.state & NCP_TERM_REQ_RECEIVED) return -EPIPE; else if (!(ppp->lcp.state & NCP_TERM_ACK_RECEIVED)) { /* We need to send a TERMREQ and wait for a TERMACK, but not keep * retrying for ever if it fails. For TLS, which ought to be * lossless, we send TERMREQ just once, wait for a second, and * give up. For DTLS we try three times (with a second between * them and give up if none of them elicit a TERMACK. */ if (!(ppp->lcp.state & NCP_TERM_REQ_SENT)) { ppp->lcp.state |= NCP_TERM_REQ_SENT; ppp->lcp.termreqs_sent = 1; ppp->lcp.last_req = now; (void) queue_config_packet(vpninfo, PPP_LCP, ++ppp->lcp.id, TERMREQ, 0, NULL); vpninfo->delay_close = DELAY_CLOSE_WAIT; /* Wait 1s for TERMACK */ } else if (!ka_check_deadline(timeout, now, ppp->lcp.last_req + 1)) { vpninfo->delay_close = DELAY_CLOSE_WAIT; /* Still waiting */ } else if (!dtls || ppp->lcp.termreqs_sent >= 3) { ppp->ppp_state = PPPS_TERMINATE; } else { ppp->lcp.termreqs_sent++; ppp->lcp.last_req = now; (void) queue_config_packet(vpninfo, PPP_LCP, ++ppp->lcp.id, TERMREQ, 0, NULL); vpninfo->delay_close = DELAY_CLOSE_WAIT; /* Wait 1s more */ } } break; case PPPS_AUTHENTICATE: /* XX: should never */ default: vpninfo->quit_reason = "Unexpected state"; return -EINVAL; } /* Delay tunnel setup until after PPP negotiation */ vpninfo->delay_tunnel_reason = (ppp->ppp_state < PPPS_NETWORK) ? "PPP negotiation" : NULL; if (last_state != ppp->ppp_state) { vpn_progress(vpninfo, PRG_DEBUG, _("PPP state transition from %s to %s on %s channel\n"), ppps_names[last_state], ppps_names[ppp->ppp_state], dtls ? "DTLS" : "TLS"); print_ppp_state(vpninfo, PRG_TRACE); return 1; } out: return ret; } static inline void add_ppp_header(struct pkt *p, struct oc_ppp *ppp, int proto) { unsigned char *ph = p->data; /* XX: store PPP header, in reverse */ *--ph = proto & 0xff; if (proto > 0xff || !(ppp->out_lcp_opts & BIT_PFCOMP)) *--ph = proto >> 8; if (proto == PPP_LCP || !(ppp->out_lcp_opts & BIT_ACCOMP)) { *--ph = 0x03; /* Control */ *--ph = 0xff; /* Address */ } p->ppp.hlen = p->data - ph; } int check_http_status(const char *buf, int len) { if (len >= 5 && !memcmp(buf, "HTTP/", 5)) { const char *eol = memchr(buf, '\r', len) ?: memchr(buf, '\n', len); const char *sp1 = memchr(buf, ' ', len); const char *sp2 = sp1 ? memchr(sp1+1, ' ', len - (sp1-buf) + 1) : NULL; return (sp1 && sp2 && (!eol || sp2ppp; int proto; if ((dtls ? vpninfo->dtls_fd : vpninfo->ssl_fd) == -1) goto do_reconnect; handle_state_transition(vpninfo, dtls, kai, timeout); /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ unsigned char *eh, *ph, *pp, *next; int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); int len, payload_len, next_len; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = alloc_pkt(vpninfo, receive_mtu); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } this = vpninfo->cstp_pkt; /* XX: PPP header is of variable length. We attempt to * anticipate the actual length received, so we don't have to memmove * the payload later. */ rsv_hdr_size = ppp->encap_len + ppp->exp_ppp_hdr_size; /* This should never happen here as we should complain about it * before setting ->partial_rec_size in the first place, but be * paranoid. This would mean we just read zero (or negative!) */ if (vpninfo->partial_rec_size >= receive_mtu + rsv_hdr_size) { vpninfo->quit_reason = "Payload exceeds MTU"; vpn_progress(vpninfo, PRG_ERR, _("PPP payload exceeds receive buffer\n")); return -EINVAL; } /* Load the encap header to end up with the payload where we expect it. Also, * if our previous (D)TLS read contained an incomplete PPP packet, we need * to append to it. */ eh = this->data - rsv_hdr_size; len = ssl_nonblock_read(vpninfo, dtls, eh + vpninfo->partial_rec_size, receive_mtu + rsv_hdr_size - vpninfo->partial_rec_size); if (!len) break; if (len < 0) goto do_reconnect; len += vpninfo->partial_rec_size; vpninfo->partial_rec_size = 0; /* XX: Some protocols require us to check for an HTTP response in place * of the first packet */ if (ppp->check_http_response) { int status = check_http_status((const char *)eh, len); ppp->check_http_response = 0; if (status >= 0) { vpn_progress(vpninfo, PRG_ERR,_("Got unexpected HTTP response: %.*s\n"), len, (const char *)eh); vpninfo->quit_reason = "Received HTTP response (not a PPP packet)"; return (status >= 400 && status <= 499) ? -EPERM : -EINVAL; } } next_pkt: /* At this point: * eh: pointer to start of bytes-from-the-wire * len: number of bytes-from-the-wire */ if (len < (ppp->encap_len ? : 8)) { short_pkt: vpn_progress(vpninfo, PRG_DEBUG, _("Short packet received (%d bytes). Waiting for more.\n"), len); vpninfo->partial_rec_size = len; continue; } if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '<', eh, len); /* Deencapsulate from pre-PPP header */ switch (ppp->encap) { case PPP_ENCAP_F5: magic = load_be16(eh); payload_len = load_be16(eh + 2); next = eh + 4 + payload_len; if (magic != 0xf500) { bad_encap_header: vpn_progress(vpninfo, PRG_ERR, _("Unexpected pre-PPP packet header for encap %d.\n"), ppp->encap); dump_buf_hex(vpninfo, PRG_ERR, '<', eh, len); continue; } if (len < 4 + payload_len) { incomplete_pkt: /* We've read a partial PPP packet. Save the offset for our next read. */ vpninfo->partial_rec_size = len; if (vpninfo->partial_rec_size >= receive_mtu + rsv_hdr_size) { vpninfo->quit_reason = "Payload exceeds MTU"; vpn_progress(vpninfo, PRG_ERR, _("PPP payload len %d exceeds receive buffer %d\n"), payload_len, receive_mtu + rsv_hdr_size); dump_buf_hex(vpninfo, PRG_ERR, '<', eh, len); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("PPP packet is incomplete. Received %d bytes on wire (includes %d encap) but header payload_len is %d. Waiting for more.\n"), len, ppp->encap_len, payload_len); continue; } break; case PPP_ENCAP_FORTINET: payload_len = load_be16(eh + 4); magic = load_be16(eh + 2); next = eh + 6 + payload_len; if (magic != 0x5050 || (load_be16(eh) != payload_len + 6)) goto bad_encap_header; if (len < 6 + payload_len) goto incomplete_pkt; break; case PPP_ENCAP_F5_HDLC: case PPP_ENCAP_RFC1662_HDLC: payload_len = unhdlc_in_place(vpninfo, eh + ppp->encap_len, len - ppp->encap_len, &next); if (payload_len < 0) continue; /* unhdlc_in_place already logged */ if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_TRACE, '<', eh + ppp->encap_len, payload_len); break; case PPP_ENCAP_RFC1661: payload_len = len; next = eh + payload_len; break; default: vpn_progress(vpninfo, PRG_ERR, _("Invalid PPP encapsulation\n")); vpninfo->quit_reason = "Invalid encapsulation"; return -EINVAL; } ph = eh + ppp->encap_len; next_len = eh + len - next; if (next_len) vpn_progress(vpninfo, PRG_TRACE, _("Packet contains %d bytes after payload. Assuming concatenated packet.\n"), next_len); /* At this point: * ph: pointer to start of PPP header * payload_len: number of bytes in PPP packet * * Packet has been un-HDLC'ed, if necessary, and checked for incompleteness * * next: pointer to next concatenated packet * next_len: its length */ /* check PPP header and extract protocol */ pp = ph; if (pp[0] == 0xff && pp[1] == 0x03) /* XX: Neither byte is a possible proto value (https://tools.ietf.org/html/rfc1661#section-2) */ pp += 2; proto = *pp++; if (!(proto & 1)) { proto <<= 8; proto += *pp++; } payload_len -= pp - ph; /* At this point: * pp: pointer to start of PPP payload * payload_len: number of bytes in PPP *payload* */ kai->last_rx = time(NULL); switch (proto) { case PPP_LCP: case PPP_IPCP: case PPP_IP6CP: if ((proto == PPP_IPCP && !ppp->want_ipv4) || (proto == PPP_IP6CP && !ppp->want_ipv6)) goto reject; if (payload_len < 4) goto short_pkt; if ((ret = handle_config_packet(vpninfo, proto, pp, payload_len)) < 0) return ret; else if ((ret = handle_state_transition(vpninfo, dtls, kai, timeout)) < 0) return ret; break; case PPP_IP: case PPP_IP6: if (ppp->ppp_state != PPPS_NETWORK) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected IPv%d packet in PPP state %s.\n"), (proto == PPP_IP6 ? 6 : 4), ppps_names[ppp->ppp_state]); dump_buf_hex(vpninfo, PRG_ERR, '<', pp, payload_len); } else { vpn_progress(vpninfo, PRG_TRACE, _("Received IPv%d data packet of %d bytes over %s\n"), proto == PPP_IP6 ? 6 : 4, payload_len, dtls ? "DTLS" : "TLS"); if (pp != this->data) { vpn_progress(vpninfo, PRG_TRACE, _("Expected %d PPP header bytes but got %ld, shifting payload.\n"), ppp->exp_ppp_hdr_size, (long)(pp - ph)); /* Save it for next time */ ppp->exp_ppp_hdr_size = pp - ph; /* XX: If PPP header was SMALLER than expected, we could * be moving a huge packet past the allocated buffer. */ memmove(this->data, pp, payload_len + next_len); next -= (pp - this->data); } this->len = payload_len; queue_packet(&vpninfo->incoming_queue, this); /* XX: keep reference in this to build next packet */ if (this == vpninfo->cstp_pkt) vpninfo->cstp_pkt = NULL; work_done = 1; } break; default: reject: vpn_progress(vpninfo, PRG_ERR, _("Sending Protocol-Reject for %s. Payload:\n"), proto_names(proto)); dump_buf_hex(vpninfo, PRG_ERR, '>', pp, payload_len); /* The rejected protocol MUST occupy 2 bytes prior to the rejected packet contents. * (https://tools.ietf.org/html/rfc1661#section-5.7). We can clobber these bytes * because we are throwing out this packet anyway. * * The rejected packet body is fully included, unless it must be truncated to the * peer's MRU (taking into account the preceding 4 bytes for PPP header, 4 for LCP * config header, and 2 for rejected proto. */ store_be16(pp - 2, proto); if ((ret = queue_config_packet(vpninfo, PPP_LCP, ++ppp->lcp.id, PROTREJ, MIN(payload_len + 2, (vpninfo->ip_info.mtu ?: 256) - 10), pp - 2)) < 0) return ret; } if (next_len) { /* Need to copy to a new struct pkt, not just move pointers, because data * packets will get stolen for incoming queue and free()'d. Allocate a * full sized packet so it can remain in vpninfo->cstp_pkt and be reused * for receiving the next packet, if it's something other than data and * doesn't get queued and freed. */ this = vpninfo->cstp_pkt = alloc_pkt(vpninfo, receive_mtu); if (!this) return -ENOMEM; eh = this->data - rsv_hdr_size; memcpy(eh, next, next_len); len = next_len; goto next_pkt; } } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if ((this = vpninfo->current_ssl_pkt)) { handle_outgoing: kai->last_tx = time(NULL); if (dtls) unmonitor_write_fd(vpninfo, dtls); else unmonitor_write_fd(vpninfo, ssl); ret = ssl_nonblock_write(vpninfo, dtls, this->data - this->ppp.hlen, this->len + this->ppp.hlen); if (ret < 0) goto do_reconnect; else if (!ret) { /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(kai, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_reconnect; case KA_NONE: return work_done; default: /* This can never happen because ka_stalled_action() * always returns one of the above. */ break; } } if (ret != this->len + this->ppp.hlen) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), this->len + this->ppp.hlen, ret); vpninfo->quit_reason = "Internal error"; return 1; } free_pkt(vpninfo, this); vpninfo->current_ssl_pkt = NULL; } switch (keepalive_action(kai, timeout)) { case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("Detected dead peer!\n")); /* fall through */ case KA_REKEY: do_reconnect: if (dtls) { /* This leaves it in state DTLS_SLEEPING, and will allow * the protocol to handle any magic required to reopen it. */ dtls_close(vpninfo); } else { if (ppp->ppp_state == PPPS_ESTABLISH) { vpn_progress(vpninfo, PRG_ERR, _("Failed to establish PPP\n")); vpninfo->quit_reason = "Failed to establish PPP"; return -EPERM; } ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "PPP reconnect failed"; return ret; } } return 1; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->tcp_control_queue.head || (ppp->ppp_state == PPPS_NETWORK && vpninfo->outgoing_queue.head)) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send PPP discard request as keepalive\n")); queue_config_packet(vpninfo, PPP_LCP, ++ppp->lcp.id, DISCREQ, 0, NULL); break; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send PPP echo request as DPD\n")); queue_config_packet(vpninfo, PPP_LCP, ++ppp->lcp.id, ECHOREQ, 4, &ppp->out_lcp_magic); } /* Service control queue; also, outgoing packet queue, if no DTLS */ if ((this = vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->tcp_control_queue))) { /* XX: We pre-stash the PPP protocol field in the header for control packets */ proto = this->ppp.proto; handle_state_transition(vpninfo, dtls, kai, timeout); } else if (ppp->ppp_state == PPPS_NETWORK && (this = vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { /* XX: Set protocol for IP packets */ proto = (this->len && (this->data[0] & 0xf0) == 0x60) ? PPP_IP6 : PPP_IP; } /* XX: Need 'this = vpninfo->current_ssl_pkt' here, otherwise sanitizer complains about * handle_state_transition() potentially freeing vpninfo->current_ssl_pkt. * * That only occurs in the PPPS_DEAD branch, which is unreachable after the first * invocation, but how to convince it of that? */ if ((this = vpninfo->current_ssl_pkt)) { unsigned char *eh; const char *lcp = NULL; int id; switch (proto) { case PPP_LCP: case PPP_IPCP: case PPP_IP6CP: lcp = lcp_names[this->data[0]]; id = this->data[1]; } /* Add PPP header */ add_ppp_header(this, ppp, proto); /* XX: Copy the whole packet into new HDLC'ed packet if needed */ if (ppp->hdlc) { /* XX: use worst-case escaping for LCP */ this = hdlc_into_new_pkt(vpninfo, this, proto == PPP_LCP ? ASYNCMAP_LCP : ppp->out_asyncmap); if (!this) return 1; /* XX */ free_pkt(vpninfo, vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = this; } /* Encapsulate into pre-PPP header */ eh = this->data - this->ppp.hlen - ppp->encap_len; switch (ppp->encap) { case PPP_ENCAP_F5: store_be16(eh, 0xf500); store_be16(eh + 2, this->len + this->ppp.hlen); break; case PPP_ENCAP_FORTINET: /* XX: header contains both TOTAL bytes-on-wire, and (bytes-on-wire excluding this header) */ store_be16(eh, this->len + this->ppp.hlen + 6); store_be16(eh + 2, 0x5050); store_be16(eh + 4, this->len + this->ppp.hlen); break; } this->ppp.hlen += ppp->encap_len; if (lcp) vpn_progress(vpninfo, PRG_TRACE, _("Sending PPP %s %s packet over %s (id %d, %d bytes total)\n"), proto_names(proto), lcp, dtls ? "DTLS" : "TLS", id, this->len + this->ppp.hlen); else vpn_progress(vpninfo, PRG_TRACE, _("Sending PPP %s packet over %s (%d bytes total)\n"), proto_names(proto), dtls ? "DTLS" : "TLS", this->len + this->ppp.hlen); if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_TRACE, '>', this->data - this->ppp.hlen, this->len + this->ppp.hlen); vpninfo->current_ssl_pkt = this; goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } /* This function in designed to be called from a PPP protocol's * ->tcp_connect() function, to allow it to determine whether it * should establish the PPP connection immediately or wait for * DTLS to have a turn. */ int ppp_tcp_should_connect(struct openconnect_info *vpninfo) { switch (vpninfo->dtls_state) { case DTLS_DISABLED: case DTLS_NOSECRET: /* No DTLS here. Connect PPP immediately over TCP */ return 1; case DTLS_SECRET: /* When openconnect_make_cstp_connection() is first called, * before openconnect_setup_dtls() is called, the state is * DTLS_SECRET. In that case, defer the connection to allow * DTLS to have a turn. */ return 0; case DTLS_SLEEPING: /* On a DTLS connection timeout, the TCP mainloop calls * dtls_close() before calling this function to reconnect, * so establish the PPP immediately over PPP. * * (After a connection pause, DTLS_SLEEPING is also seen but * the UDP mainloop runs first and the state gets changed * to DTLS_CONNECTING before the TCP mainloop runs, so that * variant of DTLS_SLEEPING is never seen here.) */ return 1; case DTLS_CONNECTING: /* After pause/SIGUSR2, the UDP mainloop will run first and * shifts from DTLS_SLEEPING to DTLS_CONNECTING state, before * the TCP mainloop invokes this function. So defer the * connection to allow DTLS to connect. */ return 0; default: case DTLS_CONNECTED: case DTLS_ESTABLISHED: /* These should never be seen. */ vpn_progress(vpninfo, PRG_ERR, _("PPP connect called with invalid DTLS state %d\n"), vpninfo->dtls_state); return -EIO; } } int ppp_start_tcp_mainloop(struct openconnect_info *vpninfo) { int timeout = 0; return ppp_mainloop(vpninfo, 0, &vpninfo->ssl_times, &timeout, 1); } int ppp_tcp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { /* If we're still attempting DTLS, do nothing yet. */ switch (vpninfo->dtls_state) { case DTLS_ESTABLISHED: if (vpninfo->ssl_fd != -1) { openconnect_close_https(vpninfo, 0); /* don't keep stale HTTPS socket */ vpn_progress(vpninfo, PRG_INFO, _("DTLS tunnel connected; exiting HTTPS mainloop.\n")); } /* Now that we are connected, let's ensure timeout is less than * or equal to DTLS DPD/keepalive else we might over sleep, e.g. * if timeout is set to DTLS attempt period from DTLS mainloop, * and falsely detect dead peer. */ if (vpninfo->dtls_times.dpd) if (*timeout > vpninfo->dtls_times.dpd * 1000) *timeout = vpninfo->dtls_times.dpd * 1000; return 0; case DTLS_CONNECTED: case DTLS_CONNECTING: case DTLS_SECRET: if (vpninfo->ppp->ppp_state == PPPS_DEAD) { /* Allow 5 seconds after configuration for DTLS to start */ if (!ka_check_deadline(timeout, time(NULL), vpninfo->new_dtls_started + 5)) { vpninfo->delay_tunnel_reason = "awaiting PPP DTLS connection"; return 0; } /* It'll try again in a while, but we want it to be in DTLS_SLEEPING * so that the tcp_connect() function actually establishes the PPP * over TCP. */ dtls_close(vpninfo); } /* Fall through */ case DTLS_SLEEPING: /* Should only be seen by the mainloop if DTLS actually *failed* * (which includes timing out). */ if (vpninfo->ppp->ppp_state == PPPS_DEAD) { vpn_progress(vpninfo, PRG_ERR, _("Failed to connect DTLS tunnel; using HTTPS instead (state %d).\n"), vpninfo->dtls_state); } /* Fall through */ case DTLS_NOSECRET: case DTLS_DISABLED: /* The state is PPPS_DEAD until the first time ppp_tcp_mainloop() * gets invoked. When f5_connect() actually establishes the tunnel, * it does so to start the PPP state machine for the TCP connection. */ if (vpninfo->ssl_fd != -1 && vpninfo->ppp->ppp_state != PPPS_DEAD) return ppp_mainloop(vpninfo, 0, &vpninfo->ssl_times, timeout, readable); /* This will call *back* into the protocol's ->tcp_connect() * but this time DTLS is disabled so it'll actually establish * the connection there. We want to make use of the retry * handling logic in ssl_reconnect() in the cases where it * doesn't succeed immediately. * * If the connection is already open, try using it directly * first, before falling back to a full ssl_reconnect(). */ if (vpninfo->ssl_fd == -1 || vpninfo->proto->tcp_connect(vpninfo)) { int ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Establishing PPP tunnel over TLS failed\n")); vpninfo->quit_reason = "PPP TLS connect failed"; return ret; } vpninfo->delay_tunnel_reason = "DTLS connection pending"; return 1; } vpninfo->delay_tunnel_reason = "DTLS connection pending"; return 1; } vpn_progress(vpninfo, PRG_ERR, _("Invalid DTLS state %d\n"), vpninfo->dtls_state); vpninfo->quit_reason = "Invalid DTLS state"; return 1; } int ppp_udp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int work_done = 0; time_t now = time(NULL); switch(vpninfo->dtls_state) { case DTLS_CONNECTING: if (vpninfo->ppp->ppp_state == PPPS_DEAD) vpninfo->delay_tunnel_reason = "DTLS connecting"; dtls_try_handshake(vpninfo, timeout); if (vpninfo->dtls_state == DTLS_CONNECTED) goto newly_connected; return 0; case DTLS_CONNECTED: /* First, see if there's a response for us. */ while(readable) { int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); int len; /* cstp_pkt is used by PPP over either transport, and TCP * may be in active use while we attempt to connect DTLS. * So use vpninfo->dtls_pkt for this. */ if (!vpninfo->dtls_pkt) vpninfo->dtls_pkt = alloc_pkt(vpninfo, receive_mtu); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_DISABLED; return 1; } struct pkt *this = vpninfo->dtls_pkt; len = ssl_nonblock_read(vpninfo, 1, this->data, receive_mtu); if (!len) break; if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive authentication response from DTLS\n")); dtls_close(vpninfo); return 1; } this->len = len; if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '<', this->data, len); int ret = vpninfo->proto->udp_catch_probe(vpninfo, this); if (ret < 0) { dtls_close(vpninfo); return 1; } else if (ret > 0) { vpninfo->dtls_state = DTLS_ESTABLISHED; vpninfo->dtls_pkt = NULL; free_pkt(vpninfo, this); /* We are going to take over the PPP now; reset the TCP one */ ret = ppp_reset(vpninfo); if (ret) { /* This should never happen */ vpn_progress(vpninfo, PRG_ERR, _("Reset PPP failed\n")); vpninfo->quit_reason = "PPP DTLS connect failed"; return ret; } goto established; } /* This is the ret==0 case, where the packet was recognised * neither as a success nor failure. In that case it could * be a PPP frame which has been received out of order and * made it to us before the OK response. Drop it and keep * waiting. */ } /* On first connection, the TCP mainloop will give us five seconds * to do the whole exchange and reach DTLS_ESTABLISHED before it * gives up and connects over TCP instead. But for opportunistic * attempts to "upgrade" to DTLS later, it won't get involved. * We still want to time out and give up on this DTLS connection * if we failed to authenticate though. So do it here too. */ if (ka_check_deadline(timeout, now, vpninfo->dtls_times.last_rekey + 5)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to authenticate DTLS session\n")); dtls_close(vpninfo); return 1; } /* Resend the connect request every second */ if (ka_check_deadline(timeout, now, vpninfo->dtls_times.last_tx + 1)) { newly_connected: if (buf_error(vpninfo->ppp_dtls_connect_req)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating connect request for DTLS session\n")); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_DISABLED; return 1; } if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)vpninfo->ppp_dtls_connect_req->data, vpninfo->ppp_dtls_connect_req->pos); int ret = ssl_nonblock_write(vpninfo, 1, vpninfo->ppp_dtls_connect_req->data, vpninfo->ppp_dtls_connect_req->pos); if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to write connect request to DTLS session\n")); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_DISABLED; return 1; } vpninfo->dtls_times.last_tx = now; } if (vpninfo->ppp->ppp_state == PPPS_DEAD) vpninfo->delay_tunnel_reason = "DTLS establishing"; return 0; case DTLS_ESTABLISHED: established: work_done = ppp_mainloop(vpninfo, 1, &vpninfo->dtls_times, timeout, readable); if (vpninfo->dtls_state != DTLS_SLEEPING) break; /* Fall through */ case DTLS_SLEEPING: /* If the SSL connection isn't open, that must mean we've been paused * and resumed. So reconnect immediately regardless of whether we'd * just done so, *and* reset the PPP state so that the TCP mainloop * doesn't get confused. */ if (vpninfo->ssl_fd == -1) { ppp_reset(vpninfo); if (now < vpninfo->new_dtls_started + vpninfo->dtls_attempt_period) now = vpninfo->new_dtls_started + vpninfo->dtls_attempt_period; } if (ka_check_deadline(timeout, now, vpninfo->new_dtls_started + vpninfo->dtls_attempt_period)) { vpn_progress(vpninfo, PRG_DEBUG, _("Attempt new DTLS connection\n")); dtls_reconnect(vpninfo, timeout); work_done = 1; } } return work_done; } openconnect-8.20/configure0000775000076400007640000250763114204505636017464 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Guess values for system-dependent variables and create Makefiles. # Generated by GNU Autoconf 2.69 for openconnect 8.20. # # # Copyright (C) 1992-1996, 1998-2012 Free Software Foundation, Inc. # # # This configure script is free software; the Free Software Foundation # gives unlimited permission to copy, distribute and modify it. ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # Use a proper internal environment variable to ensure we don't fall # into an infinite loop, continuously re-executing ourselves. if test x"${_as_can_reexec}" != xno && test "x$CONFIG_SHELL" != x; then _as_can_reexec=no; export _as_can_reexec; # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 as_fn_exit 255 fi # We don't want this to propagate to other subprocesses. { _as_can_reexec=; unset _as_can_reexec;} if test "x$CONFIG_SHELL" = x; then as_bourne_compatible="if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST else case \`(set -o) 2>/dev/null\` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi " as_required="as_fn_return () { (exit \$1); } as_fn_success () { as_fn_return 0; } as_fn_failure () { as_fn_return 1; } as_fn_ret_success () { return 0; } as_fn_ret_failure () { return 1; } exitcode=0 as_fn_success || { exitcode=1; echo as_fn_success failed.; } as_fn_failure && { exitcode=1; echo as_fn_failure succeeded.; } as_fn_ret_success || { exitcode=1; echo as_fn_ret_success failed.; } as_fn_ret_failure && { exitcode=1; echo as_fn_ret_failure succeeded.; } if ( set x; as_fn_ret_success y && test x = \"\$1\" ); then : else exitcode=1; echo positional parameters were not saved. fi test x\$exitcode = x0 || exit 1 test -x / || exit 1" as_suggested=" as_lineno_1=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_1a=\$LINENO as_lineno_2=";as_suggested=$as_suggested$LINENO;as_suggested=$as_suggested" as_lineno_2a=\$LINENO eval 'test \"x\$as_lineno_1'\$as_run'\" != \"x\$as_lineno_2'\$as_run'\" && test \"x\`expr \$as_lineno_1'\$as_run' + 1\`\" = \"x\$as_lineno_2'\$as_run'\"' || exit 1 test \$(( 1 + 1 )) = 2 || exit 1 test -n \"\${ZSH_VERSION+set}\${BASH_VERSION+set}\" || ( ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO ECHO=\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO\$ECHO PATH=/empty FPATH=/empty; export PATH FPATH test \"X\`printf %s \$ECHO\`\" = \"X\$ECHO\" \\ || test \"X\`print -r -- \$ECHO\`\" = \"X\$ECHO\" ) || exit 1" if (eval "$as_required") 2>/dev/null; then : as_have_required=yes else as_have_required=no fi if test x$as_have_required = xyes && (eval "$as_suggested") 2>/dev/null; then : else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_found=false for as_dir in /bin$PATH_SEPARATOR/usr/bin$PATH_SEPARATOR$PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. as_found=: case $as_dir in #( /*) for as_base in sh bash ksh sh5; do # Try only shells that exist, to save several forks. as_shell=$as_dir/$as_base if { test -f "$as_shell" || test -f "$as_shell.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$as_shell"; } 2>/dev/null; then : CONFIG_SHELL=$as_shell as_have_required=yes if { $as_echo "$as_bourne_compatible""$as_suggested" | as_run=a "$as_shell"; } 2>/dev/null; then : break 2 fi fi done;; esac as_found=false done $as_found || { if { test -f "$SHELL" || test -f "$SHELL.exe"; } && { $as_echo "$as_bourne_compatible""$as_required" | as_run=a "$SHELL"; } 2>/dev/null; then : CONFIG_SHELL=$SHELL as_have_required=yes fi; } IFS=$as_save_IFS if test "x$CONFIG_SHELL" != x; then : export CONFIG_SHELL # We cannot yet assume a decent shell, so we have to provide a # neutralization value for shells without unset; and this also # works around shells that cannot unset nonexistent variables. # Preserve -v and -x to the replacement shell. BASH_ENV=/dev/null ENV=/dev/null (unset BASH_ENV) >/dev/null 2>&1 && unset BASH_ENV ENV case $- in # (((( *v*x* | *x*v* ) as_opts=-vx ;; *v* ) as_opts=-v ;; *x* ) as_opts=-x ;; * ) as_opts= ;; esac exec $CONFIG_SHELL $as_opts "$as_myself" ${1+"$@"} # Admittedly, this is quite paranoid, since all the known shells bail # out after a failed `exec'. $as_echo "$0: could not re-execute with $CONFIG_SHELL" >&2 exit 255 fi if test x$as_have_required = xno; then : $as_echo "$0: This script requires a shell more modern than all" $as_echo "$0: the shells that I found on your system." if test x${ZSH_VERSION+set} = xset ; then $as_echo "$0: In particular, zsh $ZSH_VERSION has bugs and should" $as_echo "$0: be upgraded to zsh 4.3.4 or later." else $as_echo "$0: Please tell bug-autoconf@gnu.org about your system, $0: including any error possibly output before this $0: message. Then install a modern shell, or manually run $0: the script under such a shell if you do have one." fi exit 1 fi fi fi SHELL=${CONFIG_SHELL-/bin/sh} export SHELL # Unset more variables known to interfere with behavior of common tools. CLICOLOR_FORCE= GREP_OPTIONS= unset CLICOLOR_FORCE GREP_OPTIONS ## --------------------- ## ## M4sh Shell Functions. ## ## --------------------- ## # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits as_lineno_1=$LINENO as_lineno_1a=$LINENO as_lineno_2=$LINENO as_lineno_2a=$LINENO eval 'test "x$as_lineno_1'$as_run'" != "x$as_lineno_2'$as_run'" && test "x`expr $as_lineno_1'$as_run' + 1`" = "x$as_lineno_2'$as_run'"' || { # Blame Lee E. McMahon (1931-1989) for sed's syntax. :-) sed -n ' p /[$]LINENO/= ' <$as_myself | sed ' s/[$]LINENO.*/&-/ t lineno b :lineno N :loop s/[$]LINENO\([^'$as_cr_alnum'_].*\n\)\(.*\)/\2\1\2/ t loop s/-\n.*// ' >$as_me.lineno && chmod +x "$as_me.lineno" || { $as_echo "$as_me: error: cannot create $as_me.lineno; rerun with a POSIX shell" >&2; as_fn_exit 1; } # If we had to re-execute with $CONFIG_SHELL, we're ensured to have # already done that, so ensure we don't try to do so again and fall # in an infinite loop. This has already happened in practice. _as_can_reexec=no; export _as_can_reexec # Don't try to exec as it changes $[0], causing all sort of problems # (the dirname of $[0] is not the place where we might find the # original and so on. Autoconf is especially sensitive to this). . "./$as_me.lineno" # Exit status is that of the last command. exit } ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" SHELL=${CONFIG_SHELL-/bin/sh} test -n "$DJDIR" || exec 7<&0 &1 # Name of the host. # hostname on some systems (SVR3.2, old GNU/Linux) returns a bogus exit status, # so uname gets run too. ac_hostname=`(hostname || uname -n) 2>/dev/null | sed 1q` # # Initializations. # ac_default_prefix=/usr/local ac_clean_files= ac_config_libobj_dir=. LIBOBJS= cross_compiling=no subdirs= MFLAGS= MAKEFLAGS= # Identity of this package. PACKAGE_NAME='openconnect' PACKAGE_TARNAME='openconnect' PACKAGE_VERSION='8.20' PACKAGE_STRING='openconnect 8.20' PACKAGE_BUGREPORT='' PACKAGE_URL='' # Factoring default headers for most tests. ac_includes_default="\ #include #ifdef HAVE_SYS_TYPES_H # include #endif #ifdef HAVE_SYS_STAT_H # include #endif #ifdef STDC_HEADERS # include # include #else # ifdef HAVE_STDLIB_H # include # endif #endif #ifdef HAVE_STRING_H # if !defined STDC_HEADERS && defined HAVE_MEMORY_H # include # endif # include #endif #ifdef HAVE_STRINGS_H # include #endif #ifdef HAVE_INTTYPES_H # include #endif #ifdef HAVE_STDINT_H # include #endif #ifdef HAVE_UNISTD_H # include #endif" ac_subst_vars='am__EXEEXT_FALSE am__EXEEXT_TRUE LTLIBOBJS LIBOBJS OCSERV_GROUP OCSERV_USER GITVERSIONDEPS APIMINOR APIMAJOR LINGUAS CONFIG_STATUS_DEPENDENCIES DISABLE_ASAN_BROKEN_TESTS_FALSE DISABLE_ASAN_BROKEN_TESTS_TRUE HAVE_NETNS_FALSE HAVE_NETNS_TRUE IP NUTTCP TEST_PPP_FALSE TEST_PPP_TRUE PPPD SOCAT HAVE_PYTHON36_FLASK_FALSE HAVE_PYTHON36_FLASK_TRUE HAVE_CWRAP_FALSE HAVE_CWRAP_TRUE CWRAP_LIBS CWRAP_CFLAGS BUILD_WWW_FALSE BUILD_WWW_TRUE GROFF PYTHON OPENCONNECT_VHOST_FALSE OPENCONNECT_VHOST_TRUE SYMVER_JAVA JNI_STANDALONE_FALSE JNI_STANDALONE_TRUE OPENCONNECT_JNI_FALSE OPENCONNECT_JNI_TRUE JNI_CFLAGS _ACJNI_JAVAC OPENCONNECT_GSSAPI_FALSE OPENCONNECT_GSSAPI_TRUE GSSAPI_LIBS GSSAPI_CFLAGS KRB5_CONFIG LIBPSKC_PC LIBPSKC_LIBS LIBPSKC_CFLAGS OPENCONNECT_LIBPCSCLITE_FALSE OPENCONNECT_LIBPCSCLITE_TRUE LIBPCSCLITE_PC system_pcsc_libs LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS OPENCONNECT_STOKEN_FALSE OPENCONNECT_STOKEN_TRUE LIBSTOKEN_PC LIBSTOKEN_LIBS LIBSTOKEN_CFLAGS LIBPROXY_PC LIBPROXY_LIBS LIBPROXY_CFLAGS ZLIB_PC ZLIB_LIBS ZLIB_CFLAGS BUILTIN_JSON_FALSE BUILTIN_JSON_TRUE JSON_PC JSON_LIBS JSON_CFLAGS LIBXML2_LIBS LIBXML2_CFLAGS HAVE_VSCRIPT_COMPLEX_FALSE HAVE_VSCRIPT_COMPLEX_TRUE HAVE_VSCRIPT_FALSE HAVE_VSCRIPT_TRUE VSCRIPT_LDFLAGS OPENBSD_LIBTOOL_FALSE OPENBSD_LIBTOOL_TRUE LT_SYS_LIBRARY_PATH OTOOL64 OTOOL LIPO NMEDIT DSYMUTIL MANIFEST_TOOL RANLIB ac_ct_AR AR DLLTOOL OBJDUMP LN_S NM ac_ct_DUMPBIN DUMPBIN LD FGREP SED LIBTOOL LIBLZ4_PC LIBLZ4_LIBS LIBLZ4_CFLAGS OPENCONNECT_DTLS_FALSE OPENCONNECT_DTLS_TRUE OPENCONNECT_ESP_FALSE OPENCONNECT_ESP_TRUE OPENCONNECT_OPENSSL_FALSE OPENCONNECT_OPENSSL_TRUE OPENCONNECT_GNUTLS_FALSE OPENCONNECT_GNUTLS_TRUE TEST_DSA_FALSE TEST_DSA_TRUE DTLS_XFAIL_FALSE DTLS_XFAIL_TRUE CHECK_DTLS_FALSE CHECK_DTLS_TRUE TEST_PKCS11_FALSE TEST_PKCS11_TRUE test_pkcs11 TEST_TPM2_IMPORT_FALSE TEST_TPM2_IMPORT_TRUE TEST_TPM2_CREATE_FALSE TEST_TPM2_CREATE_TRUE TEST_SWTPM_FALSE TEST_SWTPM_TRUE TEST_HWTPM_FALSE TEST_HWTPM_TRUE CREATE_TPM2_KEY TPM2TSS_GENKEY TSSTARTUP TPM2_STARTUP SWTPM_IOCTL SWTPM OPENCONNECT_TSS2_IBM_FALSE OPENCONNECT_TSS2_IBM_TRUE OPENCONNECT_TSS2_ESYS_FALSE OPENCONNECT_TSS2_ESYS_TRUE TSS2_LIBS TPM2_LIBS TPM2_CFLAGS TSS2_ESYS_LIBS TSS2_ESYS_CFLAGS TASN1_LIBS TASN1_CFLAGS TSS_CFLAGS TSS_LIBS SSL_CFLAGS SSL_LIBS P11KIT_PC LIBP11_LIBS LIBP11_CFLAGS P11KIT_LIBS P11KIT_CFLAGS SSL_PC openssl_pc_libs OPENSSL_LIBS OPENSSL_CFLAGS GNUTLS_LIBS GNUTLS_CFLAGS USE_NLS_FALSE USE_NLS_TRUE INTL_CFLAGS INTL_LIBS MSGFMT OPENCONNECT_ICONV_FALSE OPENCONNECT_ICONV_TRUE ICONV_CFLAGS ICONV_LIBS LTLIBICONV LIBICONV WFLAGS SYMVER_WIN32_SETENV SYMVER_WIN32_STRERROR SYMVER_VASPRINTF SYMVER_ASPRINTF SYMVER_GETLINE SYMVER_TIME DEFAULT_VPNCSCRIPT OPENCONNECT_WINTUN_FALSE OPENCONNECT_WINTUN_TRUE BUILD_NSIS_FALSE BUILD_NSIS_TRUE have_unzip have_curl OPENCONNECT_WIN32_FALSE OPENCONNECT_WIN32_TRUE EGREP GREP CPP WINTUN_ARCH MAKENSIS WINDRES am__fastdepCC_FALSE am__fastdepCC_TRUE CCDEPMODE am__nodep AMDEPBACKSLASH AMDEP_FALSE AMDEP_TRUE am__include DEPDIR OBJEXT EXEEXT ac_ct_CC CPPFLAGS LDFLAGS CFLAGS CC pkgconfigdir AM_BACKSLASH AM_DEFAULT_VERBOSITY AM_DEFAULT_V AM_V am__untar am__tar AMTAR am__leading_dot SET_MAKE AWK mkdir_p MKDIR_P INSTALL_STRIP_PROGRAM STRIP install_sh MAKEINFO AUTOHEADER AUTOMAKE AUTOCONF ACLOCAL VERSION PACKAGE CYGPATH_W am__isrc INSTALL_DATA INSTALL_SCRIPT INSTALL_PROGRAM MAINT MAINTAINER_MODE_FALSE MAINTAINER_MODE_TRUE host_os host_vendor host_cpu host build_os build_vendor build_cpu build PKG_CONFIG_LIBDIR PKG_CONFIG_PATH PKG_CONFIG target_alias host_alias build_alias LIBS ECHO_T ECHO_N ECHO_C DEFS mandir localedir libdir psdir pdfdir dvidir htmldir infodir docdir oldincludedir includedir runstatedir localstatedir sharedstatedir sysconfdir datadir datarootdir libexecdir sbindir bindir program_transform_name prefix exec_prefix PACKAGE_URL PACKAGE_BUGREPORT PACKAGE_STRING PACKAGE_VERSION PACKAGE_TARNAME PACKAGE_NAME PATH_SEPARATOR SHELL am__quote' ac_subst_files='' ac_user_opts=' enable_option_checking enable_maintainer_mode enable_silent_rules with_pkgconfigdir enable_dependency_tracking with_vpnc_script enable_shared enable_static with_gnu_ld enable_rpath with_libiconv_prefix enable_nls with_libintl_prefix with_system_cafile with_gnutls with_openssl with_openssl_version_check with_gnutls_version_check with_default_gnutls_priority with_gnutls_tss2 enable_hwtpm_test enable_dtls_xfail enable_dsa_tests enable_ppp_tests enable_flask_tests with_lz4 with_pic enable_fast_install with_aix_soname with_sysroot enable_libtool_lock enable_symvers with_builtin_json with_libproxy with_stoken with_libpcsclite with_libpskc with_gssapi with_java enable_jni_standalone enable_insecure_debugging enable_vhost_net with_asan_broken_tests ' ac_precious_vars='build_alias host_alias target_alias PKG_CONFIG PKG_CONFIG_PATH PKG_CONFIG_LIBDIR CC CFLAGS LDFLAGS LIBS CPPFLAGS CPP GNUTLS_CFLAGS GNUTLS_LIBS OPENSSL_CFLAGS OPENSSL_LIBS P11KIT_CFLAGS P11KIT_LIBS LIBP11_CFLAGS LIBP11_LIBS TASN1_CFLAGS TASN1_LIBS TSS2_ESYS_CFLAGS TSS2_ESYS_LIBS LIBLZ4_CFLAGS LIBLZ4_LIBS LT_SYS_LIBRARY_PATH LIBXML2_CFLAGS LIBXML2_LIBS JSON_CFLAGS JSON_LIBS ZLIB_CFLAGS ZLIB_LIBS LIBPROXY_CFLAGS LIBPROXY_LIBS LIBSTOKEN_CFLAGS LIBSTOKEN_LIBS LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS LIBPSKC_CFLAGS LIBPSKC_LIBS CWRAP_CFLAGS CWRAP_LIBS' # Initialize some variables set by options. ac_init_help= ac_init_version=false ac_unrecognized_opts= ac_unrecognized_sep= # The variables have the same names as the options, with # dashes changed to underlines. cache_file=/dev/null exec_prefix=NONE no_create= no_recursion= prefix=NONE program_prefix=NONE program_suffix=NONE program_transform_name=s,x,x, silent= site= srcdir= verbose= x_includes=NONE x_libraries=NONE # Installation directory options. # These are left unexpanded so users can "make install exec_prefix=/foo" # and all the variables that are supposed to be based on exec_prefix # by default will actually change. # Use braces instead of parens because sh, perl, etc. also accept them. # (The list follows the same order as the GNU Coding Standards.) bindir='${exec_prefix}/bin' sbindir='${exec_prefix}/sbin' libexecdir='${exec_prefix}/libexec' datarootdir='${prefix}/share' datadir='${datarootdir}' sysconfdir='${prefix}/etc' sharedstatedir='${prefix}/com' localstatedir='${prefix}/var' runstatedir='${localstatedir}/run' includedir='${prefix}/include' oldincludedir='/usr/include' docdir='${datarootdir}/doc/${PACKAGE_TARNAME}' infodir='${datarootdir}/info' htmldir='${docdir}' dvidir='${docdir}' pdfdir='${docdir}' psdir='${docdir}' libdir='${exec_prefix}/lib' localedir='${datarootdir}/locale' mandir='${datarootdir}/man' ac_prev= ac_dashdash= for ac_option do # If the previous option needs an argument, assign it. if test -n "$ac_prev"; then eval $ac_prev=\$ac_option ac_prev= continue fi case $ac_option in *=?*) ac_optarg=`expr "X$ac_option" : '[^=]*=\(.*\)'` ;; *=) ac_optarg= ;; *) ac_optarg=yes ;; esac # Accept the important Cygnus configure options, so we can diagnose typos. case $ac_dashdash$ac_option in --) ac_dashdash=yes ;; -bindir | --bindir | --bindi | --bind | --bin | --bi) ac_prev=bindir ;; -bindir=* | --bindir=* | --bindi=* | --bind=* | --bin=* | --bi=*) bindir=$ac_optarg ;; -build | --build | --buil | --bui | --bu) ac_prev=build_alias ;; -build=* | --build=* | --buil=* | --bui=* | --bu=*) build_alias=$ac_optarg ;; -cache-file | --cache-file | --cache-fil | --cache-fi \ | --cache-f | --cache- | --cache | --cach | --cac | --ca | --c) ac_prev=cache_file ;; -cache-file=* | --cache-file=* | --cache-fil=* | --cache-fi=* \ | --cache-f=* | --cache-=* | --cache=* | --cach=* | --cac=* | --ca=* | --c=*) cache_file=$ac_optarg ;; --config-cache | -C) cache_file=config.cache ;; -datadir | --datadir | --datadi | --datad) ac_prev=datadir ;; -datadir=* | --datadir=* | --datadi=* | --datad=*) datadir=$ac_optarg ;; -datarootdir | --datarootdir | --datarootdi | --datarootd | --dataroot \ | --dataroo | --dataro | --datar) ac_prev=datarootdir ;; -datarootdir=* | --datarootdir=* | --datarootdi=* | --datarootd=* \ | --dataroot=* | --dataroo=* | --dataro=* | --datar=*) datarootdir=$ac_optarg ;; -disable-* | --disable-*) ac_useropt=`expr "x$ac_option" : 'x-*disable-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--disable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=no ;; -docdir | --docdir | --docdi | --doc | --do) ac_prev=docdir ;; -docdir=* | --docdir=* | --docdi=* | --doc=* | --do=*) docdir=$ac_optarg ;; -dvidir | --dvidir | --dvidi | --dvid | --dvi | --dv) ac_prev=dvidir ;; -dvidir=* | --dvidir=* | --dvidi=* | --dvid=* | --dvi=* | --dv=*) dvidir=$ac_optarg ;; -enable-* | --enable-*) ac_useropt=`expr "x$ac_option" : 'x-*enable-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid feature name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "enable_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--enable-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval enable_$ac_useropt=\$ac_optarg ;; -exec-prefix | --exec_prefix | --exec-prefix | --exec-prefi \ | --exec-pref | --exec-pre | --exec-pr | --exec-p | --exec- \ | --exec | --exe | --ex) ac_prev=exec_prefix ;; -exec-prefix=* | --exec_prefix=* | --exec-prefix=* | --exec-prefi=* \ | --exec-pref=* | --exec-pre=* | --exec-pr=* | --exec-p=* | --exec-=* \ | --exec=* | --exe=* | --ex=*) exec_prefix=$ac_optarg ;; -gas | --gas | --ga | --g) # Obsolete; use --with-gas. with_gas=yes ;; -help | --help | --hel | --he | -h) ac_init_help=long ;; -help=r* | --help=r* | --hel=r* | --he=r* | -hr*) ac_init_help=recursive ;; -help=s* | --help=s* | --hel=s* | --he=s* | -hs*) ac_init_help=short ;; -host | --host | --hos | --ho) ac_prev=host_alias ;; -host=* | --host=* | --hos=* | --ho=*) host_alias=$ac_optarg ;; -htmldir | --htmldir | --htmldi | --htmld | --html | --htm | --ht) ac_prev=htmldir ;; -htmldir=* | --htmldir=* | --htmldi=* | --htmld=* | --html=* | --htm=* \ | --ht=*) htmldir=$ac_optarg ;; -includedir | --includedir | --includedi | --included | --include \ | --includ | --inclu | --incl | --inc) ac_prev=includedir ;; -includedir=* | --includedir=* | --includedi=* | --included=* | --include=* \ | --includ=* | --inclu=* | --incl=* | --inc=*) includedir=$ac_optarg ;; -infodir | --infodir | --infodi | --infod | --info | --inf) ac_prev=infodir ;; -infodir=* | --infodir=* | --infodi=* | --infod=* | --info=* | --inf=*) infodir=$ac_optarg ;; -libdir | --libdir | --libdi | --libd) ac_prev=libdir ;; -libdir=* | --libdir=* | --libdi=* | --libd=*) libdir=$ac_optarg ;; -libexecdir | --libexecdir | --libexecdi | --libexecd | --libexec \ | --libexe | --libex | --libe) ac_prev=libexecdir ;; -libexecdir=* | --libexecdir=* | --libexecdi=* | --libexecd=* | --libexec=* \ | --libexe=* | --libex=* | --libe=*) libexecdir=$ac_optarg ;; -localedir | --localedir | --localedi | --localed | --locale) ac_prev=localedir ;; -localedir=* | --localedir=* | --localedi=* | --localed=* | --locale=*) localedir=$ac_optarg ;; -localstatedir | --localstatedir | --localstatedi | --localstated \ | --localstate | --localstat | --localsta | --localst | --locals) ac_prev=localstatedir ;; -localstatedir=* | --localstatedir=* | --localstatedi=* | --localstated=* \ | --localstate=* | --localstat=* | --localsta=* | --localst=* | --locals=*) localstatedir=$ac_optarg ;; -mandir | --mandir | --mandi | --mand | --man | --ma | --m) ac_prev=mandir ;; -mandir=* | --mandir=* | --mandi=* | --mand=* | --man=* | --ma=* | --m=*) mandir=$ac_optarg ;; -nfp | --nfp | --nf) # Obsolete; use --without-fp. with_fp=no ;; -no-create | --no-create | --no-creat | --no-crea | --no-cre \ | --no-cr | --no-c | -n) no_create=yes ;; -no-recursion | --no-recursion | --no-recursio | --no-recursi \ | --no-recurs | --no-recur | --no-recu | --no-rec | --no-re | --no-r) no_recursion=yes ;; -oldincludedir | --oldincludedir | --oldincludedi | --oldincluded \ | --oldinclude | --oldinclud | --oldinclu | --oldincl | --oldinc \ | --oldin | --oldi | --old | --ol | --o) ac_prev=oldincludedir ;; -oldincludedir=* | --oldincludedir=* | --oldincludedi=* | --oldincluded=* \ | --oldinclude=* | --oldinclud=* | --oldinclu=* | --oldincl=* | --oldinc=* \ | --oldin=* | --oldi=* | --old=* | --ol=* | --o=*) oldincludedir=$ac_optarg ;; -prefix | --prefix | --prefi | --pref | --pre | --pr | --p) ac_prev=prefix ;; -prefix=* | --prefix=* | --prefi=* | --pref=* | --pre=* | --pr=* | --p=*) prefix=$ac_optarg ;; -program-prefix | --program-prefix | --program-prefi | --program-pref \ | --program-pre | --program-pr | --program-p) ac_prev=program_prefix ;; -program-prefix=* | --program-prefix=* | --program-prefi=* \ | --program-pref=* | --program-pre=* | --program-pr=* | --program-p=*) program_prefix=$ac_optarg ;; -program-suffix | --program-suffix | --program-suffi | --program-suff \ | --program-suf | --program-su | --program-s) ac_prev=program_suffix ;; -program-suffix=* | --program-suffix=* | --program-suffi=* \ | --program-suff=* | --program-suf=* | --program-su=* | --program-s=*) program_suffix=$ac_optarg ;; -program-transform-name | --program-transform-name \ | --program-transform-nam | --program-transform-na \ | --program-transform-n | --program-transform- \ | --program-transform | --program-transfor \ | --program-transfo | --program-transf \ | --program-trans | --program-tran \ | --progr-tra | --program-tr | --program-t) ac_prev=program_transform_name ;; -program-transform-name=* | --program-transform-name=* \ | --program-transform-nam=* | --program-transform-na=* \ | --program-transform-n=* | --program-transform-=* \ | --program-transform=* | --program-transfor=* \ | --program-transfo=* | --program-transf=* \ | --program-trans=* | --program-tran=* \ | --progr-tra=* | --program-tr=* | --program-t=*) program_transform_name=$ac_optarg ;; -pdfdir | --pdfdir | --pdfdi | --pdfd | --pdf | --pd) ac_prev=pdfdir ;; -pdfdir=* | --pdfdir=* | --pdfdi=* | --pdfd=* | --pdf=* | --pd=*) pdfdir=$ac_optarg ;; -psdir | --psdir | --psdi | --psd | --ps) ac_prev=psdir ;; -psdir=* | --psdir=* | --psdi=* | --psd=* | --ps=*) psdir=$ac_optarg ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) silent=yes ;; -runstatedir | --runstatedir | --runstatedi | --runstated \ | --runstate | --runstat | --runsta | --runst | --runs \ | --run | --ru | --r) ac_prev=runstatedir ;; -runstatedir=* | --runstatedir=* | --runstatedi=* | --runstated=* \ | --runstate=* | --runstat=* | --runsta=* | --runst=* | --runs=* \ | --run=* | --ru=* | --r=*) runstatedir=$ac_optarg ;; -sbindir | --sbindir | --sbindi | --sbind | --sbin | --sbi | --sb) ac_prev=sbindir ;; -sbindir=* | --sbindir=* | --sbindi=* | --sbind=* | --sbin=* \ | --sbi=* | --sb=*) sbindir=$ac_optarg ;; -sharedstatedir | --sharedstatedir | --sharedstatedi \ | --sharedstated | --sharedstate | --sharedstat | --sharedsta \ | --sharedst | --shareds | --shared | --share | --shar \ | --sha | --sh) ac_prev=sharedstatedir ;; -sharedstatedir=* | --sharedstatedir=* | --sharedstatedi=* \ | --sharedstated=* | --sharedstate=* | --sharedstat=* | --sharedsta=* \ | --sharedst=* | --shareds=* | --shared=* | --share=* | --shar=* \ | --sha=* | --sh=*) sharedstatedir=$ac_optarg ;; -site | --site | --sit) ac_prev=site ;; -site=* | --site=* | --sit=*) site=$ac_optarg ;; -srcdir | --srcdir | --srcdi | --srcd | --src | --sr) ac_prev=srcdir ;; -srcdir=* | --srcdir=* | --srcdi=* | --srcd=* | --src=* | --sr=*) srcdir=$ac_optarg ;; -sysconfdir | --sysconfdir | --sysconfdi | --sysconfd | --sysconf \ | --syscon | --sysco | --sysc | --sys | --sy) ac_prev=sysconfdir ;; -sysconfdir=* | --sysconfdir=* | --sysconfdi=* | --sysconfd=* | --sysconf=* \ | --syscon=* | --sysco=* | --sysc=* | --sys=* | --sy=*) sysconfdir=$ac_optarg ;; -target | --target | --targe | --targ | --tar | --ta | --t) ac_prev=target_alias ;; -target=* | --target=* | --targe=* | --targ=* | --tar=* | --ta=* | --t=*) target_alias=$ac_optarg ;; -v | -verbose | --verbose | --verbos | --verbo | --verb) verbose=yes ;; -version | --version | --versio | --versi | --vers | -V) ac_init_version=: ;; -with-* | --with-*) ac_useropt=`expr "x$ac_option" : 'x-*with-\([^=]*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--with-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=\$ac_optarg ;; -without-* | --without-*) ac_useropt=`expr "x$ac_option" : 'x-*without-\(.*\)'` # Reject names that are not valid shell variable names. expr "x$ac_useropt" : ".*[^-+._$as_cr_alnum]" >/dev/null && as_fn_error $? "invalid package name: $ac_useropt" ac_useropt_orig=$ac_useropt ac_useropt=`$as_echo "$ac_useropt" | sed 's/[-+.]/_/g'` case $ac_user_opts in *" "with_$ac_useropt" "*) ;; *) ac_unrecognized_opts="$ac_unrecognized_opts$ac_unrecognized_sep--without-$ac_useropt_orig" ac_unrecognized_sep=', ';; esac eval with_$ac_useropt=no ;; --x) # Obsolete; use --with-x. with_x=yes ;; -x-includes | --x-includes | --x-include | --x-includ | --x-inclu \ | --x-incl | --x-inc | --x-in | --x-i) ac_prev=x_includes ;; -x-includes=* | --x-includes=* | --x-include=* | --x-includ=* | --x-inclu=* \ | --x-incl=* | --x-inc=* | --x-in=* | --x-i=*) x_includes=$ac_optarg ;; -x-libraries | --x-libraries | --x-librarie | --x-librari \ | --x-librar | --x-libra | --x-libr | --x-lib | --x-li | --x-l) ac_prev=x_libraries ;; -x-libraries=* | --x-libraries=* | --x-librarie=* | --x-librari=* \ | --x-librar=* | --x-libra=* | --x-libr=* | --x-lib=* | --x-li=* | --x-l=*) x_libraries=$ac_optarg ;; -*) as_fn_error $? "unrecognized option: \`$ac_option' Try \`$0 --help' for more information" ;; *=*) ac_envvar=`expr "x$ac_option" : 'x\([^=]*\)='` # Reject names that are not valid shell variable names. case $ac_envvar in #( '' | [0-9]* | *[!_$as_cr_alnum]* ) as_fn_error $? "invalid variable name: \`$ac_envvar'" ;; esac eval $ac_envvar=\$ac_optarg export $ac_envvar ;; *) # FIXME: should be removed in autoconf 3.0. $as_echo "$as_me: WARNING: you should use --build, --host, --target" >&2 expr "x$ac_option" : ".*[^-._$as_cr_alnum]" >/dev/null && $as_echo "$as_me: WARNING: invalid host type: $ac_option" >&2 : "${build_alias=$ac_option} ${host_alias=$ac_option} ${target_alias=$ac_option}" ;; esac done if test -n "$ac_prev"; then ac_option=--`echo $ac_prev | sed 's/_/-/g'` as_fn_error $? "missing argument to $ac_option" fi if test -n "$ac_unrecognized_opts"; then case $enable_option_checking in no) ;; fatal) as_fn_error $? "unrecognized options: $ac_unrecognized_opts" ;; *) $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2 ;; esac fi # Check all directory arguments for consistency. for ac_var in exec_prefix prefix bindir sbindir libexecdir datarootdir \ datadir sysconfdir sharedstatedir localstatedir includedir \ oldincludedir docdir infodir htmldir dvidir pdfdir psdir \ libdir localedir mandir runstatedir do eval ac_val=\$$ac_var # Remove trailing slashes. case $ac_val in */ ) ac_val=`expr "X$ac_val" : 'X\(.*[^/]\)' \| "X$ac_val" : 'X\(.*\)'` eval $ac_var=\$ac_val;; esac # Be sure to have absolute directory names. case $ac_val in [\\/$]* | ?:[\\/]* ) continue;; NONE | '' ) case $ac_var in *prefix ) continue;; esac;; esac as_fn_error $? "expected an absolute directory name for --$ac_var: $ac_val" done # There might be people who depend on the old broken behavior: `$host' # used to hold the argument of --host etc. # FIXME: To remove some day. build=$build_alias host=$host_alias target=$target_alias # FIXME: To remove some day. if test "x$host_alias" != x; then if test "x$build_alias" = x; then cross_compiling=maybe elif test "x$build_alias" != "x$host_alias"; then cross_compiling=yes fi fi ac_tool_prefix= test -n "$host_alias" && ac_tool_prefix=$host_alias- test "$silent" = yes && exec 6>/dev/null ac_pwd=`pwd` && test -n "$ac_pwd" && ac_ls_di=`ls -di .` && ac_pwd_ls_di=`cd "$ac_pwd" && ls -di .` || as_fn_error $? "working directory cannot be determined" test "X$ac_ls_di" = "X$ac_pwd_ls_di" || as_fn_error $? "pwd does not report name of working directory" # Find the source files, if location was not specified. if test -z "$srcdir"; then ac_srcdir_defaulted=yes # Try the directory containing this script, then the parent directory. ac_confdir=`$as_dirname -- "$as_myself" || $as_expr X"$as_myself" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_myself" : 'X\(//\)[^/]' \| \ X"$as_myself" : 'X\(//\)$' \| \ X"$as_myself" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_myself" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` srcdir=$ac_confdir if test ! -r "$srcdir/$ac_unique_file"; then srcdir=.. fi else ac_srcdir_defaulted=no fi if test ! -r "$srcdir/$ac_unique_file"; then test "$ac_srcdir_defaulted" = yes && srcdir="$ac_confdir or .." as_fn_error $? "cannot find sources ($ac_unique_file) in $srcdir" fi ac_msg="sources are in $srcdir, but \`cd $srcdir' does not work" ac_abs_confdir=`( cd "$srcdir" && test -r "./$ac_unique_file" || as_fn_error $? "$ac_msg" pwd)` # When building in place, set srcdir=. if test "$ac_abs_confdir" = "$ac_pwd"; then srcdir=. fi # Remove unnecessary trailing slashes from srcdir. # Double slashes in file names in object file debugging info # mess up M-x gdb in Emacs. case $srcdir in */) srcdir=`expr "X$srcdir" : 'X\(.*[^/]\)' \| "X$srcdir" : 'X\(.*\)'`;; esac for ac_var in $ac_precious_vars; do eval ac_env_${ac_var}_set=\${${ac_var}+set} eval ac_env_${ac_var}_value=\$${ac_var} eval ac_cv_env_${ac_var}_set=\${${ac_var}+set} eval ac_cv_env_${ac_var}_value=\$${ac_var} done # # Report the --help message. # if test "$ac_init_help" = "long"; then # Omit some internal or obsolete options to make the list less imposing. # This message is too long to be a string in the A/UX 3.1 sh. cat <<_ACEOF \`configure' configures openconnect 8.20 to adapt to many kinds of systems. Usage: $0 [OPTION]... [VAR=VALUE]... To assign environment variables (e.g., CC, CFLAGS...), specify them as VAR=VALUE. See below for descriptions of some of the useful variables. Defaults for the options are specified in brackets. Configuration: -h, --help display this help and exit --help=short display options specific to this package --help=recursive display the short help of all the included packages -V, --version display version information and exit -q, --quiet, --silent do not print \`checking ...' messages --cache-file=FILE cache test results in FILE [disabled] -C, --config-cache alias for \`--cache-file=config.cache' -n, --no-create do not create output files --srcdir=DIR find the sources in DIR [configure dir or \`..'] Installation directories: --prefix=PREFIX install architecture-independent files in PREFIX [$ac_default_prefix] --exec-prefix=EPREFIX install architecture-dependent files in EPREFIX [PREFIX] By default, \`make install' will install all the files in \`$ac_default_prefix/bin', \`$ac_default_prefix/lib' etc. You can specify an installation prefix other than \`$ac_default_prefix' using \`--prefix', for instance \`--prefix=\$HOME'. For better control, use the options below. Fine tuning of the installation directories: --bindir=DIR user executables [EPREFIX/bin] --sbindir=DIR system admin executables [EPREFIX/sbin] --libexecdir=DIR program executables [EPREFIX/libexec] --sysconfdir=DIR read-only single-machine data [PREFIX/etc] --sharedstatedir=DIR modifiable architecture-independent data [PREFIX/com] --localstatedir=DIR modifiable single-machine data [PREFIX/var] --runstatedir=DIR modifiable per-process data [LOCALSTATEDIR/run] --libdir=DIR object code libraries [EPREFIX/lib] --includedir=DIR C header files [PREFIX/include] --oldincludedir=DIR C header files for non-gcc [/usr/include] --datarootdir=DIR read-only arch.-independent data root [PREFIX/share] --datadir=DIR read-only architecture-independent data [DATAROOTDIR] --infodir=DIR info documentation [DATAROOTDIR/info] --localedir=DIR locale-dependent data [DATAROOTDIR/locale] --mandir=DIR man documentation [DATAROOTDIR/man] --docdir=DIR documentation root [DATAROOTDIR/doc/openconnect] --htmldir=DIR html documentation [DOCDIR] --dvidir=DIR dvi documentation [DOCDIR] --pdfdir=DIR pdf documentation [DOCDIR] --psdir=DIR ps documentation [DOCDIR] _ACEOF cat <<\_ACEOF Program names: --program-prefix=PREFIX prepend PREFIX to installed program names --program-suffix=SUFFIX append SUFFIX to installed program names --program-transform-name=PROGRAM run sed PROGRAM on installed program names System types: --build=BUILD configure for building on BUILD [guessed] --host=HOST cross-compile to build programs to run on HOST [BUILD] _ACEOF fi if test -n "$ac_init_help"; then case $ac_init_help in short | recursive ) echo "Configuration of openconnect 8.20:";; esac cat <<\_ACEOF Optional Features: --disable-option-checking ignore unrecognized --enable/--with options --disable-FEATURE do not include FEATURE (same as --enable-FEATURE=no) --enable-FEATURE[=ARG] include FEATURE [ARG=yes] --disable-maintainer-mode disable make rules and dependencies not useful (and sometimes confusing) to the casual installer --enable-silent-rules less verbose build output (undo: "make V=1") --disable-silent-rules verbose build output (undo: "make V=0") --enable-dependency-tracking do not reject slow dependency extractors --disable-dependency-tracking speeds up one-time build --enable-shared[=PKGS] build shared libraries [default=yes] --enable-static[=PKGS] build static libraries [default=no] --disable-rpath do not hardcode runtime library paths --disable-nls Do not use Native Language Support --enable-hwtpm-test Test TPM support using real TPMv2 [default=no] --enable-dtls-xfail Only for gitlab CI. Do not use --disable-dsa-tests Disable DSA keys in self-test --enable-ppp-tests Enable PPP tests (which require socat and pppd, and must run as root) --disable-flask-tests Disable Flask-based tests (which require Python 3.6+ and the Flask module) --enable-fast-install[=PKGS] optimize for fast installation [default=yes] --disable-libtool-lock avoid locking (might break parallel builds) --disable-symvers disable library symbol versioning [default=auto] --enable-jni-standalone build JNI stubs directly into libopenconnect.so [default=no] --enable-insecure-debugging Enable --servercert=ACCEPT option, and don't logout on SIGINT --enable-vhost-net Build vhost-net support for tun device acceleration [default=no] Optional Packages: --with-PACKAGE[=ARG] use PACKAGE [ARG=yes] --without-PACKAGE do not use PACKAGE (same as --with-PACKAGE=no) --with-pkgconfigdir pkg-config installation directory ['${libdir}/pkgconfig'] --with-vpnc-script default location of vpnc-script helper --with-gnu-ld assume the C compiler uses GNU ld [default=no] --with-libiconv-prefix[=DIR] search for libiconv in DIR/include and DIR/lib --without-libiconv-prefix don't search for libiconv in includedir and libdir --with-libintl-prefix[=DIR] search for libintl in DIR/include and DIR/lib --without-libintl-prefix don't search for libintl in includedir and libdir --with-system-cafile Location of the default system CA certificate file for old (<3.0.20) GnuTLS versions --without-gnutls Do not attempt to use GnuTLS; use OpenSSL instead --with-openssl Location of OpenSSL build dir --without-openssl-version-check Do not check for known-broken OpenSSL versions --without-gnutls-version-check Do not check for known-broken GnuTLS versions --with-default-gnutls-priority=STRING Provide a default string as GnuTLS priority string --with-gnutls-tss2 Specify TSS2 library (tss2-esys, ibmtss) --without-lz4 disable support for LZ4 compression --with-pic[=PKGS] try to use only PIC/non-PIC objects [default=use both] --with-aix-soname=aix|svr4|both shared library versioning (aka "SONAME") variant to provide on AIX, [default=aix]. --with-gnu-ld assume the C compiler uses GNU ld [default=no] --with-sysroot[=DIR] Search for dependent libraries within DIR (or the compiler's sysroot if not specified). --with-builtin-json Build with builtin json-parser library [default=auto] --without-libproxy Build without libproxy library [default=auto] --without-stoken Build without libstoken library [default=auto] --without-libpcsclite Build without libpcsclite library (for Yubikey support) [default=auto] --without-libpskc Build without libpskc library [default=auto] --without-gssapi Build without GSSAPI support [default=auto] --with-java(=DIR) Build JNI bindings using jni.h from DIR [default=no] --without-asan-broken-tests disable any tests that cannot be run under asan Some influential environment variables: PKG_CONFIG path to pkg-config utility PKG_CONFIG_PATH directories to add to pkg-config's search path PKG_CONFIG_LIBDIR path overriding pkg-config's built-in search path CC C compiler command CFLAGS C compiler flags LDFLAGS linker flags, e.g. -L if you have libraries in a nonstandard directory LIBS libraries to pass to the linker, e.g. -l CPPFLAGS (Objective) C/C++ preprocessor flags, e.g. -I if you have headers in a nonstandard directory CPP C preprocessor GNUTLS_CFLAGS C compiler flags for GNUTLS, overriding pkg-config GNUTLS_LIBS linker flags for GNUTLS, overriding pkg-config OPENSSL_CFLAGS C compiler flags for OPENSSL, overriding pkg-config OPENSSL_LIBS linker flags for OPENSSL, overriding pkg-config P11KIT_CFLAGS C compiler flags for P11KIT, overriding pkg-config P11KIT_LIBS linker flags for P11KIT, overriding pkg-config LIBP11_CFLAGS C compiler flags for LIBP11, overriding pkg-config LIBP11_LIBS linker flags for LIBP11, overriding pkg-config TASN1_CFLAGS C compiler flags for TASN1, overriding pkg-config TASN1_LIBS linker flags for TASN1, overriding pkg-config TSS2_ESYS_CFLAGS C compiler flags for TSS2_ESYS, overriding pkg-config TSS2_ESYS_LIBS linker flags for TSS2_ESYS, overriding pkg-config LIBLZ4_CFLAGS C compiler flags for LIBLZ4, overriding pkg-config LIBLZ4_LIBS linker flags for LIBLZ4, overriding pkg-config LT_SYS_LIBRARY_PATH User-defined run-time library search path. LIBXML2_CFLAGS C compiler flags for LIBXML2, overriding pkg-config LIBXML2_LIBS linker flags for LIBXML2, overriding pkg-config JSON_CFLAGS C compiler flags for JSON, overriding pkg-config JSON_LIBS linker flags for JSON, overriding pkg-config ZLIB_CFLAGS C compiler flags for ZLIB, overriding pkg-config ZLIB_LIBS linker flags for ZLIB, overriding pkg-config LIBPROXY_CFLAGS C compiler flags for LIBPROXY, overriding pkg-config LIBPROXY_LIBS linker flags for LIBPROXY, overriding pkg-config LIBSTOKEN_CFLAGS C compiler flags for LIBSTOKEN, overriding pkg-config LIBSTOKEN_LIBS linker flags for LIBSTOKEN, overriding pkg-config LIBPCSCLITE_CFLAGS C compiler flags for LIBPCSCLITE, overriding pkg-config LIBPCSCLITE_LIBS linker flags for LIBPCSCLITE, overriding pkg-config LIBPSKC_CFLAGS C compiler flags for LIBPSKC, overriding pkg-config LIBPSKC_LIBS linker flags for LIBPSKC, overriding pkg-config CWRAP_CFLAGS C compiler flags for CWRAP, overriding pkg-config CWRAP_LIBS linker flags for CWRAP, overriding pkg-config Use these variables to override the choices made by `configure' or to help it to find libraries and programs with nonstandard names/locations. Report bugs to the package provider. _ACEOF ac_status=$? fi if test "$ac_init_help" = "recursive"; then # If there are subdirs, report their specific --help. for ac_dir in : $ac_subdirs_all; do test "x$ac_dir" = x: && continue test -d "$ac_dir" || { cd "$srcdir" && ac_pwd=`pwd` && srcdir=. && test -d "$ac_dir"; } || continue ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix cd "$ac_dir" || { ac_status=$?; continue; } # Check for guested configure. if test -f "$ac_srcdir/configure.gnu"; then echo && $SHELL "$ac_srcdir/configure.gnu" --help=recursive elif test -f "$ac_srcdir/configure"; then echo && $SHELL "$ac_srcdir/configure" --help=recursive else $as_echo "$as_me: WARNING: no configuration information is in $ac_dir" >&2 fi || ac_status=$? cd "$ac_pwd" || { ac_status=$?; break; } done fi test -n "$ac_init_help" && exit $ac_status if $ac_init_version; then cat <<\_ACEOF openconnect configure 8.20 generated by GNU Autoconf 2.69 Copyright (C) 2012 Free Software Foundation, Inc. This configure script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it. _ACEOF exit fi ## ------------------------ ## ## Autoconf initialization. ## ## ------------------------ ## # ac_fn_c_try_compile LINENO # -------------------------- # Try to compile conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest.$ac_objext; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_compile # ac_fn_c_try_cpp LINENO # ---------------------- # Try to preprocess conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_cpp () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_cpp conftest.$ac_ext" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_cpp conftest.$ac_ext") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } > conftest.i && { test -z "$ac_c_preproc_warn_flag$ac_c_werror_flag" || test ! -s conftest.err }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_cpp # ac_fn_c_check_header_mongrel LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists, giving a warning if it cannot be compiled using # the include files in INCLUDES and setting the cache variable VAR # accordingly. ac_fn_c_check_header_mongrel () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if eval \${$3+:} false; then : { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } else # Is the header compilable? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 usability" >&5 $as_echo_n "checking $2 usability... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_header_compiler=yes else ac_header_compiler=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_compiler" >&5 $as_echo "$ac_header_compiler" >&6; } # Is the header present? { $as_echo "$as_me:${as_lineno-$LINENO}: checking $2 presence" >&5 $as_echo_n "checking $2 presence... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include <$2> _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : ac_header_preproc=yes else ac_header_preproc=no fi rm -f conftest.err conftest.i conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_header_preproc" >&5 $as_echo "$ac_header_preproc" >&6; } # So? What about this header? case $ac_header_compiler:$ac_header_preproc:$ac_c_preproc_warn_flag in #(( yes:no: ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&5 $as_echo "$as_me: WARNING: $2: accepted by the compiler, rejected by the preprocessor!" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; no:yes:* ) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: present but cannot be compiled" >&5 $as_echo "$as_me: WARNING: $2: present but cannot be compiled" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: check for missing prerequisite headers?" >&5 $as_echo "$as_me: WARNING: $2: check for missing prerequisite headers?" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: see the Autoconf documentation" >&5 $as_echo "$as_me: WARNING: $2: see the Autoconf documentation" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&5 $as_echo "$as_me: WARNING: $2: section \"Present But Cannot Be Compiled\"" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $2: proceeding with the compiler's result" >&5 $as_echo "$as_me: WARNING: $2: proceeding with the compiler's result" >&2;} ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else eval "$3=\$ac_header_compiler" fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } fi eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_mongrel # ac_fn_c_try_run LINENO # ---------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. Assumes # that executables *can* be run. ac_fn_c_try_run () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { ac_try='./conftest$ac_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then : ac_retval=0 else $as_echo "$as_me: program exited with status $ac_status" >&5 $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=$ac_status fi rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_run # ac_fn_c_check_header_compile LINENO HEADER VAR INCLUDES # ------------------------------------------------------- # Tests whether HEADER exists and can be compiled using the include files in # INCLUDES, setting the cache variable VAR accordingly. ac_fn_c_check_header_compile () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 #include <$2> _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_header_compile # ac_fn_c_check_decl LINENO SYMBOL VAR INCLUDES # --------------------------------------------- # Tests whether SYMBOL is declared in INCLUDES, setting cache variable VAR # accordingly. ac_fn_c_check_decl () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack as_decl_name=`echo $2|sed 's/ *(.*//'` as_decl_use=`echo $2|sed -e 's/(/((/' -e 's/)/) 0&/' -e 's/,/) 0& (/g'` { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $as_decl_name is declared" >&5 $as_echo_n "checking whether $as_decl_name is declared... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ $4 int main () { #ifndef $as_decl_name #ifdef __cplusplus (void) $as_decl_use; #else (void) $as_decl_name; #endif #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_decl # ac_fn_c_try_link LINENO # ----------------------- # Try to link conftest.$ac_ext, and return whether this succeeded. ac_fn_c_try_link () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack rm -f conftest.$ac_objext conftest$ac_exeext if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>conftest.err ac_status=$? if test -s conftest.err; then grep -v '^ *+' conftest.err >conftest.er1 cat conftest.er1 >&5 mv -f conftest.er1 conftest.err fi $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && { test -z "$ac_c_werror_flag" || test ! -s conftest.err } && test -s conftest$ac_exeext && { test "$cross_compiling" = yes || test -x conftest$ac_exeext }; then : ac_retval=0 else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 ac_retval=1 fi # Delete the IPA/IPO (Inter Procedural Analysis/Optimization) information # created by the PGI compiler (conftest_ipa8_conftest.oo), as it would # interfere with the next link command; also delete a directory that is # left behind by Apple's compiler. We do this before executing the actions. rm -rf conftest.dSYM conftest_ipa8_conftest.oo eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno as_fn_set_status $ac_retval } # ac_fn_c_try_link # ac_fn_c_check_func LINENO FUNC VAR # ---------------------------------- # Tests whether FUNC exists, setting the cache variable VAR accordingly ac_fn_c_check_func () { as_lineno=${as_lineno-"$1"} as_lineno_stack=as_lineno_stack=$as_lineno_stack { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $2" >&5 $as_echo_n "checking for $2... " >&6; } if eval \${$3+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Define $2 to an innocuous variant, in case declares $2. For example, HP-UX 11i declares gettimeofday. */ #define $2 innocuous_$2 /* System header to define __stub macros and hopefully few prototypes, which can conflict with char $2 (); below. Prefer to if __STDC__ is defined, since exists even on freestanding compilers. */ #ifdef __STDC__ # include #else # include #endif #undef $2 /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char $2 (); /* The GNU C library defines this for functions which it implements to always fail with ENOSYS. Some functions are actually named something starting with __ and the normal name is an alias. */ #if defined __stub_$2 || defined __stub___$2 choke me #endif int main () { return $2 (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : eval "$3=yes" else eval "$3=no" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi eval ac_res=\$$3 { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } eval $as_lineno_stack; ${as_lineno_stack:+:} unset as_lineno } # ac_fn_c_check_func cat >config.log <<_ACEOF This file contains any messages produced by compilers while running configure, to aid debugging if configure makes a mistake. It was created by openconnect $as_me 8.20, which was generated by GNU Autoconf 2.69. Invocation command line was $ $0 $@ _ACEOF exec 5>>config.log { cat <<_ASUNAME ## --------- ## ## Platform. ## ## --------- ## hostname = `(hostname || uname -n) 2>/dev/null | sed 1q` uname -m = `(uname -m) 2>/dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null || echo unknown` /bin/uname -X = `(/bin/uname -X) 2>/dev/null || echo unknown` /bin/arch = `(/bin/arch) 2>/dev/null || echo unknown` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null || echo unknown` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null || echo unknown` /usr/bin/hostinfo = `(/usr/bin/hostinfo) 2>/dev/null || echo unknown` /bin/machine = `(/bin/machine) 2>/dev/null || echo unknown` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null || echo unknown` /bin/universe = `(/bin/universe) 2>/dev/null || echo unknown` _ASUNAME as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. $as_echo "PATH: $as_dir" done IFS=$as_save_IFS } >&5 cat >&5 <<_ACEOF ## ----------- ## ## Core tests. ## ## ----------- ## _ACEOF # Keep a trace of the command line. # Strip out --no-create and --no-recursion so they do not pile up. # Strip out --silent because we don't want to record it for future runs. # Also quote any args containing shell meta-characters. # Make two passes to allow for proper duplicate-argument suppression. ac_configure_args= ac_configure_args0= ac_configure_args1= ac_must_keep_next=false for ac_pass in 1 2 do for ac_arg do case $ac_arg in -no-create | --no-c* | -n | -no-recursion | --no-r*) continue ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil) continue ;; *\'*) ac_arg=`$as_echo "$ac_arg" | sed "s/'/'\\\\\\\\''/g"` ;; esac case $ac_pass in 1) as_fn_append ac_configure_args0 " '$ac_arg'" ;; 2) as_fn_append ac_configure_args1 " '$ac_arg'" if test $ac_must_keep_next = true; then ac_must_keep_next=false # Got value, back to normal. else case $ac_arg in *=* | --config-cache | -C | -disable-* | --disable-* \ | -enable-* | --enable-* | -gas | --g* | -nfp | --nf* \ | -q | -quiet | --q* | -silent | --sil* | -v | -verb* \ | -with-* | --with-* | -without-* | --without-* | --x) case "$ac_configure_args0 " in "$ac_configure_args1"*" '$ac_arg' "* ) continue ;; esac ;; -* ) ac_must_keep_next=true ;; esac fi as_fn_append ac_configure_args " '$ac_arg'" ;; esac done done { ac_configure_args0=; unset ac_configure_args0;} { ac_configure_args1=; unset ac_configure_args1;} # When interrupted or exit'd, cleanup temporary files, and complete # config.log. We remove comments because anyway the quotes in there # would cause problems or look ugly. # WARNING: Use '\'' to represent an apostrophe within the trap. # WARNING: Do not start the trap code with a newline, due to a FreeBSD 4.0 bug. trap 'exit_status=$? # Save into config.log some information that might help in debugging. { echo $as_echo "## ---------------- ## ## Cache variables. ## ## ---------------- ##" echo # The following way of writing the cache mishandles newlines in values, ( for ac_var in `(set) 2>&1 | sed -n '\''s/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'\''`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space='\'' '\''; set) 2>&1` in #( *${as_nl}ac_space=\ *) sed -n \ "s/'\''/'\''\\\\'\'''\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\''\\2'\''/p" ;; #( *) sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) echo $as_echo "## ----------------- ## ## Output variables. ## ## ----------------- ##" echo for ac_var in $ac_subst_vars do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo if test -n "$ac_subst_files"; then $as_echo "## ------------------- ## ## File substitutions. ## ## ------------------- ##" echo for ac_var in $ac_subst_files do eval ac_val=\$$ac_var case $ac_val in *\'\''*) ac_val=`$as_echo "$ac_val" | sed "s/'\''/'\''\\\\\\\\'\'''\''/g"`;; esac $as_echo "$ac_var='\''$ac_val'\''" done | sort echo fi if test -s confdefs.h; then $as_echo "## ----------- ## ## confdefs.h. ## ## ----------- ##" echo cat confdefs.h echo fi test "$ac_signal" != 0 && $as_echo "$as_me: caught signal $ac_signal" $as_echo "$as_me: exit $exit_status" } >&5 rm -f core *.core core.conftest.* && rm -f -r conftest* confdefs* conf$$* $ac_clean_files && exit $exit_status ' 0 for ac_signal in 1 2 13 15; do trap 'ac_signal='$ac_signal'; as_fn_exit 1' $ac_signal done ac_signal=0 # confdefs.h avoids OS command line length limits that DEFS can exceed. rm -f -r conftest* confdefs.h $as_echo "/* confdefs.h */" > confdefs.h # Predefined preprocessor variables. cat >>confdefs.h <<_ACEOF #define PACKAGE_NAME "$PACKAGE_NAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_TARNAME "$PACKAGE_TARNAME" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_VERSION "$PACKAGE_VERSION" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_STRING "$PACKAGE_STRING" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_BUGREPORT "$PACKAGE_BUGREPORT" _ACEOF cat >>confdefs.h <<_ACEOF #define PACKAGE_URL "$PACKAGE_URL" _ACEOF # Let the site file select an alternate cache file if it wants to. # Prefer an explicitly selected file to automatically selected ones. ac_site_file1=NONE ac_site_file2=NONE if test -n "$CONFIG_SITE"; then # We do not want a PATH search for config.site. case $CONFIG_SITE in #(( -*) ac_site_file1=./$CONFIG_SITE;; */*) ac_site_file1=$CONFIG_SITE;; *) ac_site_file1=./$CONFIG_SITE;; esac elif test "x$prefix" != xNONE; then ac_site_file1=$prefix/share/config.site ac_site_file2=$prefix/etc/config.site else ac_site_file1=$ac_default_prefix/share/config.site ac_site_file2=$ac_default_prefix/etc/config.site fi for ac_site_file in "$ac_site_file1" "$ac_site_file2" do test "x$ac_site_file" = xNONE && continue if test /dev/null != "$ac_site_file" && test -r "$ac_site_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading site script $ac_site_file" >&5 $as_echo "$as_me: loading site script $ac_site_file" >&6;} sed 's/^/| /' "$ac_site_file" >&5 . "$ac_site_file" \ || { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "failed to load site script $ac_site_file See \`config.log' for more details" "$LINENO" 5; } fi done if test -r "$cache_file"; then # Some versions of bash will fail to source /dev/null (special files # actually), so we avoid doing that. DJGPP emulates it as a regular file. if test /dev/null != "$cache_file" && test -f "$cache_file"; then { $as_echo "$as_me:${as_lineno-$LINENO}: loading cache $cache_file" >&5 $as_echo "$as_me: loading cache $cache_file" >&6;} case $cache_file in [\\/]* | ?:[\\/]* ) . "$cache_file";; *) . "./$cache_file";; esac fi else { $as_echo "$as_me:${as_lineno-$LINENO}: creating cache $cache_file" >&5 $as_echo "$as_me: creating cache $cache_file" >&6;} >$cache_file fi # Check that the precious variables saved in the cache have kept the same # value. ac_cache_corrupted=false for ac_var in $ac_precious_vars; do eval ac_old_set=\$ac_cv_env_${ac_var}_set eval ac_new_set=\$ac_env_${ac_var}_set eval ac_old_val=\$ac_cv_env_${ac_var}_value eval ac_new_val=\$ac_env_${ac_var}_value case $ac_old_set,$ac_new_set in set,) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was set to \`$ac_old_val' in the previous run" >&2;} ac_cache_corrupted=: ;; ,set) { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' was not set in the previous run" >&5 $as_echo "$as_me: error: \`$ac_var' was not set in the previous run" >&2;} ac_cache_corrupted=: ;; ,);; *) if test "x$ac_old_val" != "x$ac_new_val"; then # differences in whitespace do not lead to failure. ac_old_val_w=`echo x $ac_old_val` ac_new_val_w=`echo x $ac_new_val` if test "$ac_old_val_w" != "$ac_new_val_w"; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: \`$ac_var' has changed since the previous run:" >&5 $as_echo "$as_me: error: \`$ac_var' has changed since the previous run:" >&2;} ac_cache_corrupted=: else { $as_echo "$as_me:${as_lineno-$LINENO}: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&5 $as_echo "$as_me: warning: ignoring whitespace changes in \`$ac_var' since the previous run:" >&2;} eval $ac_var=\$ac_old_val fi { $as_echo "$as_me:${as_lineno-$LINENO}: former value: \`$ac_old_val'" >&5 $as_echo "$as_me: former value: \`$ac_old_val'" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: current value: \`$ac_new_val'" >&5 $as_echo "$as_me: current value: \`$ac_new_val'" >&2;} fi;; esac # Pass precious variables to config.status. if test "$ac_new_set" = set; then case $ac_new_val in *\'*) ac_arg=$ac_var=`$as_echo "$ac_new_val" | sed "s/'/'\\\\\\\\''/g"` ;; *) ac_arg=$ac_var=$ac_new_val ;; esac case " $ac_configure_args " in *" '$ac_arg' "*) ;; # Avoid dups. Use of quotes ensures accuracy. *) as_fn_append ac_configure_args " '$ac_arg'" ;; esac fi done if $ac_cache_corrupted; then { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} { $as_echo "$as_me:${as_lineno-$LINENO}: error: changes in the environment can compromise the build" >&5 $as_echo "$as_me: error: changes in the environment can compromise the build" >&2;} as_fn_error $? "run \`make distclean' and/or \`rm $cache_file' and start over" "$LINENO" 5 fi ## -------------------- ## ## Main body of script. ## ## -------------------- ## ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_config_headers="$ac_config_headers config.h" if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}pkg-config", so it can be a program name with args. set dummy ${ac_tool_prefix}pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_PKG_CONFIG="$PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PKG_CONFIG=$ac_cv_path_PKG_CONFIG if test -n "$PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PKG_CONFIG" >&5 $as_echo "$PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_path_PKG_CONFIG"; then ac_pt_PKG_CONFIG=$PKG_CONFIG # Extract the first word of "pkg-config", so it can be a program name with args. set dummy pkg-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_ac_pt_PKG_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $ac_pt_PKG_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_ac_pt_PKG_CONFIG="$ac_pt_PKG_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_ac_pt_PKG_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi ac_pt_PKG_CONFIG=$ac_cv_path_ac_pt_PKG_CONFIG if test -n "$ac_pt_PKG_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_pt_PKG_CONFIG" >&5 $as_echo "$ac_pt_PKG_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_pt_PKG_CONFIG" = x; then PKG_CONFIG="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac PKG_CONFIG=$ac_pt_PKG_CONFIG fi else PKG_CONFIG="$ac_cv_path_PKG_CONFIG" fi fi if test -n "$PKG_CONFIG"; then _pkg_min_version=0.9.0 { $as_echo "$as_me:${as_lineno-$LINENO}: checking pkg-config is at least version $_pkg_min_version" >&5 $as_echo_n "checking pkg-config is at least version $_pkg_min_version... " >&6; } if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } PKG_CONFIG="" fi fi ac_aux_dir= for ac_dir in "$srcdir" "$srcdir/.." "$srcdir/../.."; do if test -f "$ac_dir/install-sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install-sh -c" break elif test -f "$ac_dir/install.sh"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/install.sh -c" break elif test -f "$ac_dir/shtool"; then ac_aux_dir=$ac_dir ac_install_sh="$ac_aux_dir/shtool install -c" break fi done if test -z "$ac_aux_dir"; then as_fn_error $? "cannot find install-sh, install.sh, or shtool in \"$srcdir\" \"$srcdir/..\" \"$srcdir/../..\"" "$LINENO" 5 fi # These three variables are undocumented and unsupported, # and are intended to be withdrawn in a future Autoconf release. # They can cause serious problems if a builder's source tree is in a directory # whose full name contains unusual characters. ac_config_guess="$SHELL $ac_aux_dir/config.guess" # Please don't use this var. ac_config_sub="$SHELL $ac_aux_dir/config.sub" # Please don't use this var. ac_configure="$SHELL $ac_aux_dir/configure" # Please don't use this var. # Make sure we can run config.sub. $SHELL "$ac_aux_dir/config.sub" sun4 >/dev/null 2>&1 || as_fn_error $? "cannot run $SHELL $ac_aux_dir/config.sub" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking build system type" >&5 $as_echo_n "checking build system type... " >&6; } if ${ac_cv_build+:} false; then : $as_echo_n "(cached) " >&6 else ac_build_alias=$build_alias test "x$ac_build_alias" = x && ac_build_alias=`$SHELL "$ac_aux_dir/config.guess"` test "x$ac_build_alias" = x && as_fn_error $? "cannot guess build type; you must specify one" "$LINENO" 5 ac_cv_build=`$SHELL "$ac_aux_dir/config.sub" $ac_build_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $ac_build_alias failed" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_build" >&5 $as_echo "$ac_cv_build" >&6; } case $ac_cv_build in *-*-*) ;; *) as_fn_error $? "invalid value of canonical build" "$LINENO" 5;; esac build=$ac_cv_build ac_save_IFS=$IFS; IFS='-' set x $ac_cv_build shift build_cpu=$1 build_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: build_os=$* IFS=$ac_save_IFS case $build_os in *\ *) build_os=`echo "$build_os" | sed 's/ /-/g'`;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking host system type" >&5 $as_echo_n "checking host system type... " >&6; } if ${ac_cv_host+:} false; then : $as_echo_n "(cached) " >&6 else if test "x$host_alias" = x; then ac_cv_host=$ac_cv_build else ac_cv_host=`$SHELL "$ac_aux_dir/config.sub" $host_alias` || as_fn_error $? "$SHELL $ac_aux_dir/config.sub $host_alias failed" "$LINENO" 5 fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_host" >&5 $as_echo "$ac_cv_host" >&6; } case $ac_cv_host in *-*-*) ;; *) as_fn_error $? "invalid value of canonical host" "$LINENO" 5;; esac host=$ac_cv_host ac_save_IFS=$IFS; IFS='-' set x $ac_cv_host shift host_cpu=$1 host_vendor=$2 shift; shift # Remember, the first character of IFS is used to create $*, # except with old shells: host_os=$* IFS=$ac_save_IFS case $host_os in *\ *) host_os=`echo "$host_os" | sed 's/ /-/g'`;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to enable maintainer-specific portions of Makefiles" >&5 $as_echo_n "checking whether to enable maintainer-specific portions of Makefiles... " >&6; } # Check whether --enable-maintainer-mode was given. if test "${enable_maintainer_mode+set}" = set; then : enableval=$enable_maintainer_mode; USE_MAINTAINER_MODE=$enableval else USE_MAINTAINER_MODE=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $USE_MAINTAINER_MODE" >&5 $as_echo "$USE_MAINTAINER_MODE" >&6; } if test $USE_MAINTAINER_MODE = yes; then MAINTAINER_MODE_TRUE= MAINTAINER_MODE_FALSE='#' else MAINTAINER_MODE_TRUE='#' MAINTAINER_MODE_FALSE= fi MAINT=$MAINTAINER_MODE_TRUE am__api_version='1.16' # Find a good install program. We prefer a C program (faster), # so one script is as good as another. But avoid the broken or # incompatible versions: # SysV /etc/install, /usr/sbin/install # SunOS /usr/etc/install # IRIX /sbin/install # AIX /bin/install # AmigaOS /C/install, which installs bootblocks on floppy discs # AIX 4 /usr/bin/installbsd, which doesn't work without a -g flag # AFS /usr/afsws/bin/install, which mishandles nonexistent args # SVR4 /usr/ucb/install, which tries to use the nonexistent group "staff" # OS/2's system install, which has a completely different semantic # ./install, which can be erroneously created by make from ./install.sh. # Reject install programs that cannot install multiple files. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a BSD-compatible install" >&5 $as_echo_n "checking for a BSD-compatible install... " >&6; } if test -z "$INSTALL"; then if ${ac_cv_path_install+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. # Account for people who put trailing slashes in PATH elements. case $as_dir/ in #(( ./ | .// | /[cC]/* | \ /etc/* | /usr/sbin/* | /usr/etc/* | /sbin/* | /usr/afsws/bin/* | \ ?:[\\/]os2[\\/]install[\\/]* | ?:[\\/]OS2[\\/]INSTALL[\\/]* | \ /usr/ucb/* ) ;; *) # OSF1 and SCO ODT 3.0 have their own names for install. # Don't use installbsd from OSF since it installs stuff as root # by default. for ac_prog in ginstall scoinst install; do for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext"; then if test $ac_prog = install && grep dspmsg "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # AIX install. It has an incompatible calling convention. : elif test $ac_prog = install && grep pwplus "$as_dir/$ac_prog$ac_exec_ext" >/dev/null 2>&1; then # program-specific install script used by HP pwplus--don't use. : else rm -rf conftest.one conftest.two conftest.dir echo one > conftest.one echo two > conftest.two mkdir conftest.dir if "$as_dir/$ac_prog$ac_exec_ext" -c conftest.one conftest.two "`pwd`/conftest.dir" && test -s conftest.one && test -s conftest.two && test -s conftest.dir/conftest.one && test -s conftest.dir/conftest.two then ac_cv_path_install="$as_dir/$ac_prog$ac_exec_ext -c" break 3 fi fi fi done done ;; esac done IFS=$as_save_IFS rm -rf conftest.one conftest.two conftest.dir fi if test "${ac_cv_path_install+set}" = set; then INSTALL=$ac_cv_path_install else # As a last resort, use the slow shell script. Don't cache a # value for INSTALL within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. INSTALL=$ac_install_sh fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $INSTALL" >&5 $as_echo "$INSTALL" >&6; } # Use test -z because SunOS4 sh mishandles braces in ${var-val}. # It thinks the first close brace ends the variable substitution. test -z "$INSTALL_PROGRAM" && INSTALL_PROGRAM='${INSTALL}' test -z "$INSTALL_SCRIPT" && INSTALL_SCRIPT='${INSTALL}' test -z "$INSTALL_DATA" && INSTALL_DATA='${INSTALL} -m 644' { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether build environment is sane" >&5 $as_echo_n "checking whether build environment is sane... " >&6; } # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[\\\"\#\$\&\'\`$am_lf]*) as_fn_error $? "unsafe absolute working directory name" "$LINENO" 5;; esac case $srcdir in *[\\\"\#\$\&\'\`$am_lf\ \ ]*) as_fn_error $? "unsafe srcdir value: '$srcdir'" "$LINENO" 5;; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$*" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$*" != "X $srcdir/configure conftest.file" \ && test "$*" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". as_fn_error $? "ls -t appears to fail. Make sure there is not a broken alias in your environment" "$LINENO" 5 fi if test "$2" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$2" = conftest.file ) then # Ok. : else as_fn_error $? "newly created file is older than distributed files! Check your system clock" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi rm -f conftest.file test "$program_prefix" != NONE && program_transform_name="s&^&$program_prefix&;$program_transform_name" # Use a double $ so make ignores it. test "$program_suffix" != NONE && program_transform_name="s&\$&$program_suffix&;$program_transform_name" # Double any \ or $. # By default was `s,x,x', remove it if useless. ac_script='s/[\\$]/&&/g;s/;s,x,x,$//' program_transform_name=`$as_echo "$program_transform_name" | sed "$ac_script"` # Expand $ac_aux_dir to an absolute path. am_aux_dir=`cd "$ac_aux_dir" && pwd` if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: 'missing' script is too old or missing" >&5 $as_echo "$as_me: WARNING: 'missing' script is too old or missing" >&2;} fi if test x"${install_sh+set}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. if test "$cross_compiling" != no; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 $as_echo "$STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 $as_echo "$ac_ct_STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then STRIP=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP fi else STRIP="$ac_cv_prog_STRIP" fi fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a thread-safe mkdir -p" >&5 $as_echo_n "checking for a thread-safe mkdir -p... " >&6; } if test -z "$MKDIR_P"; then if ${ac_cv_path_mkdir+:} false; then : $as_echo_n "(cached) " >&6 else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/opt/sfw/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in mkdir gmkdir; do for ac_exec_ext in '' $ac_executable_extensions; do as_fn_executable_p "$as_dir/$ac_prog$ac_exec_ext" || continue case `"$as_dir/$ac_prog$ac_exec_ext" --version 2>&1` in #( 'mkdir (GNU coreutils) '* | \ 'mkdir (coreutils) '* | \ 'mkdir (fileutils) '4.1*) ac_cv_path_mkdir=$as_dir/$ac_prog$ac_exec_ext break 3;; esac done done done IFS=$as_save_IFS fi test -d ./--version && rmdir ./--version if test "${ac_cv_path_mkdir+set}" = set; then MKDIR_P="$ac_cv_path_mkdir -p" else # As a last resort, use the slow shell script. Don't cache a # value for MKDIR_P within a source directory, because that will # break other packages using the cache if that directory is # removed, or if the value is a relative name. MKDIR_P="$ac_install_sh -d" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MKDIR_P" >&5 $as_echo "$MKDIR_P" >&6; } for ac_prog in gawk mawk nawk awk do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_AWK+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$AWK"; then ac_cv_prog_AWK="$AWK" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_AWK="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi AWK=$ac_cv_prog_AWK if test -n "$AWK"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AWK" >&5 $as_echo "$AWK" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$AWK" && break done { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} sets \$(MAKE)" >&5 $as_echo_n "checking whether ${MAKE-make} sets \$(MAKE)... " >&6; } set x ${MAKE-make} ac_make=`$as_echo "$2" | sed 's/+/p/g; s/[^a-zA-Z0-9_]/_/g'` if eval \${ac_cv_prog_make_${ac_make}_set+:} false; then : $as_echo_n "(cached) " >&6 else cat >conftest.make <<\_ACEOF SHELL = /bin/sh all: @echo '@@@%%%=$(MAKE)=@@@%%%' _ACEOF # GNU make sometimes prints "make[1]: Entering ...", which would confuse us. case `${MAKE-make} -f conftest.make 2>/dev/null` in *@@@%%%=?*=@@@%%%*) eval ac_cv_prog_make_${ac_make}_set=yes;; *) eval ac_cv_prog_make_${ac_make}_set=no;; esac rm -f conftest.make fi if eval test \$ac_cv_prog_make_${ac_make}_set = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } SET_MAKE= else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } SET_MAKE="MAKE=${MAKE-make}" fi rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null # Check whether --enable-silent-rules was given. if test "${enable_silent_rules+set}" = set; then : enableval=$enable_silent_rules; fi case $enable_silent_rules in # ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=1;; esac am_make=${MAKE-make} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 $as_echo_n "checking whether $am_make supports nested variables... " >&6; } if ${am_cv_make_support_nested_variables+:} false; then : $as_echo_n "(cached) " >&6 else if $as_echo 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit' | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 $as_echo "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AM_BACKSLASH='\' if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." am__isrc=' -I$(srcdir)' # test to see if srcdir already configured if test -f $srcdir/config.status; then as_fn_error $? "source directory already configured; run \"make distclean\" there first" "$LINENO" 5 fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi # Define the identity of the package. PACKAGE='openconnect' VERSION='8.20' cat >>confdefs.h <<_ACEOF #define PACKAGE "$PACKAGE" _ACEOF cat >>confdefs.h <<_ACEOF #define VERSION "$VERSION" _ACEOF # Some tools Automake needs. ACLOCAL=${ACLOCAL-"${am_missing_run}aclocal-${am__api_version}"} AUTOCONF=${AUTOCONF-"${am_missing_run}autoconf"} AUTOMAKE=${AUTOMAKE-"${am_missing_run}automake-${am__api_version}"} AUTOHEADER=${AUTOHEADER-"${am_missing_run}autoheader"} MAKEINFO=${MAKEINFO-"${am_missing_run}makeinfo"} # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # mkdir_p='$(MKDIR_P)' # We need awk for the "check" target (and possibly the TAP driver). The # system "awk" is bad on some platforms. # Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AMTAR='$${TAR-tar}' # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar plaintar pax cpio none' # The POSIX 1988 'ustar' format is defined with fixed-size fields. # There is notably a 21 bits limit for the UID and the GID. In fact, # the 'pax' utility can hang on bigger UID/GID (see automake bug#8343 # and bug#13588). am_max_uid=2097151 # 2^21 - 1 am_max_gid=$am_max_uid # The $UID and $GID variables are not portable, so we need to resort # to the POSIX-mandated id(1) utility. Errors in the 'id' calls # below are definitely unexpected, so allow the users to see them # (that is, avoid stderr redirection). am_uid=`id -u || echo unknown` am_gid=`id -g || echo unknown` { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether UID '$am_uid' is supported by ustar format" >&5 $as_echo_n "checking whether UID '$am_uid' is supported by ustar format... " >&6; } if test $am_uid -le $am_max_uid; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } _am_tools=none fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether GID '$am_gid' is supported by ustar format" >&5 $as_echo_n "checking whether GID '$am_gid' is supported by ustar format... " >&6; } if test $am_gid -le $am_max_gid; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } _am_tools=none fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to create a ustar tar archive" >&5 $as_echo_n "checking how to create a ustar tar archive... " >&6; } # Go ahead even if we have the value already cached. We do so because we # need to set the values for the 'am__tar' and 'am__untar' variables. _am_tools=${am_cv_prog_tar_ustar-$_am_tools} for _am_tool in $_am_tools; do case $_am_tool in gnutar) for _am_tar in tar gnutar gtar; do { echo "$as_me:$LINENO: $_am_tar --version" >&5 ($_am_tar --version) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } && break done am__tar="$_am_tar --format=ustar -chf - "'"$$tardir"' am__tar_="$_am_tar --format=ustar -chf - "'"$tardir"' am__untar="$_am_tar -xf -" ;; plaintar) # Must skip GNU tar: if it does not support --format= it doesn't create # ustar tarball either. (tar --version) >/dev/null 2>&1 && continue am__tar='tar chf - "$$tardir"' am__tar_='tar chf - "$tardir"' am__untar='tar xf -' ;; pax) am__tar='pax -L -x ustar -w "$$tardir"' am__tar_='pax -L -x ustar -w "$tardir"' am__untar='pax -r' ;; cpio) am__tar='find "$$tardir" -print | cpio -o -H ustar -L' am__tar_='find "$tardir" -print | cpio -o -H ustar -L' am__untar='cpio -i -H ustar -d' ;; none) am__tar=false am__tar_=false am__untar=false ;; esac # If the value was cached, stop now. We just wanted to have am__tar # and am__untar set. test -n "${am_cv_prog_tar_ustar}" && break # tar/untar a dummy directory, and stop if the command works. rm -rf conftest.dir mkdir conftest.dir echo GrepMe > conftest.dir/file { echo "$as_me:$LINENO: tardir=conftest.dir && eval $am__tar_ >conftest.tar" >&5 (tardir=conftest.dir && eval $am__tar_ >conftest.tar) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } rm -rf conftest.dir if test -s conftest.tar; then { echo "$as_me:$LINENO: $am__untar &5 ($am__untar &5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } { echo "$as_me:$LINENO: cat conftest.dir/file" >&5 (cat conftest.dir/file) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } grep GrepMe conftest.dir/file >/dev/null 2>&1 && break fi done rm -rf conftest.dir if ${am_cv_prog_tar_ustar+:} false; then : $as_echo_n "(cached) " >&6 else am_cv_prog_tar_ustar=$_am_tool fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_tar_ustar" >&5 $as_echo "$am_cv_prog_tar_ustar" >&6; } # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END as_fn_error $? "Your 'rm' program is bad, sorry." "$LINENO" 5 fi fi # Check whether --enable-silent-rules was given. if test "${enable_silent_rules+set}" = set; then : enableval=$enable_silent_rules; fi case $enable_silent_rules in # ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=0;; esac am_make=${MAKE-make} { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $am_make supports nested variables" >&5 $as_echo_n "checking whether $am_make supports nested variables... " >&6; } if ${am_cv_make_support_nested_variables+:} false; then : $as_echo_n "(cached) " >&6 else if $as_echo 'TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit' | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_make_support_nested_variables" >&5 $as_echo "$am_cv_make_support_nested_variables" >&6; } if test $am_cv_make_support_nested_variables = yes; then AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AM_BACKSLASH='\' # Upstream's pkg.m4 (since 0.27) offers this now, but define our own # compatible version in case the local version of pkgconfig isn't new enough. # https://bugs.freedesktop.org/show_bug.cgi?id=48743 # Check whether --with-pkgconfigdir was given. if test "${with_pkgconfigdir+set}" = set; then : withval=$with_pkgconfigdir; else with_pkgconfigdir='${libdir}/pkgconfig' fi pkgconfigdir=$with_pkgconfigdir use_openbsd_libtool= symver_time= symver_getline= symver_asprintf= symver_vasprintf= symver_win32_strerror= symver_win32_setenv= # Autoconf is stupid and if the first time it needs to find the C compiler # is conditional (as it is here for some of the MinGW checks), it forgets # to ever look for one in the other code paths. Do it explicitly here. ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}gcc", so it can be a program name with args. set dummy ${ac_tool_prefix}gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_CC"; then ac_ct_CC=$CC # Extract the first word of "gcc", so it can be a program name with args. set dummy gcc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="gcc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi else CC="$ac_cv_prog_CC" fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}cc", so it can be a program name with args. set dummy ${ac_tool_prefix}cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="${ac_tool_prefix}cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi if test -z "$CC"; then # Extract the first word of "cc", so it can be a program name with args. set dummy cc; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else ac_prog_rejected=no as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then if test "$as_dir/$ac_word$ac_exec_ext" = "/usr/ucb/cc"; then ac_prog_rejected=yes continue fi ac_cv_prog_CC="cc" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS if test $ac_prog_rejected = yes; then # We found a bogon in the path, so make sure we never use it. set dummy $ac_cv_prog_CC shift if test $# != 0; then # We chose a different compiler from the bogus one. # However, it has the same basename, so the bogon will be chosen # first if we set CC to just the basename; use the full file name. shift ac_cv_prog_CC="$as_dir/$ac_word${1+' '}$@" fi fi fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$CC"; then if test -n "$ac_tool_prefix"; then for ac_prog in cl.exe do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$CC"; then ac_cv_prog_CC="$CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_CC="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi CC=$ac_cv_prog_CC if test -n "$CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CC" >&5 $as_echo "$CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$CC" && break done fi if test -z "$CC"; then ac_ct_CC=$CC for ac_prog in cl.exe do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_CC+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_CC"; then ac_cv_prog_ac_ct_CC="$ac_ct_CC" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_CC="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_CC=$ac_cv_prog_ac_ct_CC if test -n "$ac_ct_CC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_CC" >&5 $as_echo "$ac_ct_CC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_CC" && break done if test "x$ac_ct_CC" = x; then CC="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac CC=$ac_ct_CC fi fi fi test -z "$CC" && { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "no acceptable C compiler found in \$PATH See \`config.log' for more details" "$LINENO" 5; } # Provide some information about the compiler. $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler version" >&5 set X $ac_compile ac_compiler=$2 for ac_option in --version -v -V -qversion; do { { ac_try="$ac_compiler $ac_option >&5" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compiler $ac_option >&5") 2>conftest.err ac_status=$? if test -s conftest.err; then sed '10a\ ... rest of stderr output deleted ... 10q' conftest.err >conftest.er1 cat conftest.er1 >&5 fi rm -f conftest.er1 conftest.err $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } done cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files a.out a.out.dSYM a.exe b.out" # Try to create an executable without -o first, disregard a.out. # It will help us diagnose broken compilers, and finding out an intuition # of exeext. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the C compiler works" >&5 $as_echo_n "checking whether the C compiler works... " >&6; } ac_link_default=`$as_echo "$ac_link" | sed 's/ -o *conftest[^ ]*//'` # The possible output files: ac_files="a.out conftest.exe conftest a.exe a_out.exe b.out conftest.*" ac_rmfiles= for ac_file in $ac_files do case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; * ) ac_rmfiles="$ac_rmfiles $ac_file";; esac done rm -f $ac_rmfiles if { { ac_try="$ac_link_default" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link_default") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # Autoconf-2.13 could set the ac_cv_exeext variable to `no'. # So ignore a value of `no', otherwise this would lead to `EXEEXT = no' # in a Makefile. We should not override ac_cv_exeext if it was cached, # so that the user can short-circuit this test for compilers unknown to # Autoconf. for ac_file in $ac_files '' do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; [ab].out ) # We found the default executable, but exeext='' is most # certainly right. break;; *.* ) if test "${ac_cv_exeext+set}" = set && test "$ac_cv_exeext" != no; then :; else ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` fi # We set ac_cv_exeext here because the later test for it is not # safe: cross compilers may not add the suffix if given an `-o' # argument, so we may need to know it at that point already. # Even if this section looks crufty: it has the advantage of # actually working. break;; * ) break;; esac done test "$ac_cv_exeext" = no && ac_cv_exeext= else ac_file='' fi if test -z "$ac_file"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error 77 "C compiler cannot create executables See \`config.log' for more details" "$LINENO" 5; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for C compiler default output file name" >&5 $as_echo_n "checking for C compiler default output file name... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_file" >&5 $as_echo "$ac_file" >&6; } ac_exeext=$ac_cv_exeext rm -f -r a.out a.out.dSYM a.exe conftest$ac_cv_exeext b.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of executables" >&5 $as_echo_n "checking for suffix of executables... " >&6; } if { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : # If both `conftest.exe' and `conftest' are `present' (well, observable) # catch `conftest.exe'. For instance with Cygwin, `ls conftest' will # work properly (i.e., refer to `conftest.exe'), while it won't with # `rm'. for ac_file in conftest.exe conftest conftest.*; do test -f "$ac_file" || continue case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM | *.o | *.obj ) ;; *.* ) ac_cv_exeext=`expr "$ac_file" : '[^.]*\(\..*\)'` break;; * ) break;; esac done else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of executables: cannot compile and link See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest conftest$ac_cv_exeext { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_exeext" >&5 $as_echo "$ac_cv_exeext" >&6; } rm -f conftest.$ac_ext EXEEXT=$ac_cv_exeext ac_exeext=$EXEEXT cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { FILE *f = fopen ("conftest.out", "w"); return ferror (f) || fclose (f) != 0; ; return 0; } _ACEOF ac_clean_files="$ac_clean_files conftest.out" # Check that the compiler produces executables we can run. If not, either # the compiler is broken, or we cross compile. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are cross compiling" >&5 $as_echo_n "checking whether we are cross compiling... " >&6; } if test "$cross_compiling" != yes; then { { ac_try="$ac_link" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_link") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if { ac_try='./conftest$ac_cv_exeext' { { case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_try") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; }; then cross_compiling=no else if test "$cross_compiling" = maybe; then cross_compiling=yes else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot run C compiled programs. If you meant to cross compile, use \`--host'. See \`config.log' for more details" "$LINENO" 5; } fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $cross_compiling" >&5 $as_echo "$cross_compiling" >&6; } rm -f conftest.$ac_ext conftest$ac_cv_exeext conftest.out ac_clean_files=$ac_clean_files_save { $as_echo "$as_me:${as_lineno-$LINENO}: checking for suffix of object files" >&5 $as_echo_n "checking for suffix of object files... " >&6; } if ${ac_cv_objext+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF rm -f conftest.o conftest.obj if { { ac_try="$ac_compile" case "(($ac_try" in *\"* | *\`* | *\\*) ac_try_echo=\$ac_try;; *) ac_try_echo=$ac_try;; esac eval ac_try_echo="\"\$as_me:${as_lineno-$LINENO}: $ac_try_echo\"" $as_echo "$ac_try_echo"; } >&5 (eval "$ac_compile") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then : for ac_file in conftest.o conftest.obj conftest.*; do test -f "$ac_file" || continue; case $ac_file in *.$ac_ext | *.xcoff | *.tds | *.d | *.pdb | *.xSYM | *.bb | *.bbg | *.map | *.inf | *.dSYM ) ;; *) ac_cv_objext=`expr "$ac_file" : '.*\.\(.*\)'` break;; esac done else $as_echo "$as_me: failed program was:" >&5 sed 's/^/| /' conftest.$ac_ext >&5 { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "cannot compute suffix of object files: cannot compile See \`config.log' for more details" "$LINENO" 5; } fi rm -f conftest.$ac_cv_objext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_objext" >&5 $as_echo "$ac_cv_objext" >&6; } OBJEXT=$ac_cv_objext ac_objext=$OBJEXT { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether we are using the GNU C compiler" >&5 $as_echo_n "checking whether we are using the GNU C compiler... " >&6; } if ${ac_cv_c_compiler_gnu+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { #ifndef __GNUC__ choke me #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_compiler_gnu=yes else ac_compiler_gnu=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_cv_c_compiler_gnu=$ac_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_c_compiler_gnu" >&5 $as_echo "$ac_cv_c_compiler_gnu" >&6; } if test $ac_compiler_gnu = yes; then GCC=yes else GCC= fi ac_test_CFLAGS=${CFLAGS+set} ac_save_CFLAGS=$CFLAGS { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC accepts -g" >&5 $as_echo_n "checking whether $CC accepts -g... " >&6; } if ${ac_cv_prog_cc_g+:} false; then : $as_echo_n "(cached) " >&6 else ac_save_c_werror_flag=$ac_c_werror_flag ac_c_werror_flag=yes ac_cv_prog_cc_g=no CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes else CFLAGS="" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else ac_c_werror_flag=$ac_save_c_werror_flag CFLAGS="-g" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_g=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_c_werror_flag=$ac_save_c_werror_flag fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_g" >&5 $as_echo "$ac_cv_prog_cc_g" >&6; } if test "$ac_test_CFLAGS" = set; then CFLAGS=$ac_save_CFLAGS elif test $ac_cv_prog_cc_g = yes; then if test "$GCC" = yes; then CFLAGS="-g -O2" else CFLAGS="-g" fi else if test "$GCC" = yes; then CFLAGS="-O2" else CFLAGS= fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $CC option to accept ISO C89" >&5 $as_echo_n "checking for $CC option to accept ISO C89... " >&6; } if ${ac_cv_prog_cc_c89+:} false; then : $as_echo_n "(cached) " >&6 else ac_cv_prog_cc_c89=no ac_save_CC=$CC cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include struct stat; /* Most of the following tests are stolen from RCS 5.7's src/conf.sh. */ struct buf { int x; }; FILE * (*rcsopen) (struct buf *, struct stat *, int); static char *e (p, i) char **p; int i; { return p[i]; } static char *f (char * (*g) (char **, int), char **p, ...) { char *s; va_list v; va_start (v,p); s = g (p, va_arg (v,int)); va_end (v); return s; } /* OSF 4.0 Compaq cc is some sort of almost-ANSI by default. It has function prototypes and stuff, but not '\xHH' hex character constants. These don't provoke an error unfortunately, instead are silently treated as 'x'. The following induces an error, until -std is added to get proper ANSI mode. Curiously '\x00'!='x' always comes out true, for an array size at least. It's necessary to write '\x00'==0 to get something that's true only with -std. */ int osf4_cc_array ['\x00' == 0 ? 1 : -1]; /* IBM C 6 for AIX is almost-ANSI by default, but it replaces macro parameters inside strings and character constants. */ #define FOO(x) 'x' int xlc6_cc_array[FOO(a) == 'x' ? 1 : -1]; int test (int i, double x); struct s1 {int (*f) (int a);}; struct s2 {int (*f) (double a);}; int pairnames (int, char **, FILE *(*)(struct buf *, struct stat *, int), int, int); int argc; char **argv; int main () { return f (e, argv, 0) != argv[0] || f (e, argv, 1) != argv[1]; ; return 0; } _ACEOF for ac_arg in '' -qlanglvl=extc89 -qlanglvl=ansi -std \ -Ae "-Aa -D_HPUX_SOURCE" "-Xc -D__EXTENSIONS__" do CC="$ac_save_CC $ac_arg" if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_c89=$ac_arg fi rm -f core conftest.err conftest.$ac_objext test "x$ac_cv_prog_cc_c89" != "xno" && break done rm -f conftest.$ac_ext CC=$ac_save_CC fi # AC_CACHE_VAL case "x$ac_cv_prog_cc_c89" in x) { $as_echo "$as_me:${as_lineno-$LINENO}: result: none needed" >&5 $as_echo "none needed" >&6; } ;; xno) { $as_echo "$as_me:${as_lineno-$LINENO}: result: unsupported" >&5 $as_echo "unsupported" >&6; } ;; *) CC="$CC $ac_cv_prog_cc_c89" { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_c89" >&5 $as_echo "$ac_cv_prog_cc_c89" >&6; } ;; esac if test "x$ac_cv_prog_cc_c89" != xno; then : fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $CC understands -c and -o together" >&5 $as_echo_n "checking whether $CC understands -c and -o together... " >&6; } if ${am_cv_prog_cc_c_o+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if { echo "$as_me:$LINENO: $CC -c conftest.$ac_ext -o conftest2.$ac_objext" >&5 ($CC -c conftest.$ac_ext -o conftest2.$ac_objext) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_prog_cc_c_o" >&5 $as_echo "$am_cv_prog_cc_c_o" >&6; } if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu DEPDIR="${am__leading_dot}deps" ac_config_commands="$ac_config_commands depfiles" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ${MAKE-make} supports the include directive" >&5 $as_echo_n "checking whether ${MAKE-make} supports the include directive... " >&6; } cat > confinc.mk << 'END' am__doit: @echo this is the am__doit target >confinc.out .PHONY: am__doit END am__include="#" am__quote= # BSD make does it like this. echo '.include "confinc.mk" # ignored' > confmf.BSD # Other make implementations (GNU, Solaris 10, AIX) do it like this. echo 'include confinc.mk # ignored' > confmf.GNU _am_result=no for s in GNU BSD; do { echo "$as_me:$LINENO: ${MAKE-make} -f confmf.$s && cat confinc.out" >&5 (${MAKE-make} -f confmf.$s && cat confinc.out) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } case $?:`cat confinc.out 2>/dev/null` in #( '0:this is the am__doit target') : case $s in #( BSD) : am__include='.include' am__quote='"' ;; #( *) : am__include='include' am__quote='' ;; esac ;; #( *) : ;; esac if test "$am__include" != "#"; then _am_result="yes ($s style)" break fi done rm -f confinc.* confmf.* { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${_am_result}" >&5 $as_echo "${_am_result}" >&6; } # Check whether --enable-dependency-tracking was given. if test "${enable_dependency_tracking+set}" = set; then : enableval=$enable_dependency_tracking; fi if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi if test "x$enable_dependency_tracking" != xno; then AMDEP_TRUE= AMDEP_FALSE='#' else AMDEP_TRUE='#' AMDEP_FALSE= fi depcc="$CC" am_compiler_list= { $as_echo "$as_me:${as_lineno-$LINENO}: checking dependency style of $depcc" >&5 $as_echo_n "checking dependency style of $depcc... " >&6; } if ${am_cv_CC_dependencies_compiler_type+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_CC_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n 's/^#*\([a-zA-Z0-9]*\))$/\1/p' < ./depcomp` fi am__universal=false case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_CC_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_CC_dependencies_compiler_type=none fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_CC_dependencies_compiler_type" >&5 $as_echo "$am_cv_CC_dependencies_compiler_type" >&6; } CCDEPMODE=depmode=$am_cv_CC_dependencies_compiler_type if test "x$enable_dependency_tracking" != xno \ && test "$am_cv_CC_dependencies_compiler_type" = gcc3; then am__fastdepCC_TRUE= am__fastdepCC_FALSE='#' else am__fastdepCC_TRUE='#' am__fastdepCC_FALSE= fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $CC option to accept ISO C99" >&5 $as_echo_n "checking for $CC option to accept ISO C99... " >&6; } if ${ac_cv_prog_cc_c99+:} false; then : $as_echo_n "(cached) " >&6 else ac_cv_prog_cc_c99=no ac_save_CC=$CC cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include #include #include // Check varargs macros. These examples are taken from C99 6.10.3.5. #define debug(...) fprintf (stderr, __VA_ARGS__) #define showlist(...) puts (#__VA_ARGS__) #define report(test,...) ((test) ? puts (#test) : printf (__VA_ARGS__)) static void test_varargs_macros (void) { int x = 1234; int y = 5678; debug ("Flag"); debug ("X = %d\n", x); showlist (The first, second, and third items.); report (x>y, "x is %d but y is %d", x, y); } // Check long long types. #define BIG64 18446744073709551615ull #define BIG32 4294967295ul #define BIG_OK (BIG64 / BIG32 == 4294967297ull && BIG64 % BIG32 == 0) #if !BIG_OK your preprocessor is broken; #endif #if BIG_OK #else your preprocessor is broken; #endif static long long int bignum = -9223372036854775807LL; static unsigned long long int ubignum = BIG64; struct incomplete_array { int datasize; double data[]; }; struct named_init { int number; const wchar_t *name; double average; }; typedef const char *ccp; static inline int test_restrict (ccp restrict text) { // See if C++-style comments work. // Iterate through items via the restricted pointer. // Also check for declarations in for loops. for (unsigned int i = 0; *(text+i) != '\0'; ++i) continue; return 0; } // Check varargs and va_copy. static void test_varargs (const char *format, ...) { va_list args; va_start (args, format); va_list args_copy; va_copy (args_copy, args); const char *str; int number; float fnumber; while (*format) { switch (*format++) { case 's': // string str = va_arg (args_copy, const char *); break; case 'd': // int number = va_arg (args_copy, int); break; case 'f': // float fnumber = va_arg (args_copy, double); break; default: break; } } va_end (args_copy); va_end (args); } int main () { // Check bool. _Bool success = false; // Check restrict. if (test_restrict ("String literal") == 0) success = true; char *restrict newvar = "Another string"; // Check varargs. test_varargs ("s, d' f .", "string", 65, 34.234); test_varargs_macros (); // Check flexible array members. struct incomplete_array *ia = malloc (sizeof (struct incomplete_array) + (sizeof (double) * 10)); ia->datasize = 10; for (int i = 0; i < ia->datasize; ++i) ia->data[i] = i * 1.234; // Check named initializers. struct named_init ni = { .number = 34, .name = L"Test wide string", .average = 543.34343, }; ni.number = 58; int dynamic_array[ni.number]; dynamic_array[ni.number - 1] = 543; // work around unused variable warnings return (!success || bignum == 0LL || ubignum == 0uLL || newvar[0] == 'x' || dynamic_array[ni.number - 1] != 543); ; return 0; } _ACEOF for ac_arg in '' -std=gnu99 -std=c99 -c99 -AC99 -D_STDC_C99= -qlanglvl=extc99 do CC="$ac_save_CC $ac_arg" if ac_fn_c_try_compile "$LINENO"; then : ac_cv_prog_cc_c99=$ac_arg fi rm -f core conftest.err conftest.$ac_objext test "x$ac_cv_prog_cc_c99" != "xno" && break done rm -f conftest.$ac_ext CC=$ac_save_CC fi # AC_CACHE_VAL case "x$ac_cv_prog_cc_c99" in x) { $as_echo "$as_me:${as_lineno-$LINENO}: result: none needed" >&5 $as_echo "none needed" >&6; } ;; xno) { $as_echo "$as_me:${as_lineno-$LINENO}: result: unsupported" >&5 $as_echo "unsupported" >&6; } ;; *) CC="$CC $ac_cv_prog_cc_c99" { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_prog_cc_c99" >&5 $as_echo "$ac_cv_prog_cc_c99" >&6; } ;; esac if test "x$ac_cv_prog_cc_c99" != xno; then : fi have_vhost=no case $host_os in *linux* | *gnu* | *nacl*) case $host_cpu in x86_64|amd64) have_vhost=yes ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for GNU build" >&5 $as_echo "$as_me: Applying feature macros for GNU build" >&6;} $as_echo "#define _GNU_SOURCE 1" >>confdefs.h ;; *netbsd*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for NetBSD build" >&5 $as_echo "$as_me: Applying feature macros for NetBSD build" >&6;} $as_echo "#define _POSIX_C_SOURCE 200112L" >>confdefs.h $as_echo "#define _NETBSD_SOURCE 1" >>confdefs.h ;; *openbsd*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for OpenBSD build" >&5 $as_echo "$as_me: Applying feature macros for OpenBSD build" >&6;} use_openbsd_libtool=true ;; *solaris*|*sunos*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying workaround for broken SunOS time() function" >&5 $as_echo "$as_me: Applying workaround for broken SunOS time() function" >&6;} $as_echo "#define HAVE_SUNOS_BROKEN_TIME 1" >>confdefs.h symver_time="openconnect__time;" ;; *mingw32*|*mingw64*|*msys*) { $as_echo "$as_me:${as_lineno-$LINENO}: Applying feature macros for MinGW/Windows build" >&5 $as_echo "$as_me: Applying feature macros for MinGW/Windows build" >&6;} # For GetVolumeInformationByHandleW() which is Vista+ $as_echo "#define _WIN32_WINNT 0x600" >>confdefs.h have_win=yes # For asprintf() $as_echo "#define _GNU_SOURCE 1" >>confdefs.h symver_win32_strerror="openconnect__win32_strerror;" symver_win32_setenv="openconnect__win32_setenv;" # Win32 does have the SCard API system_pcsc_libs="-lwinscard" system_pcsc_cflags= if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}windres", so it can be a program name with args. set dummy ${ac_tool_prefix}windres; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_WINDRES+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$WINDRES"; then ac_cv_prog_WINDRES="$WINDRES" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_WINDRES="${ac_tool_prefix}windres" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi WINDRES=$ac_cv_prog_WINDRES if test -n "$WINDRES"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $WINDRES" >&5 $as_echo "$WINDRES" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_WINDRES"; then ac_ct_WINDRES=$WINDRES # Extract the first word of "windres", so it can be a program name with args. set dummy windres; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_WINDRES+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_WINDRES"; then ac_cv_prog_ac_ct_WINDRES="$ac_ct_WINDRES" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_WINDRES="windres" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_WINDRES=$ac_cv_prog_ac_ct_WINDRES if test -n "$ac_ct_WINDRES"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_WINDRES" >&5 $as_echo "$ac_ct_WINDRES" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_WINDRES" = x; then WINDRES="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac WINDRES=$ac_ct_WINDRES fi else WINDRES="$ac_cv_prog_WINDRES" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}makensis", so it can be a program name with args. set dummy ${ac_tool_prefix}makensis; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_MAKENSIS+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$MAKENSIS"; then ac_cv_prog_MAKENSIS="$MAKENSIS" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_MAKENSIS="${ac_tool_prefix}makensis" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi MAKENSIS=$ac_cv_prog_MAKENSIS if test -n "$MAKENSIS"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MAKENSIS" >&5 $as_echo "$MAKENSIS" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_MAKENSIS"; then ac_ct_MAKENSIS=$MAKENSIS # Extract the first word of "makensis", so it can be a program name with args. set dummy makensis; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_MAKENSIS+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_MAKENSIS"; then ac_cv_prog_ac_ct_MAKENSIS="$ac_ct_MAKENSIS" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_MAKENSIS="makensis" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_MAKENSIS=$ac_cv_prog_ac_ct_MAKENSIS if test -n "$ac_ct_MAKENSIS"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_MAKENSIS" >&5 $as_echo "$ac_ct_MAKENSIS" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_MAKENSIS" = x; then MAKENSIS="" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac MAKENSIS=$ac_ct_MAKENSIS fi else MAKENSIS="$ac_cv_prog_MAKENSIS" fi case $host_cpu in x86_64|amd64) wintun_arch=amd64 ;; *86) wintun_arch=x86 ;; aarch64|arm64) wintun_arch=arm64 ;; arm*) wintun_arch=arm ;; esac WINTUN_ARCH="$wintun_arch" # Per https://github.com/MisterDA/ocaml/commit/5855ce5ffd931a2802d5b9a5b2987ab0b276fd0a, # "The header file declares the `struct sockaddr_un` type, but hasn't been picked by mingw-w64." ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to run the C preprocessor" >&5 $as_echo_n "checking how to run the C preprocessor... " >&6; } # On Suns, sometimes $CPP names a directory. if test -n "$CPP" && test -d "$CPP"; then CPP= fi if test -z "$CPP"; then if ${ac_cv_prog_CPP+:} false; then : $as_echo_n "(cached) " >&6 else # Double quotes because CPP needs to be expanded for CPP in "$CC -E" "$CC -E -traditional-cpp" "/lib/cpp" do ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : break fi done ac_cv_prog_CPP=$CPP fi CPP=$ac_cv_prog_CPP else ac_cv_prog_CPP=$CPP fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CPP" >&5 $as_echo "$CPP" >&6; } ac_preproc_ok=false for ac_c_preproc_warn_flag in '' yes do # Use a header file that comes with gcc, so configuring glibc # with a fresh cross-compiler works. # Prefer to if __STDC__ is defined, since # exists even on freestanding compilers. # On the NeXT, cc -E runs the code through the compiler's parser, # not just through cpp. "Syntax error" is here to catch this case. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __STDC__ # include #else # include #endif Syntax error _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : else # Broken: fails on valid input. continue fi rm -f conftest.err conftest.i conftest.$ac_ext # OK, works on sane cases. Now check whether nonexistent headers # can be detected and how. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if ac_fn_c_try_cpp "$LINENO"; then : # Broken: success on invalid input. continue else # Passes both tests. ac_preproc_ok=: break fi rm -f conftest.err conftest.i conftest.$ac_ext done # Because of `break', _AC_PREPROC_IFELSE's cleaning code was skipped. rm -f conftest.i conftest.err conftest.$ac_ext if $ac_preproc_ok; then : else { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "C preprocessor \"$CPP\" fails sanity check See \`config.log' for more details" "$LINENO" 5; } fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu { $as_echo "$as_me:${as_lineno-$LINENO}: checking for grep that handles long lines and -e" >&5 $as_echo_n "checking for grep that handles long lines and -e... " >&6; } if ${ac_cv_path_GREP+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$GREP"; then ac_path_GREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in grep ggrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_GREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GREP" || continue # Check for GNU ac_path_GREP and select it if it is found. # Check for GNU $ac_path_GREP case `"$ac_path_GREP" --version 2>&1` in *GNU*) ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'GREP' >> "conftest.nl" "$ac_path_GREP" -e 'GREP$' -e '-(cannot match)-' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_GREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_GREP="$ac_path_GREP" ac_path_GREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_GREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_GREP"; then as_fn_error $? "no acceptable grep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_GREP=$GREP fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_GREP" >&5 $as_echo "$ac_cv_path_GREP" >&6; } GREP="$ac_cv_path_GREP" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for egrep" >&5 $as_echo_n "checking for egrep... " >&6; } if ${ac_cv_path_EGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo a | $GREP -E '(a|b)' >/dev/null 2>&1 then ac_cv_path_EGREP="$GREP -E" else if test -z "$EGREP"; then ac_path_EGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in egrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_EGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_EGREP" || continue # Check for GNU ac_path_EGREP and select it if it is found. # Check for GNU $ac_path_EGREP case `"$ac_path_EGREP" --version 2>&1` in *GNU*) ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'EGREP' >> "conftest.nl" "$ac_path_EGREP" 'EGREP$' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_EGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_EGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_EGREP"; then as_fn_error $? "no acceptable egrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_EGREP=$EGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_EGREP" >&5 $as_echo "$ac_cv_path_EGREP" >&6; } EGREP="$ac_cv_path_EGREP" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ANSI C header files" >&5 $as_echo_n "checking for ANSI C header files... " >&6; } if ${ac_cv_header_stdc+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include #include int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : ac_cv_header_stdc=yes else ac_cv_header_stdc=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext if test $ac_cv_header_stdc = yes; then # SunOS 4.x string.h does not declare mem*, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "memchr" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # ISC 2.0.2 stdlib.h does not declare free, contrary to ANSI. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "free" >/dev/null 2>&1; then : else ac_cv_header_stdc=no fi rm -f conftest* fi if test $ac_cv_header_stdc = yes; then # /bin/cc in Irix-4.0.5 gets non-ANSI ctype macros unless using -ansi. if test "$cross_compiling" = yes; then : : else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #if ((' ' & 0x0FF) == 0x020) # define ISLOWER(c) ('a' <= (c) && (c) <= 'z') # define TOUPPER(c) (ISLOWER(c) ? 'A' + ((c) - 'a') : (c)) #else # define ISLOWER(c) \ (('a' <= (c) && (c) <= 'i') \ || ('j' <= (c) && (c) <= 'r') \ || ('s' <= (c) && (c) <= 'z')) # define TOUPPER(c) (ISLOWER(c) ? ((c) | 0x40) : (c)) #endif #define XOR(e, f) (((e) && !(f)) || (!(e) && (f))) int main () { int i; for (i = 0; i < 256; i++) if (XOR (islower (i), ISLOWER (i)) || toupper (i) != TOUPPER (i)) return 2; return 0; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : else ac_cv_header_stdc=no fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_header_stdc" >&5 $as_echo "$ac_cv_header_stdc" >&6; } if test $ac_cv_header_stdc = yes; then $as_echo "#define STDC_HEADERS 1" >>confdefs.h fi # On IRIX 5.3, sys/types and inttypes.h are conflicting. for ac_header in sys/types.h sys/stat.h stdlib.h string.h memory.h strings.h \ inttypes.h stdint.h unistd.h do : as_ac_Header=`$as_echo "ac_cv_header_$ac_header" | $as_tr_sh` ac_fn_c_check_header_compile "$LINENO" "$ac_header" "$as_ac_Header" "$ac_includes_default " if eval test \"x\$"$as_ac_Header"\" = x"yes"; then : cat >>confdefs.h <<_ACEOF #define `$as_echo "HAVE_$ac_header" | $as_tr_cpp` 1 _ACEOF fi done ac_fn_c_check_header_mongrel "$LINENO" "afunix.h" "ac_cv_header_afunix_h" "$ac_includes_default" if test "x$ac_cv_header_afunix_h" = xyes; then : $as_echo "#define HAVE_AF_UNIX_H 1" >>confdefs.h fi # MINGW_HAS_SECURE_API may only work on newer MinGW: # https://stackoverflow.com/a/51977723 $as_echo "#define MINGW_HAS_SECURE_API 1" >>confdefs.h ac_fn_c_check_decl "$LINENO" "_putenv_s" "ac_cv_have_decl__putenv_s" "#include " if test "x$ac_cv_have_decl__putenv_s" = xyes; then : $as_echo "#define HAVE_PUTENV_S_DECL 1" >>confdefs.h fi ac_fn_c_check_decl "$LINENO" "getenv_s" "ac_cv_have_decl_getenv_s" "#include " if test "x$ac_cv_have_decl_getenv_s" = xyes; then : $as_echo "#define HAVE_GETENV_S_DECL 1" >>confdefs.h fi ;; *darwin*) system_pcsc_libs="-Wl,-framework -Wl,PCSC" system_pcsc_cflags= ;; *) # On FreeBSD the only way to get vsyslog() visible is to define # *nothing*, which makes absolutely everything visible. # On Darwin enabling _POSIX_C_SOURCE breaks because # u_long and other types don't get defined. OpenBSD is similar. ;; esac if test "$have_win" = "yes" ; then OPENCONNECT_WIN32_TRUE= OPENCONNECT_WIN32_FALSE='#' else OPENCONNECT_WIN32_TRUE='#' OPENCONNECT_WIN32_FALSE= fi build_nsis=no if test "${MAKENSIS}" != ""; then # Extract the first word of "curl", so it can be a program name with args. set dummy curl; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_have_curl+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$have_curl"; then ac_cv_prog_have_curl="$have_curl" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_have_curl="yes" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi have_curl=$ac_cv_prog_have_curl if test -n "$have_curl"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $have_curl" >&5 $as_echo "$have_curl" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "${have_curl}" = "yes"; then build_nsis=yes if test "${wintun_arch}" != ""; then # Extract the first word of "unzip", so it can be a program name with args. set dummy unzip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_have_unzip+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$have_unzip"; then ac_cv_prog_have_unzip="$have_unzip" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_have_unzip="yes" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi have_unzip=$ac_cv_prog_have_unzip if test -n "$have_unzip"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $have_unzip" >&5 $as_echo "$have_unzip" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "${have_unzip}" != "yes"; then wintun_arch= fi fi fi fi if test "$build_nsis" = "yes" ; then BUILD_NSIS_TRUE= BUILD_NSIS_FALSE='#' else BUILD_NSIS_TRUE='#' BUILD_NSIS_FALSE= fi if test "${wintun_arch}" != "" ; then OPENCONNECT_WINTUN_TRUE= OPENCONNECT_WINTUN_FALSE='#' else OPENCONNECT_WINTUN_TRUE='#' OPENCONNECT_WINTUN_FALSE= fi # Check whether --with-vpnc-script was given. if test "${with_vpnc_script+set}" = set; then : withval=$with_vpnc_script; fi if test "$with_vpnc_script" = "yes" || test "$with_vpnc_script" = ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for vpnc-script in standard locations" >&5 $as_echo_n "checking for vpnc-script in standard locations... " >&6; } if test "$have_win" = "yes"; then with_vpnc_script=vpnc-script-win.js else for with_vpnc_script in /usr/local/share/vpnc-scripts/vpnc-script /usr/local/sbin/vpnc-script /usr/share/vpnc-scripts/vpnc-script /usr/sbin/vpnc-script /etc/vpnc/vpnc-script; do if test -x "$with_vpnc_script"; then break fi done if ! test -x "$with_vpnc_script"; then as_fn_error $? "${with_vpnc_script} does not seem to be executable. OpenConnect will not function correctly without a vpnc-script. See https://www.infradead.org/openconnect/vpnc-script.html for more details. If you are building a distribution package, please ensure that your packaging is correct, and that a vpnc-script will be installed when the user installs your package. You should provide a --with-vpnc-script= argument to this configure script, giving the full path where the script will be installed. The standard location is ${with_vpnc_script}. To bypass this error and build OpenConnect to use the script from this location, even though it is not present at the time you are building OpenConnect, pass the argument \"--with-vpnc-script=${with_vpnc_script}\"" "$LINENO" 5 else { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${with_vpnc_script}" >&5 $as_echo "${with_vpnc_script}" >&6; } fi fi elif test "$with_vpnc_script" = "no"; then as_fn_error $? "You cannot disable vpnc-script. OpenConnect will not function correctly without it. See https://www.infradead.org/openconnect/vpnc-script.html" "$LINENO" 5 elif test "$have_win" = "yes"; then # Oh Windows how we hate thee. If user specifies a vpnc-script and it contains # backslashes, double them all up to survive escaping. with_vpnc_script="$(echo "${with_vpnc_script}" | sed s/\\\\/\\\\\\\\/g)" fi cat >>confdefs.h <<_ACEOF #define DEFAULT_VPNCSCRIPT "${with_vpnc_script}" _ACEOF DEFAULT_VPNCSCRIPT="${with_vpnc_script}" ac_fn_c_check_func "$LINENO" "fdevname_r" "ac_cv_func_fdevname_r" if test "x$ac_cv_func_fdevname_r" = xyes; then : $as_echo "#define HAVE_FDEVNAME_R 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "statfs" "ac_cv_func_statfs" if test "x$ac_cv_func_statfs" = xyes; then : $as_echo "#define HAVE_STATFS 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "getline" "ac_cv_func_getline" if test "x$ac_cv_func_getline" = xyes; then : $as_echo "#define HAVE_GETLINE 1" >>confdefs.h else symver_getline="openconnect__getline;" fi ac_fn_c_check_func "$LINENO" "strcasestr" "ac_cv_func_strcasestr" if test "x$ac_cv_func_strcasestr" = xyes; then : $as_echo "#define HAVE_STRCASESTR 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "strndup" "ac_cv_func_strndup" if test "x$ac_cv_func_strndup" = xyes; then : $as_echo "#define HAVE_STRNDUP 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "strchrnul" "ac_cv_func_strchrnul" if test "x$ac_cv_func_strchrnul" = xyes; then : $as_echo "#define HAVE_STRCHRNUL 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "asprintf" "ac_cv_func_asprintf" if test "x$ac_cv_func_asprintf" = xyes; then : $as_echo "#define HAVE_ASPRINTF 1" >>confdefs.h else symver_asprintf="openconnect__asprintf;" fi ac_fn_c_check_func "$LINENO" "vasprintf" "ac_cv_func_vasprintf" if test "x$ac_cv_func_vasprintf" = xyes; then : $as_echo "#define HAVE_VASPRINTF 1" >>confdefs.h else symver_vasprintf="openconnect__vasprintf;" fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for __builtin_clz" >&5 $as_echo_n "checking for __builtin_clz... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { return __builtin_clz(0xffffffff); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_BUILTIN_CLZ 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test -n "$symver_vasprintf"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for va_copy" >&5 $as_echo_n "checking for va_copy... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include va_list a; int main () { va_list b; va_copy(b,a); va_end(b); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : $as_echo "#define HAVE_VA_COPY 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: va_copy" >&5 $as_echo "va_copy" >&6; } else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include va_list a; int main () { va_list b; __va_copy(b,a); va_end(b); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : $as_echo "#define HAVE___VA_COPY 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: __va_copy" >&5 $as_echo "__va_copy" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Your system lacks vasprintf() and va_copy()" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi SYMVER_TIME=$symver_time SYMVER_GETLINE=$symver_getline SYMVER_ASPRINTF=$symver_asprintf SYMVER_VASPRINTF=$symver_vasprintf SYMVER_WIN32_STRERROR=$symver_win32_strerror SYMVER_WIN32_SETENV=$symver_win32_setenv list="-Wall -Wextra -Wno-missing-field-initializers -Wno-sign-compare -Wno-unused-parameter -Werror=pointer-to-int-cast -Werror-implicit-function-declaration -Wformat-nonliteral -Wformat-security -Winit-self -Wmissing-declarations -Wmissing-include-dirs -Wnested-externs -Wpointer-arith -Wwrite-strings" flags_supported="" flags_unsupported="" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for supported compiler flags" >&5 $as_echo_n "checking for supported compiler flags... " >&6; } for each in $list do save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $each" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : flag_ok=yes else flag_ok=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then flags_supported="$flags_supported $each" else flags_unsupported="$flags_unsupported $each" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: result: $flags_supported" >&5 $as_echo "$flags_supported" >&6; } if test "X$flags_unsupported" != X ; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unsupported compiler flags: $flags_unsupported" >&5 $as_echo "$as_me: WARNING: unsupported compiler flags: $flags_unsupported" >&2;} fi WFLAGS="$WFLAGS $flags_supported" WFLAGS=$WFLAGS oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $WFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking For memset_s" >&5 $as_echo_n "checking For memset_s... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #define __STDC_WANT_LIB_EXT1__ 1 #include int main () { unsigned char *foo[16]; memset_s(foo, 16, 0, 16); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define __STDC_WANT_LIB_EXT1__ 1" >>confdefs.h $as_echo "#define HAVE_MEMSET_S 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } ac_fn_c_check_func "$LINENO" "explicit_memset" "ac_cv_func_explicit_memset" if test "x$ac_cv_func_explicit_memset" = xyes; then : $as_echo "#define HAVE_EXPLICIT_MEMSET 1" >>confdefs.h else ac_fn_c_check_func "$LINENO" "explicit_bzero" "ac_cv_func_explicit_bzero" if test "x$ac_cv_func_explicit_bzero" = xyes; then : $as_echo "#define HAVE_EXPLICIT_BZERO 1" >>confdefs.h fi fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext CFLAGS="$oldCFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking For localtime_r" >&5 $as_echo_n "checking For localtime_r... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { struct tm tm; time_t t = 0; localtime_r(&t, &tm); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_LOCALTIME_R 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test "$have_win" = yes; then # Checking "properly" for __attribute__((dllimport,stdcall)) functions is non-trivial LIBS="$LIBS -lws2_32 -lshlwapi -lsecur32 -liphlpapi" { $as_echo "$as_me:${as_lineno-$LINENO}: checking For localtime_s" >&5 $as_echo_n "checking For localtime_s... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { struct tm tm; time_t t = 0; localtime_s(&tm, (time_t)0); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_LOCALTIME_S 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext else ac_fn_c_check_func "$LINENO" "socket" "ac_cv_func_socket" if test "x$ac_cv_func_socket" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for socket in -lsocket" >&5 $as_echo_n "checking for socket in -lsocket... " >&6; } if ${ac_cv_lib_socket_socket+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lsocket $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char socket (); int main () { return socket (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_socket_socket=yes else ac_cv_lib_socket_socket=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_socket_socket" >&5 $as_echo "$ac_cv_lib_socket_socket" >&6; } if test "x$ac_cv_lib_socket_socket" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBSOCKET 1 _ACEOF LIBS="-lsocket $LIBS" else as_fn_error $? "Cannot find socket() function" "$LINENO" 5 fi fi fi have_inet_aton=yes ac_fn_c_check_func "$LINENO" "inet_aton" "ac_cv_func_inet_aton" if test "x$ac_cv_func_inet_aton" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for inet_aton in -lnsl" >&5 $as_echo_n "checking for inet_aton in -lnsl... " >&6; } if ${ac_cv_lib_nsl_inet_aton+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lnsl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char inet_aton (); int main () { return inet_aton (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_nsl_inet_aton=yes else ac_cv_lib_nsl_inet_aton=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_nsl_inet_aton" >&5 $as_echo "$ac_cv_lib_nsl_inet_aton" >&6; } if test "x$ac_cv_lib_nsl_inet_aton" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBNSL 1 _ACEOF LIBS="-lnsl $LIBS" else have_inet_aton=no fi fi if test "$have_inet_aton" = "yes"; then $as_echo "#define HAVE_INET_ATON 1" >>confdefs.h fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for IPV6_PATHMTU socket option" >&5 $as_echo_n "checking for IPV6_PATHMTU socket option... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include int main () { int foo = IPV6_PATHMTU; (void)foo; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : $as_echo "#define HAVE_IPV6_PATHMTU 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ac_fn_c_check_func "$LINENO" "__android_log_vprint" "ac_cv_func___android_log_vprint" if test "x$ac_cv_func___android_log_vprint" = xyes; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for __android_log_vprint in -llog" >&5 $as_echo_n "checking for __android_log_vprint in -llog... " >&6; } if ${ac_cv_lib_log___android_log_vprint+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-llog $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char __android_log_vprint (); int main () { return __android_log_vprint (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_log___android_log_vprint=yes else ac_cv_lib_log___android_log_vprint=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_log___android_log_vprint" >&5 $as_echo "$ac_cv_lib_log___android_log_vprint" >&6; } if test "x$ac_cv_lib_log___android_log_vprint" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_LIBLOG 1 _ACEOF LIBS="-llog $LIBS" fi fi # Check whether --enable-shared was given. if test "${enable_shared+set}" = set; then : enableval=$enable_shared; p=${PACKAGE-default} case $enableval in yes) enable_shared=yes ;; no) enable_shared=no ;; *) enable_shared=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_shared=yes fi done IFS=$lt_save_ifs ;; esac else enable_shared=yes fi # Check whether --enable-static was given. if test "${enable_static+set}" = set; then : enableval=$enable_static; p=${PACKAGE-default} case $enableval in yes) enable_static=yes ;; no) enable_static=no ;; *) enable_static=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_static=yes fi done IFS=$lt_save_ifs ;; esac else enable_static=no fi ac_fn_c_check_func "$LINENO" "nl_langinfo" "ac_cv_func_nl_langinfo" if test "x$ac_cv_func_nl_langinfo" = xyes; then : $as_echo "#define HAVE_NL_LANGINFO 1" >>confdefs.h fi if test "$ac_cv_func_nl_langinfo" = "yes"; then if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" # Check whether --with-gnu-ld was given. if test "${with_gnu_ld+set}" = set; then : withval=$with_gnu_ld; test "$withval" = no || with_gnu_ld=yes else with_gnu_ld=no fi # Prepare PATH_SEPARATOR. # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then # Determine PATH_SEPARATOR by trying to find /bin/sh in a PATH which # contains only /bin. Note that ksh looks also at the FPATH variable, # so we have to set that as well for the test. PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ || PATH_SEPARATOR=';' } fi if test -n "$LD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld" >&5 $as_echo_n "checking for ld... " >&6; } elif test "$GCC" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld used by $CC" >&5 $as_echo_n "checking for ld used by $CC... " >&6; } elif test "$with_gnu_ld" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU ld" >&5 $as_echo_n "checking for GNU ld... " >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for non-GNU ld" >&5 $as_echo_n "checking for non-GNU ld... " >&6; } fi if test -n "$LD"; then # Let the user override the test with a path. : else if ${acl_cv_path_LD+:} false; then : $as_echo_n "(cached) " >&6 else acl_cv_path_LD= # Final result of this test ac_prog=ld # Program to search in $PATH if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw acl_output=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) acl_output=`($CC -print-prog-name=ld) 2>&5` ;; esac case $acl_output in # Accept absolute paths. [\\/]* | ?:[\\/]*) re_direlt='/[^/][^/]*/\.\./' # Canonicalize the pathname of ld acl_output=`echo "$acl_output" | sed 's%\\\\%/%g'` while echo "$acl_output" | grep "$re_direlt" > /dev/null 2>&1; do acl_output=`echo $acl_output | sed "s%$re_direlt%/%"` done # Got the pathname. No search in PATH is needed. acl_cv_path_LD="$acl_output" ac_prog= ;; "") # If it fails, then pretend we aren't using GCC. ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac fi if test -n "$ac_prog"; then # Search for $ac_prog in $PATH. acl_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$acl_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 conftest.$ac_ext /* end confdefs.h. */ #if defined __powerpc64__ || defined __LP64__ int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : # The compiler produces 64-bit code. Add option '-b64' so that the # linker groks 64-bit object files. case "$acl_cv_path_LD " in *" -b64 "*) ;; *) acl_cv_path_LD="$acl_cv_path_LD -b64" ;; esac fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; sparc64-*-netbsd*) cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if defined __sparcv9 || defined __arch64__ int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else # The compiler produces 32-bit code. Add option '-m elf32_sparc' # so that the linker groks 32-bit object files. case "$acl_cv_path_LD " in *" -m elf32_sparc "*) ;; *) acl_cv_path_LD="$acl_cv_path_LD -m elf32_sparc" ;; esac fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; esac fi LD="$acl_cv_path_LD" fi if test -n "$LD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LD" >&5 $as_echo "$LD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "no acceptable ld found in \$PATH" "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking if the linker ($LD) is GNU ld" >&5 $as_echo_n "checking if the linker ($LD) is GNU ld... " >&6; } if ${acl_cv_prog_gnu_ld+:} false; then : $as_echo_n "(cached) " >&6 else # I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 &5 $as_echo "$acl_cv_prog_gnu_ld" >&6; } with_gnu_ld=$acl_cv_prog_gnu_ld { $as_echo "$as_me:${as_lineno-$LINENO}: checking for shared library run path origin" >&5 $as_echo_n "checking for shared library run path origin... " >&6; } if ${acl_cv_rpath+:} false; then : $as_echo_n "(cached) " >&6 else CC="$CC" GCC="$GCC" LDFLAGS="$LDFLAGS" LD="$LD" with_gnu_ld="$with_gnu_ld" \ ${CONFIG_SHELL-/bin/sh} "$ac_aux_dir/config.rpath" "$host" > conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $acl_cv_rpath" >&5 $as_echo "$acl_cv_rpath" >&6; } wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" # Check whether --enable-rpath was given. if test "${enable_rpath+set}" = set; then : enableval=$enable_rpath; : else enable_rpath=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking 32-bit host C ABI" >&5 $as_echo_n "checking 32-bit host C ABI... " >&6; } if ${gl_cv_host_cpu_c_abi_32bit+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$gl_cv_host_cpu_c_abi"; then case "$gl_cv_host_cpu_c_abi" in i386 | x86_64-x32 | arm | armhf | arm64-ilp32 | hppa | ia64-ilp32 | mips | mipsn32 | powerpc | riscv*-ilp32* | s390 | sparc) gl_cv_host_cpu_c_abi_32bit=yes ;; x86_64 | alpha | arm64 | hppa64 | ia64 | mips64 | powerpc64 | powerpc64-elfv2 | riscv*-lp64* | s390x | sparc64 ) gl_cv_host_cpu_c_abi_32bit=no ;; *) gl_cv_host_cpu_c_abi_32bit=unknown ;; esac else case "$host_cpu" in # CPUs that only support a 32-bit ABI. arc \ | bfin \ | cris* \ | csky \ | epiphany \ | ft32 \ | h8300 \ | m68k \ | microblaze | microblazeel \ | nds32 | nds32le | nds32be \ | nios2 | nios2eb | nios2el \ | or1k* \ | or32 \ | sh | sh1234 | sh1234elb \ | tic6x \ | xtensa* ) gl_cv_host_cpu_c_abi_32bit=yes ;; # CPUs that only support a 64-bit ABI. alpha | alphaev[4-8] | alphaev56 | alphapca5[67] | alphaev6[78] \ | mmix ) gl_cv_host_cpu_c_abi_32bit=no ;; i[34567]86 ) gl_cv_host_cpu_c_abi_32bit=yes ;; x86_64 ) # On x86_64 systems, the C compiler may be generating code in one of # these ABIs: # - 64-bit instruction set, 64-bit pointers, 64-bit 'long': x86_64. # - 64-bit instruction set, 64-bit pointers, 32-bit 'long': x86_64 # with native Windows (mingw, MSVC). # - 64-bit instruction set, 32-bit pointers, 32-bit 'long': x86_64-x32. # - 32-bit instruction set, 32-bit pointers, 32-bit 'long': i386. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if (defined __x86_64__ || defined __amd64__ \ || defined _M_X64 || defined _M_AMD64) \ && !(defined __ILP32__ || defined _ILP32) int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; arm* | aarch64 ) # Assume arm with EABI. # On arm64 systems, the C compiler may be generating code in one of # these ABIs: # - aarch64 instruction set, 64-bit pointers, 64-bit 'long': arm64. # - aarch64 instruction set, 32-bit pointers, 32-bit 'long': arm64-ilp32. # - 32-bit instruction set, 32-bit pointers, 32-bit 'long': arm or armhf. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if defined __aarch64__ && !(defined __ILP32__ || defined _ILP32) int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; hppa1.0 | hppa1.1 | hppa2.0* | hppa64 ) # On hppa, the C compiler may be generating 32-bit code or 64-bit # code. In the latter case, it defines _LP64 and __LP64__. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __LP64__ int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; ia64* ) # On ia64 on HP-UX, the C compiler may be generating 64-bit code or # 32-bit code. In the latter case, it defines _ILP32. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef _ILP32 int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=yes else gl_cv_host_cpu_c_abi_32bit=no fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; mips* ) # We should also check for (_MIPS_SZPTR == 64), but gcc keeps this # at 32. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if defined _MIPS_SZLONG && (_MIPS_SZLONG == 64) int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; powerpc* ) # Different ABIs are in use on AIX vs. Mac OS X vs. Linux,*BSD. # No need to distinguish them here; the caller may distinguish # them based on the OS. # On powerpc64 systems, the C compiler may still be generating # 32-bit code. And on powerpc-ibm-aix systems, the C compiler may # be generating 64-bit code. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if defined __powerpc64__ || defined _ARCH_PPC64 int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; rs6000 ) gl_cv_host_cpu_c_abi_32bit=yes ;; riscv32 | riscv64 ) # There are 6 ABIs: ilp32, ilp32f, ilp32d, lp64, lp64f, lp64d. # Size of 'long' and 'void *': cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if defined __LP64__ int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; s390* ) # On s390x, the C compiler may be generating 64-bit (= s390x) code # or 31-bit (= s390) code. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if defined __LP64__ || defined __s390x__ int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; sparc | sparc64 ) # UltraSPARCs running Linux have `uname -m` = "sparc64", but the # C compiler still generates 32-bit code. cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #if defined __sparcv9 || defined __arch64__ int ok; #else error fail #endif _ACEOF if ac_fn_c_try_compile "$LINENO"; then : gl_cv_host_cpu_c_abi_32bit=no else gl_cv_host_cpu_c_abi_32bit=yes fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext ;; *) gl_cv_host_cpu_c_abi_32bit=unknown ;; esac fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $gl_cv_host_cpu_c_abi_32bit" >&5 $as_echo "$gl_cv_host_cpu_c_abi_32bit" >&6; } HOST_CPU_C_ABI_32BIT="$gl_cv_host_cpu_c_abi_32bit" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ELF binary format" >&5 $as_echo_n "checking for ELF binary format... " >&6; } if ${gl_cv_elf+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #ifdef __ELF__ Extensible Linking Format #endif _ACEOF if (eval "$ac_cpp conftest.$ac_ext") 2>&5 | $EGREP "Extensible Linking Format" >/dev/null 2>&1; then : gl_cv_elf=yes else gl_cv_elf=no fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $gl_cv_elf" >&5 $as_echo "$gl_cv_elf" >&6; } if test $gl_cv_elf = yes; then # Extract the ELF class of a file (5th byte) in decimal. # Cf. https://en.wikipedia.org/wiki/Executable_and_Linkable_Format#File_header if od -A x < /dev/null >/dev/null 2>/dev/null; then # Use POSIX od. func_elfclass () { od -A n -t d1 -j 4 -N 1 } else # Use BSD hexdump. func_elfclass () { dd bs=1 count=1 skip=4 2>/dev/null | hexdump -e '1/1 "%3d "' echo } fi # Use 'expr', not 'test', to compare the values of func_elfclass, because on # Solaris 11 OpenIndiana and Solaris 11 OmniOS, the result is 001 or 002, # not 1 or 2. case $HOST_CPU_C_ABI_32BIT in yes) # 32-bit ABI. acl_is_expected_elfclass () { expr "`func_elfclass | sed -e 's/[ ]//g'`" = 1 > /dev/null } ;; no) # 64-bit ABI. acl_is_expected_elfclass () { expr "`func_elfclass | sed -e 's/[ ]//g'`" = 2 > /dev/null } ;; *) # Unknown. acl_is_expected_elfclass () { : } ;; esac else acl_is_expected_elfclass () { : } fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for the common suffixes of directories in the library search path" >&5 $as_echo_n "checking for the common suffixes of directories in the library search path... " >&6; } if ${acl_cv_libdirstems+:} false; then : $as_echo_n "(cached) " >&6 else acl_libdirstem=lib acl_libdirstem2= acl_libdirstem3= case "$host_os" in solaris*) if test $HOST_CPU_C_ABI_32BIT = no; then acl_libdirstem2=lib/64 case "$host_cpu" in sparc*) acl_libdirstem3=lib/sparcv9 ;; i*86 | x86_64) acl_libdirstem3=lib/amd64 ;; esac fi ;; *) searchpath=`(LC_ALL=C $CC $CPPFLAGS $CFLAGS -print-search-dirs) 2>/dev/null \ | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test $HOST_CPU_C_ABI_32BIT != no; then # 32-bit or unknown ABI. if test -d /usr/lib32; then acl_libdirstem2=lib32 fi fi if test $HOST_CPU_C_ABI_32BIT != yes; then # 64-bit or unknown ABI. if test -d /usr/lib64; then acl_libdirstem3=lib64 fi fi if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib32/ | */lib32 ) acl_libdirstem2=lib32 ;; */lib64/ | */lib64 ) acl_libdirstem3=lib64 ;; */../ | */.. ) # Better ignore directories of this form. They are misleading. ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib32 ) acl_libdirstem2=lib32 ;; */lib64 ) acl_libdirstem3=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" if test $HOST_CPU_C_ABI_32BIT = yes; then # 32-bit ABI. acl_libdirstem3= fi if test $HOST_CPU_C_ABI_32BIT = no; then # 64-bit ABI. acl_libdirstem2= fi fi ;; esac test -n "$acl_libdirstem2" || acl_libdirstem2="$acl_libdirstem" test -n "$acl_libdirstem3" || acl_libdirstem3="$acl_libdirstem" acl_cv_libdirstems="$acl_libdirstem,$acl_libdirstem2,$acl_libdirstem3" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $acl_cv_libdirstems" >&5 $as_echo "$acl_cv_libdirstems" >&6; } acl_libdirstem=`echo "$acl_cv_libdirstems" | sed -e 's/,.*//'` acl_libdirstem2=`echo "$acl_cv_libdirstems" | sed -e 's/^[^,]*,//' -e 's/,.*//'` acl_libdirstem3=`echo "$acl_cv_libdirstems" | sed -e 's/^[^,]*,[^,]*,//' -e 's/,.*//'` use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" eval additional_libdir2=\"$exec_prefix/$acl_libdirstem2\" eval additional_libdir3=\"$exec_prefix/$acl_libdirstem3\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libiconv-prefix was given. if test "${with_libiconv_prefix+set}" = set; then : withval=$with_libiconv_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" eval additional_libdir2=\"$exec_prefix/$acl_libdirstem2\" eval additional_libdir3=\"$exec_prefix/$acl_libdirstem3\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" additional_libdir2="$withval/$acl_libdirstem2" additional_libdir3="$withval/$acl_libdirstem3" fi fi fi if test "X$additional_libdir2" = "X$additional_libdir"; then additional_libdir2= fi if test "X$additional_libdir3" = "X$additional_libdir"; then additional_libdir3= fi LIBICONV= LTLIBICONV= INCICONV= LIBICONV_PREFIX= HAVE_LIBICONV= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='iconv ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBICONV="${LIBICONV}${LIBICONV:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then for additional_libdir_variable in additional_libdir additional_libdir2 additional_libdir3; do if test "X$found_dir" = "X"; then eval dir=\$$additional_libdir_variable if test -n "$dir"; then if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext" && acl_is_expected_elfclass < "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver" && acl_is_expected_elfclass < "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f" && acl_is_expected_elfclass < "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext" && ${AR-ar} -p "$dir/$libname.$acl_libext" | acl_is_expected_elfclass; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi fi done fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext" && acl_is_expected_elfclass < "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver" && acl_is_expected_elfclass < "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f" && acl_is_expected_elfclass < "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext" && ${AR-ar} -p "$dir/$libname.$acl_libext" | acl_is_expected_elfclass; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2" \ || test "X$found_dir" = "X/usr/$acl_libdirstem3"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_so" else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBICONV="${LIBICONV}${LIBICONV:+ }$found_a" else LIBICONV="${LIBICONV}${LIBICONV:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = 'iconv'; then LIBICONV_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = 'iconv'; then LIBICONV_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem3 | */$acl_libdirstem3/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem3/"'*$,,'` if test "$name" = 'iconv'; then LIBICONV_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCICONV="${INCICONV}${INCICONV:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) dependency_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$dependency_libdir" != "X/usr/$acl_libdirstem" \ && test "X$dependency_libdir" != "X/usr/$acl_libdirstem2" \ && test "X$dependency_libdir" != "X/usr/$acl_libdirstem3"; then haveit= if test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem2" \ || test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem3"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$dependency_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$dependency_libdir"; then LIBICONV="${LIBICONV}${LIBICONV:+ }-L$dependency_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBICONV; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$dependency_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$dependency_libdir"; then LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-L$dependency_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) dep=`echo "X$dep" | sed -e 's/^X-l//'` if test "X$dep" != Xc \ || case $host_os in linux* | gnu* | k*bsd*-gnu) false ;; *) true ;; esac; then names_next_round="$names_next_round $dep" fi ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBICONV="${LIBICONV}${LIBICONV:+ }$dep" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }$dep" ;; esac done fi else LIBICONV="${LIBICONV}${LIBICONV:+ }-l$name" LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBICONV="${LIBICONV}${LIBICONV:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBICONV="${LTLIBICONV}${LTLIBICONV:+ }-R$found_dir" done fi am_save_CPPFLAGS="$CPPFLAGS" for element in $INCICONV; do haveit= for x in $CPPFLAGS; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }$element" fi done { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv" >&5 $as_echo_n "checking for iconv... " >&6; } if ${am_cv_func_iconv+:} false; then : $as_echo_n "(cached) " >&6 else am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : am_cv_lib_iconv=yes am_cv_func_iconv=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$am_save_LIBS" fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv" >&5 $as_echo "$am_cv_func_iconv" >&6; } if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for working iconv" >&5 $as_echo_n "checking for working iconv... " >&6; } if ${am_cv_func_iconv_works+:} false; then : $as_echo_n "(cached) " >&6 else am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi am_cv_func_iconv_works=no for ac_iconv_const in '' 'const'; do if test "$cross_compiling" = yes; then : case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #ifndef ICONV_CONST # define ICONV_CONST $ac_iconv_const #endif int main () { int result = 0; /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; ICONV_CONST char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 1; iconv_close (cd_utf8_to_88591); } } /* Test against Solaris 10 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_ascii_to_88591 = iconv_open ("ISO8859-1", "646"); if (cd_ascii_to_88591 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\263"; char buf[10]; ICONV_CONST char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_ascii_to_88591, &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 2; iconv_close (cd_ascii_to_88591); } } /* Test against AIX 6.1..7.1 bug: Buffer overrun. */ { iconv_t cd_88591_to_utf8 = iconv_open ("UTF-8", "ISO-8859-1"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\304"; static char buf[2] = { (char)0xDE, (char)0xAD }; ICONV_CONST char *inptr = input; size_t inbytesleft = 1; char *outptr = buf; size_t outbytesleft = 1; size_t res = iconv (cd_88591_to_utf8, &inptr, &inbytesleft, &outptr, &outbytesleft); if (res != (size_t)(-1) || outptr - buf > 1 || buf[1] != (char)0xAD) result |= 4; iconv_close (cd_88591_to_utf8); } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; ICONV_CONST char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) result |= 8; iconv_close (cd_88591_to_utf8); } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ { /* Try standardized names. */ iconv_t cd1 = iconv_open ("UTF-8", "EUC-JP"); /* Try IRIX, OSF/1 names. */ iconv_t cd2 = iconv_open ("UTF-8", "eucJP"); /* Try AIX names. */ iconv_t cd3 = iconv_open ("UTF-8", "IBM-eucJP"); /* Try HP-UX names. */ iconv_t cd4 = iconv_open ("utf8", "eucJP"); if (cd1 == (iconv_t)(-1) && cd2 == (iconv_t)(-1) && cd3 == (iconv_t)(-1) && cd4 == (iconv_t)(-1)) result |= 16; if (cd1 != (iconv_t)(-1)) iconv_close (cd1); if (cd2 != (iconv_t)(-1)) iconv_close (cd2); if (cd3 != (iconv_t)(-1)) iconv_close (cd3); if (cd4 != (iconv_t)(-1)) iconv_close (cd4); } return result; ; return 0; } _ACEOF if ac_fn_c_try_run "$LINENO"; then : am_cv_func_iconv_works=yes fi rm -f core *.core core.conftest.* gmon.out bb.out conftest$ac_exeext \ conftest.$ac_objext conftest.beam conftest.$ac_ext fi test "$am_cv_func_iconv_works" = no || break done LIBS="$am_save_LIBS" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_func_iconv_works" >&5 $as_echo "$am_cv_func_iconv_works" >&6; } case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi if test "$am_cv_lib_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to link with libiconv" >&5 $as_echo_n "checking how to link with libiconv... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIBICONV" >&5 $as_echo "$LIBICONV" >&6; } else CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi if test "$am_cv_func_iconv" = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for iconv declaration" >&5 $as_echo_n "checking for iconv declaration... " >&6; } if ${am_cv_proto_iconv+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(_MSC_VER) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : am_cv_proto_iconv_arg1="" else am_cv_proto_iconv_arg1="const" fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);" fi am_cv_proto_iconv=`echo "$am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` { $as_echo "$as_me:${as_lineno-$LINENO}: result: $am_cv_proto_iconv" >&5 $as_echo " $am_cv_proto_iconv" >&6; } else am_cv_proto_iconv_arg1="" fi cat >>confdefs.h <<_ACEOF #define ICONV_CONST $am_cv_proto_iconv_arg1 _ACEOF if test "$am_cv_func_iconv" = "yes"; then ICONV_LIBS=$LTLIBICONV ICONV_CFLAGS=$INCICONV $as_echo "#define HAVE_ICONV 1" >>confdefs.h fi fi if test "$am_cv_func_iconv" = "yes"; then OPENCONNECT_ICONV_TRUE= OPENCONNECT_ICONV_FALSE='#' else OPENCONNECT_ICONV_TRUE='#' OPENCONNECT_ICONV_FALSE= fi # Check whether --enable-nls was given. if test "${enable_nls+set}" = set; then : enableval=$enable_nls; USE_NLS=$enableval else USE_NLS=yes fi LIBINTL= if test "$USE_NLS" = "yes"; then # Extract the first word of "msgfmt", so it can be a program name with args. set dummy msgfmt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_MSGFMT+:} false; then : $as_echo_n "(cached) " >&6 else case $MSGFMT in [\\/]* | ?:[\\/]*) ac_cv_path_MSGFMT="$MSGFMT" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_MSGFMT="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi MSGFMT=$ac_cv_path_MSGFMT if test -n "$MSGFMT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MSGFMT" >&5 $as_echo "$MSGFMT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "$MSGFMT" = ""; then as_fn_error $? "msgfmt could not be found. Try configuring with --disable-nls" "$LINENO" 5 fi fi LIBINTL= if test "$USE_NLS" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for functional NLS support" >&5 $as_echo_n "checking for functional NLS support... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else use_additional=yes acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" eval additional_libdir2=\"$exec_prefix/$acl_libdirstem2\" eval additional_libdir3=\"$exec_prefix/$acl_libdirstem3\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" # Check whether --with-libintl-prefix was given. if test "${with_libintl_prefix+set}" = set; then : withval=$with_libintl_prefix; if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" eval additional_libdir2=\"$exec_prefix/$acl_libdirstem2\" eval additional_libdir3=\"$exec_prefix/$acl_libdirstem3\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" additional_libdir2="$withval/$acl_libdirstem2" additional_libdir3="$withval/$acl_libdirstem3" fi fi fi if test "X$additional_libdir2" = "X$additional_libdir"; then additional_libdir2= fi if test "X$additional_libdir3" = "X$additional_libdir"; then additional_libdir3= fi LIBINTL= LTLIBINTL= INCINTL= LIBINTL_PREFIX= HAVE_LIBINTL= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='intl ' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIBINTL="${LIBINTL}${LIBINTL:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$value" else : fi else found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then for additional_libdir_variable in additional_libdir additional_libdir2 additional_libdir3; do if test "X$found_dir" = "X"; then eval dir=\$$additional_libdir_variable if test -n "$dir"; then if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext" && acl_is_expected_elfclass < "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver" && acl_is_expected_elfclass < "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f" && acl_is_expected_elfclass < "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext" && ${AR-ar} -p "$dir/$libname.$acl_libext" | acl_is_expected_elfclass; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi fi done fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext" && acl_is_expected_elfclass < "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver" && acl_is_expected_elfclass < "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f" && acl_is_expected_elfclass < "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext" && ${AR-ar} -p "$dir/$libname.$acl_libext" | acl_is_expected_elfclass; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2" \ || test "X$found_dir" = "X/usr/$acl_libdirstem3"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi if test "$acl_hardcode_direct" = yes; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_so" else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then LIBINTL="${LIBINTL}${LIBINTL:+ }$found_a" else LIBINTL="${LIBINTL}${LIBINTL:+ }-L$found_dir -l$name" fi fi additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = 'intl'; then LIBINTL_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = 'intl'; then LIBINTL_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem3 | */$acl_libdirstem3/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem3/"'*$,,'` if test "$name" = 'intl'; then LIBINTL_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INCINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then INCINTL="${INCINTL}${INCINTL:+ }-I$additional_includedir" fi fi fi fi fi if test -n "$found_la"; then save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" for dep in $dependency_libs; do case "$dep" in -L*) dependency_libdir=`echo "X$dep" | sed -e 's/^X-L//'` if test "X$dependency_libdir" != "X/usr/$acl_libdirstem" \ && test "X$dependency_libdir" != "X/usr/$acl_libdirstem2" \ && test "X$dependency_libdir" != "X/usr/$acl_libdirstem3"; then haveit= if test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem2" \ || test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem3"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$dependency_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$dependency_libdir"; then LIBINTL="${LIBINTL}${LIBINTL:+ }-L$dependency_libdir" fi fi haveit= for x in $LDFLAGS $LTLIBINTL; do acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" eval x=\"$x\" exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" if test "X$x" = "X-L$dependency_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$dependency_libdir"; then LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-L$dependency_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) dep=`echo "X$dep" | sed -e 's/^X-l//'` if test "X$dep" != Xc \ || case $host_os in linux* | gnu* | k*bsd*-gnu) false ;; *) true ;; esac; then names_next_round="$names_next_round $dep" fi ;; *.la) names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) LIBINTL="${LIBINTL}${LIBINTL:+ }$dep" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }$dep" ;; esac done fi else LIBINTL="${LIBINTL}${LIBINTL:+ }-l$name" LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" else for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIBINTL="${LIBINTL}${LIBINTL:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then for found_dir in $ltrpathdirs; do LTLIBINTL="${LTLIBINTL}${LTLIBINTL:+ }-R$found_dir" done fi oldLIBS="$LIBS" LIBS="$LIBINTL $LIBS" oldCFLAGS="$LIBS" CFLAGS="$CFLAGS $INCINTL" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with $INCINTL $LIBINTL)" >&5 $as_echo "yes (with $INCINTL $LIBINTL)" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } USE_NLS=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi if test "$USE_NLS" = "yes"; then INTL_LIBS=$LTLIBINTL INTL_CFLAGS=$INCINTL $as_echo "#define ENABLE_NLS 1" >>confdefs.h fi if test "$USE_NLS" = "yes"; then USE_NLS_TRUE= USE_NLS_FALSE='#' else USE_NLS_TRUE='#' USE_NLS_FALSE= fi # Check whether --with-system-cafile was given. if test "${with_system_cafile+set}" = set; then : withval=$with_system_cafile; fi # We will use GnuTLS by default if it's present. We used to support # using GnuTLS for the TLS connections and OpenSSL for DTLS, but none # of the reasons for that make sense any more. # Check whether --with-gnutls was given. if test "${with_gnutls+set}" = set; then : withval=$with_gnutls; fi # Check whether --with-openssl was given. if test "${with_openssl+set}" = set; then : withval=$with_openssl; fi ssl_library= esp= dtls= if test "$with_openssl" != "" -a "$with_openssl" != "no"; then if test "$with_gnutls" = ""; then with_gnutls=no elif test "$with_gnutls" = "yes"; then as_fn_error $? "You cannot choose both GnuTLS and OpenSSL." "$LINENO" 5 fi fi # First, check if GnuTLS exists and is usable if test "$with_gnutls" = "yes" || test "$with_gnutls" = ""; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNUTLS" >&5 $as_echo_n "checking for GNUTLS... " >&6; } if test -n "$GNUTLS_CFLAGS"; then pkg_cv_GNUTLS_CFLAGS="$GNUTLS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gnutls\""; } >&5 ($PKG_CONFIG --exists --print-errors "gnutls") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GNUTLS_CFLAGS=`$PKG_CONFIG --cflags "gnutls" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$GNUTLS_LIBS"; then pkg_cv_GNUTLS_LIBS="$GNUTLS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"gnutls\""; } >&5 ($PKG_CONFIG --exists --print-errors "gnutls") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_GNUTLS_LIBS=`$PKG_CONFIG --libs "gnutls" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then GNUTLS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "gnutls" 2>&1` else GNUTLS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "gnutls" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$GNUTLS_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else GNUTLS_CFLAGS=$pkg_cv_GNUTLS_CFLAGS GNUTLS_LIBS=$pkg_cv_GNUTLS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } if ! $PKG_CONFIG --atleast-version=3.2.10 gnutls; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Your GnuTLS is too old. At least v3.2.10 is required" >&5 $as_echo "$as_me: WARNING: Your GnuTLS is too old. At least v3.2.10 is required" >&2;} else ssl_library=GnuTLS fi fi elif test "$with_gnutls" != "no"; then as_fn_error $? "Values other than 'yes' or 'no' for --with-gnutls are not supported" "$LINENO" 5 fi # Do we need to look for OpenSSL? if test "$ssl_library" = ""; then if test "$with_gnutls" = "yes" -o "$with_openssl" = "no"; then as_fn_error $? "Suitable GnuTLS required but not found" "$LINENO" 5 elif test "$with_openssl" = "yes" -o "$with_openssl" = ""; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OPENSSL" >&5 $as_echo_n "checking for OPENSSL... " >&6; } if test -n "$OPENSSL_CFLAGS"; then pkg_cv_OPENSSL_CFLAGS="$OPENSSL_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_CFLAGS=`$PKG_CONFIG --cflags "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$OPENSSL_LIBS"; then pkg_cv_OPENSSL_LIBS="$OPENSSL_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"openssl\""; } >&5 ($PKG_CONFIG --exists --print-errors "openssl") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_OPENSSL_LIBS=`$PKG_CONFIG --libs "openssl" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then OPENSSL_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "openssl" 2>&1` else OPENSSL_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "openssl" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$OPENSSL_PKG_ERRORS" >&5 oldLIBS="$LIBS" LIBS="-lssl -lcrypto $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OpenSSL without pkg-config" >&5 $as_echo_n "checking for OpenSSL without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } OPENSSL_LIBS="-lssl -lcrypto" openssl_pc_libs=$OPENSSL_LIBS else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against OpenSSL" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } oldLIBS="$LIBS" LIBS="-lssl -lcrypto $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for OpenSSL without pkg-config" >&5 $as_echo_n "checking for OpenSSL without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } OPENSSL_LIBS="-lssl -lcrypto" openssl_pc_libs=$OPENSSL_LIBS else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against OpenSSL" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" else OPENSSL_CFLAGS=$pkg_cv_OPENSSL_CFLAGS OPENSSL_LIBS=$pkg_cv_OPENSSL_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } SSL_PC=openssl fi ssl_library=OpenSSL pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for P11KIT" >&5 $as_echo_n "checking for P11KIT... " >&6; } if test -n "$P11KIT_CFLAGS"; then pkg_cv_P11KIT_CFLAGS="$P11KIT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_CFLAGS=`$PKG_CONFIG --cflags "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$P11KIT_LIBS"; then pkg_cv_P11KIT_LIBS="$P11KIT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_LIBS=`$PKG_CONFIG --libs "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then P11KIT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "p11-kit-1" 2>&1` else P11KIT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "p11-kit-1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$P11KIT_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else P11KIT_CFLAGS=$pkg_cv_P11KIT_CFLAGS P11KIT_LIBS=$pkg_cv_P11KIT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } # libp11 0.4.7 fails to export ERR_LIB_PKCS11 so we don't know what it # is and can't match its errors, which we need to for login checks. pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBP11" >&5 $as_echo_n "checking for LIBP11... " >&6; } if test -n "$LIBP11_CFLAGS"; then pkg_cv_LIBP11_CFLAGS="$LIBP11_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libp11 != 0.4.7\""; } >&5 ($PKG_CONFIG --exists --print-errors "libp11 != 0.4.7") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBP11_CFLAGS=`$PKG_CONFIG --cflags "libp11 != 0.4.7" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBP11_LIBS"; then pkg_cv_LIBP11_LIBS="$LIBP11_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libp11 != 0.4.7\""; } >&5 ($PKG_CONFIG --exists --print-errors "libp11 != 0.4.7") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBP11_LIBS=`$PKG_CONFIG --libs "libp11 != 0.4.7" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBP11_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libp11 != 0.4.7" 2>&1` else LIBP11_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libp11 != 0.4.7" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBP11_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else LIBP11_CFLAGS=$pkg_cv_LIBP11_CFLAGS LIBP11_LIBS=$pkg_cv_LIBP11_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_LIBP11 1" >>confdefs.h P11KIT_PC="libp11 p11-kit-1" proxy_module="`$PKG_CONFIG --variable=proxy_module p11-kit-1`" pkcs11_support="libp11" cat >>confdefs.h <<_ACEOF #define DEFAULT_PKCS11_MODULE "${proxy_module}" _ACEOF fi fi else OPENSSL_CFLAGS="-I${with_openssl}/include ${OPENSSL_CFLAGS}" if test -r "${with_openssl}/libssl.a" -a -r "${with_openssl}/libcrypto.a"; then OPENSSL_LIBS="${with_openssl}/libssl.a ${with_openssl}/libcrypto.a -ldl -lz -pthread" elif test -r "${with_openssl}/crypto/.libs/libcrypto.a" -a \ -r "${with_openssl}/ssl/.libs/libssl.a"; then OPENSSL_LIBS="${with_openssl}/ssl/.libs/libssl.a ${with_openssl}/crypto/.libs/libcrypto.a -ldl -lz -pthread" else as_fn_error $? "Could not find OpenSSL libraries in ${with_openssl}" "$LINENO" 5; fi enable_static=yes enable_shared=no ssl_library=OpenSSL fi fi # Check whether --with-openssl-version-check was given. if test "${with_openssl_version_check+set}" = set; then : withval=$with_openssl_version_check; fi # Check whether --with-gnutls-version-check was given. if test "${with_gnutls_version_check+set}" = set; then : withval=$with_gnutls_version_check; fi # Check whether --with-default-gnutls-priority was given. if test "${with_default_gnutls_priority+set}" = set; then : withval=$with_default_gnutls_priority; default_gnutls_priority=$withval fi if test -n "$default_gnutls_priority"; then cat >>confdefs.h <<_ACEOF #define DEFAULT_PRIO "$default_gnutls_priority" _ACEOF fi # Check whether --with-gnutls-tss2 was given. if test "${with_gnutls_tss2+set}" = set; then : withval=$with_gnutls_tss2; fi tss2lib=none case "$ssl_library" in OpenSSL) oldLIBS="${LIBS}" oldCFLAGS="${CFLAGS}" LIBS="${OPENSSL_LIBS} ${LIBS}" CFLAGS="${CFLAGS} ${OPENSSL_CFLAGS}" # Check for the various known-broken versions of OpenSSL, which includes LibreSSL. if test "$with_openssl_version_check" != "no"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for known-broken versions of OpenSSL" >&5 $as_echo_n "checking for known-broken versions of OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if defined(LIBRESSL_VERSION_NUMBER) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "LibreSSL does not support Cisco DTLS. Build with OpenSSL or GnuTLS instead." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ (OPENSSL_VERSION_NUMBER == 0x10002000L || \ (OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L)) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error or perhaps consider building with GnuTLS instead. "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ (OPENSSL_VERSION_NUMBER == 0x1000200fL) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error or perhaps consider building with GnuTLS instead. "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=3703&user=guest&pass=guest and http://rt.openssl.org/Ticket/Display.html?id=3711&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if \ ((OPENSSL_VERSION_NUMBER >= 0x10001110L && OPENSSL_VERSION_NUMBER <= 0x10001150L) || \ (OPENSSL_VERSION_NUMBER >= 0x10002050L && OPENSSL_VERSION_NUMBER <= 0x10002090L)) #error Bad OpenSSL #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error or perhaps consider building with GnuTLS instead. "This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=4631&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ENGINE_by_id() in OpenSSL" >&5 $as_echo_n "checking for ENGINE_by_id() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { ENGINE_by_id("foo"); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_ENGINE 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: Building without OpenSSL TPM ENGINE support" >&5 $as_echo "$as_me: Building without OpenSSL TPM ENGINE support" >&6;} fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dtls1_stop_timer() in OpenSSL" >&5 $as_echo_n "checking for dtls1_stop_timer() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include extern void dtls1_stop_timer(SSL *); int main () { dtls1_stop_timer(NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_DTLS1_STOP_TIMER 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext # DTLS_client_method() and DTLSv1_2_client_method() were both added between # OpenSSL v1.0.1 and v1.0.2. DTLSV1.2_client_method() was later deprecated # in v1.1.0 so we use DTLS_client_method() as our check for DTLSv1.2 support # and that's what we actually use in openssl-dtls.c too. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for DTLS_client_method() in OpenSSL" >&5 $as_echo_n "checking for DTLS_client_method() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { DTLS_client_method(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_DTLS12 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: checking for SSL_CTX_set_min_proto_version() in OpenSSL" >&5 $as_echo_n "checking for SSL_CTX_set_min_proto_version() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { SSL_CTX_set_min_proto_version((void *)0, 0); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_SSL_CTX_PROTOVER 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: checking for BIO_meth_free() in OpenSSL" >&5 $as_echo_n "checking for BIO_meth_free() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { BIO_meth_free((void *)0); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_BIO_METH_FREE 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext ac_fn_c_check_func "$LINENO" "HMAC_CTX_copy" "ac_cv_func_HMAC_CTX_copy" if test "x$ac_cv_func_HMAC_CTX_copy" = xyes; then : esp=yes else { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: ESP support will be disabled" >&5 $as_echo "$as_me: WARNING: ESP support will be disabled" >&2;} fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for SSL_CIPHER_find() in OpenSSL" >&5 $as_echo_n "checking for SSL_CIPHER_find() in OpenSSL... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { SSL_CIPHER_find((void *)0, ""); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_SSL_CIPHER_FIND 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="${oldLIBS}" CFLAGS="${oldCFLAGS}" dtls=yes $as_echo "#define OPENCONNECT_OPENSSL 1" >>confdefs.h $as_echo "#define OPENSSL_SUPPRESS_DEPRECATED 1" >>confdefs.h SSL_LIBS='$(OPENSSL_LIBS)' SSL_CFLAGS='$(OPENSSL_CFLAGS)' ;; GnuTLS) oldlibs="$LIBS" oldcflags="$CFLAGS" LIBS="$GNUTLS_LIBS $LIBS" CFLAGS="$CFLAGS $GNUTLS_CFLAGS" esp=yes dtls=yes # Check for the known-broken versions of GnuTLS, if test "$with_gnutls_version_check" != "no"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for known-broken versions of GnuTLS" >&5 $as_echo_n "checking for known-broken versions of GnuTLS... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { #if GNUTLS_VERSION_NUMBER >= 0x030603 && GNUTLS_VERSION_NUMBER <= 0x03060c #error Bad GnuTLS #endif ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : else { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } as_fn_error $? "DTLS is insecure in GnuTLS v3.6.3 through v3.6.12. See https://gitlab.com/gnutls/gnutls/issues/960 Add --without-gnutls-version-check to configure args to avoid this check (DTLS will still be disabled at runtime), or build with another version." "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi ac_fn_c_check_func "$LINENO" "gnutls_system_key_add_x509" "ac_cv_func_gnutls_system_key_add_x509" if test "x$ac_cv_func_gnutls_system_key_add_x509" = xyes; then : $as_echo "#define HAVE_GNUTLS_SYSTEM_KEYS 1" >>confdefs.h fi ac_fn_c_check_func "$LINENO" "gnutls_pkcs11_add_provider" "ac_cv_func_gnutls_pkcs11_add_provider" if test "x$ac_cv_func_gnutls_pkcs11_add_provider" = xyes; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for P11KIT" >&5 $as_echo_n "checking for P11KIT... " >&6; } if test -n "$P11KIT_CFLAGS"; then pkg_cv_P11KIT_CFLAGS="$P11KIT_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_CFLAGS=`$PKG_CONFIG --cflags "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$P11KIT_LIBS"; then pkg_cv_P11KIT_LIBS="$P11KIT_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"p11-kit-1\""; } >&5 ($PKG_CONFIG --exists --print-errors "p11-kit-1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_P11KIT_LIBS=`$PKG_CONFIG --libs "p11-kit-1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then P11KIT_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "p11-kit-1" 2>&1` else P11KIT_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "p11-kit-1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$P11KIT_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else P11KIT_CFLAGS=$pkg_cv_P11KIT_CFLAGS P11KIT_LIBS=$pkg_cv_P11KIT_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_P11KIT 1" >>confdefs.h pkcs11_support=GnuTLS P11KIT_PC=p11-kit-1 fi fi LIBS="-ltspi $oldlibs" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for Trousers tss library" >&5 $as_echo_n "checking for Trousers tss library... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include int main () { int err = Tspi_Context_Create((void *)0); Trspi_Error_String(err); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } TSS_LIBS=-ltspi $as_echo "#define HAVE_TROUSERS 1" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldlibs" CFLAGS="$oldcflags" pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TASN1" >&5 $as_echo_n "checking for TASN1... " >&6; } if test -n "$TASN1_CFLAGS"; then pkg_cv_TASN1_CFLAGS="$TASN1_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libtasn1\""; } >&5 ($PKG_CONFIG --exists --print-errors "libtasn1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TASN1_CFLAGS=`$PKG_CONFIG --cflags "libtasn1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$TASN1_LIBS"; then pkg_cv_TASN1_LIBS="$TASN1_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libtasn1\""; } >&5 ($PKG_CONFIG --exists --print-errors "libtasn1") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TASN1_LIBS=`$PKG_CONFIG --libs "libtasn1" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then TASN1_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libtasn1" 2>&1` else TASN1_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libtasn1" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$TASN1_PKG_ERRORS" >&5 have_tasn1=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } have_tasn1=no else TASN1_CFLAGS=$pkg_cv_TASN1_CFLAGS TASN1_LIBS=$pkg_cv_TASN1_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } have_tasn1=yes fi if test "$have_tasn1" = "yes"; then if test "$with_gnutls_tss2" = "yes" -o "$with_gnutls_tss2" = "tss2-esys" -o "$with_gnutls_tss2" = ""; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TSS2_ESYS" >&5 $as_echo_n "checking for TSS2_ESYS... " >&6; } if test -n "$TSS2_ESYS_CFLAGS"; then pkg_cv_TSS2_ESYS_CFLAGS="$TSS2_ESYS_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"tss2-esys tss2-mu tss2-tctildr\""; } >&5 ($PKG_CONFIG --exists --print-errors "tss2-esys tss2-mu tss2-tctildr") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TSS2_ESYS_CFLAGS=`$PKG_CONFIG --cflags "tss2-esys tss2-mu tss2-tctildr" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$TSS2_ESYS_LIBS"; then pkg_cv_TSS2_ESYS_LIBS="$TSS2_ESYS_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"tss2-esys tss2-mu tss2-tctildr\""; } >&5 ($PKG_CONFIG --exists --print-errors "tss2-esys tss2-mu tss2-tctildr") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_TSS2_ESYS_LIBS=`$PKG_CONFIG --libs "tss2-esys tss2-mu tss2-tctildr" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then TSS2_ESYS_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "tss2-esys tss2-mu tss2-tctildr" 2>&1` else TSS2_ESYS_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "tss2-esys tss2-mu tss2-tctildr" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$TSS2_ESYS_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else TSS2_ESYS_CFLAGS=$pkg_cv_TSS2_ESYS_CFLAGS TSS2_ESYS_LIBS=$pkg_cv_TSS2_ESYS_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_TSS2 1" >>confdefs.h TPM2_CFLAGS='$(TASN1_CFLAGS) $(TSS2_ESYS_CFLAGS)' TPM2_LIBS='$(TASN1_LIBS) $(TSS2_ESYS_LIBS)' tss2lib=tss2-esys fi fi if test "$tss2lib" = "none"; then if test "$with_gnutls_tss2" = "yes" -o "$with_gnutls_tss2" = "ibmtss" -o "$with_gnutls_tss2" = ""; then # The Fedora 'tss2-devel' package puts headers in /usr/include/ibmtss/ # and the library is named libibmtss.so. The Ubuntu libtss-dev package # puts headers in /usr/include/${host}/tss2/ and the library is named # libtss.so. Neither ships a pkg-config file at the time I write this. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TSS_Create in -ltss" >&5 $as_echo_n "checking for TSS_Create in -ltss... " >&6; } if ${ac_cv_lib_tss_TSS_Create+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ltss $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char TSS_Create (); int main () { return TSS_Create (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_tss_TSS_Create=yes else ac_cv_lib_tss_TSS_Create=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_tss_TSS_Create" >&5 $as_echo "$ac_cv_lib_tss_TSS_Create" >&6; } if test "x$ac_cv_lib_tss_TSS_Create" = xyes; then : tss2inc=tss2 tss2lib=tss else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for TSS_Create in -libmtss" >&5 $as_echo_n "checking for TSS_Create in -libmtss... " >&6; } if ${ac_cv_lib_ibmtss_TSS_Create+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-libmtss $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char TSS_Create (); int main () { return TSS_Create (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_ibmtss_TSS_Create=yes else ac_cv_lib_ibmtss_TSS_Create=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_ibmtss_TSS_Create" >&5 $as_echo "$ac_cv_lib_ibmtss_TSS_Create" >&6; } if test "x$ac_cv_lib_ibmtss_TSS_Create" = xyes; then : tss2inc=ibmtss tss2lib=ibmtss fi fi if test "$tss2lib" != "none"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking For <${tss2inc}/tss.h>" >&5 $as_echo_n "checking For <${tss2inc}/tss.h>... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #define TPM_POSIX #include <${tss2inc}/tss.h> int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } cat >>confdefs.h <<_ACEOF #define HAVE_TSS2 $tss2inc _ACEOF TSS2_LIBS=-l$tss2lib TPM2_CFLAGS='$(TASN1_CFLAGS) -DTPM_POSIX' TPM2_LIBS='$(TASN1_LIBS) $(TSS2_LIBS)' else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } tss2lib=none fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi fi fi fi $as_echo "#define OPENCONNECT_GNUTLS 1" >>confdefs.h SSL_PC=gnutls SSL_LIBS='$(GNUTLS_LIBS) $(TPM2_LIBS)' SSL_CFLAGS='$(GNUTLS_CFLAGS) $(TPM2_CFLAGS)' ;; *) # This should never happen as_fn_error $? "No SSL library selected" "$LINENO" 5 ;; esac case x"$with_gnutls_tss2" in xtss2-esys) if test "$tss2lib" != "tss2-esys"; then as_fn_error $? "tss2-esys requested but not found" "$LINENO" 5 fi ;; xibmtss|xtss) if test "$tss2lib" != "ibmtss" -a "$tss2lib" != "tss"; then as_fn_error $? "ibmtss requested but not found: $tss2lib" "$LINENO" 5 fi ;; x|xno) ;; xyes) if test "$tss2lib" = "none" -a "$with_gnutls_tss2" = "yes"; then as_fn_error $? "No TSS2 library found" "$LINENO" 5 fi ;; *) as_fn_error $? "Unknown value for gnutls-tss2" "$LINENO" 5 ;; esac if test "$tss2lib" = "tss2-esys" ; then OPENCONNECT_TSS2_ESYS_TRUE= OPENCONNECT_TSS2_ESYS_FALSE='#' else OPENCONNECT_TSS2_ESYS_TRUE='#' OPENCONNECT_TSS2_ESYS_FALSE= fi if test "$tss2lib" = "ibmtss" -o "$tss2lib" = "tss" ; then OPENCONNECT_TSS2_IBM_TRUE= OPENCONNECT_TSS2_IBM_FALSE='#' else OPENCONNECT_TSS2_IBM_TRUE='#' OPENCONNECT_TSS2_IBM_FALSE= fi # Extract the first word of "swtpm", so it can be a program name with args. set dummy swtpm; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_SWTPM+:} false; then : $as_echo_n "(cached) " >&6 else case $SWTPM in [\\/]* | ?:[\\/]*) ac_cv_path_SWTPM="$SWTPM" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_SWTPM="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi SWTPM=$ac_cv_path_SWTPM if test -n "$SWTPM"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $SWTPM" >&5 $as_echo "$SWTPM" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi SWTPM_IOCTL="" TPM2_STARTUP="" TSSTARTUP="" if test "$SWTPM" != ""; then # Extract the first word of "swtpm_ioctl", so it can be a program name with args. set dummy swtpm_ioctl; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_SWTPM_IOCTL+:} false; then : $as_echo_n "(cached) " >&6 else case $SWTPM_IOCTL in [\\/]* | ?:[\\/]*) ac_cv_path_SWTPM_IOCTL="$SWTPM_IOCTL" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_SWTPM_IOCTL="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi SWTPM_IOCTL=$ac_cv_path_SWTPM_IOCTL if test -n "$SWTPM_IOCTL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $SWTPM_IOCTL" >&5 $as_echo "$SWTPM_IOCTL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi # Extract the first word of "tpm2_startup", so it can be a program name with args. set dummy tpm2_startup; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_TPM2_STARTUP+:} false; then : $as_echo_n "(cached) " >&6 else case $TPM2_STARTUP in [\\/]* | ?:[\\/]*) ac_cv_path_TPM2_STARTUP="$TPM2_STARTUP" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_TPM2_STARTUP="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi TPM2_STARTUP=$ac_cv_path_TPM2_STARTUP if test -n "$TPM2_STARTUP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $TPM2_STARTUP" >&5 $as_echo "$TPM2_STARTUP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi # Extract the first word of "tsstartup", so it can be a program name with args. set dummy tsstartup; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_TSSTARTUP+:} false; then : $as_echo_n "(cached) " >&6 else case $TSSTARTUP in [\\/]* | ?:[\\/]*) ac_cv_path_TSSTARTUP="$TSSTARTUP" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_TSSTARTUP="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi TSSTARTUP=$ac_cv_path_TSSTARTUP if test -n "$TSSTARTUP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $TSSTARTUP" >&5 $as_echo "$TSSTARTUP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi # The Intel/TCG TSS can only *create* keys # Extract the first word of "tpm2tss-genkey", so it can be a program name with args. set dummy tpm2tss-genkey; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_TPM2TSS_GENKEY+:} false; then : $as_echo_n "(cached) " >&6 else case $TPM2TSS_GENKEY in [\\/]* | ?:[\\/]*) ac_cv_path_TPM2TSS_GENKEY="$TPM2TSS_GENKEY" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_TPM2TSS_GENKEY="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi TPM2TSS_GENKEY=$ac_cv_path_TPM2TSS_GENKEY if test -n "$TPM2TSS_GENKEY"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $TPM2TSS_GENKEY" >&5 $as_echo "$TPM2TSS_GENKEY" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi # James's one can import them too. # Extract the first word of "create_tpm2_key", so it can be a program name with args. set dummy create_tpm2_key; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_CREATE_TPM2_KEY+:} false; then : $as_echo_n "(cached) " >&6 else case $CREATE_TPM2_KEY in [\\/]* | ?:[\\/]*) ac_cv_path_CREATE_TPM2_KEY="$CREATE_TPM2_KEY" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_CREATE_TPM2_KEY="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi CREATE_TPM2_KEY=$ac_cv_path_CREATE_TPM2_KEY if test -n "$CREATE_TPM2_KEY"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $CREATE_TPM2_KEY" >&5 $as_echo "$CREATE_TPM2_KEY" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi # Check whether --enable-hwtpm-test was given. if test "${enable_hwtpm_test+set}" = set; then : enableval=$enable_hwtpm_test; test_hwtpm=$enableval else test_hwtpm=no fi if test "$test_hwtpm" = "yes" -a "$TPM2TSS_GENKEY$CREATE_TPM2_KEY" = ""; then as_fn_error $? "Hardware TPM test requires tpm2tss-genkey and/or create_tpm2_key tools" "$LINENO" 5 fi if test "$test_hwtpm" = "yes" ; then TEST_HWTPM_TRUE= TEST_HWTPM_FALSE='#' else TEST_HWTPM_TRUE='#' TEST_HWTPM_FALSE= fi if test "$SWTPM_IOCTL" != "" -a \( "$TPM2_STARTUP" != "" -o "$TSSTARTUP" != "" \) ; then TEST_SWTPM_TRUE= TEST_SWTPM_FALSE='#' else TEST_SWTPM_TRUE='#' TEST_SWTPM_FALSE= fi if test "$TPM2TSS_GENKEY" != "" ; then TEST_TPM2_CREATE_TRUE= TEST_TPM2_CREATE_FALSE='#' else TEST_TPM2_CREATE_TRUE='#' TEST_TPM2_CREATE_FALSE= fi if test "$CREATE_TPM2_KEY" != "" ; then TEST_TPM2_IMPORT_TRUE= TEST_TPM2_IMPORT_FALSE='#' else TEST_TPM2_IMPORT_TRUE='#' TEST_TPM2_IMPORT_FALSE= fi test_pkcs11= if test "$pkcs11_support" != ""; then # Extract the first word of "softhsm2-util", so it can be a program name with args. set dummy softhsm2-util; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_test_pkcs11+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$test_pkcs11"; then ac_cv_prog_test_pkcs11="$test_pkcs11" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_test_pkcs11="yes" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi test_pkcs11=$ac_cv_prog_test_pkcs11 if test -n "$test_pkcs11"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $test_pkcs11" >&5 $as_echo "$test_pkcs11" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$test_pkcs11" = "yes" ; then TEST_PKCS11_TRUE= TEST_PKCS11_FALSE='#' else TEST_PKCS11_TRUE='#' TEST_PKCS11_FALSE= fi # The test is OpenSSL-only for now. if test "$ssl_library" = "OpenSSL" ; then CHECK_DTLS_TRUE= CHECK_DTLS_FALSE='#' else CHECK_DTLS_TRUE='#' CHECK_DTLS_FALSE= fi # Check whether --enable-dtls-xfail was given. if test "${enable_dtls_xfail+set}" = set; then : enableval=$enable_dtls_xfail; fi if test "$enable_dtls_xfail" = "yes" ; then DTLS_XFAIL_TRUE= DTLS_XFAIL_FALSE='#' else DTLS_XFAIL_TRUE='#' DTLS_XFAIL_FALSE= fi # Check whether --enable-dsa-tests was given. if test "${enable_dsa_tests+set}" = set; then : enableval=$enable_dsa_tests; else enable_dsa_tests=yes fi if test "$enable_dsa_tests" = "yes"; then TEST_DSA_TRUE= TEST_DSA_FALSE='#' else TEST_DSA_TRUE='#' TEST_DSA_FALSE= fi # Check whether --enable-ppp-tests was given. if test "${enable_ppp_tests+set}" = set; then : enableval=$enable_ppp_tests; enable_ppp_tests=yes fi # Check whether --enable-flask-tests was given. if test "${enable_flask_tests+set}" = set; then : enableval=$enable_flask_tests; else enable_flask_tests=yes fi if test "$ssl_library" = "GnuTLS" ; then OPENCONNECT_GNUTLS_TRUE= OPENCONNECT_GNUTLS_FALSE='#' else OPENCONNECT_GNUTLS_TRUE='#' OPENCONNECT_GNUTLS_FALSE= fi if test "$ssl_library" = "OpenSSL" ; then OPENCONNECT_OPENSSL_TRUE= OPENCONNECT_OPENSSL_FALSE='#' else OPENCONNECT_OPENSSL_TRUE='#' OPENCONNECT_OPENSSL_FALSE= fi if test "$esp" != "" ; then OPENCONNECT_ESP_TRUE= OPENCONNECT_ESP_FALSE='#' else OPENCONNECT_ESP_TRUE='#' OPENCONNECT_ESP_FALSE= fi if test "$dtls" != "" ; then OPENCONNECT_DTLS_TRUE= OPENCONNECT_DTLS_FALSE='#' else OPENCONNECT_DTLS_TRUE='#' OPENCONNECT_DTLS_FALSE= fi if test "$esp" != ""; then $as_echo "#define HAVE_ESP 1" >>confdefs.h fi if test "$dtls" != ""; then $as_echo "#define HAVE_DTLS 1" >>confdefs.h fi # Check whether --with-lz4 was given. if test "${with_lz4+set}" = set; then : withval=$with_lz4; test_for_lz4=$withval else test_for_lz4=yes fi lz4_pkg=no if test "$test_for_lz4" = yes; then pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBLZ4" >&5 $as_echo_n "checking for LIBLZ4... " >&6; } if test -n "$LIBLZ4_CFLAGS"; then pkg_cv_LIBLZ4_CFLAGS="$LIBLZ4_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"liblz4\""; } >&5 ($PKG_CONFIG --exists --print-errors "liblz4") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBLZ4_CFLAGS=`$PKG_CONFIG --cflags "liblz4" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBLZ4_LIBS"; then pkg_cv_LIBLZ4_LIBS="$LIBLZ4_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"liblz4\""; } >&5 ($PKG_CONFIG --exists --print-errors "liblz4") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBLZ4_LIBS=`$PKG_CONFIG --libs "liblz4" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBLZ4_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "liblz4" 2>&1` else LIBLZ4_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "liblz4" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBLZ4_PKG_ERRORS" >&5 { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** lz4 not found. *** " >&5 $as_echo "$as_me: WARNING: *** *** lz4 not found. *** " >&2;} elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** lz4 not found. *** " >&5 $as_echo "$as_me: WARNING: *** *** lz4 not found. *** " >&2;} else LIBLZ4_CFLAGS=$pkg_cv_LIBLZ4_CFLAGS LIBLZ4_LIBS=$pkg_cv_LIBLZ4_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBLZ4_PC=liblz4 $as_echo "#define HAVE_LZ4 /**/" >>confdefs.h lz4_pkg=yes oldLIBS="$LIBS" LIBS="$LIBLZ4_LIBS $LIBS" oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $LIBLZ4_CFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LZ4_compress_default()" >&5 $as_echo_n "checking for LZ4_compress_default()... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { LZ4_compress_default("", (char *)0, 0, 0); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } $as_echo "#define HAVE_LZ4_COMPRESS_DEFAULT /**/" >>confdefs.h else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" CFLAGS="$oldCFLAGS" fi fi # For some bizarre reason now that we use AM_ICONV, the mingw32 build doesn't # manage to set EGREP properly in the created ./libtool script. Make sure it's # found. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for egrep" >&5 $as_echo_n "checking for egrep... " >&6; } if ${ac_cv_path_EGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo a | $GREP -E '(a|b)' >/dev/null 2>&1 then ac_cv_path_EGREP="$GREP -E" else if test -z "$EGREP"; then ac_path_EGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in egrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_EGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_EGREP" || continue # Check for GNU ac_path_EGREP and select it if it is found. # Check for GNU $ac_path_EGREP case `"$ac_path_EGREP" --version 2>&1` in *GNU*) ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'EGREP' >> "conftest.nl" "$ac_path_EGREP" 'EGREP$' < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_EGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_EGREP="$ac_path_EGREP" ac_path_EGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_EGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_EGREP"; then as_fn_error $? "no acceptable egrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_EGREP=$EGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_EGREP" >&5 $as_echo "$ac_cv_path_EGREP" >&6; } EGREP="$ac_cv_path_EGREP" # Needs to happen after we default to static/shared libraries based on OpenSSL case `pwd` in *\ * | *\ *) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Libtool does not cope well with whitespace in \`pwd\`" >&5 $as_echo "$as_me: WARNING: Libtool does not cope well with whitespace in \`pwd\`" >&2;} ;; esac macro_version='2.4.6' macro_revision='2.4.6' ltmain=$ac_aux_dir/ltmain.sh # Backslashify metacharacters that are still active within # double-quoted strings. sed_quote_subst='s/\(["`$\\]\)/\\\1/g' # Same as above, but do not quote variable references. double_quote_subst='s/\(["`\\]\)/\\\1/g' # Sed substitution to delay expansion of an escaped shell variable in a # double_quote_subst'ed string. delay_variable_subst='s/\\\\\\\\\\\$/\\\\\\$/g' # Sed substitution to delay expansion of an escaped single quote. delay_single_quote_subst='s/'\''/'\'\\\\\\\'\''/g' # Sed substitution to avoid accidental globbing in evaled expressions no_glob_subst='s/\*/\\\*/g' ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to print strings" >&5 $as_echo_n "checking how to print strings... " >&6; } # Test print first, because it will be a builtin if present. if test "X`( print -r -- -n ) 2>/dev/null`" = X-n && \ test "X`print -r -- $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='print -r --' elif test "X`printf %s $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='printf %s\n' else # Use this function as a fallback that always works. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $1 _LTECHO_EOF' } ECHO='func_fallback_echo' fi # func_echo_all arg... # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "" } case $ECHO in printf*) { $as_echo "$as_me:${as_lineno-$LINENO}: result: printf" >&5 $as_echo "printf" >&6; } ;; print*) { $as_echo "$as_me:${as_lineno-$LINENO}: result: print -r" >&5 $as_echo "print -r" >&6; } ;; *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: cat" >&5 $as_echo "cat" >&6; } ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a sed that does not truncate output" >&5 $as_echo_n "checking for a sed that does not truncate output... " >&6; } if ${ac_cv_path_SED+:} false; then : $as_echo_n "(cached) " >&6 else ac_script=s/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb/ for ac_i in 1 2 3 4 5 6 7; do ac_script="$ac_script$as_nl$ac_script" done echo "$ac_script" 2>/dev/null | sed 99q >conftest.sed { ac_script=; unset ac_script;} if test -z "$SED"; then ac_path_SED_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in sed gsed; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_SED="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_SED" || continue # Check for GNU ac_path_SED and select it if it is found. # Check for GNU $ac_path_SED case `"$ac_path_SED" --version 2>&1` in *GNU*) ac_cv_path_SED="$ac_path_SED" ac_path_SED_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo '' >> "conftest.nl" "$ac_path_SED" -f conftest.sed < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_SED_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_SED="$ac_path_SED" ac_path_SED_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_SED_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_SED"; then as_fn_error $? "no acceptable sed could be found in \$PATH" "$LINENO" 5 fi else ac_cv_path_SED=$SED fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_SED" >&5 $as_echo "$ac_cv_path_SED" >&6; } SED="$ac_cv_path_SED" rm -f conftest.sed test -z "$SED" && SED=sed Xsed="$SED -e 1s/^X//" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for fgrep" >&5 $as_echo_n "checking for fgrep... " >&6; } if ${ac_cv_path_FGREP+:} false; then : $as_echo_n "(cached) " >&6 else if echo 'ab*c' | $GREP -F 'ab*c' >/dev/null 2>&1 then ac_cv_path_FGREP="$GREP -F" else if test -z "$FGREP"; then ac_path_FGREP_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH$PATH_SEPARATOR/usr/xpg4/bin do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in fgrep; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_FGREP="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_FGREP" || continue # Check for GNU ac_path_FGREP and select it if it is found. # Check for GNU $ac_path_FGREP case `"$ac_path_FGREP" --version 2>&1` in *GNU*) ac_cv_path_FGREP="$ac_path_FGREP" ac_path_FGREP_found=:;; *) ac_count=0 $as_echo_n 0123456789 >"conftest.in" while : do cat "conftest.in" "conftest.in" >"conftest.tmp" mv "conftest.tmp" "conftest.in" cp "conftest.in" "conftest.nl" $as_echo 'FGREP' >> "conftest.nl" "$ac_path_FGREP" FGREP < "conftest.nl" >"conftest.out" 2>/dev/null || break diff "conftest.out" "conftest.nl" >/dev/null 2>&1 || break as_fn_arith $ac_count + 1 && ac_count=$as_val if test $ac_count -gt ${ac_path_FGREP_max-0}; then # Best one so far, save it but keep looking for a better one ac_cv_path_FGREP="$ac_path_FGREP" ac_path_FGREP_max=$ac_count fi # 10*(2^10) chars as input seems more than enough test $ac_count -gt 10 && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out;; esac $ac_path_FGREP_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_FGREP"; then as_fn_error $? "no acceptable fgrep could be found in $PATH$PATH_SEPARATOR/usr/xpg4/bin" "$LINENO" 5 fi else ac_cv_path_FGREP=$FGREP fi fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_FGREP" >&5 $as_echo "$ac_cv_path_FGREP" >&6; } FGREP="$ac_cv_path_FGREP" test -z "$GREP" && GREP=grep # Check whether --with-gnu-ld was given. if test "${with_gnu_ld+set}" = set; then : withval=$with_gnu_ld; test no = "$withval" || with_gnu_ld=yes else with_gnu_ld=no fi ac_prog=ld if test yes = "$GCC"; then # Check if gcc -print-prog-name=ld gives a path. { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ld used by $CC" >&5 $as_echo_n "checking for ld used by $CC... " >&6; } case $host in *-*-mingw*) # gcc leaves a trailing carriage return, which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [\\/]* | ?:[\\/]*) re_direlt='/[^/][^/]*/\.\./' # Canonicalize the pathname of ld ac_prog=`$ECHO "$ac_prog"| $SED 's%\\\\%/%g'` while $ECHO "$ac_prog" | $GREP "$re_direlt" > /dev/null 2>&1; do ac_prog=`$ECHO $ac_prog| $SED "s%$re_direlt%/%"` done test -z "$LD" && LD=$ac_prog ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test yes = "$with_gnu_ld"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for GNU ld" >&5 $as_echo_n "checking for GNU ld... " >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for non-GNU ld" >&5 $as_echo_n "checking for non-GNU ld... " >&6; } fi if ${lt_cv_path_LD+:} false; then : $as_echo_n "(cached) " >&6 else if test -z "$LD"; then lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then lt_cv_path_LD=$ac_dir/$ac_prog # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$lt_cv_path_LD" -v 2>&1 &5 $as_echo "$LD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -z "$LD" && as_fn_error $? "no acceptable ld found in \$PATH" "$LINENO" 5 { $as_echo "$as_me:${as_lineno-$LINENO}: checking if the linker ($LD) is GNU ld" >&5 $as_echo_n "checking if the linker ($LD) is GNU ld... " >&6; } if ${lt_cv_prog_gnu_ld+:} false; then : $as_echo_n "(cached) " >&6 else # I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 &5 $as_echo "$lt_cv_prog_gnu_ld" >&6; } with_gnu_ld=$lt_cv_prog_gnu_ld { $as_echo "$as_me:${as_lineno-$LINENO}: checking for BSD- or MS-compatible name lister (nm)" >&5 $as_echo_n "checking for BSD- or MS-compatible name lister (nm)... " >&6; } if ${lt_cv_path_NM+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$NM"; then # Let the user override the test. lt_cv_path_NM=$NM else lt_nm_to_check=${ac_tool_prefix}nm if test -n "$ac_tool_prefix" && test "$build" = "$host"; then lt_nm_to_check="$lt_nm_to_check nm" fi for lt_tmp_nm in $lt_nm_to_check; do lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH /usr/ccs/bin/elf /usr/ccs/bin /usr/ucb /bin; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. tmp_nm=$ac_dir/$lt_tmp_nm if test -f "$tmp_nm" || test -f "$tmp_nm$ac_exeext"; then # Check to see if the nm accepts a BSD-compat flag. # Adding the 'sed 1q' prevents false positives on HP-UX, which says: # nm: unknown option "B" ignored # Tru64's nm complains that /dev/null is an invalid object file # MSYS converts /dev/null to NUL, MinGW nm treats NUL as empty case $build_os in mingw*) lt_bad_file=conftest.nm/nofile ;; *) lt_bad_file=/dev/null ;; esac case `"$tmp_nm" -B $lt_bad_file 2>&1 | sed '1q'` in *$lt_bad_file* | *'Invalid file or object type'*) lt_cv_path_NM="$tmp_nm -B" break 2 ;; *) case `"$tmp_nm" -p /dev/null 2>&1 | sed '1q'` in */dev/null*) lt_cv_path_NM="$tmp_nm -p" break 2 ;; *) lt_cv_path_NM=${lt_cv_path_NM="$tmp_nm"} # keep the first match, but continue # so that we can try to find one that supports BSD flags ;; esac ;; esac fi done IFS=$lt_save_ifs done : ${lt_cv_path_NM=no} fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_path_NM" >&5 $as_echo "$lt_cv_path_NM" >&6; } if test no != "$lt_cv_path_NM"; then NM=$lt_cv_path_NM else # Didn't find any BSD compatible name lister, look for dumpbin. if test -n "$DUMPBIN"; then : # Let the user override the test. else if test -n "$ac_tool_prefix"; then for ac_prog in dumpbin "link -dump" do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DUMPBIN+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DUMPBIN"; then ac_cv_prog_DUMPBIN="$DUMPBIN" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DUMPBIN="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DUMPBIN=$ac_cv_prog_DUMPBIN if test -n "$DUMPBIN"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DUMPBIN" >&5 $as_echo "$DUMPBIN" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$DUMPBIN" && break done fi if test -z "$DUMPBIN"; then ac_ct_DUMPBIN=$DUMPBIN for ac_prog in dumpbin "link -dump" do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DUMPBIN+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DUMPBIN"; then ac_cv_prog_ac_ct_DUMPBIN="$ac_ct_DUMPBIN" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DUMPBIN="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DUMPBIN=$ac_cv_prog_ac_ct_DUMPBIN if test -n "$ac_ct_DUMPBIN"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DUMPBIN" >&5 $as_echo "$ac_ct_DUMPBIN" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_DUMPBIN" && break done if test "x$ac_ct_DUMPBIN" = x; then DUMPBIN=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DUMPBIN=$ac_ct_DUMPBIN fi fi case `$DUMPBIN -symbols -headers /dev/null 2>&1 | sed '1q'` in *COFF*) DUMPBIN="$DUMPBIN -symbols -headers" ;; *) DUMPBIN=: ;; esac fi if test : != "$DUMPBIN"; then NM=$DUMPBIN fi fi test -z "$NM" && NM=nm { $as_echo "$as_me:${as_lineno-$LINENO}: checking the name lister ($NM) interface" >&5 $as_echo_n "checking the name lister ($NM) interface... " >&6; } if ${lt_cv_nm_interface+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_nm_interface="BSD nm" echo "int some_variable = 0;" > conftest.$ac_ext (eval echo "\"\$as_me:$LINENO: $ac_compile\"" >&5) (eval "$ac_compile" 2>conftest.err) cat conftest.err >&5 (eval echo "\"\$as_me:$LINENO: $NM \\\"conftest.$ac_objext\\\"\"" >&5) (eval "$NM \"conftest.$ac_objext\"" 2>conftest.err > conftest.out) cat conftest.err >&5 (eval echo "\"\$as_me:$LINENO: output\"" >&5) cat conftest.out >&5 if $GREP 'External.*some_variable' conftest.out > /dev/null; then lt_cv_nm_interface="MS dumpbin" fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_nm_interface" >&5 $as_echo "$lt_cv_nm_interface" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether ln -s works" >&5 $as_echo_n "checking whether ln -s works... " >&6; } LN_S=$as_ln_s if test "$LN_S" = "ln -s"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no, using $LN_S" >&5 $as_echo "no, using $LN_S" >&6; } fi # find the maximum length of command line arguments { $as_echo "$as_me:${as_lineno-$LINENO}: checking the maximum length of command line arguments" >&5 $as_echo_n "checking the maximum length of command line arguments... " >&6; } if ${lt_cv_sys_max_cmd_len+:} false; then : $as_echo_n "(cached) " >&6 else i=0 teststring=ABCD case $build_os in msdosdjgpp*) # On DJGPP, this test can blow up pretty badly due to problems in libc # (any single argument exceeding 2000 bytes causes a buffer overrun # during glob expansion). Even if it were fixed, the result of this # check would be larger than it should be. lt_cv_sys_max_cmd_len=12288; # 12K is about right ;; gnu*) # Under GNU Hurd, this test is not required because there is # no limit to the length of command line arguments. # Libtool will interpret -1 as no limit whatsoever lt_cv_sys_max_cmd_len=-1; ;; cygwin* | mingw* | cegcc*) # On Win9x/ME, this test blows up -- it succeeds, but takes # about 5 minutes as the teststring grows exponentially. # Worse, since 9x/ME are not pre-emptively multitasking, # you end up with a "frozen" computer, even though with patience # the test eventually succeeds (with a max line length of 256k). # Instead, let's just punt: use the minimum linelength reported by # all of the supported platforms: 8192 (on NT/2K/XP). lt_cv_sys_max_cmd_len=8192; ;; mint*) # On MiNT this can take a long time and run out of memory. lt_cv_sys_max_cmd_len=8192; ;; amigaos*) # On AmigaOS with pdksh, this test takes hours, literally. # So we just punt and use a minimum line length of 8192. lt_cv_sys_max_cmd_len=8192; ;; bitrig* | darwin* | dragonfly* | freebsd* | netbsd* | openbsd*) # This has been around since 386BSD, at least. Likely further. if test -x /sbin/sysctl; then lt_cv_sys_max_cmd_len=`/sbin/sysctl -n kern.argmax` elif test -x /usr/sbin/sysctl; then lt_cv_sys_max_cmd_len=`/usr/sbin/sysctl -n kern.argmax` else lt_cv_sys_max_cmd_len=65536 # usable default for all BSDs fi # And add a safety zone lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` ;; interix*) # We know the value 262144 and hardcode it with a safety zone (like BSD) lt_cv_sys_max_cmd_len=196608 ;; os2*) # The test takes a long time on OS/2. lt_cv_sys_max_cmd_len=8192 ;; osf*) # Dr. Hans Ekkehard Plesser reports seeing a kernel panic running configure # due to this test when exec_disable_arg_limit is 1 on Tru64. It is not # nice to cause kernel panics so lets avoid the loop below. # First set a reasonable default. lt_cv_sys_max_cmd_len=16384 # if test -x /sbin/sysconfig; then case `/sbin/sysconfig -q proc exec_disable_arg_limit` in *1*) lt_cv_sys_max_cmd_len=-1 ;; esac fi ;; sco3.2v5*) lt_cv_sys_max_cmd_len=102400 ;; sysv5* | sco5v6* | sysv4.2uw2*) kargmax=`grep ARG_MAX /etc/conf/cf.d/stune 2>/dev/null` if test -n "$kargmax"; then lt_cv_sys_max_cmd_len=`echo $kargmax | sed 's/.*[ ]//'` else lt_cv_sys_max_cmd_len=32768 fi ;; *) lt_cv_sys_max_cmd_len=`(getconf ARG_MAX) 2> /dev/null` if test -n "$lt_cv_sys_max_cmd_len" && \ test undefined != "$lt_cv_sys_max_cmd_len"; then lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` else # Make teststring a little bigger before we do anything with it. # a 1K string should be a reasonable start. for i in 1 2 3 4 5 6 7 8; do teststring=$teststring$teststring done SHELL=${SHELL-${CONFIG_SHELL-/bin/sh}} # If test is not a shell built-in, we'll probably end up computing a # maximum length that is only half of the actual maximum length, but # we can't tell. while { test X`env echo "$teststring$teststring" 2>/dev/null` \ = "X$teststring$teststring"; } >/dev/null 2>&1 && test 17 != "$i" # 1/2 MB should be enough do i=`expr $i + 1` teststring=$teststring$teststring done # Only check the string length outside the loop. lt_cv_sys_max_cmd_len=`expr "X$teststring" : ".*" 2>&1` teststring= # Add a significant safety factor because C++ compilers can tack on # massive amounts of additional arguments before passing them to the # linker. It appears as though 1/2 is a usable value. lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 2` fi ;; esac fi if test -n "$lt_cv_sys_max_cmd_len"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_sys_max_cmd_len" >&5 $as_echo "$lt_cv_sys_max_cmd_len" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: none" >&5 $as_echo "none" >&6; } fi max_cmd_len=$lt_cv_sys_max_cmd_len : ${CP="cp -f"} : ${MV="mv -f"} : ${RM="rm -f"} if ( (MAIL=60; unset MAIL) || exit) >/dev/null 2>&1; then lt_unset=unset else lt_unset=false fi # test EBCDIC or ASCII case `echo X|tr X '\101'` in A) # ASCII based system # \n is not interpreted correctly by Solaris 8 /usr/ucb/tr lt_SP2NL='tr \040 \012' lt_NL2SP='tr \015\012 \040\040' ;; *) # EBCDIC based system lt_SP2NL='tr \100 \n' lt_NL2SP='tr \r\n \100\100' ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to convert $build file names to $host format" >&5 $as_echo_n "checking how to convert $build file names to $host format... " >&6; } if ${lt_cv_to_host_file_cmd+:} false; then : $as_echo_n "(cached) " >&6 else case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_w32 ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_cygwin_to_w32 ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_w32 ;; esac ;; *-*-cygwin* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_cygwin ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_noop ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_cygwin ;; esac ;; * ) # unhandled hosts (and "normal" native builds) lt_cv_to_host_file_cmd=func_convert_file_noop ;; esac fi to_host_file_cmd=$lt_cv_to_host_file_cmd { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_to_host_file_cmd" >&5 $as_echo "$lt_cv_to_host_file_cmd" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to convert $build file names to toolchain format" >&5 $as_echo_n "checking how to convert $build file names to toolchain format... " >&6; } if ${lt_cv_to_tool_file_cmd+:} false; then : $as_echo_n "(cached) " >&6 else #assume ordinary cross tools, or native build. lt_cv_to_tool_file_cmd=func_convert_file_noop case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_tool_file_cmd=func_convert_file_msys_to_w32 ;; esac ;; esac fi to_tool_file_cmd=$lt_cv_to_tool_file_cmd { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_to_tool_file_cmd" >&5 $as_echo "$lt_cv_to_tool_file_cmd" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $LD option to reload object files" >&5 $as_echo_n "checking for $LD option to reload object files... " >&6; } if ${lt_cv_ld_reload_flag+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_reload_flag='-r' fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_reload_flag" >&5 $as_echo "$lt_cv_ld_reload_flag" >&6; } reload_flag=$lt_cv_ld_reload_flag case $reload_flag in "" | " "*) ;; *) reload_flag=" $reload_flag" ;; esac reload_cmds='$LD$reload_flag -o $output$reload_objs' case $host_os in cygwin* | mingw* | pw32* | cegcc*) if test yes != "$GCC"; then reload_cmds=false fi ;; darwin*) if test yes = "$GCC"; then reload_cmds='$LTCC $LTCFLAGS -nostdlib $wl-r -o $output$reload_objs' else reload_cmds='$LD$reload_flag -o $output$reload_objs' fi ;; esac if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}objdump", so it can be a program name with args. set dummy ${ac_tool_prefix}objdump; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OBJDUMP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OBJDUMP"; then ac_cv_prog_OBJDUMP="$OBJDUMP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OBJDUMP="${ac_tool_prefix}objdump" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OBJDUMP=$ac_cv_prog_OBJDUMP if test -n "$OBJDUMP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OBJDUMP" >&5 $as_echo "$OBJDUMP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OBJDUMP"; then ac_ct_OBJDUMP=$OBJDUMP # Extract the first word of "objdump", so it can be a program name with args. set dummy objdump; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OBJDUMP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OBJDUMP"; then ac_cv_prog_ac_ct_OBJDUMP="$ac_ct_OBJDUMP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OBJDUMP="objdump" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OBJDUMP=$ac_cv_prog_ac_ct_OBJDUMP if test -n "$ac_ct_OBJDUMP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OBJDUMP" >&5 $as_echo "$ac_ct_OBJDUMP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OBJDUMP" = x; then OBJDUMP="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OBJDUMP=$ac_ct_OBJDUMP fi else OBJDUMP="$ac_cv_prog_OBJDUMP" fi test -z "$OBJDUMP" && OBJDUMP=objdump { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to recognize dependent libraries" >&5 $as_echo_n "checking how to recognize dependent libraries... " >&6; } if ${lt_cv_deplibs_check_method+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_file_magic_cmd='$MAGIC_CMD' lt_cv_file_magic_test_file= lt_cv_deplibs_check_method='unknown' # Need to set the preceding variable on all platforms that support # interlibrary dependencies. # 'none' -- dependencies not supported. # 'unknown' -- same as none, but documents that we really don't know. # 'pass_all' -- all dependencies passed with no checks. # 'test_compile' -- check by making test program. # 'file_magic [[regex]]' -- check by looking for files in library path # that responds to the $file_magic_cmd with a given extended regex. # If you have 'file' or equivalent on your system and you're not sure # whether 'pass_all' will *always* work, you probably want this one. case $host_os in aix[4-9]*) lt_cv_deplibs_check_method=pass_all ;; beos*) lt_cv_deplibs_check_method=pass_all ;; bsdi[45]*) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib)' lt_cv_file_magic_cmd='/usr/bin/file -L' lt_cv_file_magic_test_file=/shlib/libc.so ;; cygwin*) # func_win32_libid is a shell function defined in ltmain.sh lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' ;; mingw* | pw32*) # Base MSYS/MinGW do not provide the 'file' command needed by # func_win32_libid shell function, so use a weaker test based on 'objdump', # unless we find 'file', for example because we are cross-compiling. if ( file / ) >/dev/null 2>&1; then lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' else # Keep this pattern in sync with the one in func_win32_libid. lt_cv_deplibs_check_method='file_magic file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' lt_cv_file_magic_cmd='$OBJDUMP -f' fi ;; cegcc*) # use the weaker test based on 'objdump'. See mingw*. lt_cv_deplibs_check_method='file_magic file format pe-arm-.*little(.*architecture: arm)?' lt_cv_file_magic_cmd='$OBJDUMP -f' ;; darwin* | rhapsody*) lt_cv_deplibs_check_method=pass_all ;; freebsd* | dragonfly*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then case $host_cpu in i*86 ) # Not sure whether the presence of OpenBSD here was a mistake. # Let's accept both of them until this is cleared up. lt_cv_deplibs_check_method='file_magic (FreeBSD|OpenBSD|DragonFly)/i[3-9]86 (compact )?demand paged shared library' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=`echo /usr/lib/libc.so.*` ;; esac else lt_cv_deplibs_check_method=pass_all fi ;; haiku*) lt_cv_deplibs_check_method=pass_all ;; hpux10.20* | hpux11*) lt_cv_file_magic_cmd=/usr/bin/file case $host_cpu in ia64*) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF-[0-9][0-9]) shared object file - IA64' lt_cv_file_magic_test_file=/usr/lib/hpux32/libc.so ;; hppa*64*) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF[ -][0-9][0-9])(-bit)?( [LM]SB)? shared object( file)?[, -]* PA-RISC [0-9]\.[0-9]' lt_cv_file_magic_test_file=/usr/lib/pa20_64/libc.sl ;; *) lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|PA-RISC[0-9]\.[0-9]) shared library' lt_cv_file_magic_test_file=/usr/lib/libc.sl ;; esac ;; interix[3-9]*) # PIC code is broken on Interix 3.x, that's why |\.a not |_pic\.a here lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so|\.a)$' ;; irix5* | irix6* | nonstopux*) case $LD in *-32|*"-32 ") libmagic=32-bit;; *-n32|*"-n32 ") libmagic=N32;; *-64|*"-64 ") libmagic=64-bit;; *) libmagic=never-match;; esac lt_cv_deplibs_check_method=pass_all ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) lt_cv_deplibs_check_method=pass_all ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so|_pic\.a)$' fi ;; newos6*) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (executable|dynamic lib)' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=/usr/lib/libnls.so ;; *nto* | *qnx*) lt_cv_deplibs_check_method=pass_all ;; openbsd* | bitrig*) if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|\.so|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[^/]+(\.so\.[0-9]+\.[0-9]+|_pic\.a)$' fi ;; osf3* | osf4* | osf5*) lt_cv_deplibs_check_method=pass_all ;; rdos*) lt_cv_deplibs_check_method=pass_all ;; solaris*) lt_cv_deplibs_check_method=pass_all ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) lt_cv_deplibs_check_method=pass_all ;; sysv4 | sysv4.3*) case $host_vendor in motorola) lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [ML]SB (shared object|dynamic lib) M[0-9][0-9]* Version [0-9]' lt_cv_file_magic_test_file=`echo /usr/lib/libc.so*` ;; ncr) lt_cv_deplibs_check_method=pass_all ;; sequent) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method='file_magic ELF [0-9][0-9]*-bit [LM]SB (shared object|dynamic lib )' ;; sni) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method="file_magic ELF [0-9][0-9]*-bit [LM]SB dynamic lib" lt_cv_file_magic_test_file=/lib/libc.so ;; siemens) lt_cv_deplibs_check_method=pass_all ;; pc) lt_cv_deplibs_check_method=pass_all ;; esac ;; tpf*) lt_cv_deplibs_check_method=pass_all ;; os2*) lt_cv_deplibs_check_method=pass_all ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_deplibs_check_method" >&5 $as_echo "$lt_cv_deplibs_check_method" >&6; } file_magic_glob= want_nocaseglob=no if test "$build" = "$host"; then case $host_os in mingw* | pw32*) if ( shopt | grep nocaseglob ) >/dev/null 2>&1; then want_nocaseglob=yes else file_magic_glob=`echo aAbBcCdDeEfFgGhHiIjJkKlLmMnNoOpPqQrRsStTuUvVwWxXyYzZ | $SED -e "s/\(..\)/s\/[\1]\/[\1]\/g;/g"` fi ;; esac fi file_magic_cmd=$lt_cv_file_magic_cmd deplibs_check_method=$lt_cv_deplibs_check_method test -z "$deplibs_check_method" && deplibs_check_method=unknown if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}dlltool", so it can be a program name with args. set dummy ${ac_tool_prefix}dlltool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DLLTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DLLTOOL"; then ac_cv_prog_DLLTOOL="$DLLTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DLLTOOL="${ac_tool_prefix}dlltool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DLLTOOL=$ac_cv_prog_DLLTOOL if test -n "$DLLTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DLLTOOL" >&5 $as_echo "$DLLTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_DLLTOOL"; then ac_ct_DLLTOOL=$DLLTOOL # Extract the first word of "dlltool", so it can be a program name with args. set dummy dlltool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DLLTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DLLTOOL"; then ac_cv_prog_ac_ct_DLLTOOL="$ac_ct_DLLTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DLLTOOL="dlltool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DLLTOOL=$ac_cv_prog_ac_ct_DLLTOOL if test -n "$ac_ct_DLLTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DLLTOOL" >&5 $as_echo "$ac_ct_DLLTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_DLLTOOL" = x; then DLLTOOL="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DLLTOOL=$ac_ct_DLLTOOL fi else DLLTOOL="$ac_cv_prog_DLLTOOL" fi test -z "$DLLTOOL" && DLLTOOL=dlltool { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to associate runtime and link libraries" >&5 $as_echo_n "checking how to associate runtime and link libraries... " >&6; } if ${lt_cv_sharedlib_from_linklib_cmd+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_sharedlib_from_linklib_cmd='unknown' case $host_os in cygwin* | mingw* | pw32* | cegcc*) # two different shell functions defined in ltmain.sh; # decide which one to use based on capabilities of $DLLTOOL case `$DLLTOOL --help 2>&1` in *--identify-strict*) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib ;; *) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib_fallback ;; esac ;; *) # fallback: assume linklib IS sharedlib lt_cv_sharedlib_from_linklib_cmd=$ECHO ;; esac fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_sharedlib_from_linklib_cmd" >&5 $as_echo "$lt_cv_sharedlib_from_linklib_cmd" >&6; } sharedlib_from_linklib_cmd=$lt_cv_sharedlib_from_linklib_cmd test -z "$sharedlib_from_linklib_cmd" && sharedlib_from_linklib_cmd=$ECHO if test -n "$ac_tool_prefix"; then for ac_prog in ar do # Extract the first word of "$ac_tool_prefix$ac_prog", so it can be a program name with args. set dummy $ac_tool_prefix$ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_AR+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$AR"; then ac_cv_prog_AR="$AR" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_AR="$ac_tool_prefix$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi AR=$ac_cv_prog_AR if test -n "$AR"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $AR" >&5 $as_echo "$AR" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$AR" && break done fi if test -z "$AR"; then ac_ct_AR=$AR for ac_prog in ar do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_AR+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_AR"; then ac_cv_prog_ac_ct_AR="$ac_ct_AR" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_AR="$ac_prog" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_AR=$ac_cv_prog_ac_ct_AR if test -n "$ac_ct_AR"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_AR" >&5 $as_echo "$ac_ct_AR" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$ac_ct_AR" && break done if test "x$ac_ct_AR" = x; then AR="false" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac AR=$ac_ct_AR fi fi : ${AR=ar} : ${AR_FLAGS=cru} { $as_echo "$as_me:${as_lineno-$LINENO}: checking for archiver @FILE support" >&5 $as_echo_n "checking for archiver @FILE support... " >&6; } if ${lt_cv_ar_at_file+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ar_at_file=no cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : echo conftest.$ac_objext > conftest.lst lt_ar_try='$AR $AR_FLAGS libconftest.a @conftest.lst >&5' { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$lt_ar_try\""; } >&5 (eval $lt_ar_try) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if test 0 -eq "$ac_status"; then # Ensure the archiver fails upon bogus file names. rm -f conftest.$ac_objext libconftest.a { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$lt_ar_try\""; } >&5 (eval $lt_ar_try) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } if test 0 -ne "$ac_status"; then lt_cv_ar_at_file=@ fi fi rm -f conftest.* libconftest.a fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ar_at_file" >&5 $as_echo "$lt_cv_ar_at_file" >&6; } if test no = "$lt_cv_ar_at_file"; then archiver_list_spec= else archiver_list_spec=$lt_cv_ar_at_file fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}strip", so it can be a program name with args. set dummy ${ac_tool_prefix}strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$STRIP"; then ac_cv_prog_STRIP="$STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_STRIP="${ac_tool_prefix}strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi STRIP=$ac_cv_prog_STRIP if test -n "$STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $STRIP" >&5 $as_echo "$STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_STRIP"; then ac_ct_STRIP=$STRIP # Extract the first word of "strip", so it can be a program name with args. set dummy strip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_STRIP+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_STRIP"; then ac_cv_prog_ac_ct_STRIP="$ac_ct_STRIP" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_STRIP="strip" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_STRIP=$ac_cv_prog_ac_ct_STRIP if test -n "$ac_ct_STRIP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_STRIP" >&5 $as_echo "$ac_ct_STRIP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_STRIP" = x; then STRIP=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac STRIP=$ac_ct_STRIP fi else STRIP="$ac_cv_prog_STRIP" fi test -z "$STRIP" && STRIP=: if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}ranlib", so it can be a program name with args. set dummy ${ac_tool_prefix}ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$RANLIB"; then ac_cv_prog_RANLIB="$RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_RANLIB="${ac_tool_prefix}ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi RANLIB=$ac_cv_prog_RANLIB if test -n "$RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $RANLIB" >&5 $as_echo "$RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_RANLIB"; then ac_ct_RANLIB=$RANLIB # Extract the first word of "ranlib", so it can be a program name with args. set dummy ranlib; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_RANLIB+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_RANLIB"; then ac_cv_prog_ac_ct_RANLIB="$ac_ct_RANLIB" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_RANLIB="ranlib" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_RANLIB=$ac_cv_prog_ac_ct_RANLIB if test -n "$ac_ct_RANLIB"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_RANLIB" >&5 $as_echo "$ac_ct_RANLIB" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_RANLIB" = x; then RANLIB=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac RANLIB=$ac_ct_RANLIB fi else RANLIB="$ac_cv_prog_RANLIB" fi test -z "$RANLIB" && RANLIB=: # Determine commands to create old-style static archives. old_archive_cmds='$AR $AR_FLAGS $oldlib$oldobjs' old_postinstall_cmds='chmod 644 $oldlib' old_postuninstall_cmds= if test -n "$RANLIB"; then case $host_os in bitrig* | openbsd*) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB -t \$tool_oldlib" ;; *) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB \$tool_oldlib" ;; esac old_archive_cmds="$old_archive_cmds~\$RANLIB \$tool_oldlib" fi case $host_os in darwin*) lock_old_archive_extraction=yes ;; *) lock_old_archive_extraction=no ;; esac # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC # Check for command to grab the raw symbol name followed by C symbol from nm. { $as_echo "$as_me:${as_lineno-$LINENO}: checking command to parse $NM output from $compiler object" >&5 $as_echo_n "checking command to parse $NM output from $compiler object... " >&6; } if ${lt_cv_sys_global_symbol_pipe+:} false; then : $as_echo_n "(cached) " >&6 else # These are sane defaults that work on at least a few old systems. # [They come from Ultrix. What could be older than Ultrix?!! ;)] # Character class describing NM global symbol codes. symcode='[BCDEGRST]' # Regexp to match symbols that can be accessed directly from C. sympat='\([_A-Za-z][_A-Za-z0-9]*\)' # Define system-specific variables. case $host_os in aix*) symcode='[BCDT]' ;; cygwin* | mingw* | pw32* | cegcc*) symcode='[ABCDGISTW]' ;; hpux*) if test ia64 = "$host_cpu"; then symcode='[ABCDEGRST]' fi ;; irix* | nonstopux*) symcode='[BCDEGRST]' ;; osf*) symcode='[BCDEGQRST]' ;; solaris*) symcode='[BDRT]' ;; sco3.2v5*) symcode='[DT]' ;; sysv4.2uw2*) symcode='[DT]' ;; sysv5* | sco5v6* | unixware* | OpenUNIX*) symcode='[ABDT]' ;; sysv4) symcode='[DFNSTU]' ;; esac # If we're using GNU nm, then use its standard symbol codes. case `$NM -V 2>&1` in *GNU* | *'with BFD'*) symcode='[ABCDGIRSTW]' ;; esac if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Gets list of data symbols to import. lt_cv_sys_global_symbol_to_import="sed -n -e 's/^I .* \(.*\)$/\1/p'" # Adjust the below global symbol transforms to fixup imported variables. lt_cdecl_hook=" -e 's/^I .* \(.*\)$/extern __declspec(dllimport) char \1;/p'" lt_c_name_hook=" -e 's/^I .* \(.*\)$/ {\"\1\", (void *) 0},/p'" lt_c_name_lib_hook="\ -e 's/^I .* \(lib.*\)$/ {\"\1\", (void *) 0},/p'\ -e 's/^I .* \(.*\)$/ {\"lib\1\", (void *) 0},/p'" else # Disable hooks by default. lt_cv_sys_global_symbol_to_import= lt_cdecl_hook= lt_c_name_hook= lt_c_name_lib_hook= fi # Transform an extracted symbol line into a proper C declaration. # Some systems (esp. on ia64) link data and code symbols differently, # so use this general approach. lt_cv_sys_global_symbol_to_cdecl="sed -n"\ $lt_cdecl_hook\ " -e 's/^T .* \(.*\)$/extern int \1();/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/extern char \1;/p'" # Transform an extracted symbol line into symbol name and symbol address lt_cv_sys_global_symbol_to_c_name_address="sed -n"\ $lt_c_name_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/p'" # Transform an extracted symbol line into symbol name with lib prefix and # symbol address. lt_cv_sys_global_symbol_to_c_name_address_lib_prefix="sed -n"\ $lt_c_name_lib_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(lib.*\)$/ {\"\1\", (void *) \&\1},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"lib\1\", (void *) \&\1},/p'" # Handle CRLF in mingw tool chain opt_cr= case $build_os in mingw*) opt_cr=`$ECHO 'x\{0,1\}' | tr x '\015'` # option cr in regexp ;; esac # Try without a prefix underscore, then with it. for ac_symprfx in "" "_"; do # Transform symcode, sympat, and symprfx into a raw symbol and a C symbol. symxfrm="\\1 $ac_symprfx\\2 \\2" # Write the raw and C identifiers. if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Fake it for dumpbin and say T for any non-static function, # D for any global variable and I for any imported variable. # Also find C++ and __fastcall symbols from MSVC++, # which start with @ or ?. lt_cv_sys_global_symbol_pipe="$AWK '"\ " {last_section=section; section=\$ 3};"\ " /^COFF SYMBOL TABLE/{for(i in hide) delete hide[i]};"\ " /Section length .*#relocs.*(pick any)/{hide[last_section]=1};"\ " /^ *Symbol name *: /{split(\$ 0,sn,\":\"); si=substr(sn[2],2)};"\ " /^ *Type *: code/{print \"T\",si,substr(si,length(prfx))};"\ " /^ *Type *: data/{print \"I\",si,substr(si,length(prfx))};"\ " \$ 0!~/External *\|/{next};"\ " / 0+ UNDEF /{next}; / UNDEF \([^|]\)*()/{next};"\ " {if(hide[section]) next};"\ " {f=\"D\"}; \$ 0~/\(\).*\|/{f=\"T\"};"\ " {split(\$ 0,a,/\||\r/); split(a[2],s)};"\ " s[1]~/^[@?]/{print f,s[1],s[1]; next};"\ " s[1]~prfx {split(s[1],t,\"@\"); print f,t[1],substr(t[1],length(prfx))}"\ " ' prfx=^$ac_symprfx" else lt_cv_sys_global_symbol_pipe="sed -n -e 's/^.*[ ]\($symcode$symcode*\)[ ][ ]*$ac_symprfx$sympat$opt_cr$/$symxfrm/p'" fi lt_cv_sys_global_symbol_pipe="$lt_cv_sys_global_symbol_pipe | sed '/ __gnu_lto/d'" # Check to see that the pipe works correctly. pipe_works=no rm -f conftest* cat > conftest.$ac_ext <<_LT_EOF #ifdef __cplusplus extern "C" { #endif char nm_test_var; void nm_test_func(void); void nm_test_func(void){} #ifdef __cplusplus } #endif int main(){nm_test_var='a';nm_test_func();return(0);} _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then # Now try to grab the symbols. nlist=conftest.nm if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist\""; } >&5 (eval $NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s "$nlist"; then # Try sorting and uniquifying the output. if sort "$nlist" | uniq > "$nlist"T; then mv -f "$nlist"T "$nlist" else rm -f "$nlist"T fi # Make sure that we snagged all the symbols we need. if $GREP ' nm_test_var$' "$nlist" >/dev/null; then if $GREP ' nm_test_func$' "$nlist" >/dev/null; then cat <<_LT_EOF > conftest.$ac_ext /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined _WIN32 || defined __CYGWIN__ || defined _WIN32_WCE /* DATA imports from DLLs on WIN32 can't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT_DLSYM_CONST #elif defined __osf__ /* This system does not cope well with relocations in const data. */ # define LT_DLSYM_CONST #else # define LT_DLSYM_CONST const #endif #ifdef __cplusplus extern "C" { #endif _LT_EOF # Now generate the symbol file. eval "$lt_cv_sys_global_symbol_to_cdecl"' < "$nlist" | $GREP -v main >> conftest.$ac_ext' cat <<_LT_EOF >> conftest.$ac_ext /* The mapping between symbol names and symbols. */ LT_DLSYM_CONST struct { const char *name; void *address; } lt__PROGRAM__LTX_preloaded_symbols[] = { { "@PROGRAM@", (void *) 0 }, _LT_EOF $SED "s/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/" < "$nlist" | $GREP -v main >> conftest.$ac_ext cat <<\_LT_EOF >> conftest.$ac_ext {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt__PROGRAM__LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif _LT_EOF # Now try linking the two files. mv conftest.$ac_objext conftstm.$ac_objext lt_globsym_save_LIBS=$LIBS lt_globsym_save_CFLAGS=$CFLAGS LIBS=conftstm.$ac_objext CFLAGS="$CFLAGS$lt_prog_compiler_no_builtin_flag" if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s conftest$ac_exeext; then pipe_works=yes fi LIBS=$lt_globsym_save_LIBS CFLAGS=$lt_globsym_save_CFLAGS else echo "cannot find nm_test_func in $nlist" >&5 fi else echo "cannot find nm_test_var in $nlist" >&5 fi else echo "cannot run $lt_cv_sys_global_symbol_pipe" >&5 fi else echo "$progname: failed program was:" >&5 cat conftest.$ac_ext >&5 fi rm -rf conftest* conftst* # Do not use the global_symbol_pipe unless it works. if test yes = "$pipe_works"; then break else lt_cv_sys_global_symbol_pipe= fi done fi if test -z "$lt_cv_sys_global_symbol_pipe"; then lt_cv_sys_global_symbol_to_cdecl= fi if test -z "$lt_cv_sys_global_symbol_pipe$lt_cv_sys_global_symbol_to_cdecl"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: failed" >&5 $as_echo "failed" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: ok" >&5 $as_echo "ok" >&6; } fi # Response file support. if test "$lt_cv_nm_interface" = "MS dumpbin"; then nm_file_list_spec='@' elif $NM --help 2>/dev/null | grep '[@]FILE' >/dev/null; then nm_file_list_spec='@' fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for sysroot" >&5 $as_echo_n "checking for sysroot... " >&6; } # Check whether --with-sysroot was given. if test "${with_sysroot+set}" = set; then : withval=$with_sysroot; else with_sysroot=no fi lt_sysroot= case $with_sysroot in #( yes) if test yes = "$GCC"; then lt_sysroot=`$CC --print-sysroot 2>/dev/null` fi ;; #( /*) lt_sysroot=`echo "$with_sysroot" | sed -e "$sed_quote_subst"` ;; #( no|'') ;; #( *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: $with_sysroot" >&5 $as_echo "$with_sysroot" >&6; } as_fn_error $? "The sysroot must be an absolute path." "$LINENO" 5 ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${lt_sysroot:-no}" >&5 $as_echo "${lt_sysroot:-no}" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for a working dd" >&5 $as_echo_n "checking for a working dd... " >&6; } if ${ac_cv_path_lt_DD+:} false; then : $as_echo_n "(cached) " >&6 else printf 0123456789abcdef0123456789abcdef >conftest.i cat conftest.i conftest.i >conftest2.i : ${lt_DD:=$DD} if test -z "$lt_DD"; then ac_path_lt_DD_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in dd; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_lt_DD="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_lt_DD" || continue if "$ac_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && ac_cv_path_lt_DD="$ac_path_lt_DD" ac_path_lt_DD_found=: fi $ac_path_lt_DD_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_lt_DD"; then : fi else ac_cv_path_lt_DD=$lt_DD fi rm -f conftest.i conftest2.i conftest.out fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_path_lt_DD" >&5 $as_echo "$ac_cv_path_lt_DD" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to truncate binary pipes" >&5 $as_echo_n "checking how to truncate binary pipes... " >&6; } if ${lt_cv_truncate_bin+:} false; then : $as_echo_n "(cached) " >&6 else printf 0123456789abcdef0123456789abcdef >conftest.i cat conftest.i conftest.i >conftest2.i lt_cv_truncate_bin= if "$ac_cv_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && lt_cv_truncate_bin="$ac_cv_path_lt_DD bs=4096 count=1" fi rm -f conftest.i conftest2.i conftest.out test -z "$lt_cv_truncate_bin" && lt_cv_truncate_bin="$SED -e 4q" fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_truncate_bin" >&5 $as_echo "$lt_cv_truncate_bin" >&6; } # Calculate cc_basename. Skip known compiler wrappers and cross-prefix. func_cc_basename () { for cc_temp in $*""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done func_cc_basename_result=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` } # Check whether --enable-libtool-lock was given. if test "${enable_libtool_lock+set}" = set; then : enableval=$enable_libtool_lock; fi test no = "$enable_libtool_lock" || enable_libtool_lock=yes # Some flags need to be propagated to the compiler or linker for good # libtool support. case $host in ia64-*-hpux*) # Find out what ABI is being produced by ac_compile, and set mode # options accordingly. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.$ac_objext` in *ELF-32*) HPUX_IA64_MODE=32 ;; *ELF-64*) HPUX_IA64_MODE=64 ;; esac fi rm -rf conftest* ;; *-*-irix6*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '#line '$LINENO' "configure"' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then if test yes = "$lt_cv_prog_gnu_ld"; then case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -melf32bsmip" ;; *N32*) LD="${LD-ld} -melf32bmipn32" ;; *64-bit*) LD="${LD-ld} -melf64bmip" ;; esac else case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -32" ;; *N32*) LD="${LD-ld} -n32" ;; *64-bit*) LD="${LD-ld} -64" ;; esac fi fi rm -rf conftest* ;; mips64*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '#line '$LINENO' "configure"' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then emul=elf case `/usr/bin/file conftest.$ac_objext` in *32-bit*) emul="${emul}32" ;; *64-bit*) emul="${emul}64" ;; esac case `/usr/bin/file conftest.$ac_objext` in *MSB*) emul="${emul}btsmip" ;; *LSB*) emul="${emul}ltsmip" ;; esac case `/usr/bin/file conftest.$ac_objext` in *N32*) emul="${emul}n32" ;; esac LD="${LD-ld} -m $emul" fi rm -rf conftest* ;; x86_64-*kfreebsd*-gnu|x86_64-*linux*|powerpc*-*linux*| \ s390*-*linux*|s390*-*tpf*|sparc*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. Note that the listed cases only cover the # situations where additional linker options are needed (such as when # doing 32-bit compilation for a host where ld defaults to 64-bit, or # vice versa); the common cases where no linker options are needed do # not appear in the list. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.o` in *32-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_i386_fbsd" ;; x86_64-*linux*) case `/usr/bin/file conftest.o` in *x86-64*) LD="${LD-ld} -m elf32_x86_64" ;; *) LD="${LD-ld} -m elf_i386" ;; esac ;; powerpc64le-*linux*) LD="${LD-ld} -m elf32lppclinux" ;; powerpc64-*linux*) LD="${LD-ld} -m elf32ppclinux" ;; s390x-*linux*) LD="${LD-ld} -m elf_s390" ;; sparc64-*linux*) LD="${LD-ld} -m elf32_sparc" ;; esac ;; *64-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_x86_64_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_x86_64" ;; powerpcle-*linux*) LD="${LD-ld} -m elf64lppc" ;; powerpc-*linux*) LD="${LD-ld} -m elf64ppc" ;; s390*-*linux*|s390*-*tpf*) LD="${LD-ld} -m elf64_s390" ;; sparc*-*linux*) LD="${LD-ld} -m elf64_sparc" ;; esac ;; esac fi rm -rf conftest* ;; *-*-sco3.2v5*) # On SCO OpenServer 5, we need -belf to get full-featured binaries. SAVE_CFLAGS=$CFLAGS CFLAGS="$CFLAGS -belf" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the C compiler needs -belf" >&5 $as_echo_n "checking whether the C compiler needs -belf... " >&6; } if ${lt_cv_cc_needs_belf+:} false; then : $as_echo_n "(cached) " >&6 else ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_cc_needs_belf=yes else lt_cv_cc_needs_belf=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_cc_needs_belf" >&5 $as_echo "$lt_cv_cc_needs_belf" >&6; } if test yes != "$lt_cv_cc_needs_belf"; then # this is probably gcc 2.8.0, egcs 1.0 or newer; no need for -belf CFLAGS=$SAVE_CFLAGS fi ;; *-*solaris*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo 'int i;' > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then case `/usr/bin/file conftest.o` in *64-bit*) case $lt_cv_prog_gnu_ld in yes*) case $host in i?86-*-solaris*|x86_64-*-solaris*) LD="${LD-ld} -m elf_x86_64" ;; sparc*-*-solaris*) LD="${LD-ld} -m elf64_sparc" ;; esac # GNU ld 2.21 introduced _sol2 emulations. Use them if available. if ${LD-ld} -V | grep _sol2 >/dev/null 2>&1; then LD=${LD-ld}_sol2 fi ;; *) if ${LD-ld} -64 -r -o conftest2.o conftest.o >/dev/null 2>&1; then LD="${LD-ld} -64" fi ;; esac ;; esac fi rm -rf conftest* ;; esac need_locks=$enable_libtool_lock if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}mt", so it can be a program name with args. set dummy ${ac_tool_prefix}mt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_MANIFEST_TOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$MANIFEST_TOOL"; then ac_cv_prog_MANIFEST_TOOL="$MANIFEST_TOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_MANIFEST_TOOL="${ac_tool_prefix}mt" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi MANIFEST_TOOL=$ac_cv_prog_MANIFEST_TOOL if test -n "$MANIFEST_TOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MANIFEST_TOOL" >&5 $as_echo "$MANIFEST_TOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_MANIFEST_TOOL"; then ac_ct_MANIFEST_TOOL=$MANIFEST_TOOL # Extract the first word of "mt", so it can be a program name with args. set dummy mt; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_MANIFEST_TOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_MANIFEST_TOOL"; then ac_cv_prog_ac_ct_MANIFEST_TOOL="$ac_ct_MANIFEST_TOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_MANIFEST_TOOL="mt" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_MANIFEST_TOOL=$ac_cv_prog_ac_ct_MANIFEST_TOOL if test -n "$ac_ct_MANIFEST_TOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_MANIFEST_TOOL" >&5 $as_echo "$ac_ct_MANIFEST_TOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_MANIFEST_TOOL" = x; then MANIFEST_TOOL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac MANIFEST_TOOL=$ac_ct_MANIFEST_TOOL fi else MANIFEST_TOOL="$ac_cv_prog_MANIFEST_TOOL" fi test -z "$MANIFEST_TOOL" && MANIFEST_TOOL=mt { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $MANIFEST_TOOL is a manifest tool" >&5 $as_echo_n "checking if $MANIFEST_TOOL is a manifest tool... " >&6; } if ${lt_cv_path_mainfest_tool+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_path_mainfest_tool=no echo "$as_me:$LINENO: $MANIFEST_TOOL '-?'" >&5 $MANIFEST_TOOL '-?' 2>conftest.err > conftest.out cat conftest.err >&5 if $GREP 'Manifest Tool' conftest.out > /dev/null; then lt_cv_path_mainfest_tool=yes fi rm -f conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_path_mainfest_tool" >&5 $as_echo "$lt_cv_path_mainfest_tool" >&6; } if test yes != "$lt_cv_path_mainfest_tool"; then MANIFEST_TOOL=: fi case $host_os in rhapsody* | darwin*) if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}dsymutil", so it can be a program name with args. set dummy ${ac_tool_prefix}dsymutil; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_DSYMUTIL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$DSYMUTIL"; then ac_cv_prog_DSYMUTIL="$DSYMUTIL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_DSYMUTIL="${ac_tool_prefix}dsymutil" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi DSYMUTIL=$ac_cv_prog_DSYMUTIL if test -n "$DSYMUTIL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $DSYMUTIL" >&5 $as_echo "$DSYMUTIL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_DSYMUTIL"; then ac_ct_DSYMUTIL=$DSYMUTIL # Extract the first word of "dsymutil", so it can be a program name with args. set dummy dsymutil; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_DSYMUTIL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_DSYMUTIL"; then ac_cv_prog_ac_ct_DSYMUTIL="$ac_ct_DSYMUTIL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_DSYMUTIL="dsymutil" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_DSYMUTIL=$ac_cv_prog_ac_ct_DSYMUTIL if test -n "$ac_ct_DSYMUTIL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_DSYMUTIL" >&5 $as_echo "$ac_ct_DSYMUTIL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_DSYMUTIL" = x; then DSYMUTIL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac DSYMUTIL=$ac_ct_DSYMUTIL fi else DSYMUTIL="$ac_cv_prog_DSYMUTIL" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}nmedit", so it can be a program name with args. set dummy ${ac_tool_prefix}nmedit; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_NMEDIT+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$NMEDIT"; then ac_cv_prog_NMEDIT="$NMEDIT" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_NMEDIT="${ac_tool_prefix}nmedit" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi NMEDIT=$ac_cv_prog_NMEDIT if test -n "$NMEDIT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $NMEDIT" >&5 $as_echo "$NMEDIT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_NMEDIT"; then ac_ct_NMEDIT=$NMEDIT # Extract the first word of "nmedit", so it can be a program name with args. set dummy nmedit; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_NMEDIT+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_NMEDIT"; then ac_cv_prog_ac_ct_NMEDIT="$ac_ct_NMEDIT" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_NMEDIT="nmedit" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_NMEDIT=$ac_cv_prog_ac_ct_NMEDIT if test -n "$ac_ct_NMEDIT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_NMEDIT" >&5 $as_echo "$ac_ct_NMEDIT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_NMEDIT" = x; then NMEDIT=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac NMEDIT=$ac_ct_NMEDIT fi else NMEDIT="$ac_cv_prog_NMEDIT" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}lipo", so it can be a program name with args. set dummy ${ac_tool_prefix}lipo; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_LIPO+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$LIPO"; then ac_cv_prog_LIPO="$LIPO" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_LIPO="${ac_tool_prefix}lipo" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi LIPO=$ac_cv_prog_LIPO if test -n "$LIPO"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $LIPO" >&5 $as_echo "$LIPO" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_LIPO"; then ac_ct_LIPO=$LIPO # Extract the first word of "lipo", so it can be a program name with args. set dummy lipo; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_LIPO+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_LIPO"; then ac_cv_prog_ac_ct_LIPO="$ac_ct_LIPO" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_LIPO="lipo" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_LIPO=$ac_cv_prog_ac_ct_LIPO if test -n "$ac_ct_LIPO"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_LIPO" >&5 $as_echo "$ac_ct_LIPO" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_LIPO" = x; then LIPO=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac LIPO=$ac_ct_LIPO fi else LIPO="$ac_cv_prog_LIPO" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}otool", so it can be a program name with args. set dummy ${ac_tool_prefix}otool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OTOOL"; then ac_cv_prog_OTOOL="$OTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OTOOL="${ac_tool_prefix}otool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OTOOL=$ac_cv_prog_OTOOL if test -n "$OTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OTOOL" >&5 $as_echo "$OTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OTOOL"; then ac_ct_OTOOL=$OTOOL # Extract the first word of "otool", so it can be a program name with args. set dummy otool; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OTOOL+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OTOOL"; then ac_cv_prog_ac_ct_OTOOL="$ac_ct_OTOOL" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OTOOL="otool" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OTOOL=$ac_cv_prog_ac_ct_OTOOL if test -n "$ac_ct_OTOOL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OTOOL" >&5 $as_echo "$ac_ct_OTOOL" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OTOOL" = x; then OTOOL=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OTOOL=$ac_ct_OTOOL fi else OTOOL="$ac_cv_prog_OTOOL" fi if test -n "$ac_tool_prefix"; then # Extract the first word of "${ac_tool_prefix}otool64", so it can be a program name with args. set dummy ${ac_tool_prefix}otool64; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_OTOOL64+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$OTOOL64"; then ac_cv_prog_OTOOL64="$OTOOL64" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_OTOOL64="${ac_tool_prefix}otool64" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi OTOOL64=$ac_cv_prog_OTOOL64 if test -n "$OTOOL64"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $OTOOL64" >&5 $as_echo "$OTOOL64" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test -z "$ac_cv_prog_OTOOL64"; then ac_ct_OTOOL64=$OTOOL64 # Extract the first word of "otool64", so it can be a program name with args. set dummy otool64; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_prog_ac_ct_OTOOL64+:} false; then : $as_echo_n "(cached) " >&6 else if test -n "$ac_ct_OTOOL64"; then ac_cv_prog_ac_ct_OTOOL64="$ac_ct_OTOOL64" # Let the user override the test. else as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_prog_ac_ct_OTOOL64="otool64" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS fi fi ac_ct_OTOOL64=$ac_cv_prog_ac_ct_OTOOL64 if test -n "$ac_ct_OTOOL64"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_ct_OTOOL64" >&5 $as_echo "$ac_ct_OTOOL64" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$ac_ct_OTOOL64" = x; then OTOOL64=":" else case $cross_compiling:$ac_tool_warned in yes:) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: using cross tools not prefixed with host triplet" >&5 $as_echo "$as_me: WARNING: using cross tools not prefixed with host triplet" >&2;} ac_tool_warned=yes ;; esac OTOOL64=$ac_ct_OTOOL64 fi else OTOOL64="$ac_cv_prog_OTOOL64" fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -single_module linker flag" >&5 $as_echo_n "checking for -single_module linker flag... " >&6; } if ${lt_cv_apple_cc_single_mod+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_apple_cc_single_mod=no if test -z "$LT_MULTI_MODULE"; then # By default we will add the -single_module flag. You can override # by either setting the environment variable LT_MULTI_MODULE # non-empty at configure time, or by adding -multi_module to the # link flags. rm -rf libconftest.dylib* echo "int foo(void){return 1;}" > conftest.c echo "$LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c" >&5 $LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c 2>conftest.err _lt_result=$? # If there is a non-empty error log, and "single_module" # appears in it, assume the flag caused a linker warning if test -s conftest.err && $GREP single_module conftest.err; then cat conftest.err >&5 # Otherwise, if the output was created with a 0 exit code from # the compiler, it worked. elif test -f libconftest.dylib && test 0 = "$_lt_result"; then lt_cv_apple_cc_single_mod=yes else cat conftest.err >&5 fi rm -rf libconftest.dylib* rm -f conftest.* fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_apple_cc_single_mod" >&5 $as_echo "$lt_cv_apple_cc_single_mod" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -exported_symbols_list linker flag" >&5 $as_echo_n "checking for -exported_symbols_list linker flag... " >&6; } if ${lt_cv_ld_exported_symbols_list+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_exported_symbols_list=no save_LDFLAGS=$LDFLAGS echo "_main" > conftest.sym LDFLAGS="$LDFLAGS -Wl,-exported_symbols_list,conftest.sym" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_ld_exported_symbols_list=yes else lt_cv_ld_exported_symbols_list=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_exported_symbols_list" >&5 $as_echo "$lt_cv_ld_exported_symbols_list" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking for -force_load linker flag" >&5 $as_echo_n "checking for -force_load linker flag... " >&6; } if ${lt_cv_ld_force_load+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_ld_force_load=no cat > conftest.c << _LT_EOF int forced_loaded() { return 2;} _LT_EOF echo "$LTCC $LTCFLAGS -c -o conftest.o conftest.c" >&5 $LTCC $LTCFLAGS -c -o conftest.o conftest.c 2>&5 echo "$AR cru libconftest.a conftest.o" >&5 $AR cru libconftest.a conftest.o 2>&5 echo "$RANLIB libconftest.a" >&5 $RANLIB libconftest.a 2>&5 cat > conftest.c << _LT_EOF int main() { return 0;} _LT_EOF echo "$LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a" >&5 $LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a 2>conftest.err _lt_result=$? if test -s conftest.err && $GREP force_load conftest.err; then cat conftest.err >&5 elif test -f conftest && test 0 = "$_lt_result" && $GREP forced_load conftest >/dev/null 2>&1; then lt_cv_ld_force_load=yes else cat conftest.err >&5 fi rm -f conftest.err libconftest.a conftest conftest.c rm -rf conftest.dSYM fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_ld_force_load" >&5 $as_echo "$lt_cv_ld_force_load" >&6; } case $host_os in rhapsody* | darwin1.[012]) _lt_dar_allow_undefined='$wl-undefined ${wl}suppress' ;; darwin1.*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; darwin*) # darwin 5.x on # if running on 10.5 or later, the deployment target defaults # to the OS version, if on x86, and 10.4, the deployment # target defaults to 10.4. Don't you love it? case ${MACOSX_DEPLOYMENT_TARGET-10.0},$host in 10.0,*86*-darwin8*|10.0,*-darwin[91]*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; 10.[012][,.]*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; 10.*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; esac ;; esac if test yes = "$lt_cv_apple_cc_single_mod"; then _lt_dar_single_mod='$single_module' fi if test yes = "$lt_cv_ld_exported_symbols_list"; then _lt_dar_export_syms=' $wl-exported_symbols_list,$output_objdir/$libname-symbols.expsym' else _lt_dar_export_syms='~$NMEDIT -s $output_objdir/$libname-symbols.expsym $lib' fi if test : != "$DSYMUTIL" && test no = "$lt_cv_ld_force_load"; then _lt_dsymutil='~$DSYMUTIL $lib || :' else _lt_dsymutil= fi ;; esac # func_munge_path_list VARIABLE PATH # ----------------------------------- # VARIABLE is name of variable containing _space_ separated list of # directories to be munged by the contents of PATH, which is string # having a format: # "DIR[:DIR]:" # string "DIR[ DIR]" will be prepended to VARIABLE # ":DIR[:DIR]" # string "DIR[ DIR]" will be appended to VARIABLE # "DIRP[:DIRP]::[DIRA:]DIRA" # string "DIRP[ DIRP]" will be prepended to VARIABLE and string # "DIRA[ DIRA]" will be appended to VARIABLE # "DIR[:DIR]" # VARIABLE will be replaced by "DIR[ DIR]" func_munge_path_list () { case x$2 in x) ;; *:) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'` \$$1\" ;; x:*) eval $1=\"\$$1 `$ECHO $2 | $SED 's/:/ /g'`\" ;; *::*) eval $1=\"\$$1\ `$ECHO $2 | $SED -e 's/.*:://' -e 's/:/ /g'`\" eval $1=\"`$ECHO $2 | $SED -e 's/::.*//' -e 's/:/ /g'`\ \$$1\" ;; *) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'`\" ;; esac } for ac_header in dlfcn.h do : ac_fn_c_check_header_compile "$LINENO" "dlfcn.h" "ac_cv_header_dlfcn_h" "$ac_includes_default " if test "x$ac_cv_header_dlfcn_h" = xyes; then : cat >>confdefs.h <<_ACEOF #define HAVE_DLFCN_H 1 _ACEOF fi done # Set options enable_dlopen=no enable_win32_dll=no # Check whether --with-pic was given. if test "${with_pic+set}" = set; then : withval=$with_pic; lt_p=${PACKAGE-default} case $withval in yes|no) pic_mode=$withval ;; *) pic_mode=default # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for lt_pkg in $withval; do IFS=$lt_save_ifs if test "X$lt_pkg" = "X$lt_p"; then pic_mode=yes fi done IFS=$lt_save_ifs ;; esac else pic_mode=default fi # Check whether --enable-fast-install was given. if test "${enable_fast_install+set}" = set; then : enableval=$enable_fast_install; p=${PACKAGE-default} case $enableval in yes) enable_fast_install=yes ;; no) enable_fast_install=no ;; *) enable_fast_install=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_fast_install=yes fi done IFS=$lt_save_ifs ;; esac else enable_fast_install=yes fi shared_archive_member_spec= case $host,$enable_shared in power*-*-aix[5-9]*,yes) { $as_echo "$as_me:${as_lineno-$LINENO}: checking which variant of shared library versioning to provide" >&5 $as_echo_n "checking which variant of shared library versioning to provide... " >&6; } # Check whether --with-aix-soname was given. if test "${with_aix_soname+set}" = set; then : withval=$with_aix_soname; case $withval in aix|svr4|both) ;; *) as_fn_error $? "Unknown argument to --with-aix-soname" "$LINENO" 5 ;; esac lt_cv_with_aix_soname=$with_aix_soname else if ${lt_cv_with_aix_soname+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_with_aix_soname=aix fi with_aix_soname=$lt_cv_with_aix_soname fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $with_aix_soname" >&5 $as_echo "$with_aix_soname" >&6; } if test aix != "$with_aix_soname"; then # For the AIX way of multilib, we name the shared archive member # based on the bitwidth used, traditionally 'shr.o' or 'shr_64.o', # and 'shr.imp' or 'shr_64.imp', respectively, for the Import File. # Even when GNU compilers ignore OBJECT_MODE but need '-maix64' flag, # the AIX toolchain works better with OBJECT_MODE set (default 32). if test 64 = "${OBJECT_MODE-32}"; then shared_archive_member_spec=shr_64 else shared_archive_member_spec=shr fi fi ;; *) with_aix_soname=aix ;; esac # This can be used to rebuild libtool when needed LIBTOOL_DEPS=$ltmain # Always use our own libtool. LIBTOOL='$(SHELL) $(top_builddir)/libtool' test -z "$LN_S" && LN_S="ln -s" if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking for objdir" >&5 $as_echo_n "checking for objdir... " >&6; } if ${lt_cv_objdir+:} false; then : $as_echo_n "(cached) " >&6 else rm -f .libs 2>/dev/null mkdir .libs 2>/dev/null if test -d .libs; then lt_cv_objdir=.libs else # MS-DOS does not allow filenames that begin with a dot. lt_cv_objdir=_libs fi rmdir .libs 2>/dev/null fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_objdir" >&5 $as_echo "$lt_cv_objdir" >&6; } objdir=$lt_cv_objdir cat >>confdefs.h <<_ACEOF #define LT_OBJDIR "$lt_cv_objdir/" _ACEOF case $host_os in aix3*) # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi ;; esac # Global variables: ofile=libtool can_build_shared=yes # All known linkers require a '.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a with_gnu_ld=$lt_cv_prog_gnu_ld old_CC=$CC old_CFLAGS=$CFLAGS # Set sane defaults for various variables test -z "$CC" && CC=cc test -z "$LTCC" && LTCC=$CC test -z "$LTCFLAGS" && LTCFLAGS=$CFLAGS test -z "$LD" && LD=ld test -z "$ac_objext" && ac_objext=o func_cc_basename $compiler cc_basename=$func_cc_basename_result # Only perform the check for file, if the check method requires it test -z "$MAGIC_CMD" && MAGIC_CMD=file case $deplibs_check_method in file_magic*) if test "$file_magic_cmd" = '$MAGIC_CMD'; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ${ac_tool_prefix}file" >&5 $as_echo_n "checking for ${ac_tool_prefix}file... " >&6; } if ${lt_cv_path_MAGIC_CMD+:} false; then : $as_echo_n "(cached) " >&6 else case $MAGIC_CMD in [\\/*] | ?:[\\/]*) lt_cv_path_MAGIC_CMD=$MAGIC_CMD # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD=$MAGIC_CMD lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR ac_dummy="/usr/bin$PATH_SEPARATOR$PATH" for ac_dir in $ac_dummy; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/${ac_tool_prefix}file"; then lt_cv_path_MAGIC_CMD=$ac_dir/"${ac_tool_prefix}file" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD=$lt_cv_path_MAGIC_CMD if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS=$lt_save_ifs MAGIC_CMD=$lt_save_MAGIC_CMD ;; esac fi MAGIC_CMD=$lt_cv_path_MAGIC_CMD if test -n "$MAGIC_CMD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MAGIC_CMD" >&5 $as_echo "$MAGIC_CMD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -z "$lt_cv_path_MAGIC_CMD"; then if test -n "$ac_tool_prefix"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for file" >&5 $as_echo_n "checking for file... " >&6; } if ${lt_cv_path_MAGIC_CMD+:} false; then : $as_echo_n "(cached) " >&6 else case $MAGIC_CMD in [\\/*] | ?:[\\/]*) lt_cv_path_MAGIC_CMD=$MAGIC_CMD # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD=$MAGIC_CMD lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR ac_dummy="/usr/bin$PATH_SEPARATOR$PATH" for ac_dir in $ac_dummy; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/file"; then lt_cv_path_MAGIC_CMD=$ac_dir/"file" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD=$lt_cv_path_MAGIC_CMD if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS=$lt_save_ifs MAGIC_CMD=$lt_save_MAGIC_CMD ;; esac fi MAGIC_CMD=$lt_cv_path_MAGIC_CMD if test -n "$MAGIC_CMD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $MAGIC_CMD" >&5 $as_echo "$MAGIC_CMD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi else MAGIC_CMD=: fi fi fi ;; esac # Use C for the default configuration in the libtool script lt_save_CC=$CC ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu # Source file extension for C test sources. ac_ext=c # Object file extension for compiled C test sources. objext=o objext=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(){return(0);}' # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC # Save the default compiler, since it gets overwritten when the other # tags are being tested, and _LT_TAGVAR(compiler, []) is a NOP. compiler_DEFAULT=$CC # save warnings/boilerplate of simple test code ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" >conftest.$ac_ext eval "$ac_compile" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_compiler_boilerplate=`cat conftest.err` $RM conftest* ac_outfile=conftest.$ac_objext echo "$lt_simple_link_test_code" >conftest.$ac_ext eval "$ac_link" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_linker_boilerplate=`cat conftest.err` $RM -r conftest* ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then lt_prog_compiler_no_builtin_flag= if test yes = "$GCC"; then case $cc_basename in nvcc*) lt_prog_compiler_no_builtin_flag=' -Xcompiler -fno-builtin' ;; *) lt_prog_compiler_no_builtin_flag=' -fno-builtin' ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -fno-rtti -fno-exceptions" >&5 $as_echo_n "checking if $compiler supports -fno-rtti -fno-exceptions... " >&6; } if ${lt_cv_prog_compiler_rtti_exceptions+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_rtti_exceptions=no ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-fno-rtti -fno-exceptions" ## exclude from sc_useless_quotes_in_assignment # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_rtti_exceptions=yes fi fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_rtti_exceptions" >&5 $as_echo "$lt_cv_prog_compiler_rtti_exceptions" >&6; } if test yes = "$lt_cv_prog_compiler_rtti_exceptions"; then lt_prog_compiler_no_builtin_flag="$lt_prog_compiler_no_builtin_flag -fno-rtti -fno-exceptions" else : fi fi lt_prog_compiler_wl= lt_prog_compiler_pic= lt_prog_compiler_static= if test yes = "$GCC"; then lt_prog_compiler_wl='-Wl,' lt_prog_compiler_static='-static' case $host_os in aix*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor lt_prog_compiler_static='-Bstatic' fi lt_prog_compiler_pic='-fPIC' ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support lt_prog_compiler_pic='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the '-m68020' flag to GCC prevents building anything better, # like '-m68040'. lt_prog_compiler_pic='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries lt_prog_compiler_pic='-DDLL_EXPORT' case $host_os in os2*) lt_prog_compiler_static='$wl-static' ;; esac ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files lt_prog_compiler_pic='-fno-common' ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. lt_prog_compiler_static= ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) # +Z the default ;; *) lt_prog_compiler_pic='-fPIC' ;; esac ;; interix[3-9]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; msdosdjgpp*) # Just because we use GCC doesn't mean we suddenly get shared libraries # on systems that don't support them. lt_prog_compiler_can_build_shared=no enable_shared=no ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. lt_prog_compiler_pic='-fPIC -shared' ;; sysv4*MP*) if test -d /usr/nec; then lt_prog_compiler_pic=-Kconform_pic fi ;; *) lt_prog_compiler_pic='-fPIC' ;; esac case $cc_basename in nvcc*) # Cuda Compiler Driver 2.2 lt_prog_compiler_wl='-Xlinker ' if test -n "$lt_prog_compiler_pic"; then lt_prog_compiler_pic="-Xcompiler $lt_prog_compiler_pic" fi ;; esac else # PORTME Check for flag to pass linker flags through the system compiler. case $host_os in aix*) lt_prog_compiler_wl='-Wl,' if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor lt_prog_compiler_static='-Bstatic' else lt_prog_compiler_static='-bnso -bI:/lib/syscalls.exp' fi ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files lt_prog_compiler_pic='-fno-common' case $cc_basename in nagfor*) # NAG Fortran compiler lt_prog_compiler_wl='-Wl,-Wl,,' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; esac ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). lt_prog_compiler_pic='-DDLL_EXPORT' case $host_os in os2*) lt_prog_compiler_static='$wl-static' ;; esac ;; hpux9* | hpux10* | hpux11*) lt_prog_compiler_wl='-Wl,' # PIC is the default for IA64 HP-UX and 64-bit HP-UX, but # not for PA HP-UX. case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) lt_prog_compiler_pic='+Z' ;; esac # Is there a better lt_prog_compiler_static that works with the bundled CC? lt_prog_compiler_static='$wl-a ${wl}archive' ;; irix5* | irix6* | nonstopux*) lt_prog_compiler_wl='-Wl,' # PIC (with -KPIC) is the default. lt_prog_compiler_static='-non_shared' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in # old Intel for x86_64, which still supported -KPIC. ecc*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-static' ;; # icc used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. icc* | ifort*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; # Lahey Fortran 8.1. lf95*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='--shared' lt_prog_compiler_static='--static' ;; nagfor*) # NAG Fortran compiler lt_prog_compiler_wl='-Wl,-Wl,,' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; tcc*) # Fabrice Bellard et al's Tiny C Compiler lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group compilers (*not* the Pentium gcc compiler, # which looks to be a dead project) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fpic' lt_prog_compiler_static='-Bstatic' ;; ccc*) lt_prog_compiler_wl='-Wl,' # All Alpha code is PIC. lt_prog_compiler_static='-non_shared' ;; xl* | bgxl* | bgf* | mpixl*) # IBM XL C 8.0/Fortran 10.1, 11.1 on PPC and BlueGene lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-qpic' lt_prog_compiler_static='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ Ceres\ Fortran* | *Sun*Fortran*\ [1-7].* | *Sun*Fortran*\ 8.[0-3]*) # Sun Fortran 8.3 passes all unrecognized flags to the linker lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='' ;; *Sun\ F* | *Sun*Fortran*) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='-Qoption ld ' ;; *Sun\ C*) # Sun C 5.9 lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' lt_prog_compiler_wl='-Wl,' ;; *Intel*\ [CF]*Compiler*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fPIC' lt_prog_compiler_static='-static' ;; *Portland\ Group*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-fpic' lt_prog_compiler_static='-Bstatic' ;; esac ;; esac ;; newsos6) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. lt_prog_compiler_pic='-fPIC -shared' ;; osf3* | osf4* | osf5*) lt_prog_compiler_wl='-Wl,' # All OSF/1 code is PIC. lt_prog_compiler_static='-non_shared' ;; rdos*) lt_prog_compiler_static='-non_shared' ;; solaris*) lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) lt_prog_compiler_wl='-Qoption ld ';; *) lt_prog_compiler_wl='-Wl,';; esac ;; sunos4*) lt_prog_compiler_wl='-Qoption ld ' lt_prog_compiler_pic='-PIC' lt_prog_compiler_static='-Bstatic' ;; sysv4 | sysv4.2uw2* | sysv4.3*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; sysv4*MP*) if test -d /usr/nec; then lt_prog_compiler_pic='-Kconform_pic' lt_prog_compiler_static='-Bstatic' fi ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_pic='-KPIC' lt_prog_compiler_static='-Bstatic' ;; unicos*) lt_prog_compiler_wl='-Wl,' lt_prog_compiler_can_build_shared=no ;; uts4*) lt_prog_compiler_pic='-pic' lt_prog_compiler_static='-Bstatic' ;; *) lt_prog_compiler_can_build_shared=no ;; esac fi case $host_os in # For platforms that do not support PIC, -DPIC is meaningless: *djgpp*) lt_prog_compiler_pic= ;; *) lt_prog_compiler_pic="$lt_prog_compiler_pic -DPIC" ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $compiler option to produce PIC" >&5 $as_echo_n "checking for $compiler option to produce PIC... " >&6; } if ${lt_cv_prog_compiler_pic+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_pic=$lt_prog_compiler_pic fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_pic" >&5 $as_echo "$lt_cv_prog_compiler_pic" >&6; } lt_prog_compiler_pic=$lt_cv_prog_compiler_pic # # Check to make sure the PIC flag actually works. # if test -n "$lt_prog_compiler_pic"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler PIC flag $lt_prog_compiler_pic works" >&5 $as_echo_n "checking if $compiler PIC flag $lt_prog_compiler_pic works... " >&6; } if ${lt_cv_prog_compiler_pic_works+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_pic_works=no ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="$lt_prog_compiler_pic -DPIC" ## exclude from sc_useless_quotes_in_assignment # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_pic_works=yes fi fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_pic_works" >&5 $as_echo "$lt_cv_prog_compiler_pic_works" >&6; } if test yes = "$lt_cv_prog_compiler_pic_works"; then case $lt_prog_compiler_pic in "" | " "*) ;; *) lt_prog_compiler_pic=" $lt_prog_compiler_pic" ;; esac else lt_prog_compiler_pic= lt_prog_compiler_can_build_shared=no fi fi # # Check to make sure the static flag actually works. # wl=$lt_prog_compiler_wl eval lt_tmp_static_flag=\"$lt_prog_compiler_static\" { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler static flag $lt_tmp_static_flag works" >&5 $as_echo_n "checking if $compiler static flag $lt_tmp_static_flag works... " >&6; } if ${lt_cv_prog_compiler_static_works+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_static_works=no save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS $lt_tmp_static_flag" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&5 $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler_static_works=yes fi else lt_cv_prog_compiler_static_works=yes fi fi $RM -r conftest* LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_static_works" >&5 $as_echo "$lt_cv_prog_compiler_static_works" >&6; } if test yes = "$lt_cv_prog_compiler_static_works"; then : else lt_prog_compiler_static= fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -c -o file.$ac_objext" >&5 $as_echo_n "checking if $compiler supports -c -o file.$ac_objext... " >&6; } if ${lt_cv_prog_compiler_c_o+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_c_o=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then lt_cv_prog_compiler_c_o=yes fi fi chmod u+w . 2>&5 $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_c_o" >&5 $as_echo "$lt_cv_prog_compiler_c_o" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $compiler supports -c -o file.$ac_objext" >&5 $as_echo_n "checking if $compiler supports -c -o file.$ac_objext... " >&6; } if ${lt_cv_prog_compiler_c_o+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler_c_o=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [^ ]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&5) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&5 echo "$as_me:$LINENO: \$? = $ac_status" >&5 if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then lt_cv_prog_compiler_c_o=yes fi fi chmod u+w . 2>&5 $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler_c_o" >&5 $as_echo "$lt_cv_prog_compiler_c_o" >&6; } hard_links=nottested if test no = "$lt_cv_prog_compiler_c_o" && test no != "$need_locks"; then # do not overwrite the value of need_locks provided by the user { $as_echo "$as_me:${as_lineno-$LINENO}: checking if we can lock with hard links" >&5 $as_echo_n "checking if we can lock with hard links... " >&6; } hard_links=yes $RM conftest* ln conftest.a conftest.b 2>/dev/null && hard_links=no touch conftest.a ln conftest.a conftest.b 2>&5 || hard_links=no ln conftest.a conftest.b 2>/dev/null && hard_links=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: $hard_links" >&5 $as_echo "$hard_links" >&6; } if test no = "$hard_links"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: '$CC' does not support '-c -o', so 'make -j' may be unsafe" >&5 $as_echo "$as_me: WARNING: '$CC' does not support '-c -o', so 'make -j' may be unsafe" >&2;} need_locks=warn fi else need_locks=no fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the $compiler linker ($LD) supports shared libraries" >&5 $as_echo_n "checking whether the $compiler linker ($LD) supports shared libraries... " >&6; } runpath_var= allow_undefined_flag= always_export_symbols=no archive_cmds= archive_expsym_cmds= compiler_needs_object=no enable_shared_with_static_runtimes=no export_dynamic_flag_spec= export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' hardcode_automatic=no hardcode_direct=no hardcode_direct_absolute=no hardcode_libdir_flag_spec= hardcode_libdir_separator= hardcode_minus_L=no hardcode_shlibpath_var=unsupported inherit_rpath=no link_all_deplibs=unknown module_cmds= module_expsym_cmds= old_archive_from_new_cmds= old_archive_from_expsyms_cmds= thread_safe_flag_spec= whole_archive_flag_spec= # include_expsyms should be a list of space-separated symbols to be *always* # included in the symbol list include_expsyms= # exclude_expsyms can be an extended regexp of symbols to exclude # it will be wrapped by ' (' and ')$', so one must not match beginning or # end of line. Example: 'a|bc|.*d.*' will exclude the symbols 'a' and 'bc', # as well as any symbol that contains 'd'. exclude_expsyms='_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*' # Although _GLOBAL_OFFSET_TABLE_ is a valid symbol C name, most a.out # platforms (ab)use it in PIC code, but their linkers get confused if # the symbol is explicitly referenced. Since portable code cannot # rely on this symbol name, it's probably fine to never include it in # preloaded symbol tables. # Exclude shared library initialization/finalization symbols. extract_expsyms_cmds= case $host_os in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test yes != "$GCC"; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd* | bitrig*) with_gnu_ld=no ;; esac ld_shlibs=yes # On some targets, GNU ld is compatible enough with the native linker # that we're better off using the native interface for both. lt_use_gnu_ld_interface=no if test yes = "$with_gnu_ld"; then case $host_os in aix*) # The AIX port of GNU ld has always aspired to compatibility # with the native linker. However, as the warning in the GNU ld # block says, versions before 2.19.5* couldn't really create working # shared libraries, regardless of the interface used. case `$LD -v 2>&1` in *\ \(GNU\ Binutils\)\ 2.19.5*) ;; *\ \(GNU\ Binutils\)\ 2.[2-9]*) ;; *\ \(GNU\ Binutils\)\ [3-9]*) ;; *) lt_use_gnu_ld_interface=yes ;; esac ;; *) lt_use_gnu_ld_interface=yes ;; esac fi if test yes = "$lt_use_gnu_ld_interface"; then # If archive_cmds runs LD, not CC, wlarc should be empty wlarc='$wl' # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. runpath_var=LD_RUN_PATH hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' export_dynamic_flag_spec='$wl--export-dynamic' # ancient GNU ld didn't support --whole-archive et. al. if $LD --help 2>&1 | $GREP 'no-whole-archive' > /dev/null; then whole_archive_flag_spec=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' else whole_archive_flag_spec= fi supports_anon_versioning=no case `$LD -v | $SED -e 's/(^)\+)\s\+//' 2>&1` in *GNU\ gold*) supports_anon_versioning=yes ;; *\ [01].* | *\ 2.[0-9].* | *\ 2.10.*) ;; # catch versions < 2.11 *\ 2.11.93.0.2\ *) supports_anon_versioning=yes ;; # RH7.3 ... *\ 2.11.92.0.12\ *) supports_anon_versioning=yes ;; # Mandrake 8.2 ... *\ 2.11.*) ;; # other 2.11 versions *) supports_anon_versioning=yes ;; esac # See if GNU ld supports shared libraries. case $host_os in aix[3-9]*) # On AIX/PPC, the GNU linker is very broken if test ia64 != "$host_cpu"; then ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: the GNU linker, at least up to release 2.19, is reported *** to be unable to reliably create shared libraries on AIX. *** Therefore, libtool is disabling shared libraries support. If you *** really care for shared libraries, you may want to install binutils *** 2.20 or above, or modify your PATH so that a non-GNU linker is found. *** You will then need to restart the configuration process. _LT_EOF fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='' ;; m68k) archive_cmds='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then allow_undefined_flag=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME archive_cmds='$CC -nostart $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' else ld_shlibs=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # _LT_TAGVAR(hardcode_libdir_flag_spec, ) is actually meaningless, # as there is no search path for DLLs. hardcode_libdir_flag_spec='-L$libdir' export_dynamic_flag_spec='$wl--export-all-symbols' allow_undefined_flag=unsupported always_export_symbols=no enable_shared_with_static_runtimes=yes export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[BCDGRS][ ]/s/.*[ ]\([^ ]*\)/\1 DATA/;s/^.*[ ]__nm__\([^ ]*\)[ ][^ ]*/\1 DATA/;/^I[ ]/d;/^[AITW][ ]/s/.* //'\'' | sort | uniq > $export_symbols' exclude_expsyms='[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname' if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file, use it as # is; otherwise, prepend EXPORTS... archive_expsym_cmds='if test DEF = "`$SED -n -e '\''s/^[ ]*//'\'' -e '\''/^\(;.*\)*$/d'\'' -e '\''s/^\(EXPORTS\|LIBRARY\)\([ ].*\)*$/DEF/p'\'' -e q $export_symbols`" ; then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared $output_objdir/$soname.def $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else ld_shlibs=no fi ;; haiku*) archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' link_all_deplibs=yes ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes allow_undefined_flag=unsupported shrext_cmds=.dll archive_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' archive_expsym_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' old_archive_From_new_cmds='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' enable_shared_with_static_runtimes=yes ;; interix[3-9]*) hardcode_direct=no hardcode_shlibpath_var=no hardcode_libdir_flag_spec='$wl-rpath,$libdir' export_dynamic_flag_spec='$wl-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' archive_expsym_cmds='sed "s|^|_|" $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--retain-symbols-file,$output_objdir/$soname.expsym $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) tmp_diet=no if test linux-dietlibc = "$host_os"; then case $cc_basename in diet\ *) tmp_diet=yes;; # linux-dietlibc with static linking (!diet-dyn) esac fi if $LD --help 2>&1 | $EGREP ': supported targets:.* elf' > /dev/null \ && test no = "$tmp_diet" then tmp_addflag=' $pic_flag' tmp_sharedflag='-shared' case $cc_basename,$host_cpu in pgcc*) # Portland Group C compiler whole_archive_flag_spec='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag' ;; pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group f77 and f90 compilers whole_archive_flag_spec='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag -Mnomain' ;; ecc*,ia64* | icc*,ia64*) # Intel C compiler on ia64 tmp_addflag=' -i_dynamic' ;; efc*,ia64* | ifort*,ia64*) # Intel Fortran compiler on ia64 tmp_addflag=' -i_dynamic -nofor_main' ;; ifc* | ifort*) # Intel Fortran compiler tmp_addflag=' -nofor_main' ;; lf95*) # Lahey Fortran 8.1 whole_archive_flag_spec= tmp_sharedflag='--shared' ;; nagfor*) # NAGFOR 5.3 tmp_sharedflag='-Wl,-shared' ;; xl[cC]* | bgxl[cC]* | mpixl[cC]*) # IBM XL C 8.0 on PPC (deal with xlf below) tmp_sharedflag='-qmkshrobj' tmp_addflag= ;; nvcc*) # Cuda Compiler Driver 2.2 whole_archive_flag_spec='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' compiler_needs_object=yes ;; esac case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C 5.9 whole_archive_flag_spec='$wl--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' compiler_needs_object=yes tmp_sharedflag='-G' ;; *Sun\ F*) # Sun Fortran 8.3 tmp_sharedflag='-G' ;; esac archive_cmds='$CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' if test yes = "$supports_anon_versioning"; then archive_expsym_cmds='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-version-script $wl$output_objdir/$libname.ver -o $lib' fi case $cc_basename in tcc*) export_dynamic_flag_spec='-rdynamic' ;; xlf* | bgf* | bgxlf* | mpixlf*) # IBM XL Fortran 10.1 on PPC cannot create shared libs itself whole_archive_flag_spec='--whole-archive$convenience --no-whole-archive' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' archive_cmds='$LD -shared $libobjs $deplibs $linker_flags -soname $soname -o $lib' if test yes = "$supports_anon_versioning"; then archive_expsym_cmds='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $LD -shared $libobjs $deplibs $linker_flags -soname $soname -version-script $output_objdir/$libname.ver -o $lib' fi ;; esac else ld_shlibs=no fi ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then archive_cmds='$LD -Bshareable $libobjs $deplibs $linker_flags -o $lib' wlarc= else archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' fi ;; solaris*) if $LD -v 2>&1 | $GREP 'BFD 2\.8' > /dev/null; then ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: The releases 2.8.* of the GNU linker cannot reliably *** create shared libraries on Solaris systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.9.1 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF elif $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [01].* | *\ 2.[0-9].* | *\ 2.1[0-5].*) ld_shlibs=no cat <<_LT_EOF 1>&2 *** Warning: Releases of the GNU linker prior to 2.16.91.0.3 cannot *** reliably create shared libraries on SCO systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.16.91.0.3 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF ;; *) # For security reasons, it is highly recommended that you always # use absolute paths for naming shared libraries, and exclude the # DT_RUNPATH tag from executables and libraries. But doing so # requires that you compile everything twice, which is a pain. if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; esac ;; sunos4*) archive_cmds='$LD -assert pure-text -Bshareable -o $lib $libobjs $deplibs $linker_flags' wlarc= hardcode_direct=yes hardcode_shlibpath_var=no ;; *) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else ld_shlibs=no fi ;; esac if test no = "$ld_shlibs"; then runpath_var= hardcode_libdir_flag_spec= export_dynamic_flag_spec= whole_archive_flag_spec= fi else # PORTME fill in a description of your system's linker (not GNU ld) case $host_os in aix3*) allow_undefined_flag=unsupported always_export_symbols=yes archive_expsym_cmds='$LD -o $output_objdir/$soname $libobjs $deplibs $linker_flags -bE:$export_symbols -T512 -H512 -bM:SRE~$AR $AR_FLAGS $lib $output_objdir/$soname' # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. hardcode_minus_L=yes if test yes = "$GCC" && test -z "$lt_prog_compiler_static"; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. hardcode_direct=unsupported fi ;; aix[4-9]*) if test ia64 = "$host_cpu"; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag= else # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to GNU nm, but means don't demangle to AIX nm. # Without the "-l" option, or with the "-B" option, AIX nm treats # weak defined symbols like other global defined symbols, whereas # GNU nm marks them as "W". # While the 'weak' keyword is ignored in the Export File, we need # it in the Import File for the 'aix-soname' feature, so we have # to replace the "-B" option with "-P" for AIX nm. if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then export_symbols_cmds='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && (substr(\$ 3,1,1) != ".")) { if (\$ 2 == "W") { print \$ 3 " weak" } else { print \$ 3 } } }'\'' | sort -u > $export_symbols' else export_symbols_cmds='`func_echo_all $NM | $SED -e '\''s/B\([^B]*\)$/P\1/'\''` -PCpgl $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) && (substr(\$ 1,1,1) != ".")) { if ((\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) { print \$ 1 " weak" } else { print \$ 1 } } }'\'' | sort -u > $export_symbols' fi aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # have runtime linking enabled, and use it for executables. # For shared libraries, we enable/disable runtime linking # depending on the kind of the shared library created - # when "with_aix_soname,aix_use_runtimelinking" is: # "aix,no" lib.a(lib.so.V) shared, rtl:no, for executables # "aix,yes" lib.so shared, rtl:yes, for executables # lib.a static archive # "both,no" lib.so.V(shr.o) shared, rtl:yes # lib.a(lib.so.V) shared, rtl:no, for executables # "both,yes" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a(lib.so.V) shared, rtl:no # "svr4,*" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a static archive case $host_os in aix4.[23]|aix4.[23].*|aix[5-9]*) for ld_flag in $LDFLAGS; do if (test x-brtl = "x$ld_flag" || test x-Wl,-brtl = "x$ld_flag"); then aix_use_runtimelinking=yes break fi done if test svr4,no = "$with_aix_soname,$aix_use_runtimelinking"; then # With aix-soname=svr4, we create the lib.so.V shared archives only, # so we don't have lib.a shared libs to link our executables. # We have to force runtime linking in this case. aix_use_runtimelinking=yes LDFLAGS="$LDFLAGS -Wl,-brtl" fi ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. archive_cmds='' hardcode_direct=yes hardcode_direct_absolute=yes hardcode_libdir_separator=':' link_all_deplibs=yes file_list_spec='$wl-f,' case $with_aix_soname,$aix_use_runtimelinking in aix,*) ;; # traditional, no import file svr4,* | *,yes) # use import file # The Import File defines what to hardcode. hardcode_direct=no hardcode_direct_absolute=no ;; esac if test yes = "$GCC"; then case $host_os in aix4.[012]|aix4.[012].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`$CC -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 hardcode_direct=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking hardcode_minus_L=yes hardcode_libdir_flag_spec='-L$libdir' hardcode_libdir_separator= fi ;; esac shared_flag='-shared' if test yes = "$aix_use_runtimelinking"; then shared_flag="$shared_flag "'$wl-G' fi # Need to ensure runtime linking is disabled for the traditional # shared library, or the linker may eventually find shared libraries # /with/ Import File - we do not want to mix them. shared_flag_aix='-shared' shared_flag_svr4='-shared $wl-G' else # not using gcc if test ia64 = "$host_cpu"; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test yes = "$aix_use_runtimelinking"; then shared_flag='$wl-G' else shared_flag='$wl-bM:SRE' fi shared_flag_aix='$wl-bM:SRE' shared_flag_svr4='$wl-G' fi fi export_dynamic_flag_spec='$wl-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to export. always_export_symbols=yes if test aix,yes = "$with_aix_soname,$aix_use_runtimelinking"; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. allow_undefined_flag='-berok' # Determine the default libpath from the value encoded in an # empty executable. if test set = "${lt_cv_aix_libpath+set}"; then aix_libpath=$lt_cv_aix_libpath else if ${lt_cv_aix_libpath_+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_aix_libpath_sed=' /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }' lt_cv_aix_libpath_=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=/usr/lib:/lib fi fi aix_libpath=$lt_cv_aix_libpath_ fi hardcode_libdir_flag_spec='$wl-blibpath:$libdir:'"$aix_libpath" archive_expsym_cmds='$CC -o $output_objdir/$soname $libobjs $deplibs $wl'$no_entry_flag' $compiler_flags `if test -n "$allow_undefined_flag"; then func_echo_all "$wl$allow_undefined_flag"; else :; fi` $wl'$exp_sym_flag:\$export_symbols' '$shared_flag else if test ia64 = "$host_cpu"; then hardcode_libdir_flag_spec='$wl-R $libdir:/usr/lib:/lib' allow_undefined_flag="-z nodefs" archive_expsym_cmds="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\$wl$no_entry_flag"' $compiler_flags $wl$allow_undefined_flag '"\$wl$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. if test set = "${lt_cv_aix_libpath+set}"; then aix_libpath=$lt_cv_aix_libpath else if ${lt_cv_aix_libpath_+:} false; then : $as_echo_n "(cached) " >&6 else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_aix_libpath_sed=' /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }' lt_cv_aix_libpath_=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext if test -z "$lt_cv_aix_libpath_"; then lt_cv_aix_libpath_=/usr/lib:/lib fi fi aix_libpath=$lt_cv_aix_libpath_ fi hardcode_libdir_flag_spec='$wl-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. no_undefined_flag=' $wl-bernotok' allow_undefined_flag=' $wl-berok' if test yes = "$with_gnu_ld"; then # We only use this code for GNU lds that support --whole-archive. whole_archive_flag_spec='$wl--whole-archive$convenience $wl--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives whole_archive_flag_spec='$convenience' fi archive_cmds_need_lc=yes archive_expsym_cmds='$RM -r $output_objdir/$realname.d~$MKDIR $output_objdir/$realname.d' # -brtl affects multiple linker settings, -berok does not and is overridden later compiler_flags_filtered='`func_echo_all "$compiler_flags " | $SED -e "s%-brtl\\([, ]\\)%-berok\\1%g"`' if test svr4 != "$with_aix_soname"; then # This is similar to how AIX traditionally builds its shared libraries. archive_expsym_cmds="$archive_expsym_cmds"'~$CC '$shared_flag_aix' -o $output_objdir/$realname.d/$soname $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$realname.d/$soname' fi if test aix != "$with_aix_soname"; then archive_expsym_cmds="$archive_expsym_cmds"'~$CC '$shared_flag_svr4' -o $output_objdir/$realname.d/$shared_archive_member_spec.o $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$STRIP -e $output_objdir/$realname.d/$shared_archive_member_spec.o~( func_echo_all "#! $soname($shared_archive_member_spec.o)"; if test shr_64 = "$shared_archive_member_spec"; then func_echo_all "# 64"; else func_echo_all "# 32"; fi; cat $export_symbols ) > $output_objdir/$realname.d/$shared_archive_member_spec.imp~$AR $AR_FLAGS $output_objdir/$soname $output_objdir/$realname.d/$shared_archive_member_spec.o $output_objdir/$realname.d/$shared_archive_member_spec.imp' else # used by -dlpreopen to get the symbols archive_expsym_cmds="$archive_expsym_cmds"'~$MV $output_objdir/$realname.d/$soname $output_objdir' fi archive_expsym_cmds="$archive_expsym_cmds"'~$RM -r $output_objdir/$realname.d' fi fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' archive_expsym_cmds='' ;; m68k) archive_cmds='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; bsdi[45]*) export_dynamic_flag_spec=-rdynamic ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. case $cc_basename in cl*) # Native MSVC hardcode_libdir_flag_spec=' ' allow_undefined_flag=unsupported always_export_symbols=yes file_list_spec='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. archive_cmds='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~linknames=' archive_expsym_cmds='if test DEF = "`$SED -n -e '\''s/^[ ]*//'\'' -e '\''/^\(;.*\)*$/d'\'' -e '\''s/^\(EXPORTS\|LIBRARY\)\([ ].*\)*$/DEF/p'\'' -e q $export_symbols`" ; then cp "$export_symbols" "$output_objdir/$soname.def"; echo "$tool_output_objdir$soname.def" > "$output_objdir/$soname.exp"; else $SED -e '\''s/^/-link -EXPORT:/'\'' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, )='true' enable_shared_with_static_runtimes=yes exclude_expsyms='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' export_symbols_cmds='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[BCDGRS][ ]/s/.*[ ]\([^ ]*\)/\1,DATA/'\'' | $SED -e '\''/^[AITW][ ]/s/.*[ ]//'\'' | sort | uniq > $export_symbols' # Don't use ranlib old_postinstall_cmds='chmod 644 $oldlib' postlink_cmds='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile=$lt_outputfile.exe lt_tool_outputfile=$lt_tool_outputfile.exe ;; esac~ if test : != "$MANIFEST_TOOL" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # Assume MSVC wrapper hardcode_libdir_flag_spec=' ' allow_undefined_flag=unsupported # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. archive_cmds='$CC -o $lib $libobjs $compiler_flags `func_echo_all "$deplibs" | $SED '\''s/ -lc$//'\''` -link -dll~linknames=' # The linker will automatically build a .lib file if we build a DLL. old_archive_from_new_cmds='true' # FIXME: Should let the user specify the lib program. old_archive_cmds='lib -OUT:$oldlib$oldobjs$old_deplibs' enable_shared_with_static_runtimes=yes ;; esac ;; darwin* | rhapsody*) archive_cmds_need_lc=no hardcode_direct=no hardcode_automatic=yes hardcode_shlibpath_var=unsupported if test yes = "$lt_cv_ld_force_load"; then whole_archive_flag_spec='`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience $wl-force_load,$conv\"; done; func_echo_all \"$new_convenience\"`' else whole_archive_flag_spec='' fi link_all_deplibs=yes allow_undefined_flag=$_lt_dar_allow_undefined case $cc_basename in ifort*|nagfor*) _lt_dar_can_shared=yes ;; *) _lt_dar_can_shared=$GCC ;; esac if test yes = "$_lt_dar_can_shared"; then output_verbose_link_cmd=func_echo_all archive_cmds="\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dsymutil" module_cmds="\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dsymutil" archive_expsym_cmds="sed 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dar_export_syms$_lt_dsymutil" module_expsym_cmds="sed -e 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dar_export_syms$_lt_dsymutil" else ld_shlibs=no fi ;; dgux*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_libdir_flag_spec='-L$libdir' hardcode_shlibpath_var=no ;; # FreeBSD 2.2.[012] allows us to include c++rt0.o to get C++ constructor # support. Future versions do this automatically, but an explicit c++rt0.o # does not break anything, and helps significantly (at the cost of a little # extra space). freebsd2.2*) archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags /usr/lib/c++rt0.o' hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; # Unfortunately, older versions of FreeBSD 2 do not have this feature. freebsd2.*) archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes hardcode_minus_L=yes hardcode_shlibpath_var=no ;; # FreeBSD 3 and greater uses gcc -shared to do shared libraries. freebsd* | dragonfly*) archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; hpux9*) if test yes = "$GCC"; then archive_cmds='$RM $output_objdir/$soname~$CC -shared $pic_flag $wl+b $wl$install_libdir -o $output_objdir/$soname $libobjs $deplibs $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' else archive_cmds='$RM $output_objdir/$soname~$LD -b +b $install_libdir -o $output_objdir/$soname $libobjs $deplibs $linker_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' fi hardcode_libdir_flag_spec='$wl+b $wl$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes export_dynamic_flag_spec='$wl-E' ;; hpux10*) if test yes,no = "$GCC,$with_gnu_ld"; then archive_cmds='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi if test no = "$with_gnu_ld"; then hardcode_libdir_flag_spec='$wl+b $wl$libdir' hardcode_libdir_separator=: hardcode_direct=yes hardcode_direct_absolute=yes export_dynamic_flag_spec='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes fi ;; hpux11*) if test yes,no = "$GCC,$with_gnu_ld"; then case $host_cpu in hppa*64*) archive_cmds='$CC -shared $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) archive_cmds='$CC -shared $pic_flag $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) archive_cmds='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' ;; esac else case $host_cpu in hppa*64*) archive_cmds='$CC -b $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) archive_cmds='$CC -b $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) # Older versions of the 11.00 compiler do not understand -b yet # (HP92453-01 A.11.01.20 doesn't, HP92453-01 B.11.X.35175-35176.GP does) { $as_echo "$as_me:${as_lineno-$LINENO}: checking if $CC understands -b" >&5 $as_echo_n "checking if $CC understands -b... " >&6; } if ${lt_cv_prog_compiler__b+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_prog_compiler__b=no save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS -b" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&5 $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then lt_cv_prog_compiler__b=yes fi else lt_cv_prog_compiler__b=yes fi fi $RM -r conftest* LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_prog_compiler__b" >&5 $as_echo "$lt_cv_prog_compiler__b" >&6; } if test yes = "$lt_cv_prog_compiler__b"; then archive_cmds='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi ;; esac fi if test no = "$with_gnu_ld"; then hardcode_libdir_flag_spec='$wl+b $wl$libdir' hardcode_libdir_separator=: case $host_cpu in hppa*64*|ia64*) hardcode_direct=no hardcode_shlibpath_var=no ;; *) hardcode_direct=yes hardcode_direct_absolute=yes export_dynamic_flag_spec='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) if test yes = "$GCC"; then archive_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' # Try to use the -exported_symbol ld option, if it does not # work, assume that -exports_file does not work either and # implicitly export all symbols. # This should be the same for all languages, so no per-tag cache variable. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether the $host_os linker accepts -exported_symbol" >&5 $as_echo_n "checking whether the $host_os linker accepts -exported_symbol... " >&6; } if ${lt_cv_irix_exported_symbol+:} false; then : $as_echo_n "(cached) " >&6 else save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS -shared $wl-exported_symbol ${wl}foo $wl-update_registry $wl/dev/null" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int foo (void) { return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : lt_cv_irix_exported_symbol=yes else lt_cv_irix_exported_symbol=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS=$save_LDFLAGS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_irix_exported_symbol" >&5 $as_echo "$lt_cv_irix_exported_symbol" >&6; } if test yes = "$lt_cv_irix_exported_symbol"; then archive_expsym_cmds='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations $wl-exports_file $wl$export_symbols -o $lib' fi else archive_cmds='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' archive_expsym_cmds='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -exports_file $export_symbols -o $lib' fi archive_cmds_need_lc='no' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' hardcode_libdir_separator=: inherit_rpath=yes link_all_deplibs=yes ;; linux*) case $cc_basename in tcc*) # Fabrice Bellard et al's Tiny C Compiler ld_shlibs=yes archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then archive_cmds='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' # a.out else archive_cmds='$LD -shared -o $lib $libobjs $deplibs $linker_flags' # ELF fi hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes hardcode_shlibpath_var=no ;; newsos6) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' hardcode_libdir_separator=: hardcode_shlibpath_var=no ;; *nto* | *qnx*) ;; openbsd* | bitrig*) if test -f /usr/libexec/ld.so; then hardcode_direct=yes hardcode_shlibpath_var=no hardcode_direct_absolute=yes if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags $wl-retain-symbols-file,$export_symbols' hardcode_libdir_flag_spec='$wl-rpath,$libdir' export_dynamic_flag_spec='$wl-E' else archive_cmds='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' hardcode_libdir_flag_spec='$wl-rpath,$libdir' fi else ld_shlibs=no fi ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes allow_undefined_flag=unsupported shrext_cmds=.dll archive_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' archive_expsym_cmds='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' old_archive_From_new_cmds='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' enable_shared_with_static_runtimes=yes ;; osf3*) if test yes = "$GCC"; then allow_undefined_flag=' $wl-expect_unresolved $wl\*' archive_cmds='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' else allow_undefined_flag=' -expect_unresolved \*' archive_cmds='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' fi archive_cmds_need_lc='no' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' hardcode_libdir_separator=: ;; osf4* | osf5*) # as osf3* with the addition of -msym flag if test yes = "$GCC"; then allow_undefined_flag=' $wl-expect_unresolved $wl\*' archive_cmds='$CC -shared$allow_undefined_flag $pic_flag $libobjs $deplibs $compiler_flags $wl-msym $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' hardcode_libdir_flag_spec='$wl-rpath $wl$libdir' else allow_undefined_flag=' -expect_unresolved \*' archive_cmds='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' archive_expsym_cmds='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done; printf "%s\\n" "-hidden">> $lib.exp~ $CC -shared$allow_undefined_flag $wl-input $wl$lib.exp $compiler_flags $libobjs $deplibs -soname $soname `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib~$RM $lib.exp' # Both c and cxx compiler support -rpath directly hardcode_libdir_flag_spec='-rpath $libdir' fi archive_cmds_need_lc='no' hardcode_libdir_separator=: ;; solaris*) no_undefined_flag=' -z defs' if test yes = "$GCC"; then wlarc='$wl' archive_cmds='$CC -shared $pic_flag $wl-z ${wl}text $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag $wl-z ${wl}text $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' else case `$CC -V 2>&1` in *"Compilers 5.0"*) wlarc='' archive_cmds='$LD -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $linker_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $LD -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linker_flags~$RM $lib.exp' ;; *) wlarc='$wl' archive_cmds='$CC -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' ;; esac fi hardcode_libdir_flag_spec='-R$libdir' hardcode_shlibpath_var=no case $host_os in solaris2.[0-5] | solaris2.[0-5].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands '-z linker_flag'. GCC discards it without '$wl', # but is careful enough not to reorder. # Supported since Solaris 2.6 (maybe 2.5.1?) if test yes = "$GCC"; then whole_archive_flag_spec='$wl-z ${wl}allextract$convenience $wl-z ${wl}defaultextract' else whole_archive_flag_spec='-z allextract$convenience -z defaultextract' fi ;; esac link_all_deplibs=yes ;; sunos4*) if test sequent = "$host_vendor"; then # Use $CC to link under sequent, because it throws in some extra .o # files that make .init and .fini sections work. archive_cmds='$CC -G $wl-h $soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$LD -assert pure-text -Bstatic -o $lib $libobjs $deplibs $linker_flags' fi hardcode_libdir_flag_spec='-L$libdir' hardcode_direct=yes hardcode_minus_L=yes hardcode_shlibpath_var=no ;; sysv4) case $host_vendor in sni) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=yes # is this really true??? ;; siemens) ## LD is ld it makes a PLAMLIB ## CC just makes a GrossModule. archive_cmds='$LD -G -o $lib $libobjs $deplibs $linker_flags' reload_cmds='$CC -r -o $output$reload_objs' hardcode_direct=no ;; motorola) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_direct=no #Motorola manual says yes, but my tests say they lie ;; esac runpath_var='LD_RUN_PATH' hardcode_shlibpath_var=no ;; sysv4.3*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_shlibpath_var=no export_dynamic_flag_spec='-Bexport' ;; sysv4*MP*) if test -d /usr/nec; then archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_shlibpath_var=no runpath_var=LD_RUN_PATH hardcode_runpath_var=yes ld_shlibs=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[01].[10]* | unixware7* | sco3.2v5.0.[024]*) no_undefined_flag='$wl-z,text' archive_cmds_need_lc=no hardcode_shlibpath_var=no runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then archive_cmds='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We CANNOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. no_undefined_flag='$wl-z,text' allow_undefined_flag='$wl-z,nodefs' archive_cmds_need_lc=no hardcode_shlibpath_var=no hardcode_libdir_flag_spec='$wl-R,$libdir' hardcode_libdir_separator=':' link_all_deplibs=yes export_dynamic_flag_spec='$wl-Bexport' runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then archive_cmds='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else archive_cmds='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' archive_expsym_cmds='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; uts4*) archive_cmds='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' hardcode_libdir_flag_spec='-L$libdir' hardcode_shlibpath_var=no ;; *) ld_shlibs=no ;; esac if test sni = "$host_vendor"; then case $host in sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) export_dynamic_flag_spec='$wl-Blargedynsym' ;; esac fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ld_shlibs" >&5 $as_echo "$ld_shlibs" >&6; } test no = "$ld_shlibs" && can_build_shared=no with_gnu_ld=$with_gnu_ld # # Do we need to explicitly link libc? # case "x$archive_cmds_need_lc" in x|xyes) # Assume -lc should be added archive_cmds_need_lc=yes if test yes,yes = "$GCC,$enable_shared"; then case $archive_cmds in *'~'*) # FIXME: we may have to deal with multi-command sequences. ;; '$CC '*) # Test whether the compiler implicitly links with -lc since on some # systems, -lgcc has to come before -lc. If gcc already passes -lc # to ld, don't add -lc before -lgcc. { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether -lc should be explicitly linked in" >&5 $as_echo_n "checking whether -lc should be explicitly linked in... " >&6; } if ${lt_cv_archive_cmds_need_lc+:} false; then : $as_echo_n "(cached) " >&6 else $RM conftest* echo "$lt_simple_compile_test_code" > conftest.$ac_ext if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_compile\""; } >&5 (eval $ac_compile) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } 2>conftest.err; then soname=conftest lib=conftest libobjs=conftest.$ac_objext deplibs= wl=$lt_prog_compiler_wl pic_flag=$lt_prog_compiler_pic compiler_flags=-v linker_flags=-v verstring= output_objdir=. libname=conftest lt_save_allow_undefined_flag=$allow_undefined_flag allow_undefined_flag= if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$archive_cmds 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1\""; } >&5 (eval $archive_cmds 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } then lt_cv_archive_cmds_need_lc=no else lt_cv_archive_cmds_need_lc=yes fi allow_undefined_flag=$lt_save_allow_undefined_flag else cat conftest.err 1>&5 fi $RM conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_archive_cmds_need_lc" >&5 $as_echo "$lt_cv_archive_cmds_need_lc" >&6; } archive_cmds_need_lc=$lt_cv_archive_cmds_need_lc ;; esac fi ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: checking dynamic linker characteristics" >&5 $as_echo_n "checking dynamic linker characteristics... " >&6; } if test yes = "$GCC"; then case $host_os in darwin*) lt_awk_arg='/^libraries:/,/LR/' ;; *) lt_awk_arg='/^libraries:/' ;; esac case $host_os in mingw* | cegcc*) lt_sed_strip_eq='s|=\([A-Za-z]:\)|\1|g' ;; *) lt_sed_strip_eq='s|=/|/|g' ;; esac lt_search_path_spec=`$CC -print-search-dirs | awk $lt_awk_arg | $SED -e "s/^libraries://" -e $lt_sed_strip_eq` case $lt_search_path_spec in *\;*) # if the path contains ";" then we assume it to be the separator # otherwise default to the standard path separator (i.e. ":") - it is # assumed that no part of a normal pathname contains ";" but that should # okay in the real world where ";" in dirpaths is itself problematic. lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED 's/;/ /g'` ;; *) lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED "s/$PATH_SEPARATOR/ /g"` ;; esac # Ok, now we have the path, separated by spaces, we can step through it # and add multilib dir if necessary... lt_tmp_lt_search_path_spec= lt_multi_os_dir=/`$CC $CPPFLAGS $CFLAGS $LDFLAGS -print-multi-os-directory 2>/dev/null` # ...but if some path component already ends with the multilib dir we assume # that all is fine and trust -print-search-dirs as is (GCC 4.2? or newer). case "$lt_multi_os_dir; $lt_search_path_spec " in "/; "* | "/.; "* | "/./; "* | *"$lt_multi_os_dir "* | *"$lt_multi_os_dir/ "*) lt_multi_os_dir= ;; esac for lt_sys_path in $lt_search_path_spec; do if test -d "$lt_sys_path$lt_multi_os_dir"; then lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path$lt_multi_os_dir" elif test -n "$lt_multi_os_dir"; then test -d "$lt_sys_path" && \ lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path" fi done lt_search_path_spec=`$ECHO "$lt_tmp_lt_search_path_spec" | awk ' BEGIN {RS = " "; FS = "/|\n";} { lt_foo = ""; lt_count = 0; for (lt_i = NF; lt_i > 0; lt_i--) { if ($lt_i != "" && $lt_i != ".") { if ($lt_i == "..") { lt_count++; } else { if (lt_count == 0) { lt_foo = "/" $lt_i lt_foo; } else { lt_count--; } } } } if (lt_foo != "") { lt_freq[lt_foo]++; } if (lt_freq[lt_foo] == 1) { print lt_foo; } }'` # AWK program above erroneously prepends '/' to C:/dos/paths # for these hosts. case $host_os in mingw* | cegcc*) lt_search_path_spec=`$ECHO "$lt_search_path_spec" |\ $SED 's|/\([A-Za-z]:\)|\1|g'` ;; esac sys_lib_search_path_spec=`$ECHO "$lt_search_path_spec" | $lt_NL2SP` else sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" fi library_names_spec= libname_spec='lib$name' soname_spec= shrext_cmds=.so postinstall_cmds= postuninstall_cmds= finish_cmds= finish_eval= shlibpath_var= shlibpath_overrides_runpath=unknown version_type=none dynamic_linker="$host_os ld.so" sys_lib_dlsearch_path_spec="/lib /usr/lib" need_lib_prefix=unknown hardcode_into_libs=no # when you set need_version to no, make sure it does not cause -set_version # flags to be left without arguments need_version=unknown case $host_os in aix3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname.a' shlibpath_var=LIBPATH # AIX 3 has no versioning support, so we append a major version to the name. soname_spec='$libname$release$shared_ext$major' ;; aix[4-9]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no hardcode_into_libs=yes if test ia64 = "$host_cpu"; then # AIX 5 supports IA64 library_names_spec='$libname$release$shared_ext$major $libname$release$shared_ext$versuffix $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH else # With GCC up to 2.95.x, collect2 would create an import file # for dependence libraries. The import file would start with # the line '#! .'. This would cause the generated library to # depend on '.', always an invalid library. This was fixed in # development snapshots of GCC prior to 3.0. case $host_os in aix4 | aix4.[01] | aix4.[01].*) if { echo '#if __GNUC__ > 2 || (__GNUC__ == 2 && __GNUC_MINOR__ >= 97)' echo ' yes ' echo '#endif'; } | $CC -E - | $GREP yes > /dev/null; then : else can_build_shared=no fi ;; esac # Using Import Files as archive members, it is possible to support # filename-based versioning of shared library archives on AIX. While # this would work for both with and without runtime linking, it will # prevent static linking of such archives. So we do filename-based # shared library versioning with .so extension only, which is used # when both runtime linking and shared linking is enabled. # Unfortunately, runtime linking may impact performance, so we do # not want this to be the default eventually. Also, we use the # versioned .so libs for executables only if there is the -brtl # linker flag in LDFLAGS as well, or --with-aix-soname=svr4 only. # To allow for filename-based versioning support, we need to create # libNAME.so.V as an archive file, containing: # *) an Import File, referring to the versioned filename of the # archive as well as the shared archive member, telling the # bitwidth (32 or 64) of that shared object, and providing the # list of exported symbols of that shared object, eventually # decorated with the 'weak' keyword # *) the shared object with the F_LOADONLY flag set, to really avoid # it being seen by the linker. # At run time we better use the real file rather than another symlink, # but for link time we create the symlink libNAME.so -> libNAME.so.V case $with_aix_soname,$aix_use_runtimelinking in # AIX (on Power*) has no versioning support, so currently we cannot hardcode correct # soname into executable. Probably we can add versioning support to # collect2, so additional links can be useful in future. aix,yes) # traditional libtool dynamic_linker='AIX unversionable lib.so' # If using run time linking (on AIX 4.2 or later) use lib.so # instead of lib.a to let people know that these are not # typical AIX shared libraries. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; aix,no) # traditional AIX only dynamic_linker='AIX lib.a(lib.so.V)' # We preserve .a as extension for shared libraries through AIX4.2 # and later when we are not doing run time linking. library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' ;; svr4,*) # full svr4 only dynamic_linker="AIX lib.so.V($shared_archive_member_spec.o)" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,yes) # both, prefer svr4 dynamic_linker="AIX lib.so.V($shared_archive_member_spec.o), lib.a(lib.so.V)" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # unpreferred sharedlib libNAME.a needs extra handling postinstall_cmds='test -n "$linkname" || linkname="$realname"~func_stripname "" ".so" "$linkname"~$install_shared_prog "$dir/$func_stripname_result.$libext" "$destdir/$func_stripname_result.$libext"~test -z "$tstripme" || test -z "$striplib" || $striplib "$destdir/$func_stripname_result.$libext"' postuninstall_cmds='for n in $library_names $old_library; do :; done~func_stripname "" ".so" "$n"~test "$func_stripname_result" = "$n" || func_append rmfiles " $odir/$func_stripname_result.$libext"' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,no) # both, prefer aix dynamic_linker="AIX lib.a(lib.so.V), lib.so.V($shared_archive_member_spec.o)" library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' # unpreferred sharedlib libNAME.so.V and symlink libNAME.so need extra handling postinstall_cmds='test -z "$dlname" || $install_shared_prog $dir/$dlname $destdir/$dlname~test -z "$tstripme" || test -z "$striplib" || $striplib $destdir/$dlname~test -n "$linkname" || linkname=$realname~func_stripname "" ".a" "$linkname"~(cd "$destdir" && $LN_S -f $dlname $func_stripname_result.so)' postuninstall_cmds='test -z "$dlname" || func_append rmfiles " $odir/$dlname"~for n in $old_library $library_names; do :; done~func_stripname "" ".a" "$n"~func_append rmfiles " $odir/$func_stripname_result.so"' ;; esac shlibpath_var=LIBPATH fi ;; amigaos*) case $host_cpu in powerpc) # Since July 2007 AmigaOS4 officially supports .so libraries. # When compiling the executable, add -use-dynld -Lsobjs: to the compileline. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; m68k) library_names_spec='$libname.ixlibrary $libname.a' # Create ${libname}_ixlibrary.a entries in /sys/libs. finish_eval='for lib in `ls $libdir/*.ixlibrary 2>/dev/null`; do libname=`func_echo_all "$lib" | $SED '\''s%^.*/\([^/]*\)\.ixlibrary$%\1%'\''`; $RM /sys/libs/${libname}_ixlibrary.a; $show "cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a"; cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a || exit 1; done' ;; esac ;; beos*) library_names_spec='$libname$shared_ext' dynamic_linker="$host_os ld.so" shlibpath_var=LIBRARY_PATH ;; bsdi[45]*) version_type=linux # correct to gnu/linux during the next big refactor need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/shlib /usr/lib /usr/X11/lib /usr/contrib/lib /lib /usr/local/lib" sys_lib_dlsearch_path_spec="/shlib /usr/lib /usr/local/lib" # the default ld.so.conf also contains /usr/contrib/lib and # /usr/X11R6/lib (/usr/X11 is a link to /usr/X11R6), but let us allow # libtool to hard-code these into programs ;; cygwin* | mingw* | pw32* | cegcc*) version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no case $GCC,$cc_basename in yes,*) # gcc library_names_spec='$libname.dll.a' # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes case $host_os in cygwin*) # Cygwin DLLs use 'cyg' prefix rather than 'lib' soname_spec='`echo $libname | sed -e 's/^lib/cyg/'``echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/lib/w32api" ;; mingw* | cegcc*) # MinGW DLLs use traditional 'lib' prefix soname_spec='$libname`echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' ;; pw32*) # pw32 DLLs use 'pw' prefix rather than 'lib' library_names_spec='`echo $libname | sed -e 's/^lib/pw/'``echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' ;; esac dynamic_linker='Win32 ld.exe' ;; *,cl*) # Native MSVC libname_spec='$name' soname_spec='$libname`echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext' library_names_spec='$libname.dll.lib' case $build_os in mingw*) sys_lib_search_path_spec= lt_save_ifs=$IFS IFS=';' for lt_path in $LIB do IFS=$lt_save_ifs # Let DOS variable expansion print the short 8.3 style file name. lt_path=`cd "$lt_path" 2>/dev/null && cmd //C "for %i in (".") do @echo %~si"` sys_lib_search_path_spec="$sys_lib_search_path_spec $lt_path" done IFS=$lt_save_ifs # Convert to MSYS style. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | sed -e 's|\\\\|/|g' -e 's| \\([a-zA-Z]\\):| /\\1|g' -e 's|^ ||'` ;; cygwin*) # Convert to unix form, then to dos form, then back to unix form # but this time dos style (no spaces!) so that the unix form looks # like /cygdrive/c/PROGRA~1:/cygdr... sys_lib_search_path_spec=`cygpath --path --unix "$LIB"` sys_lib_search_path_spec=`cygpath --path --dos "$sys_lib_search_path_spec" 2>/dev/null` sys_lib_search_path_spec=`cygpath --path --unix "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` ;; *) sys_lib_search_path_spec=$LIB if $ECHO "$sys_lib_search_path_spec" | $GREP ';[c-zC-Z]:/' >/dev/null; then # It is most probably a Windows format PATH. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e 's/;/ /g'` else sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` fi # FIXME: find the short name or the path components, as spaces are # common. (e.g. "Program Files" -> "PROGRA~1") ;; esac # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes dynamic_linker='Win32 link.exe' ;; *) # Assume MSVC wrapper library_names_spec='$libname`echo $release | $SED -e 's/[.]/-/g'`$versuffix$shared_ext $libname.lib' dynamic_linker='Win32 ld.exe' ;; esac # FIXME: first we should search . and the directory the executable is in shlibpath_var=PATH ;; darwin* | rhapsody*) dynamic_linker="$host_os dyld" version_type=darwin need_lib_prefix=no need_version=no library_names_spec='$libname$release$major$shared_ext $libname$shared_ext' soname_spec='$libname$release$major$shared_ext' shlibpath_overrides_runpath=yes shlibpath_var=DYLD_LIBRARY_PATH shrext_cmds='`test .$module = .yes && echo .so || echo .dylib`' sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/local/lib" sys_lib_dlsearch_path_spec='/usr/local/lib /lib /usr/lib' ;; dgux*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; freebsd* | dragonfly*) # DragonFly does not have aout. When/if they implement a new # versioning mechanism, adjust this. if test -x /usr/bin/objformat; then objformat=`/usr/bin/objformat` else case $host_os in freebsd[23].*) objformat=aout ;; *) objformat=elf ;; esac fi version_type=freebsd-$objformat case $version_type in freebsd-elf*) library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' need_version=no need_lib_prefix=no ;; freebsd-*) library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' need_version=yes ;; esac shlibpath_var=LD_LIBRARY_PATH case $host_os in freebsd2.*) shlibpath_overrides_runpath=yes ;; freebsd3.[01]* | freebsdelf3.[01]*) shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; freebsd3.[2-9]* | freebsdelf3.[2-9]* | \ freebsd4.[0-5] | freebsdelf4.[0-5] | freebsd4.1.1 | freebsdelf4.1.1) shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; *) # from 4.6 on, and DragonFly shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; esac ;; haiku*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no dynamic_linker="$host_os runtime_loader" library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LIBRARY_PATH shlibpath_overrides_runpath=no sys_lib_dlsearch_path_spec='/boot/home/config/lib /boot/common/lib /boot/system/lib' hardcode_into_libs=yes ;; hpux9* | hpux10* | hpux11*) # Give a soname corresponding to the major version so that dld.sl refuses to # link against other versions. version_type=sunos need_lib_prefix=no need_version=no case $host_cpu in ia64*) shrext_cmds='.so' hardcode_into_libs=yes dynamic_linker="$host_os dld.so" shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' if test 32 = "$HPUX_IA64_MODE"; then sys_lib_search_path_spec="/usr/lib/hpux32 /usr/local/lib/hpux32 /usr/local/lib" sys_lib_dlsearch_path_spec=/usr/lib/hpux32 else sys_lib_search_path_spec="/usr/lib/hpux64 /usr/local/lib/hpux64" sys_lib_dlsearch_path_spec=/usr/lib/hpux64 fi ;; hppa*64*) shrext_cmds='.sl' hardcode_into_libs=yes dynamic_linker="$host_os dld.sl" shlibpath_var=LD_LIBRARY_PATH # How should we handle SHLIB_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' sys_lib_search_path_spec="/usr/lib/pa20_64 /usr/ccs/lib/pa20_64" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; *) shrext_cmds='.sl' dynamic_linker="$host_os dld.sl" shlibpath_var=SHLIB_PATH shlibpath_overrides_runpath=no # +s is required to enable SHLIB_PATH library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' ;; esac # HP-UX runs *really* slowly unless shared libraries are mode 555, ... postinstall_cmds='chmod 555 $lib' # or fails outright, so override atomically: install_override_mode=555 ;; interix[3-9]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='Interix 3.x ld.so.1 (PE, like ELF)' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; irix5* | irix6* | nonstopux*) case $host_os in nonstopux*) version_type=nonstopux ;; *) if test yes = "$lt_cv_prog_gnu_ld"; then version_type=linux # correct to gnu/linux during the next big refactor else version_type=irix fi ;; esac need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$release$shared_ext $libname$shared_ext' case $host_os in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in # libtool.m4 will add one of these switches to LD *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= libmagic=32-bit;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 libmagic=N32;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 libmagic=64-bit;; *) libsuff= shlibsuff= libmagic=never-match;; esac ;; esac shlibpath_var=LD_LIBRARY${shlibsuff}_PATH shlibpath_overrides_runpath=no sys_lib_search_path_spec="/usr/lib$libsuff /lib$libsuff /usr/local/lib$libsuff" sys_lib_dlsearch_path_spec="/usr/lib$libsuff /lib$libsuff" hardcode_into_libs=yes ;; # No shared lib support for Linux oldld, aout, or coff. linux*oldld* | linux*aout* | linux*coff*) dynamic_linker=no ;; linux*android*) version_type=none # Android doesn't support versioned libraries. need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext' soname_spec='$libname$release$shared_ext' finish_cmds= shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes dynamic_linker='Android linker' # Don't embed -rpath directories since the linker doesn't support them. hardcode_libdir_flag_spec='-L$libdir' ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig -n $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no # Some binutils ld are patched to set DT_RUNPATH if ${lt_cv_shlibpath_overrides_runpath+:} false; then : $as_echo_n "(cached) " >&6 else lt_cv_shlibpath_overrides_runpath=no save_LDFLAGS=$LDFLAGS save_libdir=$libdir eval "libdir=/foo; wl=\"$lt_prog_compiler_wl\"; \ LDFLAGS=\"\$LDFLAGS $hardcode_libdir_flag_spec\"" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : if ($OBJDUMP -p conftest$ac_exeext) 2>/dev/null | grep "RUNPATH.*$libdir" >/dev/null; then : lt_cv_shlibpath_overrides_runpath=yes fi fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS=$save_LDFLAGS libdir=$save_libdir fi shlibpath_overrides_runpath=$lt_cv_shlibpath_overrides_runpath # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes # Add ABI-specific directories to the system library path. sys_lib_dlsearch_path_spec="/lib64 /usr/lib64 /lib /usr/lib" # Ideally, we could use ldconfig to report *all* directores which are # searched for libraries, however this is still not possible. Aside from not # being certain /sbin/ldconfig is available, command # 'ldconfig -N -X -v | grep ^/' on 64bit Fedora does not report /usr/lib64, # even though it is searched at run-time. Try to do the best guess by # appending ld.so.conf contents (and includes) to the search path. if test -f /etc/ld.so.conf; then lt_ld_extra=`awk '/^include / { system(sprintf("cd /etc; cat %s 2>/dev/null", \$2)); skip = 1; } { if (!skip) print \$0; skip = 0; }' < /etc/ld.so.conf | $SED -e 's/#.*//;/^[ ]*hwcap[ ]/d;s/[:, ]/ /g;s/=[^=]*$//;s/=[^= ]* / /g;s/"//g;/^$/d' | tr '\n' ' '` sys_lib_dlsearch_path_spec="$sys_lib_dlsearch_path_spec $lt_ld_extra" fi # We used to test for /lib/ld.so.1 and disable shared libraries on # powerpc, because MkLinux only supported shared libraries with the # GNU dynamic linker. Since this was broken with cross compilers, # most powerpc-linux boxes support dynamic linking these days and # people can always --disable-shared, the test was removed, and we # assume the GNU/Linux dynamic linker is in use. dynamic_linker='GNU/Linux ld.so' ;; netbsd*) version_type=sunos need_lib_prefix=no need_version=no if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' dynamic_linker='NetBSD (a.out) ld.so' else library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='NetBSD ld.elf_so' fi shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; newsos6) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; *nto* | *qnx*) version_type=qnx need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes dynamic_linker='ldqnx.so' ;; openbsd* | bitrig*) version_type=sunos sys_lib_dlsearch_path_spec=/usr/lib need_lib_prefix=no if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then need_version=no else need_version=yes fi library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; os2*) libname_spec='$name' version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no # OS/2 can only load a DLL with a base name of 8 characters or less. soname_spec='`test -n "$os2dllname" && libname="$os2dllname"; v=$($ECHO $release$versuffix | tr -d .-); n=$($ECHO $libname | cut -b -$((8 - ${#v})) | tr . _); $ECHO $n$v`$shared_ext' library_names_spec='${libname}_dll.$libext' dynamic_linker='OS/2 ld.exe' shlibpath_var=BEGINLIBPATH sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; $ECHO \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; $ECHO \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' ;; osf3* | osf4* | osf5*) version_type=osf need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/usr/shlib /usr/ccs/lib /usr/lib/cmplrs/cc /usr/lib /usr/local/lib /var/shlib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; rdos*) dynamic_linker=no ;; solaris*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes # ldd complains unless libraries are executable postinstall_cmds='chmod +x $lib' ;; sunos4*) version_type=sunos library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/usr/etc" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes if test yes = "$with_gnu_ld"; then need_lib_prefix=no fi need_version=yes ;; sysv4 | sysv4.3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH case $host_vendor in sni) shlibpath_overrides_runpath=no need_lib_prefix=no runpath_var=LD_RUN_PATH ;; siemens) need_lib_prefix=no ;; motorola) need_lib_prefix=no need_version=no shlibpath_overrides_runpath=no sys_lib_search_path_spec='/lib /usr/lib /usr/ccs/lib' ;; esac ;; sysv4*MP*) if test -d /usr/nec; then version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$shared_ext.$versuffix $libname$shared_ext.$major $libname$shared_ext' soname_spec='$libname$shared_ext.$major' shlibpath_var=LD_LIBRARY_PATH fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) version_type=sco need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes if test yes = "$with_gnu_ld"; then sys_lib_search_path_spec='/usr/local/lib /usr/gnu/lib /usr/ccs/lib /usr/lib /lib' else sys_lib_search_path_spec='/usr/ccs/lib /usr/lib' case $host_os in sco3.2v5*) sys_lib_search_path_spec="$sys_lib_search_path_spec /lib" ;; esac fi sys_lib_dlsearch_path_spec='/usr/lib' ;; tpf*) # TPF is a cross-target only. Preferred cross-host = GNU/Linux. version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; uts4*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; *) dynamic_linker=no ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $dynamic_linker" >&5 $as_echo "$dynamic_linker" >&6; } test no = "$dynamic_linker" && can_build_shared=no variables_saved_for_relink="PATH $shlibpath_var $runpath_var" if test yes = "$GCC"; then variables_saved_for_relink="$variables_saved_for_relink GCC_EXEC_PREFIX COMPILER_PATH LIBRARY_PATH" fi if test set = "${lt_cv_sys_lib_search_path_spec+set}"; then sys_lib_search_path_spec=$lt_cv_sys_lib_search_path_spec fi if test set = "${lt_cv_sys_lib_dlsearch_path_spec+set}"; then sys_lib_dlsearch_path_spec=$lt_cv_sys_lib_dlsearch_path_spec fi # remember unaugmented sys_lib_dlsearch_path content for libtool script decls... configure_time_dlsearch_path=$sys_lib_dlsearch_path_spec # ... but it needs LT_SYS_LIBRARY_PATH munging for other configure-time code func_munge_path_list sys_lib_dlsearch_path_spec "$LT_SYS_LIBRARY_PATH" # to be used as default LT_SYS_LIBRARY_PATH value in generated libtool configure_time_lt_sys_library_path=$LT_SYS_LIBRARY_PATH { $as_echo "$as_me:${as_lineno-$LINENO}: checking how to hardcode library paths into programs" >&5 $as_echo_n "checking how to hardcode library paths into programs... " >&6; } hardcode_action= if test -n "$hardcode_libdir_flag_spec" || test -n "$runpath_var" || test yes = "$hardcode_automatic"; then # We can hardcode non-existent directories. if test no != "$hardcode_direct" && # If the only mechanism to avoid hardcoding is shlibpath_var, we # have to relink, otherwise we might link with an installed library # when we should be linking with a yet-to-be-installed one ## test no != "$_LT_TAGVAR(hardcode_shlibpath_var, )" && test no != "$hardcode_minus_L"; then # Linking always hardcodes the temporary library directory. hardcode_action=relink else # We can link without hardcoding, and we can hardcode nonexisting dirs. hardcode_action=immediate fi else # We cannot hardcode anything, or else we can only hardcode existing # directories. hardcode_action=unsupported fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $hardcode_action" >&5 $as_echo "$hardcode_action" >&6; } if test relink = "$hardcode_action" || test yes = "$inherit_rpath"; then # Fast installation is not supported enable_fast_install=no elif test yes = "$shlibpath_overrides_runpath" || test no = "$enable_shared"; then # Fast installation is not necessary enable_fast_install=needless fi if test yes != "$enable_dlopen"; then enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown else lt_cv_dlopen=no lt_cv_dlopen_libs= case $host_os in beos*) lt_cv_dlopen=load_add_on lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ;; mingw* | pw32* | cegcc*) lt_cv_dlopen=LoadLibrary lt_cv_dlopen_libs= ;; cygwin*) lt_cv_dlopen=dlopen lt_cv_dlopen_libs= ;; darwin*) # if libdl is installed we need to link against it { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -ldl" >&5 $as_echo_n "checking for dlopen in -ldl... " >&6; } if ${ac_cv_lib_dl_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dl_dlopen=yes else ac_cv_lib_dl_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dl_dlopen" >&5 $as_echo "$ac_cv_lib_dl_dlopen" >&6; } if test "x$ac_cv_lib_dl_dlopen" = xyes; then : lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl else lt_cv_dlopen=dyld lt_cv_dlopen_libs= lt_cv_dlopen_self=yes fi ;; tpf*) # Don't try to run any link tests for TPF. We know it's impossible # because TPF is a cross-compiler, and we know how we open DSOs. lt_cv_dlopen=dlopen lt_cv_dlopen_libs= lt_cv_dlopen_self=no ;; *) ac_fn_c_check_func "$LINENO" "shl_load" "ac_cv_func_shl_load" if test "x$ac_cv_func_shl_load" = xyes; then : lt_cv_dlopen=shl_load else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for shl_load in -ldld" >&5 $as_echo_n "checking for shl_load in -ldld... " >&6; } if ${ac_cv_lib_dld_shl_load+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char shl_load (); int main () { return shl_load (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dld_shl_load=yes else ac_cv_lib_dld_shl_load=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dld_shl_load" >&5 $as_echo "$ac_cv_lib_dld_shl_load" >&6; } if test "x$ac_cv_lib_dld_shl_load" = xyes; then : lt_cv_dlopen=shl_load lt_cv_dlopen_libs=-ldld else ac_fn_c_check_func "$LINENO" "dlopen" "ac_cv_func_dlopen" if test "x$ac_cv_func_dlopen" = xyes; then : lt_cv_dlopen=dlopen else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -ldl" >&5 $as_echo_n "checking for dlopen in -ldl... " >&6; } if ${ac_cv_lib_dl_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldl $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dl_dlopen=yes else ac_cv_lib_dl_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dl_dlopen" >&5 $as_echo "$ac_cv_lib_dl_dlopen" >&6; } if test "x$ac_cv_lib_dl_dlopen" = xyes; then : lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dlopen in -lsvld" >&5 $as_echo_n "checking for dlopen in -lsvld... " >&6; } if ${ac_cv_lib_svld_dlopen+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-lsvld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dlopen (); int main () { return dlopen (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_svld_dlopen=yes else ac_cv_lib_svld_dlopen=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_svld_dlopen" >&5 $as_echo "$ac_cv_lib_svld_dlopen" >&6; } if test "x$ac_cv_lib_svld_dlopen" = xyes; then : lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-lsvld else { $as_echo "$as_me:${as_lineno-$LINENO}: checking for dld_link in -ldld" >&5 $as_echo_n "checking for dld_link in -ldld... " >&6; } if ${ac_cv_lib_dld_dld_link+:} false; then : $as_echo_n "(cached) " >&6 else ac_check_lib_save_LIBS=$LIBS LIBS="-ldld $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char dld_link (); int main () { return dld_link (); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ac_cv_lib_dld_dld_link=yes else ac_cv_lib_dld_dld_link=no fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS=$ac_check_lib_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_lib_dld_dld_link" >&5 $as_echo "$ac_cv_lib_dld_dld_link" >&6; } if test "x$ac_cv_lib_dld_dld_link" = xyes; then : lt_cv_dlopen=dld_link lt_cv_dlopen_libs=-ldld fi fi fi fi fi fi ;; esac if test no = "$lt_cv_dlopen"; then enable_dlopen=no else enable_dlopen=yes fi case $lt_cv_dlopen in dlopen) save_CPPFLAGS=$CPPFLAGS test yes = "$ac_cv_header_dlfcn_h" && CPPFLAGS="$CPPFLAGS -DHAVE_DLFCN_H" save_LDFLAGS=$LDFLAGS wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $export_dynamic_flag_spec\" save_LIBS=$LIBS LIBS="$lt_cv_dlopen_libs $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether a program can dlopen itself" >&5 $as_echo_n "checking whether a program can dlopen itself... " >&6; } if ${lt_cv_dlopen_self+:} false; then : $as_echo_n "(cached) " >&6 else if test yes = "$cross_compiling"; then : lt_cv_dlopen_self=cross else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF #line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisibility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined __GNUC__ && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; } _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s "conftest$ac_exeext" 2>/dev/null; then (./conftest; exit; ) >&5 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) lt_cv_dlopen_self=yes ;; x$lt_dlneed_uscore) lt_cv_dlopen_self=yes ;; x$lt_dlunknown|x*) lt_cv_dlopen_self=no ;; esac else : # compilation failed lt_cv_dlopen_self=no fi fi rm -fr conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_dlopen_self" >&5 $as_echo "$lt_cv_dlopen_self" >&6; } if test yes = "$lt_cv_dlopen_self"; then wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $lt_prog_compiler_static\" { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether a statically linked program can dlopen itself" >&5 $as_echo_n "checking whether a statically linked program can dlopen itself... " >&6; } if ${lt_cv_dlopen_self_static+:} false; then : $as_echo_n "(cached) " >&6 else if test yes = "$cross_compiling"; then : lt_cv_dlopen_self_static=cross else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF #line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisibility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined __GNUC__ && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; } _LT_EOF if { { eval echo "\"\$as_me\":${as_lineno-$LINENO}: \"$ac_link\""; } >&5 (eval $ac_link) 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; } && test -s "conftest$ac_exeext" 2>/dev/null; then (./conftest; exit; ) >&5 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) lt_cv_dlopen_self_static=yes ;; x$lt_dlneed_uscore) lt_cv_dlopen_self_static=yes ;; x$lt_dlunknown|x*) lt_cv_dlopen_self_static=no ;; esac else : # compilation failed lt_cv_dlopen_self_static=no fi fi rm -fr conftest* fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $lt_cv_dlopen_self_static" >&5 $as_echo "$lt_cv_dlopen_self_static" >&6; } fi CPPFLAGS=$save_CPPFLAGS LDFLAGS=$save_LDFLAGS LIBS=$save_LIBS ;; esac case $lt_cv_dlopen_self in yes|no) enable_dlopen_self=$lt_cv_dlopen_self ;; *) enable_dlopen_self=unknown ;; esac case $lt_cv_dlopen_self_static in yes|no) enable_dlopen_self_static=$lt_cv_dlopen_self_static ;; *) enable_dlopen_self_static=unknown ;; esac fi striplib= old_striplib= { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether stripping libraries is possible" >&5 $as_echo_n "checking whether stripping libraries is possible... " >&6; } if test -n "$STRIP" && $STRIP -V 2>&1 | $GREP "GNU strip" >/dev/null; then test -z "$old_striplib" && old_striplib="$STRIP --strip-debug" test -z "$striplib" && striplib="$STRIP --strip-unneeded" { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else # FIXME - insert some real tests, host_os isn't really good enough case $host_os in darwin*) if test -n "$STRIP"; then striplib="$STRIP -x" old_striplib="$STRIP -S" { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi ;; *) { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } ;; esac fi # Report what library types will actually be built { $as_echo "$as_me:${as_lineno-$LINENO}: checking if libtool supports shared libraries" >&5 $as_echo_n "checking if libtool supports shared libraries... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: $can_build_shared" >&5 $as_echo "$can_build_shared" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to build shared libraries" >&5 $as_echo_n "checking whether to build shared libraries... " >&6; } test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[4-9]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $enable_shared" >&5 $as_echo "$enable_shared" >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to build static libraries" >&5 $as_echo_n "checking whether to build static libraries... " >&6; } # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: $enable_static" >&5 $as_echo "$enable_static" >&6; } fi ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu CC=$lt_save_CC ac_config_commands="$ac_config_commands libtool" # Only expand once: if test "$use_openbsd_libtool" = "true" && test -x /usr/bin/libtool; then echo using OpenBSD libtool LIBTOOL=/usr/bin/libtool fi if test "$use_openbsd_libtool" = "true" ; then OPENBSD_LIBTOOL_TRUE= OPENBSD_LIBTOOL_FALSE='#' else OPENBSD_LIBTOOL_TRUE='#' OPENBSD_LIBTOOL_FALSE= fi # Check whether --enable-symvers was given. if test "${enable_symvers+set}" = set; then : enableval=$enable_symvers; want_symvers=$enableval else want_symvers=yes fi if test x$want_symvers = xyes; then : { $as_echo "$as_me:${as_lineno-$LINENO}: checking linker version script flag" >&5 $as_echo_n "checking linker version script flag... " >&6; } if ${ax_cv_check_vscript_flag+:} false; then : $as_echo_n "(cached) " >&6 else ax_cv_check_vscript_flag=unsupported ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,--version-script,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=--version-script fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu if test x$ax_cv_check_vscript_flag = xunsupported; then : ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,-M,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=-M fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi if test x$ax_cv_check_vscript_flag != xunsupported; then : ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: show; local: *; };" > conftest.map if test xyes = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,$ax_cv_check_vscript_flag,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_flag=unsupported fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ax_cv_check_vscript_flag" >&5 $as_echo "$ax_cv_check_vscript_flag" >&6; } if test x$ax_cv_check_vscript_flag != xunsupported; then : ax_check_vscript_flag=$ax_cv_check_vscript_flag { $as_echo "$as_me:${as_lineno-$LINENO}: checking if version scripts can use complex wildcards" >&5 $as_echo_n "checking if version scripts can use complex wildcards... " >&6; } if ${ax_cv_check_vscript_complex_wildcards+:} false; then : $as_echo_n "(cached) " >&6 else ax_cv_check_vscript_complex_wildcards=no ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: sh*; local: *; };" > conftest.map if test x = xyes; then : echo "{" >> conftest.map fi LDFLAGS="$LDFLAGS -Wl,$ax_cv_check_vscript_flag,conftest.map" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ int show, hide; int main () { ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : ax_cv_check_vscript_complex_wildcards=yes fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map ac_ext=c ac_cpp='$CPP $CPPFLAGS' ac_compile='$CC -c $CFLAGS $CPPFLAGS conftest.$ac_ext >&5' ac_link='$CC -o conftest$ac_exeext $CFLAGS $CPPFLAGS $LDFLAGS conftest.$ac_ext $LIBS >&5' ac_compiler_gnu=$ac_cv_c_compiler_gnu fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ax_cv_check_vscript_complex_wildcards" >&5 $as_echo "$ax_cv_check_vscript_complex_wildcards" >&6; } ax_check_vscript_complex_wildcards="$ax_cv_check_vscript_complex_wildcards" else ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no fi else { $as_echo "$as_me:${as_lineno-$LINENO}: checking linker version script flag" >&5 $as_echo_n "checking linker version script flag... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: disabled" >&5 $as_echo "disabled" >&6; } ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no fi if test x$ax_check_vscript_flag != x; then : VSCRIPT_LDFLAGS="-Wl,$ax_check_vscript_flag" fi if test x$ax_check_vscript_flag != x; then HAVE_VSCRIPT_TRUE= HAVE_VSCRIPT_FALSE='#' else HAVE_VSCRIPT_TRUE='#' HAVE_VSCRIPT_FALSE= fi if test x$ax_check_vscript_complex_wildcards = xyes; then HAVE_VSCRIPT_COMPLEX_TRUE= HAVE_VSCRIPT_COMPLEX_FALSE='#' else HAVE_VSCRIPT_COMPLEX_TRUE='#' HAVE_VSCRIPT_COMPLEX_FALSE= fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBXML2" >&5 $as_echo_n "checking for LIBXML2... " >&6; } if test -n "$LIBXML2_CFLAGS"; then pkg_cv_LIBXML2_CFLAGS="$LIBXML2_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBXML2_CFLAGS=`$PKG_CONFIG --cflags "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBXML2_LIBS"; then pkg_cv_LIBXML2_LIBS="$LIBXML2_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libxml-2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libxml-2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBXML2_LIBS=`$PKG_CONFIG --libs "libxml-2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBXML2_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libxml-2.0" 2>&1` else LIBXML2_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libxml-2.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBXML2_PKG_ERRORS" >&5 as_fn_error $? "Package requirements (libxml-2.0) were not met: $LIBXML2_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. Alternatively, you may set the environment variables LIBXML2_CFLAGS and LIBXML2_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details." "$LINENO" 5 elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. Alternatively, you may set the environment variables LIBXML2_CFLAGS and LIBXML2_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details. To get pkg-config, see . See \`config.log' for more details" "$LINENO" 5; } else LIBXML2_CFLAGS=$pkg_cv_LIBXML2_CFLAGS LIBXML2_LIBS=$pkg_cv_LIBXML2_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } fi # Check whether --with-builtin-json was given. if test "${with_builtin_json+set}" = set; then : withval=$with_builtin_json; fi json= if test "$with_builtin_json" != "yes"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for JSON" >&5 $as_echo_n "checking for JSON... " >&6; } if test -n "$JSON_CFLAGS"; then pkg_cv_JSON_CFLAGS="$JSON_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"json-parser\""; } >&5 ($PKG_CONFIG --exists --print-errors "json-parser") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_JSON_CFLAGS=`$PKG_CONFIG --cflags "json-parser" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$JSON_LIBS"; then pkg_cv_JSON_LIBS="$JSON_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"json-parser\""; } >&5 ($PKG_CONFIG --exists --print-errors "json-parser") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_JSON_LIBS=`$PKG_CONFIG --libs "json-parser" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then JSON_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "json-parser" 2>&1` else JSON_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "json-parser" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$JSON_PKG_ERRORS" >&5 : elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } : else JSON_CFLAGS=$pkg_cv_JSON_CFLAGS JSON_LIBS=$pkg_cv_JSON_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } JSON_PC=json-parser json=system fi fi if test "$with_builtin_json" != "no" && test "$json" = "" ; then : json=builtin oldLIBS="$LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for library containing pow" >&5 $as_echo_n "checking for library containing pow... " >&6; } if ${ac_cv_search_pow+:} false; then : $as_echo_n "(cached) " >&6 else ac_func_search_save_LIBS=$LIBS cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ /* Override any GCC internal prototype to avoid an error. Use char because int might match the return type of a GCC builtin and then its argument prototype would still apply. */ #ifdef __cplusplus extern "C" #endif char pow (); int main () { return pow (); ; return 0; } _ACEOF for ac_lib in '' m; do if test -z "$ac_lib"; then ac_res="none required" else ac_res=-l$ac_lib LIBS="-l$ac_lib $ac_func_search_save_LIBS" fi if ac_fn_c_try_link "$LINENO"; then : ac_cv_search_pow=$ac_res fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext if ${ac_cv_search_pow+:} false; then : break fi done if ${ac_cv_search_pow+:} false; then : else ac_cv_search_pow=no fi rm conftest.$ac_ext LIBS=$ac_func_search_save_LIBS fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_cv_search_pow" >&5 $as_echo "$ac_cv_search_pow" >&6; } ac_res=$ac_cv_search_pow if test "$ac_res" != no; then : test "$ac_res" = "none required" || LIBS="$ac_res $LIBS" fi LIBS="$oldLIBS" JSON_LIBS=$ac_cv_search_pow JSON_CFLAGS='-I$(srcdir)/json' fi if test "$json" = ""; then : as_fn_error $? "No json-parser package found and --without-builtin-json specified" "$LINENO" 5 fi if test "$json" = "builtin"; then BUILTIN_JSON_TRUE= BUILTIN_JSON_FALSE='#' else BUILTIN_JSON_TRUE='#' BUILTIN_JSON_FALSE= fi pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for ZLIB" >&5 $as_echo_n "checking for ZLIB... " >&6; } if test -n "$ZLIB_CFLAGS"; then pkg_cv_ZLIB_CFLAGS="$ZLIB_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"zlib\""; } >&5 ($PKG_CONFIG --exists --print-errors "zlib") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_ZLIB_CFLAGS=`$PKG_CONFIG --cflags "zlib" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$ZLIB_LIBS"; then pkg_cv_ZLIB_LIBS="$ZLIB_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"zlib\""; } >&5 ($PKG_CONFIG --exists --print-errors "zlib") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_ZLIB_LIBS=`$PKG_CONFIG --libs "zlib" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then ZLIB_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "zlib" 2>&1` else ZLIB_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "zlib" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$ZLIB_PKG_ERRORS" >&5 oldLIBS="$LIBS" LIBS="-lz $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for zlib without pkg-config" >&5 $as_echo_n "checking for zlib without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_LIBS=-lz else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against zlib" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } oldLIBS="$LIBS" LIBS="-lz $LIBS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking for zlib without pkg-config" >&5 $as_echo_n "checking for zlib without pkg-config... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_LIBS=-lz else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "Could not build against zlib" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" else ZLIB_CFLAGS=$pkg_cv_ZLIB_CFLAGS ZLIB_LIBS=$pkg_cv_ZLIB_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } ZLIB_PC=zlib fi # Check whether --with-libproxy was given. if test "${with_libproxy+set}" = set; then : withval=$with_libproxy; fi if test "x$with_libproxy" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPROXY" >&5 $as_echo_n "checking for LIBPROXY... " >&6; } if test -n "$LIBPROXY_CFLAGS"; then pkg_cv_LIBPROXY_CFLAGS="$LIBPROXY_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libproxy-1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libproxy-1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPROXY_CFLAGS=`$PKG_CONFIG --cflags "libproxy-1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPROXY_LIBS"; then pkg_cv_LIBPROXY_LIBS="$LIBPROXY_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libproxy-1.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libproxy-1.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPROXY_LIBS=`$PKG_CONFIG --libs "libproxy-1.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPROXY_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libproxy-1.0" 2>&1` else LIBPROXY_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libproxy-1.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPROXY_PKG_ERRORS" >&5 libproxy_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libproxy_pkg=no else LIBPROXY_CFLAGS=$pkg_cv_LIBPROXY_CFLAGS LIBPROXY_LIBS=$pkg_cv_LIBPROXY_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPROXY_PC=libproxy-1.0 $as_echo "#define LIBPROXY_HDR \"proxy.h\"" >>confdefs.h libproxy_pkg=yes fi else libproxy_pkg=disabled fi if (test "$libproxy_pkg" = "no"); then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for libproxy" >&5 $as_echo_n "checking for libproxy... " >&6; } oldLIBS="$LIBS" LIBS="-lproxy $LIBS" cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { (void)px_proxy_factory_new(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with libproxy.h)" >&5 $as_echo "yes (with libproxy.h)" >&6; } $as_echo "#define LIBPROXY_HDR \"libproxy.h\"" >>confdefs.h LIBPROXY_LIBS=-lproxy libproxy_pkg=yes else cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { (void)px_proxy_factory_new(); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes (with proxy.h)" >&5 $as_echo "yes (with proxy.h)" >&6; } $as_echo "#define LIBPROXY_HDR \"proxy.h\"" >>confdefs.h LIBPROXY_LIBS=-lproxy libproxy_pkg=yes else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$oldLIBS" fi # Check whether --with-stoken was given. if test "${with_stoken+set}" = set; then : withval=$with_stoken; fi if test "x$with_stoken" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBSTOKEN" >&5 $as_echo_n "checking for LIBSTOKEN... " >&6; } if test -n "$LIBSTOKEN_CFLAGS"; then pkg_cv_LIBSTOKEN_CFLAGS="$LIBSTOKEN_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"stoken\""; } >&5 ($PKG_CONFIG --exists --print-errors "stoken") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBSTOKEN_CFLAGS=`$PKG_CONFIG --cflags "stoken" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBSTOKEN_LIBS"; then pkg_cv_LIBSTOKEN_LIBS="$LIBSTOKEN_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"stoken\""; } >&5 ($PKG_CONFIG --exists --print-errors "stoken") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBSTOKEN_LIBS=`$PKG_CONFIG --libs "stoken" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBSTOKEN_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "stoken" 2>&1` else LIBSTOKEN_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "stoken" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBSTOKEN_PKG_ERRORS" >&5 libstoken_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libstoken_pkg=no else LIBSTOKEN_CFLAGS=$pkg_cv_LIBSTOKEN_CFLAGS LIBSTOKEN_LIBS=$pkg_cv_LIBSTOKEN_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBSTOKEN_PC=stoken $as_echo "#define HAVE_LIBSTOKEN 1" >>confdefs.h libstoken_pkg=yes fi else libstoken_pkg=disabled fi if test "$libstoken_pkg" = "yes"; then OPENCONNECT_STOKEN_TRUE= OPENCONNECT_STOKEN_FALSE='#' else OPENCONNECT_STOKEN_TRUE='#' OPENCONNECT_STOKEN_FALSE= fi # Check whether --with-libpcsclite was given. if test "${with_libpcsclite+set}" = set; then : withval=$with_libpcsclite; fi if test "x$with_libpcsclite" != "xno"; then : if test "$system_pcsc_libs" != ""; then LIBPCSCLITE_LIBS="$system_pcsc_libs" LIBPCSCLITE_CFLAGS="$system_pcsc_cflags" libpcsclite_pkg=yes else pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPCSCLITE" >&5 $as_echo_n "checking for LIBPCSCLITE... " >&6; } if test -n "$LIBPCSCLITE_CFLAGS"; then pkg_cv_LIBPCSCLITE_CFLAGS="$LIBPCSCLITE_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpcsclite\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpcsclite") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPCSCLITE_CFLAGS=`$PKG_CONFIG --cflags "libpcsclite" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPCSCLITE_LIBS"; then pkg_cv_LIBPCSCLITE_LIBS="$LIBPCSCLITE_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpcsclite\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpcsclite") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPCSCLITE_LIBS=`$PKG_CONFIG --libs "libpcsclite" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPCSCLITE_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libpcsclite" 2>&1` else LIBPCSCLITE_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libpcsclite" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPCSCLITE_PKG_ERRORS" >&5 libpcsclite_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libpcsclite_pkg=no else LIBPCSCLITE_CFLAGS=$pkg_cv_LIBPCSCLITE_CFLAGS LIBPCSCLITE_LIBS=$pkg_cv_LIBPCSCLITE_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPCSCLITE_PC=libpcsclite libpcsclite_pkg=yes fi fi else libpcsclite_pkg=disabled fi if test "$libpcsclite_pkg" = "yes"; then $as_echo "#define HAVE_LIBPCSCLITE 1" >>confdefs.h fi if test "$libpcsclite_pkg" = "yes"; then OPENCONNECT_LIBPCSCLITE_TRUE= OPENCONNECT_LIBPCSCLITE_FALSE='#' else OPENCONNECT_LIBPCSCLITE_TRUE='#' OPENCONNECT_LIBPCSCLITE_FALSE= fi ac_fn_c_check_func "$LINENO" "epoll_create1" "ac_cv_func_epoll_create1" if test "x$ac_cv_func_epoll_create1" = xyes; then : $as_echo "#define HAVE_EPOLL 1" >>confdefs.h fi # Check whether --with-libpskc was given. if test "${with_libpskc+set}" = set; then : withval=$with_libpskc; fi if test "x$with_libpskc" != "xno"; then : pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for LIBPSKC" >&5 $as_echo_n "checking for LIBPSKC... " >&6; } if test -n "$LIBPSKC_CFLAGS"; then pkg_cv_LIBPSKC_CFLAGS="$LIBPSKC_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpskc >= 2.2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpskc >= 2.2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPSKC_CFLAGS=`$PKG_CONFIG --cflags "libpskc >= 2.2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$LIBPSKC_LIBS"; then pkg_cv_LIBPSKC_LIBS="$LIBPSKC_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"libpskc >= 2.2.0\""; } >&5 ($PKG_CONFIG --exists --print-errors "libpskc >= 2.2.0") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_LIBPSKC_LIBS=`$PKG_CONFIG --libs "libpskc >= 2.2.0" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then LIBPSKC_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "libpskc >= 2.2.0" 2>&1` else LIBPSKC_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "libpskc >= 2.2.0" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$LIBPSKC_PKG_ERRORS" >&5 libpskc_pkg=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } libpskc_pkg=no else LIBPSKC_CFLAGS=$pkg_cv_LIBPSKC_CFLAGS LIBPSKC_LIBS=$pkg_cv_LIBPSKC_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } LIBPSKC_PC=libpskc $as_echo "#define HAVE_LIBPSKC 1" >>confdefs.h libpskc_pkg=yes fi fi linked_gssapi=no # Check whether --with-gssapi was given. if test "${with_gssapi+set}" = set; then : withval=$with_gssapi; fi # Attempt to work out how to build with GSSAPI. Mostly, krb5-config will # exist and work. Tested on FreeBSD 9, OpenBSD 5.5, NetBSD 6.1.4. Solaris # has krb5-config but it doesn't do GSSAPI so hard-code the results there. # Older OpenBSD (I tested 5.2) lacks krb5-config so leave that as an example. if test "$with_gssapi" != "no"; then found_gssapi=no if test "${with_gssapi}" != "yes" -a "${with_gssapi}" != "" ; then gssapi_root="${with_gssapi}" else gssapi_root="" fi # First: if they specify GSSAPI_LIBS and/or GSSAPI_CFLAGS then use them. if test "$GSSAPI_LIBS$GSSAPI_CFLAGS" != ""; then found_gssapi=yes fi # Second: try finding a viable krb5-config that supports gssapi if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then krb5path="${gssapi_root}/bin:$PATH" else krb5path="/usr/kerberos/bin:$PATH" fi if test -n "$host_alias"; then # Extract the first word of "${host_alias}-krb5-config", so it can be a program name with args. set dummy ${host_alias}-krb5-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_KRB5_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $KRB5_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_KRB5_CONFIG="$KRB5_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $krb5path do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_KRB5_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi KRB5_CONFIG=$ac_cv_path_KRB5_CONFIG if test -n "$KRB5_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CONFIG" >&5 $as_echo "$KRB5_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$KRB5_CONFIG" = ""; then # Extract the first word of "krb5-config", so it can be a program name with args. set dummy krb5-config; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_KRB5_CONFIG+:} false; then : $as_echo_n "(cached) " >&6 else case $KRB5_CONFIG in [\\/]* | ?:[\\/]*) ac_cv_path_KRB5_CONFIG="$KRB5_CONFIG" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $krb5path do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_KRB5_CONFIG="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi KRB5_CONFIG=$ac_cv_path_KRB5_CONFIG if test -n "$KRB5_CONFIG"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $KRB5_CONFIG" >&5 $as_echo "$KRB5_CONFIG" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi if test "$KRB5_CONFIG" != ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether $KRB5_CONFIG supports gssapi" >&5 $as_echo_n "checking whether $KRB5_CONFIG supports gssapi... " >&6; } if "${KRB5_CONFIG}" --cflags gssapi > /dev/null 2>/dev/null; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } found_gssapi=yes GSSAPI_LIBS="`"${KRB5_CONFIG}" --libs gssapi`" GSSAPI_CFLAGS="`"${KRB5_CONFIG}" --cflags gssapi`" else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi fi fi # Third: look for or in some likely places, # and we'll worry about how to *link* it in a moment... if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then if test -r "${with_gssapi}/include/gssapi.h" -o \ -r "${with_gssapi}/include/gssapi/gssapi.h"; then GSSAPI_CFLAGS="-I\"${with_gssapi}/include\"" fi else if test -r /usr/kerberos/include/gssapi.h -o \ -r /usr/kerberos/include/gssapi/gssapi.h; then GSSAPI_CFLAGS=-I/usr/kerberos/include elif test -r /usr/include/kerberosV/gssapi.h -o \ -r /usr/include/kerberosV/gssapi/gssapi.h; then # OpenBSD 5.2 puts it here GSSAPI_CFLAGS=-I/usr/include/kerberosV else # Maybe it'll Just Work GSSAPI_CFLAGS= fi fi fi oldcflags="$CFLAGS" CFLAGS="$CFLAGS ${GSSAPI_CFLAGS}" # OK, now see if we've correctly managed to find gssapi.h at least... gssapi_hdr= ac_fn_c_check_header_mongrel "$LINENO" "gssapi/gssapi.h" "ac_cv_header_gssapi_gssapi_h" "$ac_includes_default" if test "x$ac_cv_header_gssapi_gssapi_h" = xyes; then : gssapi_hdr="" else ac_fn_c_check_header_mongrel "$LINENO" "gssapi.h" "ac_cv_header_gssapi_h" "$ac_includes_default" if test "x$ac_cv_header_gssapi_h" = xyes; then : gssapi_hdr="" else { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Cannot find or " >&5 $as_echo "$as_me: WARNING: Cannot find or " >&2;} fi fi # Finally, unless we've already failed, see if we can link it. linked_gssapi=no if test -n "${gssapi_hdr}"; then cat >>confdefs.h <<_ACEOF #define GSSAPI_HDR $gssapi_hdr _ACEOF if test "$found_gssapi" = "yes"; then # We think we have GSSAPI_LIBS already so try it... gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" else LFLAG= if test -n "$gssapi_root"; then LFLAG="-L\"${gssapi_root}/lib$libsuff\"" fi # Solaris, HPUX, etc. GSSAPI_LIBS="$LFLAG -lgss" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi_krb5" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # OpenBSD 5.2 at least GSSAPI_LIBS="$LFLAG -lgssapi -lkrb5 -lcrypto" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # MIT GSSAPI_LIBS="$LFLAG -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then # Heimdal GSSAPI_LIBS="$LFLAG -lkrb5 -lcrypto -lasn1 -lcom_err -lroken -lgssapi" gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" { $as_echo "$as_me:${as_lineno-$LINENO}: checking GSSAPI compilation with \"${GSSAPI_LIBS}\"" >&5 $as_echo_n "checking GSSAPI compilation with \"${GSSAPI_LIBS}\"... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include GSSAPI_HDR int main () { OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL); ; return 0; } _ACEOF if ac_fn_c_try_link "$LINENO"; then : linked_gssapi=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else linked_gssapi=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext \ conftest$ac_exeext conftest.$ac_ext LIBS="$gss_old_libs" fi if test "$linked_gssapi" = "no"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually" >&5 $as_echo "$as_me: WARNING: Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually" >&2;} fi fi fi CFLAGS="$oldcflags" if test "$linked_gssapi" = "yes"; then $as_echo "#define HAVE_GSSAPI 1" >>confdefs.h elif test "$with_gssapi" = ""; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: Building without GSSAPI support" >&5 $as_echo "$as_me: WARNING: Building without GSSAPI support" >&2;}; unset GSSAPI_CFLAGS unset GSSAPI_LIBS else as_fn_error $? "GSSAPI support requested but not found. Try setting GSSAPI_LIBS/GSSAPI_CFLAGS" "$LINENO" 5 fi fi if test "$linked_gssapi" = "yes"; then OPENCONNECT_GSSAPI_TRUE= OPENCONNECT_GSSAPI_FALSE='#' else OPENCONNECT_GSSAPI_TRUE='#' OPENCONNECT_GSSAPI_FALSE= fi # Check whether --with-java was given. if test "${with_java+set}" = set; then : withval=$with_java; else with_java=no fi if test "$with_java" = "yes"; then JNI_INCLUDE_DIRS="" if test "x$JAVA_HOME" != x; then _JTOPDIR="$JAVA_HOME" else if test "x$JAVAC" = x; then JAVAC=javac fi # Extract the first word of "$JAVAC", so it can be a program name with args. set dummy $JAVAC; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path__ACJNI_JAVAC+:} false; then : $as_echo_n "(cached) " >&6 else case $_ACJNI_JAVAC in [\\/]* | ?:[\\/]*) ac_cv_path__ACJNI_JAVAC="$_ACJNI_JAVAC" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path__ACJNI_JAVAC="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS test -z "$ac_cv_path__ACJNI_JAVAC" && ac_cv_path__ACJNI_JAVAC="no" ;; esac fi _ACJNI_JAVAC=$ac_cv_path__ACJNI_JAVAC if test -n "$_ACJNI_JAVAC"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_ACJNI_JAVAC" >&5 $as_echo "$_ACJNI_JAVAC" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test "x$_ACJNI_JAVAC" = xno; then as_fn_error $? "cannot find JDK; try setting \$JAVAC or \$JAVA_HOME" "$LINENO" 5 fi # find the include directory relative to the javac executable _cur=""$_ACJNI_JAVAC"" while ls -ld "$_cur" 2>/dev/null | grep " -> " >/dev/null; do { $as_echo "$as_me:${as_lineno-$LINENO}: checking symlink for $_cur" >&5 $as_echo_n "checking symlink for $_cur... " >&6; } _slink=`ls -ld "$_cur" | sed 's/.* -> //'` case "$_slink" in /*) _cur="$_slink";; # 'X' avoids triggering unwanted echo options. *) _cur=`echo "X$_cur" | sed -e 's/^X//' -e 's:[^/]*$::'`"$_slink";; esac { $as_echo "$as_me:${as_lineno-$LINENO}: result: $_cur" >&5 $as_echo "$_cur" >&6; } done _ACJNI_FOLLOWED="$_cur" _JTOPDIR=`echo "$_ACJNI_FOLLOWED" | sed -e 's://*:/:g' -e 's:/[^/]*$::'` fi case "$host_os" in darwin*) _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[^/]*$::'` _JINC="$_JTOPDIR/Headers";; *) _JINC="$_JTOPDIR/include";; esac $as_echo "$as_me:${as_lineno-$LINENO}: _JTOPDIR=$_JTOPDIR" >&5 $as_echo "$as_me:${as_lineno-$LINENO}: _JINC=$_JINC" >&5 # On Mac OS X 10.6.4, jni.h is a symlink: # /System/Library/Frameworks/JavaVM.framework/Versions/Current/Headers/jni.h # -> ../../CurrentJDK/Headers/jni.h. as_ac_File=`$as_echo "ac_cv_file_$_JINC/jni.h" | $as_tr_sh` { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $_JINC/jni.h" >&5 $as_echo_n "checking for $_JINC/jni.h... " >&6; } if eval \${$as_ac_File+:} false; then : $as_echo_n "(cached) " >&6 else test "$cross_compiling" = yes && as_fn_error $? "cannot check for file existence when cross compiling" "$LINENO" 5 if test -r "$_JINC/jni.h"; then eval "$as_ac_File=yes" else eval "$as_ac_File=no" fi fi eval ac_res=\$$as_ac_File { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } if eval test \"x\$"$as_ac_File"\" = x"yes"; then : JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JINC" else _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[^/]*$::'` as_ac_File=`$as_echo "ac_cv_file_$_JTOPDIR/include/jni.h" | $as_tr_sh` { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $_JTOPDIR/include/jni.h" >&5 $as_echo_n "checking for $_JTOPDIR/include/jni.h... " >&6; } if eval \${$as_ac_File+:} false; then : $as_echo_n "(cached) " >&6 else test "$cross_compiling" = yes && as_fn_error $? "cannot check for file existence when cross compiling" "$LINENO" 5 if test -r "$_JTOPDIR/include/jni.h"; then eval "$as_ac_File=yes" else eval "$as_ac_File=no" fi fi eval ac_res=\$$as_ac_File { $as_echo "$as_me:${as_lineno-$LINENO}: result: $ac_res" >&5 $as_echo "$ac_res" >&6; } if eval test \"x\$"$as_ac_File"\" = x"yes"; then : JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include" else as_fn_error $? "cannot find JDK header files" "$LINENO" 5 fi fi # get the likely subdirectories for system specific java includes case "$host_os" in bsdi*) _JNI_INC_SUBDIRS="bsdos";; freebsd*) _JNI_INC_SUBDIRS="freebsd";; linux*) _JNI_INC_SUBDIRS="linux genunix";; osf*) _JNI_INC_SUBDIRS="alpha";; solaris*) _JNI_INC_SUBDIRS="solaris";; mingw*) _JNI_INC_SUBDIRS="win32";; cygwin*) _JNI_INC_SUBDIRS="win32";; *) _JNI_INC_SUBDIRS="genunix";; esac # add any subdirectories that are present for JINCSUBDIR in $_JNI_INC_SUBDIRS do if test -d "$_JTOPDIR/include/$JINCSUBDIR"; then JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include/$JINCSUBDIR" fi done for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS; do JNI_CFLAGS="$JNI_CFLAGS -I$JNI_INCLUDE_DIR" done elif test "$with_java" = "no"; then JNI_CFLAGS="" else JNI_CFLAGS="-I$with_java" fi if test "x$JNI_CFLAGS" != "x"; then oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $JNI_CFLAGS" { $as_echo "$as_me:${as_lineno-$LINENO}: checking jni.h usability" >&5 $as_echo_n "checking jni.h usability... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include int main () { jint foo = 0; (void)foo; ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } as_fn_error $? "unable to compile JNI test program" "$LINENO" 5 fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext CFLAGS="$oldCFLAGS" JNI_CFLAGS=$JNI_CFLAGS fi if test "$JNI_CFLAGS" != ""; then OPENCONNECT_JNI_TRUE= OPENCONNECT_JNI_FALSE='#' else OPENCONNECT_JNI_TRUE='#' OPENCONNECT_JNI_FALSE= fi # Check whether --enable-jni-standalone was given. if test "${enable_jni_standalone+set}" = set; then : enableval=$enable_jni_standalone; jni_standalone=$enableval else jni_standalone=no fi if test $jni_standalone = yes; then JNI_STANDALONE_TRUE= JNI_STANDALONE_FALSE='#' else JNI_STANDALONE_TRUE='#' JNI_STANDALONE_FALSE= fi symver_java= if test "$jni_standalone" = "yes" ; then symver_java=$(sed -n '/JNIEXPORT/{s/^JNIEXPORT.*\(Java_.*\) *(/\1;/ p}' ${srcdir}/jni.c) # Remove the newlines between each item. symver_java=$(echo $symver_java) fi SYMVER_JAVA=$symver_java # Check whether --enable-insecure-debugging was given. if test "${enable_insecure_debugging+set}" = set; then : enableval=$enable_insecure_debugging; insecure_debugging=yes else insecure_debugging=no fi if test "$insecure_debugging" = "yes"; then oldcflags="$CFLAGS" CFLAGS="$CFLAGS -DINSECURE_DEBUGGING" fi ac_fn_c_check_header_mongrel "$LINENO" "if_tun.h" "ac_cv_header_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "linux/if_tun.h" "ac_cv_header_linux_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_linux_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"linux/if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "net/if_tun.h" "ac_cv_header_net_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_net_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"net/if_tun.h\"" >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "net/tun/if_tun.h" "ac_cv_header_net_tun_if_tun_h" "$ac_includes_default" if test "x$ac_cv_header_net_tun_if_tun_h" = xyes; then : $as_echo "#define IF_TUN_HDR \"net/tun/if_tun.h\"" >>confdefs.h fi fi fi fi ac_fn_c_check_header_compile "$LINENO" "net/if_utun.h" "ac_cv_header_net_if_utun_h" "#include " if test "x$ac_cv_header_net_if_utun_h" = xyes; then : $as_echo "#define HAVE_NET_UTUN_H 1" >>confdefs.h fi # Check whether --enable-vhost-net was given. if test "${enable_vhost_net+set}" = set; then : enableval=$enable_vhost_net; have_vhost=$enableval fi if test "$have_vhost" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for vhost-net support" >&5 $as_echo_n "checking for vhost-net support... " >&6; } cat confdefs.h - <<_ACEOF >conftest.$ac_ext /* end confdefs.h. */ #include #include #include #include struct foo { struct vring_desc desc; struct vring_avail avail; struct vring_used used; struct virtio_net_hdr_mrg_rxbuf h; }; int main () { (void)eventfd(0, EFD_CLOEXEC|EFD_NONBLOCK); (void)VHOST_NET_F_VIRTIO_NET_HDR; (void)VIRTIO_F_VERSION_1; (void)TUNSETSNDBUF; __sync_synchronize(); ; return 0; } _ACEOF if ac_fn_c_try_compile "$LINENO"; then : have_vhost=yes $as_echo "#define HAVE_VHOST 1" >>confdefs.h { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } else have_vhost=no { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi rm -f core conftest.err conftest.$ac_objext conftest.$ac_ext fi if test "$have_vhost" = "yes"; then OPENCONNECT_VHOST_TRUE= OPENCONNECT_VHOST_FALSE='#' else OPENCONNECT_VHOST_TRUE='#' OPENCONNECT_VHOST_FALSE= fi ac_fn_c_check_header_mongrel "$LINENO" "alloca.h" "ac_cv_header_alloca_h" "$ac_includes_default" if test "x$ac_cv_header_alloca_h" = xyes; then : $as_echo "#define HAVE_ALLOCA_H 1" >>confdefs.h fi ac_fn_c_check_header_mongrel "$LINENO" "endian.h" "ac_cv_header_endian_h" "$ac_includes_default" if test "x$ac_cv_header_endian_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "sys/endian.h" "ac_cv_header_sys_endian_h" "$ac_includes_default" if test "x$ac_cv_header_sys_endian_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h else ac_fn_c_check_header_mongrel "$LINENO" "sys/isa_defs.h" "ac_cv_header_sys_isa_defs_h" "$ac_includes_default" if test "x$ac_cv_header_sys_isa_defs_h" = xyes; then : $as_echo "#define ENDIAN_HDR " >>confdefs.h fi fi fi build_www=yes for ac_prog in python3 python2 python do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PYTHON+:} false; then : $as_echo_n "(cached) " >&6 else case $PYTHON in [\\/]* | ?:[\\/]*) ac_cv_path_PYTHON="$PYTHON" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_dummy="$PATH:/bin:/usr/bin" for as_dir in $as_dummy do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PYTHON="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PYTHON=$ac_cv_path_PYTHON if test -n "$PYTHON"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PYTHON" >&5 $as_echo "$PYTHON" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$PYTHON" && break done if test -z "${ac_cv_path_PYTHON}"; then { $as_echo "$as_me:${as_lineno-$LINENO}: Python not found; not building HTML pages" >&5 $as_echo "$as_me: Python not found; not building HTML pages" >&6;} build_www=no fi if test "${build_www}" = "yes"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking if groff can create UTF-8 XHTML" >&5 $as_echo_n "checking if groff can create UTF-8 XHTML... " >&6; } if test -z "$GROFF"; then ac_path_GROFF_found=false # Loop through the user's path and test for each of PROGNAME-LIST as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_prog in groff; do for ac_exec_ext in '' $ac_executable_extensions; do ac_path_GROFF="$as_dir/$ac_prog$ac_exec_ext" as_fn_executable_p "$ac_path_GROFF" || continue $ac_path_GROFF -t -K UTF-8 -mandoc -Txhtml /dev/null > /dev/null 2>&1 && ac_cv_path_GROFF=$ac_path_GROFF $ac_path_GROFF_found && break 3 done done done IFS=$as_save_IFS if test -z "$ac_cv_path_GROFF"; then : fi else ac_cv_path_GROFF=$GROFF fi if test -n "$ac_cv_path_GROFF"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } GROFF=${ac_cv_path_GROFF} else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no. Not building HTML pages" >&5 $as_echo "no. Not building HTML pages" >&6; } build_www=no fi fi if test "${build_www}" = "yes"; then BUILD_WWW_TRUE= BUILD_WWW_FALSE='#' else BUILD_WWW_TRUE='#' BUILD_WWW_FALSE= fi # Checks for tests pkg_failed=no { $as_echo "$as_me:${as_lineno-$LINENO}: checking for CWRAP" >&5 $as_echo_n "checking for CWRAP... " >&6; } if test -n "$CWRAP_CFLAGS"; then pkg_cv_CWRAP_CFLAGS="$CWRAP_CFLAGS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uid_wrapper, socket_wrapper\""; } >&5 ($PKG_CONFIG --exists --print-errors "uid_wrapper, socket_wrapper") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CWRAP_CFLAGS=`$PKG_CONFIG --cflags "uid_wrapper, socket_wrapper" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test -n "$CWRAP_LIBS"; then pkg_cv_CWRAP_LIBS="$CWRAP_LIBS" elif test -n "$PKG_CONFIG"; then if test -n "$PKG_CONFIG" && \ { { $as_echo "$as_me:${as_lineno-$LINENO}: \$PKG_CONFIG --exists --print-errors \"uid_wrapper, socket_wrapper\""; } >&5 ($PKG_CONFIG --exists --print-errors "uid_wrapper, socket_wrapper") 2>&5 ac_status=$? $as_echo "$as_me:${as_lineno-$LINENO}: \$? = $ac_status" >&5 test $ac_status = 0; }; then pkg_cv_CWRAP_LIBS=`$PKG_CONFIG --libs "uid_wrapper, socket_wrapper" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes else pkg_failed=yes fi else pkg_failed=untried fi if test $pkg_failed = yes; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi if test $_pkg_short_errors_supported = yes; then CWRAP_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "uid_wrapper, socket_wrapper" 2>&1` else CWRAP_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "uid_wrapper, socket_wrapper" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$CWRAP_PKG_ERRORS" >&5 have_cwrap=no elif test $pkg_failed = untried; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } have_cwrap=no else CWRAP_CFLAGS=$pkg_cv_CWRAP_CFLAGS CWRAP_LIBS=$pkg_cv_CWRAP_LIBS { $as_echo "$as_me:${as_lineno-$LINENO}: result: yes" >&5 $as_echo "yes" >&6; } have_cwrap=yes fi if test "x$have_cwrap" != xno; then HAVE_CWRAP_TRUE= HAVE_CWRAP_FALSE='#' else HAVE_CWRAP_TRUE='#' HAVE_CWRAP_FALSE= fi have_python36_flask=no if test "$enable_flask_tests" = "yes" -a -n "${ac_cv_path_PYTHON}"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking for Python 3.6+ with Flask module" >&5 $as_echo_n "checking for Python 3.6+ with Flask module... " >&6; } python3 -c 'import sys; assert sys.version_info >= (3,6); import flask' 2>/dev/null if test $? -ne 0 ; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: not found" >&5 $as_echo "not found" >&6; } else have_python36_flask=yes { $as_echo "$as_me:${as_lineno-$LINENO}: result: found" >&5 $as_echo "found" >&6; } fi fi if test "$have_python36_flask" = yes; then HAVE_PYTHON36_FLASK_TRUE= HAVE_PYTHON36_FLASK_FALSE='#' else HAVE_PYTHON36_FLASK_TRUE='#' HAVE_PYTHON36_FLASK_FALSE= fi if test "$enable_ppp_tests" = "yes"; then for ac_prog in socat do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_SOCAT+:} false; then : $as_echo_n "(cached) " >&6 else case $SOCAT in [\\/]* | ?:[\\/]*) ac_cv_path_SOCAT="$SOCAT" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_dummy="$PATH:/bin:/usr/bin" for as_dir in $as_dummy do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_SOCAT="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi SOCAT=$ac_cv_path_SOCAT if test -n "$SOCAT"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $SOCAT" >&5 $as_echo "$SOCAT" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$SOCAT" && break done for ac_prog in pppd do # Extract the first word of "$ac_prog", so it can be a program name with args. set dummy $ac_prog; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_PPPD+:} false; then : $as_echo_n "(cached) " >&6 else case $PPPD in [\\/]* | ?:[\\/]*) ac_cv_path_PPPD="$PPPD" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_dummy="$PATH:/bin:/usr/bin:/sbin:/usr/sbin/" for as_dir in $as_dummy do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_PPPD="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi PPPD=$ac_cv_path_PPPD if test -n "$PPPD"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $PPPD" >&5 $as_echo "$PPPD" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi test -n "$PPPD" && break done if test -z "${ac_cv_path_SOCAT}" -o -z "${ac_cv_path_PPPD}"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: socat and/or pppd not found; disabling PPP tests" >&5 $as_echo "$as_me: WARNING: socat and/or pppd not found; disabling PPP tests" >&2;} enable_ppp_tests=no fi fi if test "$enable_ppp_tests" = "yes"; then TEST_PPP_TRUE= TEST_PPP_FALSE='#' else TEST_PPP_TRUE='#' TEST_PPP_FALSE= fi have_netns=no # Extract the first word of "nuttcp", so it can be a program name with args. set dummy nuttcp; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_NUTTCP+:} false; then : $as_echo_n "(cached) " >&6 else case $NUTTCP in [\\/]* | ?:[\\/]*) ac_cv_path_NUTTCP="$NUTTCP" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_NUTTCP="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi NUTTCP=$ac_cv_path_NUTTCP if test -n "$NUTTCP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $NUTTCP" >&5 $as_echo "$NUTTCP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -n "$ac_cv_path_NUTTCP"; then # Extract the first word of "ip", so it can be a program name with args. set dummy ip; ac_word=$2 { $as_echo "$as_me:${as_lineno-$LINENO}: checking for $ac_word" >&5 $as_echo_n "checking for $ac_word... " >&6; } if ${ac_cv_path_IP+:} false; then : $as_echo_n "(cached) " >&6 else case $IP in [\\/]* | ?:[\\/]*) ac_cv_path_IP="$IP" # Let the user override the test with a path. ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR as_dummy="$PATH:/sbin:/usr/sbin" for as_dir in $as_dummy do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for ac_exec_ext in '' $ac_executable_extensions; do if as_fn_executable_p "$as_dir/$ac_word$ac_exec_ext"; then ac_cv_path_IP="$as_dir/$ac_word$ac_exec_ext" $as_echo "$as_me:${as_lineno-$LINENO}: found $as_dir/$ac_word$ac_exec_ext" >&5 break 2 fi done done IFS=$as_save_IFS ;; esac fi IP=$ac_cv_path_IP if test -n "$IP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: result: $IP" >&5 $as_echo "$IP" >&6; } else { $as_echo "$as_me:${as_lineno-$LINENO}: result: no" >&5 $as_echo "no" >&6; } fi if test -n "$ac_cv_path_IP"; then { $as_echo "$as_me:${as_lineno-$LINENO}: checking For network namespaces" >&5 $as_echo_n "checking For network namespaces... " >&6; } NETNS=openconnect-configure-test-$$ if ip netns add $NETNS >/dev/null 2>/dev/null; then ip netns delete $NETNS have_netns=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: $have_netns" >&5 $as_echo "$have_netns" >&6; } fi fi if test "x$have_netns" != xno; then HAVE_NETNS_TRUE= HAVE_NETNS_FALSE='#' else HAVE_NETNS_TRUE='#' HAVE_NETNS_FALSE= fi # Check whether --with-asan-broken-tests was given. if test "${with_asan_broken_tests+set}" = set; then : withval=$with_asan_broken_tests; enable_asan_broken_tests=$withval else enable_asan_broken_tests=yes fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking whether to enable broken in asan tests" >&5 $as_echo_n "checking whether to enable broken in asan tests... " >&6; } { $as_echo "$as_me:${as_lineno-$LINENO}: result: ${enable_asan_broken_tests}" >&5 $as_echo "${enable_asan_broken_tests}" >&6; } if test "x$enable_asan_broken_tests" = xno; then DISABLE_ASAN_BROKEN_TESTS_TRUE= DISABLE_ASAN_BROKEN_TESTS_FALSE='#' else DISABLE_ASAN_BROKEN_TESTS_TRUE='#' DISABLE_ASAN_BROKEN_TESTS_FALSE= fi CONFIG_STATUS_DEPENDENCIES='$(top_srcdir)/po/LINGUAS \ $(top_srcdir)/openconnect.h \ $(top_srcdir)/libopenconnect.map.in \ $(top_srcdir)/openconnect.8.in \ $(top_srcdir)/tests/softhsm2.conf.in \ $(top_srcdir)/tests/configs/test-user-cert.config.in \ $(top_srcdir)/tests/configs/test-user-pass.config.in' RAWLINGUAS=`sed -e "/^#/d" -e "s/#.*//" "${srcdir}/po/LINGUAS"` # Remove newlines LINGUAS=`echo $RAWLINGUAS` APIMAJOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MAJOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" APIMINOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MINOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" # We want version.c to depend on the files that would affect the # output of version.sh. But we cannot assume that they'll exist, # and we cannot use $(wildcard) in a non-GNU makefile. So we just # depend on the files which happen to exist at configure time. GITVERSIONDEPS= for a in ${srcdir}/.git/index ${srcdir}/.git/packed-refs \ ${srcdir}/.git/refs/tags ${srcdir}/.git/HEAD; do if test -r $a ; then GITVERSIONDEPS="$GITVERSIONDEPS $a" fi done OCSERV_USER=$(whoami) OCSERV_GROUP=$(groups|cut -f 1 -d ' ') ac_config_files="$ac_config_files Makefile openconnect.pc po/Makefile www/Makefile libopenconnect.map openconnect.8 www/styles/Makefile www/inc/Makefile www/images/Makefile tests/Makefile tests/softhsm2.conf tests/configs/test-user-cert.config tests/configs/test-user-pass.config" cat >confcache <<\_ACEOF # This file is a shell script that caches the results of configure # tests run on this system so they can be shared between configure # scripts and configure runs, see configure's option --config-cache. # It is not useful on other systems. If it contains results you don't # want to keep, you may remove or edit it. # # config.status only pays attention to the cache file if you give it # the --recheck option to rerun configure. # # `ac_cv_env_foo' variables (set or unset) will be overridden when # loading this file, other *unset* `ac_cv_foo' will be assigned the # following values. _ACEOF # The following way of writing the cache mishandles newlines in values, # but we know of no workaround that is simple, portable, and efficient. # So, we kill variables containing newlines. # Ultrix sh set writes to stderr and can't be redirected directly, # and sets the high bit in the cache file unless we assign to the vars. ( for ac_var in `(set) 2>&1 | sed -n 's/^\([a-zA-Z_][a-zA-Z0-9_]*\)=.*/\1/p'`; do eval ac_val=\$$ac_var case $ac_val in #( *${as_nl}*) case $ac_var in #( *_cv_*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: cache variable $ac_var contains a newline" >&5 $as_echo "$as_me: WARNING: cache variable $ac_var contains a newline" >&2;} ;; esac case $ac_var in #( _ | IFS | as_nl) ;; #( BASH_ARGV | BASH_SOURCE) eval $ac_var= ;; #( *) { eval $ac_var=; unset $ac_var;} ;; esac ;; esac done (set) 2>&1 | case $as_nl`(ac_space=' '; set) 2>&1` in #( *${as_nl}ac_space=\ *) # `set' does not quote correctly, so add quotes: double-quote # substitution turns \\\\ into \\, and sed turns \\ into \. sed -n \ "s/'/'\\\\''/g; s/^\\([_$as_cr_alnum]*_cv_[_$as_cr_alnum]*\\)=\\(.*\\)/\\1='\\2'/p" ;; #( *) # `set' quotes correctly as required by POSIX, so do not add quotes. sed -n "/^[_$as_cr_alnum]*_cv_[_$as_cr_alnum]*=/p" ;; esac | sort ) | sed ' /^ac_cv_env_/b end t clear :clear s/^\([^=]*\)=\(.*[{}].*\)$/test "${\1+set}" = set || &/ t end s/^\([^=]*\)=\(.*\)$/\1=${\1=\2}/ :end' >>confcache if diff "$cache_file" confcache >/dev/null 2>&1; then :; else if test -w "$cache_file"; then if test "x$cache_file" != "x/dev/null"; then { $as_echo "$as_me:${as_lineno-$LINENO}: updating cache $cache_file" >&5 $as_echo "$as_me: updating cache $cache_file" >&6;} if test ! -f "$cache_file" || test -h "$cache_file"; then cat confcache >"$cache_file" else case $cache_file in #( */* | ?:*) mv -f confcache "$cache_file"$$ && mv -f "$cache_file"$$ "$cache_file" ;; #( *) mv -f confcache "$cache_file" ;; esac fi fi else { $as_echo "$as_me:${as_lineno-$LINENO}: not updating unwritable cache $cache_file" >&5 $as_echo "$as_me: not updating unwritable cache $cache_file" >&6;} fi fi rm -f confcache test "x$prefix" = xNONE && prefix=$ac_default_prefix # Let make expand exec_prefix. test "x$exec_prefix" = xNONE && exec_prefix='${prefix}' DEFS=-DHAVE_CONFIG_H ac_libobjs= ac_ltlibobjs= U= for ac_i in : $LIBOBJS; do test "x$ac_i" = x: && continue # 1. Remove the extension, and $U if already installed. ac_script='s/\$U\././;s/\.o$//;s/\.obj$//' ac_i=`$as_echo "$ac_i" | sed "$ac_script"` # 2. Prepend LIBOBJDIR. When used with automake>=1.10 LIBOBJDIR # will be set to the directory where LIBOBJS objects are built. as_fn_append ac_libobjs " \${LIBOBJDIR}$ac_i\$U.$ac_objext" as_fn_append ac_ltlibobjs " \${LIBOBJDIR}$ac_i"'$U.lo' done LIBOBJS=$ac_libobjs LTLIBOBJS=$ac_ltlibobjs if test -z "${MAINTAINER_MODE_TRUE}" && test -z "${MAINTAINER_MODE_FALSE}"; then as_fn_error $? "conditional \"MAINTAINER_MODE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi { $as_echo "$as_me:${as_lineno-$LINENO}: checking that generated files are newer than configure" >&5 $as_echo_n "checking that generated files are newer than configure... " >&6; } if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi { $as_echo "$as_me:${as_lineno-$LINENO}: result: done" >&5 $as_echo "done" >&6; } if test -n "$EXEEXT"; then am__EXEEXT_TRUE= am__EXEEXT_FALSE='#' else am__EXEEXT_TRUE='#' am__EXEEXT_FALSE= fi if test -z "${AMDEP_TRUE}" && test -z "${AMDEP_FALSE}"; then as_fn_error $? "conditional \"AMDEP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${am__fastdepCC_TRUE}" && test -z "${am__fastdepCC_FALSE}"; then as_fn_error $? "conditional \"am__fastdepCC\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_WIN32_TRUE}" && test -z "${OPENCONNECT_WIN32_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_WIN32\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${BUILD_NSIS_TRUE}" && test -z "${BUILD_NSIS_FALSE}"; then as_fn_error $? "conditional \"BUILD_NSIS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_WINTUN_TRUE}" && test -z "${OPENCONNECT_WINTUN_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_WINTUN\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_ICONV_TRUE}" && test -z "${OPENCONNECT_ICONV_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_ICONV\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${USE_NLS_TRUE}" && test -z "${USE_NLS_FALSE}"; then as_fn_error $? "conditional \"USE_NLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_TSS2_ESYS_TRUE}" && test -z "${OPENCONNECT_TSS2_ESYS_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_TSS2_ESYS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_TSS2_IBM_TRUE}" && test -z "${OPENCONNECT_TSS2_IBM_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_TSS2_IBM\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_HWTPM_TRUE}" && test -z "${TEST_HWTPM_FALSE}"; then as_fn_error $? "conditional \"TEST_HWTPM\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_SWTPM_TRUE}" && test -z "${TEST_SWTPM_FALSE}"; then as_fn_error $? "conditional \"TEST_SWTPM\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_TPM2_CREATE_TRUE}" && test -z "${TEST_TPM2_CREATE_FALSE}"; then as_fn_error $? "conditional \"TEST_TPM2_CREATE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_TPM2_IMPORT_TRUE}" && test -z "${TEST_TPM2_IMPORT_FALSE}"; then as_fn_error $? "conditional \"TEST_TPM2_IMPORT\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_PKCS11_TRUE}" && test -z "${TEST_PKCS11_FALSE}"; then as_fn_error $? "conditional \"TEST_PKCS11\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${CHECK_DTLS_TRUE}" && test -z "${CHECK_DTLS_FALSE}"; then as_fn_error $? "conditional \"CHECK_DTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${DTLS_XFAIL_TRUE}" && test -z "${DTLS_XFAIL_FALSE}"; then as_fn_error $? "conditional \"DTLS_XFAIL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_DSA_TRUE}" && test -z "${TEST_DSA_FALSE}"; then as_fn_error $? "conditional \"TEST_DSA\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_GNUTLS_TRUE}" && test -z "${OPENCONNECT_GNUTLS_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_GNUTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_OPENSSL_TRUE}" && test -z "${OPENCONNECT_OPENSSL_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_OPENSSL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_ESP_TRUE}" && test -z "${OPENCONNECT_ESP_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_ESP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_DTLS_TRUE}" && test -z "${OPENCONNECT_DTLS_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_DTLS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENBSD_LIBTOOL_TRUE}" && test -z "${OPENBSD_LIBTOOL_FALSE}"; then as_fn_error $? "conditional \"OPENBSD_LIBTOOL\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_VSCRIPT_TRUE}" && test -z "${HAVE_VSCRIPT_FALSE}"; then as_fn_error $? "conditional \"HAVE_VSCRIPT\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_VSCRIPT_COMPLEX_TRUE}" && test -z "${HAVE_VSCRIPT_COMPLEX_FALSE}"; then as_fn_error $? "conditional \"HAVE_VSCRIPT_COMPLEX\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${BUILTIN_JSON_TRUE}" && test -z "${BUILTIN_JSON_FALSE}"; then as_fn_error $? "conditional \"BUILTIN_JSON\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_STOKEN_TRUE}" && test -z "${OPENCONNECT_STOKEN_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_STOKEN\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_LIBPCSCLITE_TRUE}" && test -z "${OPENCONNECT_LIBPCSCLITE_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_LIBPCSCLITE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_GSSAPI_TRUE}" && test -z "${OPENCONNECT_GSSAPI_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_GSSAPI\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_JNI_TRUE}" && test -z "${OPENCONNECT_JNI_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_JNI\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${JNI_STANDALONE_TRUE}" && test -z "${JNI_STANDALONE_FALSE}"; then as_fn_error $? "conditional \"JNI_STANDALONE\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${OPENCONNECT_VHOST_TRUE}" && test -z "${OPENCONNECT_VHOST_FALSE}"; then as_fn_error $? "conditional \"OPENCONNECT_VHOST\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${BUILD_WWW_TRUE}" && test -z "${BUILD_WWW_FALSE}"; then as_fn_error $? "conditional \"BUILD_WWW\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_CWRAP_TRUE}" && test -z "${HAVE_CWRAP_FALSE}"; then as_fn_error $? "conditional \"HAVE_CWRAP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_PYTHON36_FLASK_TRUE}" && test -z "${HAVE_PYTHON36_FLASK_FALSE}"; then as_fn_error $? "conditional \"HAVE_PYTHON36_FLASK\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${TEST_PPP_TRUE}" && test -z "${TEST_PPP_FALSE}"; then as_fn_error $? "conditional \"TEST_PPP\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${HAVE_NETNS_TRUE}" && test -z "${HAVE_NETNS_FALSE}"; then as_fn_error $? "conditional \"HAVE_NETNS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi if test -z "${DISABLE_ASAN_BROKEN_TESTS_TRUE}" && test -z "${DISABLE_ASAN_BROKEN_TESTS_FALSE}"; then as_fn_error $? "conditional \"DISABLE_ASAN_BROKEN_TESTS\" was never defined. Usually this means the macro was only invoked conditionally." "$LINENO" 5 fi : "${CONFIG_STATUS=./config.status}" ac_write_fail=0 ac_clean_files_save=$ac_clean_files ac_clean_files="$ac_clean_files $CONFIG_STATUS" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $CONFIG_STATUS" >&5 $as_echo "$as_me: creating $CONFIG_STATUS" >&6;} as_write_fail=0 cat >$CONFIG_STATUS <<_ASEOF || as_write_fail=1 #! $SHELL # Generated by $as_me. # Run this file to recreate the current configuration. # Compiler output produced by configure, useful for debugging # configure, is in config.log if it exists. debug=false ac_cs_recheck=false ac_cs_silent=false SHELL=\${CONFIG_SHELL-$SHELL} export SHELL _ASEOF cat >>$CONFIG_STATUS <<\_ASEOF || as_write_fail=1 ## -------------------- ## ## M4sh Initialization. ## ## -------------------- ## # Be more Bourne compatible DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in #( *posix*) : set -o posix ;; #( *) : ;; esac fi as_nl=' ' export as_nl # Printing a long string crashes Solaris 7 /usr/bin/printf. as_echo='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo as_echo=$as_echo$as_echo$as_echo$as_echo$as_echo$as_echo # Prefer a ksh shell builtin over an external printf program on Solaris, # but without wasting forks for bash or zsh. if test -z "$BASH_VERSION$ZSH_VERSION" \ && (test "X`print -r -- $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='print -r --' as_echo_n='print -rn --' elif (test "X`printf %s $as_echo`" = "X$as_echo") 2>/dev/null; then as_echo='printf %s\n' as_echo_n='printf %s' else if test "X`(/usr/ucb/echo -n -n $as_echo) 2>/dev/null`" = "X-n $as_echo"; then as_echo_body='eval /usr/ucb/echo -n "$1$as_nl"' as_echo_n='/usr/ucb/echo -n' else as_echo_body='eval expr "X$1" : "X\\(.*\\)"' as_echo_n_body='eval arg=$1; case $arg in #( *"$as_nl"*) expr "X$arg" : "X\\(.*\\)$as_nl"; arg=`expr "X$arg" : ".*$as_nl\\(.*\\)"`;; esac; expr "X$arg" : "X\\(.*\\)" | tr -d "$as_nl" ' export as_echo_n_body as_echo_n='sh -c $as_echo_n_body as_echo' fi export as_echo_body as_echo='sh -c $as_echo_body as_echo' fi # The user is always right. if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi # IFS # We need space, tab and new line, in precisely that order. Quoting is # there to prevent editors from complaining about space-tab. # (If _AS_PATH_WALK were called with IFS unset, it would disable word # splitting by setting IFS to empty value.) IFS=" "" $as_nl" # Find who we are. Look in the path if we contain no directory separator. as_myself= case $0 in #(( *[\\/]* ) as_myself=$0 ;; *) as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. test -r "$as_dir/$0" && as_myself=$as_dir/$0 && break done IFS=$as_save_IFS ;; esac # We did not find ourselves, most probably we were run as `sh COMMAND' # in which case we are not to be found in the path. if test "x$as_myself" = x; then as_myself=$0 fi if test ! -f "$as_myself"; then $as_echo "$as_myself: error: cannot find myself; rerun with an absolute file name" >&2 exit 1 fi # Unset variables that we do not need and which cause bugs (e.g. in # pre-3.0 UWIN ksh). But do not cause bugs in bash 2.01; the "|| exit 1" # suppresses any "Segmentation fault" message there. '((' could # trigger a bug in pdksh 5.2.14. for as_var in BASH_ENV ENV MAIL MAILPATH do eval test x\${$as_var+set} = xset \ && ( (unset $as_var) || exit 1) >/dev/null 2>&1 && unset $as_var || : done PS1='$ ' PS2='> ' PS4='+ ' # NLS nuisances. LC_ALL=C export LC_ALL LANGUAGE=C export LANGUAGE # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # as_fn_error STATUS ERROR [LINENO LOG_FD] # ---------------------------------------- # Output "`basename $0`: error: ERROR" to stderr. If LINENO and LOG_FD are # provided, also output the error to LOG_FD, referencing LINENO. Then exit the # script with STATUS, using 1 if that was 0. as_fn_error () { as_status=$1; test $as_status -eq 0 && as_status=1 if test "$4"; then as_lineno=${as_lineno-"$3"} as_lineno_stack=as_lineno_stack=$as_lineno_stack $as_echo "$as_me:${as_lineno-$LINENO}: error: $2" >&$4 fi $as_echo "$as_me: error: $2" >&2 as_fn_exit $as_status } # as_fn_error # as_fn_set_status STATUS # ----------------------- # Set $? to STATUS, without forking. as_fn_set_status () { return $1 } # as_fn_set_status # as_fn_exit STATUS # ----------------- # Exit the shell with STATUS, even in a "trap 0" or "set -e" context. as_fn_exit () { set +e as_fn_set_status $1 exit $1 } # as_fn_exit # as_fn_unset VAR # --------------- # Portably unset VAR. as_fn_unset () { { eval $1=; unset $1;} } as_unset=as_fn_unset # as_fn_append VAR VALUE # ---------------------- # Append the text in VALUE to the end of the definition contained in VAR. Take # advantage of any shell optimizations that allow amortized linear growth over # repeated appends, instead of the typical quadratic growth present in naive # implementations. if (eval "as_var=1; as_var+=2; test x\$as_var = x12") 2>/dev/null; then : eval 'as_fn_append () { eval $1+=\$2 }' else as_fn_append () { eval $1=\$$1\$2 } fi # as_fn_append # as_fn_arith ARG... # ------------------ # Perform arithmetic evaluation on the ARGs, and store the result in the # global $as_val. Take advantage of shells that can avoid forks. The arguments # must be portable across $(()) and expr. if (eval "test \$(( 1 + 1 )) = 2") 2>/dev/null; then : eval 'as_fn_arith () { as_val=$(( $* )) }' else as_fn_arith () { as_val=`expr "$@" || test $? -eq 1` } fi # as_fn_arith if expr a : '\(a\)' >/dev/null 2>&1 && test "X`expr 00001 : '.*\(...\)'`" = X001; then as_expr=expr else as_expr=false fi if (basename -- /) >/dev/null 2>&1 && test "X`basename -- / 2>&1`" = "X/"; then as_basename=basename else as_basename=false fi if (as_dir=`dirname -- /` && test "X$as_dir" = X/) >/dev/null 2>&1; then as_dirname=dirname else as_dirname=false fi as_me=`$as_basename -- "$0" || $as_expr X/"$0" : '.*/\([^/][^/]*\)/*$' \| \ X"$0" : 'X\(//\)$' \| \ X"$0" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$0" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` # Avoid depending upon Character Ranges. as_cr_letters='abcdefghijklmnopqrstuvwxyz' as_cr_LETTERS='ABCDEFGHIJKLMNOPQRSTUVWXYZ' as_cr_Letters=$as_cr_letters$as_cr_LETTERS as_cr_digits='0123456789' as_cr_alnum=$as_cr_Letters$as_cr_digits ECHO_C= ECHO_N= ECHO_T= case `echo -n x` in #((((( -n*) case `echo 'xy\c'` in *c*) ECHO_T=' ';; # ECHO_T is single tab character. xy) ECHO_C='\c';; *) echo `echo ksh88 bug on AIX 6.1` > /dev/null ECHO_T=' ';; esac;; *) ECHO_N='-n';; esac rm -f conf$$ conf$$.exe conf$$.file if test -d conf$$.dir; then rm -f conf$$.dir/conf$$.file else rm -f conf$$.dir mkdir conf$$.dir 2>/dev/null fi if (echo >conf$$.file) 2>/dev/null; then if ln -s conf$$.file conf$$ 2>/dev/null; then as_ln_s='ln -s' # ... but there are two gotchas: # 1) On MSYS, both `ln -s file dir' and `ln file dir' fail. # 2) DJGPP < 2.04 has no symlinks; `ln -s' creates a wrapper executable. # In both cases, we have to default to `cp -pR'. ln -s conf$$.file conf$$.dir 2>/dev/null && test ! -f conf$$.exe || as_ln_s='cp -pR' elif ln conf$$.file conf$$ 2>/dev/null; then as_ln_s=ln else as_ln_s='cp -pR' fi else as_ln_s='cp -pR' fi rm -f conf$$ conf$$.exe conf$$.dir/conf$$.file conf$$.file rmdir conf$$.dir 2>/dev/null # as_fn_mkdir_p # ------------- # Create "$as_dir" as a directory, including parents if necessary. as_fn_mkdir_p () { case $as_dir in #( -*) as_dir=./$as_dir;; esac test -d "$as_dir" || eval $as_mkdir_p || { as_dirs= while :; do case $as_dir in #( *\'*) as_qdir=`$as_echo "$as_dir" | sed "s/'/'\\\\\\\\''/g"`;; #'( *) as_qdir=$as_dir;; esac as_dirs="'$as_qdir' $as_dirs" as_dir=`$as_dirname -- "$as_dir" || $as_expr X"$as_dir" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$as_dir" : 'X\(//\)[^/]' \| \ X"$as_dir" : 'X\(//\)$' \| \ X"$as_dir" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$as_dir" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` test -d "$as_dir" && break done test -z "$as_dirs" || eval "mkdir $as_dirs" } || test -d "$as_dir" || as_fn_error $? "cannot create directory $as_dir" } # as_fn_mkdir_p if mkdir -p . 2>/dev/null; then as_mkdir_p='mkdir -p "$as_dir"' else test -d ./-p && rmdir ./-p as_mkdir_p=false fi # as_fn_executable_p FILE # ----------------------- # Test if FILE is an executable regular file. as_fn_executable_p () { test -f "$1" && test -x "$1" } # as_fn_executable_p as_test_x='test -x' as_executable_p=as_fn_executable_p # Sed expression to map a string onto a valid CPP name. as_tr_cpp="eval sed 'y%*$as_cr_letters%P$as_cr_LETTERS%;s%[^_$as_cr_alnum]%_%g'" # Sed expression to map a string onto a valid variable name. as_tr_sh="eval sed 'y%*+%pp%;s%[^_$as_cr_alnum]%_%g'" exec 6>&1 ## ----------------------------------- ## ## Main body of $CONFIG_STATUS script. ## ## ----------------------------------- ## _ASEOF test $as_write_fail = 0 && chmod +x $CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Save the log message, to keep $0 and so on meaningful, and to # report actual input values of CONFIG_FILES etc. instead of their # values after options handling. ac_log=" This file was extended by openconnect $as_me 8.20, which was generated by GNU Autoconf 2.69. Invocation command line was CONFIG_FILES = $CONFIG_FILES CONFIG_HEADERS = $CONFIG_HEADERS CONFIG_LINKS = $CONFIG_LINKS CONFIG_COMMANDS = $CONFIG_COMMANDS $ $0 $@ on `(hostname || uname -n) 2>/dev/null | sed 1q` " _ACEOF case $ac_config_files in *" "*) set x $ac_config_files; shift; ac_config_files=$*;; esac case $ac_config_headers in *" "*) set x $ac_config_headers; shift; ac_config_headers=$*;; esac cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # Files that config.status was made for. config_files="$ac_config_files" config_headers="$ac_config_headers" config_commands="$ac_config_commands" _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 ac_cs_usage="\ \`$as_me' instantiates files and other configuration actions from templates according to the current configuration. Unless the files and actions are specified as TAGs, all are instantiated by default. Usage: $0 [OPTION]... [TAG]... -h, --help print this help, then exit -V, --version print version number and configuration settings, then exit --config print configuration, then exit -q, --quiet, --silent do not print progress messages -d, --debug don't remove temporary files --recheck update $as_me by reconfiguring in the same conditions --file=FILE[:TEMPLATE] instantiate the configuration file FILE --header=FILE[:TEMPLATE] instantiate the configuration header FILE Configuration files: $config_files Configuration headers: $config_headers Configuration commands: $config_commands Report bugs to the package provider." _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_cs_config="`$as_echo "$ac_configure_args" | sed 's/^ //; s/[\\""\`\$]/\\\\&/g'`" ac_cs_version="\\ openconnect config.status 8.20 configured by $0, generated by GNU Autoconf 2.69, with options \\"\$ac_cs_config\\" Copyright (C) 2012 Free Software Foundation, Inc. This config.status script is free software; the Free Software Foundation gives unlimited permission to copy, distribute and modify it." ac_pwd='$ac_pwd' srcdir='$srcdir' INSTALL='$INSTALL' MKDIR_P='$MKDIR_P' AWK='$AWK' test -n "\$AWK" || AWK=awk _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # The default lists apply if the user does not specify any file. ac_need_defaults=: while test $# != 0 do case $1 in --*=?*) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg=`expr "X$1" : 'X[^=]*=\(.*\)'` ac_shift=: ;; --*=) ac_option=`expr "X$1" : 'X\([^=]*\)='` ac_optarg= ac_shift=: ;; *) ac_option=$1 ac_optarg=$2 ac_shift=shift ;; esac case $ac_option in # Handling of the options. -recheck | --recheck | --rechec | --reche | --rech | --rec | --re | --r) ac_cs_recheck=: ;; --version | --versio | --versi | --vers | --ver | --ve | --v | -V ) $as_echo "$ac_cs_version"; exit ;; --config | --confi | --conf | --con | --co | --c ) $as_echo "$ac_cs_config"; exit ;; --debug | --debu | --deb | --de | --d | -d ) debug=: ;; --file | --fil | --fi | --f ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; '') as_fn_error $? "missing file argument" ;; esac as_fn_append CONFIG_FILES " '$ac_optarg'" ac_need_defaults=false;; --header | --heade | --head | --hea ) $ac_shift case $ac_optarg in *\'*) ac_optarg=`$as_echo "$ac_optarg" | sed "s/'/'\\\\\\\\''/g"` ;; esac as_fn_append CONFIG_HEADERS " '$ac_optarg'" ac_need_defaults=false;; --he | --h) # Conflict between --help and --header as_fn_error $? "ambiguous option: \`$1' Try \`$0 --help' for more information.";; --help | --hel | -h ) $as_echo "$ac_cs_usage"; exit ;; -q | -quiet | --quiet | --quie | --qui | --qu | --q \ | -silent | --silent | --silen | --sile | --sil | --si | --s) ac_cs_silent=: ;; # This is an error. -*) as_fn_error $? "unrecognized option: \`$1' Try \`$0 --help' for more information." ;; *) as_fn_append ac_config_targets " $1" ac_need_defaults=false ;; esac shift done ac_configure_extra_args= if $ac_cs_silent; then exec 6>/dev/null ac_configure_extra_args="$ac_configure_extra_args --silent" fi _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 if \$ac_cs_recheck; then set X $SHELL '$0' $ac_configure_args \$ac_configure_extra_args --no-create --no-recursion shift \$as_echo "running CONFIG_SHELL=$SHELL \$*" >&6 CONFIG_SHELL='$SHELL' export CONFIG_SHELL exec "\$@" fi _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 exec 5>>config.log { echo sed 'h;s/./-/g;s/^.../## /;s/...$/ ##/;p;x;p;x' <<_ASBOX ## Running $as_me. ## _ASBOX $as_echo "$ac_log" } >&5 _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 # # INIT-COMMANDS # AMDEP_TRUE="$AMDEP_TRUE" MAKE="${MAKE-make}" # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH sed_quote_subst='$sed_quote_subst' double_quote_subst='$double_quote_subst' delay_variable_subst='$delay_variable_subst' enable_shared='`$ECHO "$enable_shared" | $SED "$delay_single_quote_subst"`' enable_static='`$ECHO "$enable_static" | $SED "$delay_single_quote_subst"`' macro_version='`$ECHO "$macro_version" | $SED "$delay_single_quote_subst"`' macro_revision='`$ECHO "$macro_revision" | $SED "$delay_single_quote_subst"`' pic_mode='`$ECHO "$pic_mode" | $SED "$delay_single_quote_subst"`' enable_fast_install='`$ECHO "$enable_fast_install" | $SED "$delay_single_quote_subst"`' shared_archive_member_spec='`$ECHO "$shared_archive_member_spec" | $SED "$delay_single_quote_subst"`' SHELL='`$ECHO "$SHELL" | $SED "$delay_single_quote_subst"`' ECHO='`$ECHO "$ECHO" | $SED "$delay_single_quote_subst"`' PATH_SEPARATOR='`$ECHO "$PATH_SEPARATOR" | $SED "$delay_single_quote_subst"`' host_alias='`$ECHO "$host_alias" | $SED "$delay_single_quote_subst"`' host='`$ECHO "$host" | $SED "$delay_single_quote_subst"`' host_os='`$ECHO "$host_os" | $SED "$delay_single_quote_subst"`' build_alias='`$ECHO "$build_alias" | $SED "$delay_single_quote_subst"`' build='`$ECHO "$build" | $SED "$delay_single_quote_subst"`' build_os='`$ECHO "$build_os" | $SED "$delay_single_quote_subst"`' SED='`$ECHO "$SED" | $SED "$delay_single_quote_subst"`' Xsed='`$ECHO "$Xsed" | $SED "$delay_single_quote_subst"`' GREP='`$ECHO "$GREP" | $SED "$delay_single_quote_subst"`' EGREP='`$ECHO "$EGREP" | $SED "$delay_single_quote_subst"`' FGREP='`$ECHO "$FGREP" | $SED "$delay_single_quote_subst"`' LD='`$ECHO "$LD" | $SED "$delay_single_quote_subst"`' NM='`$ECHO "$NM" | $SED "$delay_single_quote_subst"`' LN_S='`$ECHO "$LN_S" | $SED "$delay_single_quote_subst"`' max_cmd_len='`$ECHO "$max_cmd_len" | $SED "$delay_single_quote_subst"`' ac_objext='`$ECHO "$ac_objext" | $SED "$delay_single_quote_subst"`' exeext='`$ECHO "$exeext" | $SED "$delay_single_quote_subst"`' lt_unset='`$ECHO "$lt_unset" | $SED "$delay_single_quote_subst"`' lt_SP2NL='`$ECHO "$lt_SP2NL" | $SED "$delay_single_quote_subst"`' lt_NL2SP='`$ECHO "$lt_NL2SP" | $SED "$delay_single_quote_subst"`' lt_cv_to_host_file_cmd='`$ECHO "$lt_cv_to_host_file_cmd" | $SED "$delay_single_quote_subst"`' lt_cv_to_tool_file_cmd='`$ECHO "$lt_cv_to_tool_file_cmd" | $SED "$delay_single_quote_subst"`' reload_flag='`$ECHO "$reload_flag" | $SED "$delay_single_quote_subst"`' reload_cmds='`$ECHO "$reload_cmds" | $SED "$delay_single_quote_subst"`' OBJDUMP='`$ECHO "$OBJDUMP" | $SED "$delay_single_quote_subst"`' deplibs_check_method='`$ECHO "$deplibs_check_method" | $SED "$delay_single_quote_subst"`' file_magic_cmd='`$ECHO "$file_magic_cmd" | $SED "$delay_single_quote_subst"`' file_magic_glob='`$ECHO "$file_magic_glob" | $SED "$delay_single_quote_subst"`' want_nocaseglob='`$ECHO "$want_nocaseglob" | $SED "$delay_single_quote_subst"`' DLLTOOL='`$ECHO "$DLLTOOL" | $SED "$delay_single_quote_subst"`' sharedlib_from_linklib_cmd='`$ECHO "$sharedlib_from_linklib_cmd" | $SED "$delay_single_quote_subst"`' AR='`$ECHO "$AR" | $SED "$delay_single_quote_subst"`' AR_FLAGS='`$ECHO "$AR_FLAGS" | $SED "$delay_single_quote_subst"`' archiver_list_spec='`$ECHO "$archiver_list_spec" | $SED "$delay_single_quote_subst"`' STRIP='`$ECHO "$STRIP" | $SED "$delay_single_quote_subst"`' RANLIB='`$ECHO "$RANLIB" | $SED "$delay_single_quote_subst"`' old_postinstall_cmds='`$ECHO "$old_postinstall_cmds" | $SED "$delay_single_quote_subst"`' old_postuninstall_cmds='`$ECHO "$old_postuninstall_cmds" | $SED "$delay_single_quote_subst"`' old_archive_cmds='`$ECHO "$old_archive_cmds" | $SED "$delay_single_quote_subst"`' lock_old_archive_extraction='`$ECHO "$lock_old_archive_extraction" | $SED "$delay_single_quote_subst"`' CC='`$ECHO "$CC" | $SED "$delay_single_quote_subst"`' CFLAGS='`$ECHO "$CFLAGS" | $SED "$delay_single_quote_subst"`' compiler='`$ECHO "$compiler" | $SED "$delay_single_quote_subst"`' GCC='`$ECHO "$GCC" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_pipe='`$ECHO "$lt_cv_sys_global_symbol_pipe" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_cdecl='`$ECHO "$lt_cv_sys_global_symbol_to_cdecl" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_import='`$ECHO "$lt_cv_sys_global_symbol_to_import" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_c_name_address='`$ECHO "$lt_cv_sys_global_symbol_to_c_name_address" | $SED "$delay_single_quote_subst"`' lt_cv_sys_global_symbol_to_c_name_address_lib_prefix='`$ECHO "$lt_cv_sys_global_symbol_to_c_name_address_lib_prefix" | $SED "$delay_single_quote_subst"`' lt_cv_nm_interface='`$ECHO "$lt_cv_nm_interface" | $SED "$delay_single_quote_subst"`' nm_file_list_spec='`$ECHO "$nm_file_list_spec" | $SED "$delay_single_quote_subst"`' lt_sysroot='`$ECHO "$lt_sysroot" | $SED "$delay_single_quote_subst"`' lt_cv_truncate_bin='`$ECHO "$lt_cv_truncate_bin" | $SED "$delay_single_quote_subst"`' objdir='`$ECHO "$objdir" | $SED "$delay_single_quote_subst"`' MAGIC_CMD='`$ECHO "$MAGIC_CMD" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_no_builtin_flag='`$ECHO "$lt_prog_compiler_no_builtin_flag" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_pic='`$ECHO "$lt_prog_compiler_pic" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_wl='`$ECHO "$lt_prog_compiler_wl" | $SED "$delay_single_quote_subst"`' lt_prog_compiler_static='`$ECHO "$lt_prog_compiler_static" | $SED "$delay_single_quote_subst"`' lt_cv_prog_compiler_c_o='`$ECHO "$lt_cv_prog_compiler_c_o" | $SED "$delay_single_quote_subst"`' need_locks='`$ECHO "$need_locks" | $SED "$delay_single_quote_subst"`' MANIFEST_TOOL='`$ECHO "$MANIFEST_TOOL" | $SED "$delay_single_quote_subst"`' DSYMUTIL='`$ECHO "$DSYMUTIL" | $SED "$delay_single_quote_subst"`' NMEDIT='`$ECHO "$NMEDIT" | $SED "$delay_single_quote_subst"`' LIPO='`$ECHO "$LIPO" | $SED "$delay_single_quote_subst"`' OTOOL='`$ECHO "$OTOOL" | $SED "$delay_single_quote_subst"`' OTOOL64='`$ECHO "$OTOOL64" | $SED "$delay_single_quote_subst"`' libext='`$ECHO "$libext" | $SED "$delay_single_quote_subst"`' shrext_cmds='`$ECHO "$shrext_cmds" | $SED "$delay_single_quote_subst"`' extract_expsyms_cmds='`$ECHO "$extract_expsyms_cmds" | $SED "$delay_single_quote_subst"`' archive_cmds_need_lc='`$ECHO "$archive_cmds_need_lc" | $SED "$delay_single_quote_subst"`' enable_shared_with_static_runtimes='`$ECHO "$enable_shared_with_static_runtimes" | $SED "$delay_single_quote_subst"`' export_dynamic_flag_spec='`$ECHO "$export_dynamic_flag_spec" | $SED "$delay_single_quote_subst"`' whole_archive_flag_spec='`$ECHO "$whole_archive_flag_spec" | $SED "$delay_single_quote_subst"`' compiler_needs_object='`$ECHO "$compiler_needs_object" | $SED "$delay_single_quote_subst"`' old_archive_from_new_cmds='`$ECHO "$old_archive_from_new_cmds" | $SED "$delay_single_quote_subst"`' old_archive_from_expsyms_cmds='`$ECHO "$old_archive_from_expsyms_cmds" | $SED "$delay_single_quote_subst"`' archive_cmds='`$ECHO "$archive_cmds" | $SED "$delay_single_quote_subst"`' archive_expsym_cmds='`$ECHO "$archive_expsym_cmds" | $SED "$delay_single_quote_subst"`' module_cmds='`$ECHO "$module_cmds" | $SED "$delay_single_quote_subst"`' module_expsym_cmds='`$ECHO "$module_expsym_cmds" | $SED "$delay_single_quote_subst"`' with_gnu_ld='`$ECHO "$with_gnu_ld" | $SED "$delay_single_quote_subst"`' allow_undefined_flag='`$ECHO "$allow_undefined_flag" | $SED "$delay_single_quote_subst"`' no_undefined_flag='`$ECHO "$no_undefined_flag" | $SED "$delay_single_quote_subst"`' hardcode_libdir_flag_spec='`$ECHO "$hardcode_libdir_flag_spec" | $SED "$delay_single_quote_subst"`' hardcode_libdir_separator='`$ECHO "$hardcode_libdir_separator" | $SED "$delay_single_quote_subst"`' hardcode_direct='`$ECHO "$hardcode_direct" | $SED "$delay_single_quote_subst"`' hardcode_direct_absolute='`$ECHO "$hardcode_direct_absolute" | $SED "$delay_single_quote_subst"`' hardcode_minus_L='`$ECHO "$hardcode_minus_L" | $SED "$delay_single_quote_subst"`' hardcode_shlibpath_var='`$ECHO "$hardcode_shlibpath_var" | $SED "$delay_single_quote_subst"`' hardcode_automatic='`$ECHO "$hardcode_automatic" | $SED "$delay_single_quote_subst"`' inherit_rpath='`$ECHO "$inherit_rpath" | $SED "$delay_single_quote_subst"`' link_all_deplibs='`$ECHO "$link_all_deplibs" | $SED "$delay_single_quote_subst"`' always_export_symbols='`$ECHO "$always_export_symbols" | $SED "$delay_single_quote_subst"`' export_symbols_cmds='`$ECHO "$export_symbols_cmds" | $SED "$delay_single_quote_subst"`' exclude_expsyms='`$ECHO "$exclude_expsyms" | $SED "$delay_single_quote_subst"`' include_expsyms='`$ECHO "$include_expsyms" | $SED "$delay_single_quote_subst"`' prelink_cmds='`$ECHO "$prelink_cmds" | $SED "$delay_single_quote_subst"`' postlink_cmds='`$ECHO "$postlink_cmds" | $SED "$delay_single_quote_subst"`' file_list_spec='`$ECHO "$file_list_spec" | $SED "$delay_single_quote_subst"`' variables_saved_for_relink='`$ECHO "$variables_saved_for_relink" | $SED "$delay_single_quote_subst"`' need_lib_prefix='`$ECHO "$need_lib_prefix" | $SED "$delay_single_quote_subst"`' need_version='`$ECHO "$need_version" | $SED "$delay_single_quote_subst"`' version_type='`$ECHO "$version_type" | $SED "$delay_single_quote_subst"`' runpath_var='`$ECHO "$runpath_var" | $SED "$delay_single_quote_subst"`' shlibpath_var='`$ECHO "$shlibpath_var" | $SED "$delay_single_quote_subst"`' shlibpath_overrides_runpath='`$ECHO "$shlibpath_overrides_runpath" | $SED "$delay_single_quote_subst"`' libname_spec='`$ECHO "$libname_spec" | $SED "$delay_single_quote_subst"`' library_names_spec='`$ECHO "$library_names_spec" | $SED "$delay_single_quote_subst"`' soname_spec='`$ECHO "$soname_spec" | $SED "$delay_single_quote_subst"`' install_override_mode='`$ECHO "$install_override_mode" | $SED "$delay_single_quote_subst"`' postinstall_cmds='`$ECHO "$postinstall_cmds" | $SED "$delay_single_quote_subst"`' postuninstall_cmds='`$ECHO "$postuninstall_cmds" | $SED "$delay_single_quote_subst"`' finish_cmds='`$ECHO "$finish_cmds" | $SED "$delay_single_quote_subst"`' finish_eval='`$ECHO "$finish_eval" | $SED "$delay_single_quote_subst"`' hardcode_into_libs='`$ECHO "$hardcode_into_libs" | $SED "$delay_single_quote_subst"`' sys_lib_search_path_spec='`$ECHO "$sys_lib_search_path_spec" | $SED "$delay_single_quote_subst"`' configure_time_dlsearch_path='`$ECHO "$configure_time_dlsearch_path" | $SED "$delay_single_quote_subst"`' configure_time_lt_sys_library_path='`$ECHO "$configure_time_lt_sys_library_path" | $SED "$delay_single_quote_subst"`' hardcode_action='`$ECHO "$hardcode_action" | $SED "$delay_single_quote_subst"`' enable_dlopen='`$ECHO "$enable_dlopen" | $SED "$delay_single_quote_subst"`' enable_dlopen_self='`$ECHO "$enable_dlopen_self" | $SED "$delay_single_quote_subst"`' enable_dlopen_self_static='`$ECHO "$enable_dlopen_self_static" | $SED "$delay_single_quote_subst"`' old_striplib='`$ECHO "$old_striplib" | $SED "$delay_single_quote_subst"`' striplib='`$ECHO "$striplib" | $SED "$delay_single_quote_subst"`' LTCC='$LTCC' LTCFLAGS='$LTCFLAGS' compiler='$compiler_DEFAULT' # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$1 _LTECHO_EOF' } # Quote evaled strings. for var in SHELL \ ECHO \ PATH_SEPARATOR \ SED \ GREP \ EGREP \ FGREP \ LD \ NM \ LN_S \ lt_SP2NL \ lt_NL2SP \ reload_flag \ OBJDUMP \ deplibs_check_method \ file_magic_cmd \ file_magic_glob \ want_nocaseglob \ DLLTOOL \ sharedlib_from_linklib_cmd \ AR \ AR_FLAGS \ archiver_list_spec \ STRIP \ RANLIB \ CC \ CFLAGS \ compiler \ lt_cv_sys_global_symbol_pipe \ lt_cv_sys_global_symbol_to_cdecl \ lt_cv_sys_global_symbol_to_import \ lt_cv_sys_global_symbol_to_c_name_address \ lt_cv_sys_global_symbol_to_c_name_address_lib_prefix \ lt_cv_nm_interface \ nm_file_list_spec \ lt_cv_truncate_bin \ lt_prog_compiler_no_builtin_flag \ lt_prog_compiler_pic \ lt_prog_compiler_wl \ lt_prog_compiler_static \ lt_cv_prog_compiler_c_o \ need_locks \ MANIFEST_TOOL \ DSYMUTIL \ NMEDIT \ LIPO \ OTOOL \ OTOOL64 \ shrext_cmds \ export_dynamic_flag_spec \ whole_archive_flag_spec \ compiler_needs_object \ with_gnu_ld \ allow_undefined_flag \ no_undefined_flag \ hardcode_libdir_flag_spec \ hardcode_libdir_separator \ exclude_expsyms \ include_expsyms \ file_list_spec \ variables_saved_for_relink \ libname_spec \ library_names_spec \ soname_spec \ install_override_mode \ finish_eval \ old_striplib \ striplib; do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[\\\\\\\`\\"\\\$]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED \\"\\\$sed_quote_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done # Double-quote double-evaled strings. for var in reload_cmds \ old_postinstall_cmds \ old_postuninstall_cmds \ old_archive_cmds \ extract_expsyms_cmds \ old_archive_from_new_cmds \ old_archive_from_expsyms_cmds \ archive_cmds \ archive_expsym_cmds \ module_cmds \ module_expsym_cmds \ export_symbols_cmds \ prelink_cmds \ postlink_cmds \ postinstall_cmds \ postuninstall_cmds \ finish_cmds \ sys_lib_search_path_spec \ configure_time_dlsearch_path \ configure_time_lt_sys_library_path; do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[\\\\\\\`\\"\\\$]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED -e \\"\\\$double_quote_subst\\" -e \\"\\\$sed_quote_subst\\" -e \\"\\\$delay_variable_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done ac_aux_dir='$ac_aux_dir' # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes INIT. if test -n "\${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi PACKAGE='$PACKAGE' VERSION='$VERSION' RM='$RM' ofile='$ofile' _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # Handling of arguments. for ac_config_target in $ac_config_targets do case $ac_config_target in "config.h") CONFIG_HEADERS="$CONFIG_HEADERS config.h" ;; "depfiles") CONFIG_COMMANDS="$CONFIG_COMMANDS depfiles" ;; "libtool") CONFIG_COMMANDS="$CONFIG_COMMANDS libtool" ;; "Makefile") CONFIG_FILES="$CONFIG_FILES Makefile" ;; "openconnect.pc") CONFIG_FILES="$CONFIG_FILES openconnect.pc" ;; "po/Makefile") CONFIG_FILES="$CONFIG_FILES po/Makefile" ;; "www/Makefile") CONFIG_FILES="$CONFIG_FILES www/Makefile" ;; "libopenconnect.map") CONFIG_FILES="$CONFIG_FILES libopenconnect.map" ;; "openconnect.8") CONFIG_FILES="$CONFIG_FILES openconnect.8" ;; "www/styles/Makefile") CONFIG_FILES="$CONFIG_FILES www/styles/Makefile" ;; "www/inc/Makefile") CONFIG_FILES="$CONFIG_FILES www/inc/Makefile" ;; "www/images/Makefile") CONFIG_FILES="$CONFIG_FILES www/images/Makefile" ;; "tests/Makefile") CONFIG_FILES="$CONFIG_FILES tests/Makefile" ;; "tests/softhsm2.conf") CONFIG_FILES="$CONFIG_FILES tests/softhsm2.conf" ;; "tests/configs/test-user-cert.config") CONFIG_FILES="$CONFIG_FILES tests/configs/test-user-cert.config" ;; "tests/configs/test-user-pass.config") CONFIG_FILES="$CONFIG_FILES tests/configs/test-user-pass.config" ;; *) as_fn_error $? "invalid argument: \`$ac_config_target'" "$LINENO" 5;; esac done # If the user did not use the arguments to specify the items to instantiate, # then the envvar interface is used. Set only those that are not. # We use the long form for the default assignment because of an extremely # bizarre bug on SunOS 4.1.3. if $ac_need_defaults; then test "${CONFIG_FILES+set}" = set || CONFIG_FILES=$config_files test "${CONFIG_HEADERS+set}" = set || CONFIG_HEADERS=$config_headers test "${CONFIG_COMMANDS+set}" = set || CONFIG_COMMANDS=$config_commands fi # Have a temporary directory for convenience. Make it in the build tree # simply because there is no reason against having it here, and in addition, # creating and moving files from /tmp can sometimes cause problems. # Hook for its removal unless debugging. # Note that there is a small window in which the directory will not be cleaned: # after its creation but before its name has been assigned to `$tmp'. $debug || { tmp= ac_tmp= trap 'exit_status=$? : "${ac_tmp:=$tmp}" { test ! -d "$ac_tmp" || rm -fr "$ac_tmp"; } && exit $exit_status ' 0 trap 'as_fn_exit 1' 1 2 13 15 } # Create a (secure) tmp directory for tmp files. { tmp=`(umask 077 && mktemp -d "./confXXXXXX") 2>/dev/null` && test -d "$tmp" } || { tmp=./conf$$-$RANDOM (umask 077 && mkdir "$tmp") } || as_fn_error $? "cannot create a temporary directory in ." "$LINENO" 5 ac_tmp=$tmp # Set up the scripts for CONFIG_FILES section. # No need to generate them if there are no CONFIG_FILES. # This happens for instance with `./config.status config.h'. if test -n "$CONFIG_FILES"; then ac_cr=`echo X | tr X '\015'` # On cygwin, bash can eat \r inside `` if the user requested igncr. # But we know of no other shell where ac_cr would be empty at this # point, so we can use a bashism as a fallback. if test "x$ac_cr" = x; then eval ac_cr=\$\'\\r\' fi ac_cs_awk_cr=`$AWK 'BEGIN { print "a\rb" }' /dev/null` if test "$ac_cs_awk_cr" = "a${ac_cr}b"; then ac_cs_awk_cr='\\r' else ac_cs_awk_cr=$ac_cr fi echo 'BEGIN {' >"$ac_tmp/subs1.awk" && _ACEOF { echo "cat >conf$$subs.awk <<_ACEOF" && echo "$ac_subst_vars" | sed 's/.*/&!$&$ac_delim/' && echo "_ACEOF" } >conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_num=`echo "$ac_subst_vars" | grep -c '^'` ac_delim='%!_!# ' for ac_last_try in false false false false false :; do . ./conf$$subs.sh || as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 ac_delim_n=`sed -n "s/.*$ac_delim\$/X/p" conf$$subs.awk | grep -c X` if test $ac_delim_n = $ac_delim_num; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_STATUS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done rm -f conf$$subs.sh cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 cat >>"\$ac_tmp/subs1.awk" <<\\_ACAWK && _ACEOF sed -n ' h s/^/S["/; s/!.*/"]=/ p g s/^[^!]*!// :repl t repl s/'"$ac_delim"'$// t delim :nl h s/\(.\{148\}\)..*/\1/ t more1 s/["\\]/\\&/g; s/^/"/; s/$/\\n"\\/ p n b repl :more1 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t nl :delim h s/\(.\{148\}\)..*/\1/ t more2 s/["\\]/\\&/g; s/^/"/; s/$/"/ p b :more2 s/["\\]/\\&/g; s/^/"/; s/$/"\\/ p g s/.\{148\}// t delim ' >$CONFIG_STATUS || ac_write_fail=1 rm -f conf$$subs.awk cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 _ACAWK cat >>"\$ac_tmp/subs1.awk" <<_ACAWK && for (key in S) S_is_set[key] = 1 FS = "" } { line = $ 0 nfields = split(line, field, "@") substed = 0 len = length(field[1]) for (i = 2; i < nfields; i++) { key = field[i] keylen = length(key) if (S_is_set[key]) { value = S[key] line = substr(line, 1, len) "" value "" substr(line, len + keylen + 3) len += length(value) + length(field[++i]) substed = 1 } else len += 1 + keylen } print line } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 if sed "s/$ac_cr//" < /dev/null > /dev/null 2>&1; then sed "s/$ac_cr\$//; s/$ac_cr/$ac_cs_awk_cr/g" else cat fi < "$ac_tmp/subs1.awk" > "$ac_tmp/subs.awk" \ || as_fn_error $? "could not setup config files machinery" "$LINENO" 5 _ACEOF # VPATH may cause trouble with some makes, so we remove sole $(srcdir), # ${srcdir} and @srcdir@ entries from VPATH if srcdir is ".", strip leading and # trailing colons and then remove the whole line if VPATH becomes empty # (actually we leave an empty line to preserve line numbers). if test "x$srcdir" = x.; then ac_vpsub='/^[ ]*VPATH[ ]*=[ ]*/{ h s/// s/^/:/ s/[ ]*$/:/ s/:\$(srcdir):/:/g s/:\${srcdir}:/:/g s/:@srcdir@:/:/g s/^:*// s/:*$// x s/\(=[ ]*\).*/\1/ G s/\n// s/^[^=]*=[ ]*$// }' fi cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 fi # test -n "$CONFIG_FILES" # Set up the scripts for CONFIG_HEADERS section. # No need to generate them if there are no CONFIG_HEADERS. # This happens for instance with `./config.status Makefile'. if test -n "$CONFIG_HEADERS"; then cat >"$ac_tmp/defines.awk" <<\_ACAWK || BEGIN { _ACEOF # Transform confdefs.h into an awk script `defines.awk', embedded as # here-document in config.status, that substitutes the proper values into # config.h.in to produce config.h. # Create a delimiter string that does not exist in confdefs.h, to ease # handling of long lines. ac_delim='%!_!# ' for ac_last_try in false false :; do ac_tt=`sed -n "/$ac_delim/p" confdefs.h` if test -z "$ac_tt"; then break elif $ac_last_try; then as_fn_error $? "could not make $CONFIG_HEADERS" "$LINENO" 5 else ac_delim="$ac_delim!$ac_delim _$ac_delim!! " fi done # For the awk script, D is an array of macro values keyed by name, # likewise P contains macro parameters if any. Preserve backslash # newline sequences. ac_word_re=[_$as_cr_Letters][_$as_cr_alnum]* sed -n ' s/.\{148\}/&'"$ac_delim"'/g t rset :rset s/^[ ]*#[ ]*define[ ][ ]*/ / t def d :def s/\\$// t bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3"/p s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2"/p d :bsnl s/["\\]/\\&/g s/^ \('"$ac_word_re"'\)\(([^()]*)\)[ ]*\(.*\)/P["\1"]="\2"\ D["\1"]=" \3\\\\\\n"\\/p t cont s/^ \('"$ac_word_re"'\)[ ]*\(.*\)/D["\1"]=" \2\\\\\\n"\\/p t cont d :cont n s/.\{148\}/&'"$ac_delim"'/g t clear :clear s/\\$// t bsnlc s/["\\]/\\&/g; s/^/"/; s/$/"/p d :bsnlc s/["\\]/\\&/g; s/^/"/; s/$/\\\\\\n"\\/p b cont ' >$CONFIG_STATUS || ac_write_fail=1 cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 for (key in D) D_is_set[key] = 1 FS = "" } /^[\t ]*#[\t ]*(define|undef)[\t ]+$ac_word_re([\t (]|\$)/ { line = \$ 0 split(line, arg, " ") if (arg[1] == "#") { defundef = arg[2] mac1 = arg[3] } else { defundef = substr(arg[1], 2) mac1 = arg[2] } split(mac1, mac2, "(") #) macro = mac2[1] prefix = substr(line, 1, index(line, defundef) - 1) if (D_is_set[macro]) { # Preserve the white space surrounding the "#". print prefix "define", macro P[macro] D[macro] next } else { # Replace #undef with comments. This is necessary, for example, # in the case of _POSIX_SOURCE, which is predefined and required # on some systems where configure will not decide to define it. if (defundef == "undef") { print "/*", prefix defundef, macro, "*/" next } } } { print } _ACAWK _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 as_fn_error $? "could not setup config headers machinery" "$LINENO" 5 fi # test -n "$CONFIG_HEADERS" eval set X " :F $CONFIG_FILES :H $CONFIG_HEADERS :C $CONFIG_COMMANDS" shift for ac_tag do case $ac_tag in :[FHLC]) ac_mode=$ac_tag; continue;; esac case $ac_mode$ac_tag in :[FHL]*:*);; :L* | :C*:*) as_fn_error $? "invalid tag \`$ac_tag'" "$LINENO" 5;; :[FH]-) ac_tag=-:-;; :[FH]*) ac_tag=$ac_tag:$ac_tag.in;; esac ac_save_IFS=$IFS IFS=: set x $ac_tag IFS=$ac_save_IFS shift ac_file=$1 shift case $ac_mode in :L) ac_source=$1;; :[FH]) ac_file_inputs= for ac_f do case $ac_f in -) ac_f="$ac_tmp/stdin";; *) # Look for the file first in the build tree, then in the source tree # (if the path is not absolute). The absolute path cannot be DOS-style, # because $ac_f cannot contain `:'. test -f "$ac_f" || case $ac_f in [\\/$]*) false;; *) test -f "$srcdir/$ac_f" && ac_f="$srcdir/$ac_f";; esac || as_fn_error 1 "cannot find input file: \`$ac_f'" "$LINENO" 5;; esac case $ac_f in *\'*) ac_f=`$as_echo "$ac_f" | sed "s/'/'\\\\\\\\''/g"`;; esac as_fn_append ac_file_inputs " '$ac_f'" done # Let's still pretend it is `configure' which instantiates (i.e., don't # use $as_me), people would be surprised to read: # /* config.h. Generated by config.status. */ configure_input='Generated from '` $as_echo "$*" | sed 's|^[^:]*/||;s|:[^:]*/|, |g' `' by configure.' if test x"$ac_file" != x-; then configure_input="$ac_file. $configure_input" { $as_echo "$as_me:${as_lineno-$LINENO}: creating $ac_file" >&5 $as_echo "$as_me: creating $ac_file" >&6;} fi # Neutralize special characters interpreted by sed in replacement strings. case $configure_input in #( *\&* | *\|* | *\\* ) ac_sed_conf_input=`$as_echo "$configure_input" | sed 's/[\\\\&|]/\\\\&/g'`;; #( *) ac_sed_conf_input=$configure_input;; esac case $ac_tag in *:-:* | *:-) cat >"$ac_tmp/stdin" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; esac ;; esac ac_dir=`$as_dirname -- "$ac_file" || $as_expr X"$ac_file" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$ac_file" : 'X\(//\)[^/]' \| \ X"$ac_file" : 'X\(//\)$' \| \ X"$ac_file" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$ac_file" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` as_dir="$ac_dir"; as_fn_mkdir_p ac_builddir=. case "$ac_dir" in .) ac_dir_suffix= ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_dir_suffix=/`$as_echo "$ac_dir" | sed 's|^\.[\\/]||'` # A ".." for each directory in $ac_dir_suffix. ac_top_builddir_sub=`$as_echo "$ac_dir_suffix" | sed 's|/[^\\/]*|/..|g;s|/||'` case $ac_top_builddir_sub in "") ac_top_builddir_sub=. ac_top_build_prefix= ;; *) ac_top_build_prefix=$ac_top_builddir_sub/ ;; esac ;; esac ac_abs_top_builddir=$ac_pwd ac_abs_builddir=$ac_pwd$ac_dir_suffix # for backward compatibility: ac_top_builddir=$ac_top_build_prefix case $srcdir in .) # We are building in place. ac_srcdir=. ac_top_srcdir=$ac_top_builddir_sub ac_abs_top_srcdir=$ac_pwd ;; [\\/]* | ?:[\\/]* ) # Absolute name. ac_srcdir=$srcdir$ac_dir_suffix; ac_top_srcdir=$srcdir ac_abs_top_srcdir=$srcdir ;; *) # Relative name. ac_srcdir=$ac_top_build_prefix$srcdir$ac_dir_suffix ac_top_srcdir=$ac_top_build_prefix$srcdir ac_abs_top_srcdir=$ac_pwd/$srcdir ;; esac ac_abs_srcdir=$ac_abs_top_srcdir$ac_dir_suffix case $ac_mode in :F) # # CONFIG_FILE # case $INSTALL in [\\/$]* | ?:[\\/]* ) ac_INSTALL=$INSTALL ;; *) ac_INSTALL=$ac_top_build_prefix$INSTALL ;; esac ac_MKDIR_P=$MKDIR_P case $MKDIR_P in [\\/$]* | ?:[\\/]* ) ;; */*) ac_MKDIR_P=$ac_top_build_prefix$MKDIR_P ;; esac _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 # If the template does not know about datarootdir, expand it. # FIXME: This hack should be removed a few years after 2.60. ac_datarootdir_hack=; ac_datarootdir_seen= ac_sed_dataroot=' /datarootdir/ { p q } /@datadir@/p /@docdir@/p /@infodir@/p /@localedir@/p /@mandir@/p' case `eval "sed -n \"\$ac_sed_dataroot\" $ac_file_inputs"` in *datarootdir*) ac_datarootdir_seen=yes;; *@datadir@*|*@docdir@*|*@infodir@*|*@localedir@*|*@mandir@*) { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&5 $as_echo "$as_me: WARNING: $ac_file_inputs seems to ignore the --datarootdir setting" >&2;} _ACEOF cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_datarootdir_hack=' s&@datadir@&$datadir&g s&@docdir@&$docdir&g s&@infodir@&$infodir&g s&@localedir@&$localedir&g s&@mandir@&$mandir&g s&\\\${datarootdir}&$datarootdir&g' ;; esac _ACEOF # Neutralize VPATH when `$srcdir' = `.'. # Shell code in configure.ac might set extrasub. # FIXME: do we really want to maintain this feature? cat >>$CONFIG_STATUS <<_ACEOF || ac_write_fail=1 ac_sed_extra="$ac_vpsub $extrasub _ACEOF cat >>$CONFIG_STATUS <<\_ACEOF || ac_write_fail=1 :t /@[a-zA-Z_][a-zA-Z_0-9]*@/!b s|@configure_input@|$ac_sed_conf_input|;t t s&@top_builddir@&$ac_top_builddir_sub&;t t s&@top_build_prefix@&$ac_top_build_prefix&;t t s&@srcdir@&$ac_srcdir&;t t s&@abs_srcdir@&$ac_abs_srcdir&;t t s&@top_srcdir@&$ac_top_srcdir&;t t s&@abs_top_srcdir@&$ac_abs_top_srcdir&;t t s&@builddir@&$ac_builddir&;t t s&@abs_builddir@&$ac_abs_builddir&;t t s&@abs_top_builddir@&$ac_abs_top_builddir&;t t s&@INSTALL@&$ac_INSTALL&;t t s&@MKDIR_P@&$ac_MKDIR_P&;t t $ac_datarootdir_hack " eval sed \"\$ac_sed_extra\" "$ac_file_inputs" | $AWK -f "$ac_tmp/subs.awk" \ >$ac_tmp/out || as_fn_error $? "could not create $ac_file" "$LINENO" 5 test -z "$ac_datarootdir_hack$ac_datarootdir_seen" && { ac_out=`sed -n '/\${datarootdir}/p' "$ac_tmp/out"`; test -n "$ac_out"; } && { ac_out=`sed -n '/^[ ]*datarootdir[ ]*:*=/p' \ "$ac_tmp/out"`; test -z "$ac_out"; } && { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&5 $as_echo "$as_me: WARNING: $ac_file contains a reference to the variable \`datarootdir' which seems to be undefined. Please make sure it is defined" >&2;} rm -f "$ac_tmp/stdin" case $ac_file in -) cat "$ac_tmp/out" && rm -f "$ac_tmp/out";; *) rm -f "$ac_file" && mv "$ac_tmp/out" "$ac_file";; esac \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 ;; :H) # # CONFIG_HEADER # if test x"$ac_file" != x-; then { $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" } >"$ac_tmp/config.h" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 if diff "$ac_file" "$ac_tmp/config.h" >/dev/null 2>&1; then { $as_echo "$as_me:${as_lineno-$LINENO}: $ac_file is unchanged" >&5 $as_echo "$as_me: $ac_file is unchanged" >&6;} else rm -f "$ac_file" mv "$ac_tmp/config.h" "$ac_file" \ || as_fn_error $? "could not create $ac_file" "$LINENO" 5 fi else $as_echo "/* $configure_input */" \ && eval '$AWK -f "$ac_tmp/defines.awk"' "$ac_file_inputs" \ || as_fn_error $? "could not create -" "$LINENO" 5 fi # Compute "$ac_file"'s index in $config_headers. _am_arg="$ac_file" _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`$as_dirname -- "$_am_arg" || $as_expr X"$_am_arg" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$_am_arg" : 'X\(//\)[^/]' \| \ X"$_am_arg" : 'X\(//\)$' \| \ X"$_am_arg" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$_am_arg" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'`/stamp-h$_am_stamp_count ;; :C) { $as_echo "$as_me:${as_lineno-$LINENO}: executing $ac_file commands" >&5 $as_echo "$as_me: executing $ac_file commands" >&6;} ;; esac case $ac_file$ac_mode in "depfiles":C) test x"$AMDEP_TRUE" != x"" || { # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. # TODO: see whether this extra hack can be removed once we start # requiring Autoconf 2.70 or later. case $CONFIG_FILES in #( *\'*) : eval set x "$CONFIG_FILES" ;; #( *) : set x $CONFIG_FILES ;; #( *) : ;; esac shift # Used to flag and report bootstrapping failures. am_rc=0 for am_mf do # Strip MF so we end up with the name of the file. am_mf=`$as_echo "$am_mf" | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile which includes # dependency-tracking related rules and includes. # Grep'ing the whole file directly is not great: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. sed -n 's,^am--depfiles:.*,X,p' "$am_mf" | grep X >/dev/null 2>&1 \ || continue am_dirpart=`$as_dirname -- "$am_mf" || $as_expr X"$am_mf" : 'X\(.*[^/]\)//*[^/][^/]*/*$' \| \ X"$am_mf" : 'X\(//\)[^/]' \| \ X"$am_mf" : 'X\(//\)$' \| \ X"$am_mf" : 'X\(/\)' \| . 2>/dev/null || $as_echo X"$am_mf" | sed '/^X\(.*[^/]\)\/\/*[^/][^/]*\/*$/{ s//\1/ q } /^X\(\/\/\)[^/].*/{ s//\1/ q } /^X\(\/\/\)$/{ s//\1/ q } /^X\(\/\).*/{ s//\1/ q } s/.*/./; q'` am_filepart=`$as_basename -- "$am_mf" || $as_expr X/"$am_mf" : '.*/\([^/][^/]*\)/*$' \| \ X"$am_mf" : 'X\(//\)$' \| \ X"$am_mf" : 'X\(/\)' \| . 2>/dev/null || $as_echo X/"$am_mf" | sed '/^.*\/\([^/][^/]*\)\/*$/{ s//\1/ q } /^X\/\(\/\/\)$/{ s//\1/ q } /^X\/\(\/\).*/{ s//\1/ q } s/.*/./; q'` { echo "$as_me:$LINENO: cd "$am_dirpart" \ && sed -e '/# am--include-marker/d' "$am_filepart" \ | $MAKE -f - am--depfiles" >&5 (cd "$am_dirpart" \ && sed -e '/# am--include-marker/d' "$am_filepart" \ | $MAKE -f - am--depfiles) >&5 2>&5 ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&5 (exit $ac_status); } || am_rc=$? done if test $am_rc -ne 0; then { { $as_echo "$as_me:${as_lineno-$LINENO}: error: in \`$ac_pwd':" >&5 $as_echo "$as_me: error: in \`$ac_pwd':" >&2;} as_fn_error $? "Something went wrong bootstrapping makefile fragments for automatic dependency tracking. If GNU make was not used, consider re-running the configure script with MAKE=\"gmake\" (or whatever is necessary). You can also try re-running configure with the '--disable-dependency-tracking' option to at least be able to build the package (albeit without support for automatic dependency tracking). See \`config.log' for more details" "$LINENO" 5; } fi { am_dirpart=; unset am_dirpart;} { am_filepart=; unset am_filepart;} { am_mf=; unset am_mf;} { am_rc=; unset am_rc;} rm -f conftest-deps.mk } ;; "libtool":C) # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes. if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi cfgfile=${ofile}T trap "$RM \"$cfgfile\"; exit 1" 1 2 15 $RM "$cfgfile" cat <<_LT_EOF >> "$cfgfile" #! $SHELL # Generated automatically by $as_me ($PACKAGE) $VERSION # Libtool was configured on host `(hostname || uname -n) 2>/dev/null | sed 1q`: # NOTE: Changes made to this file will be lost: look at ltmain.sh. # Provide generalized library-building support services. # Written by Gordon Matzigkeit, 1996 # Copyright (C) 2014 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # GNU Libtool is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of of the License, or # (at your option) any later version. # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program or library that is built # using GNU Libtool, you may include this file under the same # distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # The names of the tagged configurations supported by this script. available_tags='' # Configured defaults for sys_lib_dlsearch_path munging. : \${LT_SYS_LIBRARY_PATH="$configure_time_lt_sys_library_path"} # ### BEGIN LIBTOOL CONFIG # Whether or not to build shared libraries. build_libtool_libs=$enable_shared # Whether or not to build static libraries. build_old_libs=$enable_static # Which release of libtool.m4 was used? macro_version=$macro_version macro_revision=$macro_revision # What type of objects to build. pic_mode=$pic_mode # Whether or not to optimize for fast installation. fast_install=$enable_fast_install # Shared archive member basename,for filename based shared library versioning on AIX. shared_archive_member_spec=$shared_archive_member_spec # Shell to use when invoking shell scripts. SHELL=$lt_SHELL # An echo program that protects backslashes. ECHO=$lt_ECHO # The PATH separator for the build system. PATH_SEPARATOR=$lt_PATH_SEPARATOR # The host system. host_alias=$host_alias host=$host host_os=$host_os # The build system. build_alias=$build_alias build=$build build_os=$build_os # A sed program that does not truncate output. SED=$lt_SED # Sed that helps us avoid accidentally triggering echo(1) options like -n. Xsed="\$SED -e 1s/^X//" # A grep program that handles long lines. GREP=$lt_GREP # An ERE matcher. EGREP=$lt_EGREP # A literal string matcher. FGREP=$lt_FGREP # A BSD- or MS-compatible name lister. NM=$lt_NM # Whether we need soft or hard links. LN_S=$lt_LN_S # What is the maximum length of a command? max_cmd_len=$max_cmd_len # Object file suffix (normally "o"). objext=$ac_objext # Executable file suffix (normally ""). exeext=$exeext # whether the shell understands "unset". lt_unset=$lt_unset # turn spaces into newlines. SP2NL=$lt_lt_SP2NL # turn newlines into spaces. NL2SP=$lt_lt_NL2SP # convert \$build file names to \$host format. to_host_file_cmd=$lt_cv_to_host_file_cmd # convert \$build files to toolchain format. to_tool_file_cmd=$lt_cv_to_tool_file_cmd # An object symbol dumper. OBJDUMP=$lt_OBJDUMP # Method to check whether dependent libraries are shared objects. deplibs_check_method=$lt_deplibs_check_method # Command to use when deplibs_check_method = "file_magic". file_magic_cmd=$lt_file_magic_cmd # How to find potential files when deplibs_check_method = "file_magic". file_magic_glob=$lt_file_magic_glob # Find potential files using nocaseglob when deplibs_check_method = "file_magic". want_nocaseglob=$lt_want_nocaseglob # DLL creation program. DLLTOOL=$lt_DLLTOOL # Command to associate shared and link libraries. sharedlib_from_linklib_cmd=$lt_sharedlib_from_linklib_cmd # The archiver. AR=$lt_AR # Flags to create an archive. AR_FLAGS=$lt_AR_FLAGS # How to feed a file listing to the archiver. archiver_list_spec=$lt_archiver_list_spec # A symbol stripping program. STRIP=$lt_STRIP # Commands used to install an old-style archive. RANLIB=$lt_RANLIB old_postinstall_cmds=$lt_old_postinstall_cmds old_postuninstall_cmds=$lt_old_postuninstall_cmds # Whether to use a lock for old archive extraction. lock_old_archive_extraction=$lock_old_archive_extraction # A C compiler. LTCC=$lt_CC # LTCC compiler flags. LTCFLAGS=$lt_CFLAGS # Take the output of nm and produce a listing of raw symbols and C names. global_symbol_pipe=$lt_lt_cv_sys_global_symbol_pipe # Transform the output of nm in a proper C declaration. global_symbol_to_cdecl=$lt_lt_cv_sys_global_symbol_to_cdecl # Transform the output of nm into a list of symbols to manually relocate. global_symbol_to_import=$lt_lt_cv_sys_global_symbol_to_import # Transform the output of nm in a C name address pair. global_symbol_to_c_name_address=$lt_lt_cv_sys_global_symbol_to_c_name_address # Transform the output of nm in a C name address pair when lib prefix is needed. global_symbol_to_c_name_address_lib_prefix=$lt_lt_cv_sys_global_symbol_to_c_name_address_lib_prefix # The name lister interface. nm_interface=$lt_lt_cv_nm_interface # Specify filename containing input files for \$NM. nm_file_list_spec=$lt_nm_file_list_spec # The root where to search for dependent libraries,and where our libraries should be installed. lt_sysroot=$lt_sysroot # Command to truncate a binary pipe. lt_truncate_bin=$lt_lt_cv_truncate_bin # The name of the directory that contains temporary libtool files. objdir=$objdir # Used to examine libraries when file_magic_cmd begins with "file". MAGIC_CMD=$MAGIC_CMD # Must we lock files when doing compilation? need_locks=$lt_need_locks # Manifest tool. MANIFEST_TOOL=$lt_MANIFEST_TOOL # Tool to manipulate archived DWARF debug symbol files on Mac OS X. DSYMUTIL=$lt_DSYMUTIL # Tool to change global to local symbols on Mac OS X. NMEDIT=$lt_NMEDIT # Tool to manipulate fat objects and archives on Mac OS X. LIPO=$lt_LIPO # ldd/readelf like tool for Mach-O binaries on Mac OS X. OTOOL=$lt_OTOOL # ldd/readelf like tool for 64 bit Mach-O binaries on Mac OS X 10.4. OTOOL64=$lt_OTOOL64 # Old archive suffix (normally "a"). libext=$libext # Shared library suffix (normally ".so"). shrext_cmds=$lt_shrext_cmds # The commands to extract the exported symbol list from a shared archive. extract_expsyms_cmds=$lt_extract_expsyms_cmds # Variables whose values should be saved in libtool wrapper scripts and # restored at link time. variables_saved_for_relink=$lt_variables_saved_for_relink # Do we need the "lib" prefix for modules? need_lib_prefix=$need_lib_prefix # Do we need a version for libraries? need_version=$need_version # Library versioning type. version_type=$version_type # Shared library runtime path variable. runpath_var=$runpath_var # Shared library path variable. shlibpath_var=$shlibpath_var # Is shlibpath searched before the hard-coded library search path? shlibpath_overrides_runpath=$shlibpath_overrides_runpath # Format of library name prefix. libname_spec=$lt_libname_spec # List of archive names. First name is the real one, the rest are links. # The last name is the one that the linker finds with -lNAME library_names_spec=$lt_library_names_spec # The coded name of the library, if different from the real name. soname_spec=$lt_soname_spec # Permission mode override for installation of shared libraries. install_override_mode=$lt_install_override_mode # Command to use after installation of a shared archive. postinstall_cmds=$lt_postinstall_cmds # Command to use after uninstallation of a shared archive. postuninstall_cmds=$lt_postuninstall_cmds # Commands used to finish a libtool library installation in a directory. finish_cmds=$lt_finish_cmds # As "finish_cmds", except a single script fragment to be evaled but # not shown. finish_eval=$lt_finish_eval # Whether we should hardcode library paths into libraries. hardcode_into_libs=$hardcode_into_libs # Compile-time system search path for libraries. sys_lib_search_path_spec=$lt_sys_lib_search_path_spec # Detected run-time system search path for libraries. sys_lib_dlsearch_path_spec=$lt_configure_time_dlsearch_path # Explicit LT_SYS_LIBRARY_PATH set during ./configure time. configure_time_lt_sys_library_path=$lt_configure_time_lt_sys_library_path # Whether dlopen is supported. dlopen_support=$enable_dlopen # Whether dlopen of programs is supported. dlopen_self=$enable_dlopen_self # Whether dlopen of statically linked programs is supported. dlopen_self_static=$enable_dlopen_self_static # Commands to strip libraries. old_striplib=$lt_old_striplib striplib=$lt_striplib # The linker used to build libraries. LD=$lt_LD # How to create reloadable object files. reload_flag=$lt_reload_flag reload_cmds=$lt_reload_cmds # Commands used to build an old-style archive. old_archive_cmds=$lt_old_archive_cmds # A language specific compiler. CC=$lt_compiler # Is the compiler the GNU compiler? with_gcc=$GCC # Compiler flag to turn off builtin functions. no_builtin_flag=$lt_lt_prog_compiler_no_builtin_flag # Additional compiler flags for building library objects. pic_flag=$lt_lt_prog_compiler_pic # How to pass a linker flag through the compiler. wl=$lt_lt_prog_compiler_wl # Compiler flag to prevent dynamic linking. link_static_flag=$lt_lt_prog_compiler_static # Does compiler simultaneously support -c and -o options? compiler_c_o=$lt_lt_cv_prog_compiler_c_o # Whether or not to add -lc for building shared libraries. build_libtool_need_lc=$archive_cmds_need_lc # Whether or not to disallow shared libs when runtime libs are static. allow_libtool_libs_with_static_runtimes=$enable_shared_with_static_runtimes # Compiler flag to allow reflexive dlopens. export_dynamic_flag_spec=$lt_export_dynamic_flag_spec # Compiler flag to generate shared objects directly from archives. whole_archive_flag_spec=$lt_whole_archive_flag_spec # Whether the compiler copes with passing no objects directly. compiler_needs_object=$lt_compiler_needs_object # Create an old-style archive from a shared archive. old_archive_from_new_cmds=$lt_old_archive_from_new_cmds # Create a temporary old-style archive to link instead of a shared archive. old_archive_from_expsyms_cmds=$lt_old_archive_from_expsyms_cmds # Commands used to build a shared archive. archive_cmds=$lt_archive_cmds archive_expsym_cmds=$lt_archive_expsym_cmds # Commands used to build a loadable module if different from building # a shared archive. module_cmds=$lt_module_cmds module_expsym_cmds=$lt_module_expsym_cmds # Whether we are building with GNU ld or not. with_gnu_ld=$lt_with_gnu_ld # Flag that allows shared libraries with undefined symbols to be built. allow_undefined_flag=$lt_allow_undefined_flag # Flag that enforces no undefined symbols. no_undefined_flag=$lt_no_undefined_flag # Flag to hardcode \$libdir into a binary during linking. # This must work even if \$libdir does not exist hardcode_libdir_flag_spec=$lt_hardcode_libdir_flag_spec # Whether we need a single "-rpath" flag with a separated argument. hardcode_libdir_separator=$lt_hardcode_libdir_separator # Set to "yes" if using DIR/libNAME\$shared_ext during linking hardcodes # DIR into the resulting binary. hardcode_direct=$hardcode_direct # Set to "yes" if using DIR/libNAME\$shared_ext during linking hardcodes # DIR into the resulting binary and the resulting library dependency is # "absolute",i.e impossible to change by setting \$shlibpath_var if the # library is relocated. hardcode_direct_absolute=$hardcode_direct_absolute # Set to "yes" if using the -LDIR flag during linking hardcodes DIR # into the resulting binary. hardcode_minus_L=$hardcode_minus_L # Set to "yes" if using SHLIBPATH_VAR=DIR during linking hardcodes DIR # into the resulting binary. hardcode_shlibpath_var=$hardcode_shlibpath_var # Set to "yes" if building a shared library automatically hardcodes DIR # into the library and all subsequent libraries and executables linked # against it. hardcode_automatic=$hardcode_automatic # Set to yes if linker adds runtime paths of dependent libraries # to runtime path list. inherit_rpath=$inherit_rpath # Whether libtool must link a program against all its dependency libraries. link_all_deplibs=$link_all_deplibs # Set to "yes" if exported symbols are required. always_export_symbols=$always_export_symbols # The commands to list exported symbols. export_symbols_cmds=$lt_export_symbols_cmds # Symbols that should not be listed in the preloaded symbols. exclude_expsyms=$lt_exclude_expsyms # Symbols that must always be exported. include_expsyms=$lt_include_expsyms # Commands necessary for linking programs (against libraries) with templates. prelink_cmds=$lt_prelink_cmds # Commands necessary for finishing linking programs. postlink_cmds=$lt_postlink_cmds # Specify filename containing input files. file_list_spec=$lt_file_list_spec # How to hardcode a shared library path into an executable. hardcode_action=$hardcode_action # ### END LIBTOOL CONFIG _LT_EOF cat <<'_LT_EOF' >> "$cfgfile" # ### BEGIN FUNCTIONS SHARED WITH CONFIGURE # func_munge_path_list VARIABLE PATH # ----------------------------------- # VARIABLE is name of variable containing _space_ separated list of # directories to be munged by the contents of PATH, which is string # having a format: # "DIR[:DIR]:" # string "DIR[ DIR]" will be prepended to VARIABLE # ":DIR[:DIR]" # string "DIR[ DIR]" will be appended to VARIABLE # "DIRP[:DIRP]::[DIRA:]DIRA" # string "DIRP[ DIRP]" will be prepended to VARIABLE and string # "DIRA[ DIRA]" will be appended to VARIABLE # "DIR[:DIR]" # VARIABLE will be replaced by "DIR[ DIR]" func_munge_path_list () { case x$2 in x) ;; *:) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'` \$$1\" ;; x:*) eval $1=\"\$$1 `$ECHO $2 | $SED 's/:/ /g'`\" ;; *::*) eval $1=\"\$$1\ `$ECHO $2 | $SED -e 's/.*:://' -e 's/:/ /g'`\" eval $1=\"`$ECHO $2 | $SED -e 's/::.*//' -e 's/:/ /g'`\ \$$1\" ;; *) eval $1=\"`$ECHO $2 | $SED 's/:/ /g'`\" ;; esac } # Calculate cc_basename. Skip known compiler wrappers and cross-prefix. func_cc_basename () { for cc_temp in $*""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done func_cc_basename_result=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` } # ### END FUNCTIONS SHARED WITH CONFIGURE _LT_EOF case $host_os in aix3*) cat <<\_LT_EOF >> "$cfgfile" # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi _LT_EOF ;; esac ltmain=$ac_aux_dir/ltmain.sh # We use sed instead of cat because bash on DJGPP gets confused if # if finds mixed CR/LF and LF-only lines. Since sed operates in # text mode, it properly converts lines to CR/LF. This bash problem # is reportedly fixed, but why not run on old versions too? sed '$q' "$ltmain" >> "$cfgfile" \ || (rm -f "$cfgfile"; exit 1) mv -f "$cfgfile" "$ofile" || (rm -f "$ofile" && cp "$cfgfile" "$ofile" && rm -f "$cfgfile") chmod +x "$ofile" ;; esac done # for ac_tag as_fn_exit 0 _ACEOF ac_clean_files=$ac_clean_files_save test $ac_write_fail = 0 || as_fn_error $? "write failure creating $CONFIG_STATUS" "$LINENO" 5 # configure is writing to config.log, and then calls config.status. # config.status does its own redirection, appending to config.log. # Unfortunately, on DOS this fails, as config.log is still kept open # by configure, so config.status won't be able to write to it; its # output is simply discarded. So we exec the FD to /dev/null, # effectively closing config.log, so it can be properly (re)opened and # appended to by config.status. When coming back to configure, we # need to make the FD available again. if test "$no_create" != yes; then ac_cs_success=: ac_config_status_args= test "$silent" = yes && ac_config_status_args="$ac_config_status_args --quiet" exec 5>/dev/null $SHELL $CONFIG_STATUS $ac_config_status_args || ac_cs_success=false exec 5>>config.log # Use ||, not &&, to avoid exiting from the if with $? = 1, which # would make configure fail if this is the last instruction. $ac_cs_success || as_fn_exit 1 fi if test -n "$ac_unrecognized_opts" && test "$enable_option_checking" != no; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: unrecognized options: $ac_unrecognized_opts" >&5 $as_echo "$as_me: WARNING: unrecognized options: $ac_unrecognized_opts" >&2;} fi echo "BUILD OPTIONS:" pretty="$ssl_library" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " SSL library: $pretty" pretty="$pkcs11_support" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " PKCS#11 support: $pretty" if test "$ssl_library" = "GnuTLS"; then pretty="$tss2lib" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " TSS2 library: $pretty" fi pretty="$dtls" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " DTLS support: $pretty" pretty="$esp" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " ESP support: $pretty" pretty="$libproxy_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " libproxy support: $pretty" pretty="$libstoken_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " RSA SecurID support: $pretty" pretty="$libpskc_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " PSKC OATH file support: $pretty" pretty="$linked_gssapi" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " GSSAPI support: $pretty" pretty="$have_vhost" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " vhost-net support: $pretty" pretty="$libpcsclite_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Yubikey support: $pretty" pretty="$json" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " JSON parser: $pretty" pretty="$lz4_pkg" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " LZ4 compression: $pretty" pretty="$with_java" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Java bindings: $pretty" pretty="$build_www" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Build docs: $pretty" pretty="$have_cwrap" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Unit tests: $pretty" pretty="$have_netns" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Net namespace tests: $pretty" pretty="$enable_dsa_tests" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " DSA tests: $pretty" pretty="$enable_ppp_tests" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " PPP tests: $pretty" pretty="$have_python36_flask" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Flask tests: $pretty" pretty="$insecure_debugging" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " Insecure debugging: $pretty" pretty="$build_nsis" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo " NSIS installer: $pretty" if test "$ssl_library" = "OpenSSL"; then { $as_echo "$as_me:${as_lineno-$LINENO}: WARNING: *** *** Be sure to run \"make check\" to verify OpenSSL DTLS support *** " >&5 $as_echo "$as_me: WARNING: *** *** Be sure to run \"make check\" to verify OpenSSL DTLS support *** " >&2;} fi openconnect-8.20/acinclude.m40000644000076400007640000001270014067426206017730 0ustar00dwoodhoudwoodhou00000000000000dnl as-compiler-flag.m4 0.1.0 dnl autostars m4 macro for detection of compiler flags dnl David Schleef dnl $Id: as-compiler-flag.m4,v 1.1 2005/12/15 23:35:19 ds Exp $ dnl AS_COMPILER_FLAG(CFLAGS, ACTION-IF-ACCEPTED, [ACTION-IF-NOT-ACCEPTED]) dnl Tries to compile with the given CFLAGS. dnl Runs ACTION-IF-ACCEPTED if the compiler can compile with the flags, dnl and ACTION-IF-NOT-ACCEPTED otherwise. AC_DEFUN([AS_COMPILER_FLAG], [ AC_MSG_CHECKING([to see if compiler understands $1]) save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $1" AC_TRY_COMPILE([ ], [], [flag_ok=yes], [flag_ok=no]) CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then m4_ifvaln([$2],[$2]) true else m4_ifvaln([$3],[$3]) true fi AC_MSG_RESULT([$flag_ok]) ]) dnl AS_COMPILER_FLAGS(VAR, FLAGS) dnl Tries to compile with the given CFLAGS. AC_DEFUN([AS_COMPILER_FLAGS], [ list=$2 flags_supported="" flags_unsupported="" AC_MSG_CHECKING([for supported compiler flags]) for each in $list do save_CFLAGS="$CFLAGS" CFLAGS="$CFLAGS $each" AC_TRY_COMPILE([ ], [], [flag_ok=yes], [flag_ok=no]) CFLAGS="$save_CFLAGS" if test "X$flag_ok" = Xyes ; then flags_supported="$flags_supported $each" else flags_unsupported="$flags_unsupported $each" fi done AC_MSG_RESULT([$flags_supported]) if test "X$flags_unsupported" != X ; then AC_MSG_WARN([unsupported compiler flags: $flags_unsupported]) fi $1="$$1 $flags_supported" ]) # =========================================================================== # https://www.gnu.org/software/autoconf-archive/ax_jni_include_dir.html # =========================================================================== # # SYNOPSIS # # AX_JNI_INCLUDE_DIR # # DESCRIPTION # # AX_JNI_INCLUDE_DIR finds include directories needed for compiling # programs using the JNI interface. # # JNI include directories are usually in the Java distribution. This is # deduced from the value of $JAVA_HOME, $JAVAC, or the path to "javac", # in that order. When this macro completes, a list of directories is left # in the variable JNI_INCLUDE_DIRS. # # Example usage follows: # # AX_JNI_INCLUDE_DIR # # for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS # do # CPPFLAGS="$CPPFLAGS -I$JNI_INCLUDE_DIR" # done # # If you want to force a specific compiler: # # - at the configure.in level, set JAVAC=yourcompiler before calling # AX_JNI_INCLUDE_DIR # # - at the configure level, setenv JAVAC # # Note: This macro can work with the autoconf M4 macros for Java programs. # This particular macro is not part of the original set of macros. # # LICENSE # # Copyright (c) 2008 Don Anderson # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. AU_ALIAS([AC_JNI_INCLUDE_DIR], [AX_JNI_INCLUDE_DIR]) AC_DEFUN([AX_JNI_INCLUDE_DIR],[ JNI_INCLUDE_DIRS="" if test "x$JAVA_HOME" != x; then _JTOPDIR="$JAVA_HOME" else if test "x$JAVAC" = x; then JAVAC=javac fi AC_PATH_PROG([_ACJNI_JAVAC], [$JAVAC], [no]) if test "x$_ACJNI_JAVAC" = xno; then AC_MSG_ERROR([cannot find JDK; try setting \$JAVAC or \$JAVA_HOME]) fi _ACJNI_FOLLOW_SYMLINKS("$_ACJNI_JAVAC") _JTOPDIR=`echo "$_ACJNI_FOLLOWED" | sed -e 's://*:/:g' -e 's:/[[^/]]*$::'` fi case "$host_os" in darwin*) _JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[[^/]]*$::'` _JINC="$_JTOPDIR/Headers";; *) _JINC="$_JTOPDIR/include";; esac _AS_ECHO_LOG([_JTOPDIR=$_JTOPDIR]) _AS_ECHO_LOG([_JINC=$_JINC]) # On Mac OS X 10.6.4, jni.h is a symlink: # /System/Library/Frameworks/JavaVM.framework/Versions/Current/Headers/jni.h # -> ../../CurrentJDK/Headers/jni.h. AC_CHECK_FILE([$_JINC/jni.h], [JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JINC"], [_JTOPDIR=`echo "$_JTOPDIR" | sed -e 's:/[[^/]]*$::'` AC_CHECK_FILE([$_JTOPDIR/include/jni.h], [JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include"], AC_MSG_ERROR([cannot find JDK header files])) ]) # get the likely subdirectories for system specific java includes case "$host_os" in bsdi*) _JNI_INC_SUBDIRS="bsdos";; freebsd*) _JNI_INC_SUBDIRS="freebsd";; linux*) _JNI_INC_SUBDIRS="linux genunix";; osf*) _JNI_INC_SUBDIRS="alpha";; solaris*) _JNI_INC_SUBDIRS="solaris";; mingw*) _JNI_INC_SUBDIRS="win32";; cygwin*) _JNI_INC_SUBDIRS="win32";; *) _JNI_INC_SUBDIRS="genunix";; esac # add any subdirectories that are present for JINCSUBDIR in $_JNI_INC_SUBDIRS do if test -d "$_JTOPDIR/include/$JINCSUBDIR"; then JNI_INCLUDE_DIRS="$JNI_INCLUDE_DIRS $_JTOPDIR/include/$JINCSUBDIR" fi done ]) # _ACJNI_FOLLOW_SYMLINKS # Follows symbolic links on , # finally setting variable _ACJNI_FOLLOWED # ---------------------------------------- AC_DEFUN([_ACJNI_FOLLOW_SYMLINKS],[ # find the include directory relative to the javac executable _cur="$1" while ls -ld "$_cur" 2>/dev/null | grep " -> " >/dev/null; do AC_MSG_CHECKING([symlink for $_cur]) _slink=`ls -ld "$_cur" | sed 's/.* -> //'` case "$_slink" in /*) _cur="$_slink";; # 'X' avoids triggering unwanted echo options. *) _cur=`echo "X$_cur" | sed -e 's/^X//' -e 's:[[^/]]*$::'`"$_slink";; esac AC_MSG_RESULT([$_cur]) done _ACJNI_FOLLOWED="$_cur" ])# _ACJNI openconnect-8.20/aclocal.m40000644000076400007640000023240514204505634017401 0ustar00dwoodhoudwoodhou00000000000000# generated automatically by aclocal 1.16.2 -*- Autoconf -*- # Copyright (C) 1996-2020 Free Software Foundation, Inc. # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. m4_ifndef([AC_CONFIG_MACRO_DIRS], [m4_defun([_AM_CONFIG_MACRO_DIRS], [])m4_defun([AC_CONFIG_MACRO_DIRS], [_AM_CONFIG_MACRO_DIRS($@)])]) m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl m4_if(m4_defn([AC_AUTOCONF_VERSION]), [2.69],, [m4_warning([this file was generated for autoconf 2.69. You have another version of autoconf. It may work, but is not guaranteed to. If you have problems, you may need to regenerate the build system entirely. To do so, use the procedure documented by the package, typically 'autoreconf'.])]) # host-cpu-c-abi.m4 serial 13 dnl Copyright (C) 2002-2020 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible and Sam Steingold. dnl Sets the HOST_CPU variable to the canonical name of the CPU. dnl Sets the HOST_CPU_C_ABI variable to the canonical name of the CPU with its dnl C language ABI (application binary interface). dnl Also defines __${HOST_CPU}__ and __${HOST_CPU_C_ABI}__ as C macros in dnl config.h. dnl dnl This canonical name can be used to select a particular assembly language dnl source file that will interoperate with C code on the given host. dnl dnl For example: dnl * 'i386' and 'sparc' are different canonical names, because code for i386 dnl will not run on SPARC CPUs and vice versa. They have different dnl instruction sets. dnl * 'sparc' and 'sparc64' are different canonical names, because code for dnl 'sparc' and code for 'sparc64' cannot be linked together: 'sparc' code dnl contains 32-bit instructions, whereas 'sparc64' code contains 64-bit dnl instructions. A process on a SPARC CPU can be in 32-bit mode or in 64-bit dnl mode, but not both. dnl * 'mips' and 'mipsn32' are different canonical names, because they use dnl different argument passing and return conventions for C functions, and dnl although the instruction set of 'mips' is a large subset of the dnl instruction set of 'mipsn32'. dnl * 'mipsn32' and 'mips64' are different canonical names, because they use dnl different sizes for the C types like 'int' and 'void *', and although dnl the instruction sets of 'mipsn32' and 'mips64' are the same. dnl * The same canonical name is used for different endiannesses. You can dnl determine the endianness through preprocessor symbols: dnl - 'arm': test __ARMEL__. dnl - 'mips', 'mipsn32', 'mips64': test _MIPSEB vs. _MIPSEL. dnl - 'powerpc64': test _BIG_ENDIAN vs. _LITTLE_ENDIAN. dnl * The same name 'i386' is used for CPUs of type i386, i486, i586 dnl (Pentium), AMD K7, Pentium II, Pentium IV, etc., because dnl - Instructions that do not exist on all of these CPUs (cmpxchg, dnl MMX, SSE, SSE2, 3DNow! etc.) are not frequently used. If your dnl assembly language source files use such instructions, you will dnl need to make the distinction. dnl - Speed of execution of the common instruction set is reasonable across dnl the entire family of CPUs. If you have assembly language source files dnl that are optimized for particular CPU types (like GNU gmp has), you dnl will need to make the distinction. dnl See . AC_DEFUN([gl_HOST_CPU_C_ABI], [ AC_REQUIRE([AC_CANONICAL_HOST]) AC_REQUIRE([gl_C_ASM]) AC_CACHE_CHECK([host CPU and C ABI], [gl_cv_host_cpu_c_abi], [case "$host_cpu" in changequote(,)dnl i[34567]86 ) changequote([,])dnl gl_cv_host_cpu_c_abi=i386 ;; x86_64 ) # On x86_64 systems, the C compiler may be generating code in one of # these ABIs: # - 64-bit instruction set, 64-bit pointers, 64-bit 'long': x86_64. # - 64-bit instruction set, 64-bit pointers, 32-bit 'long': x86_64 # with native Windows (mingw, MSVC). # - 64-bit instruction set, 32-bit pointers, 32-bit 'long': x86_64-x32. # - 32-bit instruction set, 32-bit pointers, 32-bit 'long': i386. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if (defined __x86_64__ || defined __amd64__ \ || defined _M_X64 || defined _M_AMD64) int ok; #else error fail #endif ]])], [AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __ILP32__ || defined _ILP32 int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=x86_64-x32], [gl_cv_host_cpu_c_abi=x86_64])], [gl_cv_host_cpu_c_abi=i386]) ;; changequote(,)dnl alphaev[4-8] | alphaev56 | alphapca5[67] | alphaev6[78] ) changequote([,])dnl gl_cv_host_cpu_c_abi=alpha ;; arm* | aarch64 ) # Assume arm with EABI. # On arm64 systems, the C compiler may be generating code in one of # these ABIs: # - aarch64 instruction set, 64-bit pointers, 64-bit 'long': arm64. # - aarch64 instruction set, 32-bit pointers, 32-bit 'long': arm64-ilp32. # - 32-bit instruction set, 32-bit pointers, 32-bit 'long': arm or armhf. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#ifdef __aarch64__ int ok; #else error fail #endif ]])], [AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __ILP32__ || defined _ILP32 int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=arm64-ilp32], [gl_cv_host_cpu_c_abi=arm64])], [# Don't distinguish little-endian and big-endian arm, since they # don't require different machine code for simple operations and # since the user can distinguish them through the preprocessor # defines __ARMEL__ vs. __ARMEB__. # But distinguish arm which passes floating-point arguments and # return values in integer registers (r0, r1, ...) - this is # gcc -mfloat-abi=soft or gcc -mfloat-abi=softfp - from arm which # passes them in float registers (s0, s1, ...) and double registers # (d0, d1, ...) - this is gcc -mfloat-abi=hard. GCC 4.6 or newer # sets the preprocessor defines __ARM_PCS (for the first case) and # __ARM_PCS_VFP (for the second case), but older GCC does not. echo 'double ddd; void func (double dd) { ddd = dd; }' > conftest.c # Look for a reference to the register d0 in the .s file. AC_TRY_COMMAND(${CC-cc} $CFLAGS $CPPFLAGS $gl_c_asm_opt conftest.c) >/dev/null 2>&1 if LC_ALL=C grep 'd0,' conftest.$gl_asmext >/dev/null; then gl_cv_host_cpu_c_abi=armhf else gl_cv_host_cpu_c_abi=arm fi rm -f conftest* ]) ;; hppa1.0 | hppa1.1 | hppa2.0* | hppa64 ) # On hppa, the C compiler may be generating 32-bit code or 64-bit # code. In the latter case, it defines _LP64 and __LP64__. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#ifdef __LP64__ int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=hppa64], [gl_cv_host_cpu_c_abi=hppa]) ;; ia64* ) # On ia64 on HP-UX, the C compiler may be generating 64-bit code or # 32-bit code. In the latter case, it defines _ILP32. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#ifdef _ILP32 int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=ia64-ilp32], [gl_cv_host_cpu_c_abi=ia64]) ;; mips* ) # We should also check for (_MIPS_SZPTR == 64), but gcc keeps this # at 32. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined _MIPS_SZLONG && (_MIPS_SZLONG == 64) int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=mips64], [# In the n32 ABI, _ABIN32 is defined, _ABIO32 is not defined (but # may later get defined by ), and _MIPS_SIM == _ABIN32. # In the 32 ABI, _ABIO32 is defined, _ABIN32 is not defined (but # may later get defined by ), and _MIPS_SIM == _ABIO32. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if (_MIPS_SIM == _ABIN32) int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=mipsn32], [gl_cv_host_cpu_c_abi=mips])]) ;; powerpc* ) # Different ABIs are in use on AIX vs. Mac OS X vs. Linux,*BSD. # No need to distinguish them here; the caller may distinguish # them based on the OS. # On powerpc64 systems, the C compiler may still be generating # 32-bit code. And on powerpc-ibm-aix systems, the C compiler may # be generating 64-bit code. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __powerpc64__ || defined _ARCH_PPC64 int ok; #else error fail #endif ]])], [# On powerpc64, there are two ABIs on Linux: The AIX compatible # one and the ELFv2 one. The latter defines _CALL_ELF=2. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined _CALL_ELF && _CALL_ELF == 2 int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=powerpc64-elfv2], [gl_cv_host_cpu_c_abi=powerpc64]) ], [gl_cv_host_cpu_c_abi=powerpc]) ;; rs6000 ) gl_cv_host_cpu_c_abi=powerpc ;; riscv32 | riscv64 ) # There are 2 architectures (with variants): rv32* and rv64*. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if __riscv_xlen == 64 int ok; #else error fail #endif ]])], [cpu=riscv64], [cpu=riscv32]) # There are 6 ABIs: ilp32, ilp32f, ilp32d, lp64, lp64f, lp64d. # Size of 'long' and 'void *': AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __LP64__ int ok; #else error fail #endif ]])], [main_abi=lp64], [main_abi=ilp32]) # Float ABIs: # __riscv_float_abi_double: # 'float' and 'double' are passed in floating-point registers. # __riscv_float_abi_single: # 'float' are passed in floating-point registers. # __riscv_float_abi_soft: # No values are passed in floating-point registers. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __riscv_float_abi_double int ok; #else error fail #endif ]])], [float_abi=d], [AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __riscv_float_abi_single int ok; #else error fail #endif ]])], [float_abi=f], [float_abi='']) ]) gl_cv_host_cpu_c_abi="${cpu}-${main_abi}${float_abi}" ;; s390* ) # On s390x, the C compiler may be generating 64-bit (= s390x) code # or 31-bit (= s390) code. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __LP64__ || defined __s390x__ int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=s390x], [gl_cv_host_cpu_c_abi=s390]) ;; sparc | sparc64 ) # UltraSPARCs running Linux have `uname -m` = "sparc64", but the # C compiler still generates 32-bit code. AC_COMPILE_IFELSE( [AC_LANG_SOURCE( [[#if defined __sparcv9 || defined __arch64__ int ok; #else error fail #endif ]])], [gl_cv_host_cpu_c_abi=sparc64], [gl_cv_host_cpu_c_abi=sparc]) ;; *) gl_cv_host_cpu_c_abi="$host_cpu" ;; esac ]) dnl In most cases, $HOST_CPU and $HOST_CPU_C_ABI are the same. HOST_CPU=`echo "$gl_cv_host_cpu_c_abi" | sed -e 's/-.*//'` HOST_CPU_C_ABI="$gl_cv_host_cpu_c_abi" AC_SUBST([HOST_CPU]) AC_SUBST([HOST_CPU_C_ABI]) # This was # AC_DEFINE_UNQUOTED([__${HOST_CPU}__]) # AC_DEFINE_UNQUOTED([__${HOST_CPU_C_ABI}__]) # earlier, but KAI C++ 3.2d doesn't like this. sed -e 's/-/_/g' >> confdefs.h <. dnl Copyright © 2012-2015 Dan Nicholson dnl dnl This program is free software; you can redistribute it and/or modify dnl it under the terms of the GNU General Public License as published by dnl the Free Software Foundation; either version 2 of the License, or dnl (at your option) any later version. dnl dnl This program is distributed in the hope that it will be useful, but dnl WITHOUT ANY WARRANTY; without even the implied warranty of dnl MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU dnl General Public License for more details. dnl dnl You should have received a copy of the GNU General Public License dnl along with this program; if not, write to the Free Software dnl Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA dnl 02111-1307, USA. dnl dnl As a special exception to the GNU General Public License, if you dnl distribute this file as part of a program that contains a dnl configuration script generated by Autoconf, you may include it under dnl the same distribution terms that you use for the rest of that dnl program. dnl PKG_PREREQ(MIN-VERSION) dnl ----------------------- dnl Since: 0.29 dnl dnl Verify that the version of the pkg-config macros are at least dnl MIN-VERSION. Unlike PKG_PROG_PKG_CONFIG, which checks the user's dnl installed version of pkg-config, this checks the developer's version dnl of pkg.m4 when generating configure. dnl dnl To ensure that this macro is defined, also add: dnl m4_ifndef([PKG_PREREQ], dnl [m4_fatal([must install pkg-config 0.29 or later before running autoconf/autogen])]) dnl dnl See the "Since" comment for each macro you use to see what version dnl of the macros you require. m4_defun([PKG_PREREQ], [m4_define([PKG_MACROS_VERSION], [0.29.1]) m4_if(m4_version_compare(PKG_MACROS_VERSION, [$1]), -1, [m4_fatal([pkg.m4 version $1 or higher is required but ]PKG_MACROS_VERSION[ found])]) ])dnl PKG_PREREQ dnl PKG_PROG_PKG_CONFIG([MIN-VERSION]) dnl ---------------------------------- dnl Since: 0.16 dnl dnl Search for the pkg-config tool and set the PKG_CONFIG variable to dnl first found in the path. Checks that the version of pkg-config found dnl is at least MIN-VERSION. If MIN-VERSION is not specified, 0.9.0 is dnl used since that's the first version where most current features of dnl pkg-config existed. AC_DEFUN([PKG_PROG_PKG_CONFIG], [m4_pattern_forbid([^_?PKG_[A-Z_]+$]) m4_pattern_allow([^PKG_CONFIG(_(PATH|LIBDIR|SYSROOT_DIR|ALLOW_SYSTEM_(CFLAGS|LIBS)))?$]) m4_pattern_allow([^PKG_CONFIG_(DISABLE_UNINSTALLED|TOP_BUILD_DIR|DEBUG_SPEW)$]) AC_ARG_VAR([PKG_CONFIG], [path to pkg-config utility]) AC_ARG_VAR([PKG_CONFIG_PATH], [directories to add to pkg-config's search path]) AC_ARG_VAR([PKG_CONFIG_LIBDIR], [path overriding pkg-config's built-in search path]) if test "x$ac_cv_env_PKG_CONFIG_set" != "xset"; then AC_PATH_TOOL([PKG_CONFIG], [pkg-config]) fi if test -n "$PKG_CONFIG"; then _pkg_min_version=m4_default([$1], [0.9.0]) AC_MSG_CHECKING([pkg-config is at least version $_pkg_min_version]) if $PKG_CONFIG --atleast-pkgconfig-version $_pkg_min_version; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) PKG_CONFIG="" fi fi[]dnl ])dnl PKG_PROG_PKG_CONFIG dnl PKG_CHECK_EXISTS(MODULES, [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ------------------------------------------------------------------- dnl Since: 0.18 dnl dnl Check to see whether a particular set of modules exists. Similar to dnl PKG_CHECK_MODULES(), but does not set variables or print errors. dnl dnl Please remember that m4 expands AC_REQUIRE([PKG_PROG_PKG_CONFIG]) dnl only at the first occurence in configure.ac, so if the first place dnl it's called might be skipped (such as if it is within an "if", you dnl have to call PKG_CHECK_EXISTS manually AC_DEFUN([PKG_CHECK_EXISTS], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl if test -n "$PKG_CONFIG" && \ AC_RUN_LOG([$PKG_CONFIG --exists --print-errors "$1"]); then m4_default([$2], [:]) m4_ifvaln([$3], [else $3])dnl fi]) dnl _PKG_CONFIG([VARIABLE], [COMMAND], [MODULES]) dnl --------------------------------------------- dnl Internal wrapper calling pkg-config via PKG_CONFIG and setting dnl pkg_failed based on the result. m4_define([_PKG_CONFIG], [if test -n "$$1"; then pkg_cv_[]$1="$$1" elif test -n "$PKG_CONFIG"; then PKG_CHECK_EXISTS([$3], [pkg_cv_[]$1=`$PKG_CONFIG --[]$2 "$3" 2>/dev/null` test "x$?" != "x0" && pkg_failed=yes ], [pkg_failed=yes]) else pkg_failed=untried fi[]dnl ])dnl _PKG_CONFIG dnl _PKG_SHORT_ERRORS_SUPPORTED dnl --------------------------- dnl Internal check to see if pkg-config supports short errors. AC_DEFUN([_PKG_SHORT_ERRORS_SUPPORTED], [AC_REQUIRE([PKG_PROG_PKG_CONFIG]) if $PKG_CONFIG --atleast-pkgconfig-version 0.20; then _pkg_short_errors_supported=yes else _pkg_short_errors_supported=no fi[]dnl ])dnl _PKG_SHORT_ERRORS_SUPPORTED dnl PKG_CHECK_MODULES(VARIABLE-PREFIX, MODULES, [ACTION-IF-FOUND], dnl [ACTION-IF-NOT-FOUND]) dnl -------------------------------------------------------------- dnl Since: 0.4.0 dnl dnl Note that if there is a possibility the first call to dnl PKG_CHECK_MODULES might not happen, you should be sure to include an dnl explicit call to PKG_PROG_PKG_CONFIG in your configure.ac AC_DEFUN([PKG_CHECK_MODULES], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1][_CFLAGS], [C compiler flags for $1, overriding pkg-config])dnl AC_ARG_VAR([$1][_LIBS], [linker flags for $1, overriding pkg-config])dnl pkg_failed=no AC_MSG_CHECKING([for $1]) _PKG_CONFIG([$1][_CFLAGS], [cflags], [$2]) _PKG_CONFIG([$1][_LIBS], [libs], [$2]) m4_define([_PKG_TEXT], [Alternatively, you may set the environment variables $1[]_CFLAGS and $1[]_LIBS to avoid the need to call pkg-config. See the pkg-config man page for more details.]) if test $pkg_failed = yes; then AC_MSG_RESULT([no]) _PKG_SHORT_ERRORS_SUPPORTED if test $_pkg_short_errors_supported = yes; then $1[]_PKG_ERRORS=`$PKG_CONFIG --short-errors --print-errors --cflags --libs "$2" 2>&1` else $1[]_PKG_ERRORS=`$PKG_CONFIG --print-errors --cflags --libs "$2" 2>&1` fi # Put the nasty error message in config.log where it belongs echo "$$1[]_PKG_ERRORS" >&AS_MESSAGE_LOG_FD m4_default([$4], [AC_MSG_ERROR( [Package requirements ($2) were not met: $$1_PKG_ERRORS Consider adjusting the PKG_CONFIG_PATH environment variable if you installed software in a non-standard prefix. _PKG_TEXT])[]dnl ]) elif test $pkg_failed = untried; then AC_MSG_RESULT([no]) m4_default([$4], [AC_MSG_FAILURE( [The pkg-config script could not be found or is too old. Make sure it is in your PATH or set the PKG_CONFIG environment variable to the full path to pkg-config. _PKG_TEXT To get pkg-config, see .])[]dnl ]) else $1[]_CFLAGS=$pkg_cv_[]$1[]_CFLAGS $1[]_LIBS=$pkg_cv_[]$1[]_LIBS AC_MSG_RESULT([yes]) $3 fi[]dnl ])dnl PKG_CHECK_MODULES dnl PKG_CHECK_MODULES_STATIC(VARIABLE-PREFIX, MODULES, [ACTION-IF-FOUND], dnl [ACTION-IF-NOT-FOUND]) dnl --------------------------------------------------------------------- dnl Since: 0.29 dnl dnl Checks for existence of MODULES and gathers its build flags with dnl static libraries enabled. Sets VARIABLE-PREFIX_CFLAGS from --cflags dnl and VARIABLE-PREFIX_LIBS from --libs. dnl dnl Note that if there is a possibility the first call to dnl PKG_CHECK_MODULES_STATIC might not happen, you should be sure to dnl include an explicit call to PKG_PROG_PKG_CONFIG in your dnl configure.ac. AC_DEFUN([PKG_CHECK_MODULES_STATIC], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl _save_PKG_CONFIG=$PKG_CONFIG PKG_CONFIG="$PKG_CONFIG --static" PKG_CHECK_MODULES($@) PKG_CONFIG=$_save_PKG_CONFIG[]dnl ])dnl PKG_CHECK_MODULES_STATIC dnl PKG_INSTALLDIR([DIRECTORY]) dnl ------------------------- dnl Since: 0.27 dnl dnl Substitutes the variable pkgconfigdir as the location where a module dnl should install pkg-config .pc files. By default the directory is dnl $libdir/pkgconfig, but the default can be changed by passing dnl DIRECTORY. The user can override through the --with-pkgconfigdir dnl parameter. AC_DEFUN([PKG_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${libdir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([pkgconfigdir], [AS_HELP_STRING([--with-pkgconfigdir], pkg_description)],, [with_pkgconfigdir=]pkg_default) AC_SUBST([pkgconfigdir], [$with_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ])dnl PKG_INSTALLDIR dnl PKG_NOARCH_INSTALLDIR([DIRECTORY]) dnl -------------------------------- dnl Since: 0.27 dnl dnl Substitutes the variable noarch_pkgconfigdir as the location where a dnl module should install arch-independent pkg-config .pc files. By dnl default the directory is $datadir/pkgconfig, but the default can be dnl changed by passing DIRECTORY. The user can override through the dnl --with-noarch-pkgconfigdir parameter. AC_DEFUN([PKG_NOARCH_INSTALLDIR], [m4_pushdef([pkg_default], [m4_default([$1], ['${datadir}/pkgconfig'])]) m4_pushdef([pkg_description], [pkg-config arch-independent installation directory @<:@]pkg_default[@:>@]) AC_ARG_WITH([noarch-pkgconfigdir], [AS_HELP_STRING([--with-noarch-pkgconfigdir], pkg_description)],, [with_noarch_pkgconfigdir=]pkg_default) AC_SUBST([noarch_pkgconfigdir], [$with_noarch_pkgconfigdir]) m4_popdef([pkg_default]) m4_popdef([pkg_description]) ])dnl PKG_NOARCH_INSTALLDIR dnl PKG_CHECK_VAR(VARIABLE, MODULE, CONFIG-VARIABLE, dnl [ACTION-IF-FOUND], [ACTION-IF-NOT-FOUND]) dnl ------------------------------------------- dnl Since: 0.28 dnl dnl Retrieves the value of the pkg-config variable for the given module. AC_DEFUN([PKG_CHECK_VAR], [AC_REQUIRE([PKG_PROG_PKG_CONFIG])dnl AC_ARG_VAR([$1], [value of $3 for $2, overriding pkg-config])dnl _PKG_CONFIG([$1], [variable="][$3]["], [$2]) AS_VAR_COPY([$1], [pkg_cv_][$1]) AS_VAR_IF([$1], [""], [$5], [$4])dnl ])dnl PKG_CHECK_VAR dnl PKG_WITH_MODULES(VARIABLE-PREFIX, MODULES, dnl [ACTION-IF-FOUND],[ACTION-IF-NOT-FOUND], dnl [DESCRIPTION], [DEFAULT]) dnl ------------------------------------------ dnl dnl Prepare a "--with-" configure option using the lowercase dnl [VARIABLE-PREFIX] name, merging the behaviour of AC_ARG_WITH and dnl PKG_CHECK_MODULES in a single macro. AC_DEFUN([PKG_WITH_MODULES], [ m4_pushdef([with_arg], m4_tolower([$1])) m4_pushdef([description], [m4_default([$5], [build with ]with_arg[ support])]) m4_pushdef([def_arg], [m4_default([$6], [auto])]) m4_pushdef([def_action_if_found], [AS_TR_SH([with_]with_arg)=yes]) m4_pushdef([def_action_if_not_found], [AS_TR_SH([with_]with_arg)=no]) m4_case(def_arg, [yes],[m4_pushdef([with_without], [--without-]with_arg)], [m4_pushdef([with_without],[--with-]with_arg)]) AC_ARG_WITH(with_arg, AS_HELP_STRING(with_without, description[ @<:@default=]def_arg[@:>@]),, [AS_TR_SH([with_]with_arg)=def_arg]) AS_CASE([$AS_TR_SH([with_]with_arg)], [yes],[PKG_CHECK_MODULES([$1],[$2],$3,$4)], [auto],[PKG_CHECK_MODULES([$1],[$2], [m4_n([def_action_if_found]) $3], [m4_n([def_action_if_not_found]) $4])]) m4_popdef([with_arg]) m4_popdef([description]) m4_popdef([def_arg]) ])dnl PKG_WITH_MODULES dnl PKG_HAVE_WITH_MODULES(VARIABLE-PREFIX, MODULES, dnl [DESCRIPTION], [DEFAULT]) dnl ----------------------------------------------- dnl dnl Convenience macro to trigger AM_CONDITIONAL after PKG_WITH_MODULES dnl check._[VARIABLE-PREFIX] is exported as make variable. AC_DEFUN([PKG_HAVE_WITH_MODULES], [ PKG_WITH_MODULES([$1],[$2],,,[$3],[$4]) AM_CONDITIONAL([HAVE_][$1], [test "$AS_TR_SH([with_]m4_tolower([$1]))" = "yes"]) ])dnl PKG_HAVE_WITH_MODULES dnl PKG_HAVE_DEFINE_WITH_MODULES(VARIABLE-PREFIX, MODULES, dnl [DESCRIPTION], [DEFAULT]) dnl ------------------------------------------------------ dnl dnl Convenience macro to run AM_CONDITIONAL and AC_DEFINE after dnl PKG_WITH_MODULES check. HAVE_[VARIABLE-PREFIX] is exported as make dnl and preprocessor variable. AC_DEFUN([PKG_HAVE_DEFINE_WITH_MODULES], [ PKG_HAVE_WITH_MODULES([$1],[$2],[$3],[$4]) AS_IF([test "$AS_TR_SH([with_]m4_tolower([$1]))" = "yes"], [AC_DEFINE([HAVE_][$1], 1, [Enable ]m4_tolower([$1])[ support])]) ])dnl PKG_HAVE_DEFINE_WITH_MODULES # Copyright (C) 2002-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_AUTOMAKE_VERSION(VERSION) # ---------------------------- # Automake X.Y traces this macro to ensure aclocal.m4 has been # generated from the m4 files accompanying Automake X.Y. # (This private macro should not be called outside this file.) AC_DEFUN([AM_AUTOMAKE_VERSION], [am__api_version='1.16' dnl Some users find AM_AUTOMAKE_VERSION and mistake it for a way to dnl require some minimum version. Point them to the right macro. m4_if([$1], [1.16.2], [], [AC_FATAL([Do not call $0, use AM_INIT_AUTOMAKE([$1]).])])dnl ]) # _AM_AUTOCONF_VERSION(VERSION) # ----------------------------- # aclocal traces this macro to find the Autoconf version. # This is a private macro too. Using m4_define simplifies # the logic in aclocal, which can simply ignore this definition. m4_define([_AM_AUTOCONF_VERSION], []) # AM_SET_CURRENT_AUTOMAKE_VERSION # ------------------------------- # Call AM_AUTOMAKE_VERSION and AM_AUTOMAKE_VERSION so they can be traced. # This function is AC_REQUIREd by AM_INIT_AUTOMAKE. AC_DEFUN([AM_SET_CURRENT_AUTOMAKE_VERSION], [AM_AUTOMAKE_VERSION([1.16.2])dnl m4_ifndef([AC_AUTOCONF_VERSION], [m4_copy([m4_PACKAGE_VERSION], [AC_AUTOCONF_VERSION])])dnl _AM_AUTOCONF_VERSION(m4_defn([AC_AUTOCONF_VERSION]))]) # AM_AUX_DIR_EXPAND -*- Autoconf -*- # Copyright (C) 2001-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # For projects using AC_CONFIG_AUX_DIR([foo]), Autoconf sets # $ac_aux_dir to '$srcdir/foo'. In other projects, it is set to # '$srcdir', '$srcdir/..', or '$srcdir/../..'. # # Of course, Automake must honor this variable whenever it calls a # tool from the auxiliary directory. The problem is that $srcdir (and # therefore $ac_aux_dir as well) can be either absolute or relative, # depending on how configure is run. This is pretty annoying, since # it makes $ac_aux_dir quite unusable in subdirectories: in the top # source directory, any form will work fine, but in subdirectories a # relative path needs to be adjusted first. # # $ac_aux_dir/missing # fails when called from a subdirectory if $ac_aux_dir is relative # $top_srcdir/$ac_aux_dir/missing # fails if $ac_aux_dir is absolute, # fails when called from a subdirectory in a VPATH build with # a relative $ac_aux_dir # # The reason of the latter failure is that $top_srcdir and $ac_aux_dir # are both prefixed by $srcdir. In an in-source build this is usually # harmless because $srcdir is '.', but things will broke when you # start a VPATH build or use an absolute $srcdir. # # So we could use something similar to $top_srcdir/$ac_aux_dir/missing, # iff we strip the leading $srcdir from $ac_aux_dir. That would be: # am_aux_dir='\$(top_srcdir)/'`expr "$ac_aux_dir" : "$srcdir//*\(.*\)"` # and then we would define $MISSING as # MISSING="\${SHELL} $am_aux_dir/missing" # This will work as long as MISSING is not called from configure, because # unfortunately $(top_srcdir) has no meaning in configure. # However there are other variables, like CC, which are often used in # configure, and could therefore not use this "fixed" $ac_aux_dir. # # Another solution, used here, is to always expand $ac_aux_dir to an # absolute PATH. The drawback is that using absolute paths prevent a # configured tree to be moved without reconfiguration. AC_DEFUN([AM_AUX_DIR_EXPAND], [AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT])dnl # Expand $ac_aux_dir to an absolute path. am_aux_dir=`cd "$ac_aux_dir" && pwd` ]) # AM_CONDITIONAL -*- Autoconf -*- # Copyright (C) 1997-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_CONDITIONAL(NAME, SHELL-CONDITION) # ------------------------------------- # Define a conditional. AC_DEFUN([AM_CONDITIONAL], [AC_PREREQ([2.52])dnl m4_if([$1], [TRUE], [AC_FATAL([$0: invalid condition: $1])], [$1], [FALSE], [AC_FATAL([$0: invalid condition: $1])])dnl AC_SUBST([$1_TRUE])dnl AC_SUBST([$1_FALSE])dnl _AM_SUBST_NOTMAKE([$1_TRUE])dnl _AM_SUBST_NOTMAKE([$1_FALSE])dnl m4_define([_AM_COND_VALUE_$1], [$2])dnl if $2; then $1_TRUE= $1_FALSE='#' else $1_TRUE='#' $1_FALSE= fi AC_CONFIG_COMMANDS_PRE( [if test -z "${$1_TRUE}" && test -z "${$1_FALSE}"; then AC_MSG_ERROR([[conditional "$1" was never defined. Usually this means the macro was only invoked conditionally.]]) fi])]) # Copyright (C) 1999-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # There are a few dirty hacks below to avoid letting 'AC_PROG_CC' be # written in clear, in which case automake, when reading aclocal.m4, # will think it sees a *use*, and therefore will trigger all it's # C support machinery. Also note that it means that autoscan, seeing # CC etc. in the Makefile, will ask for an AC_PROG_CC use... # _AM_DEPENDENCIES(NAME) # ---------------------- # See how the compiler implements dependency checking. # NAME is "CC", "CXX", "OBJC", "OBJCXX", "UPC", or "GJC". # We try a few techniques and use that to set a single cache variable. # # We don't AC_REQUIRE the corresponding AC_PROG_CC since the latter was # modified to invoke _AM_DEPENDENCIES(CC); we would have a circular # dependency, and given that the user is not expected to run this macro, # just rely on AC_PROG_CC. AC_DEFUN([_AM_DEPENDENCIES], [AC_REQUIRE([AM_SET_DEPDIR])dnl AC_REQUIRE([AM_OUTPUT_DEPENDENCY_COMMANDS])dnl AC_REQUIRE([AM_MAKE_INCLUDE])dnl AC_REQUIRE([AM_DEP_TRACK])dnl m4_if([$1], [CC], [depcc="$CC" am_compiler_list=], [$1], [CXX], [depcc="$CXX" am_compiler_list=], [$1], [OBJC], [depcc="$OBJC" am_compiler_list='gcc3 gcc'], [$1], [OBJCXX], [depcc="$OBJCXX" am_compiler_list='gcc3 gcc'], [$1], [UPC], [depcc="$UPC" am_compiler_list=], [$1], [GCJ], [depcc="$GCJ" am_compiler_list='gcc3 gcc'], [depcc="$$1" am_compiler_list=]) AC_CACHE_CHECK([dependency style of $depcc], [am_cv_$1_dependencies_compiler_type], [if test -z "$AMDEP_TRUE" && test -f "$am_depcomp"; then # We make a subdir and do the tests there. Otherwise we can end up # making bogus files that we don't know about and never remove. For # instance it was reported that on HP-UX the gcc test will end up # making a dummy file named 'D' -- because '-MD' means "put the output # in D". rm -rf conftest.dir mkdir conftest.dir # Copy depcomp to subdir because otherwise we won't find it if we're # using a relative directory. cp "$am_depcomp" conftest.dir cd conftest.dir # We will build objects and dependencies in a subdirectory because # it helps to detect inapplicable dependency modes. For instance # both Tru64's cc and ICC support -MD to output dependencies as a # side effect of compilation, but ICC will put the dependencies in # the current directory while Tru64 will put them in the object # directory. mkdir sub am_cv_$1_dependencies_compiler_type=none if test "$am_compiler_list" = ""; then am_compiler_list=`sed -n ['s/^#*\([a-zA-Z0-9]*\))$/\1/p'] < ./depcomp` fi am__universal=false m4_case([$1], [CC], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac], [CXX], [case " $depcc " in #( *\ -arch\ *\ -arch\ *) am__universal=true ;; esac]) for depmode in $am_compiler_list; do # Setup a source with many dependencies, because some compilers # like to wrap large dependency lists on column 80 (with \), and # we should not choose a depcomp mode which is confused by this. # # We need to recreate these files for each test, as the compiler may # overwrite some of them when testing with obscure command lines. # This happens at least with the AIX C compiler. : > sub/conftest.c for i in 1 2 3 4 5 6; do echo '#include "conftst'$i'.h"' >> sub/conftest.c # Using ": > sub/conftst$i.h" creates only sub/conftst1.h with # Solaris 10 /bin/sh. echo '/* dummy */' > sub/conftst$i.h done echo "${am__include} ${am__quote}sub/conftest.Po${am__quote}" > confmf # We check with '-c' and '-o' for the sake of the "dashmstdout" # mode. It turns out that the SunPro C++ compiler does not properly # handle '-M -o', and we need to detect this. Also, some Intel # versions had trouble with output in subdirs. am__obj=sub/conftest.${OBJEXT-o} am__minus_obj="-o $am__obj" case $depmode in gcc) # This depmode causes a compiler race in universal mode. test "$am__universal" = false || continue ;; nosideeffect) # After this tag, mechanisms are not by side-effect, so they'll # only be used when explicitly requested. if test "x$enable_dependency_tracking" = xyes; then continue else break fi ;; msvc7 | msvc7msys | msvisualcpp | msvcmsys) # This compiler won't grok '-c -o', but also, the minuso test has # not run yet. These depmodes are late enough in the game, and # so weak that their functioning should not be impacted. am__obj=conftest.${OBJEXT-o} am__minus_obj= ;; none) break ;; esac if depmode=$depmode \ source=sub/conftest.c object=$am__obj \ depfile=sub/conftest.Po tmpdepfile=sub/conftest.TPo \ $SHELL ./depcomp $depcc -c $am__minus_obj sub/conftest.c \ >/dev/null 2>conftest.err && grep sub/conftst1.h sub/conftest.Po > /dev/null 2>&1 && grep sub/conftst6.h sub/conftest.Po > /dev/null 2>&1 && grep $am__obj sub/conftest.Po > /dev/null 2>&1 && ${MAKE-make} -s -f confmf > /dev/null 2>&1; then # icc doesn't choke on unknown options, it will just issue warnings # or remarks (even with -Werror). So we grep stderr for any message # that says an option was ignored or not supported. # When given -MP, icc 7.0 and 7.1 complain thusly: # icc: Command line warning: ignoring option '-M'; no argument required # The diagnosis changed in icc 8.0: # icc: Command line remark: option '-MP' not supported if (grep 'ignoring option' conftest.err || grep 'not supported' conftest.err) >/dev/null 2>&1; then :; else am_cv_$1_dependencies_compiler_type=$depmode break fi fi done cd .. rm -rf conftest.dir else am_cv_$1_dependencies_compiler_type=none fi ]) AC_SUBST([$1DEPMODE], [depmode=$am_cv_$1_dependencies_compiler_type]) AM_CONDITIONAL([am__fastdep$1], [ test "x$enable_dependency_tracking" != xno \ && test "$am_cv_$1_dependencies_compiler_type" = gcc3]) ]) # AM_SET_DEPDIR # ------------- # Choose a directory name for dependency files. # This macro is AC_REQUIREd in _AM_DEPENDENCIES. AC_DEFUN([AM_SET_DEPDIR], [AC_REQUIRE([AM_SET_LEADING_DOT])dnl AC_SUBST([DEPDIR], ["${am__leading_dot}deps"])dnl ]) # AM_DEP_TRACK # ------------ AC_DEFUN([AM_DEP_TRACK], [AC_ARG_ENABLE([dependency-tracking], [dnl AS_HELP_STRING( [--enable-dependency-tracking], [do not reject slow dependency extractors]) AS_HELP_STRING( [--disable-dependency-tracking], [speeds up one-time build])]) if test "x$enable_dependency_tracking" != xno; then am_depcomp="$ac_aux_dir/depcomp" AMDEPBACKSLASH='\' am__nodep='_no' fi AM_CONDITIONAL([AMDEP], [test "x$enable_dependency_tracking" != xno]) AC_SUBST([AMDEPBACKSLASH])dnl _AM_SUBST_NOTMAKE([AMDEPBACKSLASH])dnl AC_SUBST([am__nodep])dnl _AM_SUBST_NOTMAKE([am__nodep])dnl ]) # Generate code to set up dependency tracking. -*- Autoconf -*- # Copyright (C) 1999-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_OUTPUT_DEPENDENCY_COMMANDS # ------------------------------ AC_DEFUN([_AM_OUTPUT_DEPENDENCY_COMMANDS], [{ # Older Autoconf quotes --file arguments for eval, but not when files # are listed without --file. Let's play safe and only enable the eval # if we detect the quoting. # TODO: see whether this extra hack can be removed once we start # requiring Autoconf 2.70 or later. AS_CASE([$CONFIG_FILES], [*\'*], [eval set x "$CONFIG_FILES"], [*], [set x $CONFIG_FILES]) shift # Used to flag and report bootstrapping failures. am_rc=0 for am_mf do # Strip MF so we end up with the name of the file. am_mf=`AS_ECHO(["$am_mf"]) | sed -e 's/:.*$//'` # Check whether this is an Automake generated Makefile which includes # dependency-tracking related rules and includes. # Grep'ing the whole file directly is not great: AIX grep has a line # limit of 2048, but all sed's we know have understand at least 4000. sed -n 's,^am--depfiles:.*,X,p' "$am_mf" | grep X >/dev/null 2>&1 \ || continue am_dirpart=`AS_DIRNAME(["$am_mf"])` am_filepart=`AS_BASENAME(["$am_mf"])` AM_RUN_LOG([cd "$am_dirpart" \ && sed -e '/# am--include-marker/d' "$am_filepart" \ | $MAKE -f - am--depfiles]) || am_rc=$? done if test $am_rc -ne 0; then AC_MSG_FAILURE([Something went wrong bootstrapping makefile fragments for automatic dependency tracking. If GNU make was not used, consider re-running the configure script with MAKE="gmake" (or whatever is necessary). You can also try re-running configure with the '--disable-dependency-tracking' option to at least be able to build the package (albeit without support for automatic dependency tracking).]) fi AS_UNSET([am_dirpart]) AS_UNSET([am_filepart]) AS_UNSET([am_mf]) AS_UNSET([am_rc]) rm -f conftest-deps.mk } ])# _AM_OUTPUT_DEPENDENCY_COMMANDS # AM_OUTPUT_DEPENDENCY_COMMANDS # ----------------------------- # This macro should only be invoked once -- use via AC_REQUIRE. # # This code is only required when automatic dependency tracking is enabled. # This creates each '.Po' and '.Plo' makefile fragment that we'll need in # order to bootstrap the dependency handling code. AC_DEFUN([AM_OUTPUT_DEPENDENCY_COMMANDS], [AC_CONFIG_COMMANDS([depfiles], [test x"$AMDEP_TRUE" != x"" || _AM_OUTPUT_DEPENDENCY_COMMANDS], [AMDEP_TRUE="$AMDEP_TRUE" MAKE="${MAKE-make}"])]) # Do all the work for Automake. -*- Autoconf -*- # Copyright (C) 1996-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This macro actually does too much. Some checks are only needed if # your package does certain things. But this isn't really a big deal. dnl Redefine AC_PROG_CC to automatically invoke _AM_PROG_CC_C_O. m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC]) [_AM_PROG_CC_C_O ]) # AM_INIT_AUTOMAKE(PACKAGE, VERSION, [NO-DEFINE]) # AM_INIT_AUTOMAKE([OPTIONS]) # ----------------------------------------------- # The call with PACKAGE and VERSION arguments is the old style # call (pre autoconf-2.50), which is being phased out. PACKAGE # and VERSION should now be passed to AC_INIT and removed from # the call to AM_INIT_AUTOMAKE. # We support both call styles for the transition. After # the next Automake release, Autoconf can make the AC_INIT # arguments mandatory, and then we can depend on a new Autoconf # release and drop the old call support. AC_DEFUN([AM_INIT_AUTOMAKE], [AC_PREREQ([2.65])dnl dnl Autoconf wants to disallow AM_ names. We explicitly allow dnl the ones we care about. m4_pattern_allow([^AM_[A-Z]+FLAGS$])dnl AC_REQUIRE([AM_SET_CURRENT_AUTOMAKE_VERSION])dnl AC_REQUIRE([AC_PROG_INSTALL])dnl if test "`cd $srcdir && pwd`" != "`pwd`"; then # Use -I$(srcdir) only when $(srcdir) != ., so that make's output # is not polluted with repeated "-I." AC_SUBST([am__isrc], [' -I$(srcdir)'])_AM_SUBST_NOTMAKE([am__isrc])dnl # test to see if srcdir already configured if test -f $srcdir/config.status; then AC_MSG_ERROR([source directory already configured; run "make distclean" there first]) fi fi # test whether we have cygpath if test -z "$CYGPATH_W"; then if (cygpath --version) >/dev/null 2>/dev/null; then CYGPATH_W='cygpath -w' else CYGPATH_W=echo fi fi AC_SUBST([CYGPATH_W]) # Define the identity of the package. dnl Distinguish between old-style and new-style calls. m4_ifval([$2], [AC_DIAGNOSE([obsolete], [$0: two- and three-arguments forms are deprecated.]) m4_ifval([$3], [_AM_SET_OPTION([no-define])])dnl AC_SUBST([PACKAGE], [$1])dnl AC_SUBST([VERSION], [$2])], [_AM_SET_OPTIONS([$1])dnl dnl Diagnose old-style AC_INIT with new-style AM_AUTOMAKE_INIT. m4_if( m4_ifdef([AC_PACKAGE_NAME], [ok]):m4_ifdef([AC_PACKAGE_VERSION], [ok]), [ok:ok],, [m4_fatal([AC_INIT should be called with package and version arguments])])dnl AC_SUBST([PACKAGE], ['AC_PACKAGE_TARNAME'])dnl AC_SUBST([VERSION], ['AC_PACKAGE_VERSION'])])dnl _AM_IF_OPTION([no-define],, [AC_DEFINE_UNQUOTED([PACKAGE], ["$PACKAGE"], [Name of package]) AC_DEFINE_UNQUOTED([VERSION], ["$VERSION"], [Version number of package])])dnl # Some tools Automake needs. AC_REQUIRE([AM_SANITY_CHECK])dnl AC_REQUIRE([AC_ARG_PROGRAM])dnl AM_MISSING_PROG([ACLOCAL], [aclocal-${am__api_version}]) AM_MISSING_PROG([AUTOCONF], [autoconf]) AM_MISSING_PROG([AUTOMAKE], [automake-${am__api_version}]) AM_MISSING_PROG([AUTOHEADER], [autoheader]) AM_MISSING_PROG([MAKEINFO], [makeinfo]) AC_REQUIRE([AM_PROG_INSTALL_SH])dnl AC_REQUIRE([AM_PROG_INSTALL_STRIP])dnl AC_REQUIRE([AC_PROG_MKDIR_P])dnl # For better backward compatibility. To be removed once Automake 1.9.x # dies out for good. For more background, see: # # AC_SUBST([mkdir_p], ['$(MKDIR_P)']) # We need awk for the "check" target (and possibly the TAP driver). The # system "awk" is bad on some platforms. AC_REQUIRE([AC_PROG_AWK])dnl AC_REQUIRE([AC_PROG_MAKE_SET])dnl AC_REQUIRE([AM_SET_LEADING_DOT])dnl _AM_IF_OPTION([tar-ustar], [_AM_PROG_TAR([ustar])], [_AM_IF_OPTION([tar-pax], [_AM_PROG_TAR([pax])], [_AM_PROG_TAR([v7])])]) _AM_IF_OPTION([no-dependencies],, [AC_PROVIDE_IFELSE([AC_PROG_CC], [_AM_DEPENDENCIES([CC])], [m4_define([AC_PROG_CC], m4_defn([AC_PROG_CC])[_AM_DEPENDENCIES([CC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_CXX], [_AM_DEPENDENCIES([CXX])], [m4_define([AC_PROG_CXX], m4_defn([AC_PROG_CXX])[_AM_DEPENDENCIES([CXX])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJC], [_AM_DEPENDENCIES([OBJC])], [m4_define([AC_PROG_OBJC], m4_defn([AC_PROG_OBJC])[_AM_DEPENDENCIES([OBJC])])])dnl AC_PROVIDE_IFELSE([AC_PROG_OBJCXX], [_AM_DEPENDENCIES([OBJCXX])], [m4_define([AC_PROG_OBJCXX], m4_defn([AC_PROG_OBJCXX])[_AM_DEPENDENCIES([OBJCXX])])])dnl ]) AC_REQUIRE([AM_SILENT_RULES])dnl dnl The testsuite driver may need to know about EXEEXT, so add the dnl 'am__EXEEXT' conditional if _AM_COMPILER_EXEEXT was seen. This dnl macro is hooked onto _AC_COMPILER_EXEEXT early, see below. AC_CONFIG_COMMANDS_PRE(dnl [m4_provide_if([_AM_COMPILER_EXEEXT], [AM_CONDITIONAL([am__EXEEXT], [test -n "$EXEEXT"])])])dnl # POSIX will say in a future version that running "rm -f" with no argument # is OK; and we want to be able to make that assumption in our Makefile # recipes. So use an aggressive probe to check that the usage we want is # actually supported "in the wild" to an acceptable degree. # See automake bug#10828. # To make any issue more visible, cause the running configure to be aborted # by default if the 'rm' program in use doesn't match our expectations; the # user can still override this though. if rm -f && rm -fr && rm -rf; then : OK; else cat >&2 <<'END' Oops! Your 'rm' program seems unable to run without file operands specified on the command line, even when the '-f' option is present. This is contrary to the behaviour of most rm programs out there, and not conforming with the upcoming POSIX standard: Please tell bug-automake@gnu.org about your system, including the value of your $PATH and any error possibly output before this message. This can help us improve future automake versions. END if test x"$ACCEPT_INFERIOR_RM_PROGRAM" = x"yes"; then echo 'Configuration will proceed anyway, since you have set the' >&2 echo 'ACCEPT_INFERIOR_RM_PROGRAM variable to "yes"' >&2 echo >&2 else cat >&2 <<'END' Aborting the configuration process, to ensure you take notice of the issue. You can download and install GNU coreutils to get an 'rm' implementation that behaves properly: . If you want to complete the configuration process using your problematic 'rm' anyway, export the environment variable ACCEPT_INFERIOR_RM_PROGRAM to "yes", and re-run configure. END AC_MSG_ERROR([Your 'rm' program is bad, sorry.]) fi fi dnl The trailing newline in this macro's definition is deliberate, for dnl backward compatibility and to allow trailing 'dnl'-style comments dnl after the AM_INIT_AUTOMAKE invocation. See automake bug#16841. ]) dnl Hook into '_AC_COMPILER_EXEEXT' early to learn its expansion. Do not dnl add the conditional right here, as _AC_COMPILER_EXEEXT may be further dnl mangled by Autoconf and run in a shell conditional statement. m4_define([_AC_COMPILER_EXEEXT], m4_defn([_AC_COMPILER_EXEEXT])[m4_provide([_AM_COMPILER_EXEEXT])]) # When config.status generates a header, we must update the stamp-h file. # This file resides in the same directory as the config header # that is generated. The stamp files are numbered to have different names. # Autoconf calls _AC_AM_CONFIG_HEADER_HOOK (when defined) in the # loop where config.status creates the headers, so we can generate # our stamp files there. AC_DEFUN([_AC_AM_CONFIG_HEADER_HOOK], [# Compute $1's index in $config_headers. _am_arg=$1 _am_stamp_count=1 for _am_header in $config_headers :; do case $_am_header in $_am_arg | $_am_arg:* ) break ;; * ) _am_stamp_count=`expr $_am_stamp_count + 1` ;; esac done echo "timestamp for $_am_arg" >`AS_DIRNAME(["$_am_arg"])`/stamp-h[]$_am_stamp_count]) # Copyright (C) 2001-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_SH # ------------------ # Define $install_sh. AC_DEFUN([AM_PROG_INSTALL_SH], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl if test x"${install_sh+set}" != xset; then case $am_aux_dir in *\ * | *\ *) install_sh="\${SHELL} '$am_aux_dir/install-sh'" ;; *) install_sh="\${SHELL} $am_aux_dir/install-sh" esac fi AC_SUBST([install_sh])]) # Copyright (C) 2003-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # Check whether the underlying file-system supports filenames # with a leading dot. For instance MS-DOS doesn't. AC_DEFUN([AM_SET_LEADING_DOT], [rm -rf .tst 2>/dev/null mkdir .tst 2>/dev/null if test -d .tst; then am__leading_dot=. else am__leading_dot=_ fi rmdir .tst 2>/dev/null AC_SUBST([am__leading_dot])]) # Add --enable-maintainer-mode option to configure. -*- Autoconf -*- # From Jim Meyering # Copyright (C) 1996-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAINTAINER_MODE([DEFAULT-MODE]) # ---------------------------------- # Control maintainer-specific portions of Makefiles. # Default is to disable them, unless 'enable' is passed literally. # For symmetry, 'disable' may be passed as well. Anyway, the user # can override the default with the --enable/--disable switch. AC_DEFUN([AM_MAINTAINER_MODE], [m4_case(m4_default([$1], [disable]), [enable], [m4_define([am_maintainer_other], [disable])], [disable], [m4_define([am_maintainer_other], [enable])], [m4_define([am_maintainer_other], [enable]) m4_warn([syntax], [unexpected argument to AM@&t@_MAINTAINER_MODE: $1])]) AC_MSG_CHECKING([whether to enable maintainer-specific portions of Makefiles]) dnl maintainer-mode's default is 'disable' unless 'enable' is passed AC_ARG_ENABLE([maintainer-mode], [AS_HELP_STRING([--]am_maintainer_other[-maintainer-mode], am_maintainer_other[ make rules and dependencies not useful (and sometimes confusing) to the casual installer])], [USE_MAINTAINER_MODE=$enableval], [USE_MAINTAINER_MODE=]m4_if(am_maintainer_other, [enable], [no], [yes])) AC_MSG_RESULT([$USE_MAINTAINER_MODE]) AM_CONDITIONAL([MAINTAINER_MODE], [test $USE_MAINTAINER_MODE = yes]) MAINT=$MAINTAINER_MODE_TRUE AC_SUBST([MAINT])dnl ] ) # Check to see how 'make' treats includes. -*- Autoconf -*- # Copyright (C) 2001-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MAKE_INCLUDE() # ----------------- # Check whether make has an 'include' directive that can support all # the idioms we need for our automatic dependency tracking code. AC_DEFUN([AM_MAKE_INCLUDE], [AC_MSG_CHECKING([whether ${MAKE-make} supports the include directive]) cat > confinc.mk << 'END' am__doit: @echo this is the am__doit target >confinc.out .PHONY: am__doit END am__include="#" am__quote= # BSD make does it like this. echo '.include "confinc.mk" # ignored' > confmf.BSD # Other make implementations (GNU, Solaris 10, AIX) do it like this. echo 'include confinc.mk # ignored' > confmf.GNU _am_result=no for s in GNU BSD; do AM_RUN_LOG([${MAKE-make} -f confmf.$s && cat confinc.out]) AS_CASE([$?:`cat confinc.out 2>/dev/null`], ['0:this is the am__doit target'], [AS_CASE([$s], [BSD], [am__include='.include' am__quote='"'], [am__include='include' am__quote=''])]) if test "$am__include" != "#"; then _am_result="yes ($s style)" break fi done rm -f confinc.* confmf.* AC_MSG_RESULT([${_am_result}]) AC_SUBST([am__include])]) AC_SUBST([am__quote])]) # Fake the existence of programs that GNU maintainers use. -*- Autoconf -*- # Copyright (C) 1997-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_MISSING_PROG(NAME, PROGRAM) # ------------------------------ AC_DEFUN([AM_MISSING_PROG], [AC_REQUIRE([AM_MISSING_HAS_RUN]) $1=${$1-"${am_missing_run}$2"} AC_SUBST($1)]) # AM_MISSING_HAS_RUN # ------------------ # Define MISSING if not defined so far and test if it is modern enough. # If it is, set am_missing_run to use it, otherwise, to nothing. AC_DEFUN([AM_MISSING_HAS_RUN], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([missing])dnl if test x"${MISSING+set}" != xset; then case $am_aux_dir in *\ * | *\ *) MISSING="\${SHELL} \"$am_aux_dir/missing\"" ;; *) MISSING="\${SHELL} $am_aux_dir/missing" ;; esac fi # Use eval to expand $SHELL if eval "$MISSING --is-lightweight"; then am_missing_run="$MISSING " else am_missing_run= AC_MSG_WARN(['missing' script is too old or missing]) fi ]) # Helper functions for option handling. -*- Autoconf -*- # Copyright (C) 2001-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_MANGLE_OPTION(NAME) # ----------------------- AC_DEFUN([_AM_MANGLE_OPTION], [[_AM_OPTION_]m4_bpatsubst($1, [[^a-zA-Z0-9_]], [_])]) # _AM_SET_OPTION(NAME) # -------------------- # Set option NAME. Presently that only means defining a flag for this option. AC_DEFUN([_AM_SET_OPTION], [m4_define(_AM_MANGLE_OPTION([$1]), [1])]) # _AM_SET_OPTIONS(OPTIONS) # ------------------------ # OPTIONS is a space-separated list of Automake options. AC_DEFUN([_AM_SET_OPTIONS], [m4_foreach_w([_AM_Option], [$1], [_AM_SET_OPTION(_AM_Option)])]) # _AM_IF_OPTION(OPTION, IF-SET, [IF-NOT-SET]) # ------------------------------------------- # Execute IF-SET if OPTION is set, IF-NOT-SET otherwise. AC_DEFUN([_AM_IF_OPTION], [m4_ifset(_AM_MANGLE_OPTION([$1]), [$2], [$3])]) # Copyright (C) 1999-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_CC_C_O # --------------- # Like AC_PROG_CC_C_O, but changed for automake. We rewrite AC_PROG_CC # to automatically call this. AC_DEFUN([_AM_PROG_CC_C_O], [AC_REQUIRE([AM_AUX_DIR_EXPAND])dnl AC_REQUIRE_AUX_FILE([compile])dnl AC_LANG_PUSH([C])dnl AC_CACHE_CHECK( [whether $CC understands -c and -o together], [am_cv_prog_cc_c_o], [AC_LANG_CONFTEST([AC_LANG_PROGRAM([])]) # Make sure it works both with $CC and with simple cc. # Following AC_PROG_CC_C_O, we do the test twice because some # compilers refuse to overwrite an existing .o file with -o, # though they will create one. am_cv_prog_cc_c_o=yes for am_i in 1 2; do if AM_RUN_LOG([$CC -c conftest.$ac_ext -o conftest2.$ac_objext]) \ && test -f conftest2.$ac_objext; then : OK else am_cv_prog_cc_c_o=no break fi done rm -f core conftest* unset am_i]) if test "$am_cv_prog_cc_c_o" != yes; then # Losing compiler, so override with the script. # FIXME: It is wrong to rewrite CC. # But if we don't then we get into trouble of one sort or another. # A longer-term fix would be to have automake use am__CC in this case, # and then we could set am__CC="\$(top_srcdir)/compile \$(CC)" CC="$am_aux_dir/compile $CC" fi AC_LANG_POP([C])]) # For backward compatibility. AC_DEFUN_ONCE([AM_PROG_CC_C_O], [AC_REQUIRE([AC_PROG_CC])]) # Copyright (C) 2001-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_RUN_LOG(COMMAND) # ------------------- # Run COMMAND, save the exit status in ac_status, and log it. # (This has been adapted from Autoconf's _AC_RUN_LOG macro.) AC_DEFUN([AM_RUN_LOG], [{ echo "$as_me:$LINENO: $1" >&AS_MESSAGE_LOG_FD ($1) >&AS_MESSAGE_LOG_FD 2>&AS_MESSAGE_LOG_FD ac_status=$? echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD (exit $ac_status); }]) # Check to make sure that the build environment is sane. -*- Autoconf -*- # Copyright (C) 1996-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SANITY_CHECK # --------------- AC_DEFUN([AM_SANITY_CHECK], [AC_MSG_CHECKING([whether build environment is sane]) # Reject unsafe characters in $srcdir or the absolute working directory # name. Accept space and tab only in the latter. am_lf=' ' case `pwd` in *[[\\\"\#\$\&\'\`$am_lf]]*) AC_MSG_ERROR([unsafe absolute working directory name]);; esac case $srcdir in *[[\\\"\#\$\&\'\`$am_lf\ \ ]]*) AC_MSG_ERROR([unsafe srcdir value: '$srcdir']);; esac # Do 'set' in a subshell so we don't clobber the current shell's # arguments. Must try -L first in case configure is actually a # symlink; some systems play weird games with the mod time of symlinks # (eg FreeBSD returns the mod time of the symlink's containing # directory). if ( am_has_slept=no for am_try in 1 2; do echo "timestamp, slept: $am_has_slept" > conftest.file set X `ls -Lt "$srcdir/configure" conftest.file 2> /dev/null` if test "$[*]" = "X"; then # -L didn't work. set X `ls -t "$srcdir/configure" conftest.file` fi if test "$[*]" != "X $srcdir/configure conftest.file" \ && test "$[*]" != "X conftest.file $srcdir/configure"; then # If neither matched, then we have a broken ls. This can happen # if, for instance, CONFIG_SHELL is bash and it inherits a # broken ls alias from the environment. This has actually # happened. Such a system could not be considered "sane". AC_MSG_ERROR([ls -t appears to fail. Make sure there is not a broken alias in your environment]) fi if test "$[2]" = conftest.file || test $am_try -eq 2; then break fi # Just in case. sleep 1 am_has_slept=yes done test "$[2]" = conftest.file ) then # Ok. : else AC_MSG_ERROR([newly created file is older than distributed files! Check your system clock]) fi AC_MSG_RESULT([yes]) # If we didn't sleep, we still need to ensure time stamps of config.status and # generated files are strictly newer. am_sleep_pid= if grep 'slept: no' conftest.file >/dev/null 2>&1; then ( sleep 1 ) & am_sleep_pid=$! fi AC_CONFIG_COMMANDS_PRE( [AC_MSG_CHECKING([that generated files are newer than configure]) if test -n "$am_sleep_pid"; then # Hide warnings about reused PIDs. wait $am_sleep_pid 2>/dev/null fi AC_MSG_RESULT([done])]) rm -f conftest.file ]) # Copyright (C) 2009-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_SILENT_RULES([DEFAULT]) # -------------------------- # Enable less verbose build rules; with the default set to DEFAULT # ("yes" being less verbose, "no" or empty being verbose). AC_DEFUN([AM_SILENT_RULES], [AC_ARG_ENABLE([silent-rules], [dnl AS_HELP_STRING( [--enable-silent-rules], [less verbose build output (undo: "make V=1")]) AS_HELP_STRING( [--disable-silent-rules], [verbose build output (undo: "make V=0")])dnl ]) case $enable_silent_rules in @%:@ ((( yes) AM_DEFAULT_VERBOSITY=0;; no) AM_DEFAULT_VERBOSITY=1;; *) AM_DEFAULT_VERBOSITY=m4_if([$1], [yes], [0], [1]);; esac dnl dnl A few 'make' implementations (e.g., NonStop OS and NextStep) dnl do not support nested variable expansions. dnl See automake bug#9928 and bug#10237. am_make=${MAKE-make} AC_CACHE_CHECK([whether $am_make supports nested variables], [am_cv_make_support_nested_variables], [if AS_ECHO([['TRUE=$(BAR$(V)) BAR0=false BAR1=true V=1 am__doit: @$(TRUE) .PHONY: am__doit']]) | $am_make -f - >/dev/null 2>&1; then am_cv_make_support_nested_variables=yes else am_cv_make_support_nested_variables=no fi]) if test $am_cv_make_support_nested_variables = yes; then dnl Using '$V' instead of '$(V)' breaks IRIX make. AM_V='$(V)' AM_DEFAULT_V='$(AM_DEFAULT_VERBOSITY)' else AM_V=$AM_DEFAULT_VERBOSITY AM_DEFAULT_V=$AM_DEFAULT_VERBOSITY fi AC_SUBST([AM_V])dnl AM_SUBST_NOTMAKE([AM_V])dnl AC_SUBST([AM_DEFAULT_V])dnl AM_SUBST_NOTMAKE([AM_DEFAULT_V])dnl AC_SUBST([AM_DEFAULT_VERBOSITY])dnl AM_BACKSLASH='\' AC_SUBST([AM_BACKSLASH])dnl _AM_SUBST_NOTMAKE([AM_BACKSLASH])dnl ]) # Copyright (C) 2001-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # AM_PROG_INSTALL_STRIP # --------------------- # One issue with vendor 'install' (even GNU) is that you can't # specify the program used to strip binaries. This is especially # annoying in cross-compiling environments, where the build's strip # is unlikely to handle the host's binaries. # Fortunately install-sh will honor a STRIPPROG variable, so we # always use install-sh in "make install-strip", and initialize # STRIPPROG with the value of the STRIP variable (set by the user). AC_DEFUN([AM_PROG_INSTALL_STRIP], [AC_REQUIRE([AM_PROG_INSTALL_SH])dnl # Installed binaries are usually stripped using 'strip' when the user # run "make install-strip". However 'strip' might not be the right # tool to use in cross-compilation environments, therefore Automake # will honor the 'STRIP' environment variable to overrule this program. dnl Don't test for $cross_compiling = yes, because it might be 'maybe'. if test "$cross_compiling" != no; then AC_CHECK_TOOL([STRIP], [strip], :) fi INSTALL_STRIP_PROGRAM="\$(install_sh) -c -s" AC_SUBST([INSTALL_STRIP_PROGRAM])]) # Copyright (C) 2006-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_SUBST_NOTMAKE(VARIABLE) # --------------------------- # Prevent Automake from outputting VARIABLE = @VARIABLE@ in Makefile.in. # This macro is traced by Automake. AC_DEFUN([_AM_SUBST_NOTMAKE]) # AM_SUBST_NOTMAKE(VARIABLE) # -------------------------- # Public sister of _AM_SUBST_NOTMAKE. AC_DEFUN([AM_SUBST_NOTMAKE], [_AM_SUBST_NOTMAKE($@)]) # Check how to create a tarball. -*- Autoconf -*- # Copyright (C) 2004-2020 Free Software Foundation, Inc. # # This file is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # _AM_PROG_TAR(FORMAT) # -------------------- # Check how to create a tarball in format FORMAT. # FORMAT should be one of 'v7', 'ustar', or 'pax'. # # Substitute a variable $(am__tar) that is a command # writing to stdout a FORMAT-tarball containing the directory # $tardir. # tardir=directory && $(am__tar) > result.tar # # Substitute a variable $(am__untar) that extract such # a tarball read from stdin. # $(am__untar) < result.tar # AC_DEFUN([_AM_PROG_TAR], [# Always define AMTAR for backward compatibility. Yes, it's still used # in the wild :-( We should find a proper way to deprecate it ... AC_SUBST([AMTAR], ['$${TAR-tar}']) # We'll loop over all known methods to create a tar archive until one works. _am_tools='gnutar m4_if([$1], [ustar], [plaintar]) pax cpio none' m4_if([$1], [v7], [am__tar='$${TAR-tar} chof - "$$tardir"' am__untar='$${TAR-tar} xf -'], [m4_case([$1], [ustar], [# The POSIX 1988 'ustar' format is defined with fixed-size fields. # There is notably a 21 bits limit for the UID and the GID. In fact, # the 'pax' utility can hang on bigger UID/GID (see automake bug#8343 # and bug#13588). am_max_uid=2097151 # 2^21 - 1 am_max_gid=$am_max_uid # The $UID and $GID variables are not portable, so we need to resort # to the POSIX-mandated id(1) utility. Errors in the 'id' calls # below are definitely unexpected, so allow the users to see them # (that is, avoid stderr redirection). am_uid=`id -u || echo unknown` am_gid=`id -g || echo unknown` AC_MSG_CHECKING([whether UID '$am_uid' is supported by ustar format]) if test $am_uid -le $am_max_uid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi AC_MSG_CHECKING([whether GID '$am_gid' is supported by ustar format]) if test $am_gid -le $am_max_gid; then AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) _am_tools=none fi], [pax], [], [m4_fatal([Unknown tar format])]) AC_MSG_CHECKING([how to create a $1 tar archive]) # Go ahead even if we have the value already cached. We do so because we # need to set the values for the 'am__tar' and 'am__untar' variables. _am_tools=${am_cv_prog_tar_$1-$_am_tools} for _am_tool in $_am_tools; do case $_am_tool in gnutar) for _am_tar in tar gnutar gtar; do AM_RUN_LOG([$_am_tar --version]) && break done am__tar="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$$tardir"' am__tar_="$_am_tar --format=m4_if([$1], [pax], [posix], [$1]) -chf - "'"$tardir"' am__untar="$_am_tar -xf -" ;; plaintar) # Must skip GNU tar: if it does not support --format= it doesn't create # ustar tarball either. (tar --version) >/dev/null 2>&1 && continue am__tar='tar chf - "$$tardir"' am__tar_='tar chf - "$tardir"' am__untar='tar xf -' ;; pax) am__tar='pax -L -x $1 -w "$$tardir"' am__tar_='pax -L -x $1 -w "$tardir"' am__untar='pax -r' ;; cpio) am__tar='find "$$tardir" -print | cpio -o -H $1 -L' am__tar_='find "$tardir" -print | cpio -o -H $1 -L' am__untar='cpio -i -H $1 -d' ;; none) am__tar=false am__tar_=false am__untar=false ;; esac # If the value was cached, stop now. We just wanted to have am__tar # and am__untar set. test -n "${am_cv_prog_tar_$1}" && break # tar/untar a dummy directory, and stop if the command works. rm -rf conftest.dir mkdir conftest.dir echo GrepMe > conftest.dir/file AM_RUN_LOG([tardir=conftest.dir && eval $am__tar_ >conftest.tar]) rm -rf conftest.dir if test -s conftest.tar; then AM_RUN_LOG([$am__untar /dev/null 2>&1 && break fi done rm -rf conftest.dir AC_CACHE_VAL([am_cv_prog_tar_$1], [am_cv_prog_tar_$1=$_am_tool]) AC_MSG_RESULT([$am_cv_prog_tar_$1])]) AC_SUBST([am__tar]) AC_SUBST([am__untar]) ]) # _AM_PROG_TAR m4_include([m4/ax_check_vscript.m4]) m4_include([m4/iconv.m4]) m4_include([m4/lib-ld.m4]) m4_include([m4/lib-link.m4]) m4_include([m4/lib-prefix.m4]) m4_include([m4/libtool.m4]) m4_include([m4/ltoptions.m4]) m4_include([m4/ltsugar.m4]) m4_include([m4/ltversion.m4]) m4_include([m4/lt~obsolete.m4]) m4_include([acinclude.m4]) openconnect-8.20/openconnect.h0000644000076400007640000010147314204505630020221 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_H__ #define __OPENCONNECT_H__ #include #include #ifdef __cplusplus extern "C" { #endif #ifdef _WIN32 #define uid_t unsigned #endif #define OPENCONNECT_API_VERSION_MAJOR 5 #define OPENCONNECT_API_VERSION_MINOR 7 /* * API version 5.7 (v8.20; 2022-02-20): * - Add openconnect_get_connect_url() * - Add openconnect_set_cookie() * - Add openconnect_set_allow_insecure_crypto() * - Add openconnect_get_auth_expiration() * - Add openconnect_disable_dtls() * - Make openconnect_disable_ipv6() return int * - Add openconnect_set_webview_callback() * - Add openconnect_webview_load_changed() * * API version 5.6 (v8.06; 2020-03-31): * - Add openconnect_set_trojan_interval() * * API version 5.5 (v8.00; 2019-01-05): * - add openconnect_set_version_string() * - add openconnect_set_key_password() * - Add openconnect_has_tss2_blob_support() * - Add openconnect_get_supported_protocols() * - Add openconnect_free_supported_protocols() * - Add openconnect_get_protocol() * - Add openconnect_get_idle_timeout() * * API version 5.4 (v7.08; 2016-12-13): * - Add openconnect_set_pass_tos() * * API version 5.3 (v7.07; 2016-07-11): * - Add openconnect_set_localname(). * - Add openconnect_override_getaddrinfo(). * - Add openconnect_get_cstp_compression(). * - Add openconnect_get_dtls_compression(). * - Add openconnect_disable_ipv6(). * - Add ip_info->gateway_addr. * - Add openconnect_set_setup_tun_handler(). * - Add openconnect_set_reconnected_handler(). * - Add openconnect_get_dnsname(). * - Add openconnect_get_peer_cert_chain() and * openconnect_free_peer_cert_chain(). * * API version 5.2 (v7.05; 2015-03-10): * - Add openconnect_set_http_auth(), openconnect_set_protocol(). * * API version 5.1 (v7.05; 2015-03-10): * - Add openconnect_set_compression_mode(), openconnect_set_loglevel() * * (Note: API 5.1 and openconnect_set_compression_mode() were present in * this file in the v7.04 release on 2015-01-25, but the symbol versioning * for the new function was OPENCONNECT_5_0, and openconnect_set_loglevel() * was not yet present.) * * API version 5.0 (v7.00; 2014-11-27): * - Remove OPENCONNECT_X509 and openconnect_get_peer_cert(). * - Change openconnect_get_cert_der() to openconnect_get_peer_cert_DER() etc. * - Add openconnect_check_peer_cert_hash(). * - Remove openconnect_set_server_cert_sha1(). * - Add openconnect_has_yubioath_support() and OC_TOKEN_MODE_YUBIOATH. * - Add openconnect_has_system_key_support(). * * API version 4.1 (v7.00; 2014-11-27): * - Add openconnect_get_cstp_cipher(), openconnect_get_dtls_cipher(), * openconnect_set_system_trust(), openconnect_set_csd_environ(). * - Change openconnect_init_ssl() to return int. * * API version 4.0 (v7.00; 2014-11-27): * - Change string handling to never transfer ownership of allocations. * - Add openconnect_set_option_value(), openconnect_free_cert_info(). * * API version 3.4 (v7.00; 2014-11-27): * - Add openconnect_set_token_callbacks() * * API version 3.3 (v6.00; 2014-07-08): * - Add openconnect_set_pfs(), openconnect_set_dpd(), * openconnect_set_proxy_auth() * * API version 3.2 (v5.99; 2014-03-05): * - Add OC_TOKEN_MODE_HOTP and allow openconnect_has_oath_support() to * return 2 to indicate that it is present. * * API version 3.1 (v5.99; 2014-03-05): * - Add openconnect_setup_cmd_pipe(), openconnect_mainloop(), * openconnect_setup_tun_device(), openconnect_setup_tun_script(), * openconnect_setup_tun_fd(), openconnect_setup_dtls(), * openconnect_make_cstp_connection(), openconnect_set_server_cert_sha1(), * openconnect_get_ifname(), openconnect_set_reqmtu(), * openconnect_get_ip_info(), openconnect_set_protect_socket_handler(), * openconnect_set_mobile_info(), openconnect_set_xmlpost(), * openconnect_set_stats_handler() * * API version 3.0 (v5.99; 2014-03-05): * - Change oc_form_opt_select->choices to an array of pointers * - Add oc_form_opt->flags * - Add OC_FORM_RESULT_* and oc_auth_form->authgroup_* * * API version 2.2 (v5.00; 2013-05-16): * - Add openconnect_set_token_mode(), openconnect_has_oath_support() * - Deprecate openconnect_set_stoken_mode() * * API version 2.1 (v4.99; 2013-02-07): * - Add openconnect_set_reported_os() * - Add openconnect_set_stoken_mode(), openconnect_has_stoken_support() * * API version 2.0 (v3.99; 2012-06-13): * - OPENCONNECT_X509 is now an opaque type. * - Add openconnect_has_pkcs11_support(), openconnect_has_tss_blob_support() * - Rename openconnect_init_openssl() -> openconnect_init_ssl() * - Rename openconnect_vpninfo_new_with_cbdata() -> openconnect_vpninfo_new() * and kill the old openconnect_vpninfo_new() and its callback types. * * API version 1.5 (v3.99; 2012-06-13): * - Add openconnect_get_cert_details(), openconnect_get_cert_DER(). * * API version 1.4 (v3.19; 2012-05-17): * - Add openconnect_set_cancel_fd() * * API version 1.3 (v3.13; 2011-09-30): * - Add openconnect_set_cert_expiry_warning() to change from default 60 days * * API version 1.2 (v3.10; 2011-06-30) * - Add openconnect_vpninfo_new_with_cbdata() * * API version 1.1 (v3.02; 2011-04-19): * - Add openconnect_vpninfo_free() * * API version 1.0 (v3.00; 2011-03-09): * - Initial version * * NEW LIBRARY FUNCTION CHECKLIST: * * 1) Bump the API version if the current API version has already appeared * in a release * 2) Add function to the above changelog * 3) Add function to libopenconnect.map.in * 4) Add declaration + comments in the latter part of this file * 5) Add function to jni.c, then test with ./configure --with-java && make * 6) Add declaration to LibOpenConnect.java, then run "cd java && ant" to test */ /* Before API version 1.4 (OpenConnect 3.19) this macro didn't exist. * Somewhat ironic, that the API version check itself needs to be * conditionally used depending on the API version. A very simple way * for users to handle this with an approximately correct answer is * #include * #ifndef OPENCONNECT_CHECK_VER * #define OPENCONNECT_CHECK_VER(x,y) 0 * #endif */ #define OPENCONNECT_CHECK_VER(maj, min) \ (OPENCONNECT_API_VERSION_MAJOR > (maj) || \ (OPENCONNECT_API_VERSION_MAJOR == (maj) && \ OPENCONNECT_API_VERSION_MINOR >= (min))) /****************************************************************************/ /* Enumeration of supported VPN protocols */ #define OC_PROTO_PROXY (1<<0) #define OC_PROTO_CSD (1<<1) #define OC_PROTO_AUTH_CERT (1<<2) #define OC_PROTO_AUTH_OTP (1<<3) #define OC_PROTO_AUTH_STOKEN (1<<4) #define OC_PROTO_PERIODIC_TROJAN (1<<5) #define OC_PROTO_HIDDEN (1<<6) struct oc_vpn_proto { const char *name; const char *pretty_name; const char *description; unsigned int flags; }; /****************************************************************************/ /* Authentication form processing */ #define OC_FORM_OPT_TEXT 1 #define OC_FORM_OPT_PASSWORD 2 #define OC_FORM_OPT_SELECT 3 #define OC_FORM_OPT_HIDDEN 4 #define OC_FORM_OPT_TOKEN 5 #define OC_FORM_RESULT_ERR -1 #define OC_FORM_RESULT_OK 0 #define OC_FORM_RESULT_CANCELLED 1 #define OC_FORM_RESULT_NEWGROUP 2 #ifdef __OPENCONNECT_PRIVATE__ #define OC_FORM_RESULT_LOGGEDIN 255 #define OC_FORM_OPT_SECOND_AUTH 0x8000 #endif #define OC_FORM_OPT_IGNORE 0x0001 #define OC_FORM_OPT_NUMERIC 0x0002 /* char * fields are static (owned by XML parser) and don't need to be freed by the form handling code — except for value, which for TEXT and PASSWORD options is allocated by openconnect_set_option_value() when process_form() interacts with the user and must be freed. */ struct oc_form_opt { struct oc_form_opt *next; int type; char *name; char *label; char *_value; /* Use openconnect_set_option_value() to set this */ unsigned int flags; void *reserved; }; /* To set the value to a form use the following function */ int openconnect_set_option_value(struct oc_form_opt *opt, const char *value); /* All fields are static, owned by the XML parser */ struct oc_choice { char *name; char *label; char *auth_type; char *override_name; char *override_label; #ifdef __OPENCONNECT_PRIVATE__ int second_auth; char *secondary_username; int secondary_username_editable; int noaaa; #endif }; struct oc_form_opt_select { struct oc_form_opt form; int nr_choices; struct oc_choice **choices; }; /* All char * fields are static, owned by the XML parser */ struct oc_auth_form { char *banner; char *message; char *error; char *auth_id; char *method; char *action; struct oc_form_opt *opts; struct oc_form_opt_select *authgroup_opt; int authgroup_selection; }; struct oc_split_include { const char *route; struct oc_split_include *next; }; struct oc_ip_info { const char *addr; const char *netmask; /* Just the netmask, in dotted-quad form. */ const char *addr6; const char *netmask6; /* This is the IPv6 address *and* netmask * e.g. "2001::dead:beef/128". */ const char *dns[3]; const char *nbns[3]; const char *domain; const char *proxy_pac; int mtu; struct oc_split_include *split_dns; struct oc_split_include *split_includes; struct oc_split_include *split_excludes; /* The elements above this line come from server-provided CSTP headers, * so they should be handled with caution. gateway_addr is generated * locally from getnameinfo(). */ char *gateway_addr; }; struct oc_vpn_option { char *option; char *value; struct oc_vpn_option *next; }; struct oc_stats { uint64_t tx_pkts; uint64_t tx_bytes; uint64_t rx_pkts; uint64_t rx_bytes; }; struct oc_cert { int der_len; unsigned char *der_data; void *reserved; }; /* Used by openconnect_webview_load_changed() to return data to OC. * The arrays must contain an even number of const strings, with names and * values, and a NULL to terminate. E.g.: * name0, val0, name1, val1, NULL */ struct oc_webview_result { const char *uri; const char **cookies; const char **headers; }; /****************************************************************************/ #define PRG_ERR 0 #define PRG_INFO 1 #define PRG_DEBUG 2 #define PRG_TRACE 3 /* Byte commands to write into the cmd_fd: * * CANCEL closes network connections, logs off the session (cookie) * and shuts down the tun device. * PAUSE closes network connections and returns. The caller is expected * to call openconnect_mainloop() again soon. * DETACH closes network connections and shuts down the tun device. * It is not legal to call openconnect_mainloop() again after this, * but a new instance of openconnect can be started using the same * cookie. * STATS calls the stats_handler. */ #define OC_CMD_CANCEL 'x' #define OC_CMD_PAUSE 'p' #define OC_CMD_DETACH 'd' #define OC_CMD_STATS 's' #define RECONNECT_INTERVAL_MIN 10 #define RECONNECT_INTERVAL_MAX 100 struct openconnect_info; typedef enum { OC_TOKEN_MODE_NONE, OC_TOKEN_MODE_STOKEN, OC_TOKEN_MODE_TOTP, OC_TOKEN_MODE_HOTP, OC_TOKEN_MODE_YUBIOATH, OC_TOKEN_MODE_OIDC, } oc_token_mode_t; typedef enum { OC_COMPRESSION_MODE_NONE, OC_COMPRESSION_MODE_STATELESS, OC_COMPRESSION_MODE_ALL, } oc_compression_mode_t; /* All strings are UTF-8. If operating in a legacy environment where nl_langinfo(CODESET) returns anything other than UTF-8, or on Windows, the library will take appropriate steps to convert back to the legacy character set (or UTF-16) for file handling and wherever else it is appropriate to do so. Library functions may (but probably don't yet) return -EILSEQ if passed invalid UTF-8 strings. */ /* Unlike previous versions of openconnect, no functions will take ownership of the provided strings. */ /* Provide environment variables to be set in the CSD trojan environment before spawning it. Some callers may need to set $TMPDIR, $PATH and other such things if not running from a standard UNIX-like environment. To ensure that a variable is unset, pass its name with value==NULL. To clear all settings and allow the CSD trojan to inherit an unmodified environment, call with name==NULL. */ int openconnect_set_csd_environ(struct openconnect_info *vpninfo, const char *name, const char *value); /* This string is static, valid only while the connection lasts. If you * are going to cache this to remember which certs the user has accepted, * make sure you also store the host/port for which it was accepted and * don't just accept this cert from *anywhere*. Also use the check * function below instead of manually comparing. When this function * returns a string which *doesn't* match the previously-stored hash * matched with openconnect_check_peer_cert_hash(), you should store * the new result from this function in place of the old. It means * we have upgraded to a better hash function. */ const char *openconnect_get_peer_cert_hash(struct openconnect_info *vpninfo); /* Check if the current peer certificate matches a hash previously * obtained from openconect_get_peer_cert_hash(). Clients should not * attempt to do this using strcmp() and the *current* result of * openconnect_get_peer_cert_hash() because it might use * a different hash function today. This function will get it right. * Returns 0 on match; 1 on mismatch, -errno on failure. */ int openconnect_check_peer_cert_hash(struct openconnect_info *vpninfo, const char *old_hash); /* The buffers returned by these two functions must be freed with openconnect_free_cert_info(), especially on Windows. */ char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo); /* Returns the length of the created DER output, in a newly-allocated buffer that will need to be freed by openconnect_free_cert_info(). */ int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf); void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf); /* Creates a list of all certs in the peer's chain, returning the number of certs in the chain (or <0 on error). Only valid inside the validate_peer_cert callback. The caller should free the chain, but should not modify the contents. */ int openconnect_get_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert **chain); void openconnect_free_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert *chain); /* Contains a comma-separated list of authentication methods to enabled. Currently supported: Negotiate,NTLM,Digest,Basic */ int openconnect_set_http_auth(struct openconnect_info *vpninfo, const char *methods); int openconnect_set_proxy_auth(struct openconnect_info *vpninfo, const char *methods); int openconnect_set_http_proxy(struct openconnect_info *vpninfo, const char *proxy); int openconnect_passphrase_from_fsid(struct openconnect_info *vpninfo); int openconnect_obtain_cookie(struct openconnect_info *vpninfo); int openconnect_init_ssl(void); /* These are strictly cosmetic. The strings differ depending on * whether OpenSSL or GnuTLS is being used. And even depending on the * version of GnuTLS. Do *not* attempt to do anything meaningful based * on matching these strings; if you want to do something like that then * ask for an API that *does* offer you what you need. */ const char *openconnect_get_cstp_cipher(struct openconnect_info *); const char *openconnect_get_dtls_cipher(struct openconnect_info *); /* These return a descriptive string of the compression algorithm * in use (LZS, LZ4, ...). If no compression then NULL is returned. */ const char *openconnect_get_cstp_compression(struct openconnect_info *); const char *openconnect_get_dtls_compression(struct openconnect_info *); /* * Since authentication can run in a separate environment to the connection * itself, there is a simple set of information which needs to be passed * from one to the other. Basically it's just the server to connect to, and * the cookie we need for authentication. And luckily, as we've added more * and more protocols over the years, the "cookie" part has remained true * and we haven't needed to use client certificates for the *connection*. * * The *server* part is a little more complex. Firstly, the certificate * might not be valid and may have been accepted manually by the user, * so we pass the certificate fingerprint separately, as a second piece * of information. * In the beginning, we passed the server hostname as the third piece of * information, and all was well. * * Then we found servers on a non-standard port, so the authentication * dialogs would use openconnect_get_port() and just append it (":%d") * to the hostname string they passed on. * * Then we encountered servers with round-robin or geo-DNS, which gave * different IP addresses for a given hostname, and we switched the * openconnect_get_hostname() function to return the *IP* address instead, * since the actual name didn't matter when it wasn't being used to check * the server's certificate anyway. * * At some point later, openconnect_get_dnsname() was added to return the * actual hostname, during the authentication phase where the cert was * being presented to the user for manual acceptance. But that wasn't * really important for the authentication → connection handoff. * * Later still, Legacy IP addresses got scarce and SNI was invented, and * we started to see servers behind proxies that forward a connection * based on the SNI in the incoming ClientHello (TLS layer), or based on * the 'Host' header in the initial connection-phase request (HTTP[S] * layer). So returning just the IP address from openconnect_get_hostname() * now made things break. * * So... we need to pass *both* the actual hostname *and* the IP address * to the connecting openconnect invocation. As well as the port. * * In addition, the Pulse protocol introduced a new requirement for the * connection. Instead of connecting to a fixed endpoint on the server, * we must connect to the appropriate *path*, which varies. So in fact * it isn't just the "hostname" any more, but the full URL. * * So, now we have openconnect_get_connect_url() which gets the full URL * including the port and path, and the original hostname. * * Since we're now back to giving openconnect a hostname, we need to add * a '--resolve' argument to avoid the round robin DNS problem and ensure * that we actually connect to the same server we authenticated to. The * arguments for that can be obtained from openconnect_get_dnsname() and * openconnect_get_hostname() — the latter of which, as noted, was changed * years ago to return a numeric address. We end up invoking openconnect * to make the connection as follows: * * openconnect $CONNECT_URL --servercert $FINGERPRINT --cookie $COOKIE \ * --resolve $DNSNAME:$HOSTNAME * * ... where '$HOSTNAME', as returned by openconnect_get_hostname(), * isn't actually a hostname (as noted above). Sorry. * * In fact, what you get back from openconnect_get_hostname() is the * IP literal in the form it would appear in a URL. So IPv6 addresses * are wrapped in [], and that needs to be *stripped* in order to pass * it to openconnect's --resolve argument. As I realise and type this, * it doesn't seem particularly useful to provide yet another function * that will return the non-[]-wrapped version, as we'd still need UI * tools to do it themselves for backward compatibility. Sorry again :) */ const char *openconnect_get_connect_url(struct openconnect_info *); /* Returns the IP address of the exact host to which the connection * was made. In --cookieonly mode or in any other scenario involving * a "two stage" connection, it is important to reconnect by IP because * the server side may be using DNS trickery for load balancing. * * If the IP address is unavailable due to the use of a proxy, this will * fall back to returning the DNS name. */ const char *openconnect_get_hostname(struct openconnect_info *); /* Returns the hostname parsed out of the server name URL. This is * intended to be used by the validate_peer_cert callback to check that * the certificate matches the server name. */ const char *openconnect_get_dnsname(struct openconnect_info *); int openconnect_set_hostname(struct openconnect_info *, const char *); char *openconnect_get_urlpath(struct openconnect_info *); int openconnect_set_urlpath(struct openconnect_info *, const char *); int openconnect_set_localname(struct openconnect_info *, const char *); /* Some software tokens, such as HOTP tokens, include a counter which * needs to be stored in persistent storage. * * For such tokens, the lock function is first invoked to obtain a lock * on the storage because we're about to generate a new code. It is * permitted to call openconnect_set_token_mode() from the lock function, * if the token storage has been updated since it was first loaded. The * token mode must not change; only the token secret. * * The unlock function is called when a token code has been generated, * with a new token secret to be written to the persistent storage. The * secret will be in the same format as it was originally received by * openconnect_set_token_mode(). The new token may be NULL if an error * was encountered generating the code, in which case it is only * necessary for the callback function to unlock the storage. */ typedef int (*openconnect_lock_token_vfn)(void *tokdata); typedef int (*openconnect_unlock_token_vfn)(void *tokdata, const char *new_tok); int openconnect_set_token_callbacks(struct openconnect_info *, void *tokdata, openconnect_lock_token_vfn, openconnect_unlock_token_vfn); int openconnect_set_token_mode(struct openconnect_info *, oc_token_mode_t, const char *token_str); /* Legacy stoken-only function; do not use */ int openconnect_set_stoken_mode(struct openconnect_info *, int, const char *); int openconnect_set_compression_mode(struct openconnect_info *, oc_compression_mode_t); /* The size must be 41 bytes, since that's the size of a 20-byte SHA1 represented as hex with a trailing NUL. */ void openconnect_set_xmlsha1(struct openconnect_info *, const char *, int size); int openconnect_set_cafile(struct openconnect_info *, const char *); /* call this function to disable the system trust from being used to * verify the server certificate. @val is a boolean value. * * For backwards compatibility reasons this is enabled by default. */ void openconnect_set_system_trust(struct openconnect_info *vpninfo, unsigned val); int openconnect_setup_csd(struct openconnect_info *, uid_t, int silent, const char *wrapper); void openconnect_set_xmlpost(struct openconnect_info *, int enable); /* Valid choices are: "linux", "linux-64", "win", "mac-intel", "android", and "apple-ios". This also selects the corresponding CSD trojan binary. */ int openconnect_set_reported_os(struct openconnect_info *, const char *os); int openconnect_set_version_string(struct openconnect_info *vpninfo, const char *version_string); int openconnect_set_mobile_info(struct openconnect_info *vpninfo, const char *mobile_platform_version, const char *mobile_device_type, const char *mobile_device_uniqueid); int openconnect_set_client_cert(struct openconnect_info *, const char *cert, const char *sslkey); int openconnect_set_key_password(struct openconnect_info *vpninfo, const char *pass); const char *openconnect_get_ifname(struct openconnect_info *); void openconnect_set_reqmtu(struct openconnect_info *, int reqmtu); void openconnect_set_dpd(struct openconnect_info *, int min_seconds); void openconnect_set_trojan_interval(struct openconnect_info *, int seconds); int openconnect_get_idle_timeout(struct openconnect_info *); time_t openconnect_get_auth_expiration(struct openconnect_info *); /* The returned structures are owned by the library and may be freed/replaced due to rekey or reconnect. Assume that once the mainloop starts, the pointers are no longer valid. For similar reasons, it is unsafe to call this function from another thread. */ int openconnect_get_ip_info(struct openconnect_info *, const struct oc_ip_info **info, const struct oc_vpn_option **cstp_options, const struct oc_vpn_option **dtls_options); int openconnect_get_port(struct openconnect_info *); const char *openconnect_get_cookie(struct openconnect_info *); int openconnect_set_cookie(struct openconnect_info *, const char *); void openconnect_clear_cookie(struct openconnect_info *); int openconnect_disable_ipv6(struct openconnect_info *vpninfo); int openconnect_disable_dtls(struct openconnect_info *vpninfo); void openconnect_reset_ssl(struct openconnect_info *vpninfo); int openconnect_parse_url(struct openconnect_info *vpninfo, const char *url); void openconnect_set_cert_expiry_warning(struct openconnect_info *vpninfo, int seconds); void openconnect_set_pfs(struct openconnect_info *vpninfo, unsigned val); int openconnect_set_allow_insecure_crypto(struct openconnect_info *vpninfo, unsigned val); /* If this is set, then openconnect_obtain_cookie() will abort and return failure if the file descriptor is readable. Typically a user may create a pair of pipes with the pipe(2) system call, hand the readable one to this function, and then write a byte to the other end if it ever wants to cancel the connection. This way, a multi-threaded UI (which will be running openconnect_obtain_cookie() in a separate thread since it blocks) has the ability to cancel that call, reap its thread and free the vpninfo structure (or retry). An 'fd' argument of -1 will render the cancellation mechanism inactive. */ void openconnect_set_cancel_fd(struct openconnect_info *vpninfo, int fd); /* Create a nonblocking pipe used to send cancellations and other commands to the library. This returns a file descriptor to the write side of the pipe. Both sides will be closed by openconnect_vpninfo_free(). This replaces openconnect_set_cancel_fd(). */ #ifdef _WIN32 SOCKET #else int #endif openconnect_setup_cmd_pipe(struct openconnect_info *vpninfo); const char *openconnect_get_version(void); /* Open CSTP connection; on success, IP information will be available. */ int openconnect_make_cstp_connection(struct openconnect_info *vpninfo); /* Create a tun device through the OS kernel (typical use case). Both strings are optional and can be NULL if desired. */ int openconnect_setup_tun_device(struct openconnect_info *vpninfo, const char *vpnc_script, const char *ifname); /* Pass traffic to a script program (no tun device). */ int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script); #ifdef _WIN32 /* Caller will provide an overlap-capable handle for the tunnel traffic. */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd); #else /* Caller will provide a file descriptor for the tunnel traffic. */ int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, int tun_fd); #endif /* Optional call to enable DTLS on the connection. */ int openconnect_setup_dtls(struct openconnect_info *vpninfo, int dtls_attempt_period); /* Start the main loop; exits if OC_CMD_CANCEL is received on cmd_fd or the remote site aborts. */ int openconnect_mainloop(struct openconnect_info *vpninfo, int reconnect_timeout, int reconnect_interval); /* The first (privdata) argument to each of these functions is either the privdata argument provided to openconnect_vpninfo_new_with_cbdata(), or if that argument was NULL then it'll be the vpninfo itself. */ /* When the server's certificate fails validation via the normal means, this function is called with the offending certificate along with a textual reason for the failure (which may not be translated, if it comes directly from OpenSSL, but will be if it is rejected for "certificate does not match hostname", because that check is done in OpenConnect and *is* translated). The function shall return zero if the certificate is (or has in the past been) explicitly accepted by the user, and non-zero to abort the connection. */ typedef int (*openconnect_validate_peer_cert_vfn) (void *privdata, const char *reason); /* On a successful connection, the server may provide us with a new XML configuration file. This contains the list of servers that can be chosen by the user to connect to, amongst other stuff that we mostly ignore. By "new", we mean that the SHA1 indicated by the server does not match the SHA1 set with the openconnect_set_xmlsha1() above. If they don't match, or openconnect_set_xmlsha1() has not been called, then the new XML is downloaded and this function is invoked. */ typedef int (*openconnect_write_new_config_vfn) (void *privdata, const char *buf, int buflen); /* Handle an authentication form, requesting input from the user. * Return value: * < 0, on error * = 0, when form was parsed and POST required * = 1, when response was cancelled by user */ typedef int (*openconnect_process_auth_form_vfn) (void *privdata, struct oc_auth_form *form); /* Logging output which the user *may* want to see. */ typedef void __attribute__ ((format(printf, 3, 4))) (*openconnect_progress_vfn) (void *privdata, int level, const char *fmt, ...); struct openconnect_info *openconnect_vpninfo_new(const char *useragent, openconnect_validate_peer_cert_vfn, openconnect_write_new_config_vfn, openconnect_process_auth_form_vfn, openconnect_progress_vfn, void *privdata); void openconnect_vpninfo_free(struct openconnect_info *vpninfo); typedef int (*openconnect_open_webview_vfn) (struct openconnect_info *, const char *uri, void *privdata); void openconnect_set_webview_callback(struct openconnect_info *vpninfo, openconnect_open_webview_vfn); int openconnect_webview_load_changed(struct openconnect_info *vpninfo, const struct oc_webview_result *result); /* Callback to allow binding a newly created socket's file descriptor to a specific interface, e.g. with SO_BINDTODEVICE. This tells the kernel not to route the traffic in question over the VPN tunnel. */ typedef void (*openconnect_protect_socket_vfn) (void *privdata, int fd); void openconnect_set_protect_socket_handler(struct openconnect_info *vpninfo, openconnect_protect_socket_vfn protect_socket); void openconnect_set_loglevel(struct openconnect_info *vpninfo, int level); void openconnect_set_pass_tos(struct openconnect_info *vpninfo, int enable); /* Callback for obtaining traffic stats via OC_CMD_STATS. */ typedef void (*openconnect_stats_vfn) (void *privdata, const struct oc_stats *stats); void openconnect_set_stats_handler(struct openconnect_info *vpninfo, openconnect_stats_vfn stats_handler); /* SSL certificate capabilities. openconnect_has_pkcs11_support() means that we can accept PKCS#11 URLs in place of filenames, for the certificate and key. */ int openconnect_has_pkcs11_support(void); /* The OpenSSL TPM ENGINE stores keys in a PEM file labelled with the string -----BEGIN TSS KEY BLOB-----. */ int openconnect_has_tss_blob_support(void); int openconnect_has_tss2_blob_support(void); /* Software token capabilities. */ int openconnect_has_stoken_support(void); int openconnect_has_oath_support(void); int openconnect_has_yubioath_support(void); int openconnect_has_system_key_support(void); /* Query and select from among supported protocols */ int openconnect_get_supported_protocols(struct oc_vpn_proto **protos); void openconnect_free_supported_protocols(struct oc_vpn_proto *protos); const char *openconnect_get_protocol(struct openconnect_info *vpninfo); int openconnect_set_protocol(struct openconnect_info *vpninfo, const char *protocol); struct addrinfo; typedef int (*openconnect_getaddrinfo_vfn) (void *privdata, const char *node, const char *service, const struct addrinfo *hints, struct addrinfo **res); void openconnect_override_getaddrinfo(struct openconnect_info *vpninfo, openconnect_getaddrinfo_vfn gai_fn); /* Callback for configuring the interface after tunnel is fully up. */ typedef void (*openconnect_setup_tun_vfn) (void *privdata); void openconnect_set_setup_tun_handler(struct openconnect_info *vpninfo, openconnect_setup_tun_vfn setup_tun); /* Callback for indicating that a TCP reconnection succeeded. */ typedef void (*openconnect_reconnected_vfn) (void *privdata); void openconnect_set_reconnected_handler(struct openconnect_info *vpninfo, openconnect_reconnected_vfn reconnected_fn); #ifdef __cplusplus } #endif #endif /* __OPENCONNECT_H__ */ openconnect-8.20/library.c0000644000076400007640000012451614204454432017353 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * * Authors: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #if defined(OPENCONNECT_GNUTLS) #include "gnutls.h" #endif #ifdef HAVE_LIBSTOKEN #include #endif #include #include #if defined(OPENCONNECT_OPENSSL) #include #endif #include #include #include #include #include #include struct openconnect_info *openconnect_vpninfo_new(const char *useragent, openconnect_validate_peer_cert_vfn validate_peer_cert, openconnect_write_new_config_vfn write_new_config, openconnect_process_auth_form_vfn process_auth_form, openconnect_progress_vfn progress, void *privdata) { struct openconnect_info *vpninfo = calloc(sizeof(*vpninfo), 1); #ifdef HAVE_ICONV char *charset = nl_langinfo(CODESET); #endif if (!vpninfo) return NULL; #ifdef HAVE_ICONV if (charset && strcmp(charset, "UTF-8")) { vpninfo->ic_utf8_to_legacy = iconv_open(charset, "UTF-8"); vpninfo->ic_legacy_to_utf8 = iconv_open("UTF-8", charset); } else { vpninfo->ic_utf8_to_legacy = (iconv_t)-1; vpninfo->ic_legacy_to_utf8 = (iconv_t)-1; } #endif #ifdef HAVE_VHOST vpninfo->vhost_fd = vpninfo->vhost_call_fd = vpninfo->vhost_kick_fd = -1; #endif #ifndef _WIN32 vpninfo->tun_fd = -1; #endif init_pkt_queue(&vpninfo->free_queue); init_pkt_queue(&vpninfo->incoming_queue); init_pkt_queue(&vpninfo->outgoing_queue); init_pkt_queue(&vpninfo->tcp_control_queue); vpninfo->dtls_tos_current = 0; vpninfo->dtls_pass_tos = 0; vpninfo->ssl_fd = vpninfo->dtls_fd = -1; vpninfo->cmd_fd = vpninfo->cmd_fd_write = -1; vpninfo->tncc_fd = -1; vpninfo->cert_expire_warning = 60 * 86400; vpninfo->req_compr = COMPR_STATELESS; vpninfo->max_qlen = 10; vpninfo->localname = strdup("localhost"); vpninfo->port = 443; vpninfo->useragent = openconnect_create_useragent(useragent); vpninfo->validate_peer_cert = validate_peer_cert; vpninfo->write_new_config = write_new_config; vpninfo->process_auth_form = process_auth_form; vpninfo->progress = progress; vpninfo->cbdata = privdata ? : vpninfo; vpninfo->xmlpost = 1; vpninfo->verbose = PRG_TRACE; vpninfo->try_http_auth = 1; vpninfo->proxy_auth[AUTH_TYPE_BASIC].state = AUTH_DEFAULT_DISABLED; vpninfo->http_auth[AUTH_TYPE_BASIC].state = AUTH_DEFAULT_DISABLED; openconnect_set_reported_os(vpninfo, NULL); #ifdef HAVE_EPOLL vpninfo->epoll_fd = epoll_create1(EPOLL_CLOEXEC); #endif if (!vpninfo->localname || !vpninfo->useragent) goto err; #ifdef ENABLE_NLS bindtextdomain("openconnect", LOCALEDIR); #endif openconnect_set_protocol(vpninfo, "anyconnect"); return vpninfo; err: free(vpninfo->localname); free(vpninfo->useragent); free(vpninfo); return NULL; } static const struct vpn_proto openconnect_protos[] = { { .name = "anyconnect", .pretty_name = N_("Cisco AnyConnect or openconnect"), .description = N_("Compatible with Cisco AnyConnect SSL VPN, as well as ocserv"), .proto = PROTO_ANYCONNECT, .flags = OC_PROTO_PROXY | OC_PROTO_CSD | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP | OC_PROTO_AUTH_STOKEN, .vpn_close_session = cstp_bye, .tcp_connect = cstp_connect, .tcp_mainloop = cstp_mainloop, .add_http_headers = cstp_common_headers, .obtain_cookie = cstp_obtain_cookie, .secure_cookie = "webvpn", .udp_protocol = "DTLS", #ifdef HAVE_DTLS .udp_setup = dtls_setup, .udp_mainloop = dtls_mainloop, .udp_close = dtls_close, .udp_shutdown = dtls_shutdown, #endif }, { .name = "nc", .pretty_name = N_("Juniper Network Connect"), .description = N_("Compatible with Juniper Network Connect"), .proto = PROTO_NC, .flags = OC_PROTO_PROXY | OC_PROTO_CSD | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP | OC_PROTO_AUTH_STOKEN | OC_PROTO_PERIODIC_TROJAN, .vpn_close_session = oncp_bye, .tcp_connect = oncp_connect, .tcp_mainloop = oncp_mainloop, .add_http_headers = oncp_common_headers, .obtain_cookie = oncp_obtain_cookie, .secure_cookie = "DSID", .udp_protocol = "ESP", #ifdef HAVE_ESP .udp_setup = esp_setup, .udp_mainloop = esp_mainloop, .udp_close = oncp_esp_close, .udp_shutdown = esp_shutdown, .udp_send_probes = oncp_esp_send_probes, .udp_catch_probe = oncp_esp_catch_probe, #endif }, { .name = "gp", .pretty_name = N_("Palo Alto Networks GlobalProtect"), .description = N_("Compatible with Palo Alto Networks (PAN) GlobalProtect SSL VPN"), .proto = PROTO_GPST, .flags = OC_PROTO_PROXY | OC_PROTO_CSD | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP | OC_PROTO_AUTH_STOKEN | OC_PROTO_PERIODIC_TROJAN, .vpn_close_session = gpst_bye, .tcp_connect = gpst_setup, .tcp_mainloop = gpst_mainloop, .add_http_headers = gpst_common_headers, .obtain_cookie = gpst_obtain_cookie, .udp_protocol = "ESP", #ifdef HAVE_ESP .udp_setup = esp_setup, .udp_mainloop = esp_mainloop, .udp_close = esp_close, .udp_shutdown = esp_shutdown, .udp_send_probes = gpst_esp_send_probes, .udp_catch_probe = gpst_esp_catch_probe, #endif }, { .name = "pulse", .pretty_name = N_("Pulse Connect Secure"), .description = N_("Compatible with Pulse Connect Secure SSL VPN"), .proto = PROTO_PULSE, .flags = OC_PROTO_PROXY | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP | OC_PROTO_AUTH_STOKEN, .vpn_close_session = pulse_bye, .tcp_connect = pulse_connect, .tcp_mainloop = pulse_mainloop, .add_http_headers = http_common_headers, .obtain_cookie = pulse_obtain_cookie, .udp_protocol = "ESP", #ifdef HAVE_ESP .udp_setup = esp_setup, .udp_mainloop = esp_mainloop, .udp_close = esp_close, .udp_shutdown = esp_shutdown, .udp_send_probes = oncp_esp_send_probes, .udp_catch_probe = oncp_esp_catch_probe, #endif }, { .name = "f5", .pretty_name = N_("F5 BIG-IP SSL VPN"), .description = N_("Compatible with F5 BIG-IP SSL VPN"), .proto = PROTO_F5, .flags = OC_PROTO_PROXY | OC_PROTO_AUTH_CERT, .vpn_close_session = f5_bye, .tcp_connect = f5_connect, .tcp_mainloop = ppp_tcp_mainloop, .add_http_headers = http_common_headers, .obtain_cookie = f5_obtain_cookie, .secure_cookie = "MRHSession", .udp_protocol = "DTLS", #ifdef HAVE_DTLS .udp_setup = dtls_setup, .udp_mainloop = ppp_udp_mainloop, .udp_close = dtls_close, .udp_shutdown = dtls_shutdown, .udp_catch_probe = f5_dtls_catch_probe, #endif }, { .name = "fortinet", .pretty_name = N_("Fortinet SSL VPN"), .description = N_("Compatible with FortiGate SSL VPN"), .proto = PROTO_FORTINET, .flags = OC_PROTO_PROXY | OC_PROTO_AUTH_CERT | OC_PROTO_AUTH_OTP | OC_PROTO_AUTH_STOKEN, .vpn_close_session = fortinet_bye, .tcp_connect = fortinet_connect, .tcp_mainloop = ppp_tcp_mainloop, .add_http_headers = fortinet_common_headers, .obtain_cookie = fortinet_obtain_cookie, .secure_cookie = "SVPNCOOKIE", .udp_protocol = "DTLS", #ifdef HAVE_DTLS .udp_setup = dtls_setup, .udp_mainloop = ppp_udp_mainloop, .udp_close = dtls_close, .udp_shutdown = dtls_shutdown, .udp_catch_probe = fortinet_dtls_catch_svrhello, #endif }, { .name = "nullppp", .pretty_name = N_("PPP over TLS"), .description = N_("Unauthenticated RFC1661/RFC1662 PPP over TLS, for testing"), .proto = PROTO_NULLPPP, .flags = OC_PROTO_PROXY | OC_PROTO_HIDDEN, .tcp_connect = nullppp_connect, .tcp_mainloop = nullppp_mainloop, .add_http_headers = http_common_headers, .obtain_cookie = nullppp_obtain_cookie, }, { .name = "array", .pretty_name = N_("Array SSL VPN"), .description = N_("Compatible with Array Networks SSL VPN"), .proto = PROTO_ARRAY, .flags = OC_PROTO_PROXY, .vpn_close_session = array_bye, .tcp_connect = array_connect, .tcp_mainloop = array_mainloop, .add_http_headers = http_common_headers, .obtain_cookie = array_obtain_cookie, .udp_protocol = "DTLS", #ifdef HAVE_DTLS .udp_setup = dtls_setup, .udp_mainloop = array_dtls_mainloop, .udp_close = dtls_close, .udp_shutdown = dtls_shutdown, #endif }, }; #define NR_PROTOS ARRAY_SIZE(openconnect_protos) int openconnect_get_supported_protocols(struct oc_vpn_proto **protos) { struct oc_vpn_proto *pr; int i, j; /* The original version of this function included an all-zero * sentinel value at the end of the array, so we must continue * to do so for ABI compatibility even though it's * functionally redundant as a marker of the array's length, * along with the explicit length in the return value. */ *protos = pr = calloc(NR_PROTOS + 1, sizeof(*pr)); if (!pr) return -ENOMEM; for (i = j = 0; i < NR_PROTOS; i++) { if (!(openconnect_protos[i].flags & OC_PROTO_HIDDEN)) { pr[j].name = openconnect_protos[i].name; pr[j].pretty_name = _(openconnect_protos[i].pretty_name); pr[j].description = _(openconnect_protos[i].description); pr[j].flags = openconnect_protos[i].flags; j++; } } return j; } void openconnect_free_supported_protocols(struct oc_vpn_proto *protos) { free((void *)protos); } const char *openconnect_get_protocol(struct openconnect_info *vpninfo) { return vpninfo->proto->name; } int openconnect_set_protocol(struct openconnect_info *vpninfo, const char *protocol) { const struct vpn_proto *p; int i; for (i = 0; i < NR_PROTOS; i++) { p = &openconnect_protos[i]; if (strcasecmp(p->name, protocol)) continue; vpninfo->proto = p; if (!p->udp_setup) vpninfo->dtls_state = DTLS_DISABLED; return 0; } vpn_progress(vpninfo, PRG_ERR, _("Unknown VPN protocol '%s'\n"), protocol); return -EINVAL; } void openconnect_set_pass_tos(struct openconnect_info *vpninfo, int enable) { vpninfo->dtls_pass_tos = enable; } void openconnect_set_loglevel(struct openconnect_info *vpninfo, int level) { vpninfo->verbose = level; } int openconnect_setup_dtls(struct openconnect_info *vpninfo, int attempt_period) { vpninfo->dtls_attempt_period = attempt_period; if (vpninfo->proto->udp_setup) return vpninfo->proto->udp_setup(vpninfo); vpn_progress(vpninfo, PRG_ERR, _("Built against SSL library with no Cisco DTLS support\n")); return -EINVAL; } int openconnect_obtain_cookie(struct openconnect_info *vpninfo) { #ifdef HAVE_LIBSTOKEN int ret; if (vpninfo->token_mode == OC_TOKEN_MODE_STOKEN) { ret = prepare_stoken(vpninfo); if (ret) return ret; } #endif return vpninfo->proto->obtain_cookie(vpninfo); } int openconnect_make_cstp_connection(struct openconnect_info *vpninfo) { int result = vpninfo->proto->tcp_connect(vpninfo); /* ssl_times.last_tx should be set to show that a connection has been setup */ if (result == 0 && vpninfo->ssl_times.last_tx == 0) vpninfo->ssl_times.last_tx = time(NULL); return result; } int openconnect_set_reported_os(struct openconnect_info *vpninfo, const char *os) { const char *allowed[] = {"linux", "linux-64", "win", "mac-intel", "android", "apple-ios"}; if (!os) { #if defined(__APPLE__) # include # if TARGET_OS_IOS /* We need to use Apple's boolean "target" defines to distinguish iOS from * desktop MacOS. See https://stackoverflow.com/a/5920028 and * https://github.com/mstg/iOS-full-sdk/blob/master/iPhoneOS9.3.sdk/usr/include/TargetConditionals.h#L64-L71 */ os = "apple-ios"; # else os = "mac-intel"; # endif #elif defined(__ANDROID__) os = "android"; #elif defined(_WIN32) os = "win"; #else os = sizeof(long) > 4 ? "linux-64" : "linux"; #endif } for (int i = 0; i < ARRAY_SIZE(allowed); i++) { if (!strcmp(os, allowed[i])) { STRDUP(vpninfo->platname, os); return 0; } } return -EINVAL; } int openconnect_set_mobile_info(struct openconnect_info *vpninfo, const char *mobile_platform_version, const char *mobile_device_type, const char *mobile_device_uniqueid) { STRDUP(vpninfo->mobile_platform_version, mobile_platform_version); STRDUP(vpninfo->mobile_device_type, mobile_device_type); STRDUP(vpninfo->mobile_device_uniqueid, mobile_device_uniqueid); return 0; } int openconnect_set_version_string(struct openconnect_info *vpninfo, const char *version_string) { STRDUP(vpninfo->version_string, version_string); return 0; } const char *add_option_dup(struct oc_vpn_option **list, const char *opt, const char *val, int val_len) { const char *ret; char *new_val; if (val_len >= 0) new_val = strndup(val, val_len); else new_val = strdup(val); ret = add_option_steal(list, opt, &new_val); free(new_val); return ret; } const char *add_option_steal(struct oc_vpn_option **list, const char *opt, char **val) { struct oc_vpn_option *new = malloc(sizeof(*new)); if (!new) return NULL; new->option = strdup(opt); if (!new->option) { free(new); return NULL; } new->value = *val; *val = NULL; new->next = *list; *list = new; return new->value; } const char *add_option_ipaddr(struct oc_vpn_option **list, const char *opt, int af, void *addr) { char buf[40]; if (!inet_ntop(af, addr, buf, sizeof(buf))) return NULL; return add_option_dup(list, opt, buf, -1); } void free_optlist(struct oc_vpn_option *opt) { struct oc_vpn_option *next; for (; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } } int install_vpn_opts(struct openconnect_info *vpninfo, struct oc_vpn_option *opt, struct oc_ip_info *ip_info) { /* XX: remove protocol-specific exceptions here, once we can test them * with F5 reconnections in addition to Juniper reconnections. See: * https://gitlab.com/openconnect/openconnect/-/merge_requests/293#note_702388182 */ if (!ip_info->addr && !ip_info->addr6 && !ip_info->netmask6) { if (vpninfo->proto->proto == PROTO_F5) { /* F5 doesn't get its IP address until it actually establishes the * PPP connection. */ } else if (vpninfo->proto->proto == PROTO_NC && vpninfo->ip_info.addr) { /* Juniper doesn't necessarily resend the Legacy IP address in the * event of a rekey/reconnection. */ ip_info->addr = add_option_dup(&opt, "ipaddr", vpninfo->ip_info.addr, -1); if (!ip_info->netmask && vpninfo->ip_info.netmask) ip_info->netmask = add_option_dup(&opt, "netmask", vpninfo->ip_info.netmask, -1); vpn_progress(vpninfo, PRG_DEBUG, _("No IP address received with Juniper rekey/reconnection.\n")); goto after_ip_checks; } else { /* For all other protocols, not receiving any IP address is an error */ vpn_progress(vpninfo, PRG_ERR, _("No IP address received. Aborting\n")); return -EINVAL; } } if (vpninfo->ip_info.addr) { if (!ip_info->addr || strcmp(ip_info->addr, vpninfo->ip_info.addr)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP address (%s != %s)\n"), ip_info->addr, vpninfo->ip_info.addr); /* EPERM means that the retry loop will abort and won't keep trying. */ return -EPERM; } } if (vpninfo->ip_info.netmask) { if (!ip_info->netmask || strcmp(ip_info->netmask, vpninfo->ip_info.netmask)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different Legacy IP netmask (%s != %s)\n"), ip_info->netmask, vpninfo->ip_info.netmask); return -EPERM; } } if (vpninfo->ip_info.addr6) { if (!ip_info->addr6 || strcmp(ip_info->addr6, vpninfo->ip_info.addr6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 address (%s != %s)\n"), ip_info->addr6, vpninfo->ip_info.addr6); return -EPERM; } } if (vpninfo->ip_info.netmask6) { if (!ip_info->netmask6 || strcmp(ip_info->netmask6, vpninfo->ip_info.netmask6)) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect gave different IPv6 netmask (%s != %s)\n"), ip_info->netmask6, vpninfo->ip_info.netmask6); return -EPERM; } } after_ip_checks: /* Preserve gateway_addr and MTU if they were set */ ip_info->gateway_addr = vpninfo->ip_info.gateway_addr; if (!ip_info->mtu) ip_info->mtu = vpninfo->ip_info.mtu; if (ip_info->mtu && ip_info->mtu < 1280 && (ip_info->addr6 || ip_info->netmask6)) { vpn_progress(vpninfo, PRG_ERR, _("IPv6 configuration received but MTU %d is too small.\n"), ip_info->mtu); } /* Free the original options */ free_split_routes(&vpninfo->ip_info); free_optlist(vpninfo->cstp_options); /* Install the new options */ vpninfo->cstp_options = opt; vpninfo->ip_info = *ip_info; return 0; } void openconnect_vpninfo_free(struct openconnect_info *vpninfo) { openconnect_close_https(vpninfo, 1); if (vpninfo->proto->udp_shutdown) vpninfo->proto->udp_shutdown(vpninfo); if (vpninfo->tncc_fd != -1) closesocket(vpninfo->tncc_fd); if (vpninfo->cmd_fd_write != -1) { closesocket(vpninfo->cmd_fd); closesocket(vpninfo->cmd_fd_write); } free(vpninfo->ppp); buf_free(vpninfo->ppp_tls_connect_req); buf_free(vpninfo->ppp_dtls_connect_req); #ifdef HAVE_ICONV if (vpninfo->ic_utf8_to_legacy != (iconv_t)-1) iconv_close(vpninfo->ic_utf8_to_legacy); if (vpninfo->ic_legacy_to_utf8 != (iconv_t)-1) iconv_close(vpninfo->ic_legacy_to_utf8); #endif #ifdef _WIN32 if (vpninfo->cmd_event) CloseHandle(vpninfo->cmd_event); if (vpninfo->ssl_event) CloseHandle(vpninfo->ssl_event); if (vpninfo->dtls_event) CloseHandle(vpninfo->dtls_event); free(vpninfo->ifname_w); #endif free(vpninfo->peer_addr); free(vpninfo->ip_info.gateway_addr); free_optlist(vpninfo->csd_env); free_optlist(vpninfo->script_env); free_optlist(vpninfo->cookies); free_optlist(vpninfo->cstp_options); free_optlist(vpninfo->dtls_options); free_split_routes(&vpninfo->ip_info); free(vpninfo->hostname); free(vpninfo->unique_hostname); buf_free(vpninfo->connect_urlbuf); free(vpninfo->urlpath); free(vpninfo->redirect_url); free_pass(&vpninfo->cookie); free(vpninfo->proxy_type); free(vpninfo->proxy); free(vpninfo->proxy_user); free_pass(&vpninfo->proxy_pass); free_pass(&vpninfo->certinfo[0].password); free(vpninfo->vpnc_script); free(vpninfo->cafile); free(vpninfo->ifname); free(vpninfo->dtls_cipher); free(vpninfo->peer_cert_hash); free(vpninfo->ciphersuite_config); #if defined(OPENCONNECT_OPENSSL) free(vpninfo->cstp_cipher); #if defined(HAVE_BIO_METH_FREE) if (vpninfo->ttls_bio_meth) BIO_meth_free(vpninfo->ttls_bio_meth); #endif #ifdef HAVE_DTLS free(vpninfo->dtls_cipher_desc); #endif #elif defined(OPENCONNECT_GNUTLS) gnutls_free(vpninfo->cstp_cipher); #ifdef HAVE_DTLS gnutls_free(vpninfo->dtls_cipher_desc); #endif #endif free(vpninfo->dtls_addr); if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); free(vpninfo->csd_scriptname); } free(vpninfo->mobile_platform_version); free(vpninfo->mobile_device_type); free(vpninfo->mobile_device_uniqueid); free(vpninfo->csd_token); free(vpninfo->csd_ticket); free(vpninfo->csd_stuburl); free(vpninfo->csd_starturl); free(vpninfo->csd_waiturl); free(vpninfo->csd_preurl); free(vpninfo->platname); if (vpninfo->opaque_srvdata) xmlFreeNode(vpninfo->opaque_srvdata); free(vpninfo->profile_url); free(vpninfo->profile_sha1); /* These are const in openconnect itself, but for consistency of the library API we do take ownership of the strings we're given, and thus we have to free them too. */ if (vpninfo->certinfo[0].cert != vpninfo->certinfo[0].key) free((void *)vpninfo->certinfo[0].key); free((void *)vpninfo->certinfo[0].cert); if (vpninfo->peer_cert) { #if defined(OPENCONNECT_OPENSSL) X509_free(vpninfo->peer_cert); #elif defined(OPENCONNECT_GNUTLS) gnutls_x509_crt_deinit(vpninfo->peer_cert); #endif vpninfo->peer_cert = NULL; } while (vpninfo->pin_cache) { struct pin_cache *cache = vpninfo->pin_cache; free(cache->token); memset(cache->pin, 0x5a, strlen(cache->pin)); free(cache->pin); vpninfo->pin_cache = cache->next; free(cache); } free(vpninfo->localname); free(vpninfo->useragent); free(vpninfo->authgroup); #ifdef HAVE_LIBSTOKEN if (vpninfo->stoken_pin) free_pass(&vpninfo->stoken_pin); if (vpninfo->stoken_ctx) stoken_destroy(vpninfo->stoken_ctx); #endif if (vpninfo->oath_secret) { #ifdef HAVE_LIBPSKC if (vpninfo->pskc) pskc_done(vpninfo->pskc); else #endif /* HAVE_LIBPSKC */ free_pass(&vpninfo->oath_secret); } #ifdef HAVE_LIBPCSCLITE release_pcsc_ctx(vpninfo); #endif #ifdef HAVE_LIBP11 if (vpninfo->pkcs11_ctx) { if (vpninfo->pkcs11_slot_list) PKCS11_release_all_slots(vpninfo->pkcs11_ctx, vpninfo->pkcs11_slot_list, vpninfo->pkcs11_slot_count); PKCS11_CTX_unload(vpninfo->pkcs11_ctx); PKCS11_CTX_free(vpninfo->pkcs11_ctx); } free(vpninfo->pkcs11_cert_id); #endif /* These check strm->state so they are safe to call multiple times */ inflateEnd(&vpninfo->inflate_strm); deflateEnd(&vpninfo->deflate_strm); #ifdef HAVE_EPOLL if (vpninfo->epoll_fd >= 0) close(vpninfo->epoll_fd); #endif free_pkt(vpninfo, vpninfo->deflate_pkt); free_pkt(vpninfo, vpninfo->tun_pkt); free_pkt(vpninfo, vpninfo->dtls_pkt); free_pkt(vpninfo, vpninfo->cstp_pkt); struct pkt *pkt; while ((pkt = dequeue_packet(&vpninfo->free_queue))) free(pkt); free(vpninfo->bearer_token); free(vpninfo); } const char *openconnect_get_connect_url(struct openconnect_info *vpninfo) { struct oc_text_buf *urlbuf = vpninfo->connect_urlbuf; if (!urlbuf) urlbuf = buf_alloc(); buf_append(urlbuf, "https://%s", vpninfo->hostname); if (vpninfo->port != 443) buf_append(urlbuf, ":%d", vpninfo->port); buf_append(urlbuf, "/"); /* Other protocols don't care and just leave noise from the * authentication process in ->urlpath. Pulse does care, and * you have to *connect* to a given usergroup at the correct * path, not just authenticate. * * https://gitlab.gnome.org/GNOME/NetworkManager-openconnect/-/issues/53 * https://gitlab.gnome.org/GNOME/NetworkManager-openconnect/-/merge_requests/22 */ if (vpninfo->proto->proto == PROTO_PULSE) buf_append(urlbuf, "%s", vpninfo->urlpath); if (buf_error(urlbuf)) { buf_free(urlbuf); vpninfo->connect_urlbuf = NULL; return NULL; } vpninfo->connect_urlbuf = urlbuf; return urlbuf->data; } const char *openconnect_get_hostname(struct openconnect_info *vpninfo) { return vpninfo->unique_hostname?:vpninfo->hostname; } const char *openconnect_get_dnsname(struct openconnect_info *vpninfo) { return vpninfo->hostname; } int openconnect_set_hostname(struct openconnect_info *vpninfo, const char *hostname) { UTF8CHECK(hostname); STRDUP(vpninfo->hostname, hostname); free(vpninfo->unique_hostname); vpninfo->unique_hostname = NULL; free(vpninfo->peer_addr); vpninfo->peer_addr = NULL; free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; return 0; } char *openconnect_get_urlpath(struct openconnect_info *vpninfo) { return vpninfo->urlpath; } int openconnect_set_urlpath(struct openconnect_info *vpninfo, const char *urlpath) { UTF8CHECK(urlpath); STRDUP(vpninfo->urlpath, urlpath); return 0; } int openconnect_set_localname(struct openconnect_info *vpninfo, const char *localname) { UTF8CHECK(localname); STRDUP(vpninfo->localname, localname); return 0; } void openconnect_set_xmlsha1(struct openconnect_info *vpninfo, const char *xmlsha1, int size) { if (size != sizeof(vpninfo->xmlsha1)) return; memcpy(&vpninfo->xmlsha1, xmlsha1, size); } int openconnect_disable_ipv6(struct openconnect_info *vpninfo) { /* This prevents disabling IPv6 when the connection is * currently connected or has been connected previously. * * XX: It would be better to allow it when currently * disconnected, but we currently have no way to indicate * a state in which IP and routing configuration are * unconfigured state. (Neither a closed TLS socket * nor tunnel socket is a reliable indicator.) */ if (!vpninfo->disable_ipv6 && vpninfo->ssl_times.last_tx != 0) return -EINVAL; vpninfo->disable_ipv6 = 1; return 0; } int openconnect_disable_dtls(struct openconnect_info *vpninfo) { /* This disables DTLS or ESP. It is prevented when the * connection is currently connected or has been * connected previously. * * XX: It would be better to allow it when DTLS is not * in use, but other than DTLS already being disabled, * we currently do not have a reliable indicator of * this. */ if (vpninfo->dtls_state != DTLS_NOSECRET || vpninfo->ssl_times.last_tx != 0) return -EINVAL; vpninfo->dtls_state = DTLS_DISABLED; return 0; } int openconnect_set_cafile(struct openconnect_info *vpninfo, const char *cafile) { UTF8CHECK(cafile); STRDUP(vpninfo->cafile, cafile); return 0; } void openconnect_set_system_trust(struct openconnect_info *vpninfo, unsigned val) { vpninfo->no_system_trust = !val; } const char *openconnect_get_ifname(struct openconnect_info *vpninfo) { return vpninfo->ifname; } void openconnect_set_reqmtu(struct openconnect_info *vpninfo, int reqmtu) { vpninfo->reqmtu = reqmtu; } void openconnect_set_dpd(struct openconnect_info *vpninfo, int min_seconds) { /* Make sure (ka->dpd / 2), our computed midway point, isn't 0 */ if (!min_seconds || min_seconds >= 2) vpninfo->dtls_times.dpd = vpninfo->ssl_times.dpd = min_seconds; else if (min_seconds == 1) vpninfo->dtls_times.dpd = vpninfo->ssl_times.dpd = 2; } void openconnect_set_trojan_interval(struct openconnect_info *vpninfo, int seconds) { vpninfo->trojan_interval = seconds; } int openconnect_get_idle_timeout(struct openconnect_info *vpninfo) { return vpninfo->idle_timeout; } time_t openconnect_get_auth_expiration(struct openconnect_info *vpninfo) { return vpninfo->auth_expiration; } int openconnect_get_ip_info(struct openconnect_info *vpninfo, const struct oc_ip_info **info, const struct oc_vpn_option **cstp_options, const struct oc_vpn_option **dtls_options) { if (info) *info = &vpninfo->ip_info; if (cstp_options) *cstp_options = vpninfo->cstp_options; if (dtls_options) *dtls_options = vpninfo->dtls_options; return 0; } int openconnect_setup_csd(struct openconnect_info *vpninfo, uid_t uid, int silent, const char *wrapper) { #ifndef _WIN32 vpninfo->uid_csd = uid; vpninfo->uid_csd_given = silent ? 2 : 1; #endif STRDUP(vpninfo->csd_wrapper, wrapper); return 0; } void openconnect_set_xmlpost(struct openconnect_info *vpninfo, int enable) { vpninfo->xmlpost = enable; } int openconnect_set_client_cert(struct openconnect_info *vpninfo, const char *cert, const char *sslkey) { UTF8CHECK(cert); UTF8CHECK(sslkey); /* Avoid freeing it twice if it's the same */ if (vpninfo->certinfo[0].key == vpninfo->certinfo[0].cert) vpninfo->certinfo[0].key = NULL; STRDUP(vpninfo->certinfo[0].cert, cert); if (sslkey) { STRDUP(vpninfo->certinfo[0].key, sslkey); } else { vpninfo->certinfo[0].key = vpninfo->certinfo[0].cert; } return 0; } int openconnect_get_port(struct openconnect_info *vpninfo) { return vpninfo->port; } const char *openconnect_get_cookie(struct openconnect_info *vpninfo) { return vpninfo->cookie; } void openconnect_clear_cookie(struct openconnect_info *vpninfo) { if (vpninfo->cookie) memset(vpninfo->cookie, 0, strlen(vpninfo->cookie)); } int openconnect_set_cookie(struct openconnect_info *vpninfo, const char *cookie) { UTF8CHECK(cookie); STRDUP(vpninfo->cookie, cookie); return 0; } void openconnect_reset_ssl(struct openconnect_info *vpninfo) { vpninfo->got_cancel_cmd = 0; openconnect_close_https(vpninfo, 0); free(vpninfo->peer_addr); vpninfo->peer_addr = NULL; vpninfo->dtls_tos_optname = 0; free(vpninfo->ip_info.gateway_addr); vpninfo->ip_info.gateway_addr = NULL; openconnect_clear_cookies(vpninfo); } int openconnect_parse_url(struct openconnect_info *vpninfo, const char *url) { char *scheme = NULL; int ret; UTF8CHECK(url); openconnect_set_hostname(vpninfo, NULL); free(vpninfo->urlpath); vpninfo->urlpath = NULL; ret = internal_parse_url(url, &scheme, &vpninfo->hostname, &vpninfo->port, &vpninfo->urlpath, 443); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server URL '%s'\n"), url); return ret; } if (scheme && strcmp(scheme, "https")) { vpn_progress(vpninfo, PRG_ERR, _("Only https:// permitted for server URL\n")); ret = -EINVAL; } free(scheme); return ret; } void openconnect_set_cert_expiry_warning(struct openconnect_info *vpninfo, int seconds) { vpninfo->cert_expire_warning = seconds; } int openconnect_set_key_password(struct openconnect_info *vpninfo, const char *pass) { STRDUP(vpninfo->certinfo[0].password, pass); return 0; } void openconnect_set_pfs(struct openconnect_info *vpninfo, unsigned val) { vpninfo->pfs = val; } int openconnect_set_allow_insecure_crypto(struct openconnect_info *vpninfo, unsigned val) { int ret = can_enable_insecure_crypto(); if (ret) return ret; vpninfo->allow_insecure_crypto = val; return 0; } void openconnect_set_cancel_fd(struct openconnect_info *vpninfo, int fd) { vpninfo->cmd_fd = fd; } #ifdef _WIN32 # define CMD_PIPE_ERR INVALID_SOCKET #else # define CMD_PIPE_ERR -EIO #endif OPENCONNECT_CMD_SOCKET openconnect_setup_cmd_pipe(struct openconnect_info *vpninfo) { OPENCONNECT_CMD_SOCKET pipefd[2]; #ifdef _WIN32 if (dumb_socketpair(pipefd, 0)) return CMD_PIPE_ERR; #else if (pipe(pipefd) < 0) return CMD_PIPE_ERR; #endif if (set_sock_nonblock(pipefd[0]) || set_sock_nonblock(pipefd[1])) { closesocket(pipefd[0]); closesocket(pipefd[1]); return CMD_PIPE_ERR; } vpninfo->cmd_fd = pipefd[0]; vpninfo->cmd_fd_write = pipefd[1]; vpninfo->need_poll_cmd_fd = 1; return vpninfo->cmd_fd_write; } const char *openconnect_get_version(void) { return openconnect_version_str; } int openconnect_has_pkcs11_support(void) { #if defined(OPENCONNECT_GNUTLS) && defined(HAVE_P11KIT) return 1; #elif defined(OPENCONNECT_OPENSSL) && defined(HAVE_LIBP11) return 1; #else return 0; #endif } #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) #include #endif int openconnect_has_tss_blob_support(void) { #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) ENGINE *e; ENGINE_load_builtin_engines(); e = ENGINE_by_id("tpm"); if (e) { ENGINE_free(e); return 1; } #elif defined(OPENCONNECT_GNUTLS) && defined(HAVE_TROUSERS) return 1; #endif return 0; } int openconnect_has_tss2_blob_support(void) { #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) ENGINE *e; ENGINE_load_builtin_engines(); e = ENGINE_by_id("tpm2"); if (e) { ENGINE_free(e); return 1; } #elif defined(OPENCONNECT_GNUTLS) && defined(HAVE_TSS2) return 1; #endif return 0; } int openconnect_has_stoken_support(void) { #ifdef HAVE_LIBSTOKEN return 1; #else return 0; #endif } int openconnect_has_oath_support(void) { return 2; } int openconnect_has_yubioath_support(void) { #ifdef HAVE_LIBPCSCLITE return 1; #else return 0; #endif } int openconnect_has_system_key_support(void) { #ifdef HAVE_GNUTLS_SYSTEM_KEYS return 1; #else return 0; #endif } int openconnect_set_token_callbacks(struct openconnect_info *vpninfo, void *tokdata, openconnect_lock_token_vfn lock, openconnect_unlock_token_vfn unlock) { vpninfo->lock_token = lock; vpninfo->unlock_token = unlock; vpninfo->tok_cbdata = tokdata; return 0; } /* * Enable software token generation. * * If token_mode is OC_TOKEN_MODE_STOKEN and token_str is NULL, * read the token data from ~/.stokenrc. * * Return value: * = -EILSEQ, if token_str is not valid UTF-8 * = -EOPNOTSUPP, if the underlying library (libstoken, liboath) is not * available or an invalid token_mode was provided * = -EINVAL, if the token string is invalid (token_str was provided) * = -ENOENT, if token_mode is OC_TOKEN_MODE_STOKEN and ~/.stokenrc is * missing (token_str was NULL) * = -EIO, for other failures in the underlying library (libstoken, liboath) * = 0, on success */ int openconnect_set_token_mode(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str) { vpninfo->token_mode = OC_TOKEN_MODE_NONE; UTF8CHECK(token_str); switch (token_mode) { case OC_TOKEN_MODE_NONE: return 0; case OC_TOKEN_MODE_TOTP: case OC_TOKEN_MODE_HOTP: return set_oath_mode(vpninfo, token_str, token_mode); #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return set_libstoken_mode(vpninfo, token_str); #endif #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return set_yubikey_mode(vpninfo, token_str); #endif case OC_TOKEN_MODE_OIDC: return set_oidc_token(vpninfo, token_str); default: return -EOPNOTSUPP; } } /* * Enable libstoken token generation if use_stoken == 1. * * If token_str is not NULL, try to parse the string. Otherwise, try to read * the token data from ~/.stokenrc * * DEPRECATED: use openconnect_set_stoken_mode() instead. * * Return value: * = -EILSEQ, if token_str is not valid UTF-8 * = -EOPNOTSUPP, if libstoken is not available * = -EINVAL, if the token string is invalid (token_str was provided) * = -ENOENT, if ~/.stokenrc is missing (token_str was NULL) * = -EIO, for other libstoken failures * = 0, on success */ int openconnect_set_stoken_mode(struct openconnect_info *vpninfo, int use_stoken, const char *token_str) { oc_token_mode_t token_mode = OC_TOKEN_MODE_NONE; if (use_stoken) token_mode = OC_TOKEN_MODE_STOKEN; return openconnect_set_token_mode(vpninfo, token_mode, token_str); } void openconnect_set_protect_socket_handler(struct openconnect_info *vpninfo, openconnect_protect_socket_vfn protect_socket) { vpninfo->protect_socket = protect_socket; } void openconnect_override_getaddrinfo(struct openconnect_info *vpninfo, openconnect_getaddrinfo_vfn gai_fn) { vpninfo->getaddrinfo_override = gai_fn; } void openconnect_set_setup_tun_handler(struct openconnect_info *vpninfo, openconnect_setup_tun_vfn setup_tun) { vpninfo->setup_tun = setup_tun; } void openconnect_set_reconnected_handler(struct openconnect_info *vpninfo, openconnect_reconnected_vfn reconnected) { vpninfo->reconnected = reconnected; } void openconnect_set_stats_handler(struct openconnect_info *vpninfo, openconnect_stats_vfn stats_handler) { vpninfo->stats_handler = stats_handler; } /* Set up a traditional OS-based tunnel device, optionally specified in 'ifname'. */ int openconnect_setup_tun_device(struct openconnect_info *vpninfo, const char *vpnc_script, const char *ifname) { intptr_t tun_fd; char *legacy_ifname; UTF8CHECK(vpnc_script); UTF8CHECK(ifname); STRDUP(vpninfo->vpnc_script, vpnc_script); STRDUP(vpninfo->ifname, ifname); prepare_script_env(vpninfo); /* XX: vpninfo->ifname will only be non-NULL here if set by the -i option, which only works on some platforms (see os_setup_tun implementations) */ legacy_ifname = vpninfo->ifname ? openconnect_utf8_to_legacy(vpninfo, vpninfo->ifname) : NULL; script_setenv(vpninfo, "TUNDEV", legacy_ifname, 0, 0); if (legacy_ifname != vpninfo->ifname) free(legacy_ifname); script_config_tun(vpninfo, "pre-init"); tun_fd = os_setup_tun(vpninfo); if (tun_fd < 0) return tun_fd; #ifdef _WIN32 if (vpninfo->tun_idx != -1) script_setenv_int(vpninfo, "TUNIDX", vpninfo->tun_idx); #endif /* XX: os_setup_tun has set (or even changed) ifname */ legacy_ifname = openconnect_utf8_to_legacy(vpninfo, vpninfo->ifname); script_setenv(vpninfo, "TUNDEV", legacy_ifname, 0, 0); if (legacy_ifname != vpninfo->ifname) free(legacy_ifname); script_config_tun(vpninfo, "connect"); return openconnect_setup_tun_fd(vpninfo, tun_fd); } static const char *compr_name_map[] = { [COMPR_DEFLATE] = "Deflate", [COMPR_LZS] = "LZS", [COMPR_LZ4] = "LZ4", [COMPR_LZO] = "LZO", }; const char *openconnect_get_cstp_compression(struct openconnect_info * vpninfo) { if (vpninfo->cstp_compr <= 0 || vpninfo->cstp_compr > COMPR_MAX) return NULL; return compr_name_map[vpninfo->cstp_compr]; } const char *openconnect_get_dtls_compression(struct openconnect_info * vpninfo) { if (vpninfo->dtls_compr <= 0 || vpninfo->dtls_compr > COMPR_MAX) return NULL; return compr_name_map[vpninfo->dtls_compr]; } const char *openconnect_get_dtls_cipher(struct openconnect_info *vpninfo) { if (vpninfo->dtls_state < DTLS_CONNECTED || !vpninfo->dtls_ssl) { #if defined(OPENCONNECT_GNUTLS) gnutls_free(vpninfo->dtls_cipher_desc); #else free(vpninfo->dtls_cipher_desc); #endif vpninfo->dtls_cipher_desc = NULL; return NULL; } /* in DTLS rehandshakes don't switch the ciphersuite as only * one is enabled. */ if (vpninfo->dtls_cipher_desc == NULL) { #if defined(OPENCONNECT_GNUTLS) vpninfo->dtls_cipher_desc = get_gnutls_cipher(vpninfo->dtls_ssl); #else if (asprintf(&vpninfo->dtls_cipher_desc, "%s-%s", SSL_get_version(vpninfo->dtls_ssl), SSL_get_cipher_name(vpninfo->dtls_ssl)) < 0) return NULL; #endif } return vpninfo->dtls_cipher_desc; } int openconnect_set_csd_environ(struct openconnect_info *vpninfo, const char *name, const char *value) { struct oc_vpn_option *p; if (!name) { free_optlist(vpninfo->csd_env); vpninfo->csd_env = NULL; return 0; } for (p = vpninfo->csd_env; p; p = p->next) { if (!strcmp(name, p->option)) { char *valdup = strdup(value); if (!valdup) return -ENOMEM; free(p->value); p->value = valdup; return 0; } } p = malloc(sizeof(*p)); if (!p) return -ENOMEM; p->option = strdup(name); if (!p->option) { free(p); return -ENOMEM; } p->value = strdup(value); if (!p->value) { free(p->option); free(p); return -ENOMEM; } p->next = vpninfo->csd_env; vpninfo->csd_env = p; return 0; } int openconnect_check_peer_cert_hash(struct openconnect_info *vpninfo, const char *old_hash) { char *fingerprint = NULL; const unsigned min_match_len = 4; unsigned old_len, fingerprint_len; int case_sensitive = 0; int ret = 0; if (strchr(old_hash, ':')) { /* These are hashes of the public key not the full cert. */ if (strncmp(old_hash, "sha1:", 5) == 0) { old_hash += 5; fingerprint = openconnect_bin2hex(NULL, vpninfo->peer_cert_sha1_raw, sizeof(vpninfo->peer_cert_sha1_raw)); } else if (strncmp(old_hash, "sha256:", 7) == 0) { old_hash += 7; fingerprint = openconnect_bin2hex(NULL, vpninfo->peer_cert_sha256_raw, sizeof(vpninfo->peer_cert_sha256_raw)); } else if (strncmp(old_hash, "pin-sha256:", 11) == 0) { old_hash += 11; fingerprint = openconnect_bin2base64(NULL, vpninfo->peer_cert_sha256_raw, sizeof(vpninfo->peer_cert_sha256_raw)); case_sensitive = 1; } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown certificate hash: %s.\n"), old_hash); return -EIO; } } else { /* Not the same as the sha1: case above, because this hashes the full cert */ unsigned char *cert; int len; unsigned char sha1_bin[SHA1_SIZE]; len = openconnect_get_peer_cert_DER(vpninfo, &cert); if (len < 0) return len; if (openconnect_sha1(sha1_bin, cert, len)) { free(cert); return -EIO; } free(cert); fingerprint = openconnect_bin2hex(NULL, sha1_bin, sizeof(sha1_bin)); } if (!fingerprint) return -EIO; old_len = strlen(old_hash); fingerprint_len = strlen(fingerprint); if (old_len > fingerprint_len) ret = 1; else if (case_sensitive ? strncmp(old_hash, fingerprint, old_len) : strncasecmp(old_hash, fingerprint, old_len)) ret = 1; else if (old_len < min_match_len) { vpn_progress(vpninfo, PRG_ERR, _("The size of the provided fingerprint is less than the minimum required (%u).\n"), min_match_len); ret = 1; } free(fingerprint); return ret; } const char *openconnect_get_cstp_cipher(struct openconnect_info *vpninfo) { return vpninfo->cstp_cipher; } const char *openconnect_get_peer_cert_hash(struct openconnect_info *vpninfo) { if (vpninfo->peer_cert_hash == NULL) vpninfo->peer_cert_hash = openconnect_bin2base64("pin-sha256:", vpninfo->peer_cert_sha256_raw, sizeof(vpninfo->peer_cert_sha256_raw)); return vpninfo->peer_cert_hash; } int openconnect_set_compression_mode(struct openconnect_info *vpninfo, oc_compression_mode_t mode) { switch(mode) { case OC_COMPRESSION_MODE_NONE: vpninfo->req_compr = 0; return 0; case OC_COMPRESSION_MODE_STATELESS: vpninfo->req_compr = COMPR_STATELESS; return 0; case OC_COMPRESSION_MODE_ALL: vpninfo->req_compr = COMPR_ALL; return 0; default: return -EINVAL; } } void nuke_opt_values(struct oc_form_opt *opt) { for (; opt; opt = opt->next) { if (opt->type == OC_FORM_OPT_TEXT || opt->type == OC_FORM_OPT_PASSWORD) { free(opt->_value); opt->_value = NULL; } } } int process_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form) { int ret; struct oc_form_opt_select *grp = form->authgroup_opt; struct oc_choice *auth_choice; struct oc_form_opt *opt; if (!vpninfo->process_auth_form) { vpn_progress(vpninfo, PRG_ERR, _("No form handler; cannot authenticate.\n")); return OC_FORM_RESULT_ERR; } if (!form->auth_id) { vpn_progress(vpninfo, PRG_ERR, _("No form ID. This is a bug in OpenConnect's authentication code.\n")); return OC_FORM_RESULT_ERR; } retry: auth_choice = NULL; if (grp && grp->nr_choices) { /* Set group selection from authgroup */ if (vpninfo->authgroup) { int i; for (i = 0; i < grp->nr_choices; i++) if (!strcmp(grp->choices[i]->name, vpninfo->authgroup)) form->authgroup_selection = i; } auth_choice = grp->choices[form->authgroup_selection]; } for (opt = form->opts; opt; opt = opt->next) { int second_auth = opt->flags & OC_FORM_OPT_SECOND_AUTH; opt->flags &= ~OC_FORM_OPT_IGNORE; if (!auth_choice || (opt->type != OC_FORM_OPT_TEXT && opt->type != OC_FORM_OPT_PASSWORD)) continue; if (auth_choice->noaaa || (!auth_choice->second_auth && second_auth)) opt->flags |= OC_FORM_OPT_IGNORE; else if (!strcmp(opt->name, "secondary_username") && second_auth) { if (auth_choice->secondary_username) { free(opt->_value); opt->_value = strdup(auth_choice->secondary_username); } if (!auth_choice->secondary_username_editable) opt->flags |= OC_FORM_OPT_IGNORE; } } ret = vpninfo->process_auth_form(vpninfo->cbdata, form); if (ret == OC_FORM_RESULT_NEWGROUP && form->authgroup_opt && form->authgroup_opt->form._value) { free(vpninfo->authgroup); vpninfo->authgroup = strdup(form->authgroup_opt->form._value); if (!vpninfo->xmlpost) goto retry; } if (ret == OC_FORM_RESULT_CANCELLED || ret < 0) nuke_opt_values(form->opts); return ret; } void openconnect_set_webview_callback(struct openconnect_info *vpninfo, openconnect_open_webview_vfn webview_fn) { return; } int openconnect_webview_load_changed(struct openconnect_info *vpninfo, const struct oc_webview_result *result) { return -EOPNOTSUPP; } openconnect-8.20/auth-juniper.c0000644000076400007640000004073114171606260020317 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Grateful thanks to Tiebing Zhang, who did much of the hard work * of analysing and decoding the protocol. */ #include #include "openconnect-internal.h" #include #include #include #include #include #ifndef _WIN32 #include #endif #include #include #include #include #include #include #include /* XX: This is actually a lot of duplication with the CSTP version. */ void oncp_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { http_common_headers(vpninfo, buf); // buf_append(buf, "Content-Length: 256\r\n"); buf_append(buf, "NCP-Version: 3\r\n"); // buf_append(buf, "Accept-Encoding: gzip\r\n"); } static int oncp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_mode == OC_TOKEN_MODE_NONE || vpninfo->token_bypassed) return -EINVAL; if (opt->type == OC_FORM_OPT_PASSWORD && (!strcmp(form->auth_id, "frmLogin") || !strcmp(form->auth_id, "loginForm"))) { /* XX: The first occurrence of a password input field in frmLogin is likely to be a password, * not token, input. However, if we have already added a password input field to this form, * then a second one is likely to hold a token. */ struct oc_form_opt *p; for (p = form->opts; p; p = p->next) { if (p->type == OC_FORM_OPT_PASSWORD) goto okay; } return -EINVAL; } if (strcmp(form->auth_id, "frmDefender") && strcmp(form->auth_id, "frmNextToken") && strcmp(form->auth_id, "frmTotpToken") && strcmp(form->auth_id, "loginForm")) return -EINVAL; okay: return can_gen_tokencode(vpninfo, form, opt); } int oncp_send_tncc_command(struct openconnect_info *vpninfo, int start) { const char *dspreauth = vpninfo->csd_token, *dsurl = vpninfo->csd_starturl ? : "null"; struct oc_text_buf *buf; buf = buf_alloc(); if (start) { buf_append(buf, "start\n"); buf_append(buf, "IC=%s\n", vpninfo->hostname); buf_append(buf, "Cookie=%s\n", dspreauth); buf_append(buf, "DSSIGNIN=%s\n", dsurl); } else { buf_append(buf, "setcookie\n"); buf_append(buf, "Cookie=%s\n", dspreauth); } if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory for communication with TNCC\n")); return buf_free(buf); } if (cancellable_send(vpninfo, vpninfo->tncc_fd, buf->data, buf->pos) != buf->pos) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send command to TNCC\n")); buf_free(buf); return -EIO; } /* Mainloop timers need to know the last Trojan was invoked */ vpninfo->last_trojan = time(NULL); return buf_free(buf); } static int check_cookie_success(struct openconnect_info *vpninfo) { const char *dslast = NULL, *dsfirst = NULL, *dsurl = NULL, *dsid = NULL; struct oc_vpn_option *cookie; struct oc_text_buf *buf; for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "DSFirstAccess")) dsfirst = cookie->value; else if (!strcmp(cookie->option, "DSLastAccess")) dslast = cookie->value; else if (!strcmp(cookie->option, "DSID")) dsid = cookie->value; else if (!strcmp(cookie->option, "DSSignInUrl")) dsurl = cookie->value; else if (!strcmp(cookie->option, "DSSIGNIN")) { free(vpninfo->csd_starturl); vpninfo->csd_starturl = strdup(cookie->value); } else if (!strcmp(cookie->option, "DSPREAUTH")) { free(vpninfo->csd_token); vpninfo->csd_token = strdup(cookie->value); } } if (!dsid) return -ENOENT; if (vpninfo->tncc_fd != -1) { /* update TNCC once we get a DSID cookie */ oncp_send_tncc_command(vpninfo, 0); } /* XXX: Do these need escaping? Could they theoreetically have semicolons in? */ buf = buf_alloc(); buf_append(buf, "DSID=%s", dsid); if (dsfirst) buf_append(buf, "; DSFirst=%s", dsfirst); if (dslast) buf_append(buf, "; DSLast=%s", dslast); if (dsurl) buf_append(buf, "; DSSignInUrl=%s", dsurl); if (buf_error(buf)) return buf_free(buf); free(vpninfo->cookie); vpninfo->cookie = buf->data; buf->data = NULL; buf_free(buf); return 0; } #ifdef _WIN32 static int tncc_preauth(struct openconnect_info *vpninfo) { vpn_progress(vpninfo, PRG_ERR, _("TNCC support not implemented yet on Windows\n")); return -EOPNOTSUPP; } #else static int tncc_preauth(struct openconnect_info *vpninfo) { int sockfd[2]; pid_t pid; const char *dspreauth = vpninfo->csd_token; char recvbuf[1024]; int len, count, ret; if (!dspreauth) { vpn_progress(vpninfo, PRG_ERR, _("No DSPREAUTH cookie; not attempting TNCC\n")); return -EINVAL; } vpn_progress(vpninfo, PRG_INFO, _("Trying to run TNCC/Host Checker Trojan script '%s'.\n"), vpninfo->csd_wrapper); #ifdef SOCK_CLOEXEC if (socketpair(AF_UNIX, SOCK_STREAM | SOCK_CLOEXEC, 0, sockfd)) #endif { if (socketpair(AF_UNIX, SOCK_STREAM, 0, sockfd)) return -errno; set_fd_cloexec(sockfd[0]); set_fd_cloexec(sockfd[1]); } pid = fork(); if (pid == -1) { close(sockfd[0]); close(sockfd[1]); return -errno; } if (!pid) { int i; /* Fork again to detach grandchild */ if (fork()) exit(1); close(sockfd[1]); /* The duplicated fd does not have O_CLOEXEC */ dup2(sockfd[0], 0); /* We really don't want anything going to our stdout. Redirect the child's stdout, to our stderr. */ dup2(2, 1); /* And close everything else.*/ for (i = 3; i < 1024 ; i++) close(i); if (setenv("TNCC_SHA256", openconnect_get_peer_cert_hash(vpninfo)+11, 1)) /* remove initial 'pin-sha256:' */ goto out; if (setenv("TNCC_HOSTNAME", vpninfo->localname, 1)) goto out; if (!vpninfo->trojan_interval) { char is[32]; snprintf(is, 32, "%d", vpninfo->trojan_interval); if (setenv("TNCC_INTERVAL", is, 1)) goto out; } execl(vpninfo->csd_wrapper, vpninfo->csd_wrapper, vpninfo->hostname, NULL); out: fprintf(stderr, _("Failed to exec TNCC script %s: %s\n"), vpninfo->csd_wrapper, strerror(errno)); exit(1); } waitpid(pid, NULL, 0); close(sockfd[0]); vpninfo->tncc_fd = sockfd[1]; ret = oncp_send_tncc_command(vpninfo, 1); if (ret < 0) { err: close(vpninfo->tncc_fd); vpninfo->tncc_fd = -1; return ret; } vpn_progress(vpninfo, PRG_DEBUG, _("Sent start; waiting for response from TNCC\n")); /* First line: HTTP-like response code. */ len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) { respfail: vpn_progress(vpninfo, PRG_ERR, _("Failed to read response from TNCC\n")); ret = -EIO; goto err; } if (strcmp(recvbuf, "200")) { vpn_progress(vpninfo, PRG_ERR, _("Received unsuccessful %s response from TNCC\n"), recvbuf); ret = -EINVAL; goto err; } vpn_progress(vpninfo, PRG_TRACE, _("TNCC response 200 OK\n")); /* We're not sure what the second line is. We ignore it. */ len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) goto respfail; vpn_progress(vpninfo, PRG_TRACE, _("Second line of TNCC response: '%s'\n"), recvbuf); /* Third line is the DSPREAUTH cookie */ len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) goto respfail; vpn_progress(vpninfo, PRG_DEBUG, _("Got new DSPREAUTH cookie from TNCC: %s\n"), recvbuf); http_add_cookie(vpninfo, "DSPREAUTH", recvbuf, 1); /* Fourth line, if present, is the interval to rerun TNCC */ len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) goto respfail; if (len > 0) { int interval = atoi(recvbuf); if (interval != 0) { vpninfo->trojan_interval = interval; vpn_progress(vpninfo, PRG_DEBUG, _("Got reauth interval from TNCC: %d seconds\n"), interval); } } count = 0; do { len = cancellable_gets(vpninfo, sockfd[1], recvbuf, sizeof(recvbuf)); if (len < 0) goto respfail; if (len > 0) vpn_progress(vpninfo, PRG_DEBUG, _("Unexpected non-empty line from TNCC after DSPREAUTH cookie: '%s'\n"), recvbuf); } while (len && (count++ < 10)); if (len > 0) { vpn_progress(vpninfo, PRG_ERR, _("Too many non-empty lines from TNCC after DSPREAUTH cookie\n")); goto respfail; } return 0; } #endif static struct oc_auth_form *parse_roles_table_node(xmlNodePtr node) { struct oc_auth_form *form; xmlNodePtr table_itr; xmlNodePtr row_itr; xmlNodePtr data_itr; struct oc_form_opt_select *opt; struct oc_choice *choice; form = calloc(1, sizeof(*form)); if (!form) return NULL; form->auth_id = strdup("frmSelectRoles"); if (!form->auth_id) { free(form); return NULL; }; opt = calloc(1, sizeof(*opt)); if (!opt) { free_auth_form(form); return NULL; } form->opts = &opt->form; opt->form.label = strdup("frmSelectRoles"); opt->form.name = strdup("frmSelectRoles"); opt->form.type = OC_FORM_OPT_SELECT; form->authgroup_opt = opt; /* XX: --authgroup also sets realm field (see parse_select_node in auth-html.c) */ for (table_itr = node->children; table_itr; table_itr = table_itr->next) { if (!table_itr->name || strcasecmp((const char *)table_itr->name, "tr")) continue; for (row_itr = table_itr->children; row_itr; row_itr = row_itr->next) { if (!row_itr->name || strcasecmp((const char *)row_itr->name, "td")) continue; for (data_itr = row_itr->children; data_itr; data_itr = data_itr->next) { struct oc_choice **new_choices; char *role_link = NULL; char *role_name = NULL; if (!data_itr->name || strcasecmp((const char *)data_itr->name, "a")) continue; // Discovered tag with role selection. role_link = (char *)xmlGetProp(data_itr, (unsigned char *)"href"); if (!role_link) continue; role_name = (char *)xmlNodeGetContent(data_itr); if (!role_name) { // some weird case? free(role_link); continue; } choice = calloc(1, sizeof(*choice)); if (!choice) { free(role_name); free(role_link); free_auth_form(form); return NULL; } choice->label = role_name; choice->name = role_link; new_choices = realloc(opt->choices, sizeof(opt->choices[0]) * (opt->nr_choices+1)); if (!new_choices) { free(choice); free(role_name); free(role_link); free_auth_form(form); return NULL; } opt->choices = new_choices; opt->choices[opt->nr_choices++] = choice; } } } return form; } static struct oc_auth_form *parse_roles_form_node(xmlNodePtr node) { struct oc_auth_form *form = NULL; xmlNodePtr child; // Set form->action here as a redirect url with keys and ids. for (child = htmlnode_dive(node, node); child && child != node; child = htmlnode_dive(node, child)) { if (child->name && !strcasecmp((char *)child->name, "table")) { char *table_id = (char *)xmlGetProp(child, (unsigned char *)"id"); if (table_id) { if (!strcmp(table_id, "TABLE_SelectRole_1")) form = parse_roles_table_node(child); free(table_id); if (form) break; } } } return form; } int oncp_obtain_cookie(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *resp_buf = NULL; xmlDocPtr doc = NULL; xmlNodePtr node; struct oc_auth_form *form = NULL; char *form_name = NULL, *form_id = NULL; int try_tncc = !!vpninfo->csd_wrapper; resp_buf = buf_alloc(); if (buf_error(resp_buf)) { ret = buf_error(resp_buf); goto out; } while (1) { char *form_buf = NULL; int role_select = 0; char *url; if (resp_buf && resp_buf->pos) ret = do_https_request(vpninfo, "POST", "application/x-www-form-urlencoded", resp_buf, &form_buf, NULL, HTTP_REDIRECT_TO_GET); else ret = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, NULL, HTTP_REDIRECT_TO_GET); /* After login, the server will redirect the "browser" to a landing page. * https://kb.pulsesecure.net/articles/Pulse_Security_Advisories/SA44784 * turned some of those landing pages into a 403 but we don't *care* * about that as long as we have the cookie we wanted. So check for * cookie success *before* checking 'ret'. */ if (!check_cookie_success(vpninfo)) { free(form_buf); ret = 0; break; } if (ret < 0) break; url = internal_get_url(vpninfo); if (!url) { free(form_buf); ret = -ENOMEM; break; } doc = htmlReadMemory(form_buf, ret, url, NULL, HTML_PARSE_RECOVER|HTML_PARSE_NOERROR|HTML_PARSE_NOWARNING|HTML_PARSE_NONET); free(url); free(form_buf); if (!doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse HTML document\n")); ret = -EINVAL; break; } buf_truncate(resp_buf); node = find_form_node(doc); if (!node) { if (try_tncc) { try_tncc = 0; ret = tncc_preauth(vpninfo); if (ret) return ret; goto tncc_done; } vpn_progress(vpninfo, PRG_ERR, _("Failed to find or parse web form in login page\n")); ret = -EINVAL; break; } free(form_name); free(form_id); form_name = (char *)xmlGetProp(node, (unsigned char *)"name"); form_id = (char *)xmlGetProp(node, (unsigned char *)"id"); if (!form_name && !form_id) { vpn_progress(vpninfo, PRG_ERR, _("Encountered form with no 'name' or 'id'\n")); goto dump_form; } else if (form_name && !strcmp(form_name, "frmLogin")) { form = parse_form_node(vpninfo, node, "btnSubmit", oncp_can_gen_tokencode); } else if (form_id && !strcmp(form_id, "loginForm")) { form = parse_form_node(vpninfo, node, "submitButton", oncp_can_gen_tokencode); } else if ((form_name && !strcmp(form_name, "frmDefender")) || (form_name && !strcmp(form_name, "frmNextToken"))) { form = parse_form_node(vpninfo, node, "btnAction", oncp_can_gen_tokencode); } else if (form_name && !strcmp(form_name, "frmConfirmation")) { form = parse_form_node(vpninfo, node, "btnContinue", oncp_can_gen_tokencode); if (!form) { ret = -EINVAL; break; } /* XXX: Actually ask the user? */ goto form_done; } else if (form_name && !strcmp(form_name, "frmSelectRoles")) { form = parse_roles_form_node(node); role_select = 1; } else if (form_name && !strcmp(form_name, "frmTotpToken")) { form = parse_form_node(vpninfo, node, "totpactionEnter", oncp_can_gen_tokencode); } else if ((form_name && !strcmp(form_name, "hiddenform")) || (form_id && !strcmp(form_id, "formSAMLSSO"))) { form = parse_form_node(vpninfo, node, "submit", oncp_can_gen_tokencode); } else { char *form_action = (char *)xmlGetProp(node, (unsigned char *)"action"); if (form_action && strstr(form_action, "remediate.cgi")) { vpn_progress(vpninfo, PRG_ERR, _("Form action (%s) likely indicates that TNCC/Host Checker failed.\n"), form_action); } free(form_action); vpn_progress(vpninfo, PRG_ERR, _("Unknown form (name '%s', id '%s')\n"), form_name, form_id); dump_form: fprintf(stderr, _("Dumping unknown HTML form:\n")); htmlNodeDumpFileFormat(stderr, node->doc, node, NULL, 1); ret = -EINVAL; break; } if (!form) { ret = -EINVAL; break; } do { ret = process_auth_form(vpninfo, form); } while (ret == OC_FORM_RESULT_NEWGROUP); if (ret) goto out; ret = do_gen_tokencode(vpninfo, form); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; goto out; } /* frmSelectRoles is special; it's actually *links*, not a form. So * we need to process it differently... */ if (role_select) { vpninfo->redirect_url = strdup(form->opts[0]._value); goto do_redirect; } form_done: append_form_opts(vpninfo, form, resp_buf); ret = buf_error(resp_buf); if (ret) break; if (form->action) { vpninfo->redirect_url = form->action; form->action = NULL; } do_redirect: free_auth_form(form); form = NULL; if (vpninfo->redirect_url) handle_redirect(vpninfo); tncc_done: xmlFreeDoc(doc); doc = NULL; } out: if (doc) xmlFreeDoc(doc); free(form_name); free(form_id); if (form) free_auth_form(form); buf_free(resp_buf); return ret; } openconnect-8.20/oidc.c0000644000076400007640000000237314067426206016626 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Microsoft Corp * * Author: Alan Jowett * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include int set_oidc_token(struct openconnect_info *vpninfo, const char *token_str) { int ret; char *file_token = NULL; if (!token_str) return -ENOENT; switch(token_str[0]) { case '@': token_str++; /* fall through */ case '/': ret = openconnect_read_file(vpninfo, token_str, &file_token); if (ret < 0) return ret; vpninfo->bearer_token = file_token; break; default: vpninfo->bearer_token = strdup(token_str); if (!vpninfo->bearer_token) return -ENOMEM; } vpninfo->token_mode = OC_TOKEN_MODE_OIDC; return 0; } openconnect-8.20/esp.c0000644000076400007640000003344314171606260016475 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "lzo.h" #include #include #include #include #include #include int print_esp_keys(struct openconnect_info *vpninfo, const char *name, struct esp *esp) { int i; const char *enctype, *mactype; char enckey[256], mackey[256]; switch(vpninfo->esp_enc) { case ENC_AES_128_CBC: enctype = "AES-128-CBC (RFC3602)"; break; case ENC_AES_256_CBC: enctype = "AES-256-CBC (RFC3602)"; break; default: return -EINVAL; } switch(vpninfo->esp_hmac) { case HMAC_MD5: mactype = "HMAC-MD5-96 (RFC2403)"; break; case HMAC_SHA1: mactype = "HMAC-SHA-1-96 (RFC2404)"; break; case HMAC_SHA256: mactype = "HMAC-SHA-256-128 (RFC4868)"; break; default: return -EINVAL; } for (i = 0; i < vpninfo->enc_key_len; i++) sprintf(enckey + (2 * i), "%02x", esp->enc_key[i]); for (i = 0; i < vpninfo->hmac_key_len; i++) sprintf(mackey + (2 * i), "%02x", esp->hmac_key[i]); vpn_progress(vpninfo, PRG_TRACE, _("Parameters for %s ESP: SPI 0x%08x\n"), name, (unsigned)ntohl(esp->spi)); vpn_progress(vpninfo, PRG_TRACE, _("ESP encryption type %s key 0x%s\n"), enctype, enckey); vpn_progress(vpninfo, PRG_TRACE, _("ESP authentication type %s key 0x%s\n"), mactype, mackey); return 0; } int esp_setup(struct openconnect_info *vpninfo) { if (vpninfo->dtls_state == DTLS_DISABLED || vpninfo->dtls_state == DTLS_NOSECRET) return -EINVAL; /* XX: set ESP DPD interval if not already set */ if (!vpninfo->dtls_times.dpd) { if (vpninfo->esp_ssl_fallback) vpninfo->dtls_times.dpd = vpninfo->esp_ssl_fallback; else vpninfo->dtls_times.dpd = vpninfo->dtls_attempt_period; } print_esp_keys(vpninfo, _("incoming"), &vpninfo->esp_in[vpninfo->current_esp_in]); print_esp_keys(vpninfo, _("outgoing"), &vpninfo->esp_out); vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n")); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); return 0; } int construct_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, uint8_t next_hdr) { const int blksize = 16; int i, padlen, ret; if (!next_hdr) { if ((pkt->data[0] & 0xf0) == 0x60) /* iph->ip_v */ next_hdr = IPPROTO_IPV6; else next_hdr = IPPROTO_IPIP; } /* This gets much more fun if the IV is variable-length */ pkt->esp.spi = vpninfo->esp_out.spi; pkt->esp.seq = htonl(vpninfo->esp_out.seq++); padlen = blksize - 1 - ((pkt->len + 1) % blksize); for (i=0; idata[pkt->len + i] = i + 1; pkt->data[pkt->len + padlen] = padlen; pkt->data[pkt->len + padlen + 1] = next_hdr; memcpy(pkt->esp.iv, vpninfo->esp_out.iv, sizeof(pkt->esp.iv)); ret = encrypt_esp_packet(vpninfo, pkt, pkt->len + padlen + 2); if (ret) return ret; return sizeof(pkt->esp) + pkt->len + padlen + 2 + vpninfo->hmac_out_len; } int esp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; struct esp *old_esp = &vpninfo->esp_in[vpninfo->current_esp_in ^ 1]; struct pkt *this; int work_done = 0; int ret; /* Some servers send us packets that are larger than negotiated MTU, or lack the ability to negotiate MTU (see gpst.c). We reserve some extra space to handle that */ int receive_mtu = MAX(2048, vpninfo->ip_info.mtu + 256); if (vpninfo->dtls_state == DTLS_SLEEPING) { if (ka_check_deadline(timeout, time(NULL), vpninfo->new_dtls_started + vpninfo->dtls_attempt_period) || vpninfo->dtls_need_reconnect) { vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes\n")); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); } } if (vpninfo->dtls_fd == -1) return 0; while (readable) { int len = receive_mtu + vpninfo->pkt_trailer; int i; struct pkt *pkt; if (!vpninfo->dtls_pkt) { vpninfo->dtls_pkt = alloc_pkt(vpninfo, len); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } pkt = vpninfo->dtls_pkt; len = recv(vpninfo->dtls_fd, (void *)&pkt->esp, len + sizeof(pkt->esp), 0); if (len <= 0) break; work_done = 1; /* both supported algos (SHA1 and MD5) have 12-byte MAC lengths (RFC2403 and RFC2404) */ if (len <= sizeof(pkt->esp) + vpninfo->hmac_out_len) continue; len -= sizeof(pkt->esp) + vpninfo->hmac_out_len; pkt->len = len; if (pkt->esp.spi == esp->spi) { if (decrypt_esp_packet(vpninfo, esp, pkt)) continue; } else if (pkt->esp.spi == old_esp->spi && ntohl(pkt->esp.seq) + esp->seq < vpninfo->old_esp_maxseq) { vpn_progress(vpninfo, PRG_TRACE, _("Received ESP packet from old SPI 0x%x, seq %u\n"), (unsigned)ntohl(old_esp->spi), (unsigned)ntohl(pkt->esp.seq)); if (decrypt_esp_packet(vpninfo, old_esp, pkt)) continue; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid SPI 0x%08x\n"), (unsigned)ntohl(pkt->esp.spi)); continue; } /* Possible values of the Next Header field are: 0x04: IP[v4]-in-IP 0x05: supposed to mean Internet Stream Protocol (XXX: but used for LZO compressed IPv4 packets by Juniper) 0x29: IPv6 encapsulation */ if (pkt->data[len - 1] == 0x04) vpn_progress(vpninfo, PRG_TRACE, _("Received ESP Legacy IP packet of %d bytes\n"), len); else if (pkt->data[len - 1] == 0x05) vpn_progress(vpninfo, PRG_TRACE, _("Received ESP Legacy IP packet of %d bytes (LZO-compressed)\n"), len); else if (pkt->data[len - 1] == 0x29) vpn_progress(vpninfo, PRG_TRACE, _("Received ESP IPv6 packet of %d bytes\n"), len); else { vpn_progress(vpninfo, PRG_ERR, _("Received ESP packet of %d bytes with unrecognised payload type %02x\n"), len, pkt->data[len-1]); continue; } if (len <= 2 + pkt->data[len - 2]) { vpn_progress(vpninfo, PRG_ERR, _("Invalid padding length %02x in ESP\n"), pkt->data[len - 2]); continue; } pkt->len = len - 2 - pkt->data[len - 2]; for (i = 0 ; i < pkt->data[len - 2]; i++) { if (pkt->data[pkt->len + i] != i + 1) break; /* We can't just 'continue' here because it * would only break out of this 'for' loop */ } if (i != pkt->data[len - 2]) { vpn_progress(vpninfo, PRG_ERR, _("Invalid padding bytes in ESP\n")); continue; /* We can here, though */ } vpninfo->dtls_times.last_rx = time(NULL); if (vpninfo->proto->udp_catch_probe) { if (vpninfo->proto->udp_catch_probe(vpninfo, pkt)) { if (vpninfo->dtls_state == DTLS_SLEEPING) { vpn_progress(vpninfo, PRG_INFO, _("ESP session established with server\n")); vpninfo->dtls_state = DTLS_CONNECTED; } continue; } } if (pkt->data[len - 1] == 0x05) { struct pkt *newpkt = alloc_pkt(vpninfo, receive_mtu + vpninfo->pkt_trailer); int newlen = receive_mtu; if (!newpkt) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate memory to decrypt ESP packet\n")); continue; } if (av_lzo1x_decode(newpkt->data, &newlen, pkt->data, &pkt->len) || pkt->len) { vpn_progress(vpninfo, PRG_ERR, _("LZO decompression of ESP packet failed\n")); free_pkt(vpninfo, newpkt); continue; } newpkt->len = receive_mtu - newlen; vpn_progress(vpninfo, PRG_TRACE, _("LZO decompressed %d bytes into %d\n"), len - 2 - pkt->data[len-2], newpkt->len); queue_packet(&vpninfo->incoming_queue, newpkt); } else { queue_packet(&vpninfo->incoming_queue, pkt); vpninfo->dtls_pkt = NULL; } } if (vpninfo->dtls_state != DTLS_ESTABLISHED) return 0; switch (keepalive_action(&vpninfo->dtls_times, timeout)) { case KA_REKEY: vpn_progress(vpninfo, PRG_ERR, _("Rekey not implemented for ESP\n")); break; case KA_DPD_DEAD: vpn_progress(vpninfo, PRG_ERR, _("ESP detected dead peer\n")); if (vpninfo->proto->udp_close) vpninfo->proto->udp_close(vpninfo); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send ESP probes for DPD\n")); if (vpninfo->proto->udp_send_probes) vpninfo->proto->udp_send_probes(vpninfo); work_done = 1; break; case KA_KEEPALIVE: vpn_progress(vpninfo, PRG_ERR, _("Keepalive not implemented for ESP\n")); break; case KA_NONE: break; } while (1) { int len; int ip_version; if (vpninfo->deflate_pkt) { this = vpninfo->deflate_pkt; len = this->len; ip_version = this->data[0] >> 4; } else { this = dequeue_packet(&vpninfo->outgoing_queue); if (!this) break; ip_version = this->data[0] >> 4; if (vpninfo->proto->proto == PROTO_PULSE) { uint8_t dontsend; /* Pulse can only accept ESP of the same protocol as the one * you connected to it with. The other has to go over IF-T/TLS. */ if (vpninfo->dtls_addr->sa_family == AF_INET6) dontsend = 4; else dontsend = 6; if (ip_version == dontsend) { store_be32(&this->pulse.vendor, 0xa4c); store_be32(&this->pulse.type, 4); store_be32(&this->pulse.len, this->len + 16); queue_packet(&vpninfo->tcp_control_queue, this); work_done = 1; continue; } } else if (vpninfo->proto->proto == PROTO_NC && vpninfo->dtls_addr->sa_family == AF_INET6) { /* Juniper/NC cannot do ESP-over-IPv6, and it cannot send * tunneled IPv6 packets at all; they just get dropped. * It shouldn't even send any ESP options/keys when connecting * to the server via IPv6. This should never happen. */ vpninfo->quit_reason = "Juniper/NC ESP tunnel over IPv6 should never happen."; return 1; } /* XX: Must precede in-place encryption of the packet, because IP header fields (version and TOS) are garbled afterward. If TOS optname is set, we want to copy the TOS/TCLASS header to the outer UDP packet */ if (vpninfo->dtls_tos_optname) udp_tos_update(vpninfo, this); len = construct_esp_packet(vpninfo, this, 0); if (len < 0) { /* Should we disable ESP? */ free_pkt(vpninfo, this); work_done = 1; continue; } } ret = send(vpninfo->dtls_fd, (void *)&this->esp, len, 0); if (ret < 0) { /* Not that this is likely to happen with UDP, but... */ if (errno == ENOBUFS || errno == EAGAIN || errno == EWOULDBLOCK) { int err = errno; vpninfo->deflate_pkt = this; this->len = len; vpn_progress(vpninfo, PRG_DEBUG, _("Requeueing failed ESP send: %s\n"), strerror(err)); monitor_write_fd(vpninfo, dtls); return work_done; } else { /* A real error in sending. Fall back to TCP? */ vpn_progress(vpninfo, PRG_ERR, _("Failed to send ESP packet: %s\n"), strerror(errno)); } } else { vpninfo->dtls_times.last_tx = time(NULL); vpn_progress(vpninfo, PRG_TRACE, _("Sent ESP IPv%d packet of %d bytes\n"), ip_version, len); } if (this == vpninfo->deflate_pkt) { unmonitor_write_fd(vpninfo, dtls); vpninfo->deflate_pkt = NULL; } free_pkt(vpninfo, this); work_done = 1; } return work_done; } void esp_close(struct openconnect_info *vpninfo) { /* We close and reopen the socket in case we roamed and our local IP address has changed. */ if (vpninfo->dtls_fd != -1) { unmonitor_fd(vpninfo, dtls); closesocket(vpninfo->dtls_fd); vpninfo->dtls_fd = -1; } if (vpninfo->dtls_state > DTLS_DISABLED) vpninfo->dtls_state = DTLS_SLEEPING; if (vpninfo->deflate_pkt) { free_pkt(vpninfo, vpninfo->deflate_pkt); vpninfo->deflate_pkt = NULL; } } void esp_shutdown(struct openconnect_info *vpninfo) { destroy_esp_ciphers(&vpninfo->esp_in[0]); destroy_esp_ciphers(&vpninfo->esp_in[1]); destroy_esp_ciphers(&vpninfo->esp_out); if (vpninfo->proto->udp_close) vpninfo->proto->udp_close(vpninfo); if (vpninfo->dtls_state != DTLS_DISABLED) vpninfo->dtls_state = DTLS_NOSECRET; } int openconnect_setup_esp_keys(struct openconnect_info *vpninfo, int new_keys) { struct esp *esp_in; int ret; if (vpninfo->dtls_state == DTLS_DISABLED) return -EOPNOTSUPP; if (!vpninfo->dtls_addr) return -EINVAL; if (vpninfo->esp_hmac == HMAC_SHA256) vpninfo->hmac_out_len = 16; else /* MD5 and SHA1 */ vpninfo->hmac_out_len = 12; if (new_keys) { vpninfo->old_esp_maxseq = vpninfo->esp_in[vpninfo->current_esp_in].seq + 32; vpninfo->current_esp_in ^= 1; } esp_in = &vpninfo->esp_in[vpninfo->current_esp_in]; if (new_keys) { if (openconnect_random(&esp_in->spi, sizeof(esp_in->spi)) || openconnect_random((void *)&esp_in->enc_key, vpninfo->enc_key_len) || openconnect_random((void *)&esp_in->hmac_key, vpninfo->hmac_key_len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random keys for ESP\n")); return -EIO; } } if (openconnect_random(vpninfo->esp_out.iv, sizeof(vpninfo->esp_out.iv))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate initial IV for ESP\n")); return -EIO; } /* This is the minimum; some implementations may increase it */ vpninfo->pkt_trailer = MAX_ESP_PAD + MAX_IV_SIZE + MAX_HMAC_SIZE; vpninfo->esp_out.seq = vpninfo->esp_out.seq_backlog = 0; esp_in->seq = esp_in->seq_backlog = 0; ret = init_esp_ciphers(vpninfo, &vpninfo->esp_out, esp_in); if (ret) return ret; if (vpninfo->dtls_state == DTLS_NOSECRET) vpninfo->dtls_state = DTLS_SECRET; return 0; } openconnect-8.20/openssl.c0000644000076400007640000016241614171606260017374 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #include #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) #define X509_up_ref(x) CRYPTO_add(&(x)->references, 1, CRYPTO_LOCK_X509) #define X509_get0_notAfter(x) X509_get_notAfter(x) #define EVP_MD_CTX_new EVP_MD_CTX_create #define EVP_MD_CTX_free EVP_MD_CTX_destroy #define X509_STORE_CTX_get0_chain(ctx) ((ctx)->chain) #define X509_STORE_CTX_get0_untrusted(ctx) ((ctx)->untrusted) #define X509_STORE_CTX_get0_cert(ctx) ((ctx)->cert) typedef int (*X509_STORE_CTX_get_issuer_fn)(X509 **issuer, X509_STORE_CTX *ctx, X509 *x); #define X509_STORE_CTX_get_get_issuer(ctx) ((ctx)->get_issuer) #endif static char tls_library_version[32] = ""; const char *openconnect_get_tls_library_version(void) { if (!*tls_library_version) { strncpy(tls_library_version, SSLeay_version(SSLEAY_VERSION), sizeof(tls_library_version)); tls_library_version[sizeof(tls_library_version)-1]='\0'; } return tls_library_version; } int can_enable_insecure_crypto(void) { if (EVP_des_ede3_cbc() == NULL || EVP_rc4() == NULL) return -ENOENT; return 0; } int openconnect_sha1(unsigned char *result, void *data, int len) { EVP_MD_CTX *c = EVP_MD_CTX_new(); if (!c) return -ENOMEM; EVP_Digest(data, len, result, NULL, EVP_sha1(), NULL); EVP_MD_CTX_free(c); return 0; } int openconnect_sha256(unsigned char *result, void *data, int len) { EVP_MD_CTX *c = EVP_MD_CTX_new(); if (!c) return -ENOMEM; EVP_Digest(data, len, result, NULL, EVP_sha256(), NULL); EVP_MD_CTX_free(c); return 0; } int openconnect_md5(unsigned char *result, void *data, int len) { EVP_MD_CTX *c = EVP_MD_CTX_new(); if (!c) return -ENOMEM; EVP_Digest(data, len, result, NULL, EVP_md5(), NULL); EVP_MD_CTX_free(c); return 0; } int openconnect_get_peer_cert_DER(struct openconnect_info *vpninfo, unsigned char **buf) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *certinfo; size_t l; if (!i2d_X509_bio(bp, vpninfo->peer_cert)) { BIO_free(bp); return -EIO; } BIO_get_mem_ptr(bp, &certinfo); l = certinfo->length; *buf = malloc(l); if (!*buf) { BIO_free(bp); return -ENOMEM; } memcpy(*buf, certinfo->data, l); BIO_free(bp); return l; } int openconnect_random(void *bytes, int len) { if (RAND_bytes(bytes, len) != 1) return -EIO; return 0; } /* Helper functions for reading/writing lines over TLS/DTLS. We could use cURL for the HTTP stuff, but it's overkill */ static int _openconnect_openssl_write(SSL *ssl, int fd, struct openconnect_info *vpninfo, char *buf, size_t len) { size_t orig_len = len; while (len) { int done = SSL_write(ssl, buf, len); if (done > 0) len -= done; else { int err = SSL_get_error(ssl, done); fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (err == SSL_ERROR_WANT_READ) FD_SET(fd, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to write to TLS/DTLS socket\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("TLS/DTLS write cancelled\n")); return -EINTR; } } } return orig_len; } static int openconnect_openssl_write(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_openssl_write(vpninfo->https_ssl, vpninfo->ssl_fd, vpninfo, buf, len); } int openconnect_dtls_write(struct openconnect_info *vpninfo, void *buf, size_t len) { return _openconnect_openssl_write(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len); } /* set ms to zero for no timeout */ static int _openconnect_openssl_read(SSL *ssl, int fd, struct openconnect_info *vpninfo, char *buf, size_t len, unsigned ms) { int done, ret; struct timeval timeout, *tv = NULL; if (ms) { timeout.tv_sec = ms/1000; timeout.tv_usec = (ms%1000)*1000; tv = &timeout; } while ((done = SSL_read(ssl, buf, len)) == -1) { int err = SSL_get_error(ssl, done); fd_set wr_set, rd_set; int maxfd = fd; FD_ZERO(&wr_set); FD_ZERO(&rd_set); if (err == SSL_ERROR_WANT_READ) FD_SET(fd, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from TLS/DTLS socket\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } cmd_fd_set(vpninfo, &rd_set, &maxfd); ret = select(maxfd + 1, &rd_set, &wr_set, NULL, tv); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("TLS/DTLS read cancelled\n")); return -EINTR; } if (ret == 0) { return -ETIMEDOUT; } } return done; } static int openconnect_openssl_read(struct openconnect_info *vpninfo, char *buf, size_t len) { return _openconnect_openssl_read(vpninfo->https_ssl, vpninfo->ssl_fd, vpninfo, buf, len, 0); } int openconnect_dtls_read(struct openconnect_info *vpninfo, void *buf, size_t len, unsigned ms) { return _openconnect_openssl_read(vpninfo->dtls_ssl, vpninfo->dtls_fd, vpninfo, buf, len, ms); } static int openconnect_openssl_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { int i = 0; int ret; if (len < 2) return -EINVAL; while (1) { ret = SSL_read(vpninfo->https_ssl, buf + i, 1); if (ret == 1) { if (buf[i] == '\n') { buf[i] = 0; if (i && buf[i-1] == '\r') { buf[i-1] = 0; i--; } return i; } i++; if (i >= len - 1) { buf[i] = 0; return i; } } else { fd_set rd_set, wr_set; int maxfd = vpninfo->ssl_fd; FD_ZERO(&rd_set); FD_ZERO(&wr_set); ret = SSL_get_error(vpninfo->https_ssl, ret); if (ret == SSL_ERROR_WANT_READ) FD_SET(vpninfo->ssl_fd, &rd_set); else if (ret == SSL_ERROR_WANT_WRITE) FD_SET(vpninfo->ssl_fd, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("Failed to read from TLS/DTLS socket\n")); openconnect_report_ssl_errors(vpninfo); ret = -EIO; break; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("TLS/DTLS read cancelled\n")); ret = -EINTR; break; } } } buf[i] = 0; return i ?: ret; } int ssl_nonblock_read(struct openconnect_info *vpninfo, int dtls, void *buf, int maxlen) { SSL *ssl = dtls ? vpninfo->dtls_ssl : vpninfo->https_ssl; int len, ret; if (!ssl) { vpn_progress(vpninfo, PRG_ERR, _("Attempted to read from non-existent %s session\n"), dtls ? "DTLS" : "TLS"); return -1; } len = SSL_read(ssl, buf, maxlen); if (len > 0) return len; ret = SSL_get_error(ssl, len); if (ret == SSL_ERROR_WANT_WRITE || ret == SSL_ERROR_WANT_READ) return 0; vpn_progress(vpninfo, PRG_ERR, _("Read error on %s session: %d\n"), dtls ? "DTLS" : "TLS", ret); return -EIO; } int ssl_nonblock_write(struct openconnect_info *vpninfo, int dtls, void *buf, int buflen) { SSL *ssl = dtls ? vpninfo->dtls_ssl : vpninfo->https_ssl; int ret; if (!ssl) { vpn_progress(vpninfo, PRG_ERR, _("Attempted to write to non-existent %s session\n"), dtls ? "DTLS" : "TLS"); return -1; } ret = SSL_write(ssl, buf, buflen); if (ret > 0) return ret; ret = SSL_get_error(ssl, ret); switch (ret) { case SSL_ERROR_WANT_WRITE: /* Waiting for the socket to become writable -- it's probably stalled, and/or the buffers are full */ if (dtls) monitor_write_fd(vpninfo, dtls); else monitor_write_fd(vpninfo, ssl); /* Fall through */ case SSL_ERROR_WANT_READ: return 0; default: vpn_progress(vpninfo, PRG_ERR, _("Write error on %s session: %d\n"), dtls ? "DTLS" : "TLS", ret); openconnect_report_ssl_errors(vpninfo); return -1; } } /* UI handling. All this just to handle the PIN callback from the TPM ENGINE, and turn it into a call to our ->process_auth_form function */ struct ui_data { struct openconnect_info *vpninfo; struct oc_form_opt **last_opt; struct oc_auth_form form; }; struct ui_form_opt { struct oc_form_opt opt; UI_STRING *uis; }; #ifdef HAVE_ENGINE static int ui_open(UI *ui) { struct openconnect_info *vpninfo = UI_get0_user_data(ui); struct ui_data *ui_data; if (!vpninfo || !vpninfo->process_auth_form) return 0; ui_data = malloc(sizeof(*ui_data)); if (!ui_data) return 0; memset(ui_data, 0, sizeof(*ui_data)); ui_data->last_opt = &ui_data->form.opts; ui_data->vpninfo = vpninfo; ui_data->form.auth_id = (char *)"openssl_ui"; UI_add_user_data(ui, ui_data); return 1; } static int ui_write(UI *ui, UI_STRING *uis) { struct ui_data *ui_data = UI_get0_user_data(ui); struct ui_form_opt *opt; switch (UI_get_string_type(uis)) { case UIT_ERROR: ui_data->form.error = (char *)UI_get0_output_string(uis); break; case UIT_INFO: ui_data->form.message = (char *)UI_get0_output_string(uis); break; case UIT_PROMPT: opt = malloc(sizeof(*opt)); if (!opt) return 1; memset(opt, 0, sizeof(*opt)); opt->uis = uis; opt->opt.label = opt->opt.name = (char *)UI_get0_output_string(uis); if (UI_get_input_flags(uis) & UI_INPUT_FLAG_ECHO) opt->opt.type = OC_FORM_OPT_TEXT; else opt->opt.type = OC_FORM_OPT_PASSWORD; *(ui_data->last_opt) = &opt->opt; ui_data->last_opt = &opt->opt.next; break; default: vpn_progress(ui_data->vpninfo, PRG_ERR, _("Unhandled SSL UI request type %d\n"), UI_get_string_type(uis)); return 0; } return 1; } static int ui_flush(UI *ui) { struct ui_data *ui_data = UI_get0_user_data(ui); struct openconnect_info *vpninfo = ui_data->vpninfo; struct ui_form_opt *opt; int ret; ret = process_auth_form(vpninfo, &ui_data->form); if (ret) return 0; for (opt = (struct ui_form_opt *)ui_data->form.opts; opt; opt = (struct ui_form_opt *)opt->opt.next) { if (opt->opt._value && opt->uis) UI_set_result(ui, opt->uis, opt->opt._value); } return 1; } static int ui_close(UI *ui) { struct ui_data *ui_data = UI_get0_user_data(ui); struct ui_form_opt *opt, *next_opt; opt = (struct ui_form_opt *)ui_data->form.opts; while (opt) { next_opt = (struct ui_form_opt *)opt->opt.next; if (opt->opt._value) free(opt->opt._value); free(opt); opt = next_opt; } free(ui_data); UI_add_user_data(ui, NULL); return 1; } static UI_METHOD *create_openssl_ui(void) { UI_METHOD *ui_method = UI_create_method((char *)"AnyConnect VPN UI"); /* Set up a UI method of our own for password/passphrase requests */ UI_method_set_opener(ui_method, ui_open); UI_method_set_writer(ui_method, ui_write); UI_method_set_flusher(ui_method, ui_flush); UI_method_set_closer(ui_method, ui_close); return ui_method; } #endif static int pem_pw_cb(char *buf, int len, int w, void *ci) { struct cert_info *certinfo = ci; struct openconnect_info *vpninfo = certinfo->vpninfo; char *pass = NULL; int plen; if (certinfo->password) { pass = certinfo->password; certinfo->password = NULL; } else if (request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_pem", "openconnect_secondary_pem"), &pass, certinfo_string(certinfo, _("Enter PEM pass phrase:"), _("Enter secondary PEM pass phrase:")))) return -1; plen = strlen(pass); if (len <= plen) { vpn_progress(vpninfo, PRG_ERR, _("PEM password too long (%d >= %d)\n"), plen, len); free_pass(&pass); return -1; } memcpy(buf, pass, plen+1); free_pass(&pass); return plen; } struct ossl_cert_info { EVP_PKEY *key; X509 *cert; STACK_OF(X509) *extra_certs; const char *certs_from; }; static void free_ossl_cert_info(struct ossl_cert_info *oci) { if (oci->key) EVP_PKEY_free(oci->key); if (oci->cert) X509_free(oci->cert); if (oci->extra_certs) sk_X509_pop_free(oci->extra_certs, X509_free); memset(oci, 0, sizeof(*oci)); } static int install_ssl_ctx_certs(struct openconnect_info *vpninfo, struct ossl_cert_info *oci) { X509 *cert = oci->cert; int i; if (!cert || !oci->key) { vpn_progress(vpninfo, PRG_ERR, _("Client certificate or key missing\n")); return -EINVAL; } if (!SSL_CTX_use_PrivateKey(vpninfo->https_ctx, oci->key)) { vpn_progress(vpninfo, PRG_ERR, _("Loading private key failed\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } if (!SSL_CTX_use_certificate(vpninfo->https_ctx, cert)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to install certificate in OpenSSL context\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } vpninfo->cert_x509 = cert; X509_up_ref(cert); if (!oci->extra_certs) return 0; next: for (i = 0; i < sk_X509_num(oci->extra_certs); i++) { X509 *cert2 = sk_X509_value(oci->extra_certs, i); if (X509_check_issued(cert2, cert) == X509_V_OK) { char buf[200]; if (cert2 == cert) break; if (X509_check_issued(cert2, cert2) == X509_V_OK) break; X509_NAME_oneline(X509_get_subject_name(cert2), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_DEBUG, _("Extra cert from %s: '%s'\n"), oci->certs_from, buf); X509_up_ref(cert2); SSL_CTX_add_extra_chain_cert(vpninfo->https_ctx, cert2); cert = cert2; goto next; } } return 0; } static int load_pkcs12_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct ossl_cert_info *oci, PKCS12 *p12) { EVP_PKEY *pkey = NULL; X509 *cert = NULL; STACK_OF(X509) *ca; int ret = 0; char *pass; pass = certinfo->password; certinfo->password = NULL; retrypass: /* We do this every time round the loop, to work around a bug in OpenSSL < 1.0.0-beta2 -- where the stack at *ca will be freed when PKCS12_parse() returns an error, but *ca is left pointing to the freed memory. */ ca = NULL; if (!PKCS12_parse(p12, pass, &pkey, &cert, &ca)) { unsigned long err = ERR_peek_error(); if (ERR_GET_LIB(err) == ERR_LIB_PKCS12 && #if OPENSSL_VERSION_NUMBER < 0x30000000L ERR_GET_FUNC(err) == PKCS12_F_PKCS12_PARSE && #endif ERR_GET_REASON(err) == PKCS12_R_MAC_VERIFY_FAILURE) { if (pass) vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt PKCS#12 certificate file\n")); free_pass(&pass); if (request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_pkcs12", "openconnect_secondary_pkcs12"), &pass, certinfo_string(certinfo, _("Enter PKCS#12 pass phrase:"), _("Enter secondary PKCS#12 pass phrase:"))) < 0) { PKCS12_free(p12); return -EINVAL; } goto retrypass; } openconnect_report_ssl_errors(vpninfo); vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Parse PKCS#12 failed (see above errors)\n"), _("Parse secondary PKCS#12 failed (see above errors)\n"))); PKCS12_free(p12); free_pass(&pass); return -EINVAL; } free_pass(&pass); if (cert) { char buf[200]; X509_NAME_oneline(X509_get_subject_name(cert), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_INFO, certinfo_string(certinfo, _("Using client certificate '%s'\n"), _("Using secondary certificate '%s'\n")), buf); } else { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("PKCS#12 contained no certificate!\n"), _("Secondary PKCS#12 contained no certificate!\n"))); ret = -EINVAL; } if (!pkey) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("PKCS#12 contained no private key!\n"), _("Secondary PKCS#12 contained no private key!\n"))); ret = -EINVAL; } oci->key = pkey; oci->cert = cert; oci->extra_certs = ca; oci->certs_from = _("PKCS#12"); PKCS12_free(p12); if (ret) free_ossl_cert_info(oci); return ret; } #ifdef HAVE_ENGINE static int load_tpm_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct ossl_cert_info *oci, const char *engine) { ENGINE *e; EVP_PKEY *key; UI_METHOD *meth = NULL; int ret = 0; ENGINE_load_builtin_engines(); e = ENGINE_by_id(engine); if (!e && !strcmp(engine, "tpm2")) { ERR_clear_error(); e = ENGINE_by_id("tpm2tss"); } if (!e) { vpn_progress(vpninfo, PRG_ERR, _("Can't load TPM engine.\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!ENGINE_init(e) || !ENGINE_set_default_RSA(e) || !ENGINE_set_default_RAND(e)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to init TPM engine\n")); openconnect_report_ssl_errors(vpninfo); ENGINE_free(e); return -EINVAL; } if (certinfo->password) { if (!ENGINE_ctrl_cmd(e, "PIN", strlen(certinfo->password), certinfo->password, NULL, 0)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TPM SRK password\n")); openconnect_report_ssl_errors(vpninfo); } free_pass(&certinfo->password); } /* Provide our own UI method to handle the PIN callback. */ meth = create_openssl_ui(); key = ENGINE_load_private_key(e, certinfo->key, meth, vpninfo); if (meth) UI_destroy_method(meth); if (!key) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to load TPM private key\n"), _("Failed to load secondary TPM private key\n"))); openconnect_report_ssl_errors(vpninfo); ret = -EINVAL; goto out; } oci->key = key; out: ENGINE_finish(e); ENGINE_free(e); return ret; } #else static int load_tpm_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct ossl_cert_info *oci, const char *engine) { vpn_progress(vpninfo, PRG_ERR, _("This version of OpenConnect was built without TPM support\n")); return -EINVAL; } #endif /* This is a reimplementation of SSL_CTX_use_certificate_chain_file(). * We do this for three reasons: * * - Firstly, we have no way to obtain the primary X509 certificate * after SSL_CTX_use_certificate_chain_file() has loaded it, and we * need to inspect it to check for expiry and report its name etc. * So in the past we've opened the cert file again and read the cert * again in a reload_pem_cert() function which was a partial * reimplementation anyway. * * - Secondly, on Windows, OpenSSL only partially handles UTF-8 filenames. * Specifically, BIO_new_file() will convert UTF-8 to UTF-16 and attempt * to use _wfopen() to open the file, but BIO_read_filename() will not. * It is BIO_read_filename() which the SSL_CTX_*_file functions use, and * thus they don't work with UTF-8 file names. This is filed as RT#3479: * http://rt.openssl.org/Ticket/Display.html?id=3479 * * - Finally, and least importantly, it does actually matter which supporting * certs we offer on the wire because of RT#1942. Doing this for ourselves * allows us to explicitly print the supporting certs that we're using, * which may assist in diagnosing problems. */ static int load_cert_chain_file(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct ossl_cert_info *oci) { BIO *b; FILE *f = openconnect_fopen_utf8(vpninfo, certinfo->cert, "rb"); STACK_OF(X509) *extra_certs = NULL; char buf[200]; if (!f) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to open certificate file %s: %s\n"), _("Failed to open secondary certificate file %s: %s\n")), certinfo->cert, strerror(errno)); return -ENOENT; } b = BIO_new_fp(f, 1); if (!b) { fclose(f); err: vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } oci->cert = PEM_read_bio_X509_AUX(b, NULL, NULL, NULL); if (!oci->cert) { BIO_free(b); goto err; } X509_NAME_oneline(X509_get_subject_name(oci->cert), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_INFO, certinfo_string(certinfo, _("Using client certificate '%s'\n"), _("Using secondary certificate '%s'\n")), buf); while (1) { X509 *x = PEM_read_bio_X509(b, NULL, NULL, NULL); if (!x) { unsigned long err = ERR_peek_last_error(); if (ERR_GET_LIB(err) == ERR_LIB_PEM && ERR_GET_REASON(err) == PEM_R_NO_START_LINE) ERR_clear_error(); else goto err_extra; break; } if (!extra_certs) extra_certs = sk_X509_new_null(); if (!extra_certs) { err_extra: vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to process all supporting certs. Trying anyway...\n"), _("Failed to process secondary supporting certs. Trying anyway...\n"))); openconnect_report_ssl_errors(vpninfo); X509_free(x); /* It might work without... */ break; } if (!sk_X509_push(extra_certs, x)) goto err_extra; } BIO_free(b); oci->extra_certs = extra_certs; oci->certs_from = _("PEM file"); return 0; } #ifdef ANDROID_KEYSTORE static BIO *BIO_from_keystore(struct openconnect_info *vpninfo, const char *item) { unsigned char *content; BIO *b; int len; const char *p = item + 9; /* Skip first two slashes if the user has given it as keystore://foo ... */ if (*p == '/') p++; if (*p == '/') p++; len = keystore_fetch(p, &content); if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load item '%s' from keystore: %s\n"), p, keystore_strerror(len)); return NULL; } if (!(b = BIO_new(BIO_s_mem())) || BIO_write(b, content, len) != len) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create BIO for keystore item '%s'\n"), p); free(content); BIO_free(b); return NULL; } free(content); return b; } #endif static int is_pem_password_error(struct openconnect_info *vpninfo, struct cert_info *certinfo) { unsigned long err = ERR_peek_error(); openconnect_report_ssl_errors(vpninfo); #ifndef EVP_F_EVP_DECRYPTFINAL_EX #define EVP_F_EVP_DECRYPTFINAL_EX EVP_F_EVP_DECRYPTFINAL #endif /* If the user fat-fingered the passphrase, try again */ if (ERR_GET_LIB(err) == ERR_LIB_EVP && #if OPENSSL_VERSION_NUMBER < 0x30000000L ERR_GET_FUNC(err) == EVP_F_EVP_DECRYPTFINAL_EX && #endif ERR_GET_REASON(err) == EVP_R_BAD_DECRYPT) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Loading private key failed (wrong passphrase?)\n"), _("Loading secondary private key failed (wrong passphrase?)\n"))); ERR_clear_error(); return 1; } vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Loading private key failed (see above errors)\n"), _("Loading secondary private key failed (see above errors)\n"))); return 0; } static int load_certificate(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct ossl_cert_info *oci) { FILE *f; char buf[256]; int ret; certinfo->vpninfo = vpninfo; if (!strncmp(certinfo->cert, "pkcs11:", 7)) { int ret = load_pkcs11_certificate(vpninfo, certinfo, &oci->cert); if (ret) return ret; goto got_cert; } vpn_progress(vpninfo, PRG_DEBUG, certinfo_string(certinfo, _("Using certificate file %s\n"), _("Using secondary certificate file %s\n")), certinfo->cert); if (strncmp(certinfo->cert, "keystore:", 9)) { PKCS12 *p12; f = openconnect_fopen_utf8(vpninfo, certinfo->cert, "rb"); if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open certificate file %s: %s\n"), certinfo->cert, strerror(errno)); return -ENOENT; } p12 = d2i_PKCS12_fp(f, NULL); fclose(f); if (p12) return load_pkcs12_certificate(vpninfo, certinfo, oci, p12); /* Not PKCS#12. Clear error and fall through to see if it's a PEM file... */ ERR_clear_error(); } /* It's PEM or TPM now, and either way we need to load the plain cert: */ #ifdef ANDROID_KEYSTORE if (!strncmp(certinfo->cert, "keystore:", 9)) { BIO *b = BIO_from_keystore(vpninfo, certinfo->cert); if (!b) return -EINVAL; oci->cert = PEM_read_bio_X509_AUX(b, NULL, pem_pw_cb, certinfo); BIO_free(b); if (!oci->cert) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load X509 certificate from keystore\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } } else #endif /* ANDROID_KEYSTORE */ { int ret = load_cert_chain_file(vpninfo, certinfo, oci); if (ret) return ret; } got_cert: #ifdef ANDROID_KEYSTORE if (!strncmp(certinfo->key, "keystore:", 9)) { BIO *b; again_android: b = BIO_from_keystore(vpninfo, certinfo->key); if (!b) return -EINVAL; oci->key = PEM_read_bio_PrivateKey(b, NULL, pem_pw_cb, certinfo); BIO_free(b); if (!oci->key) { if (is_pem_password_error(vpninfo, certinfo)) goto again_android; return -EINVAL; } return 0; } #endif /* ANDROID_KEYSTORE */ if (!strncmp(certinfo->key, "pkcs11:", 7)) return load_pkcs11_key(vpninfo, certinfo, &oci->key); f = openconnect_fopen_utf8(vpninfo, certinfo->key, "rb"); if (!f) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open private key file %s: %s\n"), certinfo->key, strerror(errno)); return -ENOENT; } buf[255] = 0; while (fgets(buf, 255, f)) { if (!strcmp(buf, "-----BEGIN TSS KEY BLOB-----\n")) { fclose(f); return load_tpm_certificate(vpninfo, certinfo, oci, "tpm"); } else if (!strcmp(buf, "-----BEGIN TSS2 KEY BLOB-----\n") || !strcmp(buf, "-----BEGIN TSS2 PRIVATE KEY-----\n")) { fclose(f); return load_tpm_certificate(vpninfo, certinfo, oci, "tpm2"); } else if (!strcmp(buf, "-----BEGIN RSA PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN DSA PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN EC PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN ENCRYPTED PRIVATE KEY-----\n") || !strcmp(buf, "-----BEGIN PRIVATE KEY-----\n")) { BIO *b = BIO_new_fp(f, BIO_CLOSE); if (!b) { fclose(f); vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Loading private key failed\n"), _("Loading secondary private key failed\n"))); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } again: fseek(f, 0, SEEK_SET); oci->key = PEM_read_bio_PrivateKey(b, NULL, pem_pw_cb, certinfo); if (!oci->key) { if (is_pem_password_error(vpninfo, certinfo)) goto again; BIO_free(b); return -EINVAL; } ret = 0; BIO_free(b); return ret; } } /* Not PEM? Try DER... */ fseek(f, 0, SEEK_SET); /* This will catch PKCS#1 and unencrypted PKCS#8 * (except in OpenSSL 0.9.8 where it doesn't handle * the latter but nobody cares about 0.9.8 any more. */ oci->key = d2i_PrivateKey_fp(f, NULL); if (oci->key) { ret = 0; fclose(f); return ret; } else { /* Encrypted PKCS#8 DER */ X509_SIG *p8; fseek(f, 0, SEEK_SET); p8 = d2i_PKCS8_fp(f, NULL); if (p8) { PKCS8_PRIV_KEY_INFO *p8inf; char *pass = certinfo->password; fclose(f); while (!(p8inf = PKCS8_decrypt(p8, pass ? : "", pass ? strlen(pass) : 0))) { unsigned long err = ERR_peek_error(); if (ERR_GET_LIB(err) == ERR_LIB_EVP && #if OPENSSL_VERSION_NUMBER < 0x30000000L ERR_GET_FUNC(err) == EVP_F_EVP_DECRYPTFINAL_EX && #endif ERR_GET_REASON(err) == EVP_R_BAD_DECRYPT) { ERR_clear_error(); if (pass) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to decrypt PKCS#8 certificate file\n"), _("Failed to decrypt secondary PKCS#8 certificate file\n"))); free_pass(&pass); pass = NULL; } if (request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_pkcs8", "openconnect_secondary_pkcs8"), &pass, certinfo_string(certinfo, _("Enter PKCS#8 pass phrase:"), _("Enter PKCS#8 secondary pass phrase:"))) >= 0) continue; } else { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to decrypt PKCS#8 certificate file\n"), _("Failed to decrypt secondary PKCS#8 certificate file\n"))); openconnect_report_ssl_errors(vpninfo); } free_pass(&pass); certinfo->password = NULL; X509_SIG_free(p8); return -EINVAL; } free_pass(&pass); certinfo->password = NULL; oci->key = EVP_PKCS82PKEY(p8inf); PKCS8_PRIV_KEY_INFO_free(p8inf); X509_SIG_free(p8); if (oci->key == NULL) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Failed to convert PKCS#8 to OpenSSL EVP_PKEY\n"), _("Failed to convert secondary PKCS#8 to OpenSSL EVP_PKEY\n"))); return -EIO; } ret = 0; return ret; } } fclose(f); vpn_progress(vpninfo, PRG_ERR, _("Failed to identify private key type in '%s'\n"), certinfo->key); return -EINVAL; } static int get_cert_fingerprint(struct openconnect_info *vpninfo, X509 *cert, const EVP_MD *type, char *buf) { unsigned char md[EVP_MAX_MD_SIZE]; unsigned int i, n; if (!X509_digest(cert, type, md, &n)) return -ENOMEM; for (i = 0; i < n; i++) sprintf(&buf[i*2], "%02X", md[i]); return 0; } int get_cert_md5_fingerprint(struct openconnect_info *vpninfo, void *cert, char *buf) { return get_cert_fingerprint(vpninfo, cert, EVP_md5(), buf); } static int set_peer_cert_hash(struct openconnect_info *vpninfo) { EVP_PKEY *pkey; BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *keyinfo; /* We can't use X509_pubkey_digest() because it only hashes the subjectPublicKey BIT STRING, and not the whole of the SubjectPublicKeyInfo SEQUENCE. */ pkey = X509_get_pubkey(vpninfo->peer_cert); if (!i2d_PUBKEY_bio(bp, pkey)) { EVP_PKEY_free(pkey); BIO_free(bp); return -ENOMEM; } EVP_PKEY_free(pkey); BIO_get_mem_ptr(bp, &keyinfo); openconnect_sha256(vpninfo->peer_cert_sha256_raw, keyinfo->data, keyinfo->length); openconnect_sha1(vpninfo->peer_cert_sha1_raw, keyinfo->data, keyinfo->length); BIO_free(bp); return 0; } #if OPENSSL_VERSION_NUMBER < 0x10002000L || defined(LIBRESSL_VERSION_NUMBER) static int match_hostname_elem(const char *hostname, int helem_len, const char *match, int melem_len) { if (!helem_len && !melem_len) return 0; if (!helem_len || !melem_len) return -1; if (match[0] == '*') { int i; for (i = 1 ; i <= helem_len; i++) { if (!match_hostname_elem(hostname + i, helem_len - i, match + 1, melem_len - 1)) return 0; } return -1; } /* From the NetBSD (5.1) man page for ctype(3): Values of type char or signed char must first be cast to unsigned char, to ensure that the values are within the correct range. The result should then be cast to int to avoid warnings from some compilers. We do indeed get warning "array subscript has type 'char'" without the casts. Ick. */ if (toupper((int)(unsigned char)hostname[0]) == toupper((int)(unsigned char)match[0])) return match_hostname_elem(hostname + 1, helem_len - 1, match + 1, melem_len - 1); return -1; } static int match_hostname(const char *hostname, const char *match) { while (*match) { const char *h_dot, *m_dot; int helem_len, melem_len; h_dot = strchr(hostname, '.'); m_dot = strchr(match, '.'); if (h_dot && m_dot) { helem_len = h_dot - hostname + 1; melem_len = m_dot - match + 1; } else if (!h_dot && !m_dot) { helem_len = strlen(hostname); melem_len = strlen(match); } else return -1; if (match_hostname_elem(hostname, helem_len, match, melem_len)) return -1; hostname += helem_len; match += melem_len; } if (*hostname) return -1; return 0; } /* cf. RFC2818 and RFC2459 */ static int match_cert_hostname(struct openconnect_info *vpninfo, X509 *peer_cert, const unsigned char *ipaddr, int ipaddrlen) { STACK_OF(GENERAL_NAME) *altnames; X509_NAME *subjname; ASN1_STRING *subjasn1; char *subjstr = NULL; int i, altdns = 0; int ret; altnames = X509_get_ext_d2i(peer_cert, NID_subject_alt_name, NULL, NULL); for (i = 0; i < sk_GENERAL_NAME_num(altnames); i++) { const GENERAL_NAME *this = sk_GENERAL_NAME_value(altnames, i); if (this->type == GEN_DNS) { char *str; int len = ASN1_STRING_to_UTF8((void *)&str, this->d.ia5); if (len < 0) continue; altdns = 1; /* We don't like names with embedded NUL */ if (strlen(str) != len) continue; if (!match_hostname(vpninfo->hostname, str)) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched DNS altname '%s'\n"), str); GENERAL_NAMES_free(altnames); OPENSSL_free(str); return 0; } else { vpn_progress(vpninfo, PRG_DEBUG, _("No match for altname '%s'\n"), str); } OPENSSL_free(str); } else if (this->type == GEN_IPADD && ipaddrlen) { char host[80]; int family; if (this->d.ip->length == 4) { family = AF_INET; } else if (this->d.ip->length == 16) { family = AF_INET6; } else { vpn_progress(vpninfo, PRG_ERR, _("Certificate has GEN_IPADD altname with bogus length %d\n"), this->d.ip->length); continue; } /* We only do this for the debug messages */ inet_ntop(family, this->d.ip->data, host, sizeof(host)); if (this->d.ip->length == ipaddrlen && !memcmp(ipaddr, this->d.ip->data, ipaddrlen)) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); GENERAL_NAMES_free(altnames); return 0; } else { vpn_progress(vpninfo, PRG_DEBUG, _("No match for %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); } } else if (this->type == GEN_URI) { char *str; char *url_proto, *url_host, *url_path, *url_host2; int url_port; int len = ASN1_STRING_to_UTF8((void *)&str, this->d.ia5); if (len < 0) continue; /* We don't like names with embedded NUL */ if (strlen(str) != len) continue; if (internal_parse_url(str, &url_proto, &url_host, &url_port, &url_path, 0)) { OPENSSL_free(str); continue; } if (!url_proto || strcasecmp(url_proto, "https")) goto no_uri_match; if (url_port != vpninfo->port) goto no_uri_match; /* Leave url_host as it was so that it can be freed */ url_host2 = url_host; if (ipaddrlen == 16 && vpninfo->hostname[0] != '[' && url_host[0] == '[' && url_host[strlen(url_host)-1] == ']') { /* Cope with https://[IPv6]/ when the hostname is bare IPv6 */ url_host[strlen(url_host)-1] = 0; url_host2++; } if (strcasecmp(vpninfo->hostname, url_host2)) goto no_uri_match; if (url_path) { vpn_progress(vpninfo, PRG_DEBUG, _("URI '%s' has non-empty path; ignoring\n"), str); goto no_uri_match_silent; } vpn_progress(vpninfo, PRG_DEBUG, _("Matched URI '%s'\n"), str); free(url_proto); free(url_host); free(url_path); OPENSSL_free(str); GENERAL_NAMES_free(altnames); return 0; no_uri_match: vpn_progress(vpninfo, PRG_DEBUG, _("No match for URI '%s'\n"), str); no_uri_match_silent: free(url_proto); free(url_host); free(url_path); OPENSSL_free(str); } } GENERAL_NAMES_free(altnames); /* According to RFC2818, we don't use the legacy subject name if there was an altname with DNS type. */ if (altdns) { vpn_progress(vpninfo, PRG_ERR, _("No altname in peer cert matched '%s'\n"), vpninfo->hostname); return -EINVAL; } subjname = X509_get_subject_name(peer_cert); if (!subjname) { vpn_progress(vpninfo, PRG_ERR, _("No subject name in peer cert!\n")); return -EINVAL; } /* Find the _last_ (most specific) commonName */ i = -1; while (1) { int j = X509_NAME_get_index_by_NID(subjname, NID_commonName, i); if (j >= 0) i = j; else break; } subjasn1 = X509_NAME_ENTRY_get_data(X509_NAME_get_entry(subjname, i)); i = ASN1_STRING_to_UTF8((void *)&subjstr, subjasn1); if (!subjstr || strlen(subjstr) != i) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse subject name in peer cert\n")); return -EINVAL; } ret = 0; if (match_hostname(vpninfo->hostname, subjstr)) { vpn_progress(vpninfo, PRG_ERR, _("Peer cert subject mismatch ('%s' != '%s')\n"), subjstr, vpninfo->hostname); ret = -EINVAL; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Matched peer certificate subject name '%s'\n"), subjstr); } OPENSSL_free(subjstr); return ret; } #else static int match_cert_hostname(struct openconnect_info *vpninfo, X509 *peer_cert, const unsigned char *ipaddr, int ipaddrlen) { char *matched = NULL; if (ipaddrlen && X509_check_ip(peer_cert, ipaddr, ipaddrlen, 0) == 1) { if (vpninfo->verbose >= PRG_DEBUG) { char host[80]; int family; if (ipaddrlen == 4) family = AF_INET; else family = AF_INET6; /* In Windows, the 'src' argument of inet_ntop() isn't const */ inet_ntop(family, (void *)ipaddr, host, sizeof(host)); vpn_progress(vpninfo, PRG_DEBUG, _("Matched %s address '%s'\n"), (family == AF_INET6) ? "IPv6" : "IPv4", host); } return 0; } if (X509_check_host(peer_cert, vpninfo->hostname, 0, 0, &matched) == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("Matched peer certificate subject name '%s'\n"), matched); OPENSSL_free(matched); return 0; } /* We do it like this because these two strings are already * translated in gnutls.c */ vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), _("certificate does not match hostname")); return -EINVAL; } #endif /* OpenSSL < 1.0.2 */ /* Before OpenSSL 1.1 we could do this directly. And needed to. */ #ifndef SSL_CTX_get_extra_chain_certs_only #define SSL_CTX_get_extra_chain_certs_only(ctx, st) \ (void)(*(st) = (ctx)->extra_certs) #endif static void workaround_openssl_certchain_bug(struct openconnect_info *vpninfo, SSL *ssl) { /* OpenSSL has problems with certificate chains -- if there are multiple certs with the same name, it doesn't necessarily choose the _right_ one. (RT#1942) Pick the right ones for ourselves and add them manually. */ X509 *cert = SSL_get_certificate(ssl); X509 *cert2; X509_STORE *store = SSL_CTX_get_cert_store(vpninfo->https_ctx); X509_STORE_CTX *ctx; void *extra_certs; X509_STORE_CTX_get_issuer_fn issuer_fn; if (!cert || !store) return; /* If we already have 'supporting' certs, don't add them again */ SSL_CTX_get_extra_chain_certs_only(vpninfo->https_ctx, &extra_certs); if (extra_certs) return; ctx = X509_STORE_CTX_new(); if (!ctx) return; if (X509_STORE_CTX_init(ctx, store, NULL, NULL)) goto out; issuer_fn = X509_STORE_CTX_get_get_issuer(ctx); while (issuer_fn(&cert2, ctx, cert) == 1) { char buf[200]; if (cert2 == cert) break; if (X509_check_issued(cert2, cert2) == X509_V_OK) break; cert = cert2; X509_NAME_oneline(X509_get_subject_name(cert), buf, sizeof(buf)); vpn_progress(vpninfo, PRG_DEBUG, _("Extra cert from cafile: '%s'\n"), buf); SSL_CTX_add_extra_chain_cert(vpninfo->https_ctx, cert); } out: X509_STORE_CTX_free(ctx); } int openconnect_get_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert **chainp) { struct oc_cert *chain, *p; X509_STORE_CTX *ctx = vpninfo->cert_list_handle; STACK_OF(X509) *untrusted; int i, cert_list_size; if (!ctx) return -EINVAL; untrusted = X509_STORE_CTX_get0_untrusted(ctx); if (!untrusted) return -EINVAL; cert_list_size = sk_X509_num(untrusted); if (!cert_list_size) return -EIO; p = chain = calloc(cert_list_size, sizeof(struct oc_cert)); if (!chain) return -ENOMEM; for (i = 0; i < cert_list_size; i++, p++) { X509 *cert = sk_X509_value(untrusted, i); p->der_len = i2d_X509(cert, &p->der_data); if (p->der_len < 0) { openconnect_free_peer_cert_chain(vpninfo, chain); return -ENOMEM; } } *chainp = chain; return cert_list_size; } void openconnect_free_peer_cert_chain(struct openconnect_info *vpninfo, struct oc_cert *chain) { int i; for (i = 0; i < vpninfo->cert_list_size; i++) OPENSSL_free(chain[i].der_data); free(chain); } static int ssl_app_verify_callback(X509_STORE_CTX *ctx, void *arg) { struct openconnect_info *vpninfo = arg; const char *err_string = NULL; X509 *cert = X509_STORE_CTX_get0_cert(ctx); #ifdef X509_V_FLAG_PARTIAL_CHAIN X509_VERIFY_PARAM *param; #endif if (vpninfo->peer_cert) { /* This is a *rehandshake*. Require that the server * presents exactly the same certificate as the * first time. */ if (X509_cmp(cert, vpninfo->peer_cert)) { vpn_progress(vpninfo, PRG_ERR, _("Server presented different cert on rehandshake\n")); return 0; } vpn_progress(vpninfo, PRG_TRACE, _("Server presented identical cert on rehandshake\n")); return 1; } vpninfo->peer_cert = cert; X509_up_ref(cert); set_peer_cert_hash(vpninfo); #ifdef X509_V_FLAG_PARTIAL_CHAIN param = X509_STORE_CTX_get0_param(ctx); if (param) X509_VERIFY_PARAM_set_flags(param, X509_V_FLAG_PARTIAL_CHAIN); #endif if (!X509_verify_cert(ctx)) { err_string = X509_verify_cert_error_string(X509_STORE_CTX_get_error(ctx)); } else { unsigned char addrbuf[sizeof(struct in6_addr)]; int addrlen = 0; if (inet_pton(AF_INET, vpninfo->hostname, addrbuf) > 0) addrlen = 4; else if (inet_pton(AF_INET6, vpninfo->hostname, addrbuf) > 0) addrlen = 16; else if (vpninfo->hostname[0] == '[' && vpninfo->hostname[strlen(vpninfo->hostname)-1] == ']') { char *p = &vpninfo->hostname[strlen(vpninfo->hostname)-1]; *p = 0; if (inet_pton(AF_INET6, vpninfo->hostname + 1, addrbuf) > 0) addrlen = 16; *p = ']'; } if (match_cert_hostname(vpninfo, vpninfo->peer_cert, addrbuf, addrlen)) err_string = _("certificate does not match hostname"); else return 1; } vpn_progress(vpninfo, PRG_INFO, _("Server certificate verify failed: %s\n"), err_string); if (vpninfo->validate_peer_cert) { int ret; vpninfo->cert_list_handle = ctx; ret = vpninfo->validate_peer_cert(vpninfo->cbdata, err_string); vpninfo->cert_list_handle = NULL; if (!ret) return 1; } return 0; } static int check_certificate_expiry(struct openconnect_info *vpninfo, struct cert_info *certinfo, struct ossl_cert_info *oci) { method_const ASN1_TIME *notAfter; const char *reason = NULL; time_t t; int i; if (!oci->cert) return 0; t = time(NULL); notAfter = X509_get0_notAfter(oci->cert); i = X509_cmp_time(notAfter, &t); if (!i) { vpn_progress(vpninfo, PRG_ERR, certinfo_string(certinfo, _("Error in client cert notAfter field\n"), _("Error in secondary client cert notAfter field\n"))); return -EINVAL; } else if (i < 0) { reason = certinfo_string(certinfo, _("Client certificate has expired at"), _("Secondary client certificate has expired at")); } else { t += vpninfo->cert_expire_warning; i = X509_cmp_time(notAfter, &t); if (i < 0) reason = certinfo_string(certinfo, _("Client certificate expires soon at"), _("Secondary client certificate expires soon at")); } if (reason) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *bm; const char *expiry = _(""); char zero = 0; if (bp) { ASN1_TIME_print(bp, notAfter); BIO_write(bp, &zero, 1); BIO_get_mem_ptr(bp, &bm); expiry = bm->data; } vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", reason, expiry); if (bp) BIO_free(bp); } return 0; } static int load_primary_certificate(struct openconnect_info *vpninfo) { struct ossl_cert_info oci = { }; int ret = load_certificate(vpninfo, &vpninfo->certinfo[0], &oci); if (!ret) ret = install_ssl_ctx_certs(vpninfo, &oci); if (!ret && !SSL_CTX_check_private_key(vpninfo->https_ctx)) { vpn_progress(vpninfo, PRG_ERR, _("SSL certificate and key do not match\n")); ret = -EINVAL; } if (!ret) check_certificate_expiry(vpninfo, &vpninfo->certinfo[0], &oci); free_ossl_cert_info(&oci); return ret; } int openconnect_install_ctx_verify(struct openconnect_info *vpninfo, SSL_CTX *ctx) { /* We've seen certificates in the wild which don't have the purpose fields filled in correctly */ SSL_CTX_set_purpose(ctx, X509_PURPOSE_ANY); SSL_CTX_set_cert_verify_callback(ctx, ssl_app_verify_callback, vpninfo); if (!vpninfo->no_system_trust) SSL_CTX_set_default_verify_paths(ctx); #ifdef ANDROID_KEYSTORE if (vpninfo->cafile && !strncmp(vpninfo->cafile, "keystore:", 9)) { STACK_OF(X509_INFO) *stack; X509_STORE *store; X509_INFO *info; BIO *b = BIO_from_keystore(vpninfo, vpninfo->cafile); if (!b) return -EINVAL; stack = PEM_X509_INFO_read_bio(b, NULL, NULL, NULL); BIO_free(b); if (!stack) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read certs from CA file '%s'\n"), vpninfo->cafile); openconnect_report_ssl_errors(vpninfo); return -ENOENT; } store = SSL_CTX_get_cert_store(ctx); while ((info = sk_X509_INFO_pop(stack))) { if (info->x509) X509_STORE_add_cert(store, info->x509); if (info->crl) X509_STORE_add_crl(store, info->crl); X509_INFO_free(info); } sk_X509_INFO_free(stack); } else #endif if (vpninfo->cafile) { /* OpenSSL does actually manage to cope with UTF-8 for this one, under Windows. So only convert for legacy UNIX. */ char *cafile = openconnect_utf8_to_legacy(vpninfo, vpninfo->cafile); int err = SSL_CTX_load_verify_locations(ctx, cafile, NULL); if (cafile != vpninfo->cafile) free(cafile); if (!err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open CA file '%s'\n"), vpninfo->cafile); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } } return 0; } int openconnect_open_https(struct openconnect_info *vpninfo) { SSL *https_ssl; BIO *https_bio; int ssl_sock; int err; if (vpninfo->https_ssl) return 0; if (vpninfo->peer_cert) { X509_free(vpninfo->peer_cert); vpninfo->peer_cert = NULL; } free(vpninfo->peer_cert_hash); vpninfo->peer_cert_hash = NULL; free(vpninfo->cstp_cipher); vpninfo->cstp_cipher = NULL; ssl_sock = connect_https_socket(vpninfo); if (ssl_sock < 0) return ssl_sock; if (!vpninfo->https_ctx) { #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) vpninfo->https_ctx = SSL_CTX_new(SSLv23_client_method()); if (vpninfo->https_ctx) SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_NO_SSLv2|SSL_OP_NO_SSLv3); #else vpninfo->https_ctx = SSL_CTX_new(TLS_client_method()); if (vpninfo->https_ctx && !SSL_CTX_set_min_proto_version(vpninfo->https_ctx, TLS1_VERSION)) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; } #endif if (!vpninfo->https_ctx) { vpn_progress(vpninfo, PRG_ERR, _("Create TLSv1 CTX failed\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } /* Try to work around the broken firewalls which reject ClientHello * packets in certain size ranges. If we have SSL_OP_TLSEXT_PADDING * use it, else fall back to SSL_OP_NO_TICKET which mostly worked for * a long time. */ #if defined(SSL_OP_TLSEXT_PADDING) SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_TLSEXT_PADDING); #elif defined(SSL_OP_NO_TICKET) SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_NO_TICKET); #endif #if OPENSSL_VERSION_NUMBER >= 0x010100000L if (vpninfo->allow_insecure_crypto) { /* OpenSSL versions after 1.1.0 added the notion of a "security level" * that enforces checks on certificates and ciphers. * These security levels overlap in functionality with the ciphersuite * priority/allow-strings. * * For now we will set the security level to 0, thus reverting * to the functionality seen in versions before 1.1.0. */ SSL_CTX_set_security_level(vpninfo->https_ctx, 0); /* OpenSSL 3.0.0 refuses legacy renegotiation by default. * Current versions of the Cisco ASA doesn't seem to cope */ SSL_CTX_set_options(vpninfo->https_ctx, SSL_OP_LEGACY_SERVER_CONNECT); } #endif if (vpninfo->certinfo[0].cert) { err = load_primary_certificate(vpninfo); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Loading certificate failed. Aborting.\n")); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return err; } } if (!vpninfo->ciphersuite_config) { struct oc_text_buf *buf = buf_alloc(); if (vpninfo->pfs) buf_append(buf, "HIGH:!aNULL:!eNULL:-RSA"); else buf_append(buf, "DEFAULT"); if (vpninfo->allow_insecure_crypto) buf_append(buf, ":+3DES:+RC4"); else buf_append(buf, ":-3DES:-RC4"); if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to construct OpenSSL cipher list\n")); return buf_free(buf); } vpninfo->ciphersuite_config = buf->data; buf->data = NULL; buf_free(buf); } if (!SSL_CTX_set_cipher_list(vpninfo->https_ctx, vpninfo->ciphersuite_config)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set OpenSSL cipher list (\"%s\")\n"), vpninfo->ciphersuite_config); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return -EIO; } err = openconnect_install_ctx_verify(vpninfo, vpninfo->https_ctx); if (err) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; closesocket(ssl_sock); return err; } } https_ssl = SSL_new(vpninfo->https_ctx); workaround_openssl_certchain_bug(vpninfo, https_ssl); https_bio = BIO_new_socket(ssl_sock, BIO_NOCLOSE); BIO_set_nbio(https_bio, 1); SSL_set_bio(https_ssl, https_bio, https_bio); /* * If a ClientHello is between 256 and 511 bytes, the * server cannot distinguish between a SSLv2 formatted * packet and a SSLv3 formatted packet. * * F5 BIG-IP reverse proxies in particular will * silently drop an ambiguous ClientHello. * * OpenSSL fixes this in v1.0.1g+ by padding ClientHello * packets to at least 512 bytes. * * For older versions of OpenSSL, we try to avoid long * packets by silently disabling extensions such as SNI. * * Discussion: * https://www.ietf.org/mail-archive/web/tls/current/msg10423.html * * OpenSSL commits: * 4fcdd66fff5fea0cfa1055c6680a76a4303f28a2 * cd6bd5ffda616822b52104fee0c4c7d623fd4f53 */ #if OPENSSL_VERSION_NUMBER >= 0x10001070 && !defined(LIBRESSL_VERSION_NUMBER) if (string_is_hostname(vpninfo->hostname)) SSL_set_tlsext_host_name(https_ssl, vpninfo->hostname); #endif SSL_set_verify(https_ssl, SSL_VERIFY_PEER, NULL); vpn_progress(vpninfo, PRG_INFO, _("SSL negotiation with %s\n"), vpninfo->hostname); while ((err = SSL_connect(https_ssl)) <= 0) { fd_set wr_set, rd_set; int maxfd = ssl_sock; FD_ZERO(&wr_set); FD_ZERO(&rd_set); err = SSL_get_error(https_ssl, err); if (err == SSL_ERROR_WANT_READ) FD_SET(ssl_sock, &rd_set); else if (err == SSL_ERROR_WANT_WRITE) FD_SET(ssl_sock, &wr_set); else { vpn_progress(vpninfo, PRG_ERR, _("SSL connection failure\n")); openconnect_report_ssl_errors(vpninfo); SSL_free(https_ssl); closesocket(ssl_sock); return -EINVAL; } cmd_fd_set(vpninfo, &rd_set, &maxfd); select(maxfd + 1, &rd_set, &wr_set, NULL, NULL); if (is_cancel_pending(vpninfo, &rd_set)) { vpn_progress(vpninfo, PRG_ERR, _("SSL connection cancelled\n")); SSL_free(https_ssl); closesocket(ssl_sock); return -EINVAL; } } if (asprintf(&vpninfo->cstp_cipher, "%s-%s", SSL_get_version(https_ssl), SSL_get_cipher_name(https_ssl)) < 0) { SSL_free(https_ssl); closesocket(ssl_sock); return -ENOMEM; } vpninfo->ssl_fd = ssl_sock; vpninfo->https_ssl = https_ssl; vpninfo->ssl_read = openconnect_openssl_read; vpninfo->ssl_write = openconnect_openssl_write; vpninfo->ssl_gets = openconnect_openssl_gets; vpn_progress(vpninfo, PRG_INFO, _("Connected to HTTPS on %s with ciphersuite %s\n"), vpninfo->hostname, vpninfo->cstp_cipher); return 0; } int cstp_handshake(struct openconnect_info *vpninfo, unsigned init) { return -EOPNOTSUPP; } void openconnect_close_https(struct openconnect_info *vpninfo, int final) { if (vpninfo->https_ssl) { SSL_free(vpninfo->https_ssl); vpninfo->https_ssl = NULL; } if (vpninfo->ssl_fd != -1) { unmonitor_fd(vpninfo, ssl); closesocket(vpninfo->ssl_fd); vpninfo->ssl_fd = -1; } if (final) { if (vpninfo->https_ctx) { SSL_CTX_free(vpninfo->https_ctx); vpninfo->https_ctx = NULL; } if (vpninfo->cert_x509) { X509_free(vpninfo->cert_x509); vpninfo->cert_x509 = NULL; } } } int openconnect_init_ssl(void) { #ifdef _WIN32 int ret = openconnect__win32_sock_init(); if (ret) return ret; #endif #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms(); #endif return 0; } char *openconnect_get_peer_cert_details(struct openconnect_info *vpninfo) { BIO *bp = BIO_new(BIO_s_mem()); BUF_MEM *certinfo; char zero = 0; char *ret; X509_print_ex(bp, vpninfo->peer_cert, 0, 0); BIO_write(bp, &zero, 1); BIO_get_mem_ptr(bp, &certinfo); ret = strdup(certinfo->data); BIO_free(bp); return ret; } void openconnect_free_cert_info(struct openconnect_info *vpninfo, void *buf) { free(buf); } int openconnect_local_cert_md5(struct openconnect_info *vpninfo, char *buf) { buf[0] = 0; if (!vpninfo->cert_x509) return -EIO; if (get_cert_md5_fingerprint(vpninfo, vpninfo->cert_x509, buf)) return -EIO; return 0; } #ifdef HAVE_LIBPCSCLITE int openconnect_hash_yubikey_password(struct openconnect_info *vpninfo, const char *password, int pwlen, const void *ident, int id_len) { if (!PKCS5_PBKDF2_HMAC_SHA1(password, pwlen, ident, id_len, 1000, 16, vpninfo->yubikey_pwhash)) return -EIO; return 0; } int openconnect_yubikey_chalresp(struct openconnect_info *vpninfo, const void *challenge, int chall_len, void *result) { unsigned int mdlen = SHA1_SIZE; if (!HMAC(EVP_sha1(), vpninfo->yubikey_pwhash, 16, challenge, chall_len, result, &mdlen)) return -EIO; return 0; } #endif int hotp_hmac(struct openconnect_info *vpninfo, const void *challenge) { unsigned char hash[64]; /* Enough for a SHA256 */ unsigned int hashlen = sizeof(hash); const EVP_MD *alg; switch(vpninfo->oath_hmac_alg) { case OATH_ALG_HMAC_SHA1: alg = EVP_sha1(); break; case OATH_ALG_HMAC_SHA256: alg = EVP_sha256(); break; case OATH_ALG_HMAC_SHA512: alg = EVP_sha512(); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unsupported OATH HMAC algorithm\n")); return -EINVAL; } if (!HMAC(alg, vpninfo->oath_secret, vpninfo->oath_secret_len, challenge, 8, hash, &hashlen)) { vpninfo->progress(vpninfo, PRG_ERR, _("Failed to calculate OATH HMAC\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } hashlen = hash[hashlen - 1] & 15; return load_be32(&hash[hashlen]) & 0x7fffffff; } static long ttls_ctrl_func(BIO *b, int cmd, long larg, void *iarg); static int ttls_pull_func(BIO *b, char *buf, int len); static int ttls_push_func(BIO *b, const char *buf, int len); #ifdef HAVE_BIO_METH_FREE static BIO_METHOD *eap_ttls_method(void) { BIO_METHOD *meth = BIO_meth_new(BIO_get_new_index(), "EAP-TTLS"); BIO_meth_set_write(meth, ttls_push_func); BIO_meth_set_read(meth, ttls_pull_func); BIO_meth_set_ctrl(meth, ttls_ctrl_func); return meth; } #else /* !HAVE_BIO_METH_FREE */ #define BIO_TYPE_EAP_TTLS 0x80 static BIO_METHOD ttls_bio_meth = { .type = BIO_TYPE_EAP_TTLS, .name = "EAP-TTLS", .bwrite = ttls_push_func, .bread = ttls_pull_func, .ctrl = ttls_ctrl_func, }; static BIO_METHOD *eap_ttls_method(void) { return &ttls_bio_meth; } static inline void BIO_set_data(BIO *b, void *p) { b->ptr = p; } static inline void *BIO_get_data(BIO *b) { return b->ptr; } static void BIO_set_init(BIO *b, int i) { b->init = i; } #endif /* !HAVE_BIO_METH_FREE */ static int ttls_push_func(BIO *b, const char *buf, int len) { struct openconnect_info *vpninfo = BIO_get_data(b); int ret = pulse_eap_ttls_send(vpninfo, buf, len); if (ret >= 0) return ret; return 0; } static int ttls_pull_func(BIO *b, char *buf, int len) { struct openconnect_info *vpninfo = BIO_get_data(b); int ret = pulse_eap_ttls_recv(vpninfo, buf, len); if (ret >= 0) return ret; return 0; } static long ttls_ctrl_func(BIO *b, int cmd, long larg, void *iarg) { switch(cmd) { case BIO_CTRL_FLUSH: return 1; default: return 0; } } void *establish_eap_ttls(struct openconnect_info *vpninfo) { SSL *ttls_ssl = NULL; BIO *bio; int err; if (!vpninfo->ttls_bio_meth) vpninfo->ttls_bio_meth = eap_ttls_method(); bio = BIO_new(vpninfo->ttls_bio_meth); BIO_set_data(bio, vpninfo); BIO_set_init(bio, 1); ttls_ssl = SSL_new(vpninfo->https_ctx); workaround_openssl_certchain_bug(vpninfo, ttls_ssl); SSL_set_bio(ttls_ssl, bio, bio); SSL_set_verify(ttls_ssl, SSL_VERIFY_PEER, NULL); vpn_progress(vpninfo, PRG_INFO, _("EAP-TTLS negotiation with %s\n"), vpninfo->hostname); err = SSL_connect(ttls_ssl); if (err == 1) { vpn_progress(vpninfo, PRG_TRACE, _("Established EAP-TTLS session\n")); return ttls_ssl; } err = SSL_get_error(ttls_ssl, err); vpn_progress(vpninfo, PRG_ERR, _("EAP-TTLS connection failure %d\n"), err); openconnect_report_ssl_errors(vpninfo); SSL_free(ttls_ssl); return NULL; } void destroy_eap_ttls(struct openconnect_info *vpninfo, void *ttls) { SSL_free(ttls); /* Leave the BIO_METH for now. It may get reused and we don't want to * have to call BIO_get_new_index() more times than is necessary */ } openconnect-8.20/digest.c0000644000076400007640000001375414067426206017174 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #define ALGO_MD5 0 #define ALGO_MD5_SESS 1 static struct oc_text_buf *get_qs(char **str) { struct oc_text_buf *res; int escaped = 0; char *p = *str; if (*p != '\"') return NULL; res = buf_alloc(); while (*++p) { if (!escaped && *p == '\"') { *str = p+1; if (buf_error(res)) break; return res; } if (escaped) escaped = 0; else if (*p == '\\') escaped = 1; buf_append_bytes(res, p, 1); } buf_free(res); return NULL; } static void buf_append_unq(struct oc_text_buf *buf, const char *str) { while (*str) { if (*str == '\"' || *str == '\\') buf_append(buf, "\\"); buf_append_bytes(buf, str, 1); str++; } } static void buf_append_md5(struct oc_text_buf *buf, void *data, int len) { unsigned char md5[16]; if (openconnect_md5(md5, data, len)) { buf->error = -EIO; return; } buf_append_hex(buf, md5, 16); } int digest_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { char *chall; int ret = -EINVAL; int algo = ALGO_MD5; int qop_auth = 0; int nc = 1; struct oc_text_buf *realm = NULL, *nonce = NULL, *opaque = NULL; struct oc_text_buf *a1 = NULL, *a2 = NULL, *kd = NULL; struct oc_text_buf *cnonce = NULL; unsigned char cnonce_random[32]; const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { /* Need to parse this out of the URL */ return -EINVAL; } if (!user || !pass) return -EINVAL; if (auth_state->state < AUTH_AVAILABLE) return -EINVAL; if (auth_state->state == AUTH_IN_PROGRESS) { auth_state->state = AUTH_FAILED; return -EAGAIN; } chall = auth_state->challenge; if (!chall) return -EINVAL; while (*chall) { if (!realm && !strncmp(chall, "realm=", 6)) { chall += 6; realm = get_qs(&chall); if (!realm) goto err; } else if (!nonce && !strncmp(chall, "nonce=", 6)) { chall += 6; nonce = get_qs(&chall); if (!nonce) goto err; } else if (!strncmp(chall, "qop=", 4)) { chall += 4; if (strncmp(chall, "\"auth\"", 6)) { /* We don't support "auth-int" */ goto err; } qop_auth = 1; chall += 6; } else if (!opaque && !strncmp(chall, "opaque=", 7)) { chall += 7; opaque = get_qs(&chall); if (!opaque) goto err; } else if (!strncmp(chall, "algorithm=", 10)) { chall += 10; if (!strncmp(chall, "MD5-sess", 8)) { algo = ALGO_MD5_SESS; chall += 8; } else if (!strncmp(chall, "MD5", 3)) { algo = ALGO_MD5; chall += 3; } } else { char *p = strchr(chall, '='); if (!p) goto err; p++; if (*p == '\"') { /* Eat and discard a quoted-string */ int escaped = 0; p++; do { if (escaped) escaped = 0; else if (*p == '\\') escaped = 1; if (!*p) goto err; } while (escaped || *p != '\"'); chall = p+1; } else { /* Not quoted. Just find the next comma (or EOL) */ p = strchr(p, ','); if (!p) break; chall = p; } } while (isspace((int)(unsigned char)*chall)) chall++; if (!*chall) break; if (*chall != ',') goto err; chall++; while (isspace((int)(unsigned char)*chall)) chall++; if (!*chall) break; } if (!nonce || !realm) goto err; if (openconnect_random(&cnonce_random, sizeof(cnonce_random))) goto err; cnonce = buf_alloc(); buf_append_base64(cnonce, cnonce_random, sizeof(cnonce_random), 0); if (buf_error(cnonce)) goto err; /* * According to RFC2617 §3.2.2.2: * A1 = unq(username-value) ":" unq(realm-value) ":" passwd * So the username is escaped, while the password isn't. */ a1 = buf_alloc(); buf_append_unq(a1, user); buf_append(a1, ":%s:%s", realm->data, pass); if (buf_error(a1)) goto err; if (algo == ALGO_MD5_SESS) { struct oc_text_buf *old_a1 = a1; a1 = buf_alloc(); buf_append_md5(a1, old_a1->data, old_a1->pos); buf_free(old_a1); buf_append(a1, ":%s:%s\n", nonce->data, cnonce->data); if (buf_error(a1)) goto err; } a2 = buf_alloc(); buf_append(a2, "CONNECT:%s:%d", vpninfo->hostname, vpninfo->port); if (buf_error(a2)) goto err; kd = buf_alloc(); buf_append_md5(kd, a1->data, a1->pos); buf_append(kd, ":%s:", nonce->data); if (qop_auth) { buf_append(kd, "%08x:%s:auth:", nc, cnonce->data); } buf_append_md5(kd, a2->data, a2->pos); if (buf_error(kd)) goto err; buf_append(hdrbuf, "%sAuthorization: Digest username=\"", proxy ? "Proxy-" : ""); buf_append_unq(hdrbuf, user); buf_append(hdrbuf, "\", realm=\"%s\", nonce=\"%s\", uri=\"%s:%d\", ", realm->data, nonce->data, vpninfo->hostname, vpninfo->port); if (qop_auth) buf_append(hdrbuf, "cnonce=\"%s\", nc=%08x, qop=auth, ", cnonce->data, nc); if (opaque) buf_append(hdrbuf, "opaque=\"%s\", ", opaque->data); buf_append(hdrbuf, "response=\""); buf_append_md5(hdrbuf, kd->data, kd->pos); buf_append(hdrbuf, "\"\r\n"); ret = 0; auth_state->state = AUTH_IN_PROGRESS; if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting Digest authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting Digest authentication to server '%s'\n"), vpninfo->hostname); err: if (a1 && a1->data) memset(a1->data, 0, a1->pos); buf_free(a1); buf_free(a2); buf_free(kd); buf_free(realm); buf_free(nonce); buf_free(cnonce); buf_free(opaque); return ret; } openconnect-8.20/auth.c0000644000076400007640000012672514171606260016655 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #ifndef _WIN32 #include #include #include #endif #include #include #include #include #include static int xmlpost_append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body); static int cstp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt); int openconnect_set_option_value(struct oc_form_opt *opt, const char *value) { if (opt->type == OC_FORM_OPT_SELECT) { struct oc_form_opt_select *sopt = (void *)opt; int i; for (i=0; inr_choices; i++) { if (!strcmp(value, sopt->choices[i]->name)) { opt->_value = sopt->choices[i]->name; return 0; } } return -EINVAL; } opt->_value = strdup(value); if (!opt->_value) return -ENOMEM; return 0; } static int prop_equals(xmlNode *xml_node, const char *name, const char *value) { char *tmp = (char *)xmlGetProp(xml_node, (unsigned char *)name); int ret = 0; if (tmp && !strcasecmp(tmp, value)) ret = 1; free(tmp); return ret; } static int parse_auth_choice(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNode *xml_node) { struct oc_form_opt_select *opt; xmlNode *opt_node; int max_choices = 0, selection = 0; for (opt_node = xml_node->children; opt_node; opt_node = opt_node->next) max_choices++; /* Return early when there is a * * * * * * * * New server response looks like: * * * * * * * foobar * 1234567 * * platname, "win")) return "csd"; else /* linux, linux-64, android, apple-ios */ return "csdLinux"; } /* Ignore stubs on mobile platforms */ static inline int csd_use_stub(struct openconnect_info *vpninfo) { if (!strcmp(vpninfo->platname, "android") || !strcmp(vpninfo->platname, "apple-ios")) return 0; else return 1; } static int parse_auth_node(struct openconnect_info *vpninfo, xmlNode *xml_node, struct oc_auth_form *form) { int ret = 0; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; xmlnode_get_text(xml_node, "banner", &form->banner); xmlnode_get_text(xml_node, "message", &form->message); xmlnode_get_text(xml_node, "error", &form->error); if (xmlnode_is_named(xml_node, "form")) { /* defaults for new XML POST */ form->method = strdup("POST"); form->action = strdup("/"); xmlnode_get_prop(xml_node, "method", &form->method); xmlnode_get_prop(xml_node, "action", &form->action); if (!form->method || !form->action || strcasecmp(form->method, "POST") || !form->action[0]) { vpn_progress(vpninfo, PRG_ERR, _("Cannot handle form method='%s', action='%s'\n"), form->method, form->action); ret = -EINVAL; goto out; } ret = parse_form(vpninfo, form, xml_node); if (ret < 0) goto out; } else if (!vpninfo->csd_scriptname && xmlnode_is_named(xml_node, "csd")) { xmlnode_get_prop(xml_node, "token", &vpninfo->csd_token); xmlnode_get_prop(xml_node, "ticket", &vpninfo->csd_ticket); } else if (xmlnode_is_named(xml_node, "authentication-complete")) { /* Ick. Since struct oc_auth_form is public there's no * simple way to add a flag to it. So let's abuse the * auth_id string instead. */ free(form->auth_id); form->auth_id = strdup("openconnect_authentication_complete"); } /* For Windows, vpninfo->csd_xmltag will be "csd" and there are *two* nodes; one with token/ticket and one with the URLs. Process them both the same and rely on the fact that xmlnode_get_prop() will not *clear* the variable if no such property is found. */ if (!vpninfo->csd_scriptname && xmlnode_is_named(xml_node, csd_tag_name(vpninfo))) { /* ignore the CSD trojan binary on mobile platforms */ if (csd_use_stub(vpninfo)) xmlnode_get_prop(xml_node, "stuburl", &vpninfo->csd_stuburl); xmlnode_get_prop(xml_node, "starturl", &vpninfo->csd_starturl); xmlnode_get_prop(xml_node, "waiturl", &vpninfo->csd_waiturl); vpninfo->csd_preurl = strdup(vpninfo->urlpath); } } out: return ret; } static int parse_host_scan_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { /* ignore this whole section if the CSD trojan has already run */ if (vpninfo->csd_scriptname) return 0; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; xmlnode_get_text(xml_node, "host-scan-ticket", &vpninfo->csd_ticket); xmlnode_get_text(xml_node, "host-scan-token", &vpninfo->csd_token); xmlnode_get_text(xml_node, "host-scan-base-uri", &vpninfo->csd_starturl); xmlnode_get_text(xml_node, "host-scan-wait-uri", &vpninfo->csd_waiturl); } return 0; } static void parse_profile_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { /* ignore this whole section if we already have a URL */ if (vpninfo->profile_url && vpninfo->profile_sha1) return; /* Find child... */ xml_node = xml_node->children; while (1) { if (!xml_node) return; if (xml_node->type == XML_ELEMENT_NODE && xmlnode_is_named(xml_node, "vpn") && !xmlnode_match_prop(xml_node, "rev", "1.0")) break; xml_node = xml_node->next; } /* Find */ xml_node = xml_node->children; while (1) { if (!xml_node) return; if (xml_node->type == XML_ELEMENT_NODE && xmlnode_is_named(xml_node, "file") && !xmlnode_match_prop(xml_node, "type", "profile") && !xmlnode_match_prop(xml_node, "service-type", "user")) break; xml_node = xml_node->next; } for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; xmlnode_get_text(xml_node, "uri", &vpninfo->profile_url); /* FIXME: Check for */ xmlnode_get_text(xml_node, "hash", &vpninfo->profile_sha1); } } static void parse_config_node(struct openconnect_info *vpninfo, xmlNode *xml_node) { for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; if (xmlnode_is_named(xml_node, "vpn-profile-manifest")) parse_profile_node(vpninfo, xml_node); } } /* Return value: * < 0, on error * = 0, on success; *form is populated */ static int parse_xml_response(struct openconnect_info *vpninfo, char *response, struct oc_auth_form **formp, int *cert_rq) { struct oc_auth_form *form; xmlDocPtr xml_doc; xmlNode *xml_node; int ret; if (*formp) { free_auth_form(*formp); *formp = NULL; } if (cert_rq) *cert_rq = 0; if (!response) { vpn_progress(vpninfo, PRG_DEBUG, _("Empty response from server\n")); return -EINVAL; } form = calloc(1, sizeof(*form)); if (!form) return -ENOMEM; xml_doc = xmlReadMemory(response, strlen(response), "noname.xml", NULL, XML_PARSE_NOERROR|XML_PARSE_RECOVER); if (!xml_doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server response\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), response); free(form); return -EINVAL; } xml_node = xmlDocGetRootElement(xml_doc); while (xml_node) { ret = 0; if (xml_node->type != XML_ELEMENT_NODE) { xml_node = xml_node->next; continue; } if (xmlnode_is_named(xml_node, "config-auth")) { /* if we do have a config-auth node, it is the root element */ xml_node = xml_node->children; continue; } else if (xmlnode_is_named(xml_node, "client-cert-request")) { if (cert_rq) *cert_rq = 1; else { vpn_progress(vpninfo, PRG_ERR, _("Received when not expected.\n")); ret = -EINVAL; } } else if (xmlnode_is_named(xml_node, "auth")) { xmlnode_get_prop(xml_node, "id", &form->auth_id); ret = parse_auth_node(vpninfo, xml_node, form); } else if (xmlnode_is_named(xml_node, "opaque")) { if (vpninfo->opaque_srvdata) xmlFreeNode(vpninfo->opaque_srvdata); vpninfo->opaque_srvdata = xmlCopyNode(xml_node, 1); if (!vpninfo->opaque_srvdata) ret = -ENOMEM; } else if (xmlnode_is_named(xml_node, "host-scan")) { ret = parse_host_scan_node(vpninfo, xml_node); } else if (xmlnode_is_named(xml_node, "config")) { parse_config_node(vpninfo, xml_node); } else { xmlnode_get_text(xml_node, "session-token", &vpninfo->cookie); xmlnode_get_text(xml_node, "error", &form->error); } if (ret) goto out; xml_node = xml_node->next; } if (!form->auth_id && (!cert_rq || !*cert_rq)) { vpn_progress(vpninfo, PRG_ERR, _("XML response has no \"auth\" node\n")); ret = -EINVAL; goto out; } *formp = form; xmlFreeDoc(xml_doc); return 0; out: xmlFreeDoc(xml_doc); free_auth_form(form); return ret; } /* Return value: * < 0, on error * = OC_FORM_RESULT_OK (0), when form parsed and POST required * = OC_FORM_RESULT_CANCELLED, when response was cancelled by user * = OC_FORM_RESULT_LOGGEDIN, when form indicates that login was already successful */ static int handle_auth_form(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *request_body, const char **method, const char **request_body_type) { int ret; struct oc_vpn_option *opt, *next; if (!strcmp(form->auth_id, "success")) return OC_FORM_RESULT_LOGGEDIN; if (vpninfo->nopasswd) { vpn_progress(vpninfo, PRG_ERR, _("Asked for password but '--no-passwd' set\n")); return -EPERM; } if (vpninfo->csd_token && vpninfo->csd_ticket && vpninfo->csd_starturl && vpninfo->csd_waiturl) { /* AB: remove all cookies */ for (opt = vpninfo->cookies; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } vpninfo->cookies = NULL; return OC_FORM_RESULT_OK; } if (!form->opts) { if (form->message) vpn_progress(vpninfo, PRG_INFO, "%s\n", form->message); if (form->error) { if (!strcmp(form->error, "Certificate Validation Failure")) { /* XX: Cisco servers send this ambiguous error string when the CLIENT certificate * is absent or incorrect. We rewrite it to make this clearer, while preserving * the original error as a substring. */ free(form->error); if (!(form->error = strdup(_("Client certificate missing or incorrect (Certificate Validation Failure)")))) return -ENOMEM; } else vpn_progress(vpninfo, PRG_ERR, "%s\n", form->error); } if (!strcmp(form->auth_id, "openconnect_authentication_complete")) goto justpost; return -EPERM; } ret = process_auth_form(vpninfo, form); if (ret) return ret; /* tokencode generation is deferred until after username prompts and CSD */ ret = do_gen_tokencode(vpninfo, form); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; return ret; } justpost: ret = vpninfo->xmlpost ? xmlpost_append_form_opts(vpninfo, form, request_body) : append_form_opts(vpninfo, form, request_body); if (!ret) { *method = "POST"; *request_body_type = vpninfo->xmlpost ? "application/xml; charset=utf-8" : "application/x-www-form-urlencoded"; } return ret; } /* * Old submission format is just an HTTP query string: * * password=12345678&username=joe * * New XML format is more complicated: * * * * * * * * * For init only, add: * https:// * * For auth-reply only, add: * * * * * * */ #define XCAST(x) ((const xmlChar *)(x)) static xmlDocPtr xmlpost_new_query(struct openconnect_info *vpninfo, const char *type, xmlNodePtr *rootp) { xmlDocPtr doc; xmlNodePtr root, node; doc = xmlNewDoc(XCAST("1.0")); if (!doc) return NULL; root = xmlNewNode(NULL, XCAST("config-auth")); if (!root) goto bad; xmlDocSetRootElement(doc, root); if (!xmlNewProp(root, XCAST("client"), XCAST("vpn"))) goto bad; if (!xmlNewProp(root, XCAST("type"), XCAST(type))) goto bad; node = xmlNewTextChild(root, NULL, XCAST("version"), XCAST(vpninfo->version_string ? : openconnect_version_str)); if (!node) goto bad; if (!xmlNewProp(node, XCAST("who"), XCAST("vpn"))) goto bad; node = xmlNewTextChild(root, NULL, XCAST("device-id"), XCAST(vpninfo->platname)); if (!node) goto bad; if (vpninfo->mobile_platform_version) { if (!xmlNewProp(node, XCAST("platform-version"), XCAST(vpninfo->mobile_platform_version)) || !xmlNewProp(node, XCAST("device-type"), XCAST(vpninfo->mobile_device_type)) || !xmlNewProp(node, XCAST("unique-id"), XCAST(vpninfo->mobile_device_uniqueid))) goto bad; } *rootp = root; return doc; bad: xmlFreeDoc(doc); return NULL; } static int xmlpost_complete(xmlDocPtr doc, struct oc_text_buf *body) { xmlChar *mem = NULL; int len, ret = 0; if (!body) { xmlFree(doc); return 0; } xmlDocDumpMemoryEnc(doc, &mem, &len, "UTF-8"); if (!mem) { xmlFreeDoc(doc); return -ENOMEM; } buf_append_bytes(body, mem, len); xmlFreeDoc(doc); xmlFree(mem); return ret; } static int xmlpost_initial_req(struct openconnect_info *vpninfo, struct oc_text_buf *request_body, int cert_fail) { xmlNodePtr root, node; xmlDocPtr doc = xmlpost_new_query(vpninfo, "init", &root); char *url; if (!doc) return -ENOMEM; url = internal_get_url(vpninfo); if (!url) goto bad; node = xmlNewTextChild(root, NULL, XCAST("group-access"), XCAST(url)); if (!node) goto bad; if (cert_fail) { node = xmlNewTextChild(root, NULL, XCAST("client-cert-fail"), NULL); if (!node) goto bad; } if (vpninfo->authgroup) { node = xmlNewTextChild(root, NULL, XCAST("group-select"), XCAST(vpninfo->authgroup)); if (!node) goto bad; } free(url); return xmlpost_complete(doc, request_body); bad: xmlpost_complete(doc, NULL); return -ENOMEM; } static int xmlpost_append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body) { xmlNodePtr root, node; xmlDocPtr doc = xmlpost_new_query(vpninfo, "auth-reply", &root); struct oc_form_opt *opt; if (!doc) return -ENOMEM; if (vpninfo->opaque_srvdata) { node = xmlCopyNode(vpninfo->opaque_srvdata, 1); if (!node) goto bad; if (!xmlAddChild(root, node)) goto bad; } node = xmlNewChild(root, NULL, XCAST("auth"), NULL); if (!node) goto bad; for (opt = form->opts; opt; opt = opt->next) { /* group_list: create a new node under */ if (!strcmp(opt->name, "group_list")) { if (!xmlNewTextChild(root, NULL, XCAST("group-select"), XCAST(opt->_value))) goto bad; continue; } /* answer,whichpin,new_password: rename to "password" */ if (!strcmp(opt->name, "answer") || !strcmp(opt->name, "whichpin") || !strcmp(opt->name, "new_password")) { if (!xmlNewTextChild(node, NULL, XCAST("password"), XCAST(opt->_value))) goto bad; continue; } /* verify_pin,verify_password: ignore */ if (!strcmp(opt->name, "verify_pin") || !strcmp(opt->name, "verify_password")) { continue; } /* everything else: create user_input under */ if (!xmlNewTextChild(node, NULL, XCAST(opt->name), XCAST(opt->_value))) goto bad; } if (vpninfo->csd_token && !xmlNewTextChild(root, NULL, XCAST("host-scan-token"), XCAST(vpninfo->csd_token))) goto bad; return xmlpost_complete(doc, body); bad: xmlpost_complete(doc, NULL); return -ENOMEM; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ static int cstp_can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_mode == OC_TOKEN_MODE_NONE || vpninfo->token_bypassed) return -EINVAL; #ifdef HAVE_LIBSTOKEN if (vpninfo->token_mode == OC_TOKEN_MODE_STOKEN) { if (strcmp(opt->name, "password") && strcmp(opt->name, "answer")) return -EINVAL; return can_gen_stoken_code(vpninfo, form, opt); } #endif /* Otherwise it's an OATH token of some kind. */ if (!strcmp(opt->name, "secondary_password") || (form->auth_id && !strcmp(form->auth_id, "challenge"))) return can_gen_tokencode(vpninfo, form, opt); return -EINVAL; } static int fetch_config(struct openconnect_info *vpninfo) { struct oc_text_buf *buf; int result; unsigned char local_sha1_bin[SHA1_SIZE]; char local_sha1_ascii[(SHA1_SIZE * 2)+1]; int i; if (!vpninfo->profile_url || !vpninfo->profile_sha1 || !vpninfo->write_new_config) return -ENOENT; if (!strncasecmp(vpninfo->xmlsha1, vpninfo->profile_sha1, SHA1_SIZE * 2)) { vpn_progress(vpninfo, PRG_TRACE, _("Not downloading XML profile because SHA1 already matches\n")); return 0; } if ((result = openconnect_open_https(vpninfo))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); return result; } buf = buf_alloc(); if (vpninfo->port != 443) buf_append(buf, "GET %s:%d HTTP/1.1\r\n", vpninfo->profile_url, vpninfo->port); else buf_append(buf, "GET %s HTTP/1.1\r\n", vpninfo->profile_url); cstp_common_headers(vpninfo, buf); if (vpninfo->xmlpost) buf_append(buf, "Cookie: webvpn=%s\r\n", vpninfo->cookie); buf_append(buf, "\r\n"); if (buf_error(buf)) return buf_free(buf); if (vpninfo->ssl_write(vpninfo, buf->data, buf->pos) != buf->pos) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GET request for new config\n")); buf_free(buf); return -EIO; } result = process_http_response(vpninfo, 0, NULL, buf); if (result < 0) { /* We'll already have complained about whatever offended us */ buf_free(buf); return -EINVAL; } if (result != 200) { buf_free(buf); return -EINVAL; } openconnect_sha1(local_sha1_bin, buf->data, buf->pos); for (i = 0; i < SHA1_SIZE; i++) sprintf(&local_sha1_ascii[i*2], "%02x", local_sha1_bin[i]); if (strcasecmp(vpninfo->profile_sha1, local_sha1_ascii)) { vpn_progress(vpninfo, PRG_ERR, _("Downloaded config file did not match intended SHA1\n")); buf_free(buf); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Downloaded new XML profile\n")); result = vpninfo->write_new_config(vpninfo->cbdata, buf->data, buf->pos); buf_free(buf); return result; } int set_csd_user(struct openconnect_info *vpninfo) { #if defined(_WIN32) || defined(__native_client__) vpn_progress(vpninfo, PRG_ERR, _("Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet implemented.\n")); return -EPERM; #else setsid(); if (vpninfo->uid_csd_given && vpninfo->uid_csd != getuid()) { struct passwd *pw; int e; if (setgid(vpninfo->gid_csd)) { e = errno; fprintf(stderr, _("Failed to set gid %ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } if (setgroups(1, &vpninfo->gid_csd)) { e = errno; fprintf(stderr, _("Failed to set groups to %ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } if (setuid(vpninfo->uid_csd)) { e = errno; fprintf(stderr, _("Failed to set uid %ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } if (!(pw = getpwuid(vpninfo->uid_csd))) { e = errno; fprintf(stderr, _("Invalid user uid=%ld: %s\n"), (long)vpninfo->uid_csd, strerror(e)); return -e; } setenv("HOME", pw->pw_dir, 1); if (chdir(pw->pw_dir)) { e = errno; fprintf(stderr, _("Failed to change to CSD home directory '%s': %s\n"), pw->pw_dir, strerror(e)); return -e; } } return 0; #endif } static int run_csd_script(struct openconnect_info *vpninfo, char *buf, int buflen) { #if defined(_WIN32) || defined(__native_client__) vpn_progress(vpninfo, PRG_ERR, _("Error: Running the 'Cisco Secure Desktop' trojan on this platform is not yet implemented.\n")); return -EPERM; #else char fname[64]; int fd, ret; pid_t child; if (!vpninfo->csd_wrapper && !buflen) { vpn_progress(vpninfo, PRG_ERR, _("Error: Server asked us to run CSD hostscan.\n" "You need to provide a suitable --csd-wrapper argument.\n")); return -EINVAL; } if (!vpninfo->uid_csd_given && !vpninfo->csd_wrapper) { vpn_progress(vpninfo, PRG_ERR, _("Error: Server asked us to download and run a 'Cisco Secure Desktop' trojan.\n" "This facility is disabled by default for security reasons, so you may wish to enable it.\n")); return -EPERM; } fname[0] = 0; if (buflen) { struct oc_vpn_option *opt; const char *tmpdir = NULL; /* If the caller wanted $TMPDIR set for the CSD script, that means for us too; look through the csd_env for a TMPDIR override. */ for (opt = vpninfo->csd_env; opt; opt = opt->next) { if (!strcmp(opt->option, "TMPDIR")) { tmpdir = opt->value; break; } } if (!opt) tmpdir = getenv("TMPDIR"); if (!tmpdir && !access("/var/tmp", W_OK)) tmpdir = "/var/tmp"; if (!tmpdir) tmpdir = "/tmp"; if (access(tmpdir, W_OK)) vpn_progress(vpninfo, PRG_ERR, _("Temporary directory '%s' is not writable: %s\n"), tmpdir, strerror(errno)); snprintf(fname, 64, "%s/csdXXXXXX", tmpdir); fd = mkstemp(fname); if (fd < 0) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to open temporary CSD script file: %s\n"), strerror(errno)); return err; } ret = write(fd, (void *)buf, buflen); if (ret != buflen) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to write temporary CSD script file: %s\n"), strerror(errno)); return err; } fchmod(fd, 0755); close(fd); } vpn_progress(vpninfo, PRG_INFO, _("Trying to run CSD Trojan script '%s'.\n"), vpninfo->csd_wrapper ?: fname); child = fork(); if (child == -1) { goto out; } else if (child > 0) { /* in parent: must reap child process */ int status; waitpid(child, &status, 0); if (!WIFEXITED(status)) { vpn_progress(vpninfo, PRG_ERR, _("CSD script '%s' exited abnormally\n"), vpninfo->csd_wrapper ?: fname); ret = -EINVAL; } else { if (WEXITSTATUS(status) != 0) { vpn_progress(vpninfo, PRG_ERR, _("CSD script '%s' returned non-zero status: %d\n"), vpninfo->csd_wrapper ?: fname, WEXITSTATUS(status)); /* Some scripts do exit non-zero, and it's never mattered. * Don't abort for now. */ vpn_progress(vpninfo, PRG_ERR, _("Authentication may fail. If your script is not returning zero, fix it.\n" "Future versions of openconnect will abort on this error.\n")); } else { vpn_progress(vpninfo, PRG_INFO, _("CSD script '%s' completed successfully.\n"), vpninfo->csd_wrapper ?: fname); } free(vpninfo->urlpath); vpninfo->urlpath = strdup(vpninfo->csd_waiturl + (vpninfo->csd_waiturl[0] == '/' ? 1 : 0)); vpninfo->csd_scriptname = strdup(fname); http_add_cookie(vpninfo, "sdesktop", vpninfo->csd_token, 1); ret = 0; } free(vpninfo->csd_stuburl); vpninfo->csd_stuburl = NULL; free(vpninfo->csd_waiturl); vpninfo->csd_waiturl = NULL; return ret; } else { /* in child: will be reaped by init */ char scertbuf[MD5_SIZE * 2 + 1]; char ccertbuf[MD5_SIZE * 2 + 1]; char *csd_argv[32]; int i = 0; if (set_csd_user(vpninfo) < 0) exit(1); if (getuid() == 0 && !vpninfo->csd_wrapper) { fprintf(stderr, _("Warning: you are running insecure CSD code with root privileges\n" "\t Use command line option \"--csd-user\"\n")); } /* * Spurious stdout output from the CSD trojan will break both * the NM tool and the various cookieonly modes. * Also, gnome-shell *closes* stderr so attempt to cope with that * by opening /dev/null, because otherwise some CSD scripts fail. * Actually, perhaps we should set up our own pipes, and report * the trojan's output via vpn_progress(). */ if (ferror(stderr)) { int nulfd = open("/dev/null", O_WRONLY); if (nulfd >= 0) { dup2(nulfd, 2); close(nulfd); } } dup2(2, 1); if (vpninfo->csd_wrapper) csd_argv[i++] = openconnect_utf8_to_legacy(vpninfo, vpninfo->csd_wrapper); csd_argv[i++] = fname; csd_argv[i++] = (char *)"-ticket"; if (asprintf(&csd_argv[i++], "\"%s\"", vpninfo->csd_ticket) == -1) goto out; csd_argv[i++] = (char *)"-stub"; csd_argv[i++] = (char *)"\"0\""; csd_argv[i++] = (char *)"-group"; if (asprintf(&csd_argv[i++], "\"%s\"", vpninfo->authgroup?:"") == -1) goto out; openconnect_local_cert_md5(vpninfo, ccertbuf); scertbuf[0] = 0; get_cert_md5_fingerprint(vpninfo, vpninfo->peer_cert, scertbuf); csd_argv[i++] = (char *)"-certhash"; if (asprintf(&csd_argv[i++], "\"%s:%s\"", scertbuf, ccertbuf) == -1) goto out; csd_argv[i++] = (char *)"-url"; if (asprintf(&csd_argv[i++], "\"https://%s%s\"", openconnect_get_hostname(vpninfo), vpninfo->csd_starturl) == -1) goto out; csd_argv[i++] = (char *)"-langselen"; csd_argv[i++] = NULL; if (setenv("CSD_SHA256", openconnect_get_peer_cert_hash(vpninfo)+11, 1)) /* remove initial 'pin-sha256:' */ goto out; if (setenv("CSD_TOKEN", vpninfo->csd_token, 1)) goto out; if (setenv("CSD_HOSTNAME", openconnect_get_hostname(vpninfo), 1)) goto out; apply_script_env(vpninfo->csd_env); execv(csd_argv[0], csd_argv); out: vpn_progress(vpninfo, PRG_ERR, _("Failed to exec CSD script %s\n"), vpninfo->csd_wrapper ?: fname); exit(1); } #endif /* !_WIN32 && !__native_client__ */ } /* Return value: * < 0, if the data is unrecognized * = 0, if the page contains an XML document * = 1, if the page is a wait/refresh HTML page */ static int check_response_type(struct openconnect_info *vpninfo, char *form_buf) { if (strncmp(form_buf, " 0, no cookie (user cancel) * = 0, obtained cookie */ int cstp_obtain_cookie(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt; char *form_buf = NULL; struct oc_auth_form *form = NULL; int result, buflen, tries; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type; const char *method = "POST"; char *orig_host = NULL, *orig_path = NULL, *form_path = NULL; int orig_port = 0; int cert_rq, cert_sent = !vpninfo->certinfo[0].cert; int newgroup_attempts = 5; if (!vpninfo->xmlpost) goto no_xmlpost; /* * Step 2: Probe for XML POST compatibility * * This can get stuck in a redirect loop, so give up after any of: * * a) HTTP error (e.g. 400 Bad Request) * b) Same-host redirect (e.g. Location: /foo/bar) * c) Three redirects without seeing a plausible login form */ newgroup: if (newgroup_attempts-- <= 0) { result = -1; goto out; } buf_truncate(request_body); result = xmlpost_initial_req(vpninfo, request_body, 0); if (result < 0) goto out; free(orig_host); free(orig_path); orig_host = strdup(vpninfo->hostname); orig_path = vpninfo->urlpath ? strdup(vpninfo->urlpath) : NULL; orig_port = vpninfo->port; for (tries = 0; ; tries++) { if (tries == 3) { fail: if (vpninfo->xmlpost) { no_xmlpost: /* Try without XML POST this time... */ tries = 0; vpninfo->xmlpost = 0; request_body_type = NULL; buf_truncate(request_body); method = "GET"; if (orig_host) { openconnect_set_hostname(vpninfo, orig_host); free(orig_host); orig_host = NULL; free(vpninfo->urlpath); vpninfo->urlpath = orig_path; orig_path = NULL; vpninfo->port = orig_port; } openconnect_close_https(vpninfo, 0); } else { result = -EIO; goto out; } } request_body_type = vpninfo->xmlpost ? "application/xml; charset=utf-8" : "application/x-www-form-urlencoded"; result = do_https_request(vpninfo, method, request_body_type, request_body, &form_buf, NULL, HTTP_NO_FLAGS); if (vpninfo->got_cancel_cmd) { result = 1; goto out; } if (result == -EINVAL) goto fail; if (result < 0) goto out; /* Some ASAs forget to send the TLS cert request on the initial connection. * If we have a client cert, disable HTTP keepalive until we get a real * login form (not a redirect). */ if (!cert_sent) openconnect_close_https(vpninfo, 0); /* XML POST does not allow local redirects, but GET does. */ if (vpninfo->xmlpost && vpninfo->redirect_type == REDIR_TYPE_LOCAL) goto fail; else if (vpninfo->redirect_type != REDIR_TYPE_NONE) continue; result = parse_xml_response(vpninfo, form_buf, &form, &cert_rq); if (result < 0) goto fail; if (cert_rq) { int cert_failed = 0; free_auth_form(form); form = NULL; if (!cert_sent && vpninfo->certinfo[0].cert) { /* Try again on a fresh connection. */ cert_sent = 1; } else if (cert_sent && vpninfo->certinfo[0].cert) { /* Try again with in the request */ vpn_progress(vpninfo, PRG_ERR, _("Server requested SSL client certificate after one was provided\n")); cert_failed = 1; } else { vpn_progress(vpninfo, PRG_INFO, _("Server requested SSL client certificate; none was configured\n")); cert_failed = 1; } buf_truncate(request_body); result = xmlpost_initial_req(vpninfo, request_body, cert_failed); if (result < 0) goto fail; continue; } if (form && form->action) { vpninfo->redirect_url = strdup(form->action); handle_redirect(vpninfo); } break; } if (vpninfo->xmlpost) vpn_progress(vpninfo, PRG_INFO, _("XML POST enabled\n")); /* Step 4: Run the CSD trojan, if applicable */ if (vpninfo->csd_starturl && vpninfo->csd_waiturl) { buflen = 0; if (vpninfo->urlpath) { form_path = strdup(vpninfo->urlpath); if (!form_path) { result = -ENOMEM; goto out; } } /* fetch the CSD program, if available */ if (vpninfo->csd_stuburl) { vpninfo->redirect_url = vpninfo->csd_stuburl; vpninfo->csd_stuburl = NULL; handle_redirect(vpninfo); buflen = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, NULL, HTTP_NO_FLAGS); if (buflen <= 0) { if (vpninfo->csd_wrapper) { vpn_progress(vpninfo, PRG_ERR, _("Couldn't fetch CSD stub. Proceeding anyway with CSD wrapper script.\n")); buflen = 0; } else { result = -EINVAL; goto out; } } else vpn_progress(vpninfo, PRG_INFO, _("Fetched CSD stub for %s platform (size is %d bytes).\n"), vpninfo->platname, buflen); } /* This is the CSD stub script, which we now need to run */ result = run_csd_script(vpninfo, form_buf, buflen); if (result) goto out; /* vpninfo->urlpath now points to the wait page */ while (1) { result = do_https_request(vpninfo, "GET", NULL, NULL, &form_buf, NULL, HTTP_NO_FLAGS); if (result <= 0) break; result = check_response_type(vpninfo, form_buf); if (result <= 0) break; vpn_progress(vpninfo, PRG_INFO, _("Refreshing %s after 1 second...\n"), vpninfo->urlpath); sleep(1); } if (result < 0) goto out; /* refresh the form page, to see if we're authorized now */ free(vpninfo->urlpath); vpninfo->urlpath = form_path; form_path = NULL; result = do_https_request(vpninfo, vpninfo->xmlpost ? "POST" : "GET", request_body_type, request_body, &form_buf, NULL, HTTP_REDIRECT); if (result < 0) goto out; result = parse_xml_response(vpninfo, form_buf, &form, NULL); if (result < 0) goto out; } /* Step 5: Ask the user to fill in the auth form; repeat as necessary */ while (1) { buf_truncate(request_body); result = handle_auth_form(vpninfo, form, request_body, &method, &request_body_type); if (result < 0 || result == OC_FORM_RESULT_CANCELLED) goto out; if (result == OC_FORM_RESULT_LOGGEDIN) break; if (result == OC_FORM_RESULT_NEWGROUP) { free(form_buf); form_buf = NULL; free_auth_form(form); form = NULL; goto newgroup; } result = do_https_request(vpninfo, method, request_body_type, request_body, &form_buf, NULL, 1); if (result < 0) goto out; result = parse_xml_response(vpninfo, form_buf, &form, NULL); if (result < 0) goto out; if (form->action) { vpninfo->redirect_url = strdup(form->action); handle_redirect(vpninfo); } } /* A return value of 2 means the XML form indicated success. We _should_ have a cookie... */ for (opt = vpninfo->cookies; opt; opt = opt->next) { if (!strcmp(opt->option, "webvpn")) { free(vpninfo->cookie); vpninfo->cookie = strdup(opt->value); } else if (vpninfo->write_new_config && !strcmp(opt->option, "webvpnc")) { char *tok = opt->value; char *bu = NULL, *fu = NULL, *sha = NULL; do { if (tok != opt->value) *(tok++) = 0; if (!strncmp(tok, "bu:", 3)) bu = tok + 3; else if (!strncmp(tok, "fu:", 3)) fu = tok + 3; else if (!strncmp(tok, "fh:", 3)) sha = tok + 3; } while ((tok = strchr(tok, '&'))); if (bu && fu && sha) { if (asprintf(&vpninfo->profile_url, "%s%s", bu, fu) == -1) { result = -ENOMEM; goto out; } vpninfo->profile_sha1 = strdup(sha); } } } result = 0; fetch_config(vpninfo); out: buf_free(request_body); free (orig_host); free (orig_path); free(form_path); free(form_buf); free_auth_form(form); if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); free(vpninfo->csd_scriptname); vpninfo->csd_scriptname = NULL; } return result; } openconnect-8.20/gssapi.c0000644000076400007640000002473214067426206017201 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include static void print_gss_err(struct openconnect_info *vpninfo, const char *where, gss_OID mech, OM_uint32 err_maj, OM_uint32 err_min) { OM_uint32 major, minor, msg_ctx = 0; gss_buffer_desc status; do { major = gss_display_status(&minor, err_maj, GSS_C_GSS_CODE, mech, &msg_ctx, &status); if (GSS_ERROR(major)) break; vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", where, (char *)status.value); gss_release_buffer(&minor, &status); } while (msg_ctx); msg_ctx = 0; do { major = gss_display_status(&minor, err_min, GSS_C_MECH_CODE, mech, &msg_ctx, &status); if (GSS_ERROR(major)) break; vpn_progress(vpninfo, PRG_ERR, "%s: %s\n", where, (char *)status.value); gss_release_buffer(&minor, &status); } while (msg_ctx); } static const char spnego_OID[] = "\x2b\x06\x01\x05\x05\x02"; static const gss_OID_desc gss_mech_spnego = { 6, (void *)&spnego_OID }; static int gssapi_setup(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, const char *service, int proxy) { OM_uint32 major, minor; gss_buffer_desc token = GSS_C_EMPTY_BUFFER; char *name; if (asprintf(&name, "%s@%s", service, proxy ? vpninfo->proxy : vpninfo->hostname) == -1) return -ENOMEM; token.length = strlen(name); token.value = name; major = gss_import_name(&minor, &token, (gss_OID)GSS_C_NT_HOSTBASED_SERVICE, &auth_state->gss_target_name); free(name); if (GSS_ERROR(major)) { vpn_progress(vpninfo, PRG_ERR, _("Error importing GSSAPI name for authentication:\n")); print_gss_err(vpninfo, "gss_import_name()", GSS_C_NO_OID, major, minor); return -EIO; } return 0; } #define GSSAPI_CONTINUE 2 #define GSSAPI_COMPLETE 3 int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { OM_uint32 major, minor; gss_buffer_desc in = GSS_C_EMPTY_BUFFER; gss_buffer_desc out = GSS_C_EMPTY_BUFFER; gss_OID mech = GSS_C_NO_OID; if (auth_state->state == AUTH_AVAILABLE && gssapi_setup(vpninfo, auth_state, "HTTP", proxy)) { auth_state->state = AUTH_FAILED; return -EIO; } if (auth_state->challenge && *auth_state->challenge) { int len = -EINVAL; in.value = openconnect_base64_decode(&len, auth_state->challenge); if (!in.value) return len; in.length = len; } else if (auth_state->state > AUTH_AVAILABLE) { /* This indicates failure. We were trying, but got an empty 'Proxy-Authorization: Negotiate' header back from the server implying that we should start again... */ goto fail_gssapi; } major = gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &auth_state->gss_context, auth_state->gss_target_name, (gss_OID)&gss_mech_spnego, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, &in, &mech, &out, NULL, NULL); if (in.value) free(in.value); if (major == GSS_S_COMPLETE) auth_state->state = GSSAPI_COMPLETE; else if (major == GSS_S_CONTINUE_NEEDED) auth_state->state = GSSAPI_CONTINUE; else { vpn_progress(vpninfo, PRG_ERR, _("Error generating GSSAPI response:\n")); print_gss_err(vpninfo, "gss_init_sec_context()", mech, major, minor); fail_gssapi: auth_state->state = AUTH_FAILED; cleanup_gssapi_auth(vpninfo, auth_state); /* If we were *trying*, then -EAGAIN. Else -ENOENT to let another auth method try without having to reconnect first. */ return in.value ? -EAGAIN : -ENOENT; } buf_append(hdrbuf, "%sAuthorization: Negotiate ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, out.value, out.length, 0); buf_append(hdrbuf, "\r\n"); gss_release_buffer(&minor, &out); if (!auth_state->challenge) { if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting GSSAPI authentication to proxy\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting GSSAPI authentication to server '%s'\n"), vpninfo->hostname); } return 0; } /* auth_state is NULL when called from socks_gssapi_auth() */ void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { OM_uint32 minor; if (!auth_state) return; if (auth_state->gss_target_name != GSS_C_NO_NAME) gss_release_name(&minor, &auth_state->gss_target_name); if (auth_state->gss_context != GSS_C_NO_CONTEXT) gss_delete_sec_context(&minor, &auth_state->gss_context, GSS_C_NO_BUFFER); /* Shouldn't be necessary, but make sure... */ auth_state->gss_target_name = GSS_C_NO_NAME; auth_state->gss_context = GSS_C_NO_CONTEXT; } int socks_gssapi_auth(struct openconnect_info *vpninfo) { gss_buffer_desc in = GSS_C_EMPTY_BUFFER; gss_buffer_desc out = GSS_C_EMPTY_BUFFER; gss_OID mech = GSS_C_NO_OID; OM_uint32 major, minor; unsigned char *pktbuf; int i; int ret = -EIO; struct http_auth_state *auth_state = &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]; if (gssapi_setup(vpninfo, auth_state, "rcmd", 1)) return -EIO; pktbuf = malloc(65538); if (!pktbuf) return -ENOMEM; while (1) { major = gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &auth_state->gss_context, auth_state->gss_target_name, (gss_OID)&gss_mech_spnego, GSS_C_MUTUAL_FLAG | GSS_C_REPLAY_FLAG | GSS_C_DELEG_FLAG | GSS_C_SEQUENCE_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, &in, &mech, &out, NULL, NULL); in.value = NULL; if (major == GSS_S_COMPLETE) { /* If we still have a token to send, send it. */ if (!out.length) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); gss_release_buffer(&minor, &out); ret = 0; break; } } else if (major != GSS_S_CONTINUE_NEEDED) { print_gss_err(vpninfo, "gss_init_sec_context()", mech, major, minor); break; } if (out.length > 65535) { vpn_progress(vpninfo, PRG_ERR, _("GSSAPI token too large (%zd bytes)\n"), out.length); break; } pktbuf[0] = 1; /* ver */ pktbuf[1] = 1; /* mtyp */ store_be16(pktbuf + 2, out.length); memcpy(pktbuf + 4, out.value, out.length); free(out.value); vpn_progress(vpninfo, PRG_TRACE, _("Sending GSSAPI token of %zu bytes\n"), out.length + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out.length + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GSSAPI authentication token to proxy: %s\n"), strerror(-i)); break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI authentication token from proxy: %s\n"), strerror(-i)); break; } if (pktbuf[1] == 0xff) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server reported GSSAPI context failure\n")); break; } else if (pktbuf[1] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unknown GSSAPI status response (0x%02x) from SOCKS server\n"), pktbuf[1]); break; } in.length = load_be16(pktbuf + 2); in.value = pktbuf; if (!in.length) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in.length); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI authentication token from proxy: %s\n"), strerror(-i)); break; } vpn_progress(vpninfo, PRG_TRACE, _("Got GSSAPI token of %zu bytes: %02x %02x %02x %02x\n"), in.length, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); } if (!ret) { ret = -EIO; pktbuf[0] = 0; in.value = pktbuf; in.length = 1; major = gss_wrap(&minor, auth_state->gss_context, 0, GSS_C_QOP_DEFAULT, &in, NULL, &out); if (major != GSS_S_COMPLETE) { print_gss_err(vpninfo, "gss_wrap()", mech, major, minor); goto err; } pktbuf[0] = 1; pktbuf[1] = 2; store_be16(pktbuf + 2, out.length); memcpy(pktbuf + 4, out.value, out.length); free(out.value); vpn_progress(vpninfo, PRG_TRACE, _("Sending GSSAPI protection negotiation of %zu bytes\n"), out.length + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out.length + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send GSSAPI protection response to proxy: %s\n"), strerror(-i)); goto err; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI protection response from proxy: %s\n"), strerror(-i)); goto err; } in.length = load_be16(pktbuf + 2); in.value = pktbuf; i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in.length); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive GSSAPI protection response from proxy: %s\n"), strerror(-i)); goto err; } vpn_progress(vpninfo, PRG_TRACE, _("Got GSSAPI protection response of %zu bytes: %02x %02x %02x %02x\n"), in.length, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); major = gss_unwrap(&minor, auth_state->gss_context, &in, &out, NULL, GSS_C_QOP_DEFAULT); if (major != GSS_S_COMPLETE) { print_gss_err(vpninfo, "gss_unwrap()", mech, major, minor); goto err; } if (out.length != 1) { vpn_progress(vpninfo, PRG_ERR, _("Invalid GSSAPI protection response from proxy (%zu bytes)\n"), out.length); gss_release_buffer(&minor, &out); goto err; } i = *(char *)out.value; gss_release_buffer(&minor, &out); if (i == 1) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message integrity, which is not supported\n")); goto err; } else if (i == 2) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message confidentiality, which is not supported\n")); goto err; } else if (i) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands protection unknown type 0x%02x\n"), (unsigned char)i); goto err; } ret = 0; } err: cleanup_gssapi_auth(vpninfo, NULL); free(pktbuf); return ret; } openconnect-8.20/auth-common.c0000644000076400007640000001210514067426206020131 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include int xmlnode_is_named(xmlNode *xml_node, const char *name) { return !strcmp((char *)xml_node->name, name); } /* similar to auth.c's xmlnode_get_text, including that *var should be freed by the caller, but without the hackish param / %s handling that Cisco needs. */ int xmlnode_get_val(xmlNode *xml_node, const char *name, char **var) { char *str; if (name && !xmlnode_is_named(xml_node, name)) return -EINVAL; str = (char *)xmlNodeGetContent(xml_node); if (!str) return -ENOENT; free(*var); *var = str; return 0; } int xmlnode_get_prop(xmlNode *xml_node, const char *name, char **var) { char *str = (char *)xmlGetProp(xml_node, (unsigned char *)name); if (!str) return -ENOENT; free(*var); *var = str; return 0; } int xmlnode_match_prop(xmlNode *xml_node, const char *name, const char *match) { char *str = (char *)xmlGetProp(xml_node, (unsigned char *)name); int ret = 0; if (!str) return -ENOENT; if (strcmp(str, match)) ret = -EEXIST; free(str); return ret; } int append_opt(struct oc_text_buf *body, const char *opt, const char *name) { if (buf_error(body)) return buf_error(body); if (body->pos) buf_append(body, "&"); buf_append_urlencoded(body, opt); buf_append(body, "="); buf_append_urlencoded(body, name); return 0; } int append_form_opts(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_text_buf *body) { struct oc_form_opt *opt; int ret; for (opt = form->opts; opt; opt = opt->next) { ret = append_opt(body, opt->name, opt->_value); if (ret) return ret; } return 0; } void clear_mem(void *p, size_t s) { #if defined(HAVE_MEMSET_S) memset_s(p, s, 0x5a, s); #elif defined(HAVE_EXPLICIT_MEMSET) explicit_memset(p, 0x5a, s); #elif defined(HAVE_EXPLICIT_BZERO) explicit_bzero(p, s); #elif defined(_WIN32) SecureZeroMemory(p, s); #else volatile char *pp = (volatile char *)p; while (s--) *(pp++) = 0x5a; #endif } void free_pass(char **p) { if (!*p) return; clear_mem(*p, strlen(*p)); free(*p); *p = NULL; } void free_opt(struct oc_form_opt *opt) { if (!opt) return; /* for SELECT options, opt->value is a pointer to oc_choice->name */ if (opt->type != OC_FORM_OPT_SELECT) { free_pass(&opt->_value); } else { struct oc_form_opt_select *sel = (void *)opt; int i; for (i = 0; i < sel->nr_choices; i++) { free(sel->choices[i]->name); free(sel->choices[i]->label); free(sel->choices[i]->auth_type); free(sel->choices[i]->override_name); free(sel->choices[i]->override_label); free(sel->choices[i]); } free(sel->choices); } free(opt->name); free(opt->label); free(opt); } void free_auth_form(struct oc_auth_form *form) { if (!form) return; while (form->opts) { struct oc_form_opt *tmp = form->opts->next; free_opt(form->opts); form->opts = tmp; } free(form->error); free(form->message); free(form->banner); free(form->auth_id); free(form->method); free(form->action); free(form); } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int do_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form) { struct oc_form_opt *opt; for (opt = form->opts; ; opt = opt->next) { /* this form might not have anything for us to do */ if (!opt) return 0; if (opt->type == OC_FORM_OPT_TOKEN) break; } switch (vpninfo->token_mode) { #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return do_gen_stoken_code(vpninfo, form, opt); #endif case OC_TOKEN_MODE_TOTP: return do_gen_totp_code(vpninfo, form, opt); case OC_TOKEN_MODE_HOTP: return do_gen_hotp_code(vpninfo, form, opt); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return do_gen_yubikey_code(vpninfo, form, opt); #endif default: return -EINVAL; } } int can_gen_tokencode(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { switch (vpninfo->token_mode) { #ifdef HAVE_LIBSTOKEN case OC_TOKEN_MODE_STOKEN: return can_gen_stoken_code(vpninfo, form, opt); #endif case OC_TOKEN_MODE_TOTP: return can_gen_totp_code(vpninfo, form, opt); case OC_TOKEN_MODE_HOTP: return can_gen_hotp_code(vpninfo, form, opt); #ifdef HAVE_LIBPCSCLITE case OC_TOKEN_MODE_YUBIOATH: return can_gen_yubikey_code(vpninfo, form, opt); #endif default: return -EINVAL; } } openconnect-8.20/lzo.h0000644000076400007640000000465614045244571016526 0ustar00dwoodhoudwoodhou00000000000000/* * LZO 1x decompression * copyright (c) 2006 Reimar Doeffinger * * This file is part of FFmpeg. * * FFmpeg is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public * License as published by the Free Software Foundation; either * version 2.1 of the License, or (at your option) any later version. * * FFmpeg is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. * * You should have received a copy of the GNU Lesser General Public * License along with FFmpeg; if not, write to the Free Software * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301 USA */ #ifndef AVUTIL_LZO_H #define AVUTIL_LZO_H /** * @defgroup lavu_lzo LZO * @ingroup lavu_crypto * * @{ */ #include /** @name Error flags returned by av_lzo1x_decode * @{ */ /// end of the input buffer reached before decoding finished #define AV_LZO_INPUT_DEPLETED 1 /// decoded data did not fit into output buffer #define AV_LZO_OUTPUT_FULL 2 /// a reference to previously decoded data was wrong #define AV_LZO_INVALID_BACKPTR 4 /// a non-specific error in the compressed bitstream #define AV_LZO_ERROR 8 /** @} */ #define AV_LZO_INPUT_PADDING 8 #define AV_LZO_OUTPUT_PADDING 12 /** * @brief Decodes LZO 1x compressed data. * @param out output buffer * @param outlen size of output buffer, number of bytes left are returned here * @param in input buffer * @param inlen size of input buffer, number of bytes left are returned here * @return 0 on success, otherwise a combination of the error flags above * * Make sure all buffers are appropriately padded, in must provide * AV_LZO_INPUT_PADDING, out must provide AV_LZO_OUTPUT_PADDING additional bytes. */ int av_lzo1x_decode(void *out, int *outlen, const void *in, int *inlen); /** * @} */ #define FFMAX(x,y) ({ typeof(x) _x = (x) ; typeof(y) _y = (y); \ _x > _y ? _x : _y; }) struct lzo_packed_uint32 { uint32_t d; } __attribute__((packed)); #define AV_COPY32U(dst,src) do { \ ((struct lzo_packed_uint32 *)dst)->d = \ ((struct lzo_packed_uint32 *)src)->d; \ } while (0) static inline void av_memcpy_backptr(unsigned char *dst, int back, int cnt) { while (cnt--) { *dst = *(dst - back); dst++; } } #endif /* AVUTIL_LZO_H */ openconnect-8.20/ppp.h0000644000076400007640000000667714067426206016527 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020 David Woodhouse, Daniel Lenski * * Authors: David Woodhouse , Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_PPP_H__ #define __OPENCONNECT_PPP_H__ /* PPP protocol field values */ #define PPP_LCP 0xc021 #define PPP_IPCP 0x8021 #define PPP_IP6CP 0x8057 #define PPP_CCP 0x80fd /* compression (unwanted) */ #define PPP_IP 0x21 #define PPP_IP6 0x57 /* NCP packet formats (https://tools.ietf.org/html/rfc1661#section-3.2) */ #define CONFREQ 1 #define CONFACK 2 #define CONFNAK 3 #define CONFREJ 4 #define TERMREQ 5 #define TERMACK 6 #define CODEREJ 7 #define PROTREJ 8 #define ECHOREQ 9 #define ECHOREP 10 #define DISCREQ 11 /* HDLC (https://tools.ietf.org/html/rfc1662) */ #define PPPINITFCS16 0xffff /* Initial FCS value */ #define PPPGOODFCS16 0xf0b8 /* Good final FCS value */ #define ASYNCMAP_LCP 0xffffffffUL /* When sending LCP, always escape characters < 0x20 */ /* PPP states (https://tools.ietf.org/html/rfc1661#section-3.2) */ #define PPPS_DEAD 0 #define PPPS_ESTABLISH 1 #define PPPS_OPENED 2 #define PPPS_AUTHENTICATE 3 #define PPPS_NETWORK 4 #define PPPS_TERMINATE 5 /* NCP states */ #define NCP_CONF_REQ_RECEIVED 1 #define NCP_CONF_REQ_SENT 2 #define NCP_CONF_ACK_RECEIVED 4 #define NCP_CONF_ACK_SENT 8 #define NCP_TERM_REQ_SENT 16 #define NCP_TERM_REQ_RECEIVED 32 #define NCP_TERM_ACK_SENT 64 #define NCP_TERM_ACK_RECEIVED 128 /* RFC1661 (or RFC1662 for ASYNCMAP) */ #define LCP_MRU 1 #define LCP_ASYNCMAP 2 #define LCP_MAGIC 5 #define LCP_PFCOMP 7 #define LCP_ACCOMP 8 #define BIT_MRU (1 << LCP_MRU) #define BIT_ASYNCMAP (1 << LCP_ASYNCMAP) #define BIT_MAGIC (1 << LCP_MAGIC) #define BIT_PFCOMP (1 << LCP_PFCOMP) #define BIT_ACCOMP (1 << LCP_ACCOMP) #define BIT_MRU_COAX (1 << 9) /* RFC1332 */ #define IPCP_IPADDRS 1 #define IPCP_IPCOMP 2 #define IPCP_IPADDR 3 /* RFC1877: DNS[0]=129, NBNS[0]=130, DNS[1]=131, NBNS[1]=132 */ #define IPCP_xNS_BASE 129 #define IPCP_DNS0 1 #define IPCP_NBNS0 2 #define IPCP_DNS1 4 #define IPCP_NBNS1 8 /* RFC5072 */ #define IP6CP_INT_ID 1 struct oc_ncp { int state; int id; int termreqs_sent; time_t last_req; }; struct oc_ppp { /* We need to know these before we start */ int encap; int encap_len; int hdlc; int want_ipv4; int want_ipv6; int check_http_response; int terminate_on_pause; int ppp_state; struct oc_ncp lcp; struct oc_ncp ipcp; struct oc_ncp ip6cp; /* Outgoing options */ uint32_t out_asyncmap; int out_lcp_opts; int32_t out_lcp_magic; /* stored in on-the-wire order */ struct in_addr out_ipv4_addr; struct in6_addr out_ipv6_addr; int solicit_peerns; /* bitfield of DNS/NBNS to request */ int got_peerns; /* Incoming options */ uint32_t in_asyncmap; int in_lcp_opts; int32_t in_lcp_magic; /* stored in on-the-wire order */ struct in_addr in_ipv4_addr; struct in6_addr in_ipv6_addr; struct in_addr nameservers[4]; int exp_ppp_hdr_size; /* predicted size of next PPP header */ }; #endif /* __OPENCONNECT_PPP_H__ */ openconnect-8.20/gnutls-esp.c0000644000076400007640000001071014100007325017764 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include void destroy_esp_ciphers(struct esp *esp) { if (esp->cipher) { gnutls_cipher_deinit(esp->cipher); esp->cipher = NULL; } if (esp->hmac) { gnutls_hmac_deinit(esp->hmac, NULL); esp->hmac = NULL; } } static int init_esp_cipher(struct openconnect_info *vpninfo, struct esp *esp, gnutls_mac_algorithm_t macalg, gnutls_cipher_algorithm_t encalg) { gnutls_datum_t enc_key; int err; destroy_esp_ciphers(esp); enc_key.size = gnutls_cipher_get_key_size(encalg); enc_key.data = esp->enc_key; err = gnutls_cipher_init(&esp->cipher, encalg, &enc_key, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise ESP cipher: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_hmac_init(&esp->hmac, macalg, esp->hmac_key, gnutls_hmac_get_len(macalg)); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize ESP HMAC: %s\n"), gnutls_strerror(err)); destroy_esp_ciphers(esp); } return 0; } int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *esp_out, struct esp *esp_in) { gnutls_mac_algorithm_t macalg; gnutls_cipher_algorithm_t encalg; int ret; switch (vpninfo->esp_enc) { case ENC_AES_128_CBC: encalg = GNUTLS_CIPHER_AES_128_CBC; break; case ENC_AES_256_CBC: encalg = GNUTLS_CIPHER_AES_256_CBC; break; default: return -EINVAL; } switch (vpninfo->esp_hmac) { case HMAC_MD5: macalg = GNUTLS_MAC_MD5; break; case HMAC_SHA1: macalg = GNUTLS_MAC_SHA1; break; case HMAC_SHA256: macalg = GNUTLS_MAC_SHA256; break; default: return -EINVAL; } ret = init_esp_cipher(vpninfo, esp_out, macalg, encalg); if (ret) return ret; gnutls_cipher_set_iv(esp_out->cipher, esp_out->iv, sizeof(esp_out->iv)); ret = init_esp_cipher(vpninfo, esp_in, macalg, encalg); if (ret) { destroy_esp_ciphers(esp_out); return ret; } return 0; } /* pkt->len shall be the *payload* length. Omitting the header and the 12-byte HMAC */ int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt) { unsigned char hmac_buf[MAX_HMAC_SIZE]; int err; err = gnutls_hmac(esp->hmac, &pkt->esp, sizeof(pkt->esp) + pkt->len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate HMAC for ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } gnutls_hmac_output(esp->hmac, hmac_buf); if (memcmp(hmac_buf, pkt->data + pkt->len, vpninfo->hmac_out_len)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid HMAC\n")); return -EINVAL; } if (verify_packet_seqno(vpninfo, esp, ntohl(pkt->esp.seq))) return -EINVAL; gnutls_cipher_set_iv(esp->cipher, pkt->esp.iv, sizeof(pkt->esp.iv)); err = gnutls_cipher_decrypt(esp->cipher, pkt->data, pkt->len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Decrypting ESP packet failed: %s\n"), gnutls_strerror(err)); return -EINVAL; } return 0; } int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, int crypt_len) { const int blksize = 16; int err; err = gnutls_cipher_encrypt(vpninfo->esp_out.cipher, pkt->data, crypt_len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to encrypt ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } err = gnutls_hmac(vpninfo->esp_out.hmac, &pkt->esp, sizeof(pkt->esp) + crypt_len); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate HMAC for ESP packet: %s\n"), gnutls_strerror(err)); return -EIO; } gnutls_hmac_output(vpninfo->esp_out.hmac, pkt->data + crypt_len); memcpy(vpninfo->esp_out.iv, pkt->data + crypt_len, blksize); gnutls_cipher_encrypt(vpninfo->esp_out.cipher, vpninfo->esp_out.iv, blksize); return 0; } openconnect-8.20/version.c0000644000076400007640000000005714204505643017366 0ustar00dwoodhoudwoodhou00000000000000const char *openconnect_version_str = "v8.20"; openconnect-8.20/openconnect.ico0000644000076400007640000045005214040533771020551 0ustar00dwoodhoudwoodhou00000000000000 \f@@ (B00 %   1 :B hKPNG  IHDRx IDATxdY0.Hs\Zkj3u(&yiS(9"뺩r\p8ꫯ^}gFc*/0 !} V}'! Kx<={n00 v@[n쪹dcEt@Ji 'Xe)\v[a(bssSomm\X Ϝ9=uTt=ϋRqFZ ZS#bGk*"U\pYP&Dz>\6B_ !JBed20L.iePkK),p+^{2 h nwVWW뺔eN( -RJDP i6Ɔ 0 w"`0<B<1! wvv40w#̭j s̙w}zyy(B,ei[Vh4}ߏl_Rz8J8ДAd2i:""Nc"dYvu<yasssˣpj˽ A o)N~$`<84h8R$ "Æ~(Wan\S_{6 4֦B`eXJ)Yh4#>r>OO>v#R*p]tNt:SaBV Qqq[W |sW E(_ҳ,*`(, IN0Fʲ,inGыJB(6Ο?[.0OTO<)=ϣ4MUYu]-P)eYFi֛B&+0X`(lM}]HT5Ǐvm]]( u] PNSzR@{}}qԩC=tG x\mzNXk<|߷.!`c`]x3Va߫L}""((H"sL4<ϭWfcL&Ie{Bz#wwwmkkͫpkk+6mN#)\#SZ(EQ>qLum]|ZV9 㦞8$0u<( MeYں|x?xG0[^w[XV|Ղv ׸_W0nPg?3` kC`t:yC0Na4qmх,ŋ/~k_{ W+++EFD]6BR8֛հ$ .`߰0L!e}Џ @q<4]*WZ& {Swq]N0 !"nCӁ uw] |=*mQ-n{PWύw@Aǰ$W^}//a`0pD$e h~s"[)&v?b0 jcYaBJ)L\b:yɓO4'Z=Nx(FvA@RJ4mqCoWb%\SbX?@eYB$4p!F#݅hE|Q󝧟~K/ fSE@KZk=i4]. aan޺8 vvw݇mQA݆n r}߯2Ǩ0;"8a4&d24M!˲וRZ?;_W\a,--ٵ4h)FDm8t$09s>`c3my.//2$Zk)NG:llliXS~kG;v؇>h4ðk~р lVqz|zB(Fq<36㨗MUagg c7i~kkkzsgggruu PE,S+ㅡ8d{++7a} ,yj vD$$TJIeEΥKիi$9~?_^{`0~~_w:]kփVkP%ov?a@E5ME@ `Y]wν[h'/_fr8RQ„u&Ea0zl8yq멿 (wR%44M"J)HT Cyg:3?3}t}}:CaB݆~f<ϫ{5ww*މ`@]XXl4tX@QW\"-oM"ukajT$Q-@'`0g[ᯔy,%"J󜍍 xO~ԩSY^^WVV`eet:kuՙ(Na y3ߌYvE&Z-p]zDt8:NGRɛo(RJDQRJ4߅$Ig}+ vTe/// +,iVt]/cyc__{?VWW^rKKKvjA,EpFXl~^"MSADqnݗ^zyy_ӟݷv/_///c߇NQAE~ժ0_ xE{pp[LY1q Da8|Ubb}, |_YU"^S8. bUg3M\=qXK]/Oa,Kfp%p@Qkݿ׾˗3 SQ:cxK`jd/--VZk,B4 l۰56_Ǘ=ϫb }\G :k^YxYZCQ0i8Zy 8q C\G@Gyy=hцXOfi ȏ<:ouec.=gad/^K.p8lYle?@mjZJCUb R(Ώ{ ü, %t:hcZkv,ċ/,[fZJJY+7V""U0NAJ yWq_8,@)I@Q5m䀹D  C j vvqm̓=[;v  =ǐ "N==[5kaK)+afֽ>Ll˲D, dD#b"1F1L ZORW}aް^ߋ0A/ KGeY3LyG??vԩ(NEqG+/rV)Zl6my%A6䂈΋Iȫ `K(Xhp:DDxKD|W^GF#vBJInڴ&@q( [#pхU4tcoǏf+~6[T IDATF1EcmR!dYUf}qe[Dt^ϿsmAfY/ZKv+8PEBk]@=l`,#B'V]{;t:/>}?}]Afy~Rk},l6t FM%8p?[ADU%UjɁ&!q5'H)B=+WhI)X%T[V&ղn֊kj6w=6o&(4.PBh4WM|դdrH{3.8/a8fYyF!/{o }f[ZZ`F oĢBP'Ib]$LӴNZJۻe˗z |>SFdjC&#sƯkq;J myZ(D5e ;;;4h4}1l={yN"v}fip @ylf5.XZP,QYM-njf)Fс̅͌@_m"[fdҾGv00!"YfaO&2yu;ʘw0D$ܗ_~YeY@O'O`ouWZYtǰ!I4M!I4qtR~|2<DZ09?Aӱ>k~[>? sh6U΀Ulx#2Ȳy8q]i*Q e٩1 0w;+FQ^MR-AW51I*OTtk7g5ۛ&ʪ96`J)+ Va"RE.q umL ߋw:c&y8R!y'8裏~r雅}tމn 9lmm(ж<i7ŗ`DF:˲DDT&"r " m~g L0 { R/]%E8J)lZ"c^xa /gz~?~|?8#Zۭ7`uulVz߭VFʽU\-Lʲ<)D"L/]tʕ+I5M<ɞ\J-Yqvl-,M2Z-RhY`6ۼh~k^0@UM`cV1RwonD$|HTNsY{6dUɊ&( Cr$Iu]Bp8&^7ݩ.v`X}_+(z5xr٣>P30& L&X|̽!ؤ@)%AeYjcIcԍF1X}1L??GydSkkkC٬1$Il68bcE%-!)02<`Q[;իWIk LoȲ .~T*|D2X0$I0I4-41MJQl;UZ ^VjkeY֕JB] 8ĺ?&@5Rd+!"7,I7IZZAaY9pHP3F3F:'w ]N`$/ę3g{ca~nC߇F-{@_6n%I,cNs} cǎǏFe$Z5,9d mCRRm߯jEBfhq[9 Dqwgg677})Ƕ;v1+eY~,6h}}̽Rn_ 8d2q;`0kYՒeY<1s2Vn{oM{?$*jЭ?%1DDQ0J(BeiۀVݿlKPJ) -@CDr%2@"SVjZ*RJq Zھ ^a Zg)B! jD$@V<`zBHPFq0X'VFCM¼ODQDd{;[[[N<_]__m6jh^Ϛog`cc1Z2˲r8_|Ϟ=Evww$IJ!*a8@@It:w|4 <φxܴ֚P%^tw~u)"<_ʲ61 oa?S y1W's~_eB$d:9Z#[P]\5!`~H)`0V%\F!Zz'R2Ia\%ܭ0BHp͢ Fcu^oesR&ʲQkU_TJb&`4QxqJٱ DD)0fYEQ=C~:J)6[ Gv1sAD}9d?]gΜͥO t:b=p}?7777`;@iHyZk] dBql6[< kkzC7!EN)yT!8#m^Yi(ϟ?mllu݋Ng&y6JK4->sM N4meYv^aI<ɴ&D,;~.&2ͪ.yc d6Ĺoa4m|Qx' H낰Zt:UXlw0:8e,L镘/6&+B)4yk_x\;!0 Eە io x n}Gu1s y\'G{URe?I0 Cz%Ph>#,C S Rդi^CU<#J88A! yU@8~"Ekr.˲̲,4-4-2PU0$IT$\"L.KWh!^89CEQh #"A@QAQzc@=.UP< 衇WfDI)Ǵ{@5֬u% J5sKyu]PX}8~(< )?|A]|.=l=7շCSBHf N,;f-6MjY0eRJNfR<M-L,[ ޅI&.Lq&/M +dǏo:ujt:}Zk=kc`D0B=p1Z\kQQBD-B DTDqoC[_;̈́9Rj)t]Rj0ʀwR%>u]j463nvT]KB=yceb00a~,z=hZdPW-kd%FO=sO>߃?~^)B.B_c$C2Q+e$$l6e4ezL~mooS"MSz'/#2Ngx }|߇~_ynn~߶oMJy?qٍg}43dY {nq+ څm<Xֽo8UTHDJY\ti}ݝ~EMq"QavA]oZAH){Qhgޅ*$aRO5--F+0ьBP b>u*gqoM&Kl] gqprh6>us*CѠVQAѸkyy~g}v6vLt:h+luU dn nu@F`0@)OR*( ? !Ub qޞ:0̳wѿ{X[[; c8 Z8FQ6f B}gվu xAߧr2L8N0L,˩b*L$I6G^zߟ%I@^E;;;G)jI8RJ0 ̅Jm~-fInWyN1Q`G"fa@okkot:9؞YAP~ϟ/>k6w}ʕ+YY* Cy&"=Lv38|}ad,h*677u]m R s=կ^>}?GQt&˲ߗ.]v0nfLZ%u]#Ie@y.@VKF 6: /~vr*0MS4B͢'+W; 5eY8LIZsa~n뺭}c'o; !DG)A z B\JYvdle7kGmyRe$IeYy|ZkȲLf([ɓ'wq&(MӍ7_K.ٞ줵h=f R󓫭Ǡ,K!8P?6ۿ7H !%o+49yj{-//?vVATe-95sUc:^O;777syq xֳB+`^/L<_@!,4-(R#b'8vرBfEK+++w---n4]"r\u&4k&SF]שͭkNJ_TaM(NKnw)I[y'ɕ .zW˲8d<oKW_z!y}wuuUHAqD4h"f9ZmzS$Iy,K#0 +mي s͊`}Fqfrn&棄֬?N~t:ֹs5Lk4躮ND !y¿*x5A4oLpMnx<(( Cm[f3u1wssSՇ~GwcyEiyLoP܀%qV& t]4 Pa)>ȭؚ xBf3RB)e]U= TB_!ǑiƆzF^[[!;s{}h0|ׄVvQѐ6cu]Y+Z[}`u#.ް5הSV¶I[DY4tg3~{Zh?~t:;wnlV#pZl6h8B(=_=֘6ց >̽9vbG,k˷LY5LdDإ^noZC10h4'|<ӧx핞iqtY4?<^BؼHv1.:c,IЯꥥqA\R^R\S؇yAcǎ@5E"j̭íB ;AR $YZH)yS^%M\qGe)!MS[-`{w?я~heeA!RKKKKIq8!4M[6U^sߛpg\[}zl;w 2N0˲,(Mdxn]2N_>}|߽?r2h3Ғ>| e`QUIल,i4 )-n KKKHD8Pk-L+k<ϛXF"411i h4 /,]}_6Z)ɴWPQ IDATYB=G0NDžYW;Q5gAk ~\=,רz~X(z4}߇f vED u8E!.nnnۗ{n!nncBel(L4M+kdtBRJE!i >_i4'ʱcz;u]6m :uZ Qn#ۮX"8,|PokZ%zwye0a8B^ʲlL8Ϝ9]wu~6kvh0^DL %eYl6( vkp!X֏K)7ްZtZR*7.o:=BMφ^p?_} 濕DZ \f3؎Z:7lMv:@D)Ƚ=1N/}K~~Yq~B)uy`0r,M4Few{{{iQN(0 aww 7%q+k_ҴeMkkkn( QK&/LBZWnN{&9l77 Hj!E%ђjxh##r8B[1 LҲHER$%brw>=[Y%ʭ2o޳=vw:,JՇ~C=t~zuusTU:u ýckk˶,bbg4ST^p»WzW\onnJqU1& UE&5 1 @)*x,0 qB Dz04YTRO#~z8N_xj'FqT*m\.VP(Hub30MiaV/xzY|}j*8ՋZ;ݮNx rZkkkko?C T*\.X5U0 CT*j5av USBS\ GQO̶mI_^^jbIX@Jp8>|'n F}LhTE}Ǒ*KdH@, PDQ$ժW_}7/;zE˲ʴy2=xmY֥fO~oW_@}H)yP` i۶- uYRNP݅lE2+M2NJvR'q%s,u )SJ}9BB@VGPu !!1PVh4P(fMh9cZ-)2q$  `fbcFEҤXi_vMa8T.~K_z'|xl>l6WJJ* pGR*4NEӱ`RH7dq 䣚b(:bnFc4}޶38uk~^'4MFQUAMJ+Uܸq Zye1ܮngK$% CSJY0 3WYic cضE}G8;׮]PeA!5!9Ix8!PLQ$Zsq"#ջP(`4\.~~Jl<zf0 ^'^I? T;Y,)>Oj\ab04MӔRH5/~9Wg*J^O\ZbrXi2{ ]ydvZ?AZED@Xč7 !m~쓟gϞoΏ[nVe(c}nkTU83j!0d1n7oNpS5?XQZuO/2Oc>Ե w_=ò,)<<>8jIz`0@Ǡy\.a<c4ԩS(˻m.`& =y?s<ۥ XbREQ04ؤ)`J)MgZeٶmq'8/|skkk_jZn6TO%O\:hҠݞbve{ k_nq$CRH ,`y5ϝ+eT*zή_-tݚ_6M|//+We2"b!VWWEZ S ?)p!DZM( dy9;t09RJOJ@)bDHK۶A':r0HL2˗w\Vq_BV mb8" h,mlnn"dKRJ;4L7W/4MV.GQ' $7pq97cyFەnw ԧ> /m4Anr,mOZBP,B~uERefC'sZAY NjLJ]~RΛ+++/[qkkk+޶:W쓂3iZ21PU={I0 ݚVXfE&)YnE9OXd q3BPB]yOmmmwzVCDRATBP`iwuf#Kf-OlQ.0 EQR}0}d 'MuOyvAkA~ueȺu[(u]#_˭zeii~J)~@SY99GRByl5%SaA` S>fyBJH)I`1' `0`ϠJɕ%}8}t:n.\0M|夰!62VWWq-t:dngHI]'y򣌃V ~=濴J㘇aH8&n+SN8ƆzS/^|?Μ9;Vl4I^i,O_TQkFQDq2R ;;;PEJ)K1FmFhQ`!tO:Ѕ6- :R_,է RJ ArRYtRZ~K2$g\.KƘhSQ0QbR_T=V(lX!"K+y] wO<! 8N< !0 Qq:ri^si(b%߶muXt]looCZ%DQt~[CE9 д? Oe''9 ӿN`??X__iyy5Mj5e[ǟ"|]]d7alR(a4%=1LD\fVF U}ߟBtAzueGʌmA@Q IU7 q(S]'YR`ii *F @10|ֶmbo͛7ov_nUU87Mӵ R.a}r9^ * 10%O8eRJB,5NJxBI;]Sѯz~ z> VX^^A#Q qw8HW0\%VTX_M)%RJs0n+K.>3gSN=eT*r)3Ud0+= u@(y``(A$Yqͽ:6J4yr0`H cl*G~^"PBPq<(0BēSebY10 0 0 0 l¡]ׄ\}A# C8 fT)bR1IGD A"\D=y T@ls}kxot=ϓT4M)ap0dZM&*T|4tyŢ9w},sc8Ҽ`q^0iVph]@_̱c4M* S=4/ A(I,}dqj&_Rz7/t+++SXZZBVTK~Q}IŒF}y%L0 (Rʀ10"3ƆrE:`v(0MEX, Bɶmq"c B811.EQ95 P,b''ģR(`&zx<ӂ~K@ RzqQ.j,TЖ8_\ZZ?s;ۢjq˲eYIqh4anbܱh"ؿ&%I.,=/z&HSQ$@IAMUxp'5MP(81 X,I/۶QT/0P*Zt݅\;28 T*rUQqT??O}X]]ERb=/pLZS4a*n(s-Z߿t{72cqGQ7F"pǼt}yjYz. azݔRZRJGJiq\B èW*5SRS4SsRx:iPuu>];0u-J7~/IZ%RswPн ˕o!ciSD8_]]]/ǜ?c/a&Jؤ54T9 3cǻJp8jO|i?/ёl488ag*pm,1BK)VWWr\6MәZN v!eY ISh`"cJ28nfJ+ Nݎ|ߏys=deekkk(Rw'ʔHOxDf"z!"C-߆w y?裏~vի}˲b(._mmm&'L?!0չ L+ + Z ^{kvԩS>}ڍZ[[>cϝ;mO ! pEJn<> P,X,&60-0Oqxo 7'ض8,Hf1ƅI 駟~|uu˭VeZJgd-=Wro dxlPiL%7z͟ 0vzލn{X&`U* #\=Ry{B#a*u^mJ%LmvE?f&!0+ّ^/nv[+r?w99_Vx<8\T N^ 3HeZ*w~B  V?>vڸnbcܲ,!U`uYLR+H˲TtߴoW&,pj񘔼XJAo)Asa~M4"h)~J+ܯP{ȱQj5{86&M)y?KWWWz."'b>EOxTD4h4.0F _!WWoac[b" z 9a(]]ki,?۶!5YJ)E< &a?ux @O?o{IJOI)/(rf9VM iE? IDATT'l; j]g3<3zmFBeH˲$cLڶ,q;r, HLSVf=[tAVN'Q|ߏP8G/|Ro421l)ZN$|mׄ ~)L*70);\eA0)%`q$~/*־TPl $O'rYP8&z`_a󍍍WoG 0}LDbyyU*گBHι0 #qkVLyd-a>fd*f8mJI vxT-}4M I":y6]в)B!25p) kz}{}}(_FQ$T*1f:v)KXk1[&U!-P^rV\X/yR j, {^sNR0!âXT6Yg:DCjs/8`!8yLDĄNՒ[[[JQiJחlR~JƘvhR\FQxppHz2 CCՒR4uSjB):_^^6ؤ7~~3ygn9seY_0,*7=[YYZ *8א51GqfԻ\xGQe4}\.C]裏W^ [BJI2"Cx,Ƥ;&٬,+Bm'}&^ VCPҘeTbu&Mqp Jf6k6̲,~97c??t/6 ffrz}`~nZ}Njc}z ׿msΕlnoq"ca۶, 2",+k!]= $lɊvvQaE,Cid3ι{IceeC6?{OܲmQVKh4DyOWgTޛ iEѕw}w Ɯ*5P.9JB>39h@yи-RBe ǃtC7H=+zZm1)%SR&yaL\>wgZg&:Ŭe,ԵQ*]y }F£鼹}[ya"" rcyf~Ɵ3 p֭t:Bb(cP(09}ҋfFJJ@x[QJEyjjVq1GXz=}GX&u@9+","f&SB_q,U`0k_Z裏?^BP/YTRD "eYl6o={ol&LbҶm' v~$BRʤ ~Ӷm8xHH897QH?!}߳B?j]˲v ⧙a2?W.XPra2bHmKQp8z og!MvV3dqi1\z=q-nz\KQ5xM^RJtDNG!J}22 #6 #V4ڵk?0 pss.]ƨ:xr콠[@RU,Hz駟na28sΨFBP 5N=Kzm

yMӔmӤ}_t]E,KpEBJ3bq2{1s<?.mm)%677֭[2 ét-)eBrj\՞XZZZīC zRJ*VWW Y}R'$Ѳ> }0}.B9YόFͻִLo{]+Z?&%BEC>C=h4R)q,; P<<ܼy\|ѵk[֯1!)A88m[0D^Ov] alp̐7Ƨ{HN^c, }ޫ_,PJׯwߕ7nHZ"/M@T쑦mO> @Rjx LSi5ivClll$Y0{h]J1s8Ω})}ySEQGf )8BW؜>@fy{C'82Tq;"[Yq"-"i_ӑAP@_~k}fTB׋դ%{zLLO2EH'ʐ1pT(@rEEQZg?YWaIacc[[[I,y' })CJjSF #@ %@٬DIYH`(r=LJ|ޙu,h>7qTr3e1˲8Ŕ8O=Ts^&mc-"H)DoH{cL !a"E.u})RJlR4I+O:;Q0[A$ah$_7o"]:yQ!E,JsrrdŋgJҒnmFTK9)W:G߿]xPk1\H)-9HDAe%?4MQ,%>~0 ߊ(Ð:h |t:eX,u]nƙ:OPJ uf2؎nT7˝? 嘧!YPAKRS'dT\#}(Bǰ, 000yX__/W*m)4$06)vvv3 ÐB)1eP~49P亅a(Sq,0$wBĕJzkvMq40To{{ׯ_Gؘ݆y`Q`Xl6PBP?I1! GsEY߹M:9z\8ؗB@DS"p|b^I\.zTje/aсwvvXp8D/71 0|ߗ S^CbFF2"B1&2cl]y8mU$q㻮 ۶>nܸk׮n󼙱Jq-DZqVc&&S,hj#V 3I x/@)Ss '1gqAz1w;8QqqgU!i˲V6|"F;$(vvv~FZ~?l"}}S{S^Żq0 i !H󼎔'eY(Ijzz677q-t:PR t]uϞ=PU&eRXfa j_DP̀^;aI2qq7/S$1VrR dsZeSN:f\p8$q? íwy  y^R~0L5x~CK*JaP8S`۶뺠FCl""ct]cT*D:H6ڋ]M%IY˄OטEN:I)GRʱy*d(M&'ڽU?0 a}aq H)v QQaY:>cV뺙K:,J걄nfyJ@ֶs Ca+ B`{w9ޣ/9;U$v)4M~OnyF 6r!E-$̊.}t: IJcs1&mb G ! 0E^q / 0'Q"d\  @XL˷v1j`0p8T]JHJ!j L d}_+ڳ3 Kz>Hg$8w{ u! SP`F^nbdpQE9b}E\= ~0TJ(dPfyu ǐ֕NnQ*Pl6a6:!&b BD%;[B_6k_jۧ{fHh3S.O+rGHo6Gs;ʺ) &0 Em/" ׳GdzqPOfdDzP(p!zj9}tR۶jP,v"`HFEX]]ݕFJB~@?#e^0"}J4fXswHQڭR1|hnܓjS?h$AҲZXUVu3ݐ&v9lN,8(-I$O 9J>!\Jx0Bʏ&H iю`ssn7T*:u np8h4BTu>iI@}'"t8{ 0^q0 ^"~]Al}}q߳{iP(z ( 8"+ZN=TLOF$Xcmz=)v )%26\ IDATytK$McuJsj; L^X9L[}WnX1ܓJS*f "=iVxGE" "e$''O@ VaL %R6In˲v `xJi:IBs6~-x,diܙZ!RF'c_qRwI(ŊŢe۶c妼mW#@5 p0k MR.s1YE>ǐR \RNfM,dySOgw ǃ^~WMW c2=Ÿi*"Rq#!R|pHO _RR✛h"b)c j! ÄH(Qhgc xV.+n׆e{g$=Cݻq7,!+4&!h'r 9c0,Ƣ٬Ɉ@=# XO] afnh‚a( fV+XU+>Kpf )e1Ȃz3*:dS}Xg뚇LaBpS q4C re?p/!F``נ`@Rgma<aAy.F(ԙf5Z-|#fekVf\.YR\Jz9HZ8KSS8`*Ts?AM8Y|,0y_sË{%2mewrJ0 0 OXywbk]" drݥƒ cDJ%P( pғ¬'S?"+9&r턟׃?pY$t~v#y|u%{Ç{?gsn '5< NBM X ;<'w Q ؤ0?i6,bj2Z B IsC/3 w<x NI{6x 2qxo$ Khǰ, Z scAqi8Y@1O4MfU~PwJ~L'Ә*Ε;Q#!!Y~ei=)Yg979[>m߳!8(JI((h8Ԓ2؋|c_0k`t(G8Kuh=yD1n#ic,W ^瘐esG<{D/Y4y=j0S\<ng \T]3bSh]" c,CA%#񤾍~^y߽˜x@L"ݬpZ.5=s8Mʷf " Ƙmrr'-:h(<5x2V$DHr<T1.}5HERveEBkL۟. glԾ(8_r`[RPYy(}A Xv,˂@|SȻU,,Aߧ>8)cBڞg+և:fOͼ{0`YVBV/ $u=2&(SQv gMVI.x<`0e~Ct0OH{T@j-"fY3ȄI,Y"H7qaYʝò=sO 0598 9k`ra8&_v;Kv+`]%c2- r8d d@wD帍E,OAԎ}͛}% Kqwrb_3Rz$0L,k܍6.t0 (~Nu3]{h}rߍuc1 LkR>F.OՏzo,XC}A8,uGڨb¶m 0e(r?@Bս2ϳPRE8'"}TONj\p'su/kVI\ >0D8msDv11|Oȵ}CVl1\sVZI [,>}C@C=#m2#=OQ9|<G`A!>]4 з͟,R ~)DToz9$&Ϥ,ڜ02/?k?w2Ϻ}y0]7{H׹pt ^wXI>*Bщ5`B9Lef06iϫ+xP"],49 8*9v#KiK0cksMb)a"SnOR jKEy(BS7;ML ;26M<(u᯶G}bO^`0vyұY @@T`:QO$'H/z~o=?6o]`RODŽg(Y;,ץ]J)'u!qnr0c"ZוlR4I״eEqrntE`/o`Tqp7.y=M":~Íg-2貾K"3hzjGŝX~rw ^/b2zQc"vįq?+ D<m" 88R"gM뤗 =9C;ȀIv<ФGNFyȲ6t"U"g?j1ODB CDQ48G!cӢ @z)e<932]a{R89p7ܬ$J>9 "Im7ۼ LnH( s81y:NMZGD|\r%&_H)EǠ"x:aAL^Ҝ?{ocYr}'*+2^lvTlR ERkh < ,ȰcfI0 (c ZD#lEJ#"ͽ콻2k{?"Nĉʪnftg{#FĽ79Y"u~B\[_dZ: # 1 60yzz'@րc[[[КK=RrȺE6"b"jn1& t: | ˂X}=Cz!(]S7U]4G/oen*EiJTmKٴRLW2!{@4?Wo$}hR1pףNûϻ ݮPOӦklmma0`2ldE]ר뚲,CeIEQ$uvt0]&<o̙+G&K/2@9REo[f̡͗]#Zĵ@N;c֏tZy>PYkz [[[ "e,eYp!2acca0DeM-lkAV{:4 ?W+ҋ0(I.6ru-h:bss+++Ȳ eY&<Ns\`fdY‡iu]OG>ID,tX " m4ce9J7E|!8JjXdNW~ۄ߬[i'oFfM=wJ\SO=h+++<2g,8FDr]hy[-dŋ8vXt:GK"]qpWiw'>J7gzcÜ1ȣtӼr9bW bD13{$wXky8p8h4G}%ۙc?3mnQQ:Nahz?ь=yY &}O.˒˲dc y.π? o_ܞNMQǚiۙyĉ8uA<tdJnZ-퍀^Szer\uҌ^G^!I|129!eN/$@>xVUEwuW{YsѹswfY1f`ccs9Zps DK=)Qb;7>B9Kʯ(Q+]sh&$Ja, ߝ*1lj/$1 (,u<777-^___,-eӿ >sYH~Ǹ@X}Knr)."LieXki56Cɱ($$hwB LQե13YksIdn<ޯ0nm f[4?;/ܹsXZZJ|h4… 5z[z5y[;y~`0xyyK݋Ӿej+i@)F/lpε<F0𶏩U`m"_"G%k(Bd86ƄGi~?>h]g{#ͳqq ak^ P4͛df2Ѕ ,]]o|s8xybuu'N2$mef`ww.]t:\03WU~^GJ٠ 4Cφ+ yQvC~vYRf7Cul sb(<@mEgY6Ϝ1iK1ϗ~ONG̰e)<<1i0`8buu^/L1.^MF#yY]֎:|@XteK\ҡ6Y׻ߣt}a<)]3i!NVæ+ (3/#?N=^6I 4^!>y|QD"? V$vI|2&)OD 7u"TQuMEQi0M?= eeX[[`0^Gm_vvv0L*=SWï2뚳,dxχ~g( ?"uNtQ@Mou-BTʨ*󜈈AжE0ZAI3{'I1ʲ$,KZPUUEMPYibf2Ɛ7?kqiEg1fV@]|tҷ\W]ׁ13n7k-{psu6G̋MӐ&\& ҫsm-O5wY`{;g{b_"2n{)–e ymAtbc*TUET,وd-2@,]^նܤ, Nq T %i8\,u]ɗ/_ط-wvm?: ~x8+++X^^3iibYX~Md21eommmc:r 4:iQTx H: q" tSٷC@#DDWVVDFM Y9fqcmk̲geLDNkL~}磵ʇHB, Zhȱ)Bzs$@?~XOZ؛ygg'0U Pgw=hw?EAj14 'xb o{~_ޕ++++ v(,[[L&h]F#uOu]?sӧMinyܹsL&Z 8מ/V@vw*>*7sܯ`!쑫ƥPՓ EQPӡ(0Pe4NMQÛe%[Jgx>IFV5)c*+h q$'{MPe&se!k@ihYJ+rF7eru˖`0_-<6O>mɛo)`s#5j |iz.nǏ7EQ#fgyXzb3D,QͲln,>M&agϞԇ?g{|[Ncʲ Omy`GRGz+t:.˒eS)y1,Cn˓=КnGGwG :\i^N8A^4MC4eeD$?ǹk N6>w%0XT9.eͲc,-!z h' i <6A/r,Jb~1mgyn%4L82t:r9PUWU^h栭i@~OɄ^GUUg̜[[[{lzyiii|tN>mmmy,Q5O&F;[="kLZY @\mK\VÆk*샯92C㵵5t:9y/b<% NzAn)M&kfODདྷ7^4Ƙ΄kv)^X#$["""ʼ5 c]X`QfU9nzӨ#2Otɓ'ٳg! ;z2$eX^^u4i4vwwe_fp7 ??[Yn=]GbffLShē$.u=N3|~>`@̙35u]b@w ྎ5%Y5Vpu]V<ǣ׬,  ?~^OfI< {{!xuJ!P4(h4dBM/fz[ 94 \0Z3na@>o$A:Ry7@ 0T׵y?n""4MX!4{N"_K@xXZZ5ʲIwf(%gNG(qYzzc"ۣ-b:M&8qʲdbY|4=|6kTy 4j)Nڬ{)״A* 흽|Ϗ ʽ3 }3`G%m#".E\-R|_;"r"'N^4|yήހsͲ窪>gYn+{r£tC:~8eIu]i̦ɋ~[K@g5Sfgg\3'kg49=9vfE/\^XuqWPm?[cJ&ϵd_ \2&g/TӪC3y9I<Ө? gh餢 '.|vӛ>,3 XZZ8h"H6-,--cwl,{,/,sָ DZ+X^*{S\|a[o|4u}ŋhmk-:eysg/^W3ɿxviin{-\pp=pV56P\b{syjb@]²H9CY/yoQIC$aVcWDX@ _?:-Y֘,c"flcl4v<}om1NS03z^p@BĸpľoO>Mc!_F4cFpά&ϳ<ڽP~Rx {_D#?3X_9ڟ6亮yifvɘo<ٿ_|} et^="|iKpkLҁZ8~|7=udQՌk`9 t&%W5Pyˣo>%;_ڣ=sCϑ|!yw,`ce~'OjkifQQeIш&֚,%H@e&cp75" ۾[c}+n=y&irUU6-3 V H|czk=L(d1^3=2 (I>4Qk'[ysd- Le{n<5fy3 ,ϳ,@D3acȒZBKxSgOvI`TB\T!x5rY9\t 2,,zeFMxHbW4*rcKw?7qfxl9 &g@Nt49[/{g~-GӂsL:\t:G S>o+E52gD!ݛ石oOoz;OyuQzD3׊N,]4\â2]dyd~1z06 6Gc3dy{%ӦE,h UV$R6=H̹6Z3< 3'X@QC69bV#,ݷ 2%Lu{Rj`|Ky3ŭcŽ'O֯eW_M=?>7hM[?v:|:lV !soH׆OoG 9wOnxhig}vfQ0rbgų&ԳJwl-3J %yy;o",0JĴ37ַäV&7)&?fLhlK(ݎA^rvr$Gc>1 rt~|DvSnS!X 9 y5u5^</@{˲6dN{{{xէ/j*,e|E[O>յ9PחQMG`8FXaG fhA BYOY * PP M=B?xw  sDуt>j t$lV.λ-X=' ߟ01IrjS$-^ 8в TnUhFXo)J cGQ,Kڭ~˿|?>g?"`Wˏ?y)ҮKڀ$6 c S`ʲ0YFs/ͳ_;5?8ޗٺ!s5Uߡz?f|3o}21ˮ?!> UU @+Ň: ͸Sgպ~1} ̭@ "tcpKzks1٩+7̙}g}rzk_$;AgN/^i,K^^^i7v;JWrU6PuMypk1.<'T4lݭ >Po-a;UD)9MCEhq?P3Et]伉%}"Tu֒ˮcVgϛ#݀ IkOjCQqȝ/ _9ۭ)r8^7 FRQe ~,WtQ.@v jKgW65q|;>K!9 ( Ewew::'O{_Wv?'_yֹ߯-//sӡ˗%,H:N8AKKKbVZN? G;~_yǝl0\; zj:BSO,oAqx֩h/HMڂ8?ڕ9?=]ӌNOq^yn0 :Hxp3mW;jN:]!/e,n/W{_xosۗ7{=x{¥]+{E .[[[4x2N( ~,|: F {]{k߼~{ƅ羌sf'j dN=˞F>z5@V/!JfЗ<&4A>b==_Ę&& g^-[Y[ShH0a|s}pT? hက;JʢLgV>82sB%/YX#淯w55t!1r&ʑ5Qd1b?-ɳlbK,xI"Z?6[FUĴsn꯼ e|r}c]яɯzra:ɲEQȧQ*VWWQUcRTՖ0 n)ʿ}^u.- no1F;0G3 Q>w9yݟƓ^9E3}ܾUmh4(S ʾ(jh08B#fTU^x+Z2FMR#rMeUݠ6hZ<3EoEwesϫoz'+ `yfeS׵N4i}})eG RwlE<Nk/Wdžc7ԩ3&0{ />P"կkֹgm-9sra񿬁7=DZIx2&l[{hqP$ۢSon- j`䁊 [ `hdK9QXFwi{^{-]@EQPe֮kow:$dkQ{:~.,7Sm&Q }G3D@Dw5  -|ݒLJ&1 8W.eVh2yڽ"~|f;|&$;{WP+ՀPO5SEȣ{N!LD-PRx[? ٹ>%埔f>_^bL L0r>W[4M`>X,4|yoG&f<&7UoX߸,ۚzhv8 xk?\g9 v0Aк~D6n~';J~vm &]]㓘z @.D#VYZ#q֎`߂UWR[E^t{K ɪFG[^3wI> Ld4Ί6SMSl`vւ-hY&"E 5\ lؠr*88 <<`u } ~r4HDKY16@D=@&̈(EsIF'qO\|t㙶 P0 ͼE sS4i2DmŚ'Z~ԬN"P a\%*>k6H85G|3C)@r(R 4ն-q ;a xOh*ۚ[KEMW@X߰P|3R-|4g,D>O `_&$N(U@=tA} stNF˛ek&([yXd% d-p.HƁ36F/BdVxK'G`ӸXUk&0 va &N)[u\^]-;טrpID$A{7FUը+AА2M_W L!e#Q7I@ CBQP jtH nA;Aߣx}`.XIx0-0eUO~Uɯ70vPra*h1h&Veg `FLﲝF؆.~R(m4ߧ\|T5on  "24#y؄:7ُC^1Y@axe6bFD@,R5Gd8 ’H5pEr#2:'"ciZZԍ{f?,Aa k^I][m&x$ ёNTuNk') T1b$Q jު\WpKk13Ȉ&.<Lo#U=E]0>s !*E) 4qJ'+if Q`G `tnLh=;Z?ڂv%@IV;i fX-:>v]&B=I} H ]Da/t@ٔenr]oTTwFvRFx:GC66L l! q) *HxA$֌ Aʗ. @<Ɛ]~Y&b*-&\y@Y/8/-a4^{iI9C:?`='^l0&3#DU ̐8kN0~D1DİAP=O37X= 0q9kt$4;Ԡ4$\٢-S&eTeXWi`c%H⯇C,a jY(X=pV.68W_&<>qx?-ř譈>/>XX3V(mr<6H3 YC9+:V߃) 64+7fGy\]IiMT c5 R%EFh-&5mS2yx"ǚ)& Ɠ& P $h|m+, rq@'HJge! `J,S`U׹d525f&#H1HDFdEϭYzl@!V @gu \M "9(J*ĵ] IJuf٤ź c5D"`eOi)<xKM1H:cTbU}AZ+͇~' q-TޖA:Hmz t#_&"PeFH?$ u @AmÆ&xU ׿*EB\o'ws3, |*.^Z"K7$9F'+?eцF@h!n3)h)Ûk<Kb0ۓC*zwvS PL 5LaNhR,RAR`Z;pȞ`DX_#ӿ 327)9N sIhjCORڜ؄ K PǬc>_C%t<9 \ӊ) d.<݈tbd2 XM }:4pF̪?4XA|X:`1; ;fx4UMGyZ>:'%N'f6ey pt>PWR9M} FñmGPf@6ܰ= .\ hZC49F½Df(LP_ TFX460 [/>y c`ȈdRϬDOG\ڊg0zHW%& ׇ6:s")BhkIHsI1vQ>sKY .5 FV*}]ڤ@j k8M[3s}5tGLh:bIYjzֲiלasc%m 6>wiI͚i6HJ/S c{bYUWhN%$8iWx> W" mcpIo-ɟģ>~;sx),li6bĶV* @)ȶe X6R^+F@O eM$ B15E,Ah <ȵQػߐ ұ -OpҖ< n ΄#jڀ s5R9xk!ĩ SCc ښbU_WL gr Kc!/U޷|s CbI\ѹj=m-Y;^Gc5=#؁F_*xIc c8]_B_+ͷnr9'ί>|^ x೟ :9y)s`ӸBcAAP? z)W>.ki $DhGDޜ'85ۏ~E :Ru&ffۘ[ jl)@~|'Z?u܁fWxO$ +PLZzFW6G{16f27]{խi0>'YBWo/T\[<i[K,ӺN~dCl}"-&}!C?)>f!XW!3 BK#ssυ2Buh*jm6Μ'J6! \n! ھ# xɃ(B80W}7i' "'d!@> hPs[ M7潔Lڤ5iى;Uz^_s~_dz(1I%c'[z|u1APu$8qa }j(?1X1؛t3 e=~ ?N|3؝o?OÁd =  q[bq2/ xP%iKOtu5>,y^c<c20( {?O Nx<~U$fHO3<x֥Tʉɤ⅋G,S"0ЗUBf#pIM$h!%!u | (a+O,$ldٞ70p&~@%bn@ n i31z C@,s ^z\I)Z42BQՔ@z Z̛u-,KVmYzS$6+F8(+NI^PIY&nR o_7-0#S?cqha C&L",.4-Su/Pu9He/;9HsD*ދ}* % @ (D@f(}e m l9\glADK'GR8DZse^5E^O0Ć5m:K_qL*U/:b_lX|S7T ͡t<̙3O>dm~;J?O~{{O}?k4bRYFƩ"=sI|Xša5L` m2 8. vǠw~@IC%_IeD':MAshkB ̭cCb$k'7K_=Ӽ!mMHq` ZE,qf#,=_61@y'nIZN~o7 eANUJJWQ RL3H$>? 7AzfI}OɃ C⸟TR ZfhUMob~pJ:O7L7Q@8#yZExbW&O$m1 B)n|>Hl5G ~_}5'МxUJ m8fyף{$Vơ6---aooO~x;t1/r?? f8vw^q~+,;^UUw:iQ5M3nfRd2_꯾ٳg>cx<~^]]?лCPO$/}/>\q :Aћ()cUImrn*䭑uy= Dp#u321َbs CcFd&00IБ#]-ͤ)hw(Z>hƟEU+Y8?Qu o(?HY:>V*J6H&K~6d3 -oG< %pe.ٿ" FJFOq1( @gHAhBr Pno,mIA`ǽee͊ [Z@ۄt`4f[yP#[l ya b+/,y O? ~ YP[~zիظouu'NTUF]װ^-F]ר'xw<;_xkozӛ?t .>Tᡈ?}4}X(@h&Ѷ5- Nry{&*7]zbۑ5qnx!8Jvޙ|?c &m"Dn+}$rfHY̋ZksFKJ3?3fww7G?*7n'O~p8\t:zzA7sy Jc 1 ] ~c0|_[o/>|#7wvv6Ϟ=[]ʏ?^4/ٟ^̌%Fk~ fXYLt1Ă$Ĺ 2}Jycug(;,??%4H3WL30qy[F+ G2nzR"%DHzh3fhJ]uN?íZ?Z2p}f7֜xNNcgWYYobq,gGbrg{|ڜ/$#GAV$XVm@ң,@wĹ0p+/-Hc4D |FkH瀁"bw>v{# 36P6i k! {-'C ]}9/iĴ;܅ݘY):^W{wd/xE?s?K.>+ۇݻwc65w9|\΂z,& VVV: *|AJY^^޽_?W\!:n; @;!Ld1%XYy50sAڀYZM"1A;JȬcUU`HӍMBXJV fQD}eHR-c?$'*g r|\iԘ)i+}"N:,:,f j}f|A_|EҖ#xq}ޅ(5>'@Gl ijb 1+u5RꥆзV0T@8j >,_uT}XJ*V;>8 &L B4T!$׼[OV c=^]oBy V'| `rW_z׾K/}g}ɞ={{nLS\:E|7f 94`dAS_]I]t]C{밾>?o~}./;F|LqD?G^lft97MH0_/{aQ0`Jվ`Vsm!Ѷ`pꑨm=A_1`5|Zp VF@EMvҗ/ꫯNgzq `(/K5BٽL6]@`PBT(R A |i> {evG%՚D9i\la<7`KGu9(ںTp /̾x[>= L B5=xX~c2hAy!&E Y_KdJ:}DrY`'P6V4xcA7Hrd1pj5!r{w=蕁7e{[;];C? o33j TlV\8VPP> `gy<, uo `_}{LtO~=\r>˟ga躮^rΒR)%9csssqh}}[Ot]7M) @2?O4@@VM""KKKPy]tz[:t9ŕW^9g>x}0)-a fcjpH.T2;T s?`Y[mlmnmsy졅 U5o&ARdyDQA A+iǸe%e>}Y 04A^9'a6 $9Ȩ08kp\(s:pBl{Vn@g 8xK$..NS=wຘtЭžV BR襇s| =VQKbe94zcmlz_ kXPfa`ށxak >,l= zA!ulPe 7:9{$#MH~< [Vy V򖷼/ܳguTCt=9r9 31&Pvk]:aFE02Ut+D-v5R2v`uߍ1x~ѝm؜>X3λlQζE=WSU37gDh{V 1 $ zd,[pb  k 33ZF_ٳmh{iV6QņZ+Fok4`;13[/jb 8[TciY~+zurLstgǮѱ-yB뻨Fb~&RK^"*ҩ,`ptgq|'t5\?;k;59,&sX__<ַ|ΟٟWs==R?磽Oؽ{7=/}Kk]wu'?9OA8 @L}O'LB Зup!w&8hP;#zc-L؜Whvݭ -GmV$ <91QsPi@ֹ JkڰOj@c1M! z#_6KL86d2-O:LwS6eAJOWO1onTC a7=!"߅ ZsqYAӓݳv)j k3؀T3zlFo7+߬G[5Yg>tfB:m@|xנtϫ)@spkYv!*3|-IXP,o'.Ž~\|IѝW;U{ݫ-`sss~С>?3?3y~MozӮ4y0L`K4\,ͫqT:,m,VA]eSVt%ĩ ::tHVOEcDvJԛ),gLY|~k|BpF"m5hM$96ri|%L0K3A^.Kap Jwl0SE5B\9 _ٮCxNA@--5DSPFӢM[ƹTKt7 Kn/6?"ΧIUV,sG88M/nyj3RMd&3xs=6oϕW^3X[YY1_|r___?t=|7]w7ߜo~0<󾾲W$|B ڳyq"6ZYY޽{_~7o馯=Q8q ^LCϪN:Ag3z\Zg6 JY.:"߰>-!1nc(TsAmgLXgҁ~4絛)5iu |:vlunz.?[Y۩k% v}7T}PKY\wMua gEZUCAGւ<}O<o1?×ug\%X,kk 6;8p`a:kZ}^{:FW-X,`tE(38s^WvM7CD$H> 4u 0_d,⣴.-e࢏7\ <~,tZtgCRjP^s>x>4*2ֆ:];DK?}M"X9N@e?o994߆K{Sy4 xqD[z&!F;X*Yzgtݜ5OsE7.fL̓v}u^ >ӳr~{s $w: %/ W/9묳*fO&U|ZH?S9iTkzQat:2v}s+^җ>G|q3^K4|v.'-}gGօ1dp>PsmXF'3Lj;4'%%I)Bup-؈g_Q[QF%Q 14!3EBW}7,k16;ET L VZn4Z9}$@|y9g?U"%T3U@q=?1PHtK)ςtLPUHz`VW5w紌߅0w(qZq~`A}"hhAf1G>bthњee({fFQsw·1ALvd.Cmޑ4Zr?yx^vֳܳg 0NG0OɛN:moys*eYǫ@7:plE/ sso l?}0BK)lWU7zڳgq >c{1.(v ~oh7%)CVT:)DV/#\7,Y- ssU6)L5Ogo`i3S[Z5oG#K;J J-ژ"M7 Gdeؤ0a<`|QGd/|2s&L2Lm*i9y le,:I4\C]#2-aP#i>`"<99_vQY%_Im*a},(Zq{$C vX~,Gu>䳟lFHX[[`eeEVVV0L\w]ս; oQ}NN oH(.3<ҔJoooc>,.f"00 P@Ҟ={.; ` S Rq1I0d*?f@&^(  !L^6$z}N~*΂`Tj^6HXT$?98ڡQżMz?ԁNgyz54>g~K_d, p@MrHo7]vK{(g[O۸Ìdͭ~оWtƧQڼ.K,0E~DgQ0toOA@:*` -%  v C+t-y&wT)MrNn֨0 "+[Z>{hylGA9h#o†;drdx+䳟l E/%\|-Hϴ}'fkkk~wW_}M7t,/x9r,L/gϞͷo=[ rG[;@ >3<<gx_q $%"9M+Ҕqahd/Xe;l8SA(zVT< i 7 AлdQRl X_"w];Nl[czQ l^ LرENȄ S g5ʹn{4-[=2hl jaۅK_ҳ.V&x9+{hN<1AĞ)w'ׂʔS< Xl a4 Cc `a f"Zn}-=poTGS0AV7((ך?c2`ssi5u{ٻk׮󖗗e:o9:2pYg]?qYg]W=!y߾}g?Ͽs+++sYf4z^!Ѐz2`uu9K.d]wqq%R2̀Tˏ3u `] B(0շU4 >5DcTV 2QZtMUU=&@kFWD} wIY޹/q7Cv)`|Rܬ "a';H+pBzRiP-RkK|ϲYMnG@m: `_BL?c0`p$3>b孢c=fyc>AJ5 `.[(ZolufV\Ii Z)oɬqK,Cyc )KCt@gT4є"$eĴž,Vx*֦tk2NuG"M t]g]׮]\p9_s>s"tdm[?+++) mnn]׹ٟ]߮9faXu]ݛ'`Kӄ4\ [ :1e8 Bؙv DG1U03 &;K~_0">єӨ3DTMPy1f+wf~mm?C|ƠUy~8jYR5Ea(`|YVJ:TƗry$!w >bLV;,32k1sN%ԗ6Adwbm0x4S ۣu6" j$ rsPPxIIbWݐv &3{z a1WS ^oG7@>{^3G:%ێd]>϶:X[z#Gة:tHM) o/5@rXYYYM)]e@u{=1?JgÄ[NVWWg'o'`a&5e.[+2 \ i:,,[_}ti+:K``P1Ӡ]3sH˻#IČ7 316b{2hdB騧|f x/8qmGYzZ7Y 0$,/'::漳i8[4jˆQѮyUK̒,uY8Ҵ $@A}9 JR1H&-i`Rӿp Yvz@4ftwW573[߳c%.W1If9TtE޼SsܵtKD:m}xtoyƶy9g򷷷fXYY-kuX hak ~kd2YNkKKKS;<> >c{;X9%Ԭ@4ïfPk˛=%fPhRTڋu8$OU2J w3=SeGR{D5 wv5P-q_O+BsY['` ~.  +=O]Dbd6|2:ޮh9xd@Kߙ,o!Zn9C3}ZVシ ~5`RA[1d#T3`ctϫ`e*T5gv|t՚%c 9,,_FNs}&ذkig|hg|b[3/^f)%ye{ń-Zw T@8`e릓duyyyŏNXdlmضU w \ Y εtޯ̑,luXB7sfmuSq]ٞlzNHeM|u>gJ*  N^\? @ @38c&Le%Gꁎf0~*%WڨT{7F>R>[;(m@)Vx~~cX2mzΞa-3WC,/ʄ IF}d-=73y7ut4Eօx' ´0r={,OuI@5/ff3_wss[[[L&XZZBvJ u0Ds.fn::qC f  93 aV3R01X1o546CyDլh6I ^lF&s'1\FqA Et dcxn0G)4up p *P>gA_Wϋ+*L2Swl؞63 I,A{]d*TEB0@,ȏ\d v1zW{m<)@oaaGR}-DJ/6+'%[{R~{!fتny3u,3xZ a^0Z$:Y."Jj56RL>Fd]ȫ`<b<&7>}D uqCD%:@0`FRZ4gVTfgmA΅֖ p3bef3`Lonnb{{ԁ!PPҰX,6m8퀋'c]כ$`V(_?4ڭ&+t!Y$\J UZC*"</VJleR5`VcڐpkLNiIRk ƈtCcDОMs-D0I-LDP1 55J3x2&3֌nc06㴺37nmf)`:K:m@${}YXZ.0^X]nN]^n8XjQABk F(G\ ]1oWjsWuf  h,UMJAa8~xcrzb v47t' L H Y@S6?  5 $ *p9$9}qc!vx,//{|sbX3P1gA]l 9KKK)mlugqxMbQhn 7|}"vA"e5 :ޚ#X*:oP!+!ς|٤Ti1dR<@B?o4($tȠ"9ޭ*U.CsR4GVW 5 unj )?u{X{?b*$RPTXSXݶ1LENA0ķl<;|=G bsU`L45Ovh~1Ea/3M{0!q,Myi0zZ_"RX<чԨ$ nṣq7b;Ƀ@~ _GytXӪ)W*O6mюowߓ}i"!U#5?yx砗JRoI;)֫|QXEEyeh Ą(MA/{,;7A[h```6(6Q!)K늜1[FjPoq;]:@j0o.Bs jz p@m \Am`aʓ0.jollܼdee_B)vV4s~J}sMϹLj@]@ )&Y֖yo~_} |㤂9$*ggVsE#X)GHA1Jp: sm A|I崵9&&f~ k ٴEϳyU 3/FÖ !}Y(uz& ] fT3\ Ս$A2v:tS ,|KZY*˛Fvk@ӎvCUW x6iv_}Q[&9)\ưW492T# #osEOܿgϞU|jR)%slmmA,3ͰX,|t:Ғ666큅 a2 qȑo<O:vpmK:r6Z&0P 26YCgD&.^9LКO>i38OFNZ^ O+咛_\ s_Y gz3$qN E2k }p"(םKU$#7OG r+Aj J[|˾ /dU-@5p< Z"i*H4e弭}w46XU}-g Ce\&GCuZ?;׋ 㻚`zs6} 04 pn`2$>ͩlf?xW>vonnn^,Eg;Y.,ذҷT@uUXٔR9oAfat, 9c؞ݝO.$`y `B!,Hk$j?"B2-_ u 1Dz0+}=f_E֦V ]ʝ9W|qa?XcQ1kPρ?5?%/\#UAJ4 sl 6<,)vڣ,}fdl!N4Vz oɈ~FIsv@I{uh*01`̂Gma+n_$ާ6, f&ChjXhxzx<]|,d>X?/~8t^-־iėst:y6E`fkЂveN??~G>:C=t\@0t9\pV0H24)* ?Ll}9< ~Є88V\c oy3iLZt|XlvR #Ӈ Tzt >-jx{n gg~hqlZ?I%E03xj}X݄\171W!P GJ3CXg8L임T-%\qƀߤ) fKރ -cedx`.iuUuDiS Xa.7IB-M\p@#F1(qh8~eM|.o緾q߻b5Di<]7vM|,6h}4nϱg;zdD>v^z귓Z xy/ &Lpb ʧ].B%wb IDATm&#ȧsLy??T,tOth`p3\j" +=P`}_U ܷS DTS5G@3 ][>@#| 379`Mpv ]*C ӌ{0!8_M`> \wb"Y2mNTHWt[P Ǹ8}Z28-[.xGF_JϢ@:}B {$V3n~k#)D@79 sx籩 HW[}>,"vB%` L+}W^4`҅Tvq `o~k{}}=L,Ag!l h 0ӽpNA{3RUisi>c}}[n6N76lj[!WBBIR@`Ik`W Bsy&RL57TeY8ז6`ʘN&X8z+yZAki(ueS.^)״w]FXHH,4sV"_ k^YnꩿrZFc!d)$ #d$0U?FN破SW*ųܑ2'/k(HN3-M?8YZ'_={YdV{Ա䜳(뮻nٷo^d5gZP,8oW {ömZ"Gۡ69kwqǭ_` @;~Pgͭ0Ӕ1\`@"@oG}9b25Hq."tZ!~ lUH ^((#uDd)( %c))R2'=OIiÙPkٽ}l#Y+0`2Ɗ!*bȞb{w^ADRa1q|ٛ%,/%H/m5[@4o x~NjYxFYl{E*[E89__ *)P^OL%oJ15uQǏb61;X(ɑr?d T5O50)a>dm5G!lGeq?XAanQpa沢ɹAn0iPb"B*2$~:vr pkG7dR=%˸'$q]Y-Ed#r / A|_Ssԟ9 ߸ υVs ~`V$B1SDŽp:s>> v}D9gDQZx}/^QN;7o۞g߽B[jV+uk7-1XYTlc`?cw~+_ăPD~:bAI0 Ln_3n8 >;OJj ]ETPzF/=9 YDyaޙr1 uTQØ"){nhҪ(-sn#\!@l[34n>[8O+++ϲnw& tKZt,p'+=SJb =S=;G]O=:̦ yI0ɨ7 @:RoD#DJ ]>Yh|u^q*pMV:˪kqV%#͙o ӯ@CڼG'0ϩ%D?3҂YfvGP&el`u4n2ßְ͑he /XiY$ &AoC34Zq>n)ߦ V$lx_8 3ڵf\D=_X,P/xJ@ j"<ʟR\Xj\ #nѺތr!ZiKGz ^={\ddwcfo>{f-4z\AYL{fq3OGw}7o^[[馛N?PH нj|/J^hA1 A2hU$؇m\^ tEoE"݃%IIE+-}<]f%/3X3zCu[=JC=39ڃJ^=)Wm̟]I=sO=$,'ľUլT@W+}֣=+z !U܎u\}LH'7 Fs H@+0b@lA]o{ iEO YuWڀ>gnʊMB(Ȱ_ ^i㓟d~_o&'|}?]8L.5sV @ 3[XXA= DN%裏u>[Q|immm??=>c>,wݹ4 c"sZhBm3&`Ϸ~^}h;8@>g,=6z,62&#v8y 3# ][:k tZ1@󉞗F1sOO:!vQMGgcVQ]LǞa3ly`ּLk*YVf,db{9&PfM[}:|əEʠZs#ITeq4.{:ՆKM 44i9 " @ Kmcn WN\.@CejQJ#}j+y07 ƕ:ddOf}wm@Q 8q)×/f}ӿfx N w@*cۢy+n8H)b_DC;0r٘H'"ZpНL xT/~|&k_;|+]tJ)6&"4qc:l7f8fkG1 D?Bq#x7_kюjq/K;LvZ4 ܛP`^B[v=m@ ['zyM~}]&>@Qv矿ؘ{O˫|+^/"UL&Y4|j3k 열Y,f G?G?|;N 0f e-Ojb&YkRX[g$D`"Lg"Th \!J{g<6 |]u CX,$X0 (wwۭ>9)01H,R>Dsk?Cr3=pSGcXIE1+G̖ݤ0_ v vpf، u )[ l0 6 րA2j`KD A}.dwj;+ w|;u @í!八rZFJ}GDoC98w_h´Tcor? ''z׻nY]]]fg59g G뗶Gpc>i- +@ "Xoc=sLReෳKa m UComcZH򕉘C\ahȂ0µL!(Ey*J]&[g括Mw q-ͱIY)Eya%}ݴO?ʠ@pR{2FGX6i ygϛ ,jcQW+B ."l(ؖfm" `g%kT>5s4~u@\Љ4%2hcxJeެ/_muRe4Ahь055,HOwXB㺣[^AG%:ۿ?|2oo^|]|^3 Yc|mY;D!b>J7~s{~CK^<8x?p"+cAe˘PT(N,iQ {ȲLtcZvzdSKӽل msjVQW*$ъϨß/]C#&&VUfHӪ*AmU@bk@q4-LM " \=`&"`&0_\0?ր>gל<ϓ-{x}sO8ꪫ0ι+q-P @Rg=ya Cv/eM1Q*ps~Ys %bD@3ӝ89ach R)POwF`[ Q`? D d`Jb EPBLXjj,}|zp̙dZ_8*_p2cs$tdZ@wb7;]۫}DY *c4-ձAYglavnliS1c%ƓT ;Bzj6#rX\S1GuNTK|V<xk:@vԞ]mVsڏ}NV@#L !@EW`þ?]UaKH v“O>|;y:)z׻>}>}}O޾pee+++NB~u+{%@ 9g粱u>|>/~QWՋ.lw{WWw?pd}0:MS<}wX'A/ņi|] Hk$a8 ĔZ [叾 4 &0 KҠRb@`$,wWsi@-g aD$L^;W#;ϠF_"unطCpk@WSgvM'~kPR6tsY;'m_~r^dfOU}t y yBK[2uP8f~,(gxf֏!"/ԇO3d$n=n&M%wqUW]n뮻C=׼\p5{}]).,&xQ֧Ϯ:`B9¿?{~[o{G17^ﮂwt'0M$# 0b4E-Ƌ 0`TN4#{AC"V!þ宜bR N~TfoG4AiLфJ{li@X D4FLcp^9ִ2>_>g{H?>M}[+hF}C((\dİ=64k4U%4.uLi]Azr_$HjmKKj= ֵ@ijUUm% 2+Yl-_ iK1xb'V SS>W!D//DH6eX!@̍`tX_9Nyuu5'Op _+s9gy\^^v>zǂt6@^,X,`K>䓇>|c=vWz;񩍍Ch.,}:tB?UDZhBȧb|N)3ߔCuK.0AôI2RMc& m9iߡ}irr ϰ|99(Blߺ2Dxk'jrwYa⦀4JͩAʍh( ͥbȷ4JpH]t1: /a]u hm;dWXNW[F @VNq 3ПoOU0:|>mԍ BTiD4@%_(iٔ}L&~P Eg#ښ!g#Zl`'9tr- ԧ5\8p{ek}?_+{^zҾ]vMVWWeyy7걽:`- 6x;:;㓟'n>uY۞y{^R'5 Ce<$SwdD1JJ:-`SdRp?kMQ˜ONy, >>q6hk{w兌М{vl=\ک~H(SjLbb,sia ׫ |5Mҳ1)me々x> Fj3!uK0?h3*CueFҀfX =!(+!iiU9m5xh]u^eFέcO5m{ pBP-8ɀQJ;}LEg'vY~íֺj5-џQ ʤUP}j IDAT}ZDZTm 7xcпMoJ]nC??#?r{w9tWt]wl6a2m6v]@9ȑ#>M_>po~۟;#//Ny`Z,2z}?xR s*a>@,g"?{Sm*4@ ~GkZzbB̤\h)ɑ:`Lgj͔f4_##3Bǚ=u}ҌXߗ(E֍FtIRU˜TfR^?f~Ĉ,$afǐ+o_n~>o߾=)s|I<#9cmm ܯ߸xȑ{گp?dpCksc9+\u T9GmE#-X Hh /8_A[S"H;1oiuОiVtj T-yس- <61aZW<6 ispMMU:"_Q ,'-@i]=] )!`_s>u]]Uvk0k>[|a CDe>{PPFe!@70Ջ%{sV/En젹S_/Q.@-Ɩ=GXEٗцPꯟr(h` 4 @X/V+A+"hof_;l}3:ͺ51x Eb1#Ϟ=ϯoWꫯ{K^'/l۝Ǘ%<яSXwٔUZk}>/CG `@]}+_/|!~yk7}7cHl!B`]5\^4LU|5g 98&-Qj]Ȝcwe 9P%-ƴud2xA$YfR\{'| `X0ާ{ ޣYC{yū?ǥh@'m1]T:hgtvfA9[xfcLIvKZeE,pq\Ψ\,vf}gyBwV0,,w] uMtnۀ>H_>M7݄>%oo\W^yeKS Y%W1uWL{_Wո꫿ytowpC+&\؜pPQw:oFe4V i &R^@RBY@!Le2CvK3/K|rcoM}0L} ibt橾{؆)7՝{j:ciNSY)(1QPd00D@cfpdNm^fLT̨uc~ Qe*t17Uh^6*[΅8('g%8ܝّe o72 bjLcZMb3a w@[&Tֳ8B%^Kk_hLUcY9ӟt?]G m&p5ܹs뮻>SyszիV{~p.i r`;:v6iY77BoJ!FT5@ ?+3P j_gI9T &&gXjCf(;n \>#0$qk} d@ 3: Dhos`qhMcVJ`b)]x'`Ae<}^\t }>f% P@K j4BeNce sU.Sj҇qc%&cBjXw$dbBObmzafLܩ-X$@ß- M,q x^&uQTR$ǷS0,~k ]l9@G,e N6>fޜ?a\?@0n 4r^cT[Bta9Gɝdb27  L7I>4JvP_v Y[:X.oq}t=a.ݏ7bzP{+&y^pRTÅ9} _/T#i/+_k^;/o}}C|tAi { `ߦNz8q!Ț-q~jNDf),.!fRΣ伭|a{X/rT k Qʴ x ƠvLUl@i 韎8><<, Skmpƒַn>q_ptoַ^4@Z͛<#ɰuS[Iۯj  "Y(K(6*LtM5'Dv v&S=hz倯3֞{˂%AF33H=#m4o51`cPoU?D _D6 V A1oIJy&ȅ0w)-.ru$E gxdX i r_@Y#@F@s [ߔ]-|k:v}ƋNw1u%?~h| 8!>d{0x .xt uy_Sg3gP< g+q~n 6{/}G ]JmD"w XDE9!Y5cf^FLۅ`h:*\M`ChќZ/L% !8Q}bYx 55Vqo;6+V>Yw:zAATԿDί0~1~4k>>ȯ)!; ܢ38x@b(FDx޽m4&F4F8Mu֍uAG ah]^%MSOiG"cd2wKˆ'4uz $ &,/F8.*3Ƨv^y lY Xtn#fI#hUU.c_ScxS"{w鰛;7}ۭ_eŗ)]2ݣ]Dž1 `AL?a\_5rkSh&$_ 4H)"GT.8 IK1_ \Zwt&JٷI3D1ٵj/Rp |{ZX: OKIػz/I0QnLfq'آA,'Ɍ}.˨B>TŢZj& p< kВaŪye&D#s=NOs`=3N".&.5jI `;H-{ݎx@Y4dbx괢$[1FeC)rS\$g.$l6G?[ڏ~#퇔.m@v`ΝIIpH:?s[jZʄ:W 5WVw/%{Ad xk)6s`Fz[ eҁMiy*BD;?C>S29xbr2iAA4S2`05 'ml\ ]J;VjE1/1{{4EQU^/5%G"#a.\sy) p<;E| ю[b:O7ns2u}ZCE_}dA#5.URtQHk.A4܅|ɮQue.H!XC`Z(!Էj& > uY/@ Ln2𹝁.f H hIX'ફzړy闿_p~o~GYK[m@qUFb6.F;nK=I$^LBxRzLHj,)`Fٸ@a$!v^B9N'b^P1ڌ|Sd1ˆe\m}7[\\3?eNm;Ի,2ʆi "(P UqwY𜍷tTJ߬}(#iL$±EΑxsu6zczOc*@W=pK˛λNS X.uy@T F^|]*2޺+=KtӖ b! Xs'"=\s5ɟv~/{_~-oWijz1IGÏ[LIx yC0&z 50HB8pBsD{ c3AEPKlÌ2O8d$;Adl4t9-рdRnw3EɈ@ĝm0 "9*k=ҧxj뼝 p76O*l ۭ@ f#i"!`[i AwRpWzsvnlyWbv2ƥmbZh6}h1|-mjMg;,Ն\jXSp50/N#WA[ZED`&z>M gΜ'< /xg>~?яn>*}_S8~*v}ЙGZV"rZe!0`001 nG&%0 1ny,-AGlz}eH v\` ڈ3DLlb:Mhw 5خQrGd`Fl*R0bT}Cg2}&G$M3 .;,}} ]Q\ԓdzKZυޒYW3X@Hp*ak\f)V?u1 & |#-a:^ٸgˏ6='ydH7#c r^('&>VZq:W^y?IOz.\ ٟǫ̀g!ѺpZc^ iΜ#y ~\MB$ #](0#]EY1/.M9 }"0/KbDF~ռ9 'm)@M1,#%7/7:!}h)TLG&uQ@ɥ7rlrXDw~B41 xl:V#a{ofdp;0ۀSIoT6;[f)ٶ::ea,Ͳma,\̋iٺ 42 B@YpAJ.(D[AwKkpqֶD )(]ᱏ}쳞v}}n4GK8`"g91zOAZNB`FvsZmcҚP3pg #%i@O7@jU# ˃e xhԫDչzuXԋgTYߔ4$PC@6FI@P52Cg J[:ׄs,z@{\x;(0+ mWMo~ŶA3Hg/#VA #葮{Ը|&˰1&yzP} y!C{ >s“| +i bS;Y2Y|J|!22%v&|dFU`  NqW'? ld=c `M\L1c /OMBU{K/3.L%:Tߠ IDAT@R_Nh_>@ow"8w1/ "LgO\~^Z:}h mv~@Bޞ`Q"TN$\,*+ebFvaԨgBc#|,12O6y/6 ׶ =X ^Y8xZr*֢=F! RH'jFJP260ͬ^AP Wt(N&T{èQ mrћq14ņN4^~0ƫtze^<ЗfSi/`136p{oO+m=CIy nqp8:Pf0@ (~Mȹs_ [4GyQ، 2K5vkP[9][amXn" ` g '4?kBG)bSt/^,WMkQ!g-36Ơǔ),57˨ND_ " g9YƹN/k>v T:/`/gQO9eoa;{ z&hi])=`63QE[ײ|},h%Zvwȯl_a#[1qmO=KWO]^ @F{ӫtZkಥK8P\̌/&/G*E[פ\.&q_^ P|}2h>{'C|m"M) =U- &ځF"DD ʂ$mG3qE==?e@ |Zw )^deϫM )LүЩLeX/c+P+lѯ`\;Ӈz4CmFd-ޯx_$& 3!|cA C7ڭs'b~b$bF 1@cc WΐIJR a\ǔlg5%-Dz?\$ 1ff1?}_җ~=0Tx9^b1|/hCjijtckV+5`2C6-26J_Ô> @)/ HBS m`\돕\pkL|17G4;YK*: y0k-XQ6-Q~G Qƫa οı)h[.3=.& :t y4J0901W7bNUNK˝yFfE/sG@1 pf>em+w,t</pt{ .8H B)9|!` 7둠yk/UrOj9$#^L۹ Xm(k%̍7]$Rw4#?b6kLfތVG`Rw4 S-M>1ß؃9_ N k#z8W[u Rf9%0'wWSxO:Hq؅S;|*Uv_iJ~kq3C ]xm谅m| a+8Oiz4%t}˳ M4MXm>u| 0_':瀽XTkmE xxhe[kqӐoNJZPو?O|zI^ݝ?^<3K$DiD8CJm<V{XHOA*E:uJ>. :/J` WXM0)񟵋<_kha"WۆTcoδ(}AHam{h6 `m.Cᒷ ~>4 `6pѩ TDǐr^4EpF' Ɔ8!]4sN>&WGUkv繅pht:-hs'#G` k!Ϗ$[ oK /#&A Ηf5cO#ד!{I_U`UM:?|/; WR)V9VIN읎P)} ~=6xܹs>}^Wx3v??_n8%]r$pcEWIbHճY=W$5*,C^`%y^`m u͐bwC0> I̾/} L(fnUWK)K|uAS*F\0z$¸ 5(ֹE+'z5:yV+ii*-]b@15bۗ 0w Uhz h,p"BS^-iYV2rEk/υxQGFOS ~EUqnu]wc v77 Qҗ]p!@Z0.n_Bȶٌ(6؎5 câkC*|ZɤƠs8&Q$ C$jeP?aeH  %ĵs77Uʳ{!wB h;GvڑpŪڞ?B0S5"9-0SxO[F"[+u:eR{8 ~ư^$#jbq`Ւd(c4n7̀w|޲a4dl Vkj)OcK4<kWb@Zͅ>%cq32Fh<{wi )nG' \KTs3>SDv ̧ n8gAL8sP:ȧ35xtҟ]l <Pᔧpp\bO|| sOo[?~~7|?q+Oth#p?41؜XH\ q@T-_LP"I"o]L4 8V| "0Gfsy^:uhaᄊnS0L8/̀Oyӗ\Oy_h^Ezقۭ@- Tq4AVc"^0Dw;ςɅBehu^jAX3iwi~:w?Y| f4)UZJFNo&XLRZb@~Em> h\I f}ԣ+kϝ;|3~7oFۿS kb|Sv.(ЁY)hׅ|%M+l~k<9FPI̐\b"R{dZgs Xph։ygnOBޅv0d>|- jȱڿ3a 3 ` U[- ]ۮ45yץR&Pf5>fdSQ4~zuгIxKrbx;8iAizkͯp?t/O/Jx Pf5o/ШCB:TXcwMIUOIYYZ$Ht=2%ݍ0ٯ>dfW\\q?qpptCΓ`|#ȢvȨ:GvJ@A6vJe@gBLa._-vo޶4oeh J٦{T[\ (3`L#u|jҕa?0(`\9Ehި69C}5OS!ϧ>5j_lݍaTʋyvLg'c[-dW5c]$>bm~עlNS#l2fɵ/lbm1%]=Vox"ӕusKY=[Q~./>w.oF201."5A1"q @7 ީ;w+Gu/ϓL#,&شoDJ0%NIěyn?93ǁUiq ;V8u'ދA00́K9`Sk< ͈e0沑m r[V_b3sw/R F뚅3L$`0?c $ Nccwбp> x)d+0Gd%VCƬIx*QGkByu v%PlOmzvZ(q`˚?oc P:XJy@nWds`4+p6,JK"c]C|;y'>up r~wq#k>b$2)xj߀ i92zNIIܘD8C&ȌedP6&mCISEMZ{1<;iuZL0"J̌.i9Gj;*EkTN5 i{ӠHԦд(`~P߉:ߺp}xX߆e-gD{,E*Pgui~M tct 65=]ߐҿvW,vgzаto Н^1@қf߾vr88ͼ @ttӾ'A%P;cr;.IÆ^e\j@5N_gf 0Νwy??<ϕn)\ Ki]{ϿD⚰Z IHB.U@6`Ufm1"& ͢^j̀j0fUњǿnq"挎S 9,F T-[õ1q{"'J%*$ 9h\0[_İ0mׇ _Kb_2Ͽtnlmn5".ep|c+eF?.Bt5%Xw| /g xvI5n皑b2.|| t?!;ga c\s572lLy- ۡdONaOU$9V[DG %ZN\C2~ЦPد4I`/,ui E bG;N-v^g1pKEZ p} 6kt' \M8L.`ti5qܹOK_ 7yw__n8::,qXWElb= Bhlel8zijS!PM#Q.V@6w`&7L2#d$p. \} (gD?sMGBZ6="WH*q={#.p="}هR-dD`lmpa#hBxH |Ԛd_9{ݴpK  <6B.0+Z~O  emvh.`G"a. [ ֋Xx` o. ,\\kbkیӤ bB*^-k6yLü S+k#ĂS10pppwo+~_/].<L5hV:KZޮ<2).ڈEلT4ASlܿf&!v˜.Su g:,e{}\[' 3B{@$8U+`(`9jBvv&PAr38*evt'r^ tyLDkSm?"cå3.¸JP)3wMuif=OFX b3Dd[?O|g\3y{׿E;{/UŮ+v%jC1˧\HErDjj L"={2QDK۳B vn< hm#2ʈip~LB5k, Q,L!0.YTaκ2իq}Ek [}')ݮcwi ;"0 HL^@y914Y>]3g˄#[].smK56*.B~Q%3:}gij¢ }ec'CPG"\y ,D7>7?nֻ`ox>ƭފ2|2hPUlӓXf+)Yn͎Ok@2M) d ʔ0o 5D!\^̠/FH"6ݢASk$>@]Ƈs`0)15>lEa #]9&pSlgfN~R~I*GGN& 5v/o GBb!;)q$j6{Cg;%)x@iM&1u̙ԧ7xc<`ww믿??);=d0JHMl"sTeF-F2H.&FVI>Xkѷ*;wмvo\)EIc̀ Z;ٳL aJyJZ@ˆhPD-h5 ~#]6oKsh"Hڊd=?)Z969k @FO3 qaS.Kpp6`J}6lԯch`K(s++~PxwӺ#@ϷU:T+c*D~ )1-OyRLŷm|5u#i&l=iO{?q=|]zgg??pb |%ݖsWɌZͫN3{8ک<$1 Y (^}A-<'o3VloZt D$2m; ֞5 -4F@=Dih nS3 MwJw$a^tr/ץXmoctn}^d~>!ncԚM3܀4۔\rz4SwQuǔ-,vv #/AZV( _,9\q9sktuSw?\x_>7..y b `#S\Ī\ n.;Ie[ɨ,Ry3 )@oK̢`\})^TAA :moކkùn0ނ[k"=6z` b54ngqȥx5{N=p|NO9Nm89{v$8!IpVC~΄cNitFFly ˚K0nڒ}v LX\N}@PHs~`al;axJrD% m'_w5ȏ؏;??護z'?9aX{[=Zt-0F@M "e$”I,/@ ~.5P#a3sc(lE-Jپ3o~%Yןiax vjgAՑv*rc &FM0iۤ%@29֛(d" Ă$5{! `PN'*v88^tO.`A&va6MBdACZ8r\늅,[Efx94׎?G=y\X`]ePP^qUWf9/"$,sf7/e egݲs= V<>6>5iBdج͈pug?.qz0 UZH̬H.%KTưd"jOf$HBu>_˚@pfJ}a_v^nSVտ d@ 2})ЏL0*""|{ 04M'!&"PτOU_;͘(ЎTaMPD&n0BVRWTRq5YR.|Su<~YO>Һַ:-p `*pY_ K`DfwؒfzM}`+ F{,h5ܠArjĒAf$BB<(2\PB$ÍiQQ_7uGpUW=_K p4;Vp̱03EfFLY0vluf#_ #~X݉!=i=Im-ߏ8AASzRӇk t&!}X$S6&ѝ+ѻL-j2RMtZJO@`SYvƀJ@Emo{[O¿PZdOhm\oY@}}`g~r=;N Lƭ;ؿAcx bfm;GR{vE3bidVCلKF 5t^A&8 3;О6kpYj f1A5V;sB~|5ӱA LX J*c_R)!%78z""l6׾7~7mvo}Daz2y>1!P^dd(\㵇e&CeT8[$Rx-|`ZXeu—BI=y]/= g c^H2 -&Ĭ`cSf% Z,tf db+:my!Z>>1` 6~tsa4G>=ib QIpL*M9\n b}: @] GZiR Xq]0\}O[F_h.,v<'7ôf  4:@_ LncMD4F+^$h5v;;w Ʒmo|_Ig<o>Mwړwp#``GyZ@i1jty1% %ZD5޷<>7+d~?2vāR@˙4=#ބpq @ e!*]x wJXj o n)e `yV\zhf!Ʋ'`w`1Cz>c,>ZA| ʛx9ZI2MeJtU $ 9ldo׽uo{ws|3^{mWW' $ L2& ~Eåu/+o-[}d&)tP=YY s?ziN6]?,~_gz=`@>喤$m@AZh5@5Q@+vG =T[I5BGUT?6r!]`n0uje)k" k4ct$q̱p \-OX-BD%0EpGA{<kbCըB|R?E蠺ؒ@5άzx{yubX'33z^ٶtW~p*fda b>{> 뮻Nv')f#8/8\?%qVjȌ/ "-bkB':HFL#˔4s wW&Pc@(  _7+Au*I2OeltFľw ΋%Z FxZJHbdi`CNObck֧*&L[$ v_A e@J&Ý,d -q ~}ď%z"0A߲ԷA#?B U `zHA0VP7}%7Ǿ0iS|]k}VpU?؈8/,¿4IϏcKicxk^1ŊaA}c_r<xdz|L頵AR/R\{+`k=syq!ƈd =)F7IpPHTҿO8iEMyk+ ʊ9gؑoi  /2\ Te *(%Pɗҭ0>X}*X2e\b㫋].b e6,OI7nymz^`-^ꟹBz,El_:ͯ[]| -3}j.@b gAwrBt'm(ڄ[|O7/<ͣWKz~8HUaQ_Ӕdr1>IOY ^}Ջʗ[`88k*Ot4̫vԽI~E#Yy?hd[+ϾPbv-4#l̫L"6\g=i2tm!+CkDx0&Fd*=Nԉ)OJhg(816f&7;ٱIp,hM'bOqfn8*4&2^+j^D&BX:koO9LP1k2^`\8:``2S f+[dlr/@$EKh:/.[(YV:]^gЇׄC Tp+{N-r'Jӌtޙ3g\uUO-tK\@ mX x;RFEɈXӝMMp RsZQ E# bo6dh" -#+~Ҟ?{xad%s}b>H' {+NyGMOҀd(YH0!XY#p"rfHHrzXА`K͠6SFXC3+l=b傉z<:Pvq.R+tVi@l<׹*.z-WgVlu.q.}/HJ:uC;hFhU8窌ާ$5H\DZ;{W\?{v`N ]R@2M`=f%@na J=v02k9_B8J\1 gͲX +1;}k.65W-J~6똩did_$֯ 7?_+/H phվoWv5&jѫI0+d晠).݅گ:rR}fDN'A#U0vB\K h]= m cm"_ࣴ*xPO_O0@W xLg8(oܦ.{FwcN0aA_g P aiUI"l6gΞ=5iG].4@IfB27R -3xHeRU}sRכdEF|`ndS `vFeoz+P?S>4a0?*<Ω-Jbn(twkR/ p%t7PCէ:D&#*4?Kր+1/̾Ni9&_ f,]cd}+@;` l/׍Ajiv}JVb@BNh@ jp!]VAISMw+~S GGG}_>{ϟ @suatЁvt ӥ1TJKC* q?KXh#Rʞ<\/O0"yN3F}3 =2oΤ\b7&LwpcO?bFQUJڴ1G(Ԩ<刦:-Nճ5=71f+G@Xm~,Q0&blX/ ԕeۄI ֿl}//z9?yPmֽgJ,3DNBn./9~Y@p7#|h/ɃUK<ڵ]h?uw| _׾+a8uб;R4UmMXRUB 1Bx7,.а\m]o9OO{r`>W_Y!0 0ήfdǙ!)vݰ[dS R|O %#ub{ٔ6v&r:x5\$(qKD9APڪ6 X`G21~7bn7vB,˼|TvEPk8Ǐ};YQ"`e}BJ"L O>*RKP+Y:q5줇^1iFBXdQ (t;ײ +DAm_JP+:`CSUmqVEDŃ{n/o~w_Ik P a'Z "XUb6 #s`h ` ŽC6: EȎ6J Q1ق IDATHŁ vJ<: dh@Igޞ7/|G'굼}{l f=vաuM^w|\L9,"X}< -.,b=5r<[yX2b 'zcwFrU:L+-Di-3@A)X -*.r>ֺ5rly6@m0rsOyv͍zvL05y; |wkؒ(l ty=ӻɖ8-NoY`{y?~ы^_;{{w]_1Lr@o6g ?Ҹd%4 ?rL`Y ص5y;P"%Mu^sOK\Z} |}6BZfiGͳ O)bJ<=xfBН4m\@ycOFK ӆ|S}(,%(NANPk˔42&cܪ8<88߱q#$(szjvrҺJrrQ [ʞ@k랻sy]$,Da3 <]Ўs&֠( u9=sb;ŻK-g|(gk^Y]v)1A3@c"*1X`ne ShPƀv>v/~G)??O HRŀWi,2<8M;8Eirs izK` a̅o[N*cjTf'2rO`^ZqH7"p˜]5qBuAqYm3(MI }($V>l\H1b}*u1upVFfgz:>AZkJ> olGcP$%Ƣx.}+ ຋ )FB#73\>O1&OʵEh!^FġvE1cdL^P0ll{ǹsw;wpOOOlZ~׎H: As0n 8$x1K˅eH d%e.驲?_eZlO4%ٯ^,v44ӞXk  l܅k`ӑ`AIi"cQw!>sLPg0rF4Skڿhbyߏxmi8ہ=a8q e|SB9t\{~<֜ݦeg idv~8=vj7፺ӑ#JK43h`-| EftME cl25$y*OSɕ88АEoh,iP[rXyL~;P;MozGsuF~nf 9TCs @+QvѮQ9I>NFHj!{Mo:0%@QI -v>:I )ְnY?l@tѺLaR><}lgwu,KWCo ;on?cgք\ׅj+@v5\B B>wllw|#mՒ;aI~MOچR1?[6}Ԯg Y'zW5<~7yo?aDo~ 7tSthG5n v>[`3FRmQ9Ɠ!$αQk}g m*}CvV} z= >\L-5`)-R@Q,+ItZΨ(X%pvډtF0!Wxdx@)Bh.#&G\5mm¹ ӟ[*w*EۣT!1 ,N%`m.{!MIXfƒ|Kwwn}U=3gݳW¢$-b P"AG$ț_ @y A  $F06c'1r#:xIQKKe.==93]_B3]]]3SUmt`qm:|ԡƾ(ydlG Yk{xNx/Ϟ={^򥑊l!جњ(*ck"U iE@toNnN;6whY> eB˗/W^y駟sW|k_O {]ku"&99ßy1h(:i>h܁hCކ,n\Z{y竉e C(<iZ$th;b: 1Q*G9w;_w(":y—5T} CgjjZc7d IZC޷* EĿRfk6ъ6l # 5e4qǑA{Η)uҡw7 1M:_O]-MujgALX_sa}P1Nx|VU](H PجGZcAfUwG#ji,h&ZgiU; ߎF<; 0DWiZW_o*ڥBŴקQx.+8?u}䑶xD%Z%~ ~-~:.S;u*Ow:_.Kt۝!yG;)71 ͎uSӤ#c׺tk6}{wM7GƘd2yqgg/?]pB5c"} l6SUU?TYk1ƉHmmnonL!E'dwpiJj:6Kh hNV Qt^b|>xyw&I_z܇.m~!=v&' tdy:~'IŁ5' F$ct:#jccACrޜ͠M*I+A3ъ :ntxJ '$χpur{*-ykJCӛ/.\];lVdc:(6&-҉(EZ !*֮aqn@b;yߞ;m?A-lWhԴ5*o~cmhmi[W]M-Axw ҍjHCHӄZ)ܭoC{l88O{Aj"+F0B]e\`Ю,ܵgHo*ho2/W/N8Q~_vԧ\ٜ@T ƨA]W=7$ ekwvhwM eL=d׻~8r>b10&l6nggw߾=6d UDtggGugg@|(nnn lmmaqqQ,pʲ眜=hO_=_:(>tG.C1Xֹz*U ʛ]&"Ky=0=o0Bz!˘P& r/LˊNba!0>bks/3{-}Ҿ*\: &&I?;N0'~Ћ/A7 %FD1f uV.g[w7o=ٿ5.ϊ#duTn?:$l7f2tnC [w~4a^*|6Z?oo~OY0.Uy^իWw3^|?ykUUZU̩@7}|L;k㥓(c[΢fp.ԉ wK\'(¯{az,zAy{|Mfb,[[k?ҺnpceeE'IvK/'EkOdKbYWo1juZfpLv/_z ͆ڤ:q☛Nŋ.]ȲbhLYN!(9Εjusk翾k+t/"tmҟޗ cG>tBTۻ1[[[ * HQ3g0 ޞf=1UU2cٙɥKghSE:z ?>2 /ff^zi:{AŒv׬es)Q8H{IDATU۳jFŽFl{6?{34? icHBs58!`#Dׅ1g(tފ{_648u<٬nգat:u.] e\Qf=yEdΝeL&fww7FcU5f5YflYcck+GZXz%gUS "< ϻV5sΩ5\U&i Wֺm][[ Bq+_\N<)RNV2k//dUhf/Ms'~שwr_EtyrN뺮,3Z'"n}}mll@'f';;;\d2AUUaƣ0ڰ_꤮kSUZ+0@s:k'6Ig>opΡU{:z0(tqqf3ۋ^w:,˴*e{gΜ,,+][qu, 7F@ƿ͗啍5sY9'͘W.m hv\ѣGرcb ]sGDUsN qcBa]yȎm/<7UUWUCc]eZyl.]t4 =vwHҙEC% LS@,c4Q!l ;wPB z]ױ GND*yeYLւoyJ>vJ>rH>oG=kF<hD<dC;aB:^A9Z?9W?8Z@9_B:cD<hF=mH>rJ?vLAzMA]R",/yyyzyZX]aejnrvz~ztoic^Vx}LXerxgUC1a,4!.;HUamyziWF4#@8_#0=JVdp}udRA0b0{,9ER`lz{iXG5$@7`#1>KWdq~wfTC1c2} -:FT`mzziWF4#A6a$0=IVco{tcRA/d5 -:GT`myzhWE4#B6b#0KWdqxgUC1f>(((!.:GTamzzhWE4#C1e#1>KXep~vdRA/gAAWWW ,:FS`mzzhWE4#E1f$0>JWcq}veSB0h\ -:GT`mz|jXG5#E/g#1>JWdp}udRA0iȱ .:GTan{zhWE4#F/g#/KXer~wfTC1 k\\\ .;HTamzzhVE4"G/h#1=JWdq}veSB0k6 ,9ES_ly{jXG5$G. g$0=JWdp}veSB1kccc  -:GT`my{iWF5#G.i$0=JVco|udR@/kV4ȭ -:GTam{ziWE5#G.g"0KXeqxfUC1k&zzzķ4CQ^lzxfQ7%ED n )6DR`mzs`L8%o333nW}ޒߋߋߘwۮY׸ՌǓ׮ٳڳڳ۳۳ܳܳܳܳ۳ڳٳڮƐԶY tljh .=@"48ysrpb[XK,0 e$$% p qqqJb{{{---pppKd###rrrLh tttOl uuuPu uuuR vvvT vvvU###wwwX0...,'''uuuY  UtttT===)sss[ ݼ'''iii8www]%%% WWW_^^^h(((PPPxxxQ rrr_ DDDOۖUUU\ MMMD333$  SSS8cccGKKK  !!!~~~Pfff/"""ooo6jIII~<<<!xxxzfffLn///.???x8((((((((((((((( 8p@???@(0` 333               sRjo|}}}=V(D =5+#     )5AW#s }yz$~#{#w#r}#o|~#kz~#gx|#buz#buy#hwz#my|#r|~#x~#}$"XOJ aPL*S>JS\fnvshZMD_ȭw2L2CMXcnx}oaQB8fÔtfcA2 1BUgxr[@(:g@,$5EYj{nW<#QĬƞTqda?6$5EWgwr]C,>i>0 '7H[k{oX?&TŧͷĤsgd?6#3CVfwr\C+?k>0 '7HZjznX>&UǨ˱uhe?7#4DWfwq[B*?l>1 &6FYiylV=&VȨǵ000wjf?8#4DWgxs\C+@o>2 '7HZj|oX>&Wʨķxki?8$4DWgwr[B*Ap>2 '7H[k{mW=%X˨ymj?9#3DVfws\B*Cq>3 &7GZjzmW=%Y̨\O{nk?:#4DWgxr\B*Cr>3 &7GYizmV=%\ΩKB|om?:#4DWgwr\C+Es>4 '7H[k{nX?&^Ыݵ١|pm?:#4DVfvr\B+Es>4 &7GZjznW>&^Ыڣ|pl?:#3DVfvr\B*Es>4 '6GYiylW=&\ϪjV{nk?; &6EXhxr\E-Er=4 (8H[j{nX@'[Φlatq@9)AUfwqW4Cz@33DXhzmR2^б\HD#\fjw݈ݐݘݙݎ܄WmԏygΥeij׸wݻ{\y^"'($ 5')  tJ@+zKe.Pɿ>˼ ZLIuqqVξ]]]"HJLHLLHKL}^^^#³ {^^^$ôqmmm%ĕõBBB(((kkk%Ɨķ zzzTu řƸ iii)YZȞžȺ $vvvgͷЦ!!!Ƽ k۷^^^?Բ[[[5JRPwwwB---%aaaH j㽽jXah @@@XıĶ`ggg' """444!!! !!! : !>?C:?C:?C:?C:?B:?C:?z??( @ %'(24 sT/ASevhP6]Ɖkq%LȒau +D]v\9dp{d&AZta>M˒du *C]w]9fpNNN}d'@Zs`=O̒fu *D^w[8hpd'@Zt`=QΒhu *C]v~[8ioO?չd'AZsa>Rϒiu *D^w]:ejx333 d&@Ysa>Rϒiu *C]v\9glEe#?Zt`;QГiw(C]w[7krcᡥxK?u^ptDixxS@LduwpBzQ{vkD %r`\NjcB{Pno```)}}}QJhsAAAoiii-yyyNLrEEEgmmm5nnnGNpGGG |||QRvvvZKlIII"BzzzBhEEE$$ zcPPP(LLL9}~XXX=ttt3ΫƗ̳rrrD\\\*ˡ ?~?>?>?~?>?>?>?~>(0 2@BFD6ČMǃb̈́w҄քuЄWȆ>ˆN.7C͓\Ҍr،ތ܌gԍC̔?f΍=BcR*=k# /Sse/+C&<`M" 8`Hf.7λAtv7f:kc+تAԻtg IJv'ɡ1HHHDڙ3Ԫ g٪A-ܭ9˝%Lݥt  2g2g2ggopenconnect-8.20/gnutls.h0000644000076400007640000000705114204454432017222 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_GNUTLS_H__ #define __OPENCONNECT_GNUTLS_H__ #include "openconnect-internal.h" #include #include #include int load_tpm1_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig); void release_tpm1_ctx(struct openconnect_info *info, struct cert_info *certinfo); int load_tpm2_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig); void release_tpm2_ctx(struct openconnect_info *info, struct cert_info *certinfo); int install_tpm2_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig, unsigned int parent, int emptyauth, int legacy, gnutls_datum_t *privdata, gnutls_datum_t *pubdata); int tpm2_rsa_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_certinfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig); int tpm2_ec_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_certinfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig); int oc_pad_rsasig(struct openconnect_info *vpninfo, gnutls_sign_algorithm_t algo, unsigned char *buf, int size, const gnutls_datum_t *data, int keybits); uint16_t tpm2_key_curve(struct openconnect_info *vpninfo, struct cert_info *certinfo); int tpm2_rsa_key_bits(struct openconnect_info *vpninfo, struct cert_info *certinfo); /* GnuTLS 3.6.0+ provides this. We have our own for older GnuTLS. There is * also _gnutls_encode_ber_rs_raw() in some older versions, but there were * zero-padding bugs in that, and some of the... less diligently maintained * distributions (like Ubuntu even in 18.04) don't have the fix yet, two * years later. */ #if GNUTLS_VERSION_NUMBER < 0x030600 #define gnutls_encode_rs_value oc_gnutls_encode_rs_value int oc_gnutls_encode_rs_value(gnutls_datum_t *sig_value, const gnutls_datum_t *r, const gnutls_datum_t *s); #endif char *get_gnutls_cipher(gnutls_session_t session); /* Compile-time optimisable GnuTLS version check. We should never be * run against a version of GnuTLS which is *older* than the one we * were built again, but we might be run against a version which is * newer. So some ancient compatibility code *can* be dropped at * compile time. Likewise, if building against GnuTLS 2.x then we * can never be running against a 3.x library — the soname changed. * * This macro was added upstream, gnutls_check_version_numeric, * in 3.5.0 (see https://gitlab.com/gnutls/gnutls/commit/c8b40aeb) */ #define gtls_ver(a,b,c) ( GNUTLS_VERSION_MAJOR >= (a) && \ (GNUTLS_VERSION_NUMBER >= ( ((a) << 16) + ((b) << 8) + (c) ) || \ gnutls_check_version(#a "." #b "." #c))) #ifndef gnutls_check_version_numeric #define gnutls_check_version_numeric gtls_ver #endif #endif /* __OPENCONNECT_GNUTLS_H__ */ openconnect-8.20/android/0000755000076400007640000000000014204510554017150 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/android/install_symlink.sh0000755000076400007640000000047314176202121022723 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash unset SRCS unset DST while [ $# -gt 1 ]; do case "$1" in -d) MAKEDIR=1 shift ;; -c|-C|-s) shift ;; -m|-g|-o) shift 2; ;; *) SRCS="$SRCS $(readlink -f "$1")" shift ;; esac done if [ ! -z $MAKEDIR ]; then mkdir -p $1 fi cp -f $SRCS "$1" openconnect-8.20/android/run_pie.c0000644000076400007640000000720214040533771020762 0ustar00dwoodhoudwoodhou00000000000000// Copyright 2014 The Chromium Authors. All rights reserved. // // Redistribution and use in source and binary forms, with or without // modification, are permitted provided that the following conditions are // met: // // * Redistributions of source code must retain the above copyright // notice, this list of conditions and the following disclaimer. // * Redistributions in binary form must reproduce the above // copyright notice, this list of conditions and the following disclaimer // in the documentation and/or other materials provided with the // distribution. // * Neither the name of Google Inc. nor the names of its // contributors may be used to endorse or promote products derived from // this software without specific prior written permission. // // THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS // "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT // LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR // A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT // OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, // SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT // LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, // DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY // THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT // (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE // OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. #include #include #include #include #include // This is a wrapper to run position independent executables on Android ICS, // where the linker doesn't support PIE. This requires the PIE binaries to be // built with CFLAGS +=-fvisibility=default -fPIE, and LDFLAGS += -rdynamic -pie // such that the main() symbol remains exported and can be dlsym-ed. #define ERR_PREFIX "[PIE Loader] " typedef int (*main_t)(int, char**); int main(int argc, char** argv) { if (argc < 2) { printf("Usage: %s path_to_pie_executable [args]\n", argv[0]); return -1; } // Shift left the argv[]. argv is what /proc/PID/cmdline prints out. In turn // cmdline is what Android "ps" prints out. In turn "ps" is what many scripts // look for to decide which processes to kill / killall. int i; char* next_argv_start = argv[0]; for (i = 1; i < argc; ++i) { const size_t argv_len = strlen(argv[i]) + 1; memmove(argv[i - 1], argv[i], argv_len); next_argv_start += argv_len; argv[i] = next_argv_start; } argv[argc - 1] = NULL; // The last argv must be a NULL ptr. // Set also the proc name accordingly (/proc/PID/comm). prctl(PR_SET_NAME, (long) argv[0]); // dlopen should not fail, unless: // - The target binary does not exists: // - The dependent .so libs cannot be loaded. // In both cases, just bail out with an explicit error message. void* handle = dlopen(argv[0], RTLD_NOW); if (handle == NULL) { printf(ERR_PREFIX "dlopen() failed: %s.\n", dlerror()); return -1; } main_t pie_main = (main_t) dlsym(handle, "main"); if (pie_main) { return pie_main(argc - 1, argv); } // If we reached this point dlsym failed, very likely because the target // binary has not been compiled with the proper CFLAGS / LDFLAGS. // At this point the most sensible thing to do is running that normally // via exec and hope that the target binary wasn't a PIE. execv(argv[0], argv); // exevc is supposed to never return, unless it fails. printf(ERR_PREFIX "Both dlsym() and the execv() fallback failed.\n"); perror("execv"); return -1; } openconnect-8.20/android/Makefile0000644000076400007640000003002414176202121020603 0ustar00dwoodhoudwoodhou00000000000000# # This Makefile attempts to build OpenConnect and its dependencies for Android # # It doesn't do a stunning job of tracking changes in the dependencies and # automatically rebuilding them, but it's good enough for getting them built # and installed into its own local sysroot. # # As long as you have the Android NDK toolchain on your path, you should then # be able to edit fairly much anything in place and rebuild it locally. # # It should also be fairly simple to extend this to cross-compile for any target # Last tested with https://dl.google.com/android/repository/android-ndk-r21b-linux-x86_64.zip NDK := /opt/android-sdk-linux_x86/android-ndk-r21b ARCH := x86_64 API_LEVEL := 23 EXTRA_CFLAGS := # You should be able to just 'make ARCH=x86' and it should DTRT. ifeq ($(ARCH),arm) TRIPLET := arm-linux-androideabi EXTRA_CFLAGS := -march=armv7-a -mthumb endif ifeq ($(ARCH),arm64) TRIPLET := aarch64-linux-android API_LEVEL := 26 endif ifeq ($(ARCH),x86) TRIPLET := i686-linux-android endif ifeq ($(ARCH),x86_64) TRIPLET := x86_64-linux-android endif TOPDIR := $(shell pwd) DESTDIR := $(TOPDIR)/$(TRIPLET)/out EXTRA_CFLAGS += -D__ANDROID_API__=$(API_LEVEL) -O2 TOOLCHAIN := $(TOPDIR)/$(TRIPLET)/toolchain TOOLCHAIN_BUILT := $(TOOLCHAIN)/.built TOOLCHAIN_OPTS := --platform=android-$(API_LEVEL) --arch=$(ARCH) \ --install-dir=$(TOOLCHAIN) PATH := $(TOOLCHAIN)/bin:$(PATH) OC_SYSROOT := $(TOOLCHAIN)/sysroot/usr PKG_CONFIG_LIBDIR := $(OC_SYSROOT)/lib/pkgconfig export PATH PKG_CONFIG_LIBDIR # PKG_CONFIG_LIBDIR gets exported to sub-makes, but not to $(shell PKG_CONFIG := PKG_CONFIG_LIBDIR=$(PKG_CONFIG_LIBDIR) pkg-config MAKEINSTALL=$(MAKE) INSTALL=$(TOPDIR)/install_symlink.sh FETCH=$(TOPDIR)/fetch.sh CONFIGURE_ARGS := --host=$(TRIPLET) --prefix=$(OC_SYSROOT) \ --disable-shared --enable-static --with-pic \ CC=$(TRIPLET)-clang CFLAGS="$(EXTRA_CFLAGS)" SOURCE_LIST = $(LIBXML2_SRC)/configure $(GMP_SRC)/configure \ $(NETTLE_SRC)/configure $(GNUTLS_SRC)/configure \ $(STOKEN_SRC)/configure $(OATH_SRC)/configure \ $(LZ4_DIR)/Makefile PKG_LIST := LIBXML2 GMP NETTLE GNUTLS STOKEN OATH LZ4 MIRROR_TEST_TARGETS := $(addprefix mirror-test-,$(PKG_LIST)) all: openconnect run_pie ##################################################################### # # Install a local cross toolchain + sysroot # # (The fallback logic is because NDK versions <= r8e can fail after trying to # use 32-bit binaries on a 64-bit NDK installation.) # $(TOOLCHAIN_BUILT): $(NDK)/build/tools/make-standalone-toolchain.sh $(TOOLCHAIN_OPTS) || \ $(NDK)/build/tools/make-standalone-toolchain.sh \ $(TOOLCHAIN_OPTS) --system=linux-x86_64 touch $@ ##################################################################### # # Build libxml2 with minimal configuration for OpenConnect # # http://xmlsoft.org/news.html LIBXML2_VER := 2.9.11 LIBXML2_TAR := libxml2-$(LIBXML2_VER).tar.gz LIBXML2_SHA := 886f696d5d5b45d780b2880645edf9e0c62a4fd6841b853e824ada4e02b4d331 LIBXML2_SRC := sources/libxml2-$(LIBXML2_VER) LIBXML2_BUILD := $(TRIPLET)/libxml2 $(LIBXML2_TAR): $(FETCH) $@ $(LIBXML2_SHA) $(LIBXML2_SRC)/configure: $(LIBXML2_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(LIBXML2_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(LIBXML2_SRC)/configure mkdir -p $(LIBXML2_BUILD) cd $(LIBXML2_BUILD) && ../../$(LIBXML2_SRC)/configure $(CONFIGURE_ARGS) \ --without-c14n -without-catalog --without-debug --without-docbook \ --without-fexceptions --without-ftp --without-history \ --without-http --without-iconv --without-iconv \ --without-iso8859x --without-legacy --without-pattern \ --without-push --without-regexps --without-run-debug \ --without-sax1 --without-schemas --without-schematron \ --without-threads --without-valid --without-xinclude \ --without-xpath --without-xptr --without-zlib --without-lzma \ --without-coverage --without-python $(LIBXML2_BUILD)/libxml2.la: $(LIBXML2_BUILD)/Makefile $(MAKE) -C $(LIBXML2_BUILD) libxml2.la $(LIBXML2_BUILD)/libxml-2.0.pc: $(LIBXML2_BUILD)/Makefile $(MAKE) -C $(LIBXML2_BUILD) libxml-2.0.pc $(OC_SYSROOT)/lib/libxml2.la: $(LIBXML2_BUILD)/libxml2.la $(MAKEINSTALL) -C $(LIBXML2_BUILD) install-libLTLIBRARIES $(OC_SYSROOT)/lib/pkgconfig/libxml-2.0.pc: $(LIBXML2_BUILD)/libxml-2.0.pc $(MAKEINSTALL) -C $(LIBXML2_BUILD) install-data LIBXML_DEPS := $(OC_SYSROOT)/lib/libxml2.la $(OC_SYSROOT)/lib/pkgconfig/libxml-2.0.pc libxml: $(LIBXML_DEPS) ##################################################################### # # Build GNU MP # # https://gmplib.org/ GMP_VER := 6.2.1 GMP_TAR := gmp-$(GMP_VER).tar.xz GMP_SHA := fd4829912cddd12f84181c3451cc752be224643e87fac497b69edddadc49b4f2 GMP_SRC := sources/gmp-$(GMP_VER) GMP_BUILD := $(TRIPLET)/gmp $(GMP_TAR): $(FETCH) $@ $(GMP_SHA) $(GMP_SRC)/configure: $(GMP_TAR) mkdir -p sources tar -xJf $< -C sources touch $@ $(GMP_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GMP_SRC)/configure mkdir -p $(GMP_BUILD) cd $(GMP_BUILD) && ../../$(GMP_SRC)/configure $(CONFIGURE_ARGS) $(GMP_BUILD)/libgmp.la: $(GMP_BUILD)/Makefile $(MAKE) -C $(GMP_BUILD) $(OC_SYSROOT)/lib/libgmp.la: $(GMP_BUILD)/libgmp.la $(MAKEINSTALL) -C $(GMP_BUILD) install GMP_DEPS := $(OC_SYSROOT)/lib/libgmp.la gmp: $(GMP_DEPS) ##################################################################### # # Build nettle # # https://ftp.gnu.org/gnu/nettle/ NETTLE_VER := 3.6 NETTLE_TAR := nettle-$(NETTLE_VER).tar.gz NETTLE_SHA := d24c0d0f2abffbc8f4f34dcf114b0f131ec3774895f3555922fe2f40f3d5e3f1 NETTLE_SRC := sources/nettle-$(NETTLE_VER) NETTLE_BUILD := $(TRIPLET)/nettle $(NETTLE_TAR): $(FETCH) $@ $(NETTLE_SHA) $(NETTLE_SRC)/configure: $(NETTLE_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(NETTLE_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(NETTLE_SRC)/configure $(GMP_DEPS) mkdir -p $(NETTLE_BUILD) cd $(NETTLE_BUILD) && ../../$(NETTLE_SRC)/configure $(CONFIGURE_ARGS) $(NETTLE_BUILD)/libnettle.a: $(NETTLE_BUILD)/Makefile $(MAKE) -C $(NETTLE_BUILD) SUBDIRS= $(OC_SYSROOT)/lib/libnettle.a: $(NETTLE_BUILD)/libnettle.a $(MAKEINSTALL) -C $(NETTLE_BUILD) SUBDIRS= install NETTLE_DEPS := $(OC_SYSROOT)/lib/libnettle.a nettle: $(NETTLE_DEPS) ##################################################################### # # Build GnuTLS # # https://www.gnutls.org/download.html GNUTLS_VER := 3.6.16 GNUTLS_TAR := gnutls-$(GNUTLS_VER).tar.xz GNUTLS_SHA := 1b79b381ac283d8b054368b335c408fedcb9b7144e0c07f531e3537d4328f3b3 GNUTLS_SRC := sources/gnutls-$(GNUTLS_VER) GNUTLS_BUILD := $(TRIPLET)/gnutls $(GNUTLS_TAR): $(FETCH) $@ $(GNUTLS_SHA) $(GNUTLS_SRC)/configure: $(GNUTLS_TAR) mkdir -p sources xz -d < $< | tar xf - -C sources touch $@ #$(GNUTLS_SRC)/configure.ac: # mkdir -p sources # cd sources && git clone git://gitorious.org/gnutls/gnutls.git #$(GNUTLS_SRC)/configure: $(GNUTLS_SRC)/configure.ac # touch $(GNUTLS_SRC)/ChangeLog # cd $(GNUTLS_SRC) && autoreconf -fvi $(GNUTLS_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GNUTLS_SRC)/configure $(NETTLE_DEPS) mkdir -p $(GNUTLS_BUILD) cd $(GNUTLS_BUILD) && ../../$(GNUTLS_SRC)/configure $(CONFIGURE_ARGS) \ AUTOGEN=/bin/false \ --disable-threads --disable-tests --disable-nls \ --disable-doc --disable-openssl-compatibility --disable-cxx \ --disable-openssl-compatibility --disable-ocsp --disable-tools \ --disable-anon-authentication --with-included-libtasn1 \ --enable-psk-authentication --disable-srp-authentication \ --disable-dtls-srtp-support --enable-dhe --enable-ecdhe \ --with-included-unistring --without-p11-kit --disable-guile $(GNUTLS_BUILD)/lib/libgnutls.la: $(GNUTLS_BUILD)/Makefile $(MAKE) -C $(GNUTLS_BUILD) $(OC_SYSROOT)/lib/libgnutls.la: $(GNUTLS_BUILD)/lib/libgnutls.la $(MAKEINSTALL) -C $(GNUTLS_BUILD) install GNUTLS_DEPS := $(OC_SYSROOT)/lib/libgnutls.la gnutls: $(GNUTLS_DEPS) ##################################################################### # # Build libstoken # # https://sourceforge.net/projects/stoken/files/ STOKEN_VER := 0.92 STOKEN_TAR := stoken-$(STOKEN_VER).tar.gz STOKEN_SHA := aa2b481b058e4caf068f7e747a2dcf5772bcbf278a4f89bc9efcbf82bcc9ef5a STOKEN_SRC := sources/stoken-$(STOKEN_VER) STOKEN_BUILD := $(TRIPLET)/stoken $(STOKEN_TAR): $(FETCH) $@ $(STOKEN_SHA) $(STOKEN_SRC)/configure: $(STOKEN_TAR) mkdir -p sources tar xfz $< -C sources touch $@ $(STOKEN_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(STOKEN_SRC)/configure $(NETTLE_DEPS) mkdir -p $(STOKEN_BUILD) cd $(STOKEN_BUILD) && ../../$(STOKEN_SRC)/configure $(CONFIGURE_ARGS) \ --without-gtk $(STOKEN_BUILD)/libstoken.la: $(STOKEN_BUILD)/Makefile $(MAKE) -C $(STOKEN_BUILD) $(OC_SYSROOT)/lib/libstoken.la: $(STOKEN_BUILD)/libstoken.la $(MAKEINSTALL) -C $(STOKEN_BUILD) install STOKEN_DEPS := $(OC_SYSROOT)/lib/libstoken.la stoken: $(STOKEN_DEPS) ##################################################################### # # Build liboath # # https://download.savannah.nongnu.org/releases/oath-toolkit/ OATH_VER := 2.6.7 OATH_TAR := oath-toolkit-$(OATH_VER).tar.gz OATH_SHA := 36eddfce8f2f36347fb257dbf878ba0303a2eaafe24eaa071d5cd302261046a9 OATH_SRC := sources/oath-toolkit-$(OATH_VER) OATH_BUILD := $(TRIPLET)/oath $(OATH_TAR): $(FETCH) $@ $(OATH_SHA) $(OATH_SRC)/configure: $(OATH_TAR) mkdir -p sources tar xfz $< -C sources > $(OATH_SRC)/liboath/gl/freading.c touch $@ $(OATH_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(OATH_SRC)/configure mkdir -p $(OATH_BUILD) cd $(OATH_BUILD) && ../../$(OATH_SRC)/configure $(CONFIGURE_ARGS) \ --disable-pskc --disable-pam \ gl_cv_func_fflush_stdin=yes \ gl_cv_func_fpurge_works=yes $(OATH_BUILD)/liboath/liboath.la: $(OATH_BUILD)/Makefile $(MAKE) -C $(OATH_BUILD)/liboath $(OC_SYSROOT)/lib/liboath.la: $(OATH_BUILD)/liboath/liboath.la $(MAKEINSTALL) -C $(OATH_BUILD)/liboath install OATH_DEPS := $(OC_SYSROOT)/lib/liboath.la oath: $(OATH_DEPS) ##################################################################### # # Build liblz4 # # https://github.com/lz4/lz4/tags LZ4_VER := 1.9.3 LZ4_TAR := lz4-v$(LZ4_VER).tar.gz LZ4_SHA := 030644df4611007ff7dc962d981f390361e6c97a34e5cbc393ddfbe019ffe2c1 LZ4_DIR := $(TRIPLET)/lz4-$(LZ4_VER) $(LZ4_TAR): $(FETCH) $@ $(LZ4_SHA) $(LZ4_DIR)/Makefile: $(LZ4_TAR) mkdir -p $(TRIPLET) tar xzf $< -C $(TRIPLET) touch $@ $(OC_SYSROOT)/lib/liblz4.a: $(TOOLCHAIN_BUILT) $(LZ4_DIR)/Makefile $(MAKE) -C $(LZ4_DIR)/lib \ CC="$(TRIPLET)-clang $(EXTRA_CFLAGS)" \ AR="$(TRIPLET)-ar" \ LIBDIR=$(OC_SYSROOT)/lib \ INCLUDEDIR=$(OC_SYSROOT)/include \ install rm -f $(OC_SYSROOT)/lib/liblz4.so* LZ4_DEPS := $(OC_SYSROOT)/lib/liblz4.a lz4: $(LZ4_DEPS) ##################################################################### # # Build OpenConnect for Android # OPENCONNECT_SRC := .. OPENCONNECT_BUILD := $(TRIPLET)/openconnect $(OPENCONNECT_SRC)/configure: cd $(OPENCONNECT_SRC) && ./autogen.sh $(OPENCONNECT_BUILD)/Makefile: $(TOOLCHAIN_BUILT) $(GNUTLS_DEPS) $(LIBXML_DEPS) \ $(STOKEN_DEPS) $(OATH_DEPS) $(LZ4_DEPS) $(OPENCONNECT_SRC)/configure mkdir -p $(OPENCONNECT_BUILD) cd $(OPENCONNECT_BUILD) && ../../../configure \ --host=$(TRIPLET) --prefix=/ \ CFLAGS="$(EXTRA_CFLAGS) -fvisibility=default -fPIE" \ LDFLAGS="$(EXTRA_LDFLAGS) -rdynamic -pie" \ GNUTLS_LIBS="$(shell $(PKG_CONFIG) --static --libs gnutls)" \ LIBSTOKEN_LIBS="$(shell $(PKG_CONFIG) --static --libs stoken)" \ --enable-shared --with-vpnc-script=/etc/vpnc/vpnc-script \ --with-java=$(OC_SYSROOT)/include --enable-jni-standalone \ --disable-symvers openconnect: $(OPENCONNECT_BUILD)/Makefile make -C $(OPENCONNECT_BUILD) make -C $(OPENCONNECT_BUILD) install-strip DESTDIR=$(DESTDIR) ##################################################################### # # Build run_pie helper program # $(DESTDIR)/sbin/run_pie: run_pie.c $(TOOLCHAIN_BUILT) mkdir -p $(DESTDIR)/sbin $(TRIPLET)-clang $< -o $@ -ldl .PHONY: run_pie run_pie: $(DESTDIR)/sbin/run_pie ##################################################################### # # Special targets for maintainer use # # download + extract, but do not build .PHONY: sources sources: $(SOURCE_LIST) .PHONY: $(MIRROR_TEST_TARGETS) $(MIRROR_TEST_TARGETS) : mirror-test-% : $(FETCH) --mirror-test $($(*)_TAR) $($(*)_SHA) # (re)test all mirrors for all packages. safe for use with "make -jN" .PHONY: mirror-test mirror-test: $(MIRROR_TEST_TARGETS) openconnect-8.20/android/fetch.sh0000755000076400007640000001147514062600131020601 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # OpenConnect (SSL + DTLS) VPN client # # Copyright © 2014 Kevin Cernekee # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # version 2.1, as published by the Free Software Foundation. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # set -e libxml2_MIRROR_0=ftp://xmlsoft.org/libxml2 libxml2_MIRROR_1=http://gd.tuwien.ac.at/pub/libxml libxml2_MIRROR_2=http://distfiles.macports.org/libxml2 gmp_MIRROR_0=http://ftp.gnu.org/gnu/gmp gmp_MIRROR_1=https://gmplib.org/download/gmp gmp_MIRROR_2=http://www.mirrorservice.org/sites/ftp.gnu.org/gnu/gmp nettle_MIRROR_0=http://www.lysator.liu.se/~nisse/archive nettle_MIRROR_1=http://ftp.gnu.org/gnu/nettle nettle_MIRROR_2=http://gd.tuwien.ac.at/gnu/gnusrc/nettle gnutls_MIRROR_0=https://www.gnupg.org/ftp/gcrypt/gnutls/v3.6 gnutls_MIRROR_1=http://ftp.heanet.ie/mirrors/ftp.gnupg.org/gcrypt/gnutls/v3.6 gnutls_MIRROR_2=http://gd.tuwien.ac.at/pub/gnupg/gnutls/v3.6 stoken_MIRROR_0=http://sourceforge.net/projects/stoken/files stoken_SUFFIX_0=/download oath_toolkit_MIRROR_0=http://download.savannah.gnu.org/releases/oath-toolkit oath_toolkit_MIRROR_1=https://download-mirror.savannah.gnu.org/releases/oath-toolkit lz4_MIRROR_0=https://github.com/lz4/lz4/archive MAX_TRIES=5 function make_url { local tarball="$1" local mirror_idx="$2" local pkg="${tarball%-*}" pkg="${pkg/-/_}" if [[ "$pkg" =~ [^[:alnum:]_] ]]; then echo "" return fi eval local mirror_base="\$${pkg}_MIRROR_${mirror_idx}" eval local mirror_suffix="\$${pkg}_SUFFIX_${mirror_idx}" if [ -z "$mirror_base" ]; then echo "" return fi if [[ "${mirror_base}" = *//github.com*/archive* ]]; then # typical format: https://github.com/USER/PKG/archive/TAG.tar.gz echo "${mirror_base}/${tarball#*-}" else # typical format: http://.../PKG-TAG.tar.gz echo "${mirror_base}/${tarball}${mirror_suffix}" fi return } function check_hash { local tarball="$1" local good_hash="$2" local actual_hash if [ "${#good_hash}" = "40" ]; then actual_hash=$(sha1sum "$tarball") actual_hash=${actual_hash:0:40} elif [ "${#good_hash}" = "64" ]; then actual_hash=$(sha256sum "$tarball") actual_hash=${actual_hash:0:64} else echo "Unrecognized hash: $good_hash" exit 1 fi if [ "$actual_hash" = "$good_hash" ]; then return 0 else echo "$tarball: hash mismatch" echo " expected: $good_hash" echo " got instead: $actual_hash" return 1 fi } function download_and_check { local url="$1" local tmpfile="$2" local hash="$3" rm -f "$tmpfile" if curl --location --connect-timeout 30 --speed-limit 1024 \ -o "$tmpfile" "$url"; then if [ -n "$hash" ]; then if ! check_hash "$tmpfile" "$hash"; then return 1 fi fi return 0 fi return 1 } # iterate through all available mirrors and make sure they have a good copy # of $tarball function mirror_test { local tarball="$1" local good_hash="$2" if [ -z "$good_hash" ]; then echo "ERROR: you must specify the hash for testing mirrors" exit 1 fi local mirror_idx=0 local tmpfile="${tarball}.mirror-test.tmp" while :; do local url=$(make_url "$tarball" "$mirror_idx") if [ -z "$url" ]; then break fi echo "" echo "Testing mirror $url" echo "" if download_and_check "$url" "$tmpfile" "$good_hash"; then echo "" echo "SHA $good_hash OK." echo "" else exit 1 fi echo "" mirror_idx=$((mirror_idx + 1)) done rm -f "$tmpfile" echo "Mirror test for $tarball PASSED" echo "" exit 0 } # # MAIN # if [ "$1" = "--mirror-test" ]; then mirror_test=1 shift else mirror_test=0 fi if [ -z "$1" ]; then echo "usage: $0 [ --mirror-test ] [ ]" exit 1 fi tarball="$1" hash="$2" if [ $mirror_test = 1 ]; then mirror_test "$tarball" "$hash" exit 1 fi if [ -e "$tarball" -a -n "$hash" ]; then if check_hash "$tarball" "$hash"; then echo "$tarball hash check passed. Done." echo "" exit 0 fi fi tries=1 tmpfile="${tarball}.tmp" while :; do mirror_idx=0 while :; do url=$(make_url "$tarball" "$mirror_idx") if [ -z "$url" ]; then if [ $mirror_idx = 0 ]; then echo "No mirrors found for $tarball" exit 1 else break fi fi echo "" echo "Attempt #$tries for mirror $url:" echo "" if download_and_check "$url" "$tmpfile" "$hash"; then mv "$tmpfile" "$tarball" exit 0 fi echo "" mirror_idx=$((mirror_idx + 1)) done tries=$((tries + 1)) if [ $tries -gt $MAX_TRIES ]; then break fi echo "All mirrors failed; sleeping 10 seconds..." echo "" sleep 10 done rm -f "$tarball" "$tmpfile" echo "ERROR: Unable to download $tarball" echo "" exit 1 openconnect-8.20/m4/0000755000076400007640000000000014204510553016047 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/m4/ltversion.m40000644000076400007640000000127314076314447020354 0ustar00dwoodhoudwoodhou00000000000000# ltversion.m4 -- version numbers -*- Autoconf -*- # # Copyright (C) 2004, 2011-2015 Free Software Foundation, Inc. # Written by Scott James Remnant, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # @configure_input@ # serial 4179 ltversion.m4 # This file is part of GNU Libtool m4_define([LT_PACKAGE_VERSION], [2.4.6]) m4_define([LT_PACKAGE_REVISION], [2.4.6]) AC_DEFUN([LTVERSION_VERSION], [macro_version='2.4.6' macro_revision='2.4.6' _LT_DECL(, macro_version, 0, [Which release of libtool.m4 was used?]) _LT_DECL(, macro_revision, 0) ]) openconnect-8.20/m4/lib-ld.m40000644000076400007640000001237014067426206017467 0ustar00dwoodhoudwoodhou00000000000000# lib-ld.m4 serial 10 dnl Copyright (C) 1996-2003, 2009-2021 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl Subroutines of libtool.m4, dnl with replacements s/_*LT_PATH/AC_LIB_PROG/ and s/lt_/acl_/ to avoid dnl collision with libtool.m4. dnl From libtool-2.4. Sets the variable with_gnu_ld to yes or no. AC_DEFUN([AC_LIB_PROG_LD_GNU], [AC_CACHE_CHECK([if the linker ($LD) is GNU ld], [acl_cv_prog_gnu_ld], [# I'd rather use --version here, but apparently some GNU lds only accept -v. case `$LD -v 2>&1 /dev/null 2>&1 \ && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 \ || PATH_SEPARATOR=';' } fi if test -n "$LD"; then AC_MSG_CHECKING([for ld]) elif test "$GCC" = yes; then AC_MSG_CHECKING([for ld used by $CC]) elif test "$with_gnu_ld" = yes; then AC_MSG_CHECKING([for GNU ld]) else AC_MSG_CHECKING([for non-GNU ld]) fi if test -n "$LD"; then # Let the user override the test with a path. : else AC_CACHE_VAL([acl_cv_path_LD], [ acl_cv_path_LD= # Final result of this test ac_prog=ld # Program to search in $PATH if test "$GCC" = yes; then # Check if gcc -print-prog-name=ld gives a path. case $host in *-*-mingw*) # gcc leaves a trailing carriage return which upsets mingw acl_output=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) acl_output=`($CC -print-prog-name=ld) 2>&5` ;; esac case $acl_output in # Accept absolute paths. [[\\/]]* | ?:[[\\/]]*) re_direlt='/[[^/]][[^/]]*/\.\./' # Canonicalize the pathname of ld acl_output=`echo "$acl_output" | sed 's%\\\\%/%g'` while echo "$acl_output" | grep "$re_direlt" > /dev/null 2>&1; do acl_output=`echo $acl_output | sed "s%$re_direlt%/%"` done # Got the pathname. No search in PATH is needed. acl_cv_path_LD="$acl_output" ac_prog= ;; "") # If it fails, then pretend we aren't using GCC. ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac fi if test -n "$ac_prog"; then # Search for $ac_prog in $PATH. acl_save_ifs="$IFS"; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS="$acl_save_ifs" test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then acl_cv_path_LD="$ac_dir/$ac_prog" # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$acl_cv_path_LD" -v 2>&1 conftest.sh . ./conftest.sh rm -f ./conftest.sh acl_cv_rpath=done ]) wl="$acl_cv_wl" acl_libext="$acl_cv_libext" acl_shlibext="$acl_cv_shlibext" acl_libname_spec="$acl_cv_libname_spec" acl_library_names_spec="$acl_cv_library_names_spec" acl_hardcode_libdir_flag_spec="$acl_cv_hardcode_libdir_flag_spec" acl_hardcode_libdir_separator="$acl_cv_hardcode_libdir_separator" acl_hardcode_direct="$acl_cv_hardcode_direct" acl_hardcode_minus_L="$acl_cv_hardcode_minus_L" dnl Determine whether the user wants rpath handling at all. AC_ARG_ENABLE([rpath], [ --disable-rpath do not hardcode runtime library paths], :, enable_rpath=yes) ]) dnl AC_LIB_FROMPACKAGE(name, package) dnl declares that libname comes from the given package. The configure file dnl will then not have a --with-libname-prefix option but a dnl --with-package-prefix option. Several libraries can come from the same dnl package. This declaration must occur before an AC_LIB_LINKFLAGS or similar dnl macro call that searches for libname. AC_DEFUN([AC_LIB_FROMPACKAGE], [ pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) define([acl_frompackage_]NAME, [$2]) popdef([NAME]) pushdef([PACK],[$2]) pushdef([PACKUP],[m4_translit(PACK,[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) define([acl_libsinpackage_]PACKUP, m4_ifdef([acl_libsinpackage_]PACKUP, [m4_defn([acl_libsinpackage_]PACKUP)[, ]],)[lib$1]) popdef([PACKUP]) popdef([PACK]) ]) dnl AC_LIB_LINKFLAGS_BODY(name [, dependencies]) searches for libname and dnl the libraries corresponding to explicit and implicit dependencies. dnl Sets the LIB${NAME}, LTLIB${NAME} and INC${NAME} variables. dnl Also, sets the LIB${NAME}_PREFIX variable to nonempty if libname was found dnl in ${LIB${NAME}_PREFIX}/$acl_libdirstem. AC_DEFUN([AC_LIB_LINKFLAGS_BODY], [ AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) pushdef([NAME],[m4_translit([$1],[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) pushdef([PACK],[m4_ifdef([acl_frompackage_]NAME, [acl_frompackage_]NAME, lib[$1])]) pushdef([PACKUP],[m4_translit(PACK,[abcdefghijklmnopqrstuvwxyz./+-], [ABCDEFGHIJKLMNOPQRSTUVWXYZ____])]) pushdef([PACKLIBS],[m4_ifdef([acl_frompackage_]NAME, [acl_libsinpackage_]PACKUP, lib[$1])]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" eval additional_libdir2=\"$exec_prefix/$acl_libdirstem2\" eval additional_libdir3=\"$exec_prefix/$acl_libdirstem3\" ]) AC_ARG_WITH(PACK[-prefix], [[ --with-]]PACK[[-prefix[=DIR] search for ]PACKLIBS[ in DIR/include and DIR/lib --without-]]PACK[[-prefix don't search for ]PACKLIBS[ in includedir and libdir]], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" eval additional_libdir2=\"$exec_prefix/$acl_libdirstem2\" eval additional_libdir3=\"$exec_prefix/$acl_libdirstem3\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" additional_libdir2="$withval/$acl_libdirstem2" additional_libdir3="$withval/$acl_libdirstem3" fi fi ]) if test "X$additional_libdir2" = "X$additional_libdir"; then additional_libdir2= fi if test "X$additional_libdir3" = "X$additional_libdir"; then additional_libdir3= fi dnl Search the library and its dependencies in $additional_libdir and dnl $LDFLAGS. Using breadth-first-seach. LIB[]NAME= LTLIB[]NAME= INC[]NAME= LIB[]NAME[]_PREFIX= dnl HAVE_LIB${NAME} is an indicator that LIB${NAME}, LTLIB${NAME} have been dnl computed. So it has to be reset here. HAVE_LIB[]NAME= rpathdirs= ltrpathdirs= names_already_handled= names_next_round='$1 $2' while test -n "$names_next_round"; do names_this_round="$names_next_round" names_next_round= for name in $names_this_round; do already_handled= for n in $names_already_handled; do if test "$n" = "$name"; then already_handled=yes break fi done if test -z "$already_handled"; then names_already_handled="$names_already_handled $name" dnl See if it was already located by an earlier AC_LIB_LINKFLAGS dnl or AC_LIB_HAVE_LINKFLAGS call. uppername=`echo "$name" | sed -e 'y|abcdefghijklmnopqrstuvwxyz./+-|ABCDEFGHIJKLMNOPQRSTUVWXYZ____|'` eval value=\"\$HAVE_LIB$uppername\" if test -n "$value"; then if test "$value" = yes; then eval value=\"\$LIB$uppername\" test -z "$value" || LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$value" eval value=\"\$LTLIB$uppername\" test -z "$value" || LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$value" else dnl An earlier call to AC_LIB_HAVE_LINKFLAGS has determined dnl that this library doesn't exist. So just drop it. : fi else dnl Search the library lib$name in $additional_libdir and $LDFLAGS dnl and the already constructed $LIBNAME/$LTLIBNAME. found_dir= found_la= found_so= found_a= eval libname=\"$acl_libname_spec\" # typically: libname=lib$name if test -n "$acl_shlibext"; then shrext=".$acl_shlibext" # typically: shrext=.so else shrext= fi if test $use_additional = yes; then for additional_libdir_variable in additional_libdir additional_libdir2 additional_libdir3; do if test "X$found_dir" = "X"; then eval dir=\$$additional_libdir_variable if test -n "$dir"; then dnl The same code as in the loop below: dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext" && acl_is_expected_elfclass < "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver" && acl_is_expected_elfclass < "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f" && acl_is_expected_elfclass < "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext" && ${AR-ar} -p "$dir/$libname.$acl_libext" | acl_is_expected_elfclass; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi fi fi done fi if test "X$found_dir" = "X"; then for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) case "$x" in -L*) dir=`echo "X$x" | sed -e 's/^X-L//'` dnl First look for a shared library. if test -n "$acl_shlibext"; then if test -f "$dir/$libname$shrext" && acl_is_expected_elfclass < "$dir/$libname$shrext"; then found_dir="$dir" found_so="$dir/$libname$shrext" else if test "$acl_library_names_spec" = '$libname$shrext$versuffix'; then ver=`(cd "$dir" && \ for f in "$libname$shrext".*; do echo "$f"; done \ | sed -e "s,^$libname$shrext\\\\.,," \ | sort -t '.' -n -r -k1,1 -k2,2 -k3,3 -k4,4 -k5,5 \ | sed 1q ) 2>/dev/null` if test -n "$ver" && test -f "$dir/$libname$shrext.$ver" && acl_is_expected_elfclass < "$dir/$libname$shrext.$ver"; then found_dir="$dir" found_so="$dir/$libname$shrext.$ver" fi else eval library_names=\"$acl_library_names_spec\" for f in $library_names; do if test -f "$dir/$f" && acl_is_expected_elfclass < "$dir/$f"; then found_dir="$dir" found_so="$dir/$f" break fi done fi fi fi dnl Then look for a static library. if test "X$found_dir" = "X"; then if test -f "$dir/$libname.$acl_libext" && ${AR-ar} -p "$dir/$libname.$acl_libext" | acl_is_expected_elfclass; then found_dir="$dir" found_a="$dir/$libname.$acl_libext" fi fi if test "X$found_dir" != "X"; then if test -f "$dir/$libname.la"; then found_la="$dir/$libname.la" fi fi ;; esac if test "X$found_dir" != "X"; then break fi done fi if test "X$found_dir" != "X"; then dnl Found the library. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$found_dir -l$name" if test "X$found_so" != "X"; then dnl Linking with a shared library. We attempt to hardcode its dnl directory into the executable's runpath, unless it's the dnl standard /usr/lib. if test "$enable_rpath" = no \ || test "X$found_dir" = "X/usr/$acl_libdirstem" \ || test "X$found_dir" = "X/usr/$acl_libdirstem2" \ || test "X$found_dir" = "X/usr/$acl_libdirstem3"; then dnl No hardcoding is needed. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl Use an explicit option to hardcode DIR into the resulting dnl binary. dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $found_dir" fi dnl The hardcoding into $LIBNAME is system dependent. if test "$acl_hardcode_direct" = yes; then dnl Using DIR/libNAME.so during linking hardcodes DIR into the dnl resulting binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode DIR into the resulting dnl binary. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $found_dir" fi else dnl Rely on "-L$found_dir". dnl But don't add it if it's already contained in the LDFLAGS dnl or the already constructed $LIBNAME haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$found_dir"; then haveit=yes break fi done if test -z "$haveit"; then LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir" fi if test "$acl_hardcode_minus_L" != no; then dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_so" else dnl We cannot use $acl_hardcode_runpath_var and LD_RUN_PATH dnl here, because this doesn't fit in flags passed to the dnl compiler. So give up. No hardcoding. This affects only dnl very old systems. dnl FIXME: Not sure whether we should use dnl "-L$found_dir -l$name" or "-L$found_dir $found_so" dnl here. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" fi fi fi fi else if test "X$found_a" != "X"; then dnl Linking with a static library. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$found_a" else dnl We shouldn't come here, but anyway it's good to have a dnl fallback. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$found_dir -l$name" fi fi dnl Assume the include files are nearby. additional_includedir= case "$found_dir" in */$acl_libdirstem | */$acl_libdirstem/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem/"'*$,,'` if test "$name" = '$1'; then LIB[]NAME[]_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem2 | */$acl_libdirstem2/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem2/"'*$,,'` if test "$name" = '$1'; then LIB[]NAME[]_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; */$acl_libdirstem3 | */$acl_libdirstem3/) basedir=`echo "X$found_dir" | sed -e 's,^X,,' -e "s,/$acl_libdirstem3/"'*$,,'` if test "$name" = '$1'; then LIB[]NAME[]_PREFIX="$basedir" fi additional_includedir="$basedir/include" ;; esac if test "X$additional_includedir" != "X"; then dnl Potentially add $additional_includedir to $INCNAME. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's /usr/local/include and we are using GCC on Linux, dnl 3. if it's already present in $CPPFLAGS or the already dnl constructed $INCNAME, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then for x in $CPPFLAGS $INC[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $INCNAME. INC[]NAME="${INC[]NAME}${INC[]NAME:+ }-I$additional_includedir" fi fi fi fi fi dnl Look for dependencies. if test -n "$found_la"; then dnl Read the .la file. It defines the variables dnl dlname, library_names, old_library, dependency_libs, current, dnl age, revision, installed, dlopen, dlpreopen, libdir. save_libdir="$libdir" case "$found_la" in */* | *\\*) . "$found_la" ;; *) . "./$found_la" ;; esac libdir="$save_libdir" dnl We use only dependency_libs. for dep in $dependency_libs; do case "$dep" in -L*) dependency_libdir=`echo "X$dep" | sed -e 's/^X-L//'` dnl Potentially add $dependency_libdir to $LIBNAME and $LTLIBNAME. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's /usr/local/lib and we are using GCC on Linux, dnl 3. if it's already present in $LDFLAGS or the already dnl constructed $LIBNAME, dnl 4. if it doesn't exist as a directory. if test "X$dependency_libdir" != "X/usr/$acl_libdirstem" \ && test "X$dependency_libdir" != "X/usr/$acl_libdirstem2" \ && test "X$dependency_libdir" != "X/usr/$acl_libdirstem3"; then haveit= if test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem" \ || test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem2" \ || test "X$dependency_libdir" = "X/usr/local/$acl_libdirstem3"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then haveit= for x in $LDFLAGS $LIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$dependency_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$dependency_libdir"; then dnl Really add $dependency_libdir to $LIBNAME. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-L$dependency_libdir" fi fi haveit= for x in $LDFLAGS $LTLIB[]NAME; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$dependency_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test -d "$dependency_libdir"; then dnl Really add $dependency_libdir to $LTLIBNAME. LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-L$dependency_libdir" fi fi fi fi ;; -R*) dir=`echo "X$dep" | sed -e 's/^X-R//'` if test "$enable_rpath" != no; then dnl Potentially add DIR to rpathdirs. dnl The rpathdirs will be appended to $LIBNAME at the end. haveit= for x in $rpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then rpathdirs="$rpathdirs $dir" fi dnl Potentially add DIR to ltrpathdirs. dnl The ltrpathdirs will be appended to $LTLIBNAME at the end. haveit= for x in $ltrpathdirs; do if test "X$x" = "X$dir"; then haveit=yes break fi done if test -z "$haveit"; then ltrpathdirs="$ltrpathdirs $dir" fi fi ;; -l*) dnl Handle this in the next round. dnl But on GNU systems, ignore -lc options, because dnl - linking with libc is the default anyway, dnl - linking with libc.a may produce an error dnl "/usr/bin/ld: dynamic STT_GNU_IFUNC symbol `strcmp' with pointer equality in `/usr/lib/libc.a(strcmp.o)' can not be used when making an executable; recompile with -fPIE and relink with -pie" dnl or may produce an executable that always crashes, see dnl . dep=`echo "X$dep" | sed -e 's/^X-l//'` if test "X$dep" != Xc \ || case $host_os in linux* | gnu* | k*bsd*-gnu) false ;; *) true ;; esac; then names_next_round="$names_next_round $dep" fi ;; *.la) dnl Handle this in the next round. Throw away the .la's dnl directory; it is already contained in a preceding -L dnl option. names_next_round="$names_next_round "`echo "X$dep" | sed -e 's,^X.*/,,' -e 's,^lib,,' -e 's,\.la$,,'` ;; *) dnl Most likely an immediate library name. LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$dep" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }$dep" ;; esac done fi else dnl Didn't find the library; assume it is in the system directories dnl known to the linker and runtime loader. (All the system dnl directories known to the linker should also be known to the dnl runtime loader, otherwise the system is severely misconfigured.) LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }-l$name" LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-l$name" fi fi fi done done if test "X$rpathdirs" != "X"; then if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user must dnl pass all path elements in one option. We can arrange that for a dnl single library, but not when more than one $LIBNAMEs are used. alldirs= for found_dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$found_dir" done dnl Note: acl_hardcode_libdir_flag_spec uses $libdir and $wl. acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" else dnl The -rpath options are cumulative. for found_dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$found_dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" LIB[]NAME="${LIB[]NAME}${LIB[]NAME:+ }$flag" done fi fi if test "X$ltrpathdirs" != "X"; then dnl When using libtool, the option that works for both libraries and dnl executables is -R. The -R options are cumulative. for found_dir in $ltrpathdirs; do LTLIB[]NAME="${LTLIB[]NAME}${LTLIB[]NAME:+ }-R$found_dir" done fi popdef([PACKLIBS]) popdef([PACKUP]) popdef([PACK]) popdef([NAME]) ]) dnl AC_LIB_APPENDTOVAR(VAR, CONTENTS) appends the elements of CONTENTS to VAR, dnl unless already present in VAR. dnl Works only for CPPFLAGS, not for LIB* variables because that sometimes dnl contains two or three consecutive elements that belong together. AC_DEFUN([AC_LIB_APPENDTOVAR], [ for element in [$2]; do haveit= for x in $[$1]; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X$element"; then haveit=yes break fi done if test -z "$haveit"; then [$1]="${[$1]}${[$1]:+ }$element" fi done ]) dnl For those cases where a variable contains several -L and -l options dnl referring to unknown libraries and directories, this macro determines the dnl necessary additional linker options for the runtime path. dnl AC_LIB_LINKFLAGS_FROM_LIBS([LDADDVAR], [LIBSVALUE], [USE-LIBTOOL]) dnl sets LDADDVAR to linker options needed together with LIBSVALUE. dnl If USE-LIBTOOL evaluates to non-empty, linking with libtool is assumed, dnl otherwise linking without libtool is assumed. AC_DEFUN([AC_LIB_LINKFLAGS_FROM_LIBS], [ AC_REQUIRE([AC_LIB_RPATH]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) $1= if test "$enable_rpath" != no; then if test -n "$acl_hardcode_libdir_flag_spec" && test "$acl_hardcode_minus_L" = no; then dnl Use an explicit option to hardcode directories into the resulting dnl binary. rpathdirs= next= for opt in $2; do if test -n "$next"; then dir="$next" dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem" \ && test "X$dir" != "X/usr/$acl_libdirstem2" \ && test "X$dir" != "X/usr/$acl_libdirstem3"; then rpathdirs="$rpathdirs $dir" fi next= else case $opt in -L) next=yes ;; -L*) dir=`echo "X$opt" | sed -e 's,^X-L,,'` dnl No need to hardcode the standard /usr/lib. if test "X$dir" != "X/usr/$acl_libdirstem" \ && test "X$dir" != "X/usr/$acl_libdirstem2" \ && test "X$dir" != "X/usr/$acl_libdirstem3"; then rpathdirs="$rpathdirs $dir" fi next= ;; *) next= ;; esac fi done if test "X$rpathdirs" != "X"; then if test -n ""$3""; then dnl libtool is used for linking. Use -R options. for dir in $rpathdirs; do $1="${$1}${$1:+ }-R$dir" done else dnl The linker is used for linking directly. if test -n "$acl_hardcode_libdir_separator"; then dnl Weird platform: only the last -rpath option counts, the user dnl must pass all path elements in one option. alldirs= for dir in $rpathdirs; do alldirs="${alldirs}${alldirs:+$acl_hardcode_libdir_separator}$dir" done acl_save_libdir="$libdir" libdir="$alldirs" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="$flag" else dnl The -rpath options are cumulative. for dir in $rpathdirs; do acl_save_libdir="$libdir" libdir="$dir" eval flag=\"$acl_hardcode_libdir_flag_spec\" libdir="$acl_save_libdir" $1="${$1}${$1:+ }$flag" done fi fi fi fi fi AC_SUBST([$1]) ]) openconnect-8.20/m4/ltoptions.m40000644000076400007640000003426214076314447020366 0ustar00dwoodhoudwoodhou00000000000000# Helper functions for option handling. -*- Autoconf -*- # # Copyright (C) 2004-2005, 2007-2009, 2011-2015 Free Software # Foundation, Inc. # Written by Gary V. Vaughan, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 8 ltoptions.m4 # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTOPTIONS_VERSION], [m4_if([1])]) # _LT_MANGLE_OPTION(MACRO-NAME, OPTION-NAME) # ------------------------------------------ m4_define([_LT_MANGLE_OPTION], [[_LT_OPTION_]m4_bpatsubst($1__$2, [[^a-zA-Z0-9_]], [_])]) # _LT_SET_OPTION(MACRO-NAME, OPTION-NAME) # --------------------------------------- # Set option OPTION-NAME for macro MACRO-NAME, and if there is a # matching handler defined, dispatch to it. Other OPTION-NAMEs are # saved as a flag. m4_define([_LT_SET_OPTION], [m4_define(_LT_MANGLE_OPTION([$1], [$2]))dnl m4_ifdef(_LT_MANGLE_DEFUN([$1], [$2]), _LT_MANGLE_DEFUN([$1], [$2]), [m4_warning([Unknown $1 option '$2'])])[]dnl ]) # _LT_IF_OPTION(MACRO-NAME, OPTION-NAME, IF-SET, [IF-NOT-SET]) # ------------------------------------------------------------ # Execute IF-SET if OPTION is set, IF-NOT-SET otherwise. m4_define([_LT_IF_OPTION], [m4_ifdef(_LT_MANGLE_OPTION([$1], [$2]), [$3], [$4])]) # _LT_UNLESS_OPTIONS(MACRO-NAME, OPTION-LIST, IF-NOT-SET) # ------------------------------------------------------- # Execute IF-NOT-SET unless all options in OPTION-LIST for MACRO-NAME # are set. m4_define([_LT_UNLESS_OPTIONS], [m4_foreach([_LT_Option], m4_split(m4_normalize([$2])), [m4_ifdef(_LT_MANGLE_OPTION([$1], _LT_Option), [m4_define([$0_found])])])[]dnl m4_ifdef([$0_found], [m4_undefine([$0_found])], [$3 ])[]dnl ]) # _LT_SET_OPTIONS(MACRO-NAME, OPTION-LIST) # ---------------------------------------- # OPTION-LIST is a space-separated list of Libtool options associated # with MACRO-NAME. If any OPTION has a matching handler declared with # LT_OPTION_DEFINE, dispatch to that macro; otherwise complain about # the unknown option and exit. m4_defun([_LT_SET_OPTIONS], [# Set options m4_foreach([_LT_Option], m4_split(m4_normalize([$2])), [_LT_SET_OPTION([$1], _LT_Option)]) m4_if([$1],[LT_INIT],[ dnl dnl Simply set some default values (i.e off) if boolean options were not dnl specified: _LT_UNLESS_OPTIONS([LT_INIT], [dlopen], [enable_dlopen=no ]) _LT_UNLESS_OPTIONS([LT_INIT], [win32-dll], [enable_win32_dll=no ]) dnl dnl If no reference was made to various pairs of opposing options, then dnl we run the default mode handler for the pair. For example, if neither dnl 'shared' nor 'disable-shared' was passed, we enable building of shared dnl archives by default: _LT_UNLESS_OPTIONS([LT_INIT], [shared disable-shared], [_LT_ENABLE_SHARED]) _LT_UNLESS_OPTIONS([LT_INIT], [static disable-static], [_LT_ENABLE_STATIC]) _LT_UNLESS_OPTIONS([LT_INIT], [pic-only no-pic], [_LT_WITH_PIC]) _LT_UNLESS_OPTIONS([LT_INIT], [fast-install disable-fast-install], [_LT_ENABLE_FAST_INSTALL]) _LT_UNLESS_OPTIONS([LT_INIT], [aix-soname=aix aix-soname=both aix-soname=svr4], [_LT_WITH_AIX_SONAME([aix])]) ]) ])# _LT_SET_OPTIONS ## --------------------------------- ## ## Macros to handle LT_INIT options. ## ## --------------------------------- ## # _LT_MANGLE_DEFUN(MACRO-NAME, OPTION-NAME) # ----------------------------------------- m4_define([_LT_MANGLE_DEFUN], [[_LT_OPTION_DEFUN_]m4_bpatsubst(m4_toupper([$1__$2]), [[^A-Z0-9_]], [_])]) # LT_OPTION_DEFINE(MACRO-NAME, OPTION-NAME, CODE) # ----------------------------------------------- m4_define([LT_OPTION_DEFINE], [m4_define(_LT_MANGLE_DEFUN([$1], [$2]), [$3])[]dnl ])# LT_OPTION_DEFINE # dlopen # ------ LT_OPTION_DEFINE([LT_INIT], [dlopen], [enable_dlopen=yes ]) AU_DEFUN([AC_LIBTOOL_DLOPEN], [_LT_SET_OPTION([LT_INIT], [dlopen]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'dlopen' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_DLOPEN], []) # win32-dll # --------- # Declare package support for building win32 dll's. LT_OPTION_DEFINE([LT_INIT], [win32-dll], [enable_win32_dll=yes case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-cegcc*) AC_CHECK_TOOL(AS, as, false) AC_CHECK_TOOL(DLLTOOL, dlltool, false) AC_CHECK_TOOL(OBJDUMP, objdump, false) ;; esac test -z "$AS" && AS=as _LT_DECL([], [AS], [1], [Assembler program])dnl test -z "$DLLTOOL" && DLLTOOL=dlltool _LT_DECL([], [DLLTOOL], [1], [DLL creation program])dnl test -z "$OBJDUMP" && OBJDUMP=objdump _LT_DECL([], [OBJDUMP], [1], [Object dumper program])dnl ])# win32-dll AU_DEFUN([AC_LIBTOOL_WIN32_DLL], [AC_REQUIRE([AC_CANONICAL_HOST])dnl _LT_SET_OPTION([LT_INIT], [win32-dll]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'win32-dll' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_WIN32_DLL], []) # _LT_ENABLE_SHARED([DEFAULT]) # ---------------------------- # implement the --enable-shared flag, and supports the 'shared' and # 'disable-shared' LT_INIT options. # DEFAULT is either 'yes' or 'no'. If omitted, it defaults to 'yes'. m4_define([_LT_ENABLE_SHARED], [m4_define([_LT_ENABLE_SHARED_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([shared], [AS_HELP_STRING([--enable-shared@<:@=PKGS@:>@], [build shared libraries @<:@default=]_LT_ENABLE_SHARED_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_shared=yes ;; no) enable_shared=no ;; *) enable_shared=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_shared=yes fi done IFS=$lt_save_ifs ;; esac], [enable_shared=]_LT_ENABLE_SHARED_DEFAULT) _LT_DECL([build_libtool_libs], [enable_shared], [0], [Whether or not to build shared libraries]) ])# _LT_ENABLE_SHARED LT_OPTION_DEFINE([LT_INIT], [shared], [_LT_ENABLE_SHARED([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-shared], [_LT_ENABLE_SHARED([no])]) # Old names: AC_DEFUN([AC_ENABLE_SHARED], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[shared]) ]) AC_DEFUN([AC_DISABLE_SHARED], [_LT_SET_OPTION([LT_INIT], [disable-shared]) ]) AU_DEFUN([AM_ENABLE_SHARED], [AC_ENABLE_SHARED($@)]) AU_DEFUN([AM_DISABLE_SHARED], [AC_DISABLE_SHARED($@)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_ENABLE_SHARED], []) dnl AC_DEFUN([AM_DISABLE_SHARED], []) # _LT_ENABLE_STATIC([DEFAULT]) # ---------------------------- # implement the --enable-static flag, and support the 'static' and # 'disable-static' LT_INIT options. # DEFAULT is either 'yes' or 'no'. If omitted, it defaults to 'yes'. m4_define([_LT_ENABLE_STATIC], [m4_define([_LT_ENABLE_STATIC_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([static], [AS_HELP_STRING([--enable-static@<:@=PKGS@:>@], [build static libraries @<:@default=]_LT_ENABLE_STATIC_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_static=yes ;; no) enable_static=no ;; *) enable_static=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_static=yes fi done IFS=$lt_save_ifs ;; esac], [enable_static=]_LT_ENABLE_STATIC_DEFAULT) _LT_DECL([build_old_libs], [enable_static], [0], [Whether or not to build static libraries]) ])# _LT_ENABLE_STATIC LT_OPTION_DEFINE([LT_INIT], [static], [_LT_ENABLE_STATIC([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-static], [_LT_ENABLE_STATIC([no])]) # Old names: AC_DEFUN([AC_ENABLE_STATIC], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[static]) ]) AC_DEFUN([AC_DISABLE_STATIC], [_LT_SET_OPTION([LT_INIT], [disable-static]) ]) AU_DEFUN([AM_ENABLE_STATIC], [AC_ENABLE_STATIC($@)]) AU_DEFUN([AM_DISABLE_STATIC], [AC_DISABLE_STATIC($@)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_ENABLE_STATIC], []) dnl AC_DEFUN([AM_DISABLE_STATIC], []) # _LT_ENABLE_FAST_INSTALL([DEFAULT]) # ---------------------------------- # implement the --enable-fast-install flag, and support the 'fast-install' # and 'disable-fast-install' LT_INIT options. # DEFAULT is either 'yes' or 'no'. If omitted, it defaults to 'yes'. m4_define([_LT_ENABLE_FAST_INSTALL], [m4_define([_LT_ENABLE_FAST_INSTALL_DEFAULT], [m4_if($1, no, no, yes)])dnl AC_ARG_ENABLE([fast-install], [AS_HELP_STRING([--enable-fast-install@<:@=PKGS@:>@], [optimize for fast installation @<:@default=]_LT_ENABLE_FAST_INSTALL_DEFAULT[@:>@])], [p=${PACKAGE-default} case $enableval in yes) enable_fast_install=yes ;; no) enable_fast_install=no ;; *) enable_fast_install=no # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for pkg in $enableval; do IFS=$lt_save_ifs if test "X$pkg" = "X$p"; then enable_fast_install=yes fi done IFS=$lt_save_ifs ;; esac], [enable_fast_install=]_LT_ENABLE_FAST_INSTALL_DEFAULT) _LT_DECL([fast_install], [enable_fast_install], [0], [Whether or not to optimize for fast installation])dnl ])# _LT_ENABLE_FAST_INSTALL LT_OPTION_DEFINE([LT_INIT], [fast-install], [_LT_ENABLE_FAST_INSTALL([yes])]) LT_OPTION_DEFINE([LT_INIT], [disable-fast-install], [_LT_ENABLE_FAST_INSTALL([no])]) # Old names: AU_DEFUN([AC_ENABLE_FAST_INSTALL], [_LT_SET_OPTION([LT_INIT], m4_if([$1], [no], [disable-])[fast-install]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'fast-install' option into LT_INIT's first parameter.]) ]) AU_DEFUN([AC_DISABLE_FAST_INSTALL], [_LT_SET_OPTION([LT_INIT], [disable-fast-install]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'disable-fast-install' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_ENABLE_FAST_INSTALL], []) dnl AC_DEFUN([AM_DISABLE_FAST_INSTALL], []) # _LT_WITH_AIX_SONAME([DEFAULT]) # ---------------------------------- # implement the --with-aix-soname flag, and support the `aix-soname=aix' # and `aix-soname=both' and `aix-soname=svr4' LT_INIT options. DEFAULT # is either `aix', `both' or `svr4'. If omitted, it defaults to `aix'. m4_define([_LT_WITH_AIX_SONAME], [m4_define([_LT_WITH_AIX_SONAME_DEFAULT], [m4_if($1, svr4, svr4, m4_if($1, both, both, aix))])dnl shared_archive_member_spec= case $host,$enable_shared in power*-*-aix[[5-9]]*,yes) AC_MSG_CHECKING([which variant of shared library versioning to provide]) AC_ARG_WITH([aix-soname], [AS_HELP_STRING([--with-aix-soname=aix|svr4|both], [shared library versioning (aka "SONAME") variant to provide on AIX, @<:@default=]_LT_WITH_AIX_SONAME_DEFAULT[@:>@.])], [case $withval in aix|svr4|both) ;; *) AC_MSG_ERROR([Unknown argument to --with-aix-soname]) ;; esac lt_cv_with_aix_soname=$with_aix_soname], [AC_CACHE_VAL([lt_cv_with_aix_soname], [lt_cv_with_aix_soname=]_LT_WITH_AIX_SONAME_DEFAULT) with_aix_soname=$lt_cv_with_aix_soname]) AC_MSG_RESULT([$with_aix_soname]) if test aix != "$with_aix_soname"; then # For the AIX way of multilib, we name the shared archive member # based on the bitwidth used, traditionally 'shr.o' or 'shr_64.o', # and 'shr.imp' or 'shr_64.imp', respectively, for the Import File. # Even when GNU compilers ignore OBJECT_MODE but need '-maix64' flag, # the AIX toolchain works better with OBJECT_MODE set (default 32). if test 64 = "${OBJECT_MODE-32}"; then shared_archive_member_spec=shr_64 else shared_archive_member_spec=shr fi fi ;; *) with_aix_soname=aix ;; esac _LT_DECL([], [shared_archive_member_spec], [0], [Shared archive member basename, for filename based shared library versioning on AIX])dnl ])# _LT_WITH_AIX_SONAME LT_OPTION_DEFINE([LT_INIT], [aix-soname=aix], [_LT_WITH_AIX_SONAME([aix])]) LT_OPTION_DEFINE([LT_INIT], [aix-soname=both], [_LT_WITH_AIX_SONAME([both])]) LT_OPTION_DEFINE([LT_INIT], [aix-soname=svr4], [_LT_WITH_AIX_SONAME([svr4])]) # _LT_WITH_PIC([MODE]) # -------------------- # implement the --with-pic flag, and support the 'pic-only' and 'no-pic' # LT_INIT options. # MODE is either 'yes' or 'no'. If omitted, it defaults to 'both'. m4_define([_LT_WITH_PIC], [AC_ARG_WITH([pic], [AS_HELP_STRING([--with-pic@<:@=PKGS@:>@], [try to use only PIC/non-PIC objects @<:@default=use both@:>@])], [lt_p=${PACKAGE-default} case $withval in yes|no) pic_mode=$withval ;; *) pic_mode=default # Look at the argument we got. We use all the common list separators. lt_save_ifs=$IFS; IFS=$IFS$PATH_SEPARATOR, for lt_pkg in $withval; do IFS=$lt_save_ifs if test "X$lt_pkg" = "X$lt_p"; then pic_mode=yes fi done IFS=$lt_save_ifs ;; esac], [pic_mode=m4_default([$1], [default])]) _LT_DECL([], [pic_mode], [0], [What type of objects to build])dnl ])# _LT_WITH_PIC LT_OPTION_DEFINE([LT_INIT], [pic-only], [_LT_WITH_PIC([yes])]) LT_OPTION_DEFINE([LT_INIT], [no-pic], [_LT_WITH_PIC([no])]) # Old name: AU_DEFUN([AC_LIBTOOL_PICMODE], [_LT_SET_OPTION([LT_INIT], [pic-only]) AC_DIAGNOSE([obsolete], [$0: Remove this warning and the call to _LT_SET_OPTION when you put the 'pic-only' option into LT_INIT's first parameter.]) ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_PICMODE], []) ## ----------------- ## ## LTDL_INIT Options ## ## ----------------- ## m4_define([_LTDL_MODE], []) LT_OPTION_DEFINE([LTDL_INIT], [nonrecursive], [m4_define([_LTDL_MODE], [nonrecursive])]) LT_OPTION_DEFINE([LTDL_INIT], [recursive], [m4_define([_LTDL_MODE], [recursive])]) LT_OPTION_DEFINE([LTDL_INIT], [subproject], [m4_define([_LTDL_MODE], [subproject])]) m4_define([_LTDL_TYPE], []) LT_OPTION_DEFINE([LTDL_INIT], [installable], [m4_define([_LTDL_TYPE], [installable])]) LT_OPTION_DEFINE([LTDL_INIT], [convenience], [m4_define([_LTDL_TYPE], [convenience])]) openconnect-8.20/m4/lt~obsolete.m40000644000076400007640000001377414076314447020712 0ustar00dwoodhoudwoodhou00000000000000# lt~obsolete.m4 -- aclocal satisfying obsolete definitions. -*-Autoconf-*- # # Copyright (C) 2004-2005, 2007, 2009, 2011-2015 Free Software # Foundation, Inc. # Written by Scott James Remnant, 2004. # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 5 lt~obsolete.m4 # These exist entirely to fool aclocal when bootstrapping libtool. # # In the past libtool.m4 has provided macros via AC_DEFUN (or AU_DEFUN), # which have later been changed to m4_define as they aren't part of the # exported API, or moved to Autoconf or Automake where they belong. # # The trouble is, aclocal is a bit thick. It'll see the old AC_DEFUN # in /usr/share/aclocal/libtool.m4 and remember it, then when it sees us # using a macro with the same name in our local m4/libtool.m4 it'll # pull the old libtool.m4 in (it doesn't see our shiny new m4_define # and doesn't know about Autoconf macros at all.) # # So we provide this file, which has a silly filename so it's always # included after everything else. This provides aclocal with the # AC_DEFUNs it wants, but when m4 processes it, it doesn't do anything # because those macros already exist, or will be overwritten later. # We use AC_DEFUN over AU_DEFUN for compatibility with aclocal-1.6. # # Anytime we withdraw an AC_DEFUN or AU_DEFUN, remember to add it here. # Yes, that means every name once taken will need to remain here until # we give up compatibility with versions before 1.7, at which point # we need to keep only those names which we still refer to. # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTOBSOLETE_VERSION], [m4_if([1])]) m4_ifndef([AC_LIBTOOL_LINKER_OPTION], [AC_DEFUN([AC_LIBTOOL_LINKER_OPTION])]) m4_ifndef([AC_PROG_EGREP], [AC_DEFUN([AC_PROG_EGREP])]) m4_ifndef([_LT_AC_PROG_ECHO_BACKSLASH], [AC_DEFUN([_LT_AC_PROG_ECHO_BACKSLASH])]) m4_ifndef([_LT_AC_SHELL_INIT], [AC_DEFUN([_LT_AC_SHELL_INIT])]) m4_ifndef([_LT_AC_SYS_LIBPATH_AIX], [AC_DEFUN([_LT_AC_SYS_LIBPATH_AIX])]) m4_ifndef([_LT_PROG_LTMAIN], [AC_DEFUN([_LT_PROG_LTMAIN])]) m4_ifndef([_LT_AC_TAGVAR], [AC_DEFUN([_LT_AC_TAGVAR])]) m4_ifndef([AC_LTDL_ENABLE_INSTALL], [AC_DEFUN([AC_LTDL_ENABLE_INSTALL])]) m4_ifndef([AC_LTDL_PREOPEN], [AC_DEFUN([AC_LTDL_PREOPEN])]) m4_ifndef([_LT_AC_SYS_COMPILER], [AC_DEFUN([_LT_AC_SYS_COMPILER])]) m4_ifndef([_LT_AC_LOCK], [AC_DEFUN([_LT_AC_LOCK])]) m4_ifndef([AC_LIBTOOL_SYS_OLD_ARCHIVE], [AC_DEFUN([AC_LIBTOOL_SYS_OLD_ARCHIVE])]) m4_ifndef([_LT_AC_TRY_DLOPEN_SELF], [AC_DEFUN([_LT_AC_TRY_DLOPEN_SELF])]) m4_ifndef([AC_LIBTOOL_PROG_CC_C_O], [AC_DEFUN([AC_LIBTOOL_PROG_CC_C_O])]) m4_ifndef([AC_LIBTOOL_SYS_HARD_LINK_LOCKS], [AC_DEFUN([AC_LIBTOOL_SYS_HARD_LINK_LOCKS])]) m4_ifndef([AC_LIBTOOL_OBJDIR], [AC_DEFUN([AC_LIBTOOL_OBJDIR])]) m4_ifndef([AC_LTDL_OBJDIR], [AC_DEFUN([AC_LTDL_OBJDIR])]) m4_ifndef([AC_LIBTOOL_PROG_LD_HARDCODE_LIBPATH], [AC_DEFUN([AC_LIBTOOL_PROG_LD_HARDCODE_LIBPATH])]) m4_ifndef([AC_LIBTOOL_SYS_LIB_STRIP], [AC_DEFUN([AC_LIBTOOL_SYS_LIB_STRIP])]) m4_ifndef([AC_PATH_MAGIC], [AC_DEFUN([AC_PATH_MAGIC])]) m4_ifndef([AC_PROG_LD_GNU], [AC_DEFUN([AC_PROG_LD_GNU])]) m4_ifndef([AC_PROG_LD_RELOAD_FLAG], [AC_DEFUN([AC_PROG_LD_RELOAD_FLAG])]) m4_ifndef([AC_DEPLIBS_CHECK_METHOD], [AC_DEFUN([AC_DEPLIBS_CHECK_METHOD])]) m4_ifndef([AC_LIBTOOL_PROG_COMPILER_NO_RTTI], [AC_DEFUN([AC_LIBTOOL_PROG_COMPILER_NO_RTTI])]) m4_ifndef([AC_LIBTOOL_SYS_GLOBAL_SYMBOL_PIPE], [AC_DEFUN([AC_LIBTOOL_SYS_GLOBAL_SYMBOL_PIPE])]) m4_ifndef([AC_LIBTOOL_PROG_COMPILER_PIC], [AC_DEFUN([AC_LIBTOOL_PROG_COMPILER_PIC])]) m4_ifndef([AC_LIBTOOL_PROG_LD_SHLIBS], [AC_DEFUN([AC_LIBTOOL_PROG_LD_SHLIBS])]) m4_ifndef([AC_LIBTOOL_POSTDEP_PREDEP], [AC_DEFUN([AC_LIBTOOL_POSTDEP_PREDEP])]) m4_ifndef([LT_AC_PROG_EGREP], [AC_DEFUN([LT_AC_PROG_EGREP])]) m4_ifndef([LT_AC_PROG_SED], [AC_DEFUN([LT_AC_PROG_SED])]) m4_ifndef([_LT_CC_BASENAME], [AC_DEFUN([_LT_CC_BASENAME])]) m4_ifndef([_LT_COMPILER_BOILERPLATE], [AC_DEFUN([_LT_COMPILER_BOILERPLATE])]) m4_ifndef([_LT_LINKER_BOILERPLATE], [AC_DEFUN([_LT_LINKER_BOILERPLATE])]) m4_ifndef([_AC_PROG_LIBTOOL], [AC_DEFUN([_AC_PROG_LIBTOOL])]) m4_ifndef([AC_LIBTOOL_SETUP], [AC_DEFUN([AC_LIBTOOL_SETUP])]) m4_ifndef([_LT_AC_CHECK_DLFCN], [AC_DEFUN([_LT_AC_CHECK_DLFCN])]) m4_ifndef([AC_LIBTOOL_SYS_DYNAMIC_LINKER], [AC_DEFUN([AC_LIBTOOL_SYS_DYNAMIC_LINKER])]) m4_ifndef([_LT_AC_TAGCONFIG], [AC_DEFUN([_LT_AC_TAGCONFIG])]) m4_ifndef([AC_DISABLE_FAST_INSTALL], [AC_DEFUN([AC_DISABLE_FAST_INSTALL])]) m4_ifndef([_LT_AC_LANG_CXX], [AC_DEFUN([_LT_AC_LANG_CXX])]) m4_ifndef([_LT_AC_LANG_F77], [AC_DEFUN([_LT_AC_LANG_F77])]) m4_ifndef([_LT_AC_LANG_GCJ], [AC_DEFUN([_LT_AC_LANG_GCJ])]) m4_ifndef([AC_LIBTOOL_LANG_C_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_C_CONFIG])]) m4_ifndef([_LT_AC_LANG_C_CONFIG], [AC_DEFUN([_LT_AC_LANG_C_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_CXX_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_CXX_CONFIG])]) m4_ifndef([_LT_AC_LANG_CXX_CONFIG], [AC_DEFUN([_LT_AC_LANG_CXX_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_F77_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_F77_CONFIG])]) m4_ifndef([_LT_AC_LANG_F77_CONFIG], [AC_DEFUN([_LT_AC_LANG_F77_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_GCJ_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_GCJ_CONFIG])]) m4_ifndef([_LT_AC_LANG_GCJ_CONFIG], [AC_DEFUN([_LT_AC_LANG_GCJ_CONFIG])]) m4_ifndef([AC_LIBTOOL_LANG_RC_CONFIG], [AC_DEFUN([AC_LIBTOOL_LANG_RC_CONFIG])]) m4_ifndef([_LT_AC_LANG_RC_CONFIG], [AC_DEFUN([_LT_AC_LANG_RC_CONFIG])]) m4_ifndef([AC_LIBTOOL_CONFIG], [AC_DEFUN([AC_LIBTOOL_CONFIG])]) m4_ifndef([_LT_AC_FILE_LTDLL_C], [AC_DEFUN([_LT_AC_FILE_LTDLL_C])]) m4_ifndef([_LT_REQUIRED_DARWIN_CHECKS], [AC_DEFUN([_LT_REQUIRED_DARWIN_CHECKS])]) m4_ifndef([_LT_AC_PROG_CXXCPP], [AC_DEFUN([_LT_AC_PROG_CXXCPP])]) m4_ifndef([_LT_PREPARE_SED_QUOTE_VARS], [AC_DEFUN([_LT_PREPARE_SED_QUOTE_VARS])]) m4_ifndef([_LT_PROG_ECHO_BACKSLASH], [AC_DEFUN([_LT_PROG_ECHO_BACKSLASH])]) m4_ifndef([_LT_PROG_F77], [AC_DEFUN([_LT_PROG_F77])]) m4_ifndef([_LT_PROG_FC], [AC_DEFUN([_LT_PROG_FC])]) m4_ifndef([_LT_PROG_CXX], [AC_DEFUN([_LT_PROG_CXX])]) openconnect-8.20/m4/iconv.m40000644000076400007640000002300314067426206017435 0ustar00dwoodhoudwoodhou00000000000000# iconv.m4 serial 21 dnl Copyright (C) 2000-2002, 2007-2014, 2016-2020 Free Software Foundation, dnl Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. AC_DEFUN([AM_ICONV_LINKFLAGS_BODY], [ dnl Prerequisites of AC_LIB_LINKFLAGS_BODY. AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) AC_REQUIRE([AC_LIB_RPATH]) dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_LIB_LINKFLAGS_BODY([iconv]) ]) AC_DEFUN([AM_ICONV_LINK], [ dnl Some systems have iconv in libc, some have it in libiconv (OSF/1 and dnl those with the standalone portable GNU libiconv installed). AC_REQUIRE([AC_CANONICAL_HOST]) dnl for cross-compiles dnl Search for libiconv and define LIBICONV, LTLIBICONV and INCICONV dnl accordingly. AC_REQUIRE([AM_ICONV_LINKFLAGS_BODY]) dnl Add $INCICONV to CPPFLAGS before performing the following checks, dnl because if the user has installed libiconv and not disabled its use dnl via --without-libiconv-prefix, he wants to use it. The first dnl AC_LINK_IFELSE will then fail, the second AC_LINK_IFELSE will succeed. am_save_CPPFLAGS="$CPPFLAGS" AC_LIB_APPENDTOVAR([CPPFLAGS], [$INCICONV]) AC_CACHE_CHECK([for iconv], [am_cv_func_iconv], [ am_cv_func_iconv="no, consider installing GNU libiconv" am_cv_lib_iconv=no AC_LINK_IFELSE( [AC_LANG_PROGRAM( [[ #include #include ]], [[iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);]])], [am_cv_func_iconv=yes]) if test "$am_cv_func_iconv" != yes; then am_save_LIBS="$LIBS" LIBS="$LIBS $LIBICONV" AC_LINK_IFELSE( [AC_LANG_PROGRAM( [[ #include #include ]], [[iconv_t cd = iconv_open("",""); iconv(cd,NULL,NULL,NULL,NULL); iconv_close(cd);]])], [am_cv_lib_iconv=yes] [am_cv_func_iconv=yes]) LIBS="$am_save_LIBS" fi ]) if test "$am_cv_func_iconv" = yes; then AC_CACHE_CHECK([for working iconv], [am_cv_func_iconv_works], [ dnl This tests against bugs in AIX 5.1, AIX 6.1..7.1, HP-UX 11.11, dnl Solaris 10. am_save_LIBS="$LIBS" if test $am_cv_lib_iconv = yes; then LIBS="$LIBS $LIBICONV" fi am_cv_func_iconv_works=no for ac_iconv_const in '' 'const'; do AC_RUN_IFELSE( [AC_LANG_PROGRAM( [[ #include #include #ifndef ICONV_CONST # define ICONV_CONST $ac_iconv_const #endif ]], [[int result = 0; /* Test against AIX 5.1 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_utf8_to_88591 = iconv_open ("ISO8859-1", "UTF-8"); if (cd_utf8_to_88591 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\342\202\254"; /* EURO SIGN */ char buf[10]; ICONV_CONST char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_utf8_to_88591, &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 1; iconv_close (cd_utf8_to_88591); } } /* Test against Solaris 10 bug: Failures are not distinguishable from successful returns. */ { iconv_t cd_ascii_to_88591 = iconv_open ("ISO8859-1", "646"); if (cd_ascii_to_88591 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\263"; char buf[10]; ICONV_CONST char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_ascii_to_88591, &inptr, &inbytesleft, &outptr, &outbytesleft); if (res == 0) result |= 2; iconv_close (cd_ascii_to_88591); } } /* Test against AIX 6.1..7.1 bug: Buffer overrun. */ { iconv_t cd_88591_to_utf8 = iconv_open ("UTF-8", "ISO-8859-1"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\304"; static char buf[2] = { (char)0xDE, (char)0xAD }; ICONV_CONST char *inptr = input; size_t inbytesleft = 1; char *outptr = buf; size_t outbytesleft = 1; size_t res = iconv (cd_88591_to_utf8, &inptr, &inbytesleft, &outptr, &outbytesleft); if (res != (size_t)(-1) || outptr - buf > 1 || buf[1] != (char)0xAD) result |= 4; iconv_close (cd_88591_to_utf8); } } #if 0 /* This bug could be worked around by the caller. */ /* Test against HP-UX 11.11 bug: Positive return value instead of 0. */ { iconv_t cd_88591_to_utf8 = iconv_open ("utf8", "iso88591"); if (cd_88591_to_utf8 != (iconv_t)(-1)) { static ICONV_CONST char input[] = "\304rger mit b\366sen B\374bchen ohne Augenma\337"; char buf[50]; ICONV_CONST char *inptr = input; size_t inbytesleft = strlen (input); char *outptr = buf; size_t outbytesleft = sizeof (buf); size_t res = iconv (cd_88591_to_utf8, &inptr, &inbytesleft, &outptr, &outbytesleft); if ((int)res > 0) result |= 8; iconv_close (cd_88591_to_utf8); } } #endif /* Test against HP-UX 11.11 bug: No converter from EUC-JP to UTF-8 is provided. */ { /* Try standardized names. */ iconv_t cd1 = iconv_open ("UTF-8", "EUC-JP"); /* Try IRIX, OSF/1 names. */ iconv_t cd2 = iconv_open ("UTF-8", "eucJP"); /* Try AIX names. */ iconv_t cd3 = iconv_open ("UTF-8", "IBM-eucJP"); /* Try HP-UX names. */ iconv_t cd4 = iconv_open ("utf8", "eucJP"); if (cd1 == (iconv_t)(-1) && cd2 == (iconv_t)(-1) && cd3 == (iconv_t)(-1) && cd4 == (iconv_t)(-1)) result |= 16; if (cd1 != (iconv_t)(-1)) iconv_close (cd1); if (cd2 != (iconv_t)(-1)) iconv_close (cd2); if (cd3 != (iconv_t)(-1)) iconv_close (cd3); if (cd4 != (iconv_t)(-1)) iconv_close (cd4); } return result; ]])], [am_cv_func_iconv_works=yes], , [case "$host_os" in aix* | hpux*) am_cv_func_iconv_works="guessing no" ;; *) am_cv_func_iconv_works="guessing yes" ;; esac]) test "$am_cv_func_iconv_works" = no || break done LIBS="$am_save_LIBS" ]) case "$am_cv_func_iconv_works" in *no) am_func_iconv=no am_cv_lib_iconv=no ;; *) am_func_iconv=yes ;; esac else am_func_iconv=no am_cv_lib_iconv=no fi if test "$am_func_iconv" = yes; then AC_DEFINE([HAVE_ICONV], [1], [Define if you have the iconv() function and it works.]) fi if test "$am_cv_lib_iconv" = yes; then AC_MSG_CHECKING([how to link with libiconv]) AC_MSG_RESULT([$LIBICONV]) else dnl If $LIBICONV didn't lead to a usable library, we don't need $INCICONV dnl either. CPPFLAGS="$am_save_CPPFLAGS" LIBICONV= LTLIBICONV= fi AC_SUBST([LIBICONV]) AC_SUBST([LTLIBICONV]) ]) dnl Define AM_ICONV using AC_DEFUN_ONCE for Autoconf >= 2.64, in order to dnl avoid warnings like dnl "warning: AC_REQUIRE: `AM_ICONV' was expanded before it was required". dnl This is tricky because of the way 'aclocal' is implemented: dnl - It requires defining an auxiliary macro whose name ends in AC_DEFUN. dnl Otherwise aclocal's initial scan pass would miss the macro definition. dnl - It requires a line break inside the AC_DEFUN_ONCE and AC_DEFUN expansions. dnl Otherwise aclocal would emit many "Use of uninitialized value $1" dnl warnings. m4_define([gl_iconv_AC_DEFUN], m4_version_prereq([2.64], [[AC_DEFUN_ONCE( [$1], [$2])]], [m4_ifdef([gl_00GNULIB], [[AC_DEFUN_ONCE( [$1], [$2])]], [[AC_DEFUN( [$1], [$2])]])])) gl_iconv_AC_DEFUN([AM_ICONV], [ AM_ICONV_LINK if test "$am_cv_func_iconv" = yes; then AC_MSG_CHECKING([for iconv declaration]) AC_CACHE_VAL([am_cv_proto_iconv], [ AC_COMPILE_IFELSE( [AC_LANG_PROGRAM( [[ #include #include extern #ifdef __cplusplus "C" #endif #if defined(__STDC__) || defined(_MSC_VER) || defined(__cplusplus) size_t iconv (iconv_t cd, char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft); #else size_t iconv(); #endif ]], [[]])], [am_cv_proto_iconv_arg1=""], [am_cv_proto_iconv_arg1="const"]) am_cv_proto_iconv="extern size_t iconv (iconv_t cd, $am_cv_proto_iconv_arg1 char * *inbuf, size_t *inbytesleft, char * *outbuf, size_t *outbytesleft);"]) am_cv_proto_iconv=`echo "[$]am_cv_proto_iconv" | tr -s ' ' | sed -e 's/( /(/'` AC_MSG_RESULT([ $am_cv_proto_iconv]) else dnl When compiling GNU libiconv on a system that does not have iconv yet, dnl pick the POSIX compliant declaration without 'const'. am_cv_proto_iconv_arg1="" fi AC_DEFINE_UNQUOTED([ICONV_CONST], [$am_cv_proto_iconv_arg1], [Define as const if the declaration of iconv() needs const.]) dnl Also substitute ICONV_CONST in the gnulib generated . m4_ifdef([gl_ICONV_H_DEFAULTS], [AC_REQUIRE([gl_ICONV_H_DEFAULTS]) if test -n "$am_cv_proto_iconv_arg1"; then ICONV_CONST="const" fi ]) ]) openconnect-8.20/m4/ltsugar.m40000644000076400007640000001044014076314447020004 0ustar00dwoodhoudwoodhou00000000000000# ltsugar.m4 -- libtool m4 base layer. -*-Autoconf-*- # # Copyright (C) 2004-2005, 2007-2008, 2011-2015 Free Software # Foundation, Inc. # Written by Gary V. Vaughan, 2004 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # serial 6 ltsugar.m4 # This is to help aclocal find these macros, as it can't see m4_define. AC_DEFUN([LTSUGAR_VERSION], [m4_if([0.1])]) # lt_join(SEP, ARG1, [ARG2...]) # ----------------------------- # Produce ARG1SEPARG2...SEPARGn, omitting [] arguments and their # associated separator. # Needed until we can rely on m4_join from Autoconf 2.62, since all earlier # versions in m4sugar had bugs. m4_define([lt_join], [m4_if([$#], [1], [], [$#], [2], [[$2]], [m4_if([$2], [], [], [[$2]_])$0([$1], m4_shift(m4_shift($@)))])]) m4_define([_lt_join], [m4_if([$#$2], [2], [], [m4_if([$2], [], [], [[$1$2]])$0([$1], m4_shift(m4_shift($@)))])]) # lt_car(LIST) # lt_cdr(LIST) # ------------ # Manipulate m4 lists. # These macros are necessary as long as will still need to support # Autoconf-2.59, which quotes differently. m4_define([lt_car], [[$1]]) m4_define([lt_cdr], [m4_if([$#], 0, [m4_fatal([$0: cannot be called without arguments])], [$#], 1, [], [m4_dquote(m4_shift($@))])]) m4_define([lt_unquote], $1) # lt_append(MACRO-NAME, STRING, [SEPARATOR]) # ------------------------------------------ # Redefine MACRO-NAME to hold its former content plus 'SEPARATOR''STRING'. # Note that neither SEPARATOR nor STRING are expanded; they are appended # to MACRO-NAME as is (leaving the expansion for when MACRO-NAME is invoked). # No SEPARATOR is output if MACRO-NAME was previously undefined (different # than defined and empty). # # This macro is needed until we can rely on Autoconf 2.62, since earlier # versions of m4sugar mistakenly expanded SEPARATOR but not STRING. m4_define([lt_append], [m4_define([$1], m4_ifdef([$1], [m4_defn([$1])[$3]])[$2])]) # lt_combine(SEP, PREFIX-LIST, INFIX, SUFFIX1, [SUFFIX2...]) # ---------------------------------------------------------- # Produce a SEP delimited list of all paired combinations of elements of # PREFIX-LIST with SUFFIX1 through SUFFIXn. Each element of the list # has the form PREFIXmINFIXSUFFIXn. # Needed until we can rely on m4_combine added in Autoconf 2.62. m4_define([lt_combine], [m4_if(m4_eval([$# > 3]), [1], [m4_pushdef([_Lt_sep], [m4_define([_Lt_sep], m4_defn([lt_car]))])]]dnl [[m4_foreach([_Lt_prefix], [$2], [m4_foreach([_Lt_suffix], ]m4_dquote(m4_dquote(m4_shift(m4_shift(m4_shift($@)))))[, [_Lt_sep([$1])[]m4_defn([_Lt_prefix])[$3]m4_defn([_Lt_suffix])])])])]) # lt_if_append_uniq(MACRO-NAME, VARNAME, [SEPARATOR], [UNIQ], [NOT-UNIQ]) # ----------------------------------------------------------------------- # Iff MACRO-NAME does not yet contain VARNAME, then append it (delimited # by SEPARATOR if supplied) and expand UNIQ, else NOT-UNIQ. m4_define([lt_if_append_uniq], [m4_ifdef([$1], [m4_if(m4_index([$3]m4_defn([$1])[$3], [$3$2$3]), [-1], [lt_append([$1], [$2], [$3])$4], [$5])], [lt_append([$1], [$2], [$3])$4])]) # lt_dict_add(DICT, KEY, VALUE) # ----------------------------- m4_define([lt_dict_add], [m4_define([$1($2)], [$3])]) # lt_dict_add_subkey(DICT, KEY, SUBKEY, VALUE) # -------------------------------------------- m4_define([lt_dict_add_subkey], [m4_define([$1($2:$3)], [$4])]) # lt_dict_fetch(DICT, KEY, [SUBKEY]) # ---------------------------------- m4_define([lt_dict_fetch], [m4_ifval([$3], m4_ifdef([$1($2:$3)], [m4_defn([$1($2:$3)])]), m4_ifdef([$1($2)], [m4_defn([$1($2)])]))]) # lt_if_dict_fetch(DICT, KEY, [SUBKEY], VALUE, IF-TRUE, [IF-FALSE]) # ----------------------------------------------------------------- m4_define([lt_if_dict_fetch], [m4_if(lt_dict_fetch([$1], [$2], [$3]), [$4], [$5], [$6])]) # lt_dict_filter(DICT, [SUBKEY], VALUE, [SEPARATOR], KEY, [...]) # -------------------------------------------------------------- m4_define([lt_dict_filter], [m4_if([$5], [], [], [lt_join(m4_quote(m4_default([$4], [[, ]])), lt_unquote(m4_split(m4_normalize(m4_foreach(_Lt_key, lt_car([m4_shiftn(4, $@)]), [lt_if_dict_fetch([$1], _Lt_key, [$2], [$3], [_Lt_key ])])))))])[]dnl ]) openconnect-8.20/m4/ax_check_vscript.m40000644000076400007640000001115514067426206021643 0ustar00dwoodhoudwoodhou00000000000000# =========================================================================== # https://www.gnu.org/software/autoconf-archive/ax_check_vscript.html # =========================================================================== # # SYNOPSIS # # AX_CHECK_VSCRIPT # # DESCRIPTION # # Check whether the linker supports version scripts. Version scripts are # used when building shared libraries to bind symbols to version nodes # (helping to detect incompatibilities) or to limit the visibility of # non-public symbols. # # Output: # # If version scripts are supported, VSCRIPT_LDFLAGS will contain the # appropriate flag to pass to the linker. On GNU systems this would # typically be "-Wl,--version-script", and on Solaris it would typically # be "-Wl,-M". # # Two Automake conditionals are also set: # # HAVE_VSCRIPT is true if the linker supports version scripts with # entries that use simple wildcards, like "local: *". # # HAVE_VSCRIPT_COMPLEX is true if the linker supports version scripts with # pattern matching wildcards, like "global: Java_*". # # On systems that do not support symbol versioning, such as Mac OS X, both # conditionals will be false. They will also be false if the user passes # "--disable-symvers" on the configure command line. # # Example: # # configure.ac: # # AX_CHECK_VSCRIPT # # Makefile.am: # # if HAVE_VSCRIPT # libfoo_la_LDFLAGS += $(VSCRIPT_LDFLAGS),@srcdir@/libfoo.map # endif # # if HAVE_VSCRIPT_COMPLEX # libbar_la_LDFLAGS += $(VSCRIPT_LDFLAGS),@srcdir@/libbar.map # endif # # LICENSE # # Copyright (c) 2014 Kevin Cernekee # # Copying and distribution of this file, with or without modification, are # permitted in any medium without royalty provided the copyright notice # and this notice are preserved. This file is offered as-is, without any # warranty. #serial 2 # _AX_CHECK_VSCRIPT(flag, global-sym, action-if-link-succeeds, [junk-file=no]) AC_DEFUN([_AX_CHECK_VSCRIPT], [ AC_LANG_PUSH([C]) ax_check_vscript_save_flags="$LDFLAGS" echo "V1 { global: $2; local: *; };" > conftest.map AS_IF([test x$4 = xyes], [ echo "{" >> conftest.map ]) LDFLAGS="$LDFLAGS -Wl,$1,conftest.map" AC_LINK_IFELSE([AC_LANG_PROGRAM([[int show, hide;]], [])], [$3]) LDFLAGS="$ax_check_vscript_save_flags" rm -f conftest.map AC_LANG_POP([C]) ]) dnl _AX_CHECK_VSCRIPT AC_DEFUN([AX_CHECK_VSCRIPT], [ AC_ARG_ENABLE([symvers], AS_HELP_STRING([--disable-symvers], [disable library symbol versioning [default=auto]]), [want_symvers=$enableval], [want_symvers=yes] ) AS_IF([test x$want_symvers = xyes], [ dnl First test --version-script and -M with a simple wildcard. AC_CACHE_CHECK([linker version script flag], ax_cv_check_vscript_flag, [ ax_cv_check_vscript_flag=unsupported _AX_CHECK_VSCRIPT([--version-script], [show], [ ax_cv_check_vscript_flag=--version-script ]) AS_IF([test x$ax_cv_check_vscript_flag = xunsupported], [ _AX_CHECK_VSCRIPT([-M], [show], [ax_cv_check_vscript_flag=-M]) ]) dnl The linker may interpret -M (no argument) as "produce a load map." dnl If "-M conftest.map" doesn't fail when conftest.map contains dnl obvious syntax errors, assume this is the case. AS_IF([test x$ax_cv_check_vscript_flag != xunsupported], [ _AX_CHECK_VSCRIPT([$ax_cv_check_vscript_flag], [show], [ax_cv_check_vscript_flag=unsupported], [yes]) ]) ]) dnl If the simple wildcard worked, retest with a complex wildcard. AS_IF([test x$ax_cv_check_vscript_flag != xunsupported], [ ax_check_vscript_flag=$ax_cv_check_vscript_flag AC_CACHE_CHECK([if version scripts can use complex wildcards], ax_cv_check_vscript_complex_wildcards, [ ax_cv_check_vscript_complex_wildcards=no _AX_CHECK_VSCRIPT([$ax_cv_check_vscript_flag], [sh*], [ ax_cv_check_vscript_complex_wildcards=yes]) ]) ax_check_vscript_complex_wildcards="$ax_cv_check_vscript_complex_wildcards" ], [ ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no ]) ], [ AC_MSG_CHECKING([linker version script flag]) AC_MSG_RESULT([disabled]) ax_check_vscript_flag= ax_check_vscript_complex_wildcards=no ]) AS_IF([test x$ax_check_vscript_flag != x], [ VSCRIPT_LDFLAGS="-Wl,$ax_check_vscript_flag" AC_SUBST([VSCRIPT_LDFLAGS]) ]) AM_CONDITIONAL([HAVE_VSCRIPT], [test x$ax_check_vscript_flag != x]) AM_CONDITIONAL([HAVE_VSCRIPT_COMPLEX], [test x$ax_check_vscript_complex_wildcards = xyes]) ]) dnl AX_CHECK_VSCRIPT openconnect-8.20/m4/lib-prefix.m40000644000076400007640000002756614067426206020402 0ustar00dwoodhoudwoodhou00000000000000# lib-prefix.m4 serial 19 dnl Copyright (C) 2001-2005, 2008-2021 Free Software Foundation, Inc. dnl This file is free software; the Free Software Foundation dnl gives unlimited permission to copy and/or distribute it, dnl with or without modifications, as long as this notice is preserved. dnl From Bruno Haible. dnl AC_LIB_PREFIX adds to the CPPFLAGS and LDFLAGS the flags that are needed dnl to access previously installed libraries. The basic assumption is that dnl a user will want packages to use other packages he previously installed dnl with the same --prefix option. dnl This macro is not needed if only AC_LIB_LINKFLAGS is used to locate dnl libraries, but is otherwise very convenient. AC_DEFUN([AC_LIB_PREFIX], [ AC_BEFORE([$0], [AC_LIB_LINKFLAGS]) AC_REQUIRE([AC_PROG_CC]) AC_REQUIRE([AC_CANONICAL_HOST]) AC_REQUIRE([AC_LIB_PREPARE_MULTILIB]) AC_REQUIRE([AC_LIB_PREPARE_PREFIX]) dnl By default, look in $includedir and $libdir. use_additional=yes AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) AC_ARG_WITH([lib-prefix], [[ --with-lib-prefix[=DIR] search for libraries in DIR/include and DIR/lib --without-lib-prefix don't search for libraries in includedir and libdir]], [ if test "X$withval" = "Xno"; then use_additional=no else if test "X$withval" = "X"; then AC_LIB_WITH_FINAL_PREFIX([ eval additional_includedir=\"$includedir\" eval additional_libdir=\"$libdir\" ]) else additional_includedir="$withval/include" additional_libdir="$withval/$acl_libdirstem" fi fi ]) if test $use_additional = yes; then dnl Potentially add $additional_includedir to $CPPFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/include, dnl 2. if it's already present in $CPPFLAGS, dnl 3. if it's /usr/local/include and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_includedir" != "X/usr/include"; then haveit= for x in $CPPFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-I$additional_includedir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_includedir" = "X/usr/local/include"; then if test -n "$GCC"; then case $host_os in linux* | gnu* | k*bsd*-gnu) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_includedir"; then dnl Really add $additional_includedir to $CPPFLAGS. CPPFLAGS="${CPPFLAGS}${CPPFLAGS:+ }-I$additional_includedir" fi fi fi fi dnl Potentially add $additional_libdir to $LDFLAGS. dnl But don't add it dnl 1. if it's the standard /usr/lib, dnl 2. if it's already present in $LDFLAGS, dnl 3. if it's /usr/local/lib and we are using GCC on Linux, dnl 4. if it doesn't exist as a directory. if test "X$additional_libdir" != "X/usr/$acl_libdirstem"; then haveit= for x in $LDFLAGS; do AC_LIB_WITH_FINAL_PREFIX([eval x=\"$x\"]) if test "X$x" = "X-L$additional_libdir"; then haveit=yes break fi done if test -z "$haveit"; then if test "X$additional_libdir" = "X/usr/local/$acl_libdirstem"; then if test -n "$GCC"; then case $host_os in linux*) haveit=yes;; esac fi fi if test -z "$haveit"; then if test -d "$additional_libdir"; then dnl Really add $additional_libdir to $LDFLAGS. LDFLAGS="${LDFLAGS}${LDFLAGS:+ }-L$additional_libdir" fi fi fi fi fi ]) dnl AC_LIB_PREPARE_PREFIX creates variables acl_final_prefix, dnl acl_final_exec_prefix, containing the values to which $prefix and dnl $exec_prefix will expand at the end of the configure script. AC_DEFUN([AC_LIB_PREPARE_PREFIX], [ dnl Unfortunately, prefix and exec_prefix get only finally determined dnl at the end of configure. if test "X$prefix" = "XNONE"; then acl_final_prefix="$ac_default_prefix" else acl_final_prefix="$prefix" fi if test "X$exec_prefix" = "XNONE"; then acl_final_exec_prefix='${prefix}' else acl_final_exec_prefix="$exec_prefix" fi acl_save_prefix="$prefix" prefix="$acl_final_prefix" eval acl_final_exec_prefix=\"$acl_final_exec_prefix\" prefix="$acl_save_prefix" ]) dnl AC_LIB_WITH_FINAL_PREFIX([statement]) evaluates statement, with the dnl variables prefix and exec_prefix bound to the values they will have dnl at the end of the configure script. AC_DEFUN([AC_LIB_WITH_FINAL_PREFIX], [ acl_save_prefix="$prefix" prefix="$acl_final_prefix" acl_save_exec_prefix="$exec_prefix" exec_prefix="$acl_final_exec_prefix" $1 exec_prefix="$acl_save_exec_prefix" prefix="$acl_save_prefix" ]) dnl AC_LIB_PREPARE_MULTILIB creates dnl - a function acl_is_expected_elfclass, that tests whether standard input dn; has a 32-bit or 64-bit ELF header, depending on the host CPU ABI, dnl - 3 variables acl_libdirstem, acl_libdirstem2, acl_libdirstem3, containing dnl the basename of the libdir to try in turn, either "lib" or "lib64" or dnl "lib/64" or "lib32" or "lib/sparcv9" or "lib/amd64" or similar. AC_DEFUN([AC_LIB_PREPARE_MULTILIB], [ dnl There is no formal standard regarding lib, lib32, and lib64. dnl On most glibc systems, the current practice is that on a system supporting dnl 32-bit and 64-bit instruction sets or ABIs, 64-bit libraries go under dnl $prefix/lib64 and 32-bit libraries go under $prefix/lib. However, on dnl Arch Linux based distributions, it's the opposite: 32-bit libraries go dnl under $prefix/lib32 and 64-bit libraries go under $prefix/lib. dnl We determine the compiler's default mode by looking at the compiler's dnl library search path. If at least one of its elements ends in /lib64 or dnl points to a directory whose absolute pathname ends in /lib64, we use that dnl for 64-bit ABIs. Similarly for 32-bit ABIs. Otherwise we use the default, dnl namely "lib". dnl On Solaris systems, the current practice is that on a system supporting dnl 32-bit and 64-bit instruction sets or ABIs, 64-bit libraries go under dnl $prefix/lib/64 (which is a symlink to either $prefix/lib/sparcv9 or dnl $prefix/lib/amd64) and 32-bit libraries go under $prefix/lib. AC_REQUIRE([AC_CANONICAL_HOST]) AC_REQUIRE([gl_HOST_CPU_C_ABI_32BIT]) AC_CACHE_CHECK([for ELF binary format], [gl_cv_elf], [AC_EGREP_CPP([Extensible Linking Format], [#ifdef __ELF__ Extensible Linking Format #endif ], [gl_cv_elf=yes], [gl_cv_elf=no]) ]) if test $gl_cv_elf = yes; then # Extract the ELF class of a file (5th byte) in decimal. # Cf. https://en.wikipedia.org/wiki/Executable_and_Linkable_Format#File_header if od -A x < /dev/null >/dev/null 2>/dev/null; then # Use POSIX od. func_elfclass () { od -A n -t d1 -j 4 -N 1 } else # Use BSD hexdump. func_elfclass () { dd bs=1 count=1 skip=4 2>/dev/null | hexdump -e '1/1 "%3d "' echo } fi # Use 'expr', not 'test', to compare the values of func_elfclass, because on # Solaris 11 OpenIndiana and Solaris 11 OmniOS, the result is 001 or 002, # not 1 or 2. changequote(,)dnl case $HOST_CPU_C_ABI_32BIT in yes) # 32-bit ABI. acl_is_expected_elfclass () { expr "`func_elfclass | sed -e 's/[ ]//g'`" = 1 > /dev/null } ;; no) # 64-bit ABI. acl_is_expected_elfclass () { expr "`func_elfclass | sed -e 's/[ ]//g'`" = 2 > /dev/null } ;; *) # Unknown. acl_is_expected_elfclass () { : } ;; esac changequote([,])dnl else acl_is_expected_elfclass () { : } fi dnl Allow the user to override the result by setting acl_cv_libdirstems. AC_CACHE_CHECK([for the common suffixes of directories in the library search path], [acl_cv_libdirstems], [dnl Try 'lib' first, because that's the default for libdir in GNU, see dnl . acl_libdirstem=lib acl_libdirstem2= acl_libdirstem3= case "$host_os" in solaris*) dnl See Solaris 10 Software Developer Collection > Solaris 64-bit Developer's Guide > The Development Environment dnl . dnl "Portable Makefiles should refer to any library directories using the 64 symbolic link." dnl But we want to recognize the sparcv9 or amd64 subdirectory also if the dnl symlink is missing, so we set acl_libdirstem2 too. if test $HOST_CPU_C_ABI_32BIT = no; then acl_libdirstem2=lib/64 case "$host_cpu" in sparc*) acl_libdirstem3=lib/sparcv9 ;; i*86 | x86_64) acl_libdirstem3=lib/amd64 ;; esac fi ;; *) dnl If $CC generates code for a 32-bit ABI, the libraries are dnl surely under $prefix/lib or $prefix/lib32, not $prefix/lib64. dnl Similarly, if $CC generates code for a 64-bit ABI, the libraries dnl are surely under $prefix/lib or $prefix/lib64, not $prefix/lib32. dnl Find the compiler's search path. However, non-system compilers dnl sometimes have odd library search paths. But we can't simply invoke dnl '/usr/bin/gcc -print-search-dirs' because that would not take into dnl account the -m32/-m31 or -m64 options from the $CC or $CFLAGS. searchpath=`(LC_ALL=C $CC $CPPFLAGS $CFLAGS -print-search-dirs) 2>/dev/null \ | sed -n -e 's,^libraries: ,,p' | sed -e 's,^=,,'` if test $HOST_CPU_C_ABI_32BIT != no; then # 32-bit or unknown ABI. if test -d /usr/lib32; then acl_libdirstem2=lib32 fi fi if test $HOST_CPU_C_ABI_32BIT != yes; then # 64-bit or unknown ABI. if test -d /usr/lib64; then acl_libdirstem3=lib64 fi fi if test -n "$searchpath"; then acl_save_IFS="${IFS= }"; IFS=":" for searchdir in $searchpath; do if test -d "$searchdir"; then case "$searchdir" in */lib32/ | */lib32 ) acl_libdirstem2=lib32 ;; */lib64/ | */lib64 ) acl_libdirstem3=lib64 ;; */../ | */.. ) # Better ignore directories of this form. They are misleading. ;; *) searchdir=`cd "$searchdir" && pwd` case "$searchdir" in */lib32 ) acl_libdirstem2=lib32 ;; */lib64 ) acl_libdirstem3=lib64 ;; esac ;; esac fi done IFS="$acl_save_IFS" if test $HOST_CPU_C_ABI_32BIT = yes; then # 32-bit ABI. acl_libdirstem3= fi if test $HOST_CPU_C_ABI_32BIT = no; then # 64-bit ABI. acl_libdirstem2= fi fi ;; esac test -n "$acl_libdirstem2" || acl_libdirstem2="$acl_libdirstem" test -n "$acl_libdirstem3" || acl_libdirstem3="$acl_libdirstem" acl_cv_libdirstems="$acl_libdirstem,$acl_libdirstem2,$acl_libdirstem3" ]) dnl Decompose acl_cv_libdirstems into acl_libdirstem, acl_libdirstem2, and dnl acl_libdirstem3. changequote(,)dnl acl_libdirstem=`echo "$acl_cv_libdirstems" | sed -e 's/,.*//'` acl_libdirstem2=`echo "$acl_cv_libdirstems" | sed -e 's/^[^,]*,//' -e 's/,.*//'` acl_libdirstem3=`echo "$acl_cv_libdirstems" | sed -e 's/^[^,]*,[^,]*,//' -e 's/,.*//'` changequote([,])dnl ]) openconnect-8.20/m4/libtool.m40000644000076400007640000112530614076314447020000 0ustar00dwoodhoudwoodhou00000000000000# libtool.m4 - Configure libtool for the host system. -*-Autoconf-*- # # Copyright (C) 1996-2001, 2003-2015 Free Software Foundation, Inc. # Written by Gordon Matzigkeit, 1996 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. m4_define([_LT_COPYING], [dnl # Copyright (C) 2014 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # GNU Libtool is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of of the License, or # (at your option) any later version. # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program or library that is built # using GNU Libtool, you may include this file under the same # distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . ]) # serial 58 LT_INIT # LT_PREREQ(VERSION) # ------------------ # Complain and exit if this libtool version is less that VERSION. m4_defun([LT_PREREQ], [m4_if(m4_version_compare(m4_defn([LT_PACKAGE_VERSION]), [$1]), -1, [m4_default([$3], [m4_fatal([Libtool version $1 or higher is required], 63)])], [$2])]) # _LT_CHECK_BUILDDIR # ------------------ # Complain if the absolute build directory name contains unusual characters m4_defun([_LT_CHECK_BUILDDIR], [case `pwd` in *\ * | *\ *) AC_MSG_WARN([Libtool does not cope well with whitespace in `pwd`]) ;; esac ]) # LT_INIT([OPTIONS]) # ------------------ AC_DEFUN([LT_INIT], [AC_PREREQ([2.62])dnl We use AC_PATH_PROGS_FEATURE_CHECK AC_REQUIRE([AC_CONFIG_AUX_DIR_DEFAULT])dnl AC_BEFORE([$0], [LT_LANG])dnl AC_BEFORE([$0], [LT_OUTPUT])dnl AC_BEFORE([$0], [LTDL_INIT])dnl m4_require([_LT_CHECK_BUILDDIR])dnl dnl Autoconf doesn't catch unexpanded LT_ macros by default: m4_pattern_forbid([^_?LT_[A-Z_]+$])dnl m4_pattern_allow([^(_LT_EOF|LT_DLGLOBAL|LT_DLLAZY_OR_NOW|LT_MULTI_MODULE)$])dnl dnl aclocal doesn't pull ltoptions.m4, ltsugar.m4, or ltversion.m4 dnl unless we require an AC_DEFUNed macro: AC_REQUIRE([LTOPTIONS_VERSION])dnl AC_REQUIRE([LTSUGAR_VERSION])dnl AC_REQUIRE([LTVERSION_VERSION])dnl AC_REQUIRE([LTOBSOLETE_VERSION])dnl m4_require([_LT_PROG_LTMAIN])dnl _LT_SHELL_INIT([SHELL=${CONFIG_SHELL-/bin/sh}]) dnl Parse OPTIONS _LT_SET_OPTIONS([$0], [$1]) # This can be used to rebuild libtool when needed LIBTOOL_DEPS=$ltmain # Always use our own libtool. LIBTOOL='$(SHELL) $(top_builddir)/libtool' AC_SUBST(LIBTOOL)dnl _LT_SETUP # Only expand once: m4_define([LT_INIT]) ])# LT_INIT # Old names: AU_ALIAS([AC_PROG_LIBTOOL], [LT_INIT]) AU_ALIAS([AM_PROG_LIBTOOL], [LT_INIT]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_PROG_LIBTOOL], []) dnl AC_DEFUN([AM_PROG_LIBTOOL], []) # _LT_PREPARE_CC_BASENAME # ----------------------- m4_defun([_LT_PREPARE_CC_BASENAME], [ # Calculate cc_basename. Skip known compiler wrappers and cross-prefix. func_cc_basename () { for cc_temp in @S|@*""; do case $cc_temp in compile | *[[\\/]]compile | ccache | *[[\\/]]ccache ) ;; distcc | *[[\\/]]distcc | purify | *[[\\/]]purify ) ;; \-*) ;; *) break;; esac done func_cc_basename_result=`$ECHO "$cc_temp" | $SED "s%.*/%%; s%^$host_alias-%%"` } ])# _LT_PREPARE_CC_BASENAME # _LT_CC_BASENAME(CC) # ------------------- # It would be clearer to call AC_REQUIREs from _LT_PREPARE_CC_BASENAME, # but that macro is also expanded into generated libtool script, which # arranges for $SED and $ECHO to be set by different means. m4_defun([_LT_CC_BASENAME], [m4_require([_LT_PREPARE_CC_BASENAME])dnl AC_REQUIRE([_LT_DECL_SED])dnl AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH])dnl func_cc_basename $1 cc_basename=$func_cc_basename_result ]) # _LT_FILEUTILS_DEFAULTS # ---------------------- # It is okay to use these file commands and assume they have been set # sensibly after 'm4_require([_LT_FILEUTILS_DEFAULTS])'. m4_defun([_LT_FILEUTILS_DEFAULTS], [: ${CP="cp -f"} : ${MV="mv -f"} : ${RM="rm -f"} ])# _LT_FILEUTILS_DEFAULTS # _LT_SETUP # --------- m4_defun([_LT_SETUP], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl AC_REQUIRE([_LT_PREPARE_SED_QUOTE_VARS])dnl AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH])dnl _LT_DECL([], [PATH_SEPARATOR], [1], [The PATH separator for the build system])dnl dnl _LT_DECL([], [host_alias], [0], [The host system])dnl _LT_DECL([], [host], [0])dnl _LT_DECL([], [host_os], [0])dnl dnl _LT_DECL([], [build_alias], [0], [The build system])dnl _LT_DECL([], [build], [0])dnl _LT_DECL([], [build_os], [0])dnl dnl AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([LT_PATH_LD])dnl AC_REQUIRE([LT_PATH_NM])dnl dnl AC_REQUIRE([AC_PROG_LN_S])dnl test -z "$LN_S" && LN_S="ln -s" _LT_DECL([], [LN_S], [1], [Whether we need soft or hard links])dnl dnl AC_REQUIRE([LT_CMD_MAX_LEN])dnl _LT_DECL([objext], [ac_objext], [0], [Object file suffix (normally "o")])dnl _LT_DECL([], [exeext], [0], [Executable file suffix (normally "")])dnl dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_CHECK_SHELL_FEATURES])dnl m4_require([_LT_PATH_CONVERSION_FUNCTIONS])dnl m4_require([_LT_CMD_RELOAD])dnl m4_require([_LT_CHECK_MAGIC_METHOD])dnl m4_require([_LT_CHECK_SHAREDLIB_FROM_LINKLIB])dnl m4_require([_LT_CMD_OLD_ARCHIVE])dnl m4_require([_LT_CMD_GLOBAL_SYMBOLS])dnl m4_require([_LT_WITH_SYSROOT])dnl m4_require([_LT_CMD_TRUNCATE])dnl _LT_CONFIG_LIBTOOL_INIT([ # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes INIT. if test -n "\${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi ]) if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi _LT_CHECK_OBJDIR m4_require([_LT_TAG_COMPILER])dnl case $host_os in aix3*) # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi ;; esac # Global variables: ofile=libtool can_build_shared=yes # All known linkers require a '.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a with_gnu_ld=$lt_cv_prog_gnu_ld old_CC=$CC old_CFLAGS=$CFLAGS # Set sane defaults for various variables test -z "$CC" && CC=cc test -z "$LTCC" && LTCC=$CC test -z "$LTCFLAGS" && LTCFLAGS=$CFLAGS test -z "$LD" && LD=ld test -z "$ac_objext" && ac_objext=o _LT_CC_BASENAME([$compiler]) # Only perform the check for file, if the check method requires it test -z "$MAGIC_CMD" && MAGIC_CMD=file case $deplibs_check_method in file_magic*) if test "$file_magic_cmd" = '$MAGIC_CMD'; then _LT_PATH_MAGIC fi ;; esac # Use C for the default configuration in the libtool script LT_SUPPORTED_TAG([CC]) _LT_LANG_C_CONFIG _LT_LANG_DEFAULT_CONFIG _LT_CONFIG_COMMANDS ])# _LT_SETUP # _LT_PREPARE_SED_QUOTE_VARS # -------------------------- # Define a few sed substitution that help us do robust quoting. m4_defun([_LT_PREPARE_SED_QUOTE_VARS], [# Backslashify metacharacters that are still active within # double-quoted strings. sed_quote_subst='s/\([["`$\\]]\)/\\\1/g' # Same as above, but do not quote variable references. double_quote_subst='s/\([["`\\]]\)/\\\1/g' # Sed substitution to delay expansion of an escaped shell variable in a # double_quote_subst'ed string. delay_variable_subst='s/\\\\\\\\\\\$/\\\\\\$/g' # Sed substitution to delay expansion of an escaped single quote. delay_single_quote_subst='s/'\''/'\'\\\\\\\'\''/g' # Sed substitution to avoid accidental globbing in evaled expressions no_glob_subst='s/\*/\\\*/g' ]) # _LT_PROG_LTMAIN # --------------- # Note that this code is called both from 'configure', and 'config.status' # now that we use AC_CONFIG_COMMANDS to generate libtool. Notably, # 'config.status' has no value for ac_aux_dir unless we are using Automake, # so we pass a copy along to make sure it has a sensible value anyway. m4_defun([_LT_PROG_LTMAIN], [m4_ifdef([AC_REQUIRE_AUX_FILE], [AC_REQUIRE_AUX_FILE([ltmain.sh])])dnl _LT_CONFIG_LIBTOOL_INIT([ac_aux_dir='$ac_aux_dir']) ltmain=$ac_aux_dir/ltmain.sh ])# _LT_PROG_LTMAIN ## ------------------------------------- ## ## Accumulate code for creating libtool. ## ## ------------------------------------- ## # So that we can recreate a full libtool script including additional # tags, we accumulate the chunks of code to send to AC_CONFIG_COMMANDS # in macros and then make a single call at the end using the 'libtool' # label. # _LT_CONFIG_LIBTOOL_INIT([INIT-COMMANDS]) # ---------------------------------------- # Register INIT-COMMANDS to be passed to AC_CONFIG_COMMANDS later. m4_define([_LT_CONFIG_LIBTOOL_INIT], [m4_ifval([$1], [m4_append([_LT_OUTPUT_LIBTOOL_INIT], [$1 ])])]) # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_INIT]) # _LT_CONFIG_LIBTOOL([COMMANDS]) # ------------------------------ # Register COMMANDS to be passed to AC_CONFIG_COMMANDS later. m4_define([_LT_CONFIG_LIBTOOL], [m4_ifval([$1], [m4_append([_LT_OUTPUT_LIBTOOL_COMMANDS], [$1 ])])]) # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_COMMANDS]) # _LT_CONFIG_SAVE_COMMANDS([COMMANDS], [INIT_COMMANDS]) # ----------------------------------------------------- m4_defun([_LT_CONFIG_SAVE_COMMANDS], [_LT_CONFIG_LIBTOOL([$1]) _LT_CONFIG_LIBTOOL_INIT([$2]) ]) # _LT_FORMAT_COMMENT([COMMENT]) # ----------------------------- # Add leading comment marks to the start of each line, and a trailing # full-stop to the whole comment if one is not present already. m4_define([_LT_FORMAT_COMMENT], [m4_ifval([$1], [ m4_bpatsubst([m4_bpatsubst([$1], [^ *], [# ])], [['`$\]], [\\\&])]m4_bmatch([$1], [[!?.]$], [], [.]) )]) ## ------------------------ ## ## FIXME: Eliminate VARNAME ## ## ------------------------ ## # _LT_DECL([CONFIGNAME], VARNAME, VALUE, [DESCRIPTION], [IS-TAGGED?]) # ------------------------------------------------------------------- # CONFIGNAME is the name given to the value in the libtool script. # VARNAME is the (base) name used in the configure script. # VALUE may be 0, 1 or 2 for a computed quote escaped value based on # VARNAME. Any other value will be used directly. m4_define([_LT_DECL], [lt_if_append_uniq([lt_decl_varnames], [$2], [, ], [lt_dict_add_subkey([lt_decl_dict], [$2], [libtool_name], [m4_ifval([$1], [$1], [$2])]) lt_dict_add_subkey([lt_decl_dict], [$2], [value], [$3]) m4_ifval([$4], [lt_dict_add_subkey([lt_decl_dict], [$2], [description], [$4])]) lt_dict_add_subkey([lt_decl_dict], [$2], [tagged?], [m4_ifval([$5], [yes], [no])])]) ]) # _LT_TAGDECL([CONFIGNAME], VARNAME, VALUE, [DESCRIPTION]) # -------------------------------------------------------- m4_define([_LT_TAGDECL], [_LT_DECL([$1], [$2], [$3], [$4], [yes])]) # lt_decl_tag_varnames([SEPARATOR], [VARNAME1...]) # ------------------------------------------------ m4_define([lt_decl_tag_varnames], [_lt_decl_filter([tagged?], [yes], $@)]) # _lt_decl_filter(SUBKEY, VALUE, [SEPARATOR], [VARNAME1..]) # --------------------------------------------------------- m4_define([_lt_decl_filter], [m4_case([$#], [0], [m4_fatal([$0: too few arguments: $#])], [1], [m4_fatal([$0: too few arguments: $#: $1])], [2], [lt_dict_filter([lt_decl_dict], [$1], [$2], [], lt_decl_varnames)], [3], [lt_dict_filter([lt_decl_dict], [$1], [$2], [$3], lt_decl_varnames)], [lt_dict_filter([lt_decl_dict], $@)])[]dnl ]) # lt_decl_quote_varnames([SEPARATOR], [VARNAME1...]) # -------------------------------------------------- m4_define([lt_decl_quote_varnames], [_lt_decl_filter([value], [1], $@)]) # lt_decl_dquote_varnames([SEPARATOR], [VARNAME1...]) # --------------------------------------------------- m4_define([lt_decl_dquote_varnames], [_lt_decl_filter([value], [2], $@)]) # lt_decl_varnames_tagged([SEPARATOR], [VARNAME1...]) # --------------------------------------------------- m4_define([lt_decl_varnames_tagged], [m4_assert([$# <= 2])dnl _$0(m4_quote(m4_default([$1], [[, ]])), m4_ifval([$2], [[$2]], [m4_dquote(lt_decl_tag_varnames)]), m4_split(m4_normalize(m4_quote(_LT_TAGS)), [ ]))]) m4_define([_lt_decl_varnames_tagged], [m4_ifval([$3], [lt_combine([$1], [$2], [_], $3)])]) # lt_decl_all_varnames([SEPARATOR], [VARNAME1...]) # ------------------------------------------------ m4_define([lt_decl_all_varnames], [_$0(m4_quote(m4_default([$1], [[, ]])), m4_if([$2], [], m4_quote(lt_decl_varnames), m4_quote(m4_shift($@))))[]dnl ]) m4_define([_lt_decl_all_varnames], [lt_join($@, lt_decl_varnames_tagged([$1], lt_decl_tag_varnames([[, ]], m4_shift($@))))dnl ]) # _LT_CONFIG_STATUS_DECLARE([VARNAME]) # ------------------------------------ # Quote a variable value, and forward it to 'config.status' so that its # declaration there will have the same value as in 'configure'. VARNAME # must have a single quote delimited value for this to work. m4_define([_LT_CONFIG_STATUS_DECLARE], [$1='`$ECHO "$][$1" | $SED "$delay_single_quote_subst"`']) # _LT_CONFIG_STATUS_DECLARATIONS # ------------------------------ # We delimit libtool config variables with single quotes, so when # we write them to config.status, we have to be sure to quote all # embedded single quotes properly. In configure, this macro expands # each variable declared with _LT_DECL (and _LT_TAGDECL) into: # # ='`$ECHO "$" | $SED "$delay_single_quote_subst"`' m4_defun([_LT_CONFIG_STATUS_DECLARATIONS], [m4_foreach([_lt_var], m4_quote(lt_decl_all_varnames), [m4_n([_LT_CONFIG_STATUS_DECLARE(_lt_var)])])]) # _LT_LIBTOOL_TAGS # ---------------- # Output comment and list of tags supported by the script m4_defun([_LT_LIBTOOL_TAGS], [_LT_FORMAT_COMMENT([The names of the tagged configurations supported by this script])dnl available_tags='_LT_TAGS'dnl ]) # _LT_LIBTOOL_DECLARE(VARNAME, [TAG]) # ----------------------------------- # Extract the dictionary values for VARNAME (optionally with TAG) and # expand to a commented shell variable setting: # # # Some comment about what VAR is for. # visible_name=$lt_internal_name m4_define([_LT_LIBTOOL_DECLARE], [_LT_FORMAT_COMMENT(m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [description])))[]dnl m4_pushdef([_libtool_name], m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [libtool_name])))[]dnl m4_case(m4_quote(lt_dict_fetch([lt_decl_dict], [$1], [value])), [0], [_libtool_name=[$]$1], [1], [_libtool_name=$lt_[]$1], [2], [_libtool_name=$lt_[]$1], [_libtool_name=lt_dict_fetch([lt_decl_dict], [$1], [value])])[]dnl m4_ifval([$2], [_$2])[]m4_popdef([_libtool_name])[]dnl ]) # _LT_LIBTOOL_CONFIG_VARS # ----------------------- # Produce commented declarations of non-tagged libtool config variables # suitable for insertion in the LIBTOOL CONFIG section of the 'libtool' # script. Tagged libtool config variables (even for the LIBTOOL CONFIG # section) are produced by _LT_LIBTOOL_TAG_VARS. m4_defun([_LT_LIBTOOL_CONFIG_VARS], [m4_foreach([_lt_var], m4_quote(_lt_decl_filter([tagged?], [no], [], lt_decl_varnames)), [m4_n([_LT_LIBTOOL_DECLARE(_lt_var)])])]) # _LT_LIBTOOL_TAG_VARS(TAG) # ------------------------- m4_define([_LT_LIBTOOL_TAG_VARS], [m4_foreach([_lt_var], m4_quote(lt_decl_tag_varnames), [m4_n([_LT_LIBTOOL_DECLARE(_lt_var, [$1])])])]) # _LT_TAGVAR(VARNAME, [TAGNAME]) # ------------------------------ m4_define([_LT_TAGVAR], [m4_ifval([$2], [$1_$2], [$1])]) # _LT_CONFIG_COMMANDS # ------------------- # Send accumulated output to $CONFIG_STATUS. Thanks to the lists of # variables for single and double quote escaping we saved from calls # to _LT_DECL, we can put quote escaped variables declarations # into 'config.status', and then the shell code to quote escape them in # for loops in 'config.status'. Finally, any additional code accumulated # from calls to _LT_CONFIG_LIBTOOL_INIT is expanded. m4_defun([_LT_CONFIG_COMMANDS], [AC_PROVIDE_IFELSE([LT_OUTPUT], dnl If the libtool generation code has been placed in $CONFIG_LT, dnl instead of duplicating it all over again into config.status, dnl then we will have config.status run $CONFIG_LT later, so it dnl needs to know what name is stored there: [AC_CONFIG_COMMANDS([libtool], [$SHELL $CONFIG_LT || AS_EXIT(1)], [CONFIG_LT='$CONFIG_LT'])], dnl If the libtool generation code is destined for config.status, dnl expand the accumulated commands and init code now: [AC_CONFIG_COMMANDS([libtool], [_LT_OUTPUT_LIBTOOL_COMMANDS], [_LT_OUTPUT_LIBTOOL_COMMANDS_INIT])]) ])#_LT_CONFIG_COMMANDS # Initialize. m4_define([_LT_OUTPUT_LIBTOOL_COMMANDS_INIT], [ # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH sed_quote_subst='$sed_quote_subst' double_quote_subst='$double_quote_subst' delay_variable_subst='$delay_variable_subst' _LT_CONFIG_STATUS_DECLARATIONS LTCC='$LTCC' LTCFLAGS='$LTCFLAGS' compiler='$compiler_DEFAULT' # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$[]1 _LTECHO_EOF' } # Quote evaled strings. for var in lt_decl_all_varnames([[ \ ]], lt_decl_quote_varnames); do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[[\\\\\\\`\\"\\\$]]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED \\"\\\$sed_quote_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done # Double-quote double-evaled strings. for var in lt_decl_all_varnames([[ \ ]], lt_decl_dquote_varnames); do case \`eval \\\\\$ECHO \\\\""\\\\\$\$var"\\\\"\` in *[[\\\\\\\`\\"\\\$]]*) eval "lt_\$var=\\\\\\"\\\`\\\$ECHO \\"\\\$\$var\\" | \\\$SED -e \\"\\\$double_quote_subst\\" -e \\"\\\$sed_quote_subst\\" -e \\"\\\$delay_variable_subst\\"\\\`\\\\\\"" ## exclude from sc_prohibit_nested_quotes ;; *) eval "lt_\$var=\\\\\\"\\\$\$var\\\\\\"" ;; esac done _LT_OUTPUT_LIBTOOL_INIT ]) # _LT_GENERATED_FILE_INIT(FILE, [COMMENT]) # ------------------------------------ # Generate a child script FILE with all initialization necessary to # reuse the environment learned by the parent script, and make the # file executable. If COMMENT is supplied, it is inserted after the # '#!' sequence but before initialization text begins. After this # macro, additional text can be appended to FILE to form the body of # the child script. The macro ends with non-zero status if the # file could not be fully written (such as if the disk is full). m4_ifdef([AS_INIT_GENERATED], [m4_defun([_LT_GENERATED_FILE_INIT],[AS_INIT_GENERATED($@)])], [m4_defun([_LT_GENERATED_FILE_INIT], [m4_require([AS_PREPARE])]dnl [m4_pushdef([AS_MESSAGE_LOG_FD])]dnl [lt_write_fail=0 cat >$1 <<_ASEOF || lt_write_fail=1 #! $SHELL # Generated by $as_me. $2 SHELL=\${CONFIG_SHELL-$SHELL} export SHELL _ASEOF cat >>$1 <<\_ASEOF || lt_write_fail=1 AS_SHELL_SANITIZE _AS_PREPARE exec AS_MESSAGE_FD>&1 _ASEOF test 0 = "$lt_write_fail" && chmod +x $1[]dnl m4_popdef([AS_MESSAGE_LOG_FD])])])# _LT_GENERATED_FILE_INIT # LT_OUTPUT # --------- # This macro allows early generation of the libtool script (before # AC_OUTPUT is called), incase it is used in configure for compilation # tests. AC_DEFUN([LT_OUTPUT], [: ${CONFIG_LT=./config.lt} AC_MSG_NOTICE([creating $CONFIG_LT]) _LT_GENERATED_FILE_INIT(["$CONFIG_LT"], [# Run this file to recreate a libtool stub with the current configuration.]) cat >>"$CONFIG_LT" <<\_LTEOF lt_cl_silent=false exec AS_MESSAGE_LOG_FD>>config.log { echo AS_BOX([Running $as_me.]) } >&AS_MESSAGE_LOG_FD lt_cl_help="\ '$as_me' creates a local libtool stub from the current configuration, for use in further configure time tests before the real libtool is generated. Usage: $[0] [[OPTIONS]] -h, --help print this help, then exit -V, --version print version number, then exit -q, --quiet do not print progress messages -d, --debug don't remove temporary files Report bugs to ." lt_cl_version="\ m4_ifset([AC_PACKAGE_NAME], [AC_PACKAGE_NAME ])config.lt[]dnl m4_ifset([AC_PACKAGE_VERSION], [ AC_PACKAGE_VERSION]) configured by $[0], generated by m4_PACKAGE_STRING. Copyright (C) 2011 Free Software Foundation, Inc. This config.lt script is free software; the Free Software Foundation gives unlimited permision to copy, distribute and modify it." while test 0 != $[#] do case $[1] in --version | --v* | -V ) echo "$lt_cl_version"; exit 0 ;; --help | --h* | -h ) echo "$lt_cl_help"; exit 0 ;; --debug | --d* | -d ) debug=: ;; --quiet | --q* | --silent | --s* | -q ) lt_cl_silent=: ;; -*) AC_MSG_ERROR([unrecognized option: $[1] Try '$[0] --help' for more information.]) ;; *) AC_MSG_ERROR([unrecognized argument: $[1] Try '$[0] --help' for more information.]) ;; esac shift done if $lt_cl_silent; then exec AS_MESSAGE_FD>/dev/null fi _LTEOF cat >>"$CONFIG_LT" <<_LTEOF _LT_OUTPUT_LIBTOOL_COMMANDS_INIT _LTEOF cat >>"$CONFIG_LT" <<\_LTEOF AC_MSG_NOTICE([creating $ofile]) _LT_OUTPUT_LIBTOOL_COMMANDS AS_EXIT(0) _LTEOF chmod +x "$CONFIG_LT" # configure is writing to config.log, but config.lt does its own redirection, # appending to config.log, which fails on DOS, as config.log is still kept # open by configure. Here we exec the FD to /dev/null, effectively closing # config.log, so it can be properly (re)opened and appended to by config.lt. lt_cl_success=: test yes = "$silent" && lt_config_lt_args="$lt_config_lt_args --quiet" exec AS_MESSAGE_LOG_FD>/dev/null $SHELL "$CONFIG_LT" $lt_config_lt_args || lt_cl_success=false exec AS_MESSAGE_LOG_FD>>config.log $lt_cl_success || AS_EXIT(1) ])# LT_OUTPUT # _LT_CONFIG(TAG) # --------------- # If TAG is the built-in tag, create an initial libtool script with a # default configuration from the untagged config vars. Otherwise add code # to config.status for appending the configuration named by TAG from the # matching tagged config vars. m4_defun([_LT_CONFIG], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl _LT_CONFIG_SAVE_COMMANDS([ m4_define([_LT_TAG], m4_if([$1], [], [C], [$1]))dnl m4_if(_LT_TAG, [C], [ # See if we are running on zsh, and set the options that allow our # commands through without removal of \ escapes. if test -n "${ZSH_VERSION+set}"; then setopt NO_GLOB_SUBST fi cfgfile=${ofile}T trap "$RM \"$cfgfile\"; exit 1" 1 2 15 $RM "$cfgfile" cat <<_LT_EOF >> "$cfgfile" #! $SHELL # Generated automatically by $as_me ($PACKAGE) $VERSION # Libtool was configured on host `(hostname || uname -n) 2>/dev/null | sed 1q`: # NOTE: Changes made to this file will be lost: look at ltmain.sh. # Provide generalized library-building support services. # Written by Gordon Matzigkeit, 1996 _LT_COPYING _LT_LIBTOOL_TAGS # Configured defaults for sys_lib_dlsearch_path munging. : \${LT_SYS_LIBRARY_PATH="$configure_time_lt_sys_library_path"} # ### BEGIN LIBTOOL CONFIG _LT_LIBTOOL_CONFIG_VARS _LT_LIBTOOL_TAG_VARS # ### END LIBTOOL CONFIG _LT_EOF cat <<'_LT_EOF' >> "$cfgfile" # ### BEGIN FUNCTIONS SHARED WITH CONFIGURE _LT_PREPARE_MUNGE_PATH_LIST _LT_PREPARE_CC_BASENAME # ### END FUNCTIONS SHARED WITH CONFIGURE _LT_EOF case $host_os in aix3*) cat <<\_LT_EOF >> "$cfgfile" # AIX sometimes has problems with the GCC collect2 program. For some # reason, if we set the COLLECT_NAMES environment variable, the problems # vanish in a puff of smoke. if test set != "${COLLECT_NAMES+set}"; then COLLECT_NAMES= export COLLECT_NAMES fi _LT_EOF ;; esac _LT_PROG_LTMAIN # We use sed instead of cat because bash on DJGPP gets confused if # if finds mixed CR/LF and LF-only lines. Since sed operates in # text mode, it properly converts lines to CR/LF. This bash problem # is reportedly fixed, but why not run on old versions too? sed '$q' "$ltmain" >> "$cfgfile" \ || (rm -f "$cfgfile"; exit 1) mv -f "$cfgfile" "$ofile" || (rm -f "$ofile" && cp "$cfgfile" "$ofile" && rm -f "$cfgfile") chmod +x "$ofile" ], [cat <<_LT_EOF >> "$ofile" dnl Unfortunately we have to use $1 here, since _LT_TAG is not expanded dnl in a comment (ie after a #). # ### BEGIN LIBTOOL TAG CONFIG: $1 _LT_LIBTOOL_TAG_VARS(_LT_TAG) # ### END LIBTOOL TAG CONFIG: $1 _LT_EOF ])dnl /m4_if ], [m4_if([$1], [], [ PACKAGE='$PACKAGE' VERSION='$VERSION' RM='$RM' ofile='$ofile'], []) ])dnl /_LT_CONFIG_SAVE_COMMANDS ])# _LT_CONFIG # LT_SUPPORTED_TAG(TAG) # --------------------- # Trace this macro to discover what tags are supported by the libtool # --tag option, using: # autoconf --trace 'LT_SUPPORTED_TAG:$1' AC_DEFUN([LT_SUPPORTED_TAG], []) # C support is built-in for now m4_define([_LT_LANG_C_enabled], []) m4_define([_LT_TAGS], []) # LT_LANG(LANG) # ------------- # Enable libtool support for the given language if not already enabled. AC_DEFUN([LT_LANG], [AC_BEFORE([$0], [LT_OUTPUT])dnl m4_case([$1], [C], [_LT_LANG(C)], [C++], [_LT_LANG(CXX)], [Go], [_LT_LANG(GO)], [Java], [_LT_LANG(GCJ)], [Fortran 77], [_LT_LANG(F77)], [Fortran], [_LT_LANG(FC)], [Windows Resource], [_LT_LANG(RC)], [m4_ifdef([_LT_LANG_]$1[_CONFIG], [_LT_LANG($1)], [m4_fatal([$0: unsupported language: "$1"])])])dnl ])# LT_LANG # _LT_LANG(LANGNAME) # ------------------ m4_defun([_LT_LANG], [m4_ifdef([_LT_LANG_]$1[_enabled], [], [LT_SUPPORTED_TAG([$1])dnl m4_append([_LT_TAGS], [$1 ])dnl m4_define([_LT_LANG_]$1[_enabled], [])dnl _LT_LANG_$1_CONFIG($1)])dnl ])# _LT_LANG m4_ifndef([AC_PROG_GO], [ ############################################################ # NOTE: This macro has been submitted for inclusion into # # GNU Autoconf as AC_PROG_GO. When it is available in # # a released version of Autoconf we should remove this # # macro and use it instead. # ############################################################ m4_defun([AC_PROG_GO], [AC_LANG_PUSH(Go)dnl AC_ARG_VAR([GOC], [Go compiler command])dnl AC_ARG_VAR([GOFLAGS], [Go compiler flags])dnl _AC_ARG_VAR_LDFLAGS()dnl AC_CHECK_TOOL(GOC, gccgo) if test -z "$GOC"; then if test -n "$ac_tool_prefix"; then AC_CHECK_PROG(GOC, [${ac_tool_prefix}gccgo], [${ac_tool_prefix}gccgo]) fi fi if test -z "$GOC"; then AC_CHECK_PROG(GOC, gccgo, gccgo, false) fi ])#m4_defun ])#m4_ifndef # _LT_LANG_DEFAULT_CONFIG # ----------------------- m4_defun([_LT_LANG_DEFAULT_CONFIG], [AC_PROVIDE_IFELSE([AC_PROG_CXX], [LT_LANG(CXX)], [m4_define([AC_PROG_CXX], defn([AC_PROG_CXX])[LT_LANG(CXX)])]) AC_PROVIDE_IFELSE([AC_PROG_F77], [LT_LANG(F77)], [m4_define([AC_PROG_F77], defn([AC_PROG_F77])[LT_LANG(F77)])]) AC_PROVIDE_IFELSE([AC_PROG_FC], [LT_LANG(FC)], [m4_define([AC_PROG_FC], defn([AC_PROG_FC])[LT_LANG(FC)])]) dnl The call to [A][M_PROG_GCJ] is quoted like that to stop aclocal dnl pulling things in needlessly. AC_PROVIDE_IFELSE([AC_PROG_GCJ], [LT_LANG(GCJ)], [AC_PROVIDE_IFELSE([A][M_PROG_GCJ], [LT_LANG(GCJ)], [AC_PROVIDE_IFELSE([LT_PROG_GCJ], [LT_LANG(GCJ)], [m4_ifdef([AC_PROG_GCJ], [m4_define([AC_PROG_GCJ], defn([AC_PROG_GCJ])[LT_LANG(GCJ)])]) m4_ifdef([A][M_PROG_GCJ], [m4_define([A][M_PROG_GCJ], defn([A][M_PROG_GCJ])[LT_LANG(GCJ)])]) m4_ifdef([LT_PROG_GCJ], [m4_define([LT_PROG_GCJ], defn([LT_PROG_GCJ])[LT_LANG(GCJ)])])])])]) AC_PROVIDE_IFELSE([AC_PROG_GO], [LT_LANG(GO)], [m4_define([AC_PROG_GO], defn([AC_PROG_GO])[LT_LANG(GO)])]) AC_PROVIDE_IFELSE([LT_PROG_RC], [LT_LANG(RC)], [m4_define([LT_PROG_RC], defn([LT_PROG_RC])[LT_LANG(RC)])]) ])# _LT_LANG_DEFAULT_CONFIG # Obsolete macros: AU_DEFUN([AC_LIBTOOL_CXX], [LT_LANG(C++)]) AU_DEFUN([AC_LIBTOOL_F77], [LT_LANG(Fortran 77)]) AU_DEFUN([AC_LIBTOOL_FC], [LT_LANG(Fortran)]) AU_DEFUN([AC_LIBTOOL_GCJ], [LT_LANG(Java)]) AU_DEFUN([AC_LIBTOOL_RC], [LT_LANG(Windows Resource)]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_CXX], []) dnl AC_DEFUN([AC_LIBTOOL_F77], []) dnl AC_DEFUN([AC_LIBTOOL_FC], []) dnl AC_DEFUN([AC_LIBTOOL_GCJ], []) dnl AC_DEFUN([AC_LIBTOOL_RC], []) # _LT_TAG_COMPILER # ---------------- m4_defun([_LT_TAG_COMPILER], [AC_REQUIRE([AC_PROG_CC])dnl _LT_DECL([LTCC], [CC], [1], [A C compiler])dnl _LT_DECL([LTCFLAGS], [CFLAGS], [1], [LTCC compiler flags])dnl _LT_TAGDECL([CC], [compiler], [1], [A language specific compiler])dnl _LT_TAGDECL([with_gcc], [GCC], [0], [Is the compiler the GNU compiler?])dnl # If no C compiler was specified, use CC. LTCC=${LTCC-"$CC"} # If no C compiler flags were specified, use CFLAGS. LTCFLAGS=${LTCFLAGS-"$CFLAGS"} # Allow CC to be a program name with arguments. compiler=$CC ])# _LT_TAG_COMPILER # _LT_COMPILER_BOILERPLATE # ------------------------ # Check for compiler boilerplate output or warnings with # the simple compiler test code. m4_defun([_LT_COMPILER_BOILERPLATE], [m4_require([_LT_DECL_SED])dnl ac_outfile=conftest.$ac_objext echo "$lt_simple_compile_test_code" >conftest.$ac_ext eval "$ac_compile" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_compiler_boilerplate=`cat conftest.err` $RM conftest* ])# _LT_COMPILER_BOILERPLATE # _LT_LINKER_BOILERPLATE # ---------------------- # Check for linker boilerplate output or warnings with # the simple link test code. m4_defun([_LT_LINKER_BOILERPLATE], [m4_require([_LT_DECL_SED])dnl ac_outfile=conftest.$ac_objext echo "$lt_simple_link_test_code" >conftest.$ac_ext eval "$ac_link" 2>&1 >/dev/null | $SED '/^$/d; /^ *+/d' >conftest.err _lt_linker_boilerplate=`cat conftest.err` $RM -r conftest* ])# _LT_LINKER_BOILERPLATE # _LT_REQUIRED_DARWIN_CHECKS # ------------------------- m4_defun_once([_LT_REQUIRED_DARWIN_CHECKS],[ case $host_os in rhapsody* | darwin*) AC_CHECK_TOOL([DSYMUTIL], [dsymutil], [:]) AC_CHECK_TOOL([NMEDIT], [nmedit], [:]) AC_CHECK_TOOL([LIPO], [lipo], [:]) AC_CHECK_TOOL([OTOOL], [otool], [:]) AC_CHECK_TOOL([OTOOL64], [otool64], [:]) _LT_DECL([], [DSYMUTIL], [1], [Tool to manipulate archived DWARF debug symbol files on Mac OS X]) _LT_DECL([], [NMEDIT], [1], [Tool to change global to local symbols on Mac OS X]) _LT_DECL([], [LIPO], [1], [Tool to manipulate fat objects and archives on Mac OS X]) _LT_DECL([], [OTOOL], [1], [ldd/readelf like tool for Mach-O binaries on Mac OS X]) _LT_DECL([], [OTOOL64], [1], [ldd/readelf like tool for 64 bit Mach-O binaries on Mac OS X 10.4]) AC_CACHE_CHECK([for -single_module linker flag],[lt_cv_apple_cc_single_mod], [lt_cv_apple_cc_single_mod=no if test -z "$LT_MULTI_MODULE"; then # By default we will add the -single_module flag. You can override # by either setting the environment variable LT_MULTI_MODULE # non-empty at configure time, or by adding -multi_module to the # link flags. rm -rf libconftest.dylib* echo "int foo(void){return 1;}" > conftest.c echo "$LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS $LDFLAGS -o libconftest.dylib \ -dynamiclib -Wl,-single_module conftest.c 2>conftest.err _lt_result=$? # If there is a non-empty error log, and "single_module" # appears in it, assume the flag caused a linker warning if test -s conftest.err && $GREP single_module conftest.err; then cat conftest.err >&AS_MESSAGE_LOG_FD # Otherwise, if the output was created with a 0 exit code from # the compiler, it worked. elif test -f libconftest.dylib && test 0 = "$_lt_result"; then lt_cv_apple_cc_single_mod=yes else cat conftest.err >&AS_MESSAGE_LOG_FD fi rm -rf libconftest.dylib* rm -f conftest.* fi]) AC_CACHE_CHECK([for -exported_symbols_list linker flag], [lt_cv_ld_exported_symbols_list], [lt_cv_ld_exported_symbols_list=no save_LDFLAGS=$LDFLAGS echo "_main" > conftest.sym LDFLAGS="$LDFLAGS -Wl,-exported_symbols_list,conftest.sym" AC_LINK_IFELSE([AC_LANG_PROGRAM([],[])], [lt_cv_ld_exported_symbols_list=yes], [lt_cv_ld_exported_symbols_list=no]) LDFLAGS=$save_LDFLAGS ]) AC_CACHE_CHECK([for -force_load linker flag],[lt_cv_ld_force_load], [lt_cv_ld_force_load=no cat > conftest.c << _LT_EOF int forced_loaded() { return 2;} _LT_EOF echo "$LTCC $LTCFLAGS -c -o conftest.o conftest.c" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS -c -o conftest.o conftest.c 2>&AS_MESSAGE_LOG_FD echo "$AR cru libconftest.a conftest.o" >&AS_MESSAGE_LOG_FD $AR cru libconftest.a conftest.o 2>&AS_MESSAGE_LOG_FD echo "$RANLIB libconftest.a" >&AS_MESSAGE_LOG_FD $RANLIB libconftest.a 2>&AS_MESSAGE_LOG_FD cat > conftest.c << _LT_EOF int main() { return 0;} _LT_EOF echo "$LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a" >&AS_MESSAGE_LOG_FD $LTCC $LTCFLAGS $LDFLAGS -o conftest conftest.c -Wl,-force_load,./libconftest.a 2>conftest.err _lt_result=$? if test -s conftest.err && $GREP force_load conftest.err; then cat conftest.err >&AS_MESSAGE_LOG_FD elif test -f conftest && test 0 = "$_lt_result" && $GREP forced_load conftest >/dev/null 2>&1; then lt_cv_ld_force_load=yes else cat conftest.err >&AS_MESSAGE_LOG_FD fi rm -f conftest.err libconftest.a conftest conftest.c rm -rf conftest.dSYM ]) case $host_os in rhapsody* | darwin1.[[012]]) _lt_dar_allow_undefined='$wl-undefined ${wl}suppress' ;; darwin1.*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; darwin*) # darwin 5.x on # if running on 10.5 or later, the deployment target defaults # to the OS version, if on x86, and 10.4, the deployment # target defaults to 10.4. Don't you love it? case ${MACOSX_DEPLOYMENT_TARGET-10.0},$host in 10.0,*86*-darwin8*|10.0,*-darwin[[91]]*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; 10.[[012]][[,.]]*) _lt_dar_allow_undefined='$wl-flat_namespace $wl-undefined ${wl}suppress' ;; 10.*) _lt_dar_allow_undefined='$wl-undefined ${wl}dynamic_lookup' ;; esac ;; esac if test yes = "$lt_cv_apple_cc_single_mod"; then _lt_dar_single_mod='$single_module' fi if test yes = "$lt_cv_ld_exported_symbols_list"; then _lt_dar_export_syms=' $wl-exported_symbols_list,$output_objdir/$libname-symbols.expsym' else _lt_dar_export_syms='~$NMEDIT -s $output_objdir/$libname-symbols.expsym $lib' fi if test : != "$DSYMUTIL" && test no = "$lt_cv_ld_force_load"; then _lt_dsymutil='~$DSYMUTIL $lib || :' else _lt_dsymutil= fi ;; esac ]) # _LT_DARWIN_LINKER_FEATURES([TAG]) # --------------------------------- # Checks for linker and compiler features on darwin m4_defun([_LT_DARWIN_LINKER_FEATURES], [ m4_require([_LT_REQUIRED_DARWIN_CHECKS]) _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported if test yes = "$lt_cv_ld_force_load"; then _LT_TAGVAR(whole_archive_flag_spec, $1)='`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience $wl-force_load,$conv\"; done; func_echo_all \"$new_convenience\"`' m4_case([$1], [F77], [_LT_TAGVAR(compiler_needs_object, $1)=yes], [FC], [_LT_TAGVAR(compiler_needs_object, $1)=yes]) else _LT_TAGVAR(whole_archive_flag_spec, $1)='' fi _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=$_lt_dar_allow_undefined case $cc_basename in ifort*|nagfor*) _lt_dar_can_shared=yes ;; *) _lt_dar_can_shared=$GCC ;; esac if test yes = "$_lt_dar_can_shared"; then output_verbose_link_cmd=func_echo_all _LT_TAGVAR(archive_cmds, $1)="\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dsymutil" _LT_TAGVAR(module_cmds, $1)="\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dsymutil" _LT_TAGVAR(archive_expsym_cmds, $1)="sed 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$libobjs \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring $_lt_dar_single_mod$_lt_dar_export_syms$_lt_dsymutil" _LT_TAGVAR(module_expsym_cmds, $1)="sed -e 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC \$allow_undefined_flag -o \$lib -bundle \$libobjs \$deplibs \$compiler_flags$_lt_dar_export_syms$_lt_dsymutil" m4_if([$1], [CXX], [ if test yes != "$lt_cv_apple_cc_single_mod"; then _LT_TAGVAR(archive_cmds, $1)="\$CC -r -keep_private_externs -nostdlib -o \$lib-master.o \$libobjs~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$lib-master.o \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring$_lt_dsymutil" _LT_TAGVAR(archive_expsym_cmds, $1)="sed 's|^|_|' < \$export_symbols > \$output_objdir/\$libname-symbols.expsym~\$CC -r -keep_private_externs -nostdlib -o \$lib-master.o \$libobjs~\$CC -dynamiclib \$allow_undefined_flag -o \$lib \$lib-master.o \$deplibs \$compiler_flags -install_name \$rpath/\$soname \$verstring$_lt_dar_export_syms$_lt_dsymutil" fi ],[]) else _LT_TAGVAR(ld_shlibs, $1)=no fi ]) # _LT_SYS_MODULE_PATH_AIX([TAGNAME]) # ---------------------------------- # Links a minimal program and checks the executable # for the system default hardcoded library path. In most cases, # this is /usr/lib:/lib, but when the MPI compilers are used # the location of the communication and MPI libs are included too. # If we don't find anything, use the default library path according # to the aix ld manual. # Store the results from the different compilers for each TAGNAME. # Allow to override them for all tags through lt_cv_aix_libpath. m4_defun([_LT_SYS_MODULE_PATH_AIX], [m4_require([_LT_DECL_SED])dnl if test set = "${lt_cv_aix_libpath+set}"; then aix_libpath=$lt_cv_aix_libpath else AC_CACHE_VAL([_LT_TAGVAR([lt_cv_aix_libpath_], [$1])], [AC_LINK_IFELSE([AC_LANG_PROGRAM],[ lt_aix_libpath_sed='[ /Import File Strings/,/^$/ { /^0/ { s/^0 *\([^ ]*\) *$/\1/ p } }]' _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=`dump -H conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` # Check for a 64-bit object if we didn't find anything. if test -z "$_LT_TAGVAR([lt_cv_aix_libpath_], [$1])"; then _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=`dump -HX64 conftest$ac_exeext 2>/dev/null | $SED -n -e "$lt_aix_libpath_sed"` fi],[]) if test -z "$_LT_TAGVAR([lt_cv_aix_libpath_], [$1])"; then _LT_TAGVAR([lt_cv_aix_libpath_], [$1])=/usr/lib:/lib fi ]) aix_libpath=$_LT_TAGVAR([lt_cv_aix_libpath_], [$1]) fi ])# _LT_SYS_MODULE_PATH_AIX # _LT_SHELL_INIT(ARG) # ------------------- m4_define([_LT_SHELL_INIT], [m4_divert_text([M4SH-INIT], [$1 ])])# _LT_SHELL_INIT # _LT_PROG_ECHO_BACKSLASH # ----------------------- # Find how we can fake an echo command that does not interpret backslash. # In particular, with Autoconf 2.60 or later we add some code to the start # of the generated configure script that will find a shell with a builtin # printf (that we can use as an echo command). m4_defun([_LT_PROG_ECHO_BACKSLASH], [ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO AC_MSG_CHECKING([how to print strings]) # Test print first, because it will be a builtin if present. if test "X`( print -r -- -n ) 2>/dev/null`" = X-n && \ test "X`print -r -- $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='print -r --' elif test "X`printf %s $ECHO 2>/dev/null`" = "X$ECHO"; then ECHO='printf %s\n' else # Use this function as a fallback that always works. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $[]1 _LTECHO_EOF' } ECHO='func_fallback_echo' fi # func_echo_all arg... # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "$*" } case $ECHO in printf*) AC_MSG_RESULT([printf]) ;; print*) AC_MSG_RESULT([print -r]) ;; *) AC_MSG_RESULT([cat]) ;; esac m4_ifdef([_AS_DETECT_SUGGESTED], [_AS_DETECT_SUGGESTED([ test -n "${ZSH_VERSION+set}${BASH_VERSION+set}" || ( ECHO='\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\\' ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO ECHO=$ECHO$ECHO$ECHO$ECHO$ECHO$ECHO PATH=/empty FPATH=/empty; export PATH FPATH test "X`printf %s $ECHO`" = "X$ECHO" \ || test "X`print -r -- $ECHO`" = "X$ECHO" )])]) _LT_DECL([], [SHELL], [1], [Shell to use when invoking shell scripts]) _LT_DECL([], [ECHO], [1], [An echo program that protects backslashes]) ])# _LT_PROG_ECHO_BACKSLASH # _LT_WITH_SYSROOT # ---------------- AC_DEFUN([_LT_WITH_SYSROOT], [AC_MSG_CHECKING([for sysroot]) AC_ARG_WITH([sysroot], [AS_HELP_STRING([--with-sysroot@<:@=DIR@:>@], [Search for dependent libraries within DIR (or the compiler's sysroot if not specified).])], [], [with_sysroot=no]) dnl lt_sysroot will always be passed unquoted. We quote it here dnl in case the user passed a directory name. lt_sysroot= case $with_sysroot in #( yes) if test yes = "$GCC"; then lt_sysroot=`$CC --print-sysroot 2>/dev/null` fi ;; #( /*) lt_sysroot=`echo "$with_sysroot" | sed -e "$sed_quote_subst"` ;; #( no|'') ;; #( *) AC_MSG_RESULT([$with_sysroot]) AC_MSG_ERROR([The sysroot must be an absolute path.]) ;; esac AC_MSG_RESULT([${lt_sysroot:-no}]) _LT_DECL([], [lt_sysroot], [0], [The root where to search for ]dnl [dependent libraries, and where our libraries should be installed.])]) # _LT_ENABLE_LOCK # --------------- m4_defun([_LT_ENABLE_LOCK], [AC_ARG_ENABLE([libtool-lock], [AS_HELP_STRING([--disable-libtool-lock], [avoid locking (might break parallel builds)])]) test no = "$enable_libtool_lock" || enable_libtool_lock=yes # Some flags need to be propagated to the compiler or linker for good # libtool support. case $host in ia64-*-hpux*) # Find out what ABI is being produced by ac_compile, and set mode # options accordingly. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.$ac_objext` in *ELF-32*) HPUX_IA64_MODE=32 ;; *ELF-64*) HPUX_IA64_MODE=64 ;; esac fi rm -rf conftest* ;; *-*-irix6*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '[#]line '$LINENO' "configure"' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then if test yes = "$lt_cv_prog_gnu_ld"; then case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -melf32bsmip" ;; *N32*) LD="${LD-ld} -melf32bmipn32" ;; *64-bit*) LD="${LD-ld} -melf64bmip" ;; esac else case `/usr/bin/file conftest.$ac_objext` in *32-bit*) LD="${LD-ld} -32" ;; *N32*) LD="${LD-ld} -n32" ;; *64-bit*) LD="${LD-ld} -64" ;; esac fi fi rm -rf conftest* ;; mips64*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo '[#]line '$LINENO' "configure"' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then emul=elf case `/usr/bin/file conftest.$ac_objext` in *32-bit*) emul="${emul}32" ;; *64-bit*) emul="${emul}64" ;; esac case `/usr/bin/file conftest.$ac_objext` in *MSB*) emul="${emul}btsmip" ;; *LSB*) emul="${emul}ltsmip" ;; esac case `/usr/bin/file conftest.$ac_objext` in *N32*) emul="${emul}n32" ;; esac LD="${LD-ld} -m $emul" fi rm -rf conftest* ;; x86_64-*kfreebsd*-gnu|x86_64-*linux*|powerpc*-*linux*| \ s390*-*linux*|s390*-*tpf*|sparc*-*linux*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. Note that the listed cases only cover the # situations where additional linker options are needed (such as when # doing 32-bit compilation for a host where ld defaults to 64-bit, or # vice versa); the common cases where no linker options are needed do # not appear in the list. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.o` in *32-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_i386_fbsd" ;; x86_64-*linux*) case `/usr/bin/file conftest.o` in *x86-64*) LD="${LD-ld} -m elf32_x86_64" ;; *) LD="${LD-ld} -m elf_i386" ;; esac ;; powerpc64le-*linux*) LD="${LD-ld} -m elf32lppclinux" ;; powerpc64-*linux*) LD="${LD-ld} -m elf32ppclinux" ;; s390x-*linux*) LD="${LD-ld} -m elf_s390" ;; sparc64-*linux*) LD="${LD-ld} -m elf32_sparc" ;; esac ;; *64-bit*) case $host in x86_64-*kfreebsd*-gnu) LD="${LD-ld} -m elf_x86_64_fbsd" ;; x86_64-*linux*) LD="${LD-ld} -m elf_x86_64" ;; powerpcle-*linux*) LD="${LD-ld} -m elf64lppc" ;; powerpc-*linux*) LD="${LD-ld} -m elf64ppc" ;; s390*-*linux*|s390*-*tpf*) LD="${LD-ld} -m elf64_s390" ;; sparc*-*linux*) LD="${LD-ld} -m elf64_sparc" ;; esac ;; esac fi rm -rf conftest* ;; *-*-sco3.2v5*) # On SCO OpenServer 5, we need -belf to get full-featured binaries. SAVE_CFLAGS=$CFLAGS CFLAGS="$CFLAGS -belf" AC_CACHE_CHECK([whether the C compiler needs -belf], lt_cv_cc_needs_belf, [AC_LANG_PUSH(C) AC_LINK_IFELSE([AC_LANG_PROGRAM([[]],[[]])],[lt_cv_cc_needs_belf=yes],[lt_cv_cc_needs_belf=no]) AC_LANG_POP]) if test yes != "$lt_cv_cc_needs_belf"; then # this is probably gcc 2.8.0, egcs 1.0 or newer; no need for -belf CFLAGS=$SAVE_CFLAGS fi ;; *-*solaris*) # Find out what ABI is being produced by ac_compile, and set linker # options accordingly. echo 'int i;' > conftest.$ac_ext if AC_TRY_EVAL(ac_compile); then case `/usr/bin/file conftest.o` in *64-bit*) case $lt_cv_prog_gnu_ld in yes*) case $host in i?86-*-solaris*|x86_64-*-solaris*) LD="${LD-ld} -m elf_x86_64" ;; sparc*-*-solaris*) LD="${LD-ld} -m elf64_sparc" ;; esac # GNU ld 2.21 introduced _sol2 emulations. Use them if available. if ${LD-ld} -V | grep _sol2 >/dev/null 2>&1; then LD=${LD-ld}_sol2 fi ;; *) if ${LD-ld} -64 -r -o conftest2.o conftest.o >/dev/null 2>&1; then LD="${LD-ld} -64" fi ;; esac ;; esac fi rm -rf conftest* ;; esac need_locks=$enable_libtool_lock ])# _LT_ENABLE_LOCK # _LT_PROG_AR # ----------- m4_defun([_LT_PROG_AR], [AC_CHECK_TOOLS(AR, [ar], false) : ${AR=ar} : ${AR_FLAGS=cru} _LT_DECL([], [AR], [1], [The archiver]) _LT_DECL([], [AR_FLAGS], [1], [Flags to create an archive]) AC_CACHE_CHECK([for archiver @FILE support], [lt_cv_ar_at_file], [lt_cv_ar_at_file=no AC_COMPILE_IFELSE([AC_LANG_PROGRAM], [echo conftest.$ac_objext > conftest.lst lt_ar_try='$AR $AR_FLAGS libconftest.a @conftest.lst >&AS_MESSAGE_LOG_FD' AC_TRY_EVAL([lt_ar_try]) if test 0 -eq "$ac_status"; then # Ensure the archiver fails upon bogus file names. rm -f conftest.$ac_objext libconftest.a AC_TRY_EVAL([lt_ar_try]) if test 0 -ne "$ac_status"; then lt_cv_ar_at_file=@ fi fi rm -f conftest.* libconftest.a ]) ]) if test no = "$lt_cv_ar_at_file"; then archiver_list_spec= else archiver_list_spec=$lt_cv_ar_at_file fi _LT_DECL([], [archiver_list_spec], [1], [How to feed a file listing to the archiver]) ])# _LT_PROG_AR # _LT_CMD_OLD_ARCHIVE # ------------------- m4_defun([_LT_CMD_OLD_ARCHIVE], [_LT_PROG_AR AC_CHECK_TOOL(STRIP, strip, :) test -z "$STRIP" && STRIP=: _LT_DECL([], [STRIP], [1], [A symbol stripping program]) AC_CHECK_TOOL(RANLIB, ranlib, :) test -z "$RANLIB" && RANLIB=: _LT_DECL([], [RANLIB], [1], [Commands used to install an old-style archive]) # Determine commands to create old-style static archives. old_archive_cmds='$AR $AR_FLAGS $oldlib$oldobjs' old_postinstall_cmds='chmod 644 $oldlib' old_postuninstall_cmds= if test -n "$RANLIB"; then case $host_os in bitrig* | openbsd*) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB -t \$tool_oldlib" ;; *) old_postinstall_cmds="$old_postinstall_cmds~\$RANLIB \$tool_oldlib" ;; esac old_archive_cmds="$old_archive_cmds~\$RANLIB \$tool_oldlib" fi case $host_os in darwin*) lock_old_archive_extraction=yes ;; *) lock_old_archive_extraction=no ;; esac _LT_DECL([], [old_postinstall_cmds], [2]) _LT_DECL([], [old_postuninstall_cmds], [2]) _LT_TAGDECL([], [old_archive_cmds], [2], [Commands used to build an old-style archive]) _LT_DECL([], [lock_old_archive_extraction], [0], [Whether to use a lock for old archive extraction]) ])# _LT_CMD_OLD_ARCHIVE # _LT_COMPILER_OPTION(MESSAGE, VARIABLE-NAME, FLAGS, # [OUTPUT-FILE], [ACTION-SUCCESS], [ACTION-FAILURE]) # ---------------------------------------------------------------- # Check whether the given compiler option works AC_DEFUN([_LT_COMPILER_OPTION], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_SED])dnl AC_CACHE_CHECK([$1], [$2], [$2=no m4_if([$4], , [ac_outfile=conftest.$ac_objext], [ac_outfile=$4]) echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="$3" ## exclude from sc_useless_quotes_in_assignment # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. # The option is referenced via a variable to avoid confusing sed. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [[^ ]]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$lt_compile" 2>conftest.err) ac_status=$? cat conftest.err >&AS_MESSAGE_LOG_FD echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD if (exit $ac_status) && test -s "$ac_outfile"; then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings other than the usual output. $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' >conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if test ! -s conftest.er2 || diff conftest.exp conftest.er2 >/dev/null; then $2=yes fi fi $RM conftest* ]) if test yes = "[$]$2"; then m4_if([$5], , :, [$5]) else m4_if([$6], , :, [$6]) fi ])# _LT_COMPILER_OPTION # Old name: AU_ALIAS([AC_LIBTOOL_COMPILER_OPTION], [_LT_COMPILER_OPTION]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_COMPILER_OPTION], []) # _LT_LINKER_OPTION(MESSAGE, VARIABLE-NAME, FLAGS, # [ACTION-SUCCESS], [ACTION-FAILURE]) # ---------------------------------------------------- # Check whether the given linker option works AC_DEFUN([_LT_LINKER_OPTION], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_SED])dnl AC_CACHE_CHECK([$1], [$2], [$2=no save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS $3" echo "$lt_simple_link_test_code" > conftest.$ac_ext if (eval $ac_link 2>conftest.err) && test -s conftest$ac_exeext; then # The linker can only warn and ignore the option if not recognized # So say no if there are warnings if test -s conftest.err; then # Append any errors to the config.log. cat conftest.err 1>&AS_MESSAGE_LOG_FD $ECHO "$_lt_linker_boilerplate" | $SED '/^$/d' > conftest.exp $SED '/^$/d; /^ *+/d' conftest.err >conftest.er2 if diff conftest.exp conftest.er2 >/dev/null; then $2=yes fi else $2=yes fi fi $RM -r conftest* LDFLAGS=$save_LDFLAGS ]) if test yes = "[$]$2"; then m4_if([$4], , :, [$4]) else m4_if([$5], , :, [$5]) fi ])# _LT_LINKER_OPTION # Old name: AU_ALIAS([AC_LIBTOOL_LINKER_OPTION], [_LT_LINKER_OPTION]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_LINKER_OPTION], []) # LT_CMD_MAX_LEN #--------------- AC_DEFUN([LT_CMD_MAX_LEN], [AC_REQUIRE([AC_CANONICAL_HOST])dnl # find the maximum length of command line arguments AC_MSG_CHECKING([the maximum length of command line arguments]) AC_CACHE_VAL([lt_cv_sys_max_cmd_len], [dnl i=0 teststring=ABCD case $build_os in msdosdjgpp*) # On DJGPP, this test can blow up pretty badly due to problems in libc # (any single argument exceeding 2000 bytes causes a buffer overrun # during glob expansion). Even if it were fixed, the result of this # check would be larger than it should be. lt_cv_sys_max_cmd_len=12288; # 12K is about right ;; gnu*) # Under GNU Hurd, this test is not required because there is # no limit to the length of command line arguments. # Libtool will interpret -1 as no limit whatsoever lt_cv_sys_max_cmd_len=-1; ;; cygwin* | mingw* | cegcc*) # On Win9x/ME, this test blows up -- it succeeds, but takes # about 5 minutes as the teststring grows exponentially. # Worse, since 9x/ME are not pre-emptively multitasking, # you end up with a "frozen" computer, even though with patience # the test eventually succeeds (with a max line length of 256k). # Instead, let's just punt: use the minimum linelength reported by # all of the supported platforms: 8192 (on NT/2K/XP). lt_cv_sys_max_cmd_len=8192; ;; mint*) # On MiNT this can take a long time and run out of memory. lt_cv_sys_max_cmd_len=8192; ;; amigaos*) # On AmigaOS with pdksh, this test takes hours, literally. # So we just punt and use a minimum line length of 8192. lt_cv_sys_max_cmd_len=8192; ;; bitrig* | darwin* | dragonfly* | freebsd* | netbsd* | openbsd*) # This has been around since 386BSD, at least. Likely further. if test -x /sbin/sysctl; then lt_cv_sys_max_cmd_len=`/sbin/sysctl -n kern.argmax` elif test -x /usr/sbin/sysctl; then lt_cv_sys_max_cmd_len=`/usr/sbin/sysctl -n kern.argmax` else lt_cv_sys_max_cmd_len=65536 # usable default for all BSDs fi # And add a safety zone lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` ;; interix*) # We know the value 262144 and hardcode it with a safety zone (like BSD) lt_cv_sys_max_cmd_len=196608 ;; os2*) # The test takes a long time on OS/2. lt_cv_sys_max_cmd_len=8192 ;; osf*) # Dr. Hans Ekkehard Plesser reports seeing a kernel panic running configure # due to this test when exec_disable_arg_limit is 1 on Tru64. It is not # nice to cause kernel panics so lets avoid the loop below. # First set a reasonable default. lt_cv_sys_max_cmd_len=16384 # if test -x /sbin/sysconfig; then case `/sbin/sysconfig -q proc exec_disable_arg_limit` in *1*) lt_cv_sys_max_cmd_len=-1 ;; esac fi ;; sco3.2v5*) lt_cv_sys_max_cmd_len=102400 ;; sysv5* | sco5v6* | sysv4.2uw2*) kargmax=`grep ARG_MAX /etc/conf/cf.d/stune 2>/dev/null` if test -n "$kargmax"; then lt_cv_sys_max_cmd_len=`echo $kargmax | sed 's/.*[[ ]]//'` else lt_cv_sys_max_cmd_len=32768 fi ;; *) lt_cv_sys_max_cmd_len=`(getconf ARG_MAX) 2> /dev/null` if test -n "$lt_cv_sys_max_cmd_len" && \ test undefined != "$lt_cv_sys_max_cmd_len"; then lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 4` lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \* 3` else # Make teststring a little bigger before we do anything with it. # a 1K string should be a reasonable start. for i in 1 2 3 4 5 6 7 8; do teststring=$teststring$teststring done SHELL=${SHELL-${CONFIG_SHELL-/bin/sh}} # If test is not a shell built-in, we'll probably end up computing a # maximum length that is only half of the actual maximum length, but # we can't tell. while { test X`env echo "$teststring$teststring" 2>/dev/null` \ = "X$teststring$teststring"; } >/dev/null 2>&1 && test 17 != "$i" # 1/2 MB should be enough do i=`expr $i + 1` teststring=$teststring$teststring done # Only check the string length outside the loop. lt_cv_sys_max_cmd_len=`expr "X$teststring" : ".*" 2>&1` teststring= # Add a significant safety factor because C++ compilers can tack on # massive amounts of additional arguments before passing them to the # linker. It appears as though 1/2 is a usable value. lt_cv_sys_max_cmd_len=`expr $lt_cv_sys_max_cmd_len \/ 2` fi ;; esac ]) if test -n "$lt_cv_sys_max_cmd_len"; then AC_MSG_RESULT($lt_cv_sys_max_cmd_len) else AC_MSG_RESULT(none) fi max_cmd_len=$lt_cv_sys_max_cmd_len _LT_DECL([], [max_cmd_len], [0], [What is the maximum length of a command?]) ])# LT_CMD_MAX_LEN # Old name: AU_ALIAS([AC_LIBTOOL_SYS_MAX_CMD_LEN], [LT_CMD_MAX_LEN]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_SYS_MAX_CMD_LEN], []) # _LT_HEADER_DLFCN # ---------------- m4_defun([_LT_HEADER_DLFCN], [AC_CHECK_HEADERS([dlfcn.h], [], [], [AC_INCLUDES_DEFAULT])dnl ])# _LT_HEADER_DLFCN # _LT_TRY_DLOPEN_SELF (ACTION-IF-TRUE, ACTION-IF-TRUE-W-USCORE, # ACTION-IF-FALSE, ACTION-IF-CROSS-COMPILING) # ---------------------------------------------------------------- m4_defun([_LT_TRY_DLOPEN_SELF], [m4_require([_LT_HEADER_DLFCN])dnl if test yes = "$cross_compiling"; then : [$4] else lt_dlunknown=0; lt_dlno_uscore=1; lt_dlneed_uscore=2 lt_status=$lt_dlunknown cat > conftest.$ac_ext <<_LT_EOF [#line $LINENO "configure" #include "confdefs.h" #if HAVE_DLFCN_H #include #endif #include #ifdef RTLD_GLOBAL # define LT_DLGLOBAL RTLD_GLOBAL #else # ifdef DL_GLOBAL # define LT_DLGLOBAL DL_GLOBAL # else # define LT_DLGLOBAL 0 # endif #endif /* We may have to define LT_DLLAZY_OR_NOW in the command line if we find out it does not work in some platform. */ #ifndef LT_DLLAZY_OR_NOW # ifdef RTLD_LAZY # define LT_DLLAZY_OR_NOW RTLD_LAZY # else # ifdef DL_LAZY # define LT_DLLAZY_OR_NOW DL_LAZY # else # ifdef RTLD_NOW # define LT_DLLAZY_OR_NOW RTLD_NOW # else # ifdef DL_NOW # define LT_DLLAZY_OR_NOW DL_NOW # else # define LT_DLLAZY_OR_NOW 0 # endif # endif # endif # endif #endif /* When -fvisibility=hidden is used, assume the code has been annotated correspondingly for the symbols needed. */ #if defined __GNUC__ && (((__GNUC__ == 3) && (__GNUC_MINOR__ >= 3)) || (__GNUC__ > 3)) int fnord () __attribute__((visibility("default"))); #endif int fnord () { return 42; } int main () { void *self = dlopen (0, LT_DLGLOBAL|LT_DLLAZY_OR_NOW); int status = $lt_dlunknown; if (self) { if (dlsym (self,"fnord")) status = $lt_dlno_uscore; else { if (dlsym( self,"_fnord")) status = $lt_dlneed_uscore; else puts (dlerror ()); } /* dlclose (self); */ } else puts (dlerror ()); return status; }] _LT_EOF if AC_TRY_EVAL(ac_link) && test -s "conftest$ac_exeext" 2>/dev/null; then (./conftest; exit; ) >&AS_MESSAGE_LOG_FD 2>/dev/null lt_status=$? case x$lt_status in x$lt_dlno_uscore) $1 ;; x$lt_dlneed_uscore) $2 ;; x$lt_dlunknown|x*) $3 ;; esac else : # compilation failed $3 fi fi rm -fr conftest* ])# _LT_TRY_DLOPEN_SELF # LT_SYS_DLOPEN_SELF # ------------------ AC_DEFUN([LT_SYS_DLOPEN_SELF], [m4_require([_LT_HEADER_DLFCN])dnl if test yes != "$enable_dlopen"; then enable_dlopen=unknown enable_dlopen_self=unknown enable_dlopen_self_static=unknown else lt_cv_dlopen=no lt_cv_dlopen_libs= case $host_os in beos*) lt_cv_dlopen=load_add_on lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ;; mingw* | pw32* | cegcc*) lt_cv_dlopen=LoadLibrary lt_cv_dlopen_libs= ;; cygwin*) lt_cv_dlopen=dlopen lt_cv_dlopen_libs= ;; darwin*) # if libdl is installed we need to link against it AC_CHECK_LIB([dl], [dlopen], [lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl],[ lt_cv_dlopen=dyld lt_cv_dlopen_libs= lt_cv_dlopen_self=yes ]) ;; tpf*) # Don't try to run any link tests for TPF. We know it's impossible # because TPF is a cross-compiler, and we know how we open DSOs. lt_cv_dlopen=dlopen lt_cv_dlopen_libs= lt_cv_dlopen_self=no ;; *) AC_CHECK_FUNC([shl_load], [lt_cv_dlopen=shl_load], [AC_CHECK_LIB([dld], [shl_load], [lt_cv_dlopen=shl_load lt_cv_dlopen_libs=-ldld], [AC_CHECK_FUNC([dlopen], [lt_cv_dlopen=dlopen], [AC_CHECK_LIB([dl], [dlopen], [lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-ldl], [AC_CHECK_LIB([svld], [dlopen], [lt_cv_dlopen=dlopen lt_cv_dlopen_libs=-lsvld], [AC_CHECK_LIB([dld], [dld_link], [lt_cv_dlopen=dld_link lt_cv_dlopen_libs=-ldld]) ]) ]) ]) ]) ]) ;; esac if test no = "$lt_cv_dlopen"; then enable_dlopen=no else enable_dlopen=yes fi case $lt_cv_dlopen in dlopen) save_CPPFLAGS=$CPPFLAGS test yes = "$ac_cv_header_dlfcn_h" && CPPFLAGS="$CPPFLAGS -DHAVE_DLFCN_H" save_LDFLAGS=$LDFLAGS wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $export_dynamic_flag_spec\" save_LIBS=$LIBS LIBS="$lt_cv_dlopen_libs $LIBS" AC_CACHE_CHECK([whether a program can dlopen itself], lt_cv_dlopen_self, [dnl _LT_TRY_DLOPEN_SELF( lt_cv_dlopen_self=yes, lt_cv_dlopen_self=yes, lt_cv_dlopen_self=no, lt_cv_dlopen_self=cross) ]) if test yes = "$lt_cv_dlopen_self"; then wl=$lt_prog_compiler_wl eval LDFLAGS=\"\$LDFLAGS $lt_prog_compiler_static\" AC_CACHE_CHECK([whether a statically linked program can dlopen itself], lt_cv_dlopen_self_static, [dnl _LT_TRY_DLOPEN_SELF( lt_cv_dlopen_self_static=yes, lt_cv_dlopen_self_static=yes, lt_cv_dlopen_self_static=no, lt_cv_dlopen_self_static=cross) ]) fi CPPFLAGS=$save_CPPFLAGS LDFLAGS=$save_LDFLAGS LIBS=$save_LIBS ;; esac case $lt_cv_dlopen_self in yes|no) enable_dlopen_self=$lt_cv_dlopen_self ;; *) enable_dlopen_self=unknown ;; esac case $lt_cv_dlopen_self_static in yes|no) enable_dlopen_self_static=$lt_cv_dlopen_self_static ;; *) enable_dlopen_self_static=unknown ;; esac fi _LT_DECL([dlopen_support], [enable_dlopen], [0], [Whether dlopen is supported]) _LT_DECL([dlopen_self], [enable_dlopen_self], [0], [Whether dlopen of programs is supported]) _LT_DECL([dlopen_self_static], [enable_dlopen_self_static], [0], [Whether dlopen of statically linked programs is supported]) ])# LT_SYS_DLOPEN_SELF # Old name: AU_ALIAS([AC_LIBTOOL_DLOPEN_SELF], [LT_SYS_DLOPEN_SELF]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_LIBTOOL_DLOPEN_SELF], []) # _LT_COMPILER_C_O([TAGNAME]) # --------------------------- # Check to see if options -c and -o are simultaneously supported by compiler. # This macro does not hard code the compiler like AC_PROG_CC_C_O. m4_defun([_LT_COMPILER_C_O], [m4_require([_LT_DECL_SED])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_TAG_COMPILER])dnl AC_CACHE_CHECK([if $compiler supports -c -o file.$ac_objext], [_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)], [_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=no $RM -r conftest 2>/dev/null mkdir conftest cd conftest mkdir out echo "$lt_simple_compile_test_code" > conftest.$ac_ext lt_compiler_flag="-o out/conftest2.$ac_objext" # Insert the option either (1) after the last *FLAGS variable, or # (2) before a word containing "conftest.", or (3) at the end. # Note that $ac_compile itself does not contain backslashes and begins # with a dollar sign (not a hyphen), so the echo should work correctly. lt_compile=`echo "$ac_compile" | $SED \ -e 's:.*FLAGS}\{0,1\} :&$lt_compiler_flag :; t' \ -e 's: [[^ ]]*conftest\.: $lt_compiler_flag&:; t' \ -e 's:$: $lt_compiler_flag:'` (eval echo "\"\$as_me:$LINENO: $lt_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$lt_compile" 2>out/conftest.err) ac_status=$? cat out/conftest.err >&AS_MESSAGE_LOG_FD echo "$as_me:$LINENO: \$? = $ac_status" >&AS_MESSAGE_LOG_FD if (exit $ac_status) && test -s out/conftest2.$ac_objext then # The compiler can only warn and ignore the option if not recognized # So say no if there are warnings $ECHO "$_lt_compiler_boilerplate" | $SED '/^$/d' > out/conftest.exp $SED '/^$/d; /^ *+/d' out/conftest.err >out/conftest.er2 if test ! -s out/conftest.er2 || diff out/conftest.exp out/conftest.er2 >/dev/null; then _LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=yes fi fi chmod u+w . 2>&AS_MESSAGE_LOG_FD $RM conftest* # SGI C++ compiler will create directory out/ii_files/ for # template instantiation test -d out/ii_files && $RM out/ii_files/* && rmdir out/ii_files $RM out/* && rmdir out cd .. $RM -r conftest $RM conftest* ]) _LT_TAGDECL([compiler_c_o], [lt_cv_prog_compiler_c_o], [1], [Does compiler simultaneously support -c and -o options?]) ])# _LT_COMPILER_C_O # _LT_COMPILER_FILE_LOCKS([TAGNAME]) # ---------------------------------- # Check to see if we can do hard links to lock some files if needed m4_defun([_LT_COMPILER_FILE_LOCKS], [m4_require([_LT_ENABLE_LOCK])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl _LT_COMPILER_C_O([$1]) hard_links=nottested if test no = "$_LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)" && test no != "$need_locks"; then # do not overwrite the value of need_locks provided by the user AC_MSG_CHECKING([if we can lock with hard links]) hard_links=yes $RM conftest* ln conftest.a conftest.b 2>/dev/null && hard_links=no touch conftest.a ln conftest.a conftest.b 2>&5 || hard_links=no ln conftest.a conftest.b 2>/dev/null && hard_links=no AC_MSG_RESULT([$hard_links]) if test no = "$hard_links"; then AC_MSG_WARN(['$CC' does not support '-c -o', so 'make -j' may be unsafe]) need_locks=warn fi else need_locks=no fi _LT_DECL([], [need_locks], [1], [Must we lock files when doing compilation?]) ])# _LT_COMPILER_FILE_LOCKS # _LT_CHECK_OBJDIR # ---------------- m4_defun([_LT_CHECK_OBJDIR], [AC_CACHE_CHECK([for objdir], [lt_cv_objdir], [rm -f .libs 2>/dev/null mkdir .libs 2>/dev/null if test -d .libs; then lt_cv_objdir=.libs else # MS-DOS does not allow filenames that begin with a dot. lt_cv_objdir=_libs fi rmdir .libs 2>/dev/null]) objdir=$lt_cv_objdir _LT_DECL([], [objdir], [0], [The name of the directory that contains temporary libtool files])dnl m4_pattern_allow([LT_OBJDIR])dnl AC_DEFINE_UNQUOTED([LT_OBJDIR], "$lt_cv_objdir/", [Define to the sub-directory where libtool stores uninstalled libraries.]) ])# _LT_CHECK_OBJDIR # _LT_LINKER_HARDCODE_LIBPATH([TAGNAME]) # -------------------------------------- # Check hardcoding attributes. m4_defun([_LT_LINKER_HARDCODE_LIBPATH], [AC_MSG_CHECKING([how to hardcode library paths into programs]) _LT_TAGVAR(hardcode_action, $1)= if test -n "$_LT_TAGVAR(hardcode_libdir_flag_spec, $1)" || test -n "$_LT_TAGVAR(runpath_var, $1)" || test yes = "$_LT_TAGVAR(hardcode_automatic, $1)"; then # We can hardcode non-existent directories. if test no != "$_LT_TAGVAR(hardcode_direct, $1)" && # If the only mechanism to avoid hardcoding is shlibpath_var, we # have to relink, otherwise we might link with an installed library # when we should be linking with a yet-to-be-installed one ## test no != "$_LT_TAGVAR(hardcode_shlibpath_var, $1)" && test no != "$_LT_TAGVAR(hardcode_minus_L, $1)"; then # Linking always hardcodes the temporary library directory. _LT_TAGVAR(hardcode_action, $1)=relink else # We can link without hardcoding, and we can hardcode nonexisting dirs. _LT_TAGVAR(hardcode_action, $1)=immediate fi else # We cannot hardcode anything, or else we can only hardcode existing # directories. _LT_TAGVAR(hardcode_action, $1)=unsupported fi AC_MSG_RESULT([$_LT_TAGVAR(hardcode_action, $1)]) if test relink = "$_LT_TAGVAR(hardcode_action, $1)" || test yes = "$_LT_TAGVAR(inherit_rpath, $1)"; then # Fast installation is not supported enable_fast_install=no elif test yes = "$shlibpath_overrides_runpath" || test no = "$enable_shared"; then # Fast installation is not necessary enable_fast_install=needless fi _LT_TAGDECL([], [hardcode_action], [0], [How to hardcode a shared library path into an executable]) ])# _LT_LINKER_HARDCODE_LIBPATH # _LT_CMD_STRIPLIB # ---------------- m4_defun([_LT_CMD_STRIPLIB], [m4_require([_LT_DECL_EGREP]) striplib= old_striplib= AC_MSG_CHECKING([whether stripping libraries is possible]) if test -n "$STRIP" && $STRIP -V 2>&1 | $GREP "GNU strip" >/dev/null; then test -z "$old_striplib" && old_striplib="$STRIP --strip-debug" test -z "$striplib" && striplib="$STRIP --strip-unneeded" AC_MSG_RESULT([yes]) else # FIXME - insert some real tests, host_os isn't really good enough case $host_os in darwin*) if test -n "$STRIP"; then striplib="$STRIP -x" old_striplib="$STRIP -S" AC_MSG_RESULT([yes]) else AC_MSG_RESULT([no]) fi ;; *) AC_MSG_RESULT([no]) ;; esac fi _LT_DECL([], [old_striplib], [1], [Commands to strip libraries]) _LT_DECL([], [striplib], [1]) ])# _LT_CMD_STRIPLIB # _LT_PREPARE_MUNGE_PATH_LIST # --------------------------- # Make sure func_munge_path_list() is defined correctly. m4_defun([_LT_PREPARE_MUNGE_PATH_LIST], [[# func_munge_path_list VARIABLE PATH # ----------------------------------- # VARIABLE is name of variable containing _space_ separated list of # directories to be munged by the contents of PATH, which is string # having a format: # "DIR[:DIR]:" # string "DIR[ DIR]" will be prepended to VARIABLE # ":DIR[:DIR]" # string "DIR[ DIR]" will be appended to VARIABLE # "DIRP[:DIRP]::[DIRA:]DIRA" # string "DIRP[ DIRP]" will be prepended to VARIABLE and string # "DIRA[ DIRA]" will be appended to VARIABLE # "DIR[:DIR]" # VARIABLE will be replaced by "DIR[ DIR]" func_munge_path_list () { case x@S|@2 in x) ;; *:) eval @S|@1=\"`$ECHO @S|@2 | $SED 's/:/ /g'` \@S|@@S|@1\" ;; x:*) eval @S|@1=\"\@S|@@S|@1 `$ECHO @S|@2 | $SED 's/:/ /g'`\" ;; *::*) eval @S|@1=\"\@S|@@S|@1\ `$ECHO @S|@2 | $SED -e 's/.*:://' -e 's/:/ /g'`\" eval @S|@1=\"`$ECHO @S|@2 | $SED -e 's/::.*//' -e 's/:/ /g'`\ \@S|@@S|@1\" ;; *) eval @S|@1=\"`$ECHO @S|@2 | $SED 's/:/ /g'`\" ;; esac } ]])# _LT_PREPARE_PATH_LIST # _LT_SYS_DYNAMIC_LINKER([TAG]) # ----------------------------- # PORTME Fill in your ld.so characteristics m4_defun([_LT_SYS_DYNAMIC_LINKER], [AC_REQUIRE([AC_CANONICAL_HOST])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_OBJDUMP])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_CHECK_SHELL_FEATURES])dnl m4_require([_LT_PREPARE_MUNGE_PATH_LIST])dnl AC_MSG_CHECKING([dynamic linker characteristics]) m4_if([$1], [], [ if test yes = "$GCC"; then case $host_os in darwin*) lt_awk_arg='/^libraries:/,/LR/' ;; *) lt_awk_arg='/^libraries:/' ;; esac case $host_os in mingw* | cegcc*) lt_sed_strip_eq='s|=\([[A-Za-z]]:\)|\1|g' ;; *) lt_sed_strip_eq='s|=/|/|g' ;; esac lt_search_path_spec=`$CC -print-search-dirs | awk $lt_awk_arg | $SED -e "s/^libraries://" -e $lt_sed_strip_eq` case $lt_search_path_spec in *\;*) # if the path contains ";" then we assume it to be the separator # otherwise default to the standard path separator (i.e. ":") - it is # assumed that no part of a normal pathname contains ";" but that should # okay in the real world where ";" in dirpaths is itself problematic. lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED 's/;/ /g'` ;; *) lt_search_path_spec=`$ECHO "$lt_search_path_spec" | $SED "s/$PATH_SEPARATOR/ /g"` ;; esac # Ok, now we have the path, separated by spaces, we can step through it # and add multilib dir if necessary... lt_tmp_lt_search_path_spec= lt_multi_os_dir=/`$CC $CPPFLAGS $CFLAGS $LDFLAGS -print-multi-os-directory 2>/dev/null` # ...but if some path component already ends with the multilib dir we assume # that all is fine and trust -print-search-dirs as is (GCC 4.2? or newer). case "$lt_multi_os_dir; $lt_search_path_spec " in "/; "* | "/.; "* | "/./; "* | *"$lt_multi_os_dir "* | *"$lt_multi_os_dir/ "*) lt_multi_os_dir= ;; esac for lt_sys_path in $lt_search_path_spec; do if test -d "$lt_sys_path$lt_multi_os_dir"; then lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path$lt_multi_os_dir" elif test -n "$lt_multi_os_dir"; then test -d "$lt_sys_path" && \ lt_tmp_lt_search_path_spec="$lt_tmp_lt_search_path_spec $lt_sys_path" fi done lt_search_path_spec=`$ECHO "$lt_tmp_lt_search_path_spec" | awk ' BEGIN {RS = " "; FS = "/|\n";} { lt_foo = ""; lt_count = 0; for (lt_i = NF; lt_i > 0; lt_i--) { if ($lt_i != "" && $lt_i != ".") { if ($lt_i == "..") { lt_count++; } else { if (lt_count == 0) { lt_foo = "/" $lt_i lt_foo; } else { lt_count--; } } } } if (lt_foo != "") { lt_freq[[lt_foo]]++; } if (lt_freq[[lt_foo]] == 1) { print lt_foo; } }'` # AWK program above erroneously prepends '/' to C:/dos/paths # for these hosts. case $host_os in mingw* | cegcc*) lt_search_path_spec=`$ECHO "$lt_search_path_spec" |\ $SED 's|/\([[A-Za-z]]:\)|\1|g'` ;; esac sys_lib_search_path_spec=`$ECHO "$lt_search_path_spec" | $lt_NL2SP` else sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" fi]) library_names_spec= libname_spec='lib$name' soname_spec= shrext_cmds=.so postinstall_cmds= postuninstall_cmds= finish_cmds= finish_eval= shlibpath_var= shlibpath_overrides_runpath=unknown version_type=none dynamic_linker="$host_os ld.so" sys_lib_dlsearch_path_spec="/lib /usr/lib" need_lib_prefix=unknown hardcode_into_libs=no # when you set need_version to no, make sure it does not cause -set_version # flags to be left without arguments need_version=unknown AC_ARG_VAR([LT_SYS_LIBRARY_PATH], [User-defined run-time library search path.]) case $host_os in aix3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname.a' shlibpath_var=LIBPATH # AIX 3 has no versioning support, so we append a major version to the name. soname_spec='$libname$release$shared_ext$major' ;; aix[[4-9]]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no hardcode_into_libs=yes if test ia64 = "$host_cpu"; then # AIX 5 supports IA64 library_names_spec='$libname$release$shared_ext$major $libname$release$shared_ext$versuffix $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH else # With GCC up to 2.95.x, collect2 would create an import file # for dependence libraries. The import file would start with # the line '#! .'. This would cause the generated library to # depend on '.', always an invalid library. This was fixed in # development snapshots of GCC prior to 3.0. case $host_os in aix4 | aix4.[[01]] | aix4.[[01]].*) if { echo '#if __GNUC__ > 2 || (__GNUC__ == 2 && __GNUC_MINOR__ >= 97)' echo ' yes ' echo '#endif'; } | $CC -E - | $GREP yes > /dev/null; then : else can_build_shared=no fi ;; esac # Using Import Files as archive members, it is possible to support # filename-based versioning of shared library archives on AIX. While # this would work for both with and without runtime linking, it will # prevent static linking of such archives. So we do filename-based # shared library versioning with .so extension only, which is used # when both runtime linking and shared linking is enabled. # Unfortunately, runtime linking may impact performance, so we do # not want this to be the default eventually. Also, we use the # versioned .so libs for executables only if there is the -brtl # linker flag in LDFLAGS as well, or --with-aix-soname=svr4 only. # To allow for filename-based versioning support, we need to create # libNAME.so.V as an archive file, containing: # *) an Import File, referring to the versioned filename of the # archive as well as the shared archive member, telling the # bitwidth (32 or 64) of that shared object, and providing the # list of exported symbols of that shared object, eventually # decorated with the 'weak' keyword # *) the shared object with the F_LOADONLY flag set, to really avoid # it being seen by the linker. # At run time we better use the real file rather than another symlink, # but for link time we create the symlink libNAME.so -> libNAME.so.V case $with_aix_soname,$aix_use_runtimelinking in # AIX (on Power*) has no versioning support, so currently we cannot hardcode correct # soname into executable. Probably we can add versioning support to # collect2, so additional links can be useful in future. aix,yes) # traditional libtool dynamic_linker='AIX unversionable lib.so' # If using run time linking (on AIX 4.2 or later) use lib.so # instead of lib.a to let people know that these are not # typical AIX shared libraries. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; aix,no) # traditional AIX only dynamic_linker='AIX lib.a[(]lib.so.V[)]' # We preserve .a as extension for shared libraries through AIX4.2 # and later when we are not doing run time linking. library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' ;; svr4,*) # full svr4 only dynamic_linker="AIX lib.so.V[(]$shared_archive_member_spec.o[)]" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,yes) # both, prefer svr4 dynamic_linker="AIX lib.so.V[(]$shared_archive_member_spec.o[)], lib.a[(]lib.so.V[)]" library_names_spec='$libname$release$shared_ext$major $libname$shared_ext' # unpreferred sharedlib libNAME.a needs extra handling postinstall_cmds='test -n "$linkname" || linkname="$realname"~func_stripname "" ".so" "$linkname"~$install_shared_prog "$dir/$func_stripname_result.$libext" "$destdir/$func_stripname_result.$libext"~test -z "$tstripme" || test -z "$striplib" || $striplib "$destdir/$func_stripname_result.$libext"' postuninstall_cmds='for n in $library_names $old_library; do :; done~func_stripname "" ".so" "$n"~test "$func_stripname_result" = "$n" || func_append rmfiles " $odir/$func_stripname_result.$libext"' # We do not specify a path in Import Files, so LIBPATH fires. shlibpath_overrides_runpath=yes ;; *,no) # both, prefer aix dynamic_linker="AIX lib.a[(]lib.so.V[)], lib.so.V[(]$shared_archive_member_spec.o[)]" library_names_spec='$libname$release.a $libname.a' soname_spec='$libname$release$shared_ext$major' # unpreferred sharedlib libNAME.so.V and symlink libNAME.so need extra handling postinstall_cmds='test -z "$dlname" || $install_shared_prog $dir/$dlname $destdir/$dlname~test -z "$tstripme" || test -z "$striplib" || $striplib $destdir/$dlname~test -n "$linkname" || linkname=$realname~func_stripname "" ".a" "$linkname"~(cd "$destdir" && $LN_S -f $dlname $func_stripname_result.so)' postuninstall_cmds='test -z "$dlname" || func_append rmfiles " $odir/$dlname"~for n in $old_library $library_names; do :; done~func_stripname "" ".a" "$n"~func_append rmfiles " $odir/$func_stripname_result.so"' ;; esac shlibpath_var=LIBPATH fi ;; amigaos*) case $host_cpu in powerpc) # Since July 2007 AmigaOS4 officially supports .so libraries. # When compiling the executable, add -use-dynld -Lsobjs: to the compileline. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' ;; m68k) library_names_spec='$libname.ixlibrary $libname.a' # Create ${libname}_ixlibrary.a entries in /sys/libs. finish_eval='for lib in `ls $libdir/*.ixlibrary 2>/dev/null`; do libname=`func_echo_all "$lib" | $SED '\''s%^.*/\([[^/]]*\)\.ixlibrary$%\1%'\''`; $RM /sys/libs/${libname}_ixlibrary.a; $show "cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a"; cd /sys/libs && $LN_S $lib ${libname}_ixlibrary.a || exit 1; done' ;; esac ;; beos*) library_names_spec='$libname$shared_ext' dynamic_linker="$host_os ld.so" shlibpath_var=LIBRARY_PATH ;; bsdi[[45]]*) version_type=linux # correct to gnu/linux during the next big refactor need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/shlib /usr/lib /usr/X11/lib /usr/contrib/lib /lib /usr/local/lib" sys_lib_dlsearch_path_spec="/shlib /usr/lib /usr/local/lib" # the default ld.so.conf also contains /usr/contrib/lib and # /usr/X11R6/lib (/usr/X11 is a link to /usr/X11R6), but let us allow # libtool to hard-code these into programs ;; cygwin* | mingw* | pw32* | cegcc*) version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no case $GCC,$cc_basename in yes,*) # gcc library_names_spec='$libname.dll.a' # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes case $host_os in cygwin*) # Cygwin DLLs use 'cyg' prefix rather than 'lib' soname_spec='`echo $libname | sed -e 's/^lib/cyg/'``echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' m4_if([$1], [],[ sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/lib/w32api"]) ;; mingw* | cegcc*) # MinGW DLLs use traditional 'lib' prefix soname_spec='$libname`echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' ;; pw32*) # pw32 DLLs use 'pw' prefix rather than 'lib' library_names_spec='`echo $libname | sed -e 's/^lib/pw/'``echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' ;; esac dynamic_linker='Win32 ld.exe' ;; *,cl*) # Native MSVC libname_spec='$name' soname_spec='$libname`echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext' library_names_spec='$libname.dll.lib' case $build_os in mingw*) sys_lib_search_path_spec= lt_save_ifs=$IFS IFS=';' for lt_path in $LIB do IFS=$lt_save_ifs # Let DOS variable expansion print the short 8.3 style file name. lt_path=`cd "$lt_path" 2>/dev/null && cmd //C "for %i in (".") do @echo %~si"` sys_lib_search_path_spec="$sys_lib_search_path_spec $lt_path" done IFS=$lt_save_ifs # Convert to MSYS style. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | sed -e 's|\\\\|/|g' -e 's| \\([[a-zA-Z]]\\):| /\\1|g' -e 's|^ ||'` ;; cygwin*) # Convert to unix form, then to dos form, then back to unix form # but this time dos style (no spaces!) so that the unix form looks # like /cygdrive/c/PROGRA~1:/cygdr... sys_lib_search_path_spec=`cygpath --path --unix "$LIB"` sys_lib_search_path_spec=`cygpath --path --dos "$sys_lib_search_path_spec" 2>/dev/null` sys_lib_search_path_spec=`cygpath --path --unix "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` ;; *) sys_lib_search_path_spec=$LIB if $ECHO "$sys_lib_search_path_spec" | [$GREP ';[c-zC-Z]:/' >/dev/null]; then # It is most probably a Windows format PATH. sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e 's/;/ /g'` else sys_lib_search_path_spec=`$ECHO "$sys_lib_search_path_spec" | $SED -e "s/$PATH_SEPARATOR/ /g"` fi # FIXME: find the short name or the path components, as spaces are # common. (e.g. "Program Files" -> "PROGRA~1") ;; esac # DLL is installed to $(libdir)/../bin by postinstall_cmds postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; echo \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; echo \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' shlibpath_overrides_runpath=yes dynamic_linker='Win32 link.exe' ;; *) # Assume MSVC wrapper library_names_spec='$libname`echo $release | $SED -e 's/[[.]]/-/g'`$versuffix$shared_ext $libname.lib' dynamic_linker='Win32 ld.exe' ;; esac # FIXME: first we should search . and the directory the executable is in shlibpath_var=PATH ;; darwin* | rhapsody*) dynamic_linker="$host_os dyld" version_type=darwin need_lib_prefix=no need_version=no library_names_spec='$libname$release$major$shared_ext $libname$shared_ext' soname_spec='$libname$release$major$shared_ext' shlibpath_overrides_runpath=yes shlibpath_var=DYLD_LIBRARY_PATH shrext_cmds='`test .$module = .yes && echo .so || echo .dylib`' m4_if([$1], [],[ sys_lib_search_path_spec="$sys_lib_search_path_spec /usr/local/lib"]) sys_lib_dlsearch_path_spec='/usr/local/lib /lib /usr/lib' ;; dgux*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; freebsd* | dragonfly*) # DragonFly does not have aout. When/if they implement a new # versioning mechanism, adjust this. if test -x /usr/bin/objformat; then objformat=`/usr/bin/objformat` else case $host_os in freebsd[[23]].*) objformat=aout ;; *) objformat=elf ;; esac fi version_type=freebsd-$objformat case $version_type in freebsd-elf*) library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' need_version=no need_lib_prefix=no ;; freebsd-*) library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' need_version=yes ;; esac shlibpath_var=LD_LIBRARY_PATH case $host_os in freebsd2.*) shlibpath_overrides_runpath=yes ;; freebsd3.[[01]]* | freebsdelf3.[[01]]*) shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; freebsd3.[[2-9]]* | freebsdelf3.[[2-9]]* | \ freebsd4.[[0-5]] | freebsdelf4.[[0-5]] | freebsd4.1.1 | freebsdelf4.1.1) shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; *) # from 4.6 on, and DragonFly shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; esac ;; haiku*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no dynamic_linker="$host_os runtime_loader" library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LIBRARY_PATH shlibpath_overrides_runpath=no sys_lib_dlsearch_path_spec='/boot/home/config/lib /boot/common/lib /boot/system/lib' hardcode_into_libs=yes ;; hpux9* | hpux10* | hpux11*) # Give a soname corresponding to the major version so that dld.sl refuses to # link against other versions. version_type=sunos need_lib_prefix=no need_version=no case $host_cpu in ia64*) shrext_cmds='.so' hardcode_into_libs=yes dynamic_linker="$host_os dld.so" shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' if test 32 = "$HPUX_IA64_MODE"; then sys_lib_search_path_spec="/usr/lib/hpux32 /usr/local/lib/hpux32 /usr/local/lib" sys_lib_dlsearch_path_spec=/usr/lib/hpux32 else sys_lib_search_path_spec="/usr/lib/hpux64 /usr/local/lib/hpux64" sys_lib_dlsearch_path_spec=/usr/lib/hpux64 fi ;; hppa*64*) shrext_cmds='.sl' hardcode_into_libs=yes dynamic_linker="$host_os dld.sl" shlibpath_var=LD_LIBRARY_PATH # How should we handle SHLIB_PATH shlibpath_overrides_runpath=yes # Unless +noenvvar is specified. library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' sys_lib_search_path_spec="/usr/lib/pa20_64 /usr/ccs/lib/pa20_64" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; *) shrext_cmds='.sl' dynamic_linker="$host_os dld.sl" shlibpath_var=SHLIB_PATH shlibpath_overrides_runpath=no # +s is required to enable SHLIB_PATH library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' ;; esac # HP-UX runs *really* slowly unless shared libraries are mode 555, ... postinstall_cmds='chmod 555 $lib' # or fails outright, so override atomically: install_override_mode=555 ;; interix[[3-9]]*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='Interix 3.x ld.so.1 (PE, like ELF)' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; irix5* | irix6* | nonstopux*) case $host_os in nonstopux*) version_type=nonstopux ;; *) if test yes = "$lt_cv_prog_gnu_ld"; then version_type=linux # correct to gnu/linux during the next big refactor else version_type=irix fi ;; esac need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$release$shared_ext $libname$shared_ext' case $host_os in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in # libtool.m4 will add one of these switches to LD *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= libmagic=32-bit;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 libmagic=N32;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 libmagic=64-bit;; *) libsuff= shlibsuff= libmagic=never-match;; esac ;; esac shlibpath_var=LD_LIBRARY${shlibsuff}_PATH shlibpath_overrides_runpath=no sys_lib_search_path_spec="/usr/lib$libsuff /lib$libsuff /usr/local/lib$libsuff" sys_lib_dlsearch_path_spec="/usr/lib$libsuff /lib$libsuff" hardcode_into_libs=yes ;; # No shared lib support for Linux oldld, aout, or coff. linux*oldld* | linux*aout* | linux*coff*) dynamic_linker=no ;; linux*android*) version_type=none # Android doesn't support versioned libraries. need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext' soname_spec='$libname$release$shared_ext' finish_cmds= shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes dynamic_linker='Android linker' # Don't embed -rpath directories since the linker doesn't support them. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' finish_cmds='PATH="\$PATH:/sbin" ldconfig -n $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no # Some binutils ld are patched to set DT_RUNPATH AC_CACHE_VAL([lt_cv_shlibpath_overrides_runpath], [lt_cv_shlibpath_overrides_runpath=no save_LDFLAGS=$LDFLAGS save_libdir=$libdir eval "libdir=/foo; wl=\"$_LT_TAGVAR(lt_prog_compiler_wl, $1)\"; \ LDFLAGS=\"\$LDFLAGS $_LT_TAGVAR(hardcode_libdir_flag_spec, $1)\"" AC_LINK_IFELSE([AC_LANG_PROGRAM([],[])], [AS_IF([ ($OBJDUMP -p conftest$ac_exeext) 2>/dev/null | grep "RUNPATH.*$libdir" >/dev/null], [lt_cv_shlibpath_overrides_runpath=yes])]) LDFLAGS=$save_LDFLAGS libdir=$save_libdir ]) shlibpath_overrides_runpath=$lt_cv_shlibpath_overrides_runpath # This implies no fast_install, which is unacceptable. # Some rework will be needed to allow for fast_install # before this can be enabled. hardcode_into_libs=yes # Add ABI-specific directories to the system library path. sys_lib_dlsearch_path_spec="/lib64 /usr/lib64 /lib /usr/lib" # Ideally, we could use ldconfig to report *all* directores which are # searched for libraries, however this is still not possible. Aside from not # being certain /sbin/ldconfig is available, command # 'ldconfig -N -X -v | grep ^/' on 64bit Fedora does not report /usr/lib64, # even though it is searched at run-time. Try to do the best guess by # appending ld.so.conf contents (and includes) to the search path. if test -f /etc/ld.so.conf; then lt_ld_extra=`awk '/^include / { system(sprintf("cd /etc; cat %s 2>/dev/null", \[$]2)); skip = 1; } { if (!skip) print \[$]0; skip = 0; }' < /etc/ld.so.conf | $SED -e 's/#.*//;/^[ ]*hwcap[ ]/d;s/[:, ]/ /g;s/=[^=]*$//;s/=[^= ]* / /g;s/"//g;/^$/d' | tr '\n' ' '` sys_lib_dlsearch_path_spec="$sys_lib_dlsearch_path_spec $lt_ld_extra" fi # We used to test for /lib/ld.so.1 and disable shared libraries on # powerpc, because MkLinux only supported shared libraries with the # GNU dynamic linker. Since this was broken with cross compilers, # most powerpc-linux boxes support dynamic linking these days and # people can always --disable-shared, the test was removed, and we # assume the GNU/Linux dynamic linker is in use. dynamic_linker='GNU/Linux ld.so' ;; netbsd*) version_type=sunos need_lib_prefix=no need_version=no if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' dynamic_linker='NetBSD (a.out) ld.so' else library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' dynamic_linker='NetBSD ld.elf_so' fi shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes ;; newsos6) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; *nto* | *qnx*) version_type=qnx need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes dynamic_linker='ldqnx.so' ;; openbsd* | bitrig*) version_type=sunos sys_lib_dlsearch_path_spec=/usr/lib need_lib_prefix=no if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then need_version=no else need_version=yes fi library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/sbin" ldconfig -m $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes ;; os2*) libname_spec='$name' version_type=windows shrext_cmds=.dll need_version=no need_lib_prefix=no # OS/2 can only load a DLL with a base name of 8 characters or less. soname_spec='`test -n "$os2dllname" && libname="$os2dllname"; v=$($ECHO $release$versuffix | tr -d .-); n=$($ECHO $libname | cut -b -$((8 - ${#v})) | tr . _); $ECHO $n$v`$shared_ext' library_names_spec='${libname}_dll.$libext' dynamic_linker='OS/2 ld.exe' shlibpath_var=BEGINLIBPATH sys_lib_search_path_spec="/lib /usr/lib /usr/local/lib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec postinstall_cmds='base_file=`basename \$file`~ dlpath=`$SHELL 2>&1 -c '\''. $dir/'\''\$base_file'\''i; $ECHO \$dlname'\''`~ dldir=$destdir/`dirname \$dlpath`~ test -d \$dldir || mkdir -p \$dldir~ $install_prog $dir/$dlname \$dldir/$dlname~ chmod a+x \$dldir/$dlname~ if test -n '\''$stripme'\'' && test -n '\''$striplib'\''; then eval '\''$striplib \$dldir/$dlname'\'' || exit \$?; fi' postuninstall_cmds='dldll=`$SHELL 2>&1 -c '\''. $file; $ECHO \$dlname'\''`~ dlpath=$dir/\$dldll~ $RM \$dlpath' ;; osf3* | osf4* | osf5*) version_type=osf need_lib_prefix=no need_version=no soname_spec='$libname$release$shared_ext$major' library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH sys_lib_search_path_spec="/usr/shlib /usr/ccs/lib /usr/lib/cmplrs/cc /usr/lib /usr/local/lib /var/shlib" sys_lib_dlsearch_path_spec=$sys_lib_search_path_spec ;; rdos*) dynamic_linker=no ;; solaris*) version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes # ldd complains unless libraries are executable postinstall_cmds='chmod +x $lib' ;; sunos4*) version_type=sunos library_names_spec='$libname$release$shared_ext$versuffix $libname$shared_ext$versuffix' finish_cmds='PATH="\$PATH:/usr/etc" ldconfig $libdir' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes if test yes = "$with_gnu_ld"; then need_lib_prefix=no fi need_version=yes ;; sysv4 | sysv4.3*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH case $host_vendor in sni) shlibpath_overrides_runpath=no need_lib_prefix=no runpath_var=LD_RUN_PATH ;; siemens) need_lib_prefix=no ;; motorola) need_lib_prefix=no need_version=no shlibpath_overrides_runpath=no sys_lib_search_path_spec='/lib /usr/lib /usr/ccs/lib' ;; esac ;; sysv4*MP*) if test -d /usr/nec; then version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$shared_ext.$versuffix $libname$shared_ext.$major $libname$shared_ext' soname_spec='$libname$shared_ext.$major' shlibpath_var=LD_LIBRARY_PATH fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) version_type=sco need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=yes hardcode_into_libs=yes if test yes = "$with_gnu_ld"; then sys_lib_search_path_spec='/usr/local/lib /usr/gnu/lib /usr/ccs/lib /usr/lib /lib' else sys_lib_search_path_spec='/usr/ccs/lib /usr/lib' case $host_os in sco3.2v5*) sys_lib_search_path_spec="$sys_lib_search_path_spec /lib" ;; esac fi sys_lib_dlsearch_path_spec='/usr/lib' ;; tpf*) # TPF is a cross-target only. Preferred cross-host = GNU/Linux. version_type=linux # correct to gnu/linux during the next big refactor need_lib_prefix=no need_version=no library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' shlibpath_var=LD_LIBRARY_PATH shlibpath_overrides_runpath=no hardcode_into_libs=yes ;; uts4*) version_type=linux # correct to gnu/linux during the next big refactor library_names_spec='$libname$release$shared_ext$versuffix $libname$release$shared_ext$major $libname$shared_ext' soname_spec='$libname$release$shared_ext$major' shlibpath_var=LD_LIBRARY_PATH ;; *) dynamic_linker=no ;; esac AC_MSG_RESULT([$dynamic_linker]) test no = "$dynamic_linker" && can_build_shared=no variables_saved_for_relink="PATH $shlibpath_var $runpath_var" if test yes = "$GCC"; then variables_saved_for_relink="$variables_saved_for_relink GCC_EXEC_PREFIX COMPILER_PATH LIBRARY_PATH" fi if test set = "${lt_cv_sys_lib_search_path_spec+set}"; then sys_lib_search_path_spec=$lt_cv_sys_lib_search_path_spec fi if test set = "${lt_cv_sys_lib_dlsearch_path_spec+set}"; then sys_lib_dlsearch_path_spec=$lt_cv_sys_lib_dlsearch_path_spec fi # remember unaugmented sys_lib_dlsearch_path content for libtool script decls... configure_time_dlsearch_path=$sys_lib_dlsearch_path_spec # ... but it needs LT_SYS_LIBRARY_PATH munging for other configure-time code func_munge_path_list sys_lib_dlsearch_path_spec "$LT_SYS_LIBRARY_PATH" # to be used as default LT_SYS_LIBRARY_PATH value in generated libtool configure_time_lt_sys_library_path=$LT_SYS_LIBRARY_PATH _LT_DECL([], [variables_saved_for_relink], [1], [Variables whose values should be saved in libtool wrapper scripts and restored at link time]) _LT_DECL([], [need_lib_prefix], [0], [Do we need the "lib" prefix for modules?]) _LT_DECL([], [need_version], [0], [Do we need a version for libraries?]) _LT_DECL([], [version_type], [0], [Library versioning type]) _LT_DECL([], [runpath_var], [0], [Shared library runtime path variable]) _LT_DECL([], [shlibpath_var], [0],[Shared library path variable]) _LT_DECL([], [shlibpath_overrides_runpath], [0], [Is shlibpath searched before the hard-coded library search path?]) _LT_DECL([], [libname_spec], [1], [Format of library name prefix]) _LT_DECL([], [library_names_spec], [1], [[List of archive names. First name is the real one, the rest are links. The last name is the one that the linker finds with -lNAME]]) _LT_DECL([], [soname_spec], [1], [[The coded name of the library, if different from the real name]]) _LT_DECL([], [install_override_mode], [1], [Permission mode override for installation of shared libraries]) _LT_DECL([], [postinstall_cmds], [2], [Command to use after installation of a shared archive]) _LT_DECL([], [postuninstall_cmds], [2], [Command to use after uninstallation of a shared archive]) _LT_DECL([], [finish_cmds], [2], [Commands used to finish a libtool library installation in a directory]) _LT_DECL([], [finish_eval], [1], [[As "finish_cmds", except a single script fragment to be evaled but not shown]]) _LT_DECL([], [hardcode_into_libs], [0], [Whether we should hardcode library paths into libraries]) _LT_DECL([], [sys_lib_search_path_spec], [2], [Compile-time system search path for libraries]) _LT_DECL([sys_lib_dlsearch_path_spec], [configure_time_dlsearch_path], [2], [Detected run-time system search path for libraries]) _LT_DECL([], [configure_time_lt_sys_library_path], [2], [Explicit LT_SYS_LIBRARY_PATH set during ./configure time]) ])# _LT_SYS_DYNAMIC_LINKER # _LT_PATH_TOOL_PREFIX(TOOL) # -------------------------- # find a file program that can recognize shared library AC_DEFUN([_LT_PATH_TOOL_PREFIX], [m4_require([_LT_DECL_EGREP])dnl AC_MSG_CHECKING([for $1]) AC_CACHE_VAL(lt_cv_path_MAGIC_CMD, [case $MAGIC_CMD in [[\\/*] | ?:[\\/]*]) lt_cv_path_MAGIC_CMD=$MAGIC_CMD # Let the user override the test with a path. ;; *) lt_save_MAGIC_CMD=$MAGIC_CMD lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR dnl $ac_dummy forces splitting on constant user-supplied paths. dnl POSIX.2 word splitting is done only on the output of word expansions, dnl not every word. This closes a longstanding sh security hole. ac_dummy="m4_if([$2], , $PATH, [$2])" for ac_dir in $ac_dummy; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$1"; then lt_cv_path_MAGIC_CMD=$ac_dir/"$1" if test -n "$file_magic_test_file"; then case $deplibs_check_method in "file_magic "*) file_magic_regex=`expr "$deplibs_check_method" : "file_magic \(.*\)"` MAGIC_CMD=$lt_cv_path_MAGIC_CMD if eval $file_magic_cmd \$file_magic_test_file 2> /dev/null | $EGREP "$file_magic_regex" > /dev/null; then : else cat <<_LT_EOF 1>&2 *** Warning: the command libtool uses to detect shared libraries, *** $file_magic_cmd, produces output that libtool cannot recognize. *** The result is that libtool may fail to recognize shared libraries *** as such. This will affect the creation of libtool libraries that *** depend on shared libraries, but programs linked with such libtool *** libraries will work regardless of this problem. Nevertheless, you *** may want to report the problem to your system manager and/or to *** bug-libtool@gnu.org _LT_EOF fi ;; esac fi break fi done IFS=$lt_save_ifs MAGIC_CMD=$lt_save_MAGIC_CMD ;; esac]) MAGIC_CMD=$lt_cv_path_MAGIC_CMD if test -n "$MAGIC_CMD"; then AC_MSG_RESULT($MAGIC_CMD) else AC_MSG_RESULT(no) fi _LT_DECL([], [MAGIC_CMD], [0], [Used to examine libraries when file_magic_cmd begins with "file"])dnl ])# _LT_PATH_TOOL_PREFIX # Old name: AU_ALIAS([AC_PATH_TOOL_PREFIX], [_LT_PATH_TOOL_PREFIX]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_PATH_TOOL_PREFIX], []) # _LT_PATH_MAGIC # -------------- # find a file program that can recognize a shared library m4_defun([_LT_PATH_MAGIC], [_LT_PATH_TOOL_PREFIX(${ac_tool_prefix}file, /usr/bin$PATH_SEPARATOR$PATH) if test -z "$lt_cv_path_MAGIC_CMD"; then if test -n "$ac_tool_prefix"; then _LT_PATH_TOOL_PREFIX(file, /usr/bin$PATH_SEPARATOR$PATH) else MAGIC_CMD=: fi fi ])# _LT_PATH_MAGIC # LT_PATH_LD # ---------- # find the pathname to the GNU or non-GNU linker AC_DEFUN([LT_PATH_LD], [AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_PROG_ECHO_BACKSLASH])dnl AC_ARG_WITH([gnu-ld], [AS_HELP_STRING([--with-gnu-ld], [assume the C compiler uses GNU ld @<:@default=no@:>@])], [test no = "$withval" || with_gnu_ld=yes], [with_gnu_ld=no])dnl ac_prog=ld if test yes = "$GCC"; then # Check if gcc -print-prog-name=ld gives a path. AC_MSG_CHECKING([for ld used by $CC]) case $host in *-*-mingw*) # gcc leaves a trailing carriage return, which upsets mingw ac_prog=`($CC -print-prog-name=ld) 2>&5 | tr -d '\015'` ;; *) ac_prog=`($CC -print-prog-name=ld) 2>&5` ;; esac case $ac_prog in # Accept absolute paths. [[\\/]]* | ?:[[\\/]]*) re_direlt='/[[^/]][[^/]]*/\.\./' # Canonicalize the pathname of ld ac_prog=`$ECHO "$ac_prog"| $SED 's%\\\\%/%g'` while $ECHO "$ac_prog" | $GREP "$re_direlt" > /dev/null 2>&1; do ac_prog=`$ECHO $ac_prog| $SED "s%$re_direlt%/%"` done test -z "$LD" && LD=$ac_prog ;; "") # If it fails, then pretend we aren't using GCC. ac_prog=ld ;; *) # If it is relative, then search for the first ld in PATH. with_gnu_ld=unknown ;; esac elif test yes = "$with_gnu_ld"; then AC_MSG_CHECKING([for GNU ld]) else AC_MSG_CHECKING([for non-GNU ld]) fi AC_CACHE_VAL(lt_cv_path_LD, [if test -z "$LD"; then lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. if test -f "$ac_dir/$ac_prog" || test -f "$ac_dir/$ac_prog$ac_exeext"; then lt_cv_path_LD=$ac_dir/$ac_prog # Check to see if the program is GNU ld. I'd rather use --version, # but apparently some variants of GNU ld only accept -v. # Break only if it was the GNU/non-GNU ld that we prefer. case `"$lt_cv_path_LD" -v 2>&1 &1 conftest.i cat conftest.i conftest.i >conftest2.i : ${lt_DD:=$DD} AC_PATH_PROGS_FEATURE_CHECK([lt_DD], [dd], [if "$ac_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && ac_cv_path_lt_DD="$ac_path_lt_DD" ac_path_lt_DD_found=: fi]) rm -f conftest.i conftest2.i conftest.out]) ])# _LT_PATH_DD # _LT_CMD_TRUNCATE # ---------------- # find command to truncate a binary pipe m4_defun([_LT_CMD_TRUNCATE], [m4_require([_LT_PATH_DD]) AC_CACHE_CHECK([how to truncate binary pipes], [lt_cv_truncate_bin], [printf 0123456789abcdef0123456789abcdef >conftest.i cat conftest.i conftest.i >conftest2.i lt_cv_truncate_bin= if "$ac_cv_path_lt_DD" bs=32 count=1 conftest.out 2>/dev/null; then cmp -s conftest.i conftest.out \ && lt_cv_truncate_bin="$ac_cv_path_lt_DD bs=4096 count=1" fi rm -f conftest.i conftest2.i conftest.out test -z "$lt_cv_truncate_bin" && lt_cv_truncate_bin="$SED -e 4q"]) _LT_DECL([lt_truncate_bin], [lt_cv_truncate_bin], [1], [Command to truncate a binary pipe]) ])# _LT_CMD_TRUNCATE # _LT_CHECK_MAGIC_METHOD # ---------------------- # how to check for library dependencies # -- PORTME fill in with the dynamic library characteristics m4_defun([_LT_CHECK_MAGIC_METHOD], [m4_require([_LT_DECL_EGREP]) m4_require([_LT_DECL_OBJDUMP]) AC_CACHE_CHECK([how to recognize dependent libraries], lt_cv_deplibs_check_method, [lt_cv_file_magic_cmd='$MAGIC_CMD' lt_cv_file_magic_test_file= lt_cv_deplibs_check_method='unknown' # Need to set the preceding variable on all platforms that support # interlibrary dependencies. # 'none' -- dependencies not supported. # 'unknown' -- same as none, but documents that we really don't know. # 'pass_all' -- all dependencies passed with no checks. # 'test_compile' -- check by making test program. # 'file_magic [[regex]]' -- check by looking for files in library path # that responds to the $file_magic_cmd with a given extended regex. # If you have 'file' or equivalent on your system and you're not sure # whether 'pass_all' will *always* work, you probably want this one. case $host_os in aix[[4-9]]*) lt_cv_deplibs_check_method=pass_all ;; beos*) lt_cv_deplibs_check_method=pass_all ;; bsdi[[45]]*) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (shared object|dynamic lib)' lt_cv_file_magic_cmd='/usr/bin/file -L' lt_cv_file_magic_test_file=/shlib/libc.so ;; cygwin*) # func_win32_libid is a shell function defined in ltmain.sh lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' ;; mingw* | pw32*) # Base MSYS/MinGW do not provide the 'file' command needed by # func_win32_libid shell function, so use a weaker test based on 'objdump', # unless we find 'file', for example because we are cross-compiling. if ( file / ) >/dev/null 2>&1; then lt_cv_deplibs_check_method='file_magic ^x86 archive import|^x86 DLL' lt_cv_file_magic_cmd='func_win32_libid' else # Keep this pattern in sync with the one in func_win32_libid. lt_cv_deplibs_check_method='file_magic file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' lt_cv_file_magic_cmd='$OBJDUMP -f' fi ;; cegcc*) # use the weaker test based on 'objdump'. See mingw*. lt_cv_deplibs_check_method='file_magic file format pe-arm-.*little(.*architecture: arm)?' lt_cv_file_magic_cmd='$OBJDUMP -f' ;; darwin* | rhapsody*) lt_cv_deplibs_check_method=pass_all ;; freebsd* | dragonfly*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then case $host_cpu in i*86 ) # Not sure whether the presence of OpenBSD here was a mistake. # Let's accept both of them until this is cleared up. lt_cv_deplibs_check_method='file_magic (FreeBSD|OpenBSD|DragonFly)/i[[3-9]]86 (compact )?demand paged shared library' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=`echo /usr/lib/libc.so.*` ;; esac else lt_cv_deplibs_check_method=pass_all fi ;; haiku*) lt_cv_deplibs_check_method=pass_all ;; hpux10.20* | hpux11*) lt_cv_file_magic_cmd=/usr/bin/file case $host_cpu in ia64*) lt_cv_deplibs_check_method='file_magic (s[[0-9]][[0-9]][[0-9]]|ELF-[[0-9]][[0-9]]) shared object file - IA64' lt_cv_file_magic_test_file=/usr/lib/hpux32/libc.so ;; hppa*64*) [lt_cv_deplibs_check_method='file_magic (s[0-9][0-9][0-9]|ELF[ -][0-9][0-9])(-bit)?( [LM]SB)? shared object( file)?[, -]* PA-RISC [0-9]\.[0-9]'] lt_cv_file_magic_test_file=/usr/lib/pa20_64/libc.sl ;; *) lt_cv_deplibs_check_method='file_magic (s[[0-9]][[0-9]][[0-9]]|PA-RISC[[0-9]]\.[[0-9]]) shared library' lt_cv_file_magic_test_file=/usr/lib/libc.sl ;; esac ;; interix[[3-9]]*) # PIC code is broken on Interix 3.x, that's why |\.a not |_pic\.a here lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so|\.a)$' ;; irix5* | irix6* | nonstopux*) case $LD in *-32|*"-32 ") libmagic=32-bit;; *-n32|*"-n32 ") libmagic=N32;; *-64|*"-64 ") libmagic=64-bit;; *) libmagic=never-match;; esac lt_cv_deplibs_check_method=pass_all ;; # This must be glibc/ELF. linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) lt_cv_deplibs_check_method=pass_all ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ > /dev/null; then lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so|_pic\.a)$' fi ;; newos6*) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (executable|dynamic lib)' lt_cv_file_magic_cmd=/usr/bin/file lt_cv_file_magic_test_file=/usr/lib/libnls.so ;; *nto* | *qnx*) lt_cv_deplibs_check_method=pass_all ;; openbsd* | bitrig*) if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|\.so|_pic\.a)$' else lt_cv_deplibs_check_method='match_pattern /lib[[^/]]+(\.so\.[[0-9]]+\.[[0-9]]+|_pic\.a)$' fi ;; osf3* | osf4* | osf5*) lt_cv_deplibs_check_method=pass_all ;; rdos*) lt_cv_deplibs_check_method=pass_all ;; solaris*) lt_cv_deplibs_check_method=pass_all ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) lt_cv_deplibs_check_method=pass_all ;; sysv4 | sysv4.3*) case $host_vendor in motorola) lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[ML]]SB (shared object|dynamic lib) M[[0-9]][[0-9]]* Version [[0-9]]' lt_cv_file_magic_test_file=`echo /usr/lib/libc.so*` ;; ncr) lt_cv_deplibs_check_method=pass_all ;; sequent) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method='file_magic ELF [[0-9]][[0-9]]*-bit [[LM]]SB (shared object|dynamic lib )' ;; sni) lt_cv_file_magic_cmd='/bin/file' lt_cv_deplibs_check_method="file_magic ELF [[0-9]][[0-9]]*-bit [[LM]]SB dynamic lib" lt_cv_file_magic_test_file=/lib/libc.so ;; siemens) lt_cv_deplibs_check_method=pass_all ;; pc) lt_cv_deplibs_check_method=pass_all ;; esac ;; tpf*) lt_cv_deplibs_check_method=pass_all ;; os2*) lt_cv_deplibs_check_method=pass_all ;; esac ]) file_magic_glob= want_nocaseglob=no if test "$build" = "$host"; then case $host_os in mingw* | pw32*) if ( shopt | grep nocaseglob ) >/dev/null 2>&1; then want_nocaseglob=yes else file_magic_glob=`echo aAbBcCdDeEfFgGhHiIjJkKlLmMnNoOpPqQrRsStTuUvVwWxXyYzZ | $SED -e "s/\(..\)/s\/[[\1]]\/[[\1]]\/g;/g"` fi ;; esac fi file_magic_cmd=$lt_cv_file_magic_cmd deplibs_check_method=$lt_cv_deplibs_check_method test -z "$deplibs_check_method" && deplibs_check_method=unknown _LT_DECL([], [deplibs_check_method], [1], [Method to check whether dependent libraries are shared objects]) _LT_DECL([], [file_magic_cmd], [1], [Command to use when deplibs_check_method = "file_magic"]) _LT_DECL([], [file_magic_glob], [1], [How to find potential files when deplibs_check_method = "file_magic"]) _LT_DECL([], [want_nocaseglob], [1], [Find potential files using nocaseglob when deplibs_check_method = "file_magic"]) ])# _LT_CHECK_MAGIC_METHOD # LT_PATH_NM # ---------- # find the pathname to a BSD- or MS-compatible name lister AC_DEFUN([LT_PATH_NM], [AC_REQUIRE([AC_PROG_CC])dnl AC_CACHE_CHECK([for BSD- or MS-compatible name lister (nm)], lt_cv_path_NM, [if test -n "$NM"; then # Let the user override the test. lt_cv_path_NM=$NM else lt_nm_to_check=${ac_tool_prefix}nm if test -n "$ac_tool_prefix" && test "$build" = "$host"; then lt_nm_to_check="$lt_nm_to_check nm" fi for lt_tmp_nm in $lt_nm_to_check; do lt_save_ifs=$IFS; IFS=$PATH_SEPARATOR for ac_dir in $PATH /usr/ccs/bin/elf /usr/ccs/bin /usr/ucb /bin; do IFS=$lt_save_ifs test -z "$ac_dir" && ac_dir=. tmp_nm=$ac_dir/$lt_tmp_nm if test -f "$tmp_nm" || test -f "$tmp_nm$ac_exeext"; then # Check to see if the nm accepts a BSD-compat flag. # Adding the 'sed 1q' prevents false positives on HP-UX, which says: # nm: unknown option "B" ignored # Tru64's nm complains that /dev/null is an invalid object file # MSYS converts /dev/null to NUL, MinGW nm treats NUL as empty case $build_os in mingw*) lt_bad_file=conftest.nm/nofile ;; *) lt_bad_file=/dev/null ;; esac case `"$tmp_nm" -B $lt_bad_file 2>&1 | sed '1q'` in *$lt_bad_file* | *'Invalid file or object type'*) lt_cv_path_NM="$tmp_nm -B" break 2 ;; *) case `"$tmp_nm" -p /dev/null 2>&1 | sed '1q'` in */dev/null*) lt_cv_path_NM="$tmp_nm -p" break 2 ;; *) lt_cv_path_NM=${lt_cv_path_NM="$tmp_nm"} # keep the first match, but continue # so that we can try to find one that supports BSD flags ;; esac ;; esac fi done IFS=$lt_save_ifs done : ${lt_cv_path_NM=no} fi]) if test no != "$lt_cv_path_NM"; then NM=$lt_cv_path_NM else # Didn't find any BSD compatible name lister, look for dumpbin. if test -n "$DUMPBIN"; then : # Let the user override the test. else AC_CHECK_TOOLS(DUMPBIN, [dumpbin "link -dump"], :) case `$DUMPBIN -symbols -headers /dev/null 2>&1 | sed '1q'` in *COFF*) DUMPBIN="$DUMPBIN -symbols -headers" ;; *) DUMPBIN=: ;; esac fi AC_SUBST([DUMPBIN]) if test : != "$DUMPBIN"; then NM=$DUMPBIN fi fi test -z "$NM" && NM=nm AC_SUBST([NM]) _LT_DECL([], [NM], [1], [A BSD- or MS-compatible name lister])dnl AC_CACHE_CHECK([the name lister ($NM) interface], [lt_cv_nm_interface], [lt_cv_nm_interface="BSD nm" echo "int some_variable = 0;" > conftest.$ac_ext (eval echo "\"\$as_me:$LINENO: $ac_compile\"" >&AS_MESSAGE_LOG_FD) (eval "$ac_compile" 2>conftest.err) cat conftest.err >&AS_MESSAGE_LOG_FD (eval echo "\"\$as_me:$LINENO: $NM \\\"conftest.$ac_objext\\\"\"" >&AS_MESSAGE_LOG_FD) (eval "$NM \"conftest.$ac_objext\"" 2>conftest.err > conftest.out) cat conftest.err >&AS_MESSAGE_LOG_FD (eval echo "\"\$as_me:$LINENO: output\"" >&AS_MESSAGE_LOG_FD) cat conftest.out >&AS_MESSAGE_LOG_FD if $GREP 'External.*some_variable' conftest.out > /dev/null; then lt_cv_nm_interface="MS dumpbin" fi rm -f conftest*]) ])# LT_PATH_NM # Old names: AU_ALIAS([AM_PROG_NM], [LT_PATH_NM]) AU_ALIAS([AC_PROG_NM], [LT_PATH_NM]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AM_PROG_NM], []) dnl AC_DEFUN([AC_PROG_NM], []) # _LT_CHECK_SHAREDLIB_FROM_LINKLIB # -------------------------------- # how to determine the name of the shared library # associated with a specific link library. # -- PORTME fill in with the dynamic library characteristics m4_defun([_LT_CHECK_SHAREDLIB_FROM_LINKLIB], [m4_require([_LT_DECL_EGREP]) m4_require([_LT_DECL_OBJDUMP]) m4_require([_LT_DECL_DLLTOOL]) AC_CACHE_CHECK([how to associate runtime and link libraries], lt_cv_sharedlib_from_linklib_cmd, [lt_cv_sharedlib_from_linklib_cmd='unknown' case $host_os in cygwin* | mingw* | pw32* | cegcc*) # two different shell functions defined in ltmain.sh; # decide which one to use based on capabilities of $DLLTOOL case `$DLLTOOL --help 2>&1` in *--identify-strict*) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib ;; *) lt_cv_sharedlib_from_linklib_cmd=func_cygming_dll_for_implib_fallback ;; esac ;; *) # fallback: assume linklib IS sharedlib lt_cv_sharedlib_from_linklib_cmd=$ECHO ;; esac ]) sharedlib_from_linklib_cmd=$lt_cv_sharedlib_from_linklib_cmd test -z "$sharedlib_from_linklib_cmd" && sharedlib_from_linklib_cmd=$ECHO _LT_DECL([], [sharedlib_from_linklib_cmd], [1], [Command to associate shared and link libraries]) ])# _LT_CHECK_SHAREDLIB_FROM_LINKLIB # _LT_PATH_MANIFEST_TOOL # ---------------------- # locate the manifest tool m4_defun([_LT_PATH_MANIFEST_TOOL], [AC_CHECK_TOOL(MANIFEST_TOOL, mt, :) test -z "$MANIFEST_TOOL" && MANIFEST_TOOL=mt AC_CACHE_CHECK([if $MANIFEST_TOOL is a manifest tool], [lt_cv_path_mainfest_tool], [lt_cv_path_mainfest_tool=no echo "$as_me:$LINENO: $MANIFEST_TOOL '-?'" >&AS_MESSAGE_LOG_FD $MANIFEST_TOOL '-?' 2>conftest.err > conftest.out cat conftest.err >&AS_MESSAGE_LOG_FD if $GREP 'Manifest Tool' conftest.out > /dev/null; then lt_cv_path_mainfest_tool=yes fi rm -f conftest*]) if test yes != "$lt_cv_path_mainfest_tool"; then MANIFEST_TOOL=: fi _LT_DECL([], [MANIFEST_TOOL], [1], [Manifest tool])dnl ])# _LT_PATH_MANIFEST_TOOL # _LT_DLL_DEF_P([FILE]) # --------------------- # True iff FILE is a Windows DLL '.def' file. # Keep in sync with func_dll_def_p in the libtool script AC_DEFUN([_LT_DLL_DEF_P], [dnl test DEF = "`$SED -n dnl -e '\''s/^[[ ]]*//'\'' dnl Strip leading whitespace -e '\''/^\(;.*\)*$/d'\'' dnl Delete empty lines and comments -e '\''s/^\(EXPORTS\|LIBRARY\)\([[ ]].*\)*$/DEF/p'\'' dnl -e q dnl Only consider the first "real" line $1`" dnl ])# _LT_DLL_DEF_P # LT_LIB_M # -------- # check for math library AC_DEFUN([LT_LIB_M], [AC_REQUIRE([AC_CANONICAL_HOST])dnl LIBM= case $host in *-*-beos* | *-*-cegcc* | *-*-cygwin* | *-*-haiku* | *-*-pw32* | *-*-darwin*) # These system don't have libm, or don't need it ;; *-ncr-sysv4.3*) AC_CHECK_LIB(mw, _mwvalidcheckl, LIBM=-lmw) AC_CHECK_LIB(m, cos, LIBM="$LIBM -lm") ;; *) AC_CHECK_LIB(m, cos, LIBM=-lm) ;; esac AC_SUBST([LIBM]) ])# LT_LIB_M # Old name: AU_ALIAS([AC_CHECK_LIBM], [LT_LIB_M]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([AC_CHECK_LIBM], []) # _LT_COMPILER_NO_RTTI([TAGNAME]) # ------------------------------- m4_defun([_LT_COMPILER_NO_RTTI], [m4_require([_LT_TAG_COMPILER])dnl _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)= if test yes = "$GCC"; then case $cc_basename in nvcc*) _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -Xcompiler -fno-builtin' ;; *) _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -fno-builtin' ;; esac _LT_COMPILER_OPTION([if $compiler supports -fno-rtti -fno-exceptions], lt_cv_prog_compiler_rtti_exceptions, [-fno-rtti -fno-exceptions], [], [_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)="$_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1) -fno-rtti -fno-exceptions"]) fi _LT_TAGDECL([no_builtin_flag], [lt_prog_compiler_no_builtin_flag], [1], [Compiler flag to turn off builtin functions]) ])# _LT_COMPILER_NO_RTTI # _LT_CMD_GLOBAL_SYMBOLS # ---------------------- m4_defun([_LT_CMD_GLOBAL_SYMBOLS], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_PROG_CC])dnl AC_REQUIRE([AC_PROG_AWK])dnl AC_REQUIRE([LT_PATH_NM])dnl AC_REQUIRE([LT_PATH_LD])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_TAG_COMPILER])dnl # Check for command to grab the raw symbol name followed by C symbol from nm. AC_MSG_CHECKING([command to parse $NM output from $compiler object]) AC_CACHE_VAL([lt_cv_sys_global_symbol_pipe], [ # These are sane defaults that work on at least a few old systems. # [They come from Ultrix. What could be older than Ultrix?!! ;)] # Character class describing NM global symbol codes. symcode='[[BCDEGRST]]' # Regexp to match symbols that can be accessed directly from C. sympat='\([[_A-Za-z]][[_A-Za-z0-9]]*\)' # Define system-specific variables. case $host_os in aix*) symcode='[[BCDT]]' ;; cygwin* | mingw* | pw32* | cegcc*) symcode='[[ABCDGISTW]]' ;; hpux*) if test ia64 = "$host_cpu"; then symcode='[[ABCDEGRST]]' fi ;; irix* | nonstopux*) symcode='[[BCDEGRST]]' ;; osf*) symcode='[[BCDEGQRST]]' ;; solaris*) symcode='[[BDRT]]' ;; sco3.2v5*) symcode='[[DT]]' ;; sysv4.2uw2*) symcode='[[DT]]' ;; sysv5* | sco5v6* | unixware* | OpenUNIX*) symcode='[[ABDT]]' ;; sysv4) symcode='[[DFNSTU]]' ;; esac # If we're using GNU nm, then use its standard symbol codes. case `$NM -V 2>&1` in *GNU* | *'with BFD'*) symcode='[[ABCDGIRSTW]]' ;; esac if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Gets list of data symbols to import. lt_cv_sys_global_symbol_to_import="sed -n -e 's/^I .* \(.*\)$/\1/p'" # Adjust the below global symbol transforms to fixup imported variables. lt_cdecl_hook=" -e 's/^I .* \(.*\)$/extern __declspec(dllimport) char \1;/p'" lt_c_name_hook=" -e 's/^I .* \(.*\)$/ {\"\1\", (void *) 0},/p'" lt_c_name_lib_hook="\ -e 's/^I .* \(lib.*\)$/ {\"\1\", (void *) 0},/p'\ -e 's/^I .* \(.*\)$/ {\"lib\1\", (void *) 0},/p'" else # Disable hooks by default. lt_cv_sys_global_symbol_to_import= lt_cdecl_hook= lt_c_name_hook= lt_c_name_lib_hook= fi # Transform an extracted symbol line into a proper C declaration. # Some systems (esp. on ia64) link data and code symbols differently, # so use this general approach. lt_cv_sys_global_symbol_to_cdecl="sed -n"\ $lt_cdecl_hook\ " -e 's/^T .* \(.*\)$/extern int \1();/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/extern char \1;/p'" # Transform an extracted symbol line into symbol name and symbol address lt_cv_sys_global_symbol_to_c_name_address="sed -n"\ $lt_c_name_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/p'" # Transform an extracted symbol line into symbol name with lib prefix and # symbol address. lt_cv_sys_global_symbol_to_c_name_address_lib_prefix="sed -n"\ $lt_c_name_lib_hook\ " -e 's/^: \(.*\) .*$/ {\"\1\", (void *) 0},/p'"\ " -e 's/^$symcode$symcode* .* \(lib.*\)$/ {\"\1\", (void *) \&\1},/p'"\ " -e 's/^$symcode$symcode* .* \(.*\)$/ {\"lib\1\", (void *) \&\1},/p'" # Handle CRLF in mingw tool chain opt_cr= case $build_os in mingw*) opt_cr=`$ECHO 'x\{0,1\}' | tr x '\015'` # option cr in regexp ;; esac # Try without a prefix underscore, then with it. for ac_symprfx in "" "_"; do # Transform symcode, sympat, and symprfx into a raw symbol and a C symbol. symxfrm="\\1 $ac_symprfx\\2 \\2" # Write the raw and C identifiers. if test "$lt_cv_nm_interface" = "MS dumpbin"; then # Fake it for dumpbin and say T for any non-static function, # D for any global variable and I for any imported variable. # Also find C++ and __fastcall symbols from MSVC++, # which start with @ or ?. lt_cv_sys_global_symbol_pipe="$AWK ['"\ " {last_section=section; section=\$ 3};"\ " /^COFF SYMBOL TABLE/{for(i in hide) delete hide[i]};"\ " /Section length .*#relocs.*(pick any)/{hide[last_section]=1};"\ " /^ *Symbol name *: /{split(\$ 0,sn,\":\"); si=substr(sn[2],2)};"\ " /^ *Type *: code/{print \"T\",si,substr(si,length(prfx))};"\ " /^ *Type *: data/{print \"I\",si,substr(si,length(prfx))};"\ " \$ 0!~/External *\|/{next};"\ " / 0+ UNDEF /{next}; / UNDEF \([^|]\)*()/{next};"\ " {if(hide[section]) next};"\ " {f=\"D\"}; \$ 0~/\(\).*\|/{f=\"T\"};"\ " {split(\$ 0,a,/\||\r/); split(a[2],s)};"\ " s[1]~/^[@?]/{print f,s[1],s[1]; next};"\ " s[1]~prfx {split(s[1],t,\"@\"); print f,t[1],substr(t[1],length(prfx))}"\ " ' prfx=^$ac_symprfx]" else lt_cv_sys_global_symbol_pipe="sed -n -e 's/^.*[[ ]]\($symcode$symcode*\)[[ ]][[ ]]*$ac_symprfx$sympat$opt_cr$/$symxfrm/p'" fi lt_cv_sys_global_symbol_pipe="$lt_cv_sys_global_symbol_pipe | sed '/ __gnu_lto/d'" # Check to see that the pipe works correctly. pipe_works=no rm -f conftest* cat > conftest.$ac_ext <<_LT_EOF #ifdef __cplusplus extern "C" { #endif char nm_test_var; void nm_test_func(void); void nm_test_func(void){} #ifdef __cplusplus } #endif int main(){nm_test_var='a';nm_test_func();return(0);} _LT_EOF if AC_TRY_EVAL(ac_compile); then # Now try to grab the symbols. nlist=conftest.nm if AC_TRY_EVAL(NM conftest.$ac_objext \| "$lt_cv_sys_global_symbol_pipe" \> $nlist) && test -s "$nlist"; then # Try sorting and uniquifying the output. if sort "$nlist" | uniq > "$nlist"T; then mv -f "$nlist"T "$nlist" else rm -f "$nlist"T fi # Make sure that we snagged all the symbols we need. if $GREP ' nm_test_var$' "$nlist" >/dev/null; then if $GREP ' nm_test_func$' "$nlist" >/dev/null; then cat <<_LT_EOF > conftest.$ac_ext /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined _WIN32 || defined __CYGWIN__ || defined _WIN32_WCE /* DATA imports from DLLs on WIN32 can't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT@&t@_DLSYM_CONST #elif defined __osf__ /* This system does not cope well with relocations in const data. */ # define LT@&t@_DLSYM_CONST #else # define LT@&t@_DLSYM_CONST const #endif #ifdef __cplusplus extern "C" { #endif _LT_EOF # Now generate the symbol file. eval "$lt_cv_sys_global_symbol_to_cdecl"' < "$nlist" | $GREP -v main >> conftest.$ac_ext' cat <<_LT_EOF >> conftest.$ac_ext /* The mapping between symbol names and symbols. */ LT@&t@_DLSYM_CONST struct { const char *name; void *address; } lt__PROGRAM__LTX_preloaded_symbols[[]] = { { "@PROGRAM@", (void *) 0 }, _LT_EOF $SED "s/^$symcode$symcode* .* \(.*\)$/ {\"\1\", (void *) \&\1},/" < "$nlist" | $GREP -v main >> conftest.$ac_ext cat <<\_LT_EOF >> conftest.$ac_ext {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt__PROGRAM__LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif _LT_EOF # Now try linking the two files. mv conftest.$ac_objext conftstm.$ac_objext lt_globsym_save_LIBS=$LIBS lt_globsym_save_CFLAGS=$CFLAGS LIBS=conftstm.$ac_objext CFLAGS="$CFLAGS$_LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)" if AC_TRY_EVAL(ac_link) && test -s conftest$ac_exeext; then pipe_works=yes fi LIBS=$lt_globsym_save_LIBS CFLAGS=$lt_globsym_save_CFLAGS else echo "cannot find nm_test_func in $nlist" >&AS_MESSAGE_LOG_FD fi else echo "cannot find nm_test_var in $nlist" >&AS_MESSAGE_LOG_FD fi else echo "cannot run $lt_cv_sys_global_symbol_pipe" >&AS_MESSAGE_LOG_FD fi else echo "$progname: failed program was:" >&AS_MESSAGE_LOG_FD cat conftest.$ac_ext >&5 fi rm -rf conftest* conftst* # Do not use the global_symbol_pipe unless it works. if test yes = "$pipe_works"; then break else lt_cv_sys_global_symbol_pipe= fi done ]) if test -z "$lt_cv_sys_global_symbol_pipe"; then lt_cv_sys_global_symbol_to_cdecl= fi if test -z "$lt_cv_sys_global_symbol_pipe$lt_cv_sys_global_symbol_to_cdecl"; then AC_MSG_RESULT(failed) else AC_MSG_RESULT(ok) fi # Response file support. if test "$lt_cv_nm_interface" = "MS dumpbin"; then nm_file_list_spec='@' elif $NM --help 2>/dev/null | grep '[[@]]FILE' >/dev/null; then nm_file_list_spec='@' fi _LT_DECL([global_symbol_pipe], [lt_cv_sys_global_symbol_pipe], [1], [Take the output of nm and produce a listing of raw symbols and C names]) _LT_DECL([global_symbol_to_cdecl], [lt_cv_sys_global_symbol_to_cdecl], [1], [Transform the output of nm in a proper C declaration]) _LT_DECL([global_symbol_to_import], [lt_cv_sys_global_symbol_to_import], [1], [Transform the output of nm into a list of symbols to manually relocate]) _LT_DECL([global_symbol_to_c_name_address], [lt_cv_sys_global_symbol_to_c_name_address], [1], [Transform the output of nm in a C name address pair]) _LT_DECL([global_symbol_to_c_name_address_lib_prefix], [lt_cv_sys_global_symbol_to_c_name_address_lib_prefix], [1], [Transform the output of nm in a C name address pair when lib prefix is needed]) _LT_DECL([nm_interface], [lt_cv_nm_interface], [1], [The name lister interface]) _LT_DECL([], [nm_file_list_spec], [1], [Specify filename containing input files for $NM]) ]) # _LT_CMD_GLOBAL_SYMBOLS # _LT_COMPILER_PIC([TAGNAME]) # --------------------------- m4_defun([_LT_COMPILER_PIC], [m4_require([_LT_TAG_COMPILER])dnl _LT_TAGVAR(lt_prog_compiler_wl, $1)= _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)= m4_if([$1], [CXX], [ # C++ specific cases for pic, static, wl, etc. if test yes = "$GXX"; then _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' case $host_os in aix*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the '-m68020' flag to GCC prevents building anything better, # like '-m68040'. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | os2* | pw32* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) case $host_os in os2*) _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-static' ;; esac ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' ;; *djgpp*) # DJGPP does not support shared libraries at all _LT_TAGVAR(lt_prog_compiler_pic, $1)= ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. _LT_TAGVAR(lt_prog_compiler_static, $1)= ;; interix[[3-9]]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)=-Kconform_pic fi ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac ;; *qnx* | *nto*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac else case $host_os in aix[[4-9]]*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' else _LT_TAGVAR(lt_prog_compiler_static, $1)='-bnso -bI:/lib/syscalls.exp' fi ;; chorus*) case $cc_basename in cxch68*) # Green Hills C++ Compiler # _LT_TAGVAR(lt_prog_compiler_static, $1)="--no_auto_instantiation -u __main -u __premain -u _abort -r $COOL_DIR/lib/libOrb.a $MVME_DIR/lib/CC/libC.a $MVME_DIR/lib/classix/libcx.s.a" ;; esac ;; mingw* | cygwin* | os2* | pw32* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) ;; dgux*) case $cc_basename in ec++*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' ;; ghcx*) # Green Hills C++ Compiler _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; *) ;; esac ;; freebsd* | dragonfly*) # FreeBSD uses GNU C++ ;; hpux9* | hpux10* | hpux11*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-a ${wl}archive' if test ia64 != "$host_cpu"; then _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' fi ;; aCC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-a ${wl}archive' case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' ;; esac ;; *) ;; esac ;; interix*) # This is c89, which is MS Visual C++ (no shared libs) # Anyone wants to do a port? ;; irix5* | irix6* | nonstopux*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' # CC pic flag -KPIC is the default. ;; *) ;; esac ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in KCC*) # KAI C++ Compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='--backend -Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; ecpc* ) # old Intel C++ for x86_64, which still supported -KPIC. _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; icpc* ) # Intel C++, used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; pgCC* | pgcpp*) # Portland Group C++ compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; cxx*) # Compaq C++ # Make sure the PIC flag is empty. It appears that all Alpha # Linux and Compaq Tru64 Unix objects are PIC. _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; xlc* | xlC* | bgxl[[cC]]* | mpixl[[cC]]*) # IBM XL 8.0, 9.0 on PPC and BlueGene _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-qpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; esac ;; esac ;; lynxos*) ;; m88k*) ;; mvs*) case $cc_basename in cxx*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-W c,exportall' ;; *) ;; esac ;; netbsd*) ;; *qnx* | *nto*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; osf3* | osf4* | osf5*) case $cc_basename in KCC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='--backend -Wl,' ;; RCC*) # Rational C++ 2.4.1 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; cxx*) # Digital/Compaq C++ _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # Make sure the PIC flag is empty. It appears that all Alpha # Linux and Compaq Tru64 Unix objects are PIC. _LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; *) ;; esac ;; psos*) ;; solaris*) case $cc_basename in CC* | sunCC*) # Sun C++ 4.2, 5.x and Centerline C++ _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; gcx*) # Green Hills C++ Compiler _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' ;; *) ;; esac ;; sunos4*) case $cc_basename in CC*) # Sun C++ 4.x _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; lcc*) # Lucid _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' ;; *) ;; esac ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) case $cc_basename in CC*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; tandem*) case $cc_basename in NCC*) # NonStop-UX NCC 3.20 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' ;; *) ;; esac ;; vxworks*) ;; *) _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; esac fi ], [ if test yes = "$GCC"; then _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' case $host_os in aix*) # All AIX code is PIC. if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; m68k) # FIXME: we need at least 68020 code to build shared libraries, but # adding the '-m68020' flag to GCC prevents building anything better, # like '-m68040'. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-m68020 -resident32 -malways-restore-a4' ;; esac ;; beos* | irix5* | irix6* | nonstopux* | osf3* | osf4* | osf5*) # PIC is the default for these OSes. ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). # Although the cygwin gcc ignores -fPIC, still need this for old-style # (--disable-auto-import) libraries m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) case $host_os in os2*) _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-static' ;; esac ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' ;; haiku*) # PIC is the default for Haiku. # The "-static" flag exists, but is broken. _LT_TAGVAR(lt_prog_compiler_static, $1)= ;; hpux*) # PIC is the default for 64-bit PA HP-UX, but not for 32-bit # PA HP-UX. On IA64 HP-UX, PIC is the default but the pic flag # sets the default TLS model and affects inlining. case $host_cpu in hppa*64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac ;; interix[[3-9]]*) # Interix 3.x gcc -fpic/-fPIC options generate broken code. # Instead, we relocate shared libraries at runtime. ;; msdosdjgpp*) # Just because we use GCC doesn't mean we suddenly get shared libraries # on systems that don't support them. _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no enable_shared=no ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)=-Kconform_pic fi ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' ;; esac case $cc_basename in nvcc*) # Cuda Compiler Driver 2.2 _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Xlinker ' if test -n "$_LT_TAGVAR(lt_prog_compiler_pic, $1)"; then _LT_TAGVAR(lt_prog_compiler_pic, $1)="-Xcompiler $_LT_TAGVAR(lt_prog_compiler_pic, $1)" fi ;; esac else # PORTME Check for flag to pass linker flags through the system compiler. case $host_os in aix*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' if test ia64 = "$host_cpu"; then # AIX 5 now supports IA64 processor _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' else _LT_TAGVAR(lt_prog_compiler_static, $1)='-bnso -bI:/lib/syscalls.exp' fi ;; darwin* | rhapsody*) # PIC is the default on this platform # Common symbols not allowed in MH_DYLIB files _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fno-common' case $cc_basename in nagfor*) # NAG Fortran compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,-Wl,,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; mingw* | cygwin* | pw32* | os2* | cegcc*) # This hack is so that the source file can tell whether it is being # built for inclusion in a dll (and should export symbols for example). m4_if([$1], [GCJ], [], [_LT_TAGVAR(lt_prog_compiler_pic, $1)='-DDLL_EXPORT']) case $host_os in os2*) _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-static' ;; esac ;; hpux9* | hpux10* | hpux11*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # PIC is the default for IA64 HP-UX and 64-bit HP-UX, but # not for PA HP-UX. case $host_cpu in hppa*64*|ia64*) # +Z the default ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)='+Z' ;; esac # Is there a better lt_prog_compiler_static that works with the bundled CC? _LT_TAGVAR(lt_prog_compiler_static, $1)='$wl-a ${wl}archive' ;; irix5* | irix6* | nonstopux*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # PIC (with -KPIC) is the default. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in # old Intel for x86_64, which still supported -KPIC. ecc*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; # icc used to be incompatible with GCC. # ICC 10 doesn't accept -KPIC any more. icc* | ifort*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; # Lahey Fortran 8.1. lf95*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='--shared' _LT_TAGVAR(lt_prog_compiler_static, $1)='--static' ;; nagfor*) # NAG Fortran compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,-Wl,,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; tcc*) # Fabrice Bellard et al's Tiny C Compiler _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group compilers (*not* the Pentium gcc compiler, # which looks to be a dead project) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; ccc*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # All Alpha code is PIC. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; xl* | bgxl* | bgf* | mpixl*) # IBM XL C 8.0/Fortran 10.1, 11.1 on PPC and BlueGene _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-qpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-qstaticlink' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ Ceres\ Fortran* | *Sun*Fortran*\ [[1-7]].* | *Sun*Fortran*\ 8.[[0-3]]*) # Sun Fortran 8.3 passes all unrecognized flags to the linker _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='' ;; *Sun\ F* | *Sun*Fortran*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' ;; *Sun\ C*) # Sun C 5.9 _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' ;; *Intel*\ [[CF]]*Compiler*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-static' ;; *Portland\ Group*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fpic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; esac ;; esac ;; newsos6) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; *nto* | *qnx*) # QNX uses GNU C++, but need to define -shared option too, otherwise # it will coredump. _LT_TAGVAR(lt_prog_compiler_pic, $1)='-fPIC -shared' ;; osf3* | osf4* | osf5*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' # All OSF/1 code is PIC. _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; rdos*) _LT_TAGVAR(lt_prog_compiler_static, $1)='-non_shared' ;; solaris*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ';; *) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,';; esac ;; sunos4*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Qoption ld ' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-PIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; sysv4 | sysv4.2uw2* | sysv4.3*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(lt_prog_compiler_pic, $1)='-Kconform_pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' fi ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_pic, $1)='-KPIC' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; unicos*) _LT_TAGVAR(lt_prog_compiler_wl, $1)='-Wl,' _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; uts4*) _LT_TAGVAR(lt_prog_compiler_pic, $1)='-pic' _LT_TAGVAR(lt_prog_compiler_static, $1)='-Bstatic' ;; *) _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no ;; esac fi ]) case $host_os in # For platforms that do not support PIC, -DPIC is meaningless: *djgpp*) _LT_TAGVAR(lt_prog_compiler_pic, $1)= ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)="$_LT_TAGVAR(lt_prog_compiler_pic, $1)@&t@m4_if([$1],[],[ -DPIC],[m4_if([$1],[CXX],[ -DPIC],[])])" ;; esac AC_CACHE_CHECK([for $compiler option to produce PIC], [_LT_TAGVAR(lt_cv_prog_compiler_pic, $1)], [_LT_TAGVAR(lt_cv_prog_compiler_pic, $1)=$_LT_TAGVAR(lt_prog_compiler_pic, $1)]) _LT_TAGVAR(lt_prog_compiler_pic, $1)=$_LT_TAGVAR(lt_cv_prog_compiler_pic, $1) # # Check to make sure the PIC flag actually works. # if test -n "$_LT_TAGVAR(lt_prog_compiler_pic, $1)"; then _LT_COMPILER_OPTION([if $compiler PIC flag $_LT_TAGVAR(lt_prog_compiler_pic, $1) works], [_LT_TAGVAR(lt_cv_prog_compiler_pic_works, $1)], [$_LT_TAGVAR(lt_prog_compiler_pic, $1)@&t@m4_if([$1],[],[ -DPIC],[m4_if([$1],[CXX],[ -DPIC],[])])], [], [case $_LT_TAGVAR(lt_prog_compiler_pic, $1) in "" | " "*) ;; *) _LT_TAGVAR(lt_prog_compiler_pic, $1)=" $_LT_TAGVAR(lt_prog_compiler_pic, $1)" ;; esac], [_LT_TAGVAR(lt_prog_compiler_pic, $1)= _LT_TAGVAR(lt_prog_compiler_can_build_shared, $1)=no]) fi _LT_TAGDECL([pic_flag], [lt_prog_compiler_pic], [1], [Additional compiler flags for building library objects]) _LT_TAGDECL([wl], [lt_prog_compiler_wl], [1], [How to pass a linker flag through the compiler]) # # Check to make sure the static flag actually works. # wl=$_LT_TAGVAR(lt_prog_compiler_wl, $1) eval lt_tmp_static_flag=\"$_LT_TAGVAR(lt_prog_compiler_static, $1)\" _LT_LINKER_OPTION([if $compiler static flag $lt_tmp_static_flag works], _LT_TAGVAR(lt_cv_prog_compiler_static_works, $1), $lt_tmp_static_flag, [], [_LT_TAGVAR(lt_prog_compiler_static, $1)=]) _LT_TAGDECL([link_static_flag], [lt_prog_compiler_static], [1], [Compiler flag to prevent dynamic linking]) ])# _LT_COMPILER_PIC # _LT_LINKER_SHLIBS([TAGNAME]) # ---------------------------- # See if the linker supports building shared libraries. m4_defun([_LT_LINKER_SHLIBS], [AC_REQUIRE([LT_PATH_LD])dnl AC_REQUIRE([LT_PATH_NM])dnl m4_require([_LT_PATH_MANIFEST_TOOL])dnl m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_DECL_SED])dnl m4_require([_LT_CMD_GLOBAL_SYMBOLS])dnl m4_require([_LT_TAG_COMPILER])dnl AC_MSG_CHECKING([whether the $compiler linker ($LD) supports shared libraries]) m4_if([$1], [CXX], [ _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*'] case $host_os in aix[[4-9]]*) # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to GNU nm, but means don't demangle to AIX nm. # Without the "-l" option, or with the "-B" option, AIX nm treats # weak defined symbols like other global defined symbols, whereas # GNU nm marks them as "W". # While the 'weak' keyword is ignored in the Export File, we need # it in the Import File for the 'aix-soname' feature, so we have # to replace the "-B" option with "-P" for AIX nm. if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then _LT_TAGVAR(export_symbols_cmds, $1)='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && ([substr](\$ 3,1,1) != ".")) { if (\$ 2 == "W") { print \$ 3 " weak" } else { print \$ 3 } } }'\'' | sort -u > $export_symbols' else _LT_TAGVAR(export_symbols_cmds, $1)='`func_echo_all $NM | $SED -e '\''s/B\([[^B]]*\)$/P\1/'\''` -PCpgl $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) && ([substr](\$ 1,1,1) != ".")) { if ((\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) { print \$ 1 " weak" } else { print \$ 1 } } }'\'' | sort -u > $export_symbols' fi ;; pw32*) _LT_TAGVAR(export_symbols_cmds, $1)=$ltdll_cmds ;; cygwin* | mingw* | cegcc*) case $cc_basename in cl*) _LT_TAGVAR(exclude_expsyms, $1)='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' ;; *) _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1 DATA/;s/^.*[[ ]]__nm__\([[^ ]]*\)[[ ]][[^ ]]*/\1 DATA/;/^I[[ ]]/d;/^[[AITW]][[ ]]/s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname'] ;; esac ;; *) _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' ;; esac ], [ runpath_var= _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_cmds, $1)= _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(compiler_needs_object, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED '\''s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(old_archive_from_new_cmds, $1)= _LT_TAGVAR(old_archive_from_expsyms_cmds, $1)= _LT_TAGVAR(thread_safe_flag_spec, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= # include_expsyms should be a list of space-separated symbols to be *always* # included in the symbol list _LT_TAGVAR(include_expsyms, $1)= # exclude_expsyms can be an extended regexp of symbols to exclude # it will be wrapped by ' (' and ')$', so one must not match beginning or # end of line. Example: 'a|bc|.*d.*' will exclude the symbols 'a' and 'bc', # as well as any symbol that contains 'd'. _LT_TAGVAR(exclude_expsyms, $1)=['_GLOBAL_OFFSET_TABLE_|_GLOBAL__F[ID]_.*'] # Although _GLOBAL_OFFSET_TABLE_ is a valid symbol C name, most a.out # platforms (ab)use it in PIC code, but their linkers get confused if # the symbol is explicitly referenced. Since portable code cannot # rely on this symbol name, it's probably fine to never include it in # preloaded symbol tables. # Exclude shared library initialization/finalization symbols. dnl Note also adjust exclude_expsyms for C++ above. extract_expsyms_cmds= case $host_os in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test yes != "$GCC"; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd* | bitrig*) with_gnu_ld=no ;; esac _LT_TAGVAR(ld_shlibs, $1)=yes # On some targets, GNU ld is compatible enough with the native linker # that we're better off using the native interface for both. lt_use_gnu_ld_interface=no if test yes = "$with_gnu_ld"; then case $host_os in aix*) # The AIX port of GNU ld has always aspired to compatibility # with the native linker. However, as the warning in the GNU ld # block says, versions before 2.19.5* couldn't really create working # shared libraries, regardless of the interface used. case `$LD -v 2>&1` in *\ \(GNU\ Binutils\)\ 2.19.5*) ;; *\ \(GNU\ Binutils\)\ 2.[[2-9]]*) ;; *\ \(GNU\ Binutils\)\ [[3-9]]*) ;; *) lt_use_gnu_ld_interface=yes ;; esac ;; *) lt_use_gnu_ld_interface=yes ;; esac fi if test yes = "$lt_use_gnu_ld_interface"; then # If archive_cmds runs LD, not CC, wlarc should be empty wlarc='$wl' # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. runpath_var=LD_RUN_PATH _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' # ancient GNU ld didn't support --whole-archive et. al. if $LD --help 2>&1 | $GREP 'no-whole-archive' > /dev/null; then _LT_TAGVAR(whole_archive_flag_spec, $1)=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' else _LT_TAGVAR(whole_archive_flag_spec, $1)= fi supports_anon_versioning=no case `$LD -v | $SED -e 's/([^)]\+)\s\+//' 2>&1` in *GNU\ gold*) supports_anon_versioning=yes ;; *\ [[01]].* | *\ 2.[[0-9]].* | *\ 2.10.*) ;; # catch versions < 2.11 *\ 2.11.93.0.2\ *) supports_anon_versioning=yes ;; # RH7.3 ... *\ 2.11.92.0.12\ *) supports_anon_versioning=yes ;; # Mandrake 8.2 ... *\ 2.11.*) ;; # other 2.11 versions *) supports_anon_versioning=yes ;; esac # See if GNU ld supports shared libraries. case $host_os in aix[[3-9]]*) # On AIX/PPC, the GNU linker is very broken if test ia64 != "$host_cpu"; then _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: the GNU linker, at least up to release 2.19, is reported *** to be unable to reliably create shared libraries on AIX. *** Therefore, libtool is disabling shared libraries support. If you *** really care for shared libraries, you may want to install binutils *** 2.20 or above, or modify your PATH so that a non-GNU linker is found. *** You will then need to restart the configuration process. _LT_EOF fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='' ;; m68k) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME _LT_TAGVAR(archive_cmds, $1)='$CC -nostart $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # _LT_TAGVAR(hardcode_libdir_flag_spec, $1) is actually meaningless, # as there is no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-all-symbols' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1 DATA/;s/^.*[[ ]]__nm__\([[^ ]]*\)[[ ]][[^ ]]*/\1 DATA/;/^I[[ ]]/d;/^[[AITW]][[ ]]/s/.* //'\'' | sort | uniq > $export_symbols' _LT_TAGVAR(exclude_expsyms, $1)=['[_]+GLOBAL_OFFSET_TABLE_|[_]+GLOBAL__[FID]_.*|[_]+head_[A-Za-z0-9_]+_dll|[A-Za-z0-9_]+_dll_iname'] if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file, use it as # is; otherwise, prepend EXPORTS... _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared $output_objdir/$soname.def $libobjs $deplibs $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; haiku*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(link_all_deplibs, $1)=yes ;; os2*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=unsupported shrext_cmds=.dll _LT_TAGVAR(archive_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(archive_expsym_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(old_archive_From_new_cmds, $1)='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; interix[[3-9]]*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='sed "s|^|_|" $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--retain-symbols-file,$output_objdir/$soname.expsym $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) tmp_diet=no if test linux-dietlibc = "$host_os"; then case $cc_basename in diet\ *) tmp_diet=yes;; # linux-dietlibc with static linking (!diet-dyn) esac fi if $LD --help 2>&1 | $EGREP ': supported targets:.* elf' > /dev/null \ && test no = "$tmp_diet" then tmp_addflag=' $pic_flag' tmp_sharedflag='-shared' case $cc_basename,$host_cpu in pgcc*) # Portland Group C compiler _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag' ;; pgf77* | pgf90* | pgf95* | pgfortran*) # Portland Group f77 and f90 compilers _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' tmp_addflag=' $pic_flag -Mnomain' ;; ecc*,ia64* | icc*,ia64*) # Intel C compiler on ia64 tmp_addflag=' -i_dynamic' ;; efc*,ia64* | ifort*,ia64*) # Intel Fortran compiler on ia64 tmp_addflag=' -i_dynamic -nofor_main' ;; ifc* | ifort*) # Intel Fortran compiler tmp_addflag=' -nofor_main' ;; lf95*) # Lahey Fortran 8.1 _LT_TAGVAR(whole_archive_flag_spec, $1)= tmp_sharedflag='--shared' ;; nagfor*) # NAGFOR 5.3 tmp_sharedflag='-Wl,-shared' ;; xl[[cC]]* | bgxl[[cC]]* | mpixl[[cC]]*) # IBM XL C 8.0 on PPC (deal with xlf below) tmp_sharedflag='-qmkshrobj' tmp_addflag= ;; nvcc*) # Cuda Compiler Driver 2.2 _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes ;; esac case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C 5.9 _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes tmp_sharedflag='-G' ;; *Sun\ F*) # Sun Fortran 8.3 tmp_sharedflag='-G' ;; esac _LT_TAGVAR(archive_cmds, $1)='$CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' if test yes = "$supports_anon_versioning"; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC '"$tmp_sharedflag""$tmp_addflag"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-version-script $wl$output_objdir/$libname.ver -o $lib' fi case $cc_basename in tcc*) _LT_TAGVAR(export_dynamic_flag_spec, $1)='-rdynamic' ;; xlf* | bgf* | bgxlf* | mpixlf*) # IBM XL Fortran 10.1 on PPC cannot create shared libs itself _LT_TAGVAR(whole_archive_flag_spec, $1)='--whole-archive$convenience --no-whole-archive' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(archive_cmds, $1)='$LD -shared $libobjs $deplibs $linker_flags -soname $soname -o $lib' if test yes = "$supports_anon_versioning"; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $LD -shared $libobjs $deplibs $linker_flags -soname $soname -version-script $output_objdir/$libname.ver -o $lib' fi ;; esac else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable $libobjs $deplibs $linker_flags -o $lib' wlarc= else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' fi ;; solaris*) if $LD -v 2>&1 | $GREP 'BFD 2\.8' > /dev/null; then _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: The releases 2.8.* of the GNU linker cannot reliably *** create shared libraries on Solaris systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.9.1 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF elif $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [[01]].* | *\ 2.[[0-9]].* | *\ 2.1[[0-5]].*) _LT_TAGVAR(ld_shlibs, $1)=no cat <<_LT_EOF 1>&2 *** Warning: Releases of the GNU linker prior to 2.16.91.0.3 cannot *** reliably create shared libraries on SCO systems. Therefore, libtool *** is disabling shared libraries support. We urge you to upgrade GNU *** binutils to release 2.16.91.0.3 or newer. Another option is to modify *** your PATH or compiler configuration so that the native linker is *** used, and then restart. _LT_EOF ;; *) # For security reasons, it is highly recommended that you always # use absolute paths for naming shared libraries, and exclude the # DT_RUNPATH tag from executables and libraries. But doing so # requires that you compile everything twice, which is a pain. if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; sunos4*) _LT_TAGVAR(archive_cmds, $1)='$LD -assert pure-text -Bshareable -o $lib $libobjs $deplibs $linker_flags' wlarc= _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac if test no = "$_LT_TAGVAR(ld_shlibs, $1)"; then runpath_var= _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= fi else # PORTME fill in a description of your system's linker (not GNU ld) case $host_os in aix3*) _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(archive_expsym_cmds, $1)='$LD -o $output_objdir/$soname $libobjs $deplibs $linker_flags -bE:$export_symbols -T512 -H512 -bM:SRE~$AR $AR_FLAGS $lib $output_objdir/$soname' # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. _LT_TAGVAR(hardcode_minus_L, $1)=yes if test yes = "$GCC" && test -z "$lt_prog_compiler_static"; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. _LT_TAGVAR(hardcode_direct, $1)=unsupported fi ;; aix[[4-9]]*) if test ia64 = "$host_cpu"; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag= else # If we're using GNU nm, then we don't want the "-C" option. # -C means demangle to GNU nm, but means don't demangle to AIX nm. # Without the "-l" option, or with the "-B" option, AIX nm treats # weak defined symbols like other global defined symbols, whereas # GNU nm marks them as "W". # While the 'weak' keyword is ignored in the Export File, we need # it in the Import File for the 'aix-soname' feature, so we have # to replace the "-B" option with "-P" for AIX nm. if $NM -V 2>&1 | $GREP 'GNU' > /dev/null; then _LT_TAGVAR(export_symbols_cmds, $1)='$NM -Bpg $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W")) && ([substr](\$ 3,1,1) != ".")) { if (\$ 2 == "W") { print \$ 3 " weak" } else { print \$ 3 } } }'\'' | sort -u > $export_symbols' else _LT_TAGVAR(export_symbols_cmds, $1)='`func_echo_all $NM | $SED -e '\''s/B\([[^B]]*\)$/P\1/'\''` -PCpgl $libobjs $convenience | awk '\''{ if (((\$ 2 == "T") || (\$ 2 == "D") || (\$ 2 == "B") || (\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) && ([substr](\$ 1,1,1) != ".")) { if ((\$ 2 == "W") || (\$ 2 == "V") || (\$ 2 == "Z")) { print \$ 1 " weak" } else { print \$ 1 } } }'\'' | sort -u > $export_symbols' fi aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # have runtime linking enabled, and use it for executables. # For shared libraries, we enable/disable runtime linking # depending on the kind of the shared library created - # when "with_aix_soname,aix_use_runtimelinking" is: # "aix,no" lib.a(lib.so.V) shared, rtl:no, for executables # "aix,yes" lib.so shared, rtl:yes, for executables # lib.a static archive # "both,no" lib.so.V(shr.o) shared, rtl:yes # lib.a(lib.so.V) shared, rtl:no, for executables # "both,yes" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a(lib.so.V) shared, rtl:no # "svr4,*" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a static archive case $host_os in aix4.[[23]]|aix4.[[23]].*|aix[[5-9]]*) for ld_flag in $LDFLAGS; do if (test x-brtl = "x$ld_flag" || test x-Wl,-brtl = "x$ld_flag"); then aix_use_runtimelinking=yes break fi done if test svr4,no = "$with_aix_soname,$aix_use_runtimelinking"; then # With aix-soname=svr4, we create the lib.so.V shared archives only, # so we don't have lib.a shared libs to link our executables. # We have to force runtime linking in this case. aix_use_runtimelinking=yes LDFLAGS="$LDFLAGS -Wl,-brtl" fi ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. _LT_TAGVAR(archive_cmds, $1)='' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(file_list_spec, $1)='$wl-f,' case $with_aix_soname,$aix_use_runtimelinking in aix,*) ;; # traditional, no import file svr4,* | *,yes) # use import file # The Import File defines what to hardcode. _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no ;; esac if test yes = "$GCC"; then case $host_os in aix4.[[012]]|aix4.[[012]].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`$CC -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 _LT_TAGVAR(hardcode_direct, $1)=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)= fi ;; esac shared_flag='-shared' if test yes = "$aix_use_runtimelinking"; then shared_flag="$shared_flag "'$wl-G' fi # Need to ensure runtime linking is disabled for the traditional # shared library, or the linker may eventually find shared libraries # /with/ Import File - we do not want to mix them. shared_flag_aix='-shared' shared_flag_svr4='-shared $wl-G' else # not using gcc if test ia64 = "$host_cpu"; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test yes = "$aix_use_runtimelinking"; then shared_flag='$wl-G' else shared_flag='$wl-bM:SRE' fi shared_flag_aix='$wl-bM:SRE' shared_flag_svr4='$wl-G' fi fi _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to export. _LT_TAGVAR(always_export_symbols, $1)=yes if test aix,yes = "$with_aix_soname,$aix_use_runtimelinking"; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. _LT_TAGVAR(allow_undefined_flag, $1)='-berok' # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $deplibs $wl'$no_entry_flag' $compiler_flags `if test -n "$allow_undefined_flag"; then func_echo_all "$wl$allow_undefined_flag"; else :; fi` $wl'$exp_sym_flag:\$export_symbols' '$shared_flag else if test ia64 = "$host_cpu"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R $libdir:/usr/lib:/lib' _LT_TAGVAR(allow_undefined_flag, $1)="-z nodefs" _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\$wl$no_entry_flag"' $compiler_flags $wl$allow_undefined_flag '"\$wl$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. _LT_TAGVAR(no_undefined_flag, $1)=' $wl-bernotok' _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-berok' if test yes = "$with_gnu_ld"; then # We only use this code for GNU lds that support --whole-archive. _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive$convenience $wl--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives _LT_TAGVAR(whole_archive_flag_spec, $1)='$convenience' fi _LT_TAGVAR(archive_cmds_need_lc, $1)=yes _LT_TAGVAR(archive_expsym_cmds, $1)='$RM -r $output_objdir/$realname.d~$MKDIR $output_objdir/$realname.d' # -brtl affects multiple linker settings, -berok does not and is overridden later compiler_flags_filtered='`func_echo_all "$compiler_flags " | $SED -e "s%-brtl\\([[, ]]\\)%-berok\\1%g"`' if test svr4 != "$with_aix_soname"; then # This is similar to how AIX traditionally builds its shared libraries. _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_aix' -o $output_objdir/$realname.d/$soname $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$realname.d/$soname' fi if test aix != "$with_aix_soname"; then _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_svr4' -o $output_objdir/$realname.d/$shared_archive_member_spec.o $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$STRIP -e $output_objdir/$realname.d/$shared_archive_member_spec.o~( func_echo_all "#! $soname($shared_archive_member_spec.o)"; if test shr_64 = "$shared_archive_member_spec"; then func_echo_all "# 64"; else func_echo_all "# 32"; fi; cat $export_symbols ) > $output_objdir/$realname.d/$shared_archive_member_spec.imp~$AR $AR_FLAGS $output_objdir/$soname $output_objdir/$realname.d/$shared_archive_member_spec.o $output_objdir/$realname.d/$shared_archive_member_spec.imp' else # used by -dlpreopen to get the symbols _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$MV $output_objdir/$realname.d/$soname $output_objdir' fi _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$RM -r $output_objdir/$realname.d' fi fi ;; amigaos*) case $host_cpu in powerpc) # see comment about AmigaOS4 .so support _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='' ;; m68k) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/a2ixlibrary.data~$ECHO "#define NAME $libname" > $output_objdir/a2ixlibrary.data~$ECHO "#define LIBRARY_ID 1" >> $output_objdir/a2ixlibrary.data~$ECHO "#define VERSION $major" >> $output_objdir/a2ixlibrary.data~$ECHO "#define REVISION $revision" >> $output_objdir/a2ixlibrary.data~$AR $AR_FLAGS $lib $libobjs~$RANLIB $lib~(cd $output_objdir && a2ixlibrary -32)' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac ;; bsdi[[45]]*) _LT_TAGVAR(export_dynamic_flag_spec, $1)=-rdynamic ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. case $cc_basename in cl*) # Native MSVC _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(file_list_spec, $1)='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~linknames=' _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp "$export_symbols" "$output_objdir/$soname.def"; echo "$tool_output_objdir$soname.def" > "$output_objdir/$soname.exp"; else $SED -e '\''s/^/-link -EXPORT:/'\'' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes _LT_TAGVAR(exclude_expsyms, $1)='_NULL_IMPORT_DESCRIPTOR|_IMPORT_DESCRIPTOR_.*' _LT_TAGVAR(export_symbols_cmds, $1)='$NM $libobjs $convenience | $global_symbol_pipe | $SED -e '\''/^[[BCDGRS]][[ ]]/s/.*[[ ]]\([[^ ]]*\)/\1,DATA/'\'' | $SED -e '\''/^[[AITW]][[ ]]/s/.*[[ ]]//'\'' | sort | uniq > $export_symbols' # Don't use ranlib _LT_TAGVAR(old_postinstall_cmds, $1)='chmod 644 $oldlib' _LT_TAGVAR(postlink_cmds, $1)='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile=$lt_outputfile.exe lt_tool_outputfile=$lt_tool_outputfile.exe ;; esac~ if test : != "$MANIFEST_TOOL" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # Assume MSVC wrapper _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $lib $libobjs $compiler_flags `func_echo_all "$deplibs" | $SED '\''s/ -lc$//'\''` -link -dll~linknames=' # The linker will automatically build a .lib file if we build a DLL. _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' # FIXME: Should let the user specify the lib program. _LT_TAGVAR(old_archive_cmds, $1)='lib -OUT:$oldlib$oldobjs$old_deplibs' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; esac ;; darwin* | rhapsody*) _LT_DARWIN_LINKER_FEATURES($1) ;; dgux*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # FreeBSD 2.2.[012] allows us to include c++rt0.o to get C++ constructor # support. Future versions do this automatically, but an explicit c++rt0.o # does not break anything, and helps significantly (at the cost of a little # extra space). freebsd2.2*) _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags /usr/lib/c++rt0.o' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # Unfortunately, older versions of FreeBSD 2 do not have this feature. freebsd2.*) _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; # FreeBSD 3 and greater uses gcc -shared to do shared libraries. freebsd* | dragonfly*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; hpux9*) if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -shared $pic_flag $wl+b $wl$install_libdir -o $output_objdir/$soname $libobjs $deplibs $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' else _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$LD -b +b $install_libdir -o $output_objdir/$soname $libobjs $deplibs $linker_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_direct, $1)=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' ;; hpux10*) if test yes,no = "$GCC,$with_gnu_ld"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags' fi if test no = "$with_gnu_ld"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes fi ;; hpux11*) if test yes,no = "$GCC,$with_gnu_ld"; then case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags' ;; esac else case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+nodefaultrpath -o $lib $libobjs $deplibs $compiler_flags' ;; *) m4_if($1, [], [ # Older versions of the 11.00 compiler do not understand -b yet # (HP92453-01 A.11.01.20 doesn't, HP92453-01 B.11.X.35175-35176.GP does) _LT_LINKER_OPTION([if $CC understands -b], _LT_TAGVAR(lt_cv_prog_compiler__b, $1), [-b], [_LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags'], [_LT_TAGVAR(archive_cmds, $1)='$LD -b +h $soname +b $install_libdir -o $lib $libobjs $deplibs $linker_flags'])], [_LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $libobjs $deplibs $compiler_flags']) ;; esac fi if test no = "$with_gnu_ld"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: case $host_cpu in hppa*64*|ia64*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. _LT_TAGVAR(hardcode_minus_L, $1)=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' # Try to use the -exported_symbol ld option, if it does not # work, assume that -exports_file does not work either and # implicitly export all symbols. # This should be the same for all languages, so no per-tag cache variable. AC_CACHE_CHECK([whether the $host_os linker accepts -exported_symbol], [lt_cv_irix_exported_symbol], [save_LDFLAGS=$LDFLAGS LDFLAGS="$LDFLAGS -shared $wl-exported_symbol ${wl}foo $wl-update_registry $wl/dev/null" AC_LINK_IFELSE( [AC_LANG_SOURCE( [AC_LANG_CASE([C], [[int foo (void) { return 0; }]], [C++], [[int foo (void) { return 0; }]], [Fortran 77], [[ subroutine foo end]], [Fortran], [[ subroutine foo end]])])], [lt_cv_irix_exported_symbol=yes], [lt_cv_irix_exported_symbol=no]) LDFLAGS=$save_LDFLAGS]) if test yes = "$lt_cv_irix_exported_symbol"; then _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations $wl-exports_file $wl$export_symbols -o $lib' fi else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -exports_file $export_symbols -o $lib' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(inherit_rpath, $1)=yes _LT_TAGVAR(link_all_deplibs, $1)=yes ;; linux*) case $cc_basename in tcc*) # Fabrice Bellard et al's Tiny C Compiler _LT_TAGVAR(ld_shlibs, $1)=yes _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $libobjs $deplibs $linker_flags' # a.out else _LT_TAGVAR(archive_cmds, $1)='$LD -shared -o $lib $libobjs $deplibs $linker_flags' # ELF fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; newsos6) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *nto* | *qnx*) ;; openbsd* | bitrig*) if test -f /usr/libexec/ld.so; then _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=yes if test -z "`echo __ELF__ | $CC -E - | $GREP __ELF__`"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags $wl-retain-symbols-file,$export_symbols' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' fi else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; os2*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=unsupported shrext_cmds=.dll _LT_TAGVAR(archive_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(archive_expsym_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(old_archive_From_new_cmds, $1)='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; osf3*) if test yes = "$GCC"; then _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' else _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: ;; osf4* | osf5*) # as osf3* with the addition of -msym flag if test yes = "$GCC"; then _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $pic_flag $libobjs $deplibs $compiler_flags $wl-msym $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' else _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $libobjs $deplibs $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done; printf "%s\\n" "-hidden">> $lib.exp~ $CC -shared$allow_undefined_flag $wl-input $wl$lib.exp $compiler_flags $libobjs $deplibs -soname $soname `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib~$RM $lib.exp' # Both c and cxx compiler support -rpath directly _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' fi _LT_TAGVAR(archive_cmds_need_lc, $1)='no' _LT_TAGVAR(hardcode_libdir_separator, $1)=: ;; solaris*) _LT_TAGVAR(no_undefined_flag, $1)=' -z defs' if test yes = "$GCC"; then wlarc='$wl' _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $wl-z ${wl}text $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag $wl-z ${wl}text $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' else case `$CC -V 2>&1` in *"Compilers 5.0"*) wlarc='' _LT_TAGVAR(archive_cmds, $1)='$LD -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $LD -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $linker_flags~$RM $lib.exp' ;; *) wlarc='$wl' _LT_TAGVAR(archive_cmds, $1)='$CC -G$allow_undefined_flag -h $soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G$allow_undefined_flag -M $lib.exp -h $soname -o $lib $libobjs $deplibs $compiler_flags~$RM $lib.exp' ;; esac fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands '-z linker_flag'. GCC discards it without '$wl', # but is careful enough not to reorder. # Supported since Solaris 2.6 (maybe 2.5.1?) if test yes = "$GCC"; then _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl-z ${wl}allextract$convenience $wl-z ${wl}defaultextract' else _LT_TAGVAR(whole_archive_flag_spec, $1)='-z allextract$convenience -z defaultextract' fi ;; esac _LT_TAGVAR(link_all_deplibs, $1)=yes ;; sunos4*) if test sequent = "$host_vendor"; then # Use $CC to link under sequent, because it throws in some extra .o # files that make .init and .fini sections work. _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h $soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$LD -assert pure-text -Bstatic -o $lib $libobjs $deplibs $linker_flags' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; sysv4) case $host_vendor in sni) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=yes # is this really true??? ;; siemens) ## LD is ld it makes a PLAMLIB ## CC just makes a GrossModule. _LT_TAGVAR(archive_cmds, $1)='$LD -G -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(reload_cmds, $1)='$CC -r -o $output$reload_objs' _LT_TAGVAR(hardcode_direct, $1)=no ;; motorola) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_direct, $1)=no #Motorola manual says yes, but my tests say they lie ;; esac runpath_var='LD_RUN_PATH' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; sysv4.3*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)='-Bexport' ;; sysv4*MP*) if test -d /usr/nec; then _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var=LD_RUN_PATH hardcode_runpath_var=yes _LT_TAGVAR(ld_shlibs, $1)=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[[01]].[[10]]* | unixware7* | sco3.2v5.0.[[024]]*) _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We CANNOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(allow_undefined_flag, $1)='$wl-z,nodefs' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-Bexport' runpath_var='LD_RUN_PATH' if test yes = "$GCC"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' else _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' fi ;; uts4*) _LT_TAGVAR(archive_cmds, $1)='$LD -G -h $soname -o $lib $libobjs $deplibs $linker_flags' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(ld_shlibs, $1)=no ;; esac if test sni = "$host_vendor"; then case $host in sysv4 | sysv4.2uw2* | sysv4.3* | sysv5*) _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-Blargedynsym' ;; esac fi fi ]) AC_MSG_RESULT([$_LT_TAGVAR(ld_shlibs, $1)]) test no = "$_LT_TAGVAR(ld_shlibs, $1)" && can_build_shared=no _LT_TAGVAR(with_gnu_ld, $1)=$with_gnu_ld _LT_DECL([], [libext], [0], [Old archive suffix (normally "a")])dnl _LT_DECL([], [shrext_cmds], [1], [Shared library suffix (normally ".so")])dnl _LT_DECL([], [extract_expsyms_cmds], [2], [The commands to extract the exported symbol list from a shared archive]) # # Do we need to explicitly link libc? # case "x$_LT_TAGVAR(archive_cmds_need_lc, $1)" in x|xyes) # Assume -lc should be added _LT_TAGVAR(archive_cmds_need_lc, $1)=yes if test yes,yes = "$GCC,$enable_shared"; then case $_LT_TAGVAR(archive_cmds, $1) in *'~'*) # FIXME: we may have to deal with multi-command sequences. ;; '$CC '*) # Test whether the compiler implicitly links with -lc since on some # systems, -lgcc has to come before -lc. If gcc already passes -lc # to ld, don't add -lc before -lgcc. AC_CACHE_CHECK([whether -lc should be explicitly linked in], [lt_cv_]_LT_TAGVAR(archive_cmds_need_lc, $1), [$RM conftest* echo "$lt_simple_compile_test_code" > conftest.$ac_ext if AC_TRY_EVAL(ac_compile) 2>conftest.err; then soname=conftest lib=conftest libobjs=conftest.$ac_objext deplibs= wl=$_LT_TAGVAR(lt_prog_compiler_wl, $1) pic_flag=$_LT_TAGVAR(lt_prog_compiler_pic, $1) compiler_flags=-v linker_flags=-v verstring= output_objdir=. libname=conftest lt_save_allow_undefined_flag=$_LT_TAGVAR(allow_undefined_flag, $1) _LT_TAGVAR(allow_undefined_flag, $1)= if AC_TRY_EVAL(_LT_TAGVAR(archive_cmds, $1) 2\>\&1 \| $GREP \" -lc \" \>/dev/null 2\>\&1) then lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1)=no else lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1)=yes fi _LT_TAGVAR(allow_undefined_flag, $1)=$lt_save_allow_undefined_flag else cat conftest.err 1>&5 fi $RM conftest* ]) _LT_TAGVAR(archive_cmds_need_lc, $1)=$lt_cv_[]_LT_TAGVAR(archive_cmds_need_lc, $1) ;; esac fi ;; esac _LT_TAGDECL([build_libtool_need_lc], [archive_cmds_need_lc], [0], [Whether or not to add -lc for building shared libraries]) _LT_TAGDECL([allow_libtool_libs_with_static_runtimes], [enable_shared_with_static_runtimes], [0], [Whether or not to disallow shared libs when runtime libs are static]) _LT_TAGDECL([], [export_dynamic_flag_spec], [1], [Compiler flag to allow reflexive dlopens]) _LT_TAGDECL([], [whole_archive_flag_spec], [1], [Compiler flag to generate shared objects directly from archives]) _LT_TAGDECL([], [compiler_needs_object], [1], [Whether the compiler copes with passing no objects directly]) _LT_TAGDECL([], [old_archive_from_new_cmds], [2], [Create an old-style archive from a shared archive]) _LT_TAGDECL([], [old_archive_from_expsyms_cmds], [2], [Create a temporary old-style archive to link instead of a shared archive]) _LT_TAGDECL([], [archive_cmds], [2], [Commands used to build a shared archive]) _LT_TAGDECL([], [archive_expsym_cmds], [2]) _LT_TAGDECL([], [module_cmds], [2], [Commands used to build a loadable module if different from building a shared archive.]) _LT_TAGDECL([], [module_expsym_cmds], [2]) _LT_TAGDECL([], [with_gnu_ld], [1], [Whether we are building with GNU ld or not]) _LT_TAGDECL([], [allow_undefined_flag], [1], [Flag that allows shared libraries with undefined symbols to be built]) _LT_TAGDECL([], [no_undefined_flag], [1], [Flag that enforces no undefined symbols]) _LT_TAGDECL([], [hardcode_libdir_flag_spec], [1], [Flag to hardcode $libdir into a binary during linking. This must work even if $libdir does not exist]) _LT_TAGDECL([], [hardcode_libdir_separator], [1], [Whether we need a single "-rpath" flag with a separated argument]) _LT_TAGDECL([], [hardcode_direct], [0], [Set to "yes" if using DIR/libNAME$shared_ext during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_direct_absolute], [0], [Set to "yes" if using DIR/libNAME$shared_ext during linking hardcodes DIR into the resulting binary and the resulting library dependency is "absolute", i.e impossible to change by setting $shlibpath_var if the library is relocated]) _LT_TAGDECL([], [hardcode_minus_L], [0], [Set to "yes" if using the -LDIR flag during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_shlibpath_var], [0], [Set to "yes" if using SHLIBPATH_VAR=DIR during linking hardcodes DIR into the resulting binary]) _LT_TAGDECL([], [hardcode_automatic], [0], [Set to "yes" if building a shared library automatically hardcodes DIR into the library and all subsequent libraries and executables linked against it]) _LT_TAGDECL([], [inherit_rpath], [0], [Set to yes if linker adds runtime paths of dependent libraries to runtime path list]) _LT_TAGDECL([], [link_all_deplibs], [0], [Whether libtool must link a program against all its dependency libraries]) _LT_TAGDECL([], [always_export_symbols], [0], [Set to "yes" if exported symbols are required]) _LT_TAGDECL([], [export_symbols_cmds], [2], [The commands to list exported symbols]) _LT_TAGDECL([], [exclude_expsyms], [1], [Symbols that should not be listed in the preloaded symbols]) _LT_TAGDECL([], [include_expsyms], [1], [Symbols that must always be exported]) _LT_TAGDECL([], [prelink_cmds], [2], [Commands necessary for linking programs (against libraries) with templates]) _LT_TAGDECL([], [postlink_cmds], [2], [Commands necessary for finishing linking programs]) _LT_TAGDECL([], [file_list_spec], [1], [Specify filename containing input files]) dnl FIXME: Not yet implemented dnl _LT_TAGDECL([], [thread_safe_flag_spec], [1], dnl [Compiler flag to generate thread safe objects]) ])# _LT_LINKER_SHLIBS # _LT_LANG_C_CONFIG([TAG]) # ------------------------ # Ensure that the configuration variables for a C compiler are suitably # defined. These variables are subsequently used by _LT_CONFIG to write # the compiler configuration to 'libtool'. m4_defun([_LT_LANG_C_CONFIG], [m4_require([_LT_DECL_EGREP])dnl lt_save_CC=$CC AC_LANG_PUSH(C) # Source file extension for C test sources. ac_ext=c # Object file extension for compiled C test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(){return(0);}' _LT_TAG_COMPILER # Save the default compiler, since it gets overwritten when the other # tags are being tested, and _LT_TAGVAR(compiler, []) is a NOP. compiler_DEFAULT=$CC # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) LT_SYS_DLOPEN_SELF _LT_CMD_STRIPLIB # Report what library types will actually be built AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_CONFIG($1) fi AC_LANG_POP CC=$lt_save_CC ])# _LT_LANG_C_CONFIG # _LT_LANG_CXX_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for a C++ compiler are suitably # defined. These variables are subsequently used by _LT_CONFIG to write # the compiler configuration to 'libtool'. m4_defun([_LT_LANG_CXX_CONFIG], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl m4_require([_LT_DECL_EGREP])dnl m4_require([_LT_PATH_MANIFEST_TOOL])dnl if test -n "$CXX" && ( test no != "$CXX" && ( (test g++ = "$CXX" && `g++ -v >/dev/null 2>&1` ) || (test g++ != "$CXX"))); then AC_PROG_CXXCPP else _lt_caught_CXX_error=yes fi AC_LANG_PUSH(C++) _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(compiler_needs_object, $1)=no _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=unsupported _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for C++ test sources. ac_ext=cpp # Object file extension for compiled C++ test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the CXX compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test yes != "$_lt_caught_CXX_error"; then # Code to be used in simple compile tests lt_simple_compile_test_code="int some_variable = 0;" # Code to be used in simple link tests lt_simple_link_test_code='int main(int, char *[[]]) { return(0); }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_LD=$LD lt_save_GCC=$GCC GCC=$GXX lt_save_with_gnu_ld=$with_gnu_ld lt_save_path_LD=$lt_cv_path_LD if test -n "${lt_cv_prog_gnu_ldcxx+set}"; then lt_cv_prog_gnu_ld=$lt_cv_prog_gnu_ldcxx else $as_unset lt_cv_prog_gnu_ld fi if test -n "${lt_cv_path_LDCXX+set}"; then lt_cv_path_LD=$lt_cv_path_LDCXX else $as_unset lt_cv_path_LD fi test -z "${LDCXX+set}" || LD=$LDCXX CC=${CXX-"c++"} CFLAGS=$CXXFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) if test -n "$compiler"; then # We don't want -fno-exception when compiling C++ code, so set the # no_builtin_flag separately if test yes = "$GXX"; then _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)=' -fno-builtin' else _LT_TAGVAR(lt_prog_compiler_no_builtin_flag, $1)= fi if test yes = "$GXX"; then # Set up default GNU C++ configuration LT_PATH_LD # Check if GNU C++ uses GNU ld as the underlying linker, since the # archiving commands below assume that GNU ld is being used. if test yes = "$with_gnu_ld"; then _LT_TAGVAR(archive_cmds, $1)='$CC $pic_flag -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC $pic_flag -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' # If archive_cmds runs LD, not CC, wlarc should be empty # XXX I think wlarc can be eliminated in ltcf-cxx, but I need to # investigate it a little bit more. (MM) wlarc='$wl' # ancient GNU ld didn't support --whole-archive et. al. if eval "`$CC -print-prog-name=ld` --help 2>&1" | $GREP 'no-whole-archive' > /dev/null; then _LT_TAGVAR(whole_archive_flag_spec, $1)=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' else _LT_TAGVAR(whole_archive_flag_spec, $1)= fi else with_gnu_ld=no wlarc= # A generic and very simple default shared library creation # command for GNU C++ for the case where it uses the native # linker, instead of GNU ld. If possible, this setting should # overridden to take advantage of the native linker features on # the platform it is being used on. _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $lib' fi # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else GXX=no with_gnu_ld=no wlarc= fi # PORTME: fill in a description of your system's C++ link characteristics AC_MSG_CHECKING([whether the $compiler linker ($LD) supports shared libraries]) _LT_TAGVAR(ld_shlibs, $1)=yes case $host_os in aix3*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aix[[4-9]]*) if test ia64 = "$host_cpu"; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no exp_sym_flag='-Bexport' no_entry_flag= else aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # have runtime linking enabled, and use it for executables. # For shared libraries, we enable/disable runtime linking # depending on the kind of the shared library created - # when "with_aix_soname,aix_use_runtimelinking" is: # "aix,no" lib.a(lib.so.V) shared, rtl:no, for executables # "aix,yes" lib.so shared, rtl:yes, for executables # lib.a static archive # "both,no" lib.so.V(shr.o) shared, rtl:yes # lib.a(lib.so.V) shared, rtl:no, for executables # "both,yes" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a(lib.so.V) shared, rtl:no # "svr4,*" lib.so.V(shr.o) shared, rtl:yes, for executables # lib.a static archive case $host_os in aix4.[[23]]|aix4.[[23]].*|aix[[5-9]]*) for ld_flag in $LDFLAGS; do case $ld_flag in *-brtl*) aix_use_runtimelinking=yes break ;; esac done if test svr4,no = "$with_aix_soname,$aix_use_runtimelinking"; then # With aix-soname=svr4, we create the lib.so.V shared archives only, # so we don't have lib.a shared libs to link our executables. # We have to force runtime linking in this case. aix_use_runtimelinking=yes LDFLAGS="$LDFLAGS -Wl,-brtl" fi ;; esac exp_sym_flag='-bexport' no_entry_flag='-bnoentry' fi # When large executables or shared objects are built, AIX ld can # have problems creating the table of contents. If linking a library # or program results in "error TOC overflow" add -mminimal-toc to # CXXFLAGS/CFLAGS for g++/gcc. In the cases where that is not # enough to fix the problem, add -Wl,-bbigtoc to LDFLAGS. _LT_TAGVAR(archive_cmds, $1)='' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(file_list_spec, $1)='$wl-f,' case $with_aix_soname,$aix_use_runtimelinking in aix,*) ;; # no import file svr4,* | *,yes) # use import file # The Import File defines what to hardcode. _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no ;; esac if test yes = "$GXX"; then case $host_os in aix4.[[012]]|aix4.[[012]].*) # We only want to do this on AIX 4.2 and lower, the check # below for broken collect2 doesn't work under 4.3+ collect2name=`$CC -print-prog-name=collect2` if test -f "$collect2name" && strings "$collect2name" | $GREP resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 _LT_TAGVAR(hardcode_direct, $1)=unsupported # It fails to find uninstalled libraries when the uninstalled # path is not listed in the libpath. Setting hardcode_minus_L # to unsupported forces relinking _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)= fi esac shared_flag='-shared' if test yes = "$aix_use_runtimelinking"; then shared_flag=$shared_flag' $wl-G' fi # Need to ensure runtime linking is disabled for the traditional # shared library, or the linker may eventually find shared libraries # /with/ Import File - we do not want to mix them. shared_flag_aix='-shared' shared_flag_svr4='-shared $wl-G' else # not using gcc if test ia64 = "$host_cpu"; then # VisualAge C++, Version 5.5 for AIX 5L for IA-64, Beta 3 Release # chokes on -Wl,-G. The following line is correct: shared_flag='-G' else if test yes = "$aix_use_runtimelinking"; then shared_flag='$wl-G' else shared_flag='$wl-bM:SRE' fi shared_flag_aix='$wl-bM:SRE' shared_flag_svr4='$wl-G' fi fi _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-bexpall' # It seems that -bexpall does not export symbols beginning with # underscore (_), so it is better to generate a list of symbols to # export. _LT_TAGVAR(always_export_symbols, $1)=yes if test aix,yes = "$with_aix_soname,$aix_use_runtimelinking"; then # Warning - without using the other runtime loading flags (-brtl), # -berok will link without error, but may produce a broken library. # The "-G" linker flag allows undefined symbols. _LT_TAGVAR(no_undefined_flag, $1)='-bernotok' # Determine the default libpath from the value encoded in an empty # executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $deplibs $wl'$no_entry_flag' $compiler_flags `if test -n "$allow_undefined_flag"; then func_echo_all "$wl$allow_undefined_flag"; else :; fi` $wl'$exp_sym_flag:\$export_symbols' '$shared_flag else if test ia64 = "$host_cpu"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R $libdir:/usr/lib:/lib' _LT_TAGVAR(allow_undefined_flag, $1)="-z nodefs" _LT_TAGVAR(archive_expsym_cmds, $1)="\$CC $shared_flag"' -o $output_objdir/$soname $libobjs $deplibs '"\$wl$no_entry_flag"' $compiler_flags $wl$allow_undefined_flag '"\$wl$exp_sym_flag:\$export_symbols" else # Determine the default libpath from the value encoded in an # empty executable. _LT_SYS_MODULE_PATH_AIX([$1]) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-blibpath:$libdir:'"$aix_libpath" # Warning - without using the other run time loading flags, # -berok will link without error, but may produce a broken library. _LT_TAGVAR(no_undefined_flag, $1)=' $wl-bernotok' _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-berok' if test yes = "$with_gnu_ld"; then # We only use this code for GNU lds that support --whole-archive. _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive$convenience $wl--no-whole-archive' else # Exported symbols can be pulled into shared objects from archives _LT_TAGVAR(whole_archive_flag_spec, $1)='$convenience' fi _LT_TAGVAR(archive_cmds_need_lc, $1)=yes _LT_TAGVAR(archive_expsym_cmds, $1)='$RM -r $output_objdir/$realname.d~$MKDIR $output_objdir/$realname.d' # -brtl affects multiple linker settings, -berok does not and is overridden later compiler_flags_filtered='`func_echo_all "$compiler_flags " | $SED -e "s%-brtl\\([[, ]]\\)%-berok\\1%g"`' if test svr4 != "$with_aix_soname"; then # This is similar to how AIX traditionally builds its shared # libraries. Need -bnortl late, we may have -brtl in LDFLAGS. _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_aix' -o $output_objdir/$realname.d/$soname $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$AR $AR_FLAGS $output_objdir/$libname$release.a $output_objdir/$realname.d/$soname' fi if test aix != "$with_aix_soname"; then _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$CC '$shared_flag_svr4' -o $output_objdir/$realname.d/$shared_archive_member_spec.o $libobjs $deplibs $wl-bnoentry '$compiler_flags_filtered'$wl-bE:$export_symbols$allow_undefined_flag~$STRIP -e $output_objdir/$realname.d/$shared_archive_member_spec.o~( func_echo_all "#! $soname($shared_archive_member_spec.o)"; if test shr_64 = "$shared_archive_member_spec"; then func_echo_all "# 64"; else func_echo_all "# 32"; fi; cat $export_symbols ) > $output_objdir/$realname.d/$shared_archive_member_spec.imp~$AR $AR_FLAGS $output_objdir/$soname $output_objdir/$realname.d/$shared_archive_member_spec.o $output_objdir/$realname.d/$shared_archive_member_spec.imp' else # used by -dlpreopen to get the symbols _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$MV $output_objdir/$realname.d/$soname $output_objdir' fi _LT_TAGVAR(archive_expsym_cmds, $1)="$_LT_TAGVAR(archive_expsym_cmds, $1)"'~$RM -r $output_objdir/$realname.d' fi fi ;; beos*) if $LD --help 2>&1 | $GREP ': supported targets:.* elf' > /dev/null; then _LT_TAGVAR(allow_undefined_flag, $1)=unsupported # Joseph Beckenbach says some releases of gcc # support --undefined. This deserves some investigation. FIXME _LT_TAGVAR(archive_cmds, $1)='$CC -nostart $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; chorus*) case $cc_basename in *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; cygwin* | mingw* | pw32* | cegcc*) case $GXX,$cc_basename in ,cl* | no,cl*) # Native MSVC # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)=' ' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=yes _LT_TAGVAR(file_list_spec, $1)='@' # Tell ltmain to make .lib files, not .a files. libext=lib # Tell ltmain to make .dll files, not .so files. shrext_cmds=.dll # FIXME: Setting linknames here is a bad hack. _LT_TAGVAR(archive_cmds, $1)='$CC -o $output_objdir/$soname $libobjs $compiler_flags $deplibs -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~linknames=' _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp "$export_symbols" "$output_objdir/$soname.def"; echo "$tool_output_objdir$soname.def" > "$output_objdir/$soname.exp"; else $SED -e '\''s/^/-link -EXPORT:/'\'' < $export_symbols > $output_objdir/$soname.exp; fi~ $CC -o $tool_output_objdir$soname $libobjs $compiler_flags $deplibs "@$tool_output_objdir$soname.exp" -Wl,-DLL,-IMPLIB:"$tool_output_objdir$libname.dll.lib"~ linknames=' # The linker will not automatically build a static lib if we build a DLL. # _LT_TAGVAR(old_archive_from_new_cmds, $1)='true' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes # Don't use ranlib _LT_TAGVAR(old_postinstall_cmds, $1)='chmod 644 $oldlib' _LT_TAGVAR(postlink_cmds, $1)='lt_outputfile="@OUTPUT@"~ lt_tool_outputfile="@TOOL_OUTPUT@"~ case $lt_outputfile in *.exe|*.EXE) ;; *) lt_outputfile=$lt_outputfile.exe lt_tool_outputfile=$lt_tool_outputfile.exe ;; esac~ func_to_tool_file "$lt_outputfile"~ if test : != "$MANIFEST_TOOL" && test -f "$lt_outputfile.manifest"; then $MANIFEST_TOOL -manifest "$lt_tool_outputfile.manifest" -outputresource:"$lt_tool_outputfile" || exit 1; $RM "$lt_outputfile.manifest"; fi' ;; *) # g++ # _LT_TAGVAR(hardcode_libdir_flag_spec, $1) is actually meaningless, # as there is no search path for DLLs. _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-all-symbols' _LT_TAGVAR(allow_undefined_flag, $1)=unsupported _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes if $LD --help 2>&1 | $GREP 'auto-import' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' # If the export-symbols file already is a .def file, use it as # is; otherwise, prepend EXPORTS... _LT_TAGVAR(archive_expsym_cmds, $1)='if _LT_DLL_DEF_P([$export_symbols]); then cp $export_symbols $output_objdir/$soname.def; else echo EXPORTS > $output_objdir/$soname.def; cat $export_symbols >> $output_objdir/$soname.def; fi~ $CC -shared -nostdlib $output_objdir/$soname.def $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $output_objdir/$soname $wl--enable-auto-image-base -Xlinker --out-implib -Xlinker $lib' else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; darwin* | rhapsody*) _LT_DARWIN_LINKER_FEATURES($1) ;; os2*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-L$libdir' _LT_TAGVAR(hardcode_minus_L, $1)=yes _LT_TAGVAR(allow_undefined_flag, $1)=unsupported shrext_cmds=.dll _LT_TAGVAR(archive_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ emxexp $libobjs | $SED /"_DLL_InitTerm"/d >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(archive_expsym_cmds, $1)='$ECHO "LIBRARY ${soname%$shared_ext} INITINSTANCE TERMINSTANCE" > $output_objdir/$libname.def~ $ECHO "DESCRIPTION \"$libname\"" >> $output_objdir/$libname.def~ $ECHO "DATA MULTIPLE NONSHARED" >> $output_objdir/$libname.def~ $ECHO EXPORTS >> $output_objdir/$libname.def~ prefix_cmds="$SED"~ if test EXPORTS = "`$SED 1q $export_symbols`"; then prefix_cmds="$prefix_cmds -e 1d"; fi~ prefix_cmds="$prefix_cmds -e \"s/^\(.*\)$/_\1/g\""~ cat $export_symbols | $prefix_cmds >> $output_objdir/$libname.def~ $CC -Zdll -Zcrtdll -o $output_objdir/$soname $libobjs $deplibs $compiler_flags $output_objdir/$libname.def~ emximp -o $lib $output_objdir/$libname.def' _LT_TAGVAR(old_archive_From_new_cmds, $1)='emximp -o $output_objdir/${libname}_dll.a $output_objdir/$libname.def' _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=yes ;; dgux*) case $cc_basename in ec++*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; ghcx*) # Green Hills C++ Compiler # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; freebsd2.*) # C++ shared libraries reported to be fairly broken before # switch to ELF _LT_TAGVAR(ld_shlibs, $1)=no ;; freebsd-elf*) _LT_TAGVAR(archive_cmds_need_lc, $1)=no ;; freebsd* | dragonfly*) # FreeBSD 3 and later use GNU C++ and GNU ld with standard ELF # conventions _LT_TAGVAR(ld_shlibs, $1)=yes ;; haiku*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(link_all_deplibs, $1)=yes ;; hpux9*) _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes # Not in the search PATH, # but as the default # location of the library. case $cc_basename in CC*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aCC*) _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -b $wl+b $wl$install_libdir -o $output_objdir/$soname $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`($CC -b $CFLAGS -v conftest.$objext 2>&1) | $EGREP "\-L"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test yes = "$GXX"; then _LT_TAGVAR(archive_cmds, $1)='$RM $output_objdir/$soname~$CC -shared -nostdlib $pic_flag $wl+b $wl$install_libdir -o $output_objdir/$soname $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~test "x$output_objdir/$soname" = "x$lib" || mv $output_objdir/$soname $lib' else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; hpux10*|hpux11*) if test no = "$with_gnu_ld"; then _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl+b $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: case $host_cpu in hppa*64*|ia64*) ;; *) _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' ;; esac fi case $host_cpu in hppa*64*|ia64*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no ;; *) _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(hardcode_minus_L, $1)=yes # Not in the search PATH, # but as the default # location of the library. ;; esac case $cc_basename in CC*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; aCC*) case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+nodefaultrpath -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -b $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; esac # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`($CC -b $CFLAGS -v conftest.$objext 2>&1) | $GREP "\-L"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test yes = "$GXX"; then if test no = "$with_gnu_ld"; then case $host_cpu in hppa*64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib -fPIC $wl+h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; ia64*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $pic_flag $wl+h $wl$soname $wl+nodefaultrpath -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $pic_flag $wl+h $wl$soname $wl+b $wl$install_libdir -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' ;; esac fi else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; interix[[3-9]]*) _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' # Hack: On Interix 3.x, we cannot compile PIC because of a broken gcc. # Instead, shared libraries are loaded at an image base (0x10000000 by # default) and relocated if they conflict, which is a slow very memory # consuming and fragmenting process. To avoid this, we pick a random, # 256 KiB-aligned image base between 0x50000000 and 0x6FFC0000 at link # time. Moving up from 0x10000000 also allows more sbrk(2) space. _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='sed "s|^|_|" $export_symbols >$output_objdir/$soname.expsym~$CC -shared $pic_flag $libobjs $deplibs $compiler_flags $wl-h,$soname $wl--retain-symbols-file,$output_objdir/$soname.expsym $wl--image-base,`expr ${RANDOM-$$} % 4096 / 2 \* 262144 + 1342177280` -o $lib' ;; irix5* | irix6*) case $cc_basename in CC*) # SGI C++ _LT_TAGVAR(archive_cmds, $1)='$CC -shared -all -multigot $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' # Archives containing C++ object files must be created using # "CC -ar", where "CC" is the IRIX C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -ar -WR,-u -o $oldlib $oldobjs' ;; *) if test yes = "$GXX"; then if test no = "$with_gnu_ld"; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' else _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` -o $lib' fi fi _LT_TAGVAR(link_all_deplibs, $1)=yes ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: _LT_TAGVAR(inherit_rpath, $1)=yes ;; linux* | k*bsd*-gnu | kopensolaris*-gnu | gnu*) case $cc_basename in KCC*) # Kuck and Associates, Inc. (KAI) C++ Compiler # KCC will only create a shared library if the output file # ends with ".so" (or ".sl" for HP-UX), so rename the library # to its proper name (with version) after linking. _LT_TAGVAR(archive_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo $lib | $SED -e "s/\$tempext\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib; mv \$templib $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo $lib | $SED -e "s/\$tempext\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib $wl-retain-symbols-file,$export_symbols; mv \$templib $lib' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC $CFLAGS -v conftest.$objext -o libconftest$shared_ext 2>&1 | $GREP "ld"`; rm -f libconftest$shared_ext; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' # Archives containing C++ object files must be created using # "CC -Bstatic", where "CC" is the KAI C++ compiler. _LT_TAGVAR(old_archive_cmds, $1)='$CC -Bstatic -o $oldlib $oldobjs' ;; icpc* | ecpc* ) # Intel C++ with_gnu_ld=yes # version 8.0 and above of icpc choke on multiply defined symbols # if we add $predep_objects and $postdep_objects, however 7.1 and # earlier do not add the objects themselves. case `$CC -V 2>&1` in *"Version 7."*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; *) # Version 8.0 or newer tmp_idyn= case $host_cpu in ia64*) tmp_idyn=' -i_dynamic';; esac _LT_TAGVAR(archive_cmds, $1)='$CC -shared'"$tmp_idyn"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared'"$tmp_idyn"' $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; esac _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive$convenience $wl--no-whole-archive' ;; pgCC* | pgcpp*) # Portland Group C++ compiler case `$CC -V` in *pgCC\ [[1-5]].* | *pgcpp\ [[1-5]].*) _LT_TAGVAR(prelink_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $objs $libobjs $compile_deplibs~ compile_command="$compile_command `find $tpldir -name \*.o | sort | $NL2SP`"' _LT_TAGVAR(old_archive_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $oldobjs$old_deplibs~ $AR $AR_FLAGS $oldlib$oldobjs$old_deplibs `find $tpldir -name \*.o | sort | $NL2SP`~ $RANLIB $oldlib' _LT_TAGVAR(archive_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $predep_objects $libobjs $deplibs $convenience $postdep_objects~ $CC -shared $pic_flag $predep_objects $libobjs $deplibs `find $tpldir -name \*.o | sort | $NL2SP` $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='tpldir=Template.dir~ rm -rf $tpldir~ $CC --prelink_objects --instantiation_dir $tpldir $predep_objects $libobjs $deplibs $convenience $postdep_objects~ $CC -shared $pic_flag $predep_objects $libobjs $deplibs `find $tpldir -name \*.o | sort | $NL2SP` $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; *) # Version 6 and above use weak symbols _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname $wl-retain-symbols-file $wl$export_symbols -o $lib' ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl--rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`for conv in $convenience\"\"; do test -n \"$conv\" && new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' ;; cxx*) # Compaq C++ _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname -o $lib $wl-retain-symbols-file $wl$export_symbols' runpath_var=LD_RUN_PATH _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP "ld"`; templist=`func_echo_all "$templist" | $SED "s/\(^.*ld.*\)\( .*ld .*$\)/\1/"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "X$list" | $Xsed' ;; xl* | mpixl* | bgxl*) # IBM XL 8.0 on PPC, with GNU ld _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl--export-dynamic' _LT_TAGVAR(archive_cmds, $1)='$CC -qmkshrobj $libobjs $deplibs $compiler_flags $wl-soname $wl$soname -o $lib' if test yes = "$supports_anon_versioning"; then _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $output_objdir/$libname.ver~ cat $export_symbols | sed -e "s/\(.*\)/\1;/" >> $output_objdir/$libname.ver~ echo "local: *; };" >> $output_objdir/$libname.ver~ $CC -qmkshrobj $libobjs $deplibs $compiler_flags $wl-soname $wl$soname $wl-version-script $wl$output_objdir/$libname.ver -o $lib' fi ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 _LT_TAGVAR(no_undefined_flag, $1)=' -zdefs' _LT_TAGVAR(archive_cmds, $1)='$CC -G$allow_undefined_flag -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G$allow_undefined_flag -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-retain-symbols-file $wl$export_symbols' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl--whole-archive`new_convenience=; for conv in $convenience\"\"; do test -z \"$conv\" || new_convenience=\"$new_convenience,$conv\"; done; func_echo_all \"$new_convenience\"` $wl--no-whole-archive' _LT_TAGVAR(compiler_needs_object, $1)=yes # Not sure whether something based on # $CC $CFLAGS -v conftest.$objext -o libconftest$shared_ext 2>&1 # would be better. output_verbose_link_cmd='func_echo_all' # Archives containing C++ object files must be created using # "CC -xar", where "CC" is the Sun C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -xar -o $oldlib $oldobjs' ;; esac ;; esac ;; lynxos*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; m88k*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; mvs*) case $cc_basename in cxx*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; netbsd*) if echo __ELF__ | $CC -E - | $GREP __ELF__ >/dev/null; then _LT_TAGVAR(archive_cmds, $1)='$LD -Bshareable -o $lib $predep_objects $libobjs $deplibs $postdep_objects $linker_flags' wlarc= _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no fi # Workaround some broken pre-1.5 toolchains output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP conftest.$objext | $SED -e "s:-lgcc -lc -lgcc::"' ;; *nto* | *qnx*) _LT_TAGVAR(ld_shlibs, $1)=yes ;; openbsd* | bitrig*) if test -f /usr/libexec/ld.so; then _LT_TAGVAR(hardcode_direct, $1)=yes _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=yes _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' if test -z "`echo __ELF__ | $CC -E - | grep __ELF__`"; then _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $pic_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-retain-symbols-file,$export_symbols -o $lib' _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-E' _LT_TAGVAR(whole_archive_flag_spec, $1)=$wlarc'--whole-archive$convenience '$wlarc'--no-whole-archive' fi output_verbose_link_cmd=func_echo_all else _LT_TAGVAR(ld_shlibs, $1)=no fi ;; osf3* | osf4* | osf5*) case $cc_basename in KCC*) # Kuck and Associates, Inc. (KAI) C++ Compiler # KCC will only create a shared library if the output file # ends with ".so" (or ".sl" for HP-UX), so rename the library # to its proper name (with version) after linking. _LT_TAGVAR(archive_cmds, $1)='tempext=`echo $shared_ext | $SED -e '\''s/\([[^()0-9A-Za-z{}]]\)/\\\\\1/g'\''`; templib=`echo "$lib" | $SED -e "s/\$tempext\..*/.so/"`; $CC $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags --soname $soname -o \$templib; mv \$templib $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Archives containing C++ object files must be created using # the KAI C++ compiler. case $host in osf3*) _LT_TAGVAR(old_archive_cmds, $1)='$CC -Bstatic -o $oldlib $oldobjs' ;; *) _LT_TAGVAR(old_archive_cmds, $1)='$CC -o $oldlib $oldobjs' ;; esac ;; RCC*) # Rational C++ 2.4.1 # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; cxx*) case $host in osf3*) _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $soname `test -n "$verstring" && func_echo_all "$wl-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' ;; *) _LT_TAGVAR(allow_undefined_flag, $1)=' -expect_unresolved \*' _LT_TAGVAR(archive_cmds, $1)='$CC -shared$allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -msym -soname $soname `test -n "$verstring" && func_echo_all "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='for i in `cat $export_symbols`; do printf "%s %s\\n" -exported_symbol "\$i" >> $lib.exp; done~ echo "-hidden">> $lib.exp~ $CC -shared$allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags -msym -soname $soname $wl-input $wl$lib.exp `test -n "$verstring" && $ECHO "-set_version $verstring"` -update_registry $output_objdir/so_locations -o $lib~ $RM $lib.exp' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-rpath $libdir' ;; esac _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. # # There doesn't appear to be a way to prevent this compiler from # explicitly linking system object files so we need to strip them # from the output so that they don't get included in the library # dependencies. output_verbose_link_cmd='templist=`$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP "ld" | $GREP -v "ld:"`; templist=`func_echo_all "$templist" | $SED "s/\(^.*ld.*\)\( .*ld.*$\)/\1/"`; list= ; for z in $templist; do case $z in conftest.$objext) list="$list $z";; *.$objext);; *) list="$list $z";;esac; done; func_echo_all "$list"' ;; *) if test yes,no = "$GXX,$with_gnu_ld"; then _LT_TAGVAR(allow_undefined_flag, $1)=' $wl-expect_unresolved $wl\*' case $host in osf3*) _LT_TAGVAR(archive_cmds, $1)='$CC -shared -nostdlib $allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $allow_undefined_flag $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-msym $wl-soname $wl$soname `test -n "$verstring" && func_echo_all "$wl-set_version $wl$verstring"` $wl-update_registry $wl$output_objdir/so_locations -o $lib' ;; esac _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-rpath $wl$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=: # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no fi ;; esac ;; psos*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; sunos4*) case $cc_basename in CC*) # Sun C++ 4.x # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; lcc*) # Lucid # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; solaris*) case $cc_basename in CC* | sunCC*) # Sun C++ 4.2, 5.x and Centerline C++ _LT_TAGVAR(archive_cmds_need_lc,$1)=yes _LT_TAGVAR(no_undefined_flag, $1)=' -zdefs' _LT_TAGVAR(archive_cmds, $1)='$CC -G$allow_undefined_flag -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G$allow_undefined_flag $wl-M $wl$lib.exp -h$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='-R$libdir' _LT_TAGVAR(hardcode_shlibpath_var, $1)=no case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) # The compiler driver will combine and reorder linker options, # but understands '-z linker_flag'. # Supported since Solaris 2.6 (maybe 2.5.1?) _LT_TAGVAR(whole_archive_flag_spec, $1)='-z allextract$convenience -z defaultextract' ;; esac _LT_TAGVAR(link_all_deplibs, $1)=yes output_verbose_link_cmd='func_echo_all' # Archives containing C++ object files must be created using # "CC -xar", where "CC" is the Sun C++ compiler. This is # necessary to make sure instantiated templates are included # in the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC -xar -o $oldlib $oldobjs' ;; gcx*) # Green Hills C++ Compiler _LT_TAGVAR(archive_cmds, $1)='$CC -shared $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-h $wl$soname -o $lib' # The C++ compiler must be used to create the archive. _LT_TAGVAR(old_archive_cmds, $1)='$CC $LDFLAGS -archive -o $oldlib $oldobjs' ;; *) # GNU C++ compiler with Solaris linker if test yes,no = "$GXX,$with_gnu_ld"; then _LT_TAGVAR(no_undefined_flag, $1)=' $wl-z ${wl}defs' if $CC --version | $GREP -v '^2\.7' > /dev/null; then _LT_TAGVAR(archive_cmds, $1)='$CC -shared $pic_flag -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-h $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -shared $pic_flag -nostdlib $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -shared $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' else # g++ 2.7 appears to require '-G' NOT '-shared' on this # platform. _LT_TAGVAR(archive_cmds, $1)='$CC -G -nostdlib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags $wl-h $wl$soname -o $lib' _LT_TAGVAR(archive_expsym_cmds, $1)='echo "{ global:" > $lib.exp~cat $export_symbols | $SED -e "s/\(.*\)/\1;/" >> $lib.exp~echo "local: *; };" >> $lib.exp~ $CC -G -nostdlib $wl-M $wl$lib.exp $wl-h $wl$soname -o $lib $predep_objects $libobjs $deplibs $postdep_objects $compiler_flags~$RM $lib.exp' # Commands to make compiler produce verbose output that lists # what "hidden" libraries, object files and flags are used when # linking a shared library. output_verbose_link_cmd='$CC -G $CFLAGS -v conftest.$objext 2>&1 | $GREP -v "^Configured with:" | $GREP "\-L"' fi _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R $wl$libdir' case $host_os in solaris2.[[0-5]] | solaris2.[[0-5]].*) ;; *) _LT_TAGVAR(whole_archive_flag_spec, $1)='$wl-z ${wl}allextract$convenience $wl-z ${wl}defaultextract' ;; esac fi ;; esac ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[[01]].[[10]]* | unixware7* | sco3.2v5.0.[[024]]*) _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no runpath_var='LD_RUN_PATH' case $cc_basename in CC*) _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; sysv5* | sco3.2v5* | sco5v6*) # Note: We CANNOT use -z defs as we might desire, because we do not # link with -lc, and that would cause any symbols used from libc to # always be unresolved, which means just about no library would # ever link correctly. If we're not using GNU ld we use -z text # though, which does catch some bad symbols but isn't as heavy-handed # as -z defs. _LT_TAGVAR(no_undefined_flag, $1)='$wl-z,text' _LT_TAGVAR(allow_undefined_flag, $1)='$wl-z,nodefs' _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(hardcode_shlibpath_var, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)='$wl-R,$libdir' _LT_TAGVAR(hardcode_libdir_separator, $1)=':' _LT_TAGVAR(link_all_deplibs, $1)=yes _LT_TAGVAR(export_dynamic_flag_spec, $1)='$wl-Bexport' runpath_var='LD_RUN_PATH' case $cc_basename in CC*) _LT_TAGVAR(archive_cmds, $1)='$CC -G $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -G $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(old_archive_cmds, $1)='$CC -Tprelink_objects $oldobjs~ '"$_LT_TAGVAR(old_archive_cmds, $1)" _LT_TAGVAR(reload_cmds, $1)='$CC -Tprelink_objects $reload_objs~ '"$_LT_TAGVAR(reload_cmds, $1)" ;; *) _LT_TAGVAR(archive_cmds, $1)='$CC -shared $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' _LT_TAGVAR(archive_expsym_cmds, $1)='$CC -shared $wl-Bexport:$export_symbols $wl-h,$soname -o $lib $libobjs $deplibs $compiler_flags' ;; esac ;; tandem*) case $cc_basename in NCC*) # NonStop-UX NCC 3.20 # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac ;; vxworks*) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; *) # FIXME: insert proper C++ library support _LT_TAGVAR(ld_shlibs, $1)=no ;; esac AC_MSG_RESULT([$_LT_TAGVAR(ld_shlibs, $1)]) test no = "$_LT_TAGVAR(ld_shlibs, $1)" && can_build_shared=no _LT_TAGVAR(GCC, $1)=$GXX _LT_TAGVAR(LD, $1)=$LD ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_SYS_HIDDEN_LIBDEPS($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS LDCXX=$LD LD=$lt_save_LD GCC=$lt_save_GCC with_gnu_ld=$lt_save_with_gnu_ld lt_cv_path_LDCXX=$lt_cv_path_LD lt_cv_path_LD=$lt_save_path_LD lt_cv_prog_gnu_ldcxx=$lt_cv_prog_gnu_ld lt_cv_prog_gnu_ld=$lt_save_with_gnu_ld fi # test yes != "$_lt_caught_CXX_error" AC_LANG_POP ])# _LT_LANG_CXX_CONFIG # _LT_FUNC_STRIPNAME_CNF # ---------------------- # func_stripname_cnf prefix suffix name # strip PREFIX and SUFFIX off of NAME. # PREFIX and SUFFIX must not contain globbing or regex special # characters, hashes, percent signs, but SUFFIX may contain a leading # dot (in which case that matches only a dot). # # This function is identical to the (non-XSI) version of func_stripname, # except this one can be used by m4 code that may be executed by configure, # rather than the libtool script. m4_defun([_LT_FUNC_STRIPNAME_CNF],[dnl AC_REQUIRE([_LT_DECL_SED]) AC_REQUIRE([_LT_PROG_ECHO_BACKSLASH]) func_stripname_cnf () { case @S|@2 in .*) func_stripname_result=`$ECHO "@S|@3" | $SED "s%^@S|@1%%; s%\\\\@S|@2\$%%"`;; *) func_stripname_result=`$ECHO "@S|@3" | $SED "s%^@S|@1%%; s%@S|@2\$%%"`;; esac } # func_stripname_cnf ])# _LT_FUNC_STRIPNAME_CNF # _LT_SYS_HIDDEN_LIBDEPS([TAGNAME]) # --------------------------------- # Figure out "hidden" library dependencies from verbose # compiler output when linking a shared library. # Parse the compiler output and extract the necessary # objects, libraries and library flags. m4_defun([_LT_SYS_HIDDEN_LIBDEPS], [m4_require([_LT_FILEUTILS_DEFAULTS])dnl AC_REQUIRE([_LT_FUNC_STRIPNAME_CNF])dnl # Dependencies to place before and after the object being linked: _LT_TAGVAR(predep_objects, $1)= _LT_TAGVAR(postdep_objects, $1)= _LT_TAGVAR(predeps, $1)= _LT_TAGVAR(postdeps, $1)= _LT_TAGVAR(compiler_lib_search_path, $1)= dnl we can't use the lt_simple_compile_test_code here, dnl because it contains code intended for an executable, dnl not a library. It's possible we should let each dnl tag define a new lt_????_link_test_code variable, dnl but it's only used here... m4_if([$1], [], [cat > conftest.$ac_ext <<_LT_EOF int a; void foo (void) { a = 0; } _LT_EOF ], [$1], [CXX], [cat > conftest.$ac_ext <<_LT_EOF class Foo { public: Foo (void) { a = 0; } private: int a; }; _LT_EOF ], [$1], [F77], [cat > conftest.$ac_ext <<_LT_EOF subroutine foo implicit none integer*4 a a=0 return end _LT_EOF ], [$1], [FC], [cat > conftest.$ac_ext <<_LT_EOF subroutine foo implicit none integer a a=0 return end _LT_EOF ], [$1], [GCJ], [cat > conftest.$ac_ext <<_LT_EOF public class foo { private int a; public void bar (void) { a = 0; } }; _LT_EOF ], [$1], [GO], [cat > conftest.$ac_ext <<_LT_EOF package foo func foo() { } _LT_EOF ]) _lt_libdeps_save_CFLAGS=$CFLAGS case "$CC $CFLAGS " in #( *\ -flto*\ *) CFLAGS="$CFLAGS -fno-lto" ;; *\ -fwhopr*\ *) CFLAGS="$CFLAGS -fno-whopr" ;; *\ -fuse-linker-plugin*\ *) CFLAGS="$CFLAGS -fno-use-linker-plugin" ;; esac dnl Parse the compiler output and extract the necessary dnl objects, libraries and library flags. if AC_TRY_EVAL(ac_compile); then # Parse the compiler output and extract the necessary # objects, libraries and library flags. # Sentinel used to keep track of whether or not we are before # the conftest object file. pre_test_object_deps_done=no for p in `eval "$output_verbose_link_cmd"`; do case $prev$p in -L* | -R* | -l*) # Some compilers place space between "-{L,R}" and the path. # Remove the space. if test x-L = "$p" || test x-R = "$p"; then prev=$p continue fi # Expand the sysroot to ease extracting the directories later. if test -z "$prev"; then case $p in -L*) func_stripname_cnf '-L' '' "$p"; prev=-L; p=$func_stripname_result ;; -R*) func_stripname_cnf '-R' '' "$p"; prev=-R; p=$func_stripname_result ;; -l*) func_stripname_cnf '-l' '' "$p"; prev=-l; p=$func_stripname_result ;; esac fi case $p in =*) func_stripname_cnf '=' '' "$p"; p=$lt_sysroot$func_stripname_result ;; esac if test no = "$pre_test_object_deps_done"; then case $prev in -L | -R) # Internal compiler library paths should come after those # provided the user. The postdeps already come after the # user supplied libs so there is no need to process them. if test -z "$_LT_TAGVAR(compiler_lib_search_path, $1)"; then _LT_TAGVAR(compiler_lib_search_path, $1)=$prev$p else _LT_TAGVAR(compiler_lib_search_path, $1)="${_LT_TAGVAR(compiler_lib_search_path, $1)} $prev$p" fi ;; # The "-l" case would never come before the object being # linked, so don't bother handling this case. esac else if test -z "$_LT_TAGVAR(postdeps, $1)"; then _LT_TAGVAR(postdeps, $1)=$prev$p else _LT_TAGVAR(postdeps, $1)="${_LT_TAGVAR(postdeps, $1)} $prev$p" fi fi prev= ;; *.lto.$objext) ;; # Ignore GCC LTO objects *.$objext) # This assumes that the test object file only shows up # once in the compiler output. if test "$p" = "conftest.$objext"; then pre_test_object_deps_done=yes continue fi if test no = "$pre_test_object_deps_done"; then if test -z "$_LT_TAGVAR(predep_objects, $1)"; then _LT_TAGVAR(predep_objects, $1)=$p else _LT_TAGVAR(predep_objects, $1)="$_LT_TAGVAR(predep_objects, $1) $p" fi else if test -z "$_LT_TAGVAR(postdep_objects, $1)"; then _LT_TAGVAR(postdep_objects, $1)=$p else _LT_TAGVAR(postdep_objects, $1)="$_LT_TAGVAR(postdep_objects, $1) $p" fi fi ;; *) ;; # Ignore the rest. esac done # Clean up. rm -f a.out a.exe else echo "libtool.m4: error: problem compiling $1 test program" fi $RM -f confest.$objext CFLAGS=$_lt_libdeps_save_CFLAGS # PORTME: override above test on systems where it is broken m4_if([$1], [CXX], [case $host_os in interix[[3-9]]*) # Interix 3.5 installs completely hosed .la files for C++, so rather than # hack all around it, let's just trust "g++" to DTRT. _LT_TAGVAR(predep_objects,$1)= _LT_TAGVAR(postdep_objects,$1)= _LT_TAGVAR(postdeps,$1)= ;; esac ]) case " $_LT_TAGVAR(postdeps, $1) " in *" -lc "*) _LT_TAGVAR(archive_cmds_need_lc, $1)=no ;; esac _LT_TAGVAR(compiler_lib_search_dirs, $1)= if test -n "${_LT_TAGVAR(compiler_lib_search_path, $1)}"; then _LT_TAGVAR(compiler_lib_search_dirs, $1)=`echo " ${_LT_TAGVAR(compiler_lib_search_path, $1)}" | $SED -e 's! -L! !g' -e 's!^ !!'` fi _LT_TAGDECL([], [compiler_lib_search_dirs], [1], [The directories searched by this compiler when creating a shared library]) _LT_TAGDECL([], [predep_objects], [1], [Dependencies to place before and after the objects being linked to create a shared library]) _LT_TAGDECL([], [postdep_objects], [1]) _LT_TAGDECL([], [predeps], [1]) _LT_TAGDECL([], [postdeps], [1]) _LT_TAGDECL([], [compiler_lib_search_path], [1], [The library search path used internally by the compiler when linking a shared library]) ])# _LT_SYS_HIDDEN_LIBDEPS # _LT_LANG_F77_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for a Fortran 77 compiler are # suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_F77_CONFIG], [AC_LANG_PUSH(Fortran 77) if test -z "$F77" || test no = "$F77"; then _lt_disable_F77=yes fi _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for f77 test sources. ac_ext=f # Object file extension for compiled f77 test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the F77 compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test yes != "$_lt_disable_F77"; then # Code to be used in simple compile tests lt_simple_compile_test_code="\ subroutine t return end " # Code to be used in simple link tests lt_simple_link_test_code="\ program t end " # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_GCC=$GCC lt_save_CFLAGS=$CFLAGS CC=${F77-"f77"} CFLAGS=$FFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) GCC=$G77 if test -n "$compiler"; then AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_TAGVAR(GCC, $1)=$G77 _LT_TAGVAR(LD, $1)=$LD ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS fi # test yes != "$_lt_disable_F77" AC_LANG_POP ])# _LT_LANG_F77_CONFIG # _LT_LANG_FC_CONFIG([TAG]) # ------------------------- # Ensure that the configuration variables for a Fortran compiler are # suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_FC_CONFIG], [AC_LANG_PUSH(Fortran) if test -z "$FC" || test no = "$FC"; then _lt_disable_FC=yes fi _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(allow_undefined_flag, $1)= _LT_TAGVAR(always_export_symbols, $1)=no _LT_TAGVAR(archive_expsym_cmds, $1)= _LT_TAGVAR(export_dynamic_flag_spec, $1)= _LT_TAGVAR(hardcode_direct, $1)=no _LT_TAGVAR(hardcode_direct_absolute, $1)=no _LT_TAGVAR(hardcode_libdir_flag_spec, $1)= _LT_TAGVAR(hardcode_libdir_separator, $1)= _LT_TAGVAR(hardcode_minus_L, $1)=no _LT_TAGVAR(hardcode_automatic, $1)=no _LT_TAGVAR(inherit_rpath, $1)=no _LT_TAGVAR(module_cmds, $1)= _LT_TAGVAR(module_expsym_cmds, $1)= _LT_TAGVAR(link_all_deplibs, $1)=unknown _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds _LT_TAGVAR(no_undefined_flag, $1)= _LT_TAGVAR(whole_archive_flag_spec, $1)= _LT_TAGVAR(enable_shared_with_static_runtimes, $1)=no # Source file extension for fc test sources. ac_ext=${ac_fc_srcext-f} # Object file extension for compiled fc test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # No sense in running all these tests if we already determined that # the FC compiler isn't working. Some variables (like enable_shared) # are currently assumed to apply to all compilers on this platform, # and will be corrupted by setting them based on a non-working compiler. if test yes != "$_lt_disable_FC"; then # Code to be used in simple compile tests lt_simple_compile_test_code="\ subroutine t return end " # Code to be used in simple link tests lt_simple_link_test_code="\ program t end " # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_GCC=$GCC lt_save_CFLAGS=$CFLAGS CC=${FC-"f95"} CFLAGS=$FCFLAGS compiler=$CC GCC=$ac_cv_fc_compiler_gnu _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) if test -n "$compiler"; then AC_MSG_CHECKING([if libtool supports shared libraries]) AC_MSG_RESULT([$can_build_shared]) AC_MSG_CHECKING([whether to build shared libraries]) test no = "$can_build_shared" && enable_shared=no # On AIX, shared libraries and static libraries use the same namespace, and # are all built from PIC. case $host_os in aix3*) test yes = "$enable_shared" && enable_static=no if test -n "$RANLIB"; then archive_cmds="$archive_cmds~\$RANLIB \$lib" postinstall_cmds='$RANLIB $lib' fi ;; aix[[4-9]]*) if test ia64 != "$host_cpu"; then case $enable_shared,$with_aix_soname,$aix_use_runtimelinking in yes,aix,yes) ;; # shared object as lib.so file only yes,svr4,*) ;; # shared object as lib.so archive member only yes,*) enable_static=no ;; # shared object in lib.a archive as well esac fi ;; esac AC_MSG_RESULT([$enable_shared]) AC_MSG_CHECKING([whether to build static libraries]) # Make sure either enable_shared or enable_static is yes. test yes = "$enable_shared" || enable_static=yes AC_MSG_RESULT([$enable_static]) _LT_TAGVAR(GCC, $1)=$ac_cv_fc_compiler_gnu _LT_TAGVAR(LD, $1)=$LD ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... _LT_SYS_HIDDEN_LIBDEPS($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_SYS_DYNAMIC_LINKER($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi # test -n "$compiler" GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS fi # test yes != "$_lt_disable_FC" AC_LANG_POP ])# _LT_LANG_FC_CONFIG # _LT_LANG_GCJ_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for the GNU Java Compiler compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_GCJ_CONFIG], [AC_REQUIRE([LT_PROG_GCJ])dnl AC_LANG_SAVE # Source file extension for Java test sources. ac_ext=java # Object file extension for compiled Java test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="class foo {}" # Code to be used in simple link tests lt_simple_link_test_code='public class conftest { public static void main(String[[]] argv) {}; }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC=yes CC=${GCJ-"gcj"} CFLAGS=$GCJFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_TAGVAR(LD, $1)=$LD _LT_CC_BASENAME([$compiler]) # GCJ did not exist at the time GCC didn't implicitly link libc in. _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi AC_LANG_RESTORE GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_GCJ_CONFIG # _LT_LANG_GO_CONFIG([TAG]) # -------------------------- # Ensure that the configuration variables for the GNU Go compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_GO_CONFIG], [AC_REQUIRE([LT_PROG_GO])dnl AC_LANG_SAVE # Source file extension for Go test sources. ac_ext=go # Object file extension for compiled Go test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code="package main; func main() { }" # Code to be used in simple link tests lt_simple_link_test_code='package main; func main() { }' # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC=yes CC=${GOC-"gccgo"} CFLAGS=$GOFLAGS compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_TAGVAR(LD, $1)=$LD _LT_CC_BASENAME([$compiler]) # Go did not exist at the time GCC didn't implicitly link libc in. _LT_TAGVAR(archive_cmds_need_lc, $1)=no _LT_TAGVAR(old_archive_cmds, $1)=$old_archive_cmds _LT_TAGVAR(reload_flag, $1)=$reload_flag _LT_TAGVAR(reload_cmds, $1)=$reload_cmds ## CAVEAT EMPTOR: ## There is no encapsulation within the following macros, do not change ## the running order or otherwise move them around unless you know exactly ## what you are doing... if test -n "$compiler"; then _LT_COMPILER_NO_RTTI($1) _LT_COMPILER_PIC($1) _LT_COMPILER_C_O($1) _LT_COMPILER_FILE_LOCKS($1) _LT_LINKER_SHLIBS($1) _LT_LINKER_HARDCODE_LIBPATH($1) _LT_CONFIG($1) fi AC_LANG_RESTORE GCC=$lt_save_GCC CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_GO_CONFIG # _LT_LANG_RC_CONFIG([TAG]) # ------------------------- # Ensure that the configuration variables for the Windows resource compiler # are suitably defined. These variables are subsequently used by _LT_CONFIG # to write the compiler configuration to 'libtool'. m4_defun([_LT_LANG_RC_CONFIG], [AC_REQUIRE([LT_PROG_RC])dnl AC_LANG_SAVE # Source file extension for RC test sources. ac_ext=rc # Object file extension for compiled RC test sources. objext=o _LT_TAGVAR(objext, $1)=$objext # Code to be used in simple compile tests lt_simple_compile_test_code='sample MENU { MENUITEM "&Soup", 100, CHECKED }' # Code to be used in simple link tests lt_simple_link_test_code=$lt_simple_compile_test_code # ltmain only uses $CC for tagged configurations so make sure $CC is set. _LT_TAG_COMPILER # save warnings/boilerplate of simple test code _LT_COMPILER_BOILERPLATE _LT_LINKER_BOILERPLATE # Allow CC to be a program name with arguments. lt_save_CC=$CC lt_save_CFLAGS=$CFLAGS lt_save_GCC=$GCC GCC= CC=${RC-"windres"} CFLAGS= compiler=$CC _LT_TAGVAR(compiler, $1)=$CC _LT_CC_BASENAME([$compiler]) _LT_TAGVAR(lt_cv_prog_compiler_c_o, $1)=yes if test -n "$compiler"; then : _LT_CONFIG($1) fi GCC=$lt_save_GCC AC_LANG_RESTORE CC=$lt_save_CC CFLAGS=$lt_save_CFLAGS ])# _LT_LANG_RC_CONFIG # LT_PROG_GCJ # ----------- AC_DEFUN([LT_PROG_GCJ], [m4_ifdef([AC_PROG_GCJ], [AC_PROG_GCJ], [m4_ifdef([A][M_PROG_GCJ], [A][M_PROG_GCJ], [AC_CHECK_TOOL(GCJ, gcj,) test set = "${GCJFLAGS+set}" || GCJFLAGS="-g -O2" AC_SUBST(GCJFLAGS)])])[]dnl ]) # Old name: AU_ALIAS([LT_AC_PROG_GCJ], [LT_PROG_GCJ]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_GCJ], []) # LT_PROG_GO # ---------- AC_DEFUN([LT_PROG_GO], [AC_CHECK_TOOL(GOC, gccgo,) ]) # LT_PROG_RC # ---------- AC_DEFUN([LT_PROG_RC], [AC_CHECK_TOOL(RC, windres,) ]) # Old name: AU_ALIAS([LT_AC_PROG_RC], [LT_PROG_RC]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_RC], []) # _LT_DECL_EGREP # -------------- # If we don't have a new enough Autoconf to choose the best grep # available, choose the one first in the user's PATH. m4_defun([_LT_DECL_EGREP], [AC_REQUIRE([AC_PROG_EGREP])dnl AC_REQUIRE([AC_PROG_FGREP])dnl test -z "$GREP" && GREP=grep _LT_DECL([], [GREP], [1], [A grep program that handles long lines]) _LT_DECL([], [EGREP], [1], [An ERE matcher]) _LT_DECL([], [FGREP], [1], [A literal string matcher]) dnl Non-bleeding-edge autoconf doesn't subst GREP, so do it here too AC_SUBST([GREP]) ]) # _LT_DECL_OBJDUMP # -------------- # If we don't have a new enough Autoconf to choose the best objdump # available, choose the one first in the user's PATH. m4_defun([_LT_DECL_OBJDUMP], [AC_CHECK_TOOL(OBJDUMP, objdump, false) test -z "$OBJDUMP" && OBJDUMP=objdump _LT_DECL([], [OBJDUMP], [1], [An object symbol dumper]) AC_SUBST([OBJDUMP]) ]) # _LT_DECL_DLLTOOL # ---------------- # Ensure DLLTOOL variable is set. m4_defun([_LT_DECL_DLLTOOL], [AC_CHECK_TOOL(DLLTOOL, dlltool, false) test -z "$DLLTOOL" && DLLTOOL=dlltool _LT_DECL([], [DLLTOOL], [1], [DLL creation program]) AC_SUBST([DLLTOOL]) ]) # _LT_DECL_SED # ------------ # Check for a fully-functional sed program, that truncates # as few characters as possible. Prefer GNU sed if found. m4_defun([_LT_DECL_SED], [AC_PROG_SED test -z "$SED" && SED=sed Xsed="$SED -e 1s/^X//" _LT_DECL([], [SED], [1], [A sed program that does not truncate output]) _LT_DECL([], [Xsed], ["\$SED -e 1s/^X//"], [Sed that helps us avoid accidentally triggering echo(1) options like -n]) ])# _LT_DECL_SED m4_ifndef([AC_PROG_SED], [ ############################################################ # NOTE: This macro has been submitted for inclusion into # # GNU Autoconf as AC_PROG_SED. When it is available in # # a released version of Autoconf we should remove this # # macro and use it instead. # ############################################################ m4_defun([AC_PROG_SED], [AC_MSG_CHECKING([for a sed that does not truncate output]) AC_CACHE_VAL(lt_cv_path_SED, [# Loop through the user's path and test for sed and gsed. # Then use that list of sed's as ones to test for truncation. as_save_IFS=$IFS; IFS=$PATH_SEPARATOR for as_dir in $PATH do IFS=$as_save_IFS test -z "$as_dir" && as_dir=. for lt_ac_prog in sed gsed; do for ac_exec_ext in '' $ac_executable_extensions; do if $as_executable_p "$as_dir/$lt_ac_prog$ac_exec_ext"; then lt_ac_sed_list="$lt_ac_sed_list $as_dir/$lt_ac_prog$ac_exec_ext" fi done done done IFS=$as_save_IFS lt_ac_max=0 lt_ac_count=0 # Add /usr/xpg4/bin/sed as it is typically found on Solaris # along with /bin/sed that truncates output. for lt_ac_sed in $lt_ac_sed_list /usr/xpg4/bin/sed; do test ! -f "$lt_ac_sed" && continue cat /dev/null > conftest.in lt_ac_count=0 echo $ECHO_N "0123456789$ECHO_C" >conftest.in # Check for GNU sed and select it if it is found. if "$lt_ac_sed" --version 2>&1 < /dev/null | grep 'GNU' > /dev/null; then lt_cv_path_SED=$lt_ac_sed break fi while true; do cat conftest.in conftest.in >conftest.tmp mv conftest.tmp conftest.in cp conftest.in conftest.nl echo >>conftest.nl $lt_ac_sed -e 's/a$//' < conftest.nl >conftest.out || break cmp -s conftest.out conftest.nl || break # 10000 chars as input seems more than enough test 10 -lt "$lt_ac_count" && break lt_ac_count=`expr $lt_ac_count + 1` if test "$lt_ac_count" -gt "$lt_ac_max"; then lt_ac_max=$lt_ac_count lt_cv_path_SED=$lt_ac_sed fi done done ]) SED=$lt_cv_path_SED AC_SUBST([SED]) AC_MSG_RESULT([$SED]) ])#AC_PROG_SED ])#m4_ifndef # Old name: AU_ALIAS([LT_AC_PROG_SED], [AC_PROG_SED]) dnl aclocal-1.4 backwards compatibility: dnl AC_DEFUN([LT_AC_PROG_SED], []) # _LT_CHECK_SHELL_FEATURES # ------------------------ # Find out whether the shell is Bourne or XSI compatible, # or has some other useful features. m4_defun([_LT_CHECK_SHELL_FEATURES], [if ( (MAIL=60; unset MAIL) || exit) >/dev/null 2>&1; then lt_unset=unset else lt_unset=false fi _LT_DECL([], [lt_unset], [0], [whether the shell understands "unset"])dnl # test EBCDIC or ASCII case `echo X|tr X '\101'` in A) # ASCII based system # \n is not interpreted correctly by Solaris 8 /usr/ucb/tr lt_SP2NL='tr \040 \012' lt_NL2SP='tr \015\012 \040\040' ;; *) # EBCDIC based system lt_SP2NL='tr \100 \n' lt_NL2SP='tr \r\n \100\100' ;; esac _LT_DECL([SP2NL], [lt_SP2NL], [1], [turn spaces into newlines])dnl _LT_DECL([NL2SP], [lt_NL2SP], [1], [turn newlines into spaces])dnl ])# _LT_CHECK_SHELL_FEATURES # _LT_PATH_CONVERSION_FUNCTIONS # ----------------------------- # Determine what file name conversion functions should be used by # func_to_host_file (and, implicitly, by func_to_host_path). These are needed # for certain cross-compile configurations and native mingw. m4_defun([_LT_PATH_CONVERSION_FUNCTIONS], [AC_REQUIRE([AC_CANONICAL_HOST])dnl AC_REQUIRE([AC_CANONICAL_BUILD])dnl AC_MSG_CHECKING([how to convert $build file names to $host format]) AC_CACHE_VAL(lt_cv_to_host_file_cmd, [case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_w32 ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_cygwin_to_w32 ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_w32 ;; esac ;; *-*-cygwin* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_host_file_cmd=func_convert_file_msys_to_cygwin ;; *-*-cygwin* ) lt_cv_to_host_file_cmd=func_convert_file_noop ;; * ) # otherwise, assume *nix lt_cv_to_host_file_cmd=func_convert_file_nix_to_cygwin ;; esac ;; * ) # unhandled hosts (and "normal" native builds) lt_cv_to_host_file_cmd=func_convert_file_noop ;; esac ]) to_host_file_cmd=$lt_cv_to_host_file_cmd AC_MSG_RESULT([$lt_cv_to_host_file_cmd]) _LT_DECL([to_host_file_cmd], [lt_cv_to_host_file_cmd], [0], [convert $build file names to $host format])dnl AC_MSG_CHECKING([how to convert $build file names to toolchain format]) AC_CACHE_VAL(lt_cv_to_tool_file_cmd, [#assume ordinary cross tools, or native build. lt_cv_to_tool_file_cmd=func_convert_file_noop case $host in *-*-mingw* ) case $build in *-*-mingw* ) # actually msys lt_cv_to_tool_file_cmd=func_convert_file_msys_to_w32 ;; esac ;; esac ]) to_tool_file_cmd=$lt_cv_to_tool_file_cmd AC_MSG_RESULT([$lt_cv_to_tool_file_cmd]) _LT_DECL([to_tool_file_cmd], [lt_cv_to_tool_file_cmd], [0], [convert $build files to toolchain format])dnl ])# _LT_PATH_CONVERSION_FUNCTIONS openconnect-8.20/fortinet.c0000644000076400007640000007102514204454432017535 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020-2021 David Woodhouse, Daniel Lenski * * Author: David Woodhouse , Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "ppp.h" #include #include #include #include #include #include #include #include #include #include #include #include /* clthello/svrhello strings for Fortinet DTLS initialization. * NB: C string literals implicitly add a final \0 (which is correct for these). */ static const char clthello[] = "GFtype\0clthello\0SVPNCOOKIE"; /* + cookie value + '\0' */ static const char svrhello[] = "GFtype\0svrhello\0handshake"; /* + "ok"/"fail" + '\0' */ void fortinet_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { char *orig_ua = vpninfo->useragent; /* XX: This is what openfortivpn uses */ vpninfo->useragent = (char *)"Mozilla/5.0 SV1"; http_common_headers(vpninfo, buf); vpninfo->useragent = orig_ua; /* XXX: Openfortivpn additionally sends the following * headers, even with GET requests, which should not be * necessary: buf_append(buf, "Accept: *" "/" "*\r\n" "Accept-Encoding: gzip, deflate, br\r\n" "Pragma: no-cache\r\n" "Cache-Control: no-store, no-cache, must-revalidate\r\n" "If-Modified-Since: Sat, 1 Jan 2000 00:00:00 GMT\r\n" "Content-Type: application/x-www-form-urlencoded\r\n" "Content-Length: 0\r\n"); */ } /* XX: consolidate with gpst.c version (differs only in '&' vs ',' as separator for input) */ static int filter_opts(struct oc_text_buf *buf, const char *query, const char *incexc, int include) { const char query_sep = ','; const char *f, *endf, *eq; const char *found, *comma; for (f = query; *f; f=(*endf) ? endf+1 : endf) { endf = strchrnul(f, query_sep); eq = strchr(f, '='); if (!eq || eq > endf) eq = endf; for (found = incexc; *found; found=(*comma) ? comma+1 : comma) { comma = strchrnul(found, ','); if (!strncmp(found, f, MAX(comma-found, eq-f))) break; } if ((include && *found) || (!include && !*found)) { if (buf->pos && buf->data[buf->pos-1] != '?' && buf->data[buf->pos-1] != '&') buf_append(buf, "&"); buf_append_bytes(buf, f, (int)(endf-f)); } } return buf_error(buf); } int fortinet_obtain_cookie(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *req_buf = NULL; struct oc_auth_form *form = NULL; struct oc_form_opt *opt, *opt2; char *resp_buf = NULL, *realm = NULL, *tokeninfo_fields = NULL; req_buf = buf_alloc(); if (buf_error(req_buf)) { ret = buf_error(req_buf); goto out; } ret = do_https_request(vpninfo, "GET", NULL, NULL, &resp_buf, NULL, HTTP_REDIRECT); if (ret < 0) goto out; /* XX: Fortinet's initial 'GET /' normally redirects to /remote/login. * If a valid, non-default "realm" is specified (~= usergroup or authgroup), * it will appear as a query parameter of the resulting URL, and we need to * capture and save it. That is, for example: * 'GET /MyRealmName' will redirect to '/remote/login?realm=MyRealmName' */ if (vpninfo->urlpath) { for (realm = strchr(vpninfo->urlpath, '?'); realm && *++realm; realm=strchr(realm, '&')) { if (!strncmp(realm, "realm=", 6)) { const char *end = strchrnul(realm+1, '&'); realm = strndup(realm+6, end-realm-6); vpn_progress(vpninfo, PRG_INFO, _("Got login realm '%s'\n"), realm); break; } } } /* XX: Fortinet HTML forms *seem* like they should be about as easy to follow * as Juniper HTML forms, but some redirects use Javascript EXCLUSIVELY (no * 'Location' header). Also, a failed login returns the misleading HTTP status * "405 Method Not Allowed", rather than 403/401, and HTTP status 401 is used to * signal an HTML-form-based mode of presenting a 2FA challenge. * * So we just build a static form (username and password) to start. */ form = calloc(1, sizeof(*form)); if (!form) { nomem: ret = -ENOMEM; goto out; } form->auth_id = strdup("_login"); if (!form->auth_id) goto nomem; opt = form->opts = calloc(1, sizeof(*opt)); if (!opt) goto nomem; opt->label = strdup("Username: "); opt->name = strdup("username"); opt->type = OC_FORM_OPT_TEXT; opt2 = opt->next = calloc(1, sizeof(*opt2)); if (!opt2) goto nomem; opt2->label = strdup("Password: "); opt2->name = strdup("credential"); opt2->type = OC_FORM_OPT_PASSWORD; free(vpninfo->urlpath); vpninfo->urlpath = strdup("remote/logincheck"); /* XX: submit form repeatedly until success? */ for (;;) { ret = process_auth_form(vpninfo, form); if (ret == OC_FORM_RESULT_CANCELLED || ret < 0) goto out; /* generate token code if specified */ ret = do_gen_tokencode(vpninfo, form); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; goto out; } buf_truncate(req_buf); append_form_opts(vpninfo, form, req_buf); buf_append(req_buf, "&realm=%s", realm ?: ""); /* XX: already URL-escaped */ if (!tokeninfo_fields) { /* "normal" form (fields 'username', 'credential') */ buf_append(req_buf, "&ajax=1&just_logged_in=1"); } else { /* 2FA form (fields 'username', 'code', and a bunch of values * from the previous response which we mindlessly parrot back) */ buf_append(req_buf, "&code2=&%s", tokeninfo_fields); free(tokeninfo_fields); tokeninfo_fields = NULL; } if ((ret = buf_error(req_buf))) goto out; /* XX: Disable HTTP auth, because Fortinet uses 401 status to indicate HTML-type 2FA challenge */ int try_http_auth = vpninfo->try_http_auth; vpninfo->try_http_auth = 0; ret = do_https_request(vpninfo, "POST", "application/x-www-form-urlencoded", req_buf, &resp_buf, NULL, HTTP_BODY_ON_ERROR); vpninfo->try_http_auth = try_http_auth; /* If we got SVPNCOOKIE, then we're done. */ struct oc_vpn_option *cookie; for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "SVPNCOOKIE")) { free(vpninfo->cookie); if (asprintf(&vpninfo->cookie, "SVPNCOOKIE=%s", cookie->value) < 0) goto nomem; ret = 0; goto out; } } /* XX: We got 200 status, but no SVPNCOOKIE. tokeninfo-type 2FA? */ if (ret > 0 && !strncmp(resp_buf, "ret=", 4) && strstr(resp_buf, ",tokeninfo=")) { const char *prompt; struct oc_text_buf *tokeninfo_buf = buf_alloc(); /* Hide 'username' field */ opt->type = OC_FORM_OPT_HIDDEN; free(opt2->label); free(opt2->_value); opt2->label = opt2->_value = NULL; /* Change 'credential' field to 'code'. */ opt2->_value = NULL; opt2->name = strdup("code"); opt2->label = strdup("Code: "); if (!can_gen_tokencode(vpninfo, form, opt2)) opt2->type = OC_FORM_OPT_TOKEN; else opt2->type = OC_FORM_OPT_PASSWORD; /* Change 'auth_id' to '_challenge'. */ free(form->auth_id); if (!(form->auth_id = strdup("_challenge"))) goto nomem; /* Save a bunch of values to parrot back */ filter_opts(tokeninfo_buf, resp_buf, "reqid,polid,grp,portal,peer,magic", 1); if ((ret = buf_error(tokeninfo_buf))) goto out; free(tokeninfo_fields); tokeninfo_fields = tokeninfo_buf->data; tokeninfo_buf->data = NULL; buf_free(tokeninfo_buf); if ((prompt = strstr(resp_buf, ",chal_msg="))) { const char *end = strchrnul(prompt, ','); prompt += 10; free(form->message); form->message = strndup(prompt, end-prompt); } } /* XX: We got 401 response with HTML body. HTML-type 2FA? */ else if (ret == -EPERM && resp_buf) { xmlDocPtr doc = NULL; xmlNode *node; char *url = internal_get_url(vpninfo); if (!url) goto nomem; /* XX: HTML body should contain a "normal" HTML form with hidden fields * including 'username', 'magic', 'reqid', 'grpid' (similar to the tokeninfo-type * 2FA bove), and a password field named 'credential'. */ doc = htmlReadMemory(resp_buf, strlen(resp_buf), url, NULL, HTML_PARSE_RECOVER|HTML_PARSE_NOERROR|HTML_PARSE_NOWARNING|HTML_PARSE_NONET); free(url); node = find_form_node(doc); if (node) { free_auth_form(form); form = parse_form_node(vpninfo, node, NULL, can_gen_tokencode); if (!form) goto no_html_form; } else { no_html_form: xmlFreeDoc(doc); ret = -EINVAL; goto out; } } } out: free(realm); if (resp_buf) free(resp_buf); if (form) free_auth_form(form); free(tokeninfo_fields); buf_free(req_buf); return ret; } /* Parse this: */ static int parse_fortinet_xml_config(struct openconnect_info *vpninfo, char *buf, int len) { xmlNode *xml_node, *x, *x2; xmlDocPtr xml_doc; int ret = 0, n_dns = 0, default_route = 1; char *s = NULL, *s2 = NULL; int reconnect_after_drop = -1; struct oc_text_buf *domains = NULL; if (!buf || !len) return -EINVAL; xml_doc = xmlReadMemory(buf, len, "noname.xml", NULL, XML_PARSE_NOERROR|XML_PARSE_RECOVER); if (!xml_doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse Fortinet config XML\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), buf); return -EINVAL; } xml_node = xmlDocGetRootElement(xml_doc); if (!xml_node || !xmlnode_is_named(xml_node, "sslvpn-tunnel")) return -EINVAL; struct oc_vpn_option *new_opts = NULL; struct oc_ip_info new_ip_info = {}; domains = buf_alloc(); if (vpninfo->dtls_state == DTLS_NOSECRET && !xmlnode_get_prop(xml_node, "dtls", &s) && atoi(s)) { udp_sockaddr(vpninfo, vpninfo->port); /* XX: DTLS always uses same port as TLS? */ vpn_progress(vpninfo, PRG_INFO, _("DTLS is enabled on port %d\n"), vpninfo->port); vpninfo->dtls_state = DTLS_SECRET; /* This doesn't mean it actually will; it means that we can at least *try* */ vpninfo->dtls12 = 1; } for (xml_node = xml_node->children; xml_node; xml_node=xml_node->next) { if (xmlnode_is_named(xml_node, "auth-timeout") && !xmlnode_get_prop(xml_node, "val", &s)) vpninfo->auth_expiration = time(NULL) + atol(s); else if (xmlnode_is_named(xml_node, "idle-timeout") && !xmlnode_get_prop(xml_node, "val", &s)) { int sec = vpninfo->idle_timeout = atoi(s); vpn_progress(vpninfo, PRG_INFO, _("Idle timeout is %d minutes.\n"), sec/60); } else if (xmlnode_is_named(xml_node, "dtls-config") && !xmlnode_get_prop(xml_node, "heartbeat-interval", &s)) { int sec = atoi(s); if (sec && !vpninfo->dtls_times.dpd) vpninfo->dtls_times.dpd = vpninfo->ssl_times.dpd = sec; } else if (xmlnode_is_named(xml_node, "auth-ses")) { /* These settings were apparently added in v6.2.1 of the Fortigate server, * (see https://docs.fortinet.com/document/fortigate/6.2.1/cli-reference/281620/vpn-ssl-settings) * and seem to control the possibility of reconnecting after a dropped connection. * See discussion at https://gitlab.com/openconnect/openconnect/-/issues/297#note_664686767 */ int check_ip_src = -1, dropped_session_cleanup = -1; if (!xmlnode_get_prop(xml_node, "tun-connect-without-reauth", &s)) { reconnect_after_drop = atoi(s); if (reconnect_after_drop) { if (!xmlnode_get_prop(xml_node, "check-src-ip", &s)) check_ip_src = atoi(s); if (!xmlnode_get_prop(xml_node, "tun-user-ses-timeout", &s)) dropped_session_cleanup = atoi(s); vpn_progress(vpninfo, PRG_ERR, _("Server reports that reconnect-after-drop is allowed within %d seconds, %s\n"), dropped_session_cleanup, check_ip_src ? _("but only from the same source IP address") : _("even if source IP address changes")); } else vpn_progress(vpninfo, PRG_ERR, _("Server reports that reconnect-after-drop is not allowed. OpenConnect will not\n" "be able to reconnect if dead peer is detected. If reconnection DOES work,\n" "please report to \n")); } } else if (xmlnode_is_named(xml_node, "fos")) { char platform[80], *p = platform, *e = platform + 80; if (!xmlnode_get_prop(xml_node, "platform", &s)) { p+=snprintf(p, e-p, "%s", s); if (!xmlnode_get_prop(xml_node, "major", &s)) p+=snprintf(p, e-p, " v%s", s); if (!xmlnode_get_prop(xml_node, "minor", &s)) p+=snprintf(p, e-p, ".%s", s); if (!xmlnode_get_prop(xml_node, "patch", &s)) p+=snprintf(p, e-p, ".%s", s); if (!xmlnode_get_prop(xml_node, "build", &s)) p+=snprintf(p, e-p, " build %s", s); if (!xmlnode_get_prop(xml_node, "branch", &s)) p+=snprintf(p, e-p, " branch %s", s); if (!xmlnode_get_prop(xml_node, "mr_num", &s)) snprintf(p, e-p, " mr_num %s", s); vpn_progress(vpninfo, PRG_INFO, _("Reported platform is %s\n"), platform); } } else if (xmlnode_is_named(xml_node, "ipv4")) { for (x = xml_node->children; x; x=x->next) { if (xmlnode_is_named(x, "assigned-addr") && !xmlnode_get_prop(x, "ipv4", &s)) { vpn_progress(vpninfo, PRG_INFO, _("Got Legacy IP address %s\n"), s); new_ip_info.addr = add_option_steal(&new_opts, "ipaddr", &s); } else if (xmlnode_is_named(x, "dns")) { if (!xmlnode_get_prop(x, "domain", &s) && s && *s) { vpn_progress(vpninfo, PRG_INFO, _("Got search domain %s\n"), s); buf_append(domains, "%s ", s); } if (!xmlnode_get_prop(x, "ip", &s) && s && *s) { vpn_progress(vpninfo, PRG_INFO, _("Got IPv%d DNS server %s\n"), 4, s); if (n_dns < 3) new_ip_info.dns[n_dns++] = add_option_steal(&new_opts, "DNS", &s); } } else if (xmlnode_is_named(x, "split-dns")) { int ii; if (!xmlnode_get_prop(x, "domains", &s) && s && *s) vpn_progress(vpninfo, PRG_ERR, _("WARNING: Got split-DNS domains %s (not yet implemented)\n"), s); for (ii=1; ii<10; ii++) { char propname[] = "dnsserver0"; propname[9] = '0' + ii; if (!xmlnode_get_prop(x, propname, &s) && s && *s) vpn_progress(vpninfo, PRG_ERR, _("WARNING: Got split-DNS server %s (not yet implemented)\n"), s); else break; } } else if (xmlnode_is_named(x, "split-tunnel-info")) { for (x2 = x->children; x2; x2=x2->next) { if (xmlnode_is_named(x2, "addr")) { if (!xmlnode_get_prop(x2, "ip", &s) && !xmlnode_get_prop(x2, "mask", &s2) && s && s2 && *s && *s2) { struct oc_split_include *inc = malloc(sizeof(*inc)); char *route = malloc(32); default_route = 0; if (!route || !inc) { free(route); free(inc); free_optlist(new_opts); free_split_routes(&new_ip_info); ret = -ENOMEM; goto out; } snprintf(route, 32, "%s/%s", s, s2); vpn_progress(vpninfo, PRG_INFO, _("Got IPv%d route %s\n"), 4, route); inc->route = add_option_steal(&new_opts, "split-include", &route); inc->next = new_ip_info.split_includes; new_ip_info.split_includes = inc; /* XX: static analyzer doesn't realize that add_option_steal will steal route's reference, so... */ free(route); } } } } } } else if (xmlnode_is_named(xml_node, "ipv6")) { for (x = xml_node->children; x; x=x->next) { if (xmlnode_is_named(x, "assigned-addr") && !xmlnode_get_prop(x, "ipv6", &s)) { if (!xmlnode_get_prop(x, "prefix-len", &s2)) { char *a; if (asprintf(&a, "%s/%s", s, s2) < 0) { ret = -ENOMEM; goto out; } vpn_progress(vpninfo, PRG_INFO, _("Got IPv6 address %s\n"), a); if (!vpninfo->disable_ipv6) new_ip_info.netmask6 = add_option_steal(&new_opts, "ipaddr6", &a); free(a); } else { vpn_progress(vpninfo, PRG_INFO, _("Got IPv6 address %s\n"), s); if (!vpninfo->disable_ipv6) new_ip_info.addr6 = add_option_steal(&new_opts, "ipaddr6", &s); } } else if (xmlnode_is_named(x, "dns")) { if (!xmlnode_get_prop(x, "domain", &s) && s && *s) { vpn_progress(vpninfo, PRG_INFO, _("Got search domain %s\n"), s); buf_append(domains, "%s ", s); } if (!xmlnode_get_prop(x, "ipv6", &s) && s && *s) { vpn_progress(vpninfo, PRG_INFO, _("Got IPv%d DNS server %s\n"), 6, s); if (n_dns < 3) new_ip_info.dns[n_dns++] = add_option_steal(&new_opts, "DNS", &s); } } else if (xmlnode_is_named(x, "split-dns")) { int ii; if (!xmlnode_get_prop(x, "domains", &s) && s && *s) vpn_progress(vpninfo, PRG_ERR, _("WARNING: Got split-DNS domains %s (not yet implemented)\n"), s); for (ii=1; ii<10; ii++) { char propname[] = "dnsserver0"; propname[9] = '0' + ii; if (!xmlnode_get_prop(x, propname, &s) && s && *s) vpn_progress(vpninfo, PRG_ERR, _("WARNING: Got split-DNS server %s (not yet implemented)\n"), s); else break; } } else if (xmlnode_is_named(x, "split-tunnel-info")) { for (x2 = x->children; x2; x2=x2->next) { if (xmlnode_is_named(x2, "addr")) { if (!xmlnode_get_prop(x2, "ipv6", &s) && !xmlnode_get_prop(x2, "prefix-len", &s2) && s && s2 && *s && *s2) { struct oc_split_include *inc = malloc(sizeof(*inc)); char *route = NULL; default_route = 0; if (!inc || asprintf(&route, "%s/%s", s, s2) == -1) { free(route); free(inc); free_optlist(new_opts); free_split_routes(&new_ip_info); ret = -ENOMEM; goto out; } vpn_progress(vpninfo, PRG_INFO, _("Got IPv%d route %s\n"), 6, route); inc->route = add_option_steal(&new_opts, "split-include", &route); inc->next = new_ip_info.split_includes; new_ip_info.split_includes = inc; /* XX: static analyzer doesn't realize that add_option_steal will steal route's reference, so... */ free(route); } } } } } } } if (reconnect_after_drop < 0) { vpn_progress(vpninfo, PRG_ERR, _("WARNING: Fortinet server does not specifically enable or disable reconnection\n" " without reauthentication. If automatic reconnection does work, please\n" " report results to \n")); } if (reconnect_after_drop == -1) vpn_progress(vpninfo, PRG_ERR, _("Server did not send . OpenConnect will\n" "probably not be able to reconnect if dead peer is detected. If reconnection DOES,\n" "work please report to \n")); if (default_route && new_ip_info.addr) new_ip_info.netmask = add_option_dup(&new_opts, "full-netmask", "0.0.0.0", -1); if (buf_error(domains) == 0 && domains->pos > 0) { domains->data[domains->pos-1] = '\0'; new_ip_info.domain = add_option_steal(&new_opts, "search", &domains->data); } ret = install_vpn_opts(vpninfo, new_opts, &new_ip_info); if (ret) { free_optlist(new_opts); free_split_routes(&new_ip_info); vpn_progress(vpninfo, PRG_ERR, _("Failed to find VPN options\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), buf); } out: xmlFreeDoc(xml_doc); buf_free(domains); free(s); free(s2); return ret; } static int fortinet_configure(struct openconnect_info *vpninfo) { char *res_buf = NULL; struct oc_text_buf *reqbuf = NULL; struct oc_vpn_option *svpncookie = NULL; int ret; /* XXX: We should use check_address_sanity to verify that addresses haven't changed on a reconnect, except that: 1) We haven't yet been able to test fully on a Fortinet server that actually allows reconnects 2) The evidence we do have suggests that Fortinet servers which *do* allow reconnects nevertheless *do not* allow us to redo the configuration requests without invalidating the cookie. So reconnects *must* use only ppp_reset(), rather than calling fortinet_configure(), to redo the PPP tunnel setup. See https://gitlab.com/openconnect/openconnect/-/issues/235#note_552995833 */ if (!vpninfo->cookies) { /* XX: This will happen if authentication was separate/external */ ret = internal_split_cookies(vpninfo, 1, "SVPNCOOKIE"); if (ret) return ret; } for (svpncookie = vpninfo->cookies; svpncookie; svpncookie = svpncookie->next) if (!strcmp(svpncookie->option, "SVPNCOOKIE")) break; if (!svpncookie) { vpn_progress(vpninfo, PRG_ERR, _("No cookie named SVPNCOOKIE.\n")); ret = -EINVAL; goto out; } free(vpninfo->urlpath); /* Fetch the connection options in XML format */ vpninfo->urlpath = strdup("remote/fortisslvpn_xml"); ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); if (ret < 0) { if (ret == -EPERM) { /* XXX: Forticlient and Openfortivpn fetch the legacy HTTP configuration. * FortiOS 4 was the last version to send the legacy HTTP configuration. * FortiOS 5 and later send the current XML configuration. * We clearly do not need to support FortiOS 4 anymore. * * Yet we keep this code around in order to get a sanity check about * whether the SVPNCOOKIE is still valid/alive, until we are sure we've * worked out the weirdness with reconnects. */ vpninfo->urlpath = strdup("remote/fortisslvpn"); int ret2 = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); if (ret2 > 0) vpn_progress(vpninfo, PRG_ERR, _("Ancient Fortinet server (, or see the discussions on\n" "https://gitlab.com/openconnect/openconnect/-/issues/297 and\n" "https://gitlab.com/openconnect/openconnect/-/issues/298.\n")); } goto out; } else if (ret == 0) { /* A redirect to /remote/login also indicates that the auth session/cookie * is no longer valid, and appears to occur only on older FortiGate * versions. * * XX: See do_https_request() for why ret==0 can only happen * if there was a successful-but-unfetched redirect. */ if (vpninfo->urlpath && !strncmp(vpninfo->urlpath, "remote/login", 12)) ret = -EPERM; else ret = -EINVAL; goto out; } ret = parse_fortinet_xml_config(vpninfo, res_buf, ret); if (ret) goto out; reqbuf = vpninfo->ppp_tls_connect_req; if (!reqbuf) reqbuf = buf_alloc(); buf_truncate(reqbuf); buf_append(reqbuf, "GET /remote/sslvpn-tunnel HTTP/1.1\r\n"); fortinet_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "\r\n"); if ((ret = buf_error(reqbuf))) { buf_err: vpn_progress(vpninfo, PRG_ERR, _("Error establishing Fortinet connection\n")); goto out; } vpninfo->ppp_tls_connect_req = reqbuf; reqbuf = NULL; reqbuf = vpninfo->ppp_dtls_connect_req; if (!reqbuf) reqbuf = buf_alloc(); buf_truncate(reqbuf); buf_append_be16(reqbuf, 2 + sizeof(clthello) + strlen(svpncookie->value) + 1); /* length */ buf_append_bytes(reqbuf, clthello, sizeof(clthello)); buf_append(reqbuf, "%s%c", svpncookie->value, 0); if ((ret = buf_error(reqbuf))) goto buf_err; vpninfo->ppp_dtls_connect_req = reqbuf; reqbuf = NULL; int ipv4 = !!vpninfo->ip_info.addr; int ipv6 = !!(vpninfo->ip_info.addr6 || vpninfo->ip_info.netmask6); ret = openconnect_ppp_new(vpninfo, PPP_ENCAP_FORTINET, ipv4, ipv6); out: buf_free(reqbuf); free(res_buf); return ret; } int fortinet_connect(struct openconnect_info *vpninfo) { int ret = 0; ret = fortinet_configure(vpninfo); if (ret) { err: openconnect_close_https(vpninfo, 0); return ret; } ret = ppp_tcp_should_connect(vpninfo); if (ret <= 0) goto err; /* XX: Openfortivpn closes and reopens the HTTPS connection here, and * also sends 'Host: sslvpn' (rather than the true hostname). Neither * appears to be necessary, and either might prevent connecting to * a vhost-based Fortinet server. */ ret = openconnect_open_https(vpninfo); if (ret) goto err; if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', vpninfo->ppp_tls_connect_req->data); ret = vpninfo->ssl_write(vpninfo, vpninfo->ppp_tls_connect_req->data, vpninfo->ppp_tls_connect_req->pos); if (ret < 0) { openconnect_close_https(vpninfo, 0); goto err; } /* XX: If this connection request succeeds, no HTTP response appears. * We just start sending our encapsulated PPP configuration packets. * However, if the request FAILS, it WILL send an HTTP response. * We handle that in the PPP mainloop. * * Don't blame me. I didn't design this. */ vpninfo->ppp->check_http_response = 1; /* Trigger the first PPP negotiations and ensure the PPP state * is PPPS_ESTABLISH so that ppp_tcp_mainloop() knows we've started. */ ppp_start_tcp_mainloop(vpninfo); /* XX: Some Fortinet servers can't cope with reconnect, which means * there's absolutely no point in trying to opportunistically do * DTLS after this point. Can we detect that, and disable DTLS? * I think it's relatively harmless because the auth packet over * DTLS will fail anyway, so we'll never make it past DTLS_CONNECTED * to DTLS_ESTABLISHED and never give up on the existing TCP link * but it's still a waste of time and resources trying to do it * at all. */ monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); return 0; } int fortinet_dtls_catch_svrhello(struct openconnect_info *vpninfo, struct pkt *pkt) { char *const buf = (void *)pkt->data; const int len = pkt->len; buf[len] = 0; if (load_be16(buf) != len || len < sizeof(svrhello) + 2 || memcmp(buf + 2, svrhello, sizeof(svrhello))) { vpn_progress(vpninfo, PRG_ERR, _("Did not receive expected svrhello response.\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)buf, len); disable: dtls_close(vpninfo); vpninfo->dtls_state = DTLS_DISABLED; return -EINVAL; } if (strncmp("ok", buf + 2 + sizeof(svrhello), len - 2 - sizeof(svrhello))) { vpn_progress(vpninfo, PRG_ERR, _("svrhello status was \"%.*s\" rather than \"ok\"\n"), (int)(len - 2 - sizeof(svrhello)), buf + 2 + sizeof(svrhello)); goto disable; } /* XX: The 'ok' packet might get dropped, and the server won't resend * it when we resend the GET request. What will happen in that case * is it'll just keep sending PPP frames. If we detect a PPP frame * we should take that as 'success' too. Bonus points for actually * feeding it to the PPP code to process too, but dropping it *ought* * to be OK. */ return 1; } int fortinet_bye(struct openconnect_info *vpninfo, const char *reason) { char *orig_path; char *res_buf=NULL; int ret; /* XX: handle clean PPP termination? ppp_bye(vpninfo); */ /* We need to close and reopen the HTTPS connection (to kill * the fortinet tunnel) and submit a new HTTPS request to logout. */ openconnect_close_https(vpninfo, 0); orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("remote/logout"); ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (ret < 0) vpn_progress(vpninfo, PRG_ERR, _("Logout failed.\n")); else vpn_progress(vpninfo, PRG_INFO, _("Logout successful.\n")); free(res_buf); return ret; } openconnect-8.20/script.c0000644000076400007640000004414514176202121017204 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #ifdef _WIN32 #include #define getpid _getpid #else #include #endif #include #include #include #include #include int script_setenv(struct openconnect_info *vpninfo, const char *opt, const char *val, int trunc, int append) { struct oc_vpn_option *p; char *str; for (p = vpninfo->script_env; p; p = p->next) { if (!strcmp(opt, p->option)) { if (append) { if (asprintf(&str, "%s %s", p->value, val) == -1) return -ENOMEM; } else str = val ? strdup(val) : NULL; free (p->value); p->value = str; return 0; } } p = malloc(sizeof(*p)); if (!p) return -ENOMEM; p->next = vpninfo->script_env; p->option = strdup(opt); p->value = val ? (trunc ? strndup(val, trunc) : strdup(val)) : NULL; vpninfo->script_env = p; return 0; } int script_setenv_int(struct openconnect_info *vpninfo, const char *opt, int value) { char buf[16]; sprintf(buf, "%d", value); return script_setenv(vpninfo, opt, buf, 0, 0); } static inline int cls(uint32_t word) { #if defined(HAVE_BUILTIN_CLZ) && UINT_MAX == UINT32_MAX word = ~word; if (!word) return 32; return __builtin_clz(word); #else int masklen = 0; while (word & 0x80000000) { word <<= 1; masklen++; } return masklen; #endif } static int netmasklen(struct in_addr addr) { return cls(ntohl(addr.s_addr)); } static int netmasklen6(struct in6_addr *addr) { int masklen; uint32_t *p = (uint32_t *)(addr->s6_addr); for (masklen = 0; masklen < 128; p++, masklen += 32) { uint32_t v = ntohl(*p); if (~v == 0) continue; return masklen + cls(v); } return 128; } static uint32_t netmaskbits(int masklen) { if (masklen) return htonl(0xffffffff << (32-masklen)); else /* Shifting by 32 is invalid, so special-case it */ return 0; } static int process_split_xxclude(struct openconnect_info *vpninfo, int include, const char *route, int *v4_incs, int *v6_incs) { struct in_addr net_addr, mask_addr; const char *in_ex = include ? "IN" : "EX"; char envname[80], uptoslash[20], abuf[INET_ADDRSTRLEN]; const char *slash; char *endp; int masklen; slash = strchr(route, '/'); envname[79] = uptoslash[19] = 0; if (strchr(route, ':')) { snprintf(envname, 79, "CISCO_IPV6_SPLIT_%sC_%d_ADDR", in_ex, *v6_incs); script_setenv(vpninfo, envname, route, slash ? slash - route : 0, 0); /* Accept IPv6 netmask in several forms */ snprintf(envname, 79, "CISCO_IPV6_SPLIT_%sC_%d_MASKLEN", in_ex, *v6_incs); if (!slash) { /* no mask (same as /128) */ script_setenv_int(vpninfo, envname, 128); } else if ((masklen = strtol(slash+1, &endp, 10))<=128 && (*endp=='\0' || isspace(*endp))) { /* mask is /N */ script_setenv_int(vpninfo, envname, masklen); } else { /* mask is /dead:beef:: */ struct in6_addr a; if (inet_pton(AF_INET6, slash+1, &a) <= 0) goto bad; masklen = netmasklen6(&a); /* something invalid like /ffff::1 */ for (int ii = (masklen >> 3); ii < 16; ii++) { if (ii == (masklen >> 3) && (~a.s6_addr[ii] & 0xff) != (0xff >> (masklen & 0x07))) goto bad; else if (a.s6_addr[ii] != 0) goto bad; } script_setenv_int(vpninfo, envname, masklen); } (*v6_incs)++; return 0; } if (!slash) strncpy(uptoslash, route, sizeof(uptoslash)-1); else { int l = MIN(slash - route, sizeof(uptoslash)-1); strncpy(uptoslash, route, l); uptoslash[l] = 0; } /* Network address must be parseable */ if (!inet_aton(uptoslash, &net_addr)) { bad: if (include) vpn_progress(vpninfo, PRG_ERR, _("Discard bad split include: \"%s\"\n"), route); else vpn_progress(vpninfo, PRG_ERR, _("Discard bad split exclude: \"%s\"\n"), route); return -EINVAL; } /* Accept netmask in several forms */ if (!slash) { /* no mask (same as /32) */ masklen = 32; mask_addr.s_addr = netmaskbits(32); } else if ((masklen = strtol(slash+1, &endp, 10))<=32 && *endp!='.') { /* mask is /N */ mask_addr.s_addr = netmaskbits(masklen); } else if (inet_aton(slash+1, &mask_addr)) { /* mask is /A.B.C.D */ masklen = netmasklen(mask_addr); /* something invalid like /255.0.0.1 */ if (netmaskbits(masklen) != mask_addr.s_addr) goto bad; } else goto bad; /* Fix incorrectly-set host bits */ if (net_addr.s_addr & ~mask_addr.s_addr) { net_addr.s_addr &= mask_addr.s_addr; inet_ntop(AF_INET, &net_addr, abuf, sizeof(abuf)); if (include) vpn_progress(vpninfo, PRG_ERR, _("WARNING: Split include \"%s\" has host bits set, replacing with \"%s/%d\".\n"), route, abuf, masklen); else vpn_progress(vpninfo, PRG_ERR, _("WARNING: Split exclude \"%s\" has host bits set, replacing with \"%s/%d\".\n"), route, abuf, masklen); } snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_ADDR", in_ex, *v4_incs); script_setenv(vpninfo, envname, inet_ntop(AF_INET, &net_addr, abuf, sizeof(abuf)), 0, 0); snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_MASK", in_ex, *v4_incs); script_setenv(vpninfo, envname, inet_ntop(AF_INET, &mask_addr, abuf, sizeof(abuf)), 0, 0); snprintf(envname, 79, "CISCO_SPLIT_%sC_%d_MASKLEN", in_ex, *v4_incs); script_setenv_int(vpninfo, envname, masklen); (*v4_incs)++; return 0; } static void setenv_cstp_opts(struct openconnect_info *vpninfo) { char *env_buf; int buflen = 0; int bufofs = 0; struct oc_vpn_option *opt; for (opt = vpninfo->cstp_options; opt; opt = opt->next) buflen += 2 + strlen(opt->option) + strlen(opt->value); env_buf = malloc(buflen + 1); if (!env_buf) return; env_buf[buflen] = 0; for (opt = vpninfo->cstp_options; opt; opt = opt->next) bufofs += snprintf(env_buf + bufofs, buflen - bufofs, "%s=%s\n", opt->option, opt->value); script_setenv(vpninfo, "CISCO_CSTP_OPTIONS", env_buf, 0, 0); free(env_buf); } static unsigned char nybble(unsigned char n) { if (n >= '0' && n <= '9') return n - '0'; else if (n >= 'A' && n <= 'F') return n - ('A' - 10); else if (n >= 'a' && n <= 'f') return n - ('a' - 10); return 0; } unsigned char unhex(const char *data) { return (nybble(data[0]) << 4) | nybble(data[1]); } static void set_banner(struct openconnect_info *vpninfo) { char *banner, *legacy_banner, *q; const char *p; if (!vpninfo->banner || !(banner = malloc(strlen(vpninfo->banner)+1))) { script_setenv(vpninfo, "CISCO_BANNER", NULL, 0, 0); return; } p = vpninfo->banner; q = banner; while (*p) { if (*p == '%' && isxdigit((int)(unsigned char)p[1]) && isxdigit((int)(unsigned char)p[2])) { *(q++) = unhex(p + 1); p += 3; } else *(q++) = *(p++); } *q = 0; legacy_banner = openconnect_utf8_to_legacy(vpninfo, banner); script_setenv(vpninfo, "CISCO_BANNER", legacy_banner, 0, 0); if (legacy_banner != banner) free(legacy_banner); free(banner); } void prepare_script_env(struct openconnect_info *vpninfo) { if (vpninfo->ip_info.gateway_addr) script_setenv(vpninfo, "VPNGATEWAY", vpninfo->ip_info.gateway_addr, 0, 0); set_banner(vpninfo); script_setenv(vpninfo, "CISCO_SPLIT_INC", NULL, 0, 0); script_setenv(vpninfo, "CISCO_SPLIT_EXC", NULL, 0, 0); script_setenv_int(vpninfo, "INTERNAL_IP4_MTU", vpninfo->ip_info.mtu); script_setenv_int(vpninfo, "VPNPID", (int)getpid()); script_setenv_int(vpninfo, "LOG_LEVEL", vpninfo->verbose); if (vpninfo->idle_timeout) script_setenv_int(vpninfo, "IDLE_TIMEOUT", vpninfo->idle_timeout); else script_setenv(vpninfo, "IDLE_TIMEOUT", NULL, 0, 0); if (vpninfo->ip_info.addr) { script_setenv(vpninfo, "INTERNAL_IP4_ADDRESS", vpninfo->ip_info.addr, 0, 0); if (vpninfo->ip_info.netmask) { struct in_addr addr; struct in_addr mask; if (!inet_aton(vpninfo->ip_info.addr, &addr)) vpn_progress(vpninfo, PRG_ERR, _("Ignoring legacy network because address \"%s\" is invalid.\n"), vpninfo->ip_info.addr); else if (!inet_aton(vpninfo->ip_info.netmask, &mask)) bad_netmask: vpn_progress(vpninfo, PRG_ERR, _("Ignoring legacy network because netmask \"%s\" is invalid.\n"), vpninfo->ip_info.netmask); else { char netaddr[INET_ADDRSTRLEN]; int masklen = netmasklen(mask); if (netmaskbits(masklen) != mask.s_addr) goto bad_netmask; addr.s_addr &= mask.s_addr; inet_ntop(AF_INET, &addr, netaddr, sizeof(netaddr)); script_setenv(vpninfo, "INTERNAL_IP4_NETADDR", netaddr, 0, 0); script_setenv(vpninfo, "INTERNAL_IP4_NETMASK", vpninfo->ip_info.netmask, 0, 0); script_setenv_int(vpninfo, "INTERNAL_IP4_NETMASKLEN", masklen); } } } if (vpninfo->ip_info.addr6) script_setenv(vpninfo, "INTERNAL_IP6_ADDRESS", vpninfo->ip_info.addr6, 0, 0); if (vpninfo->ip_info.netmask6) script_setenv(vpninfo, "INTERNAL_IP6_NETMASK", vpninfo->ip_info.netmask6, 0, 0); /* The 'netmask6' is actually the address *and* netmask. From which we * obtain just the address on its own, if we don't have it separately */ if (vpninfo->ip_info.netmask6 && !vpninfo->ip_info.addr6) { char *slash = strchr(vpninfo->ip_info.netmask6, '/'); if (slash) script_setenv(vpninfo, "INTERNAL_IP6_ADDRESS", vpninfo->ip_info.netmask6, slash - vpninfo->ip_info.netmask6, 0); } if (vpninfo->ip_info.dns[0]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[0], 0, 0); else script_setenv(vpninfo, "INTERNAL_IP4_DNS", NULL, 0, 0); if (vpninfo->ip_info.dns[1]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[1], 0, 1); if (vpninfo->ip_info.dns[2]) script_setenv(vpninfo, "INTERNAL_IP4_DNS", vpninfo->ip_info.dns[2], 0, 1); if (vpninfo->ip_info.nbns[0]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[0], 0, 0); else script_setenv(vpninfo, "INTERNAL_IP4_NBNS", NULL, 0, 0); if (vpninfo->ip_info.nbns[1]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[1], 0, 1); if (vpninfo->ip_info.nbns[2]) script_setenv(vpninfo, "INTERNAL_IP4_NBNS", vpninfo->ip_info.nbns[2], 0, 1); if (vpninfo->ip_info.domain) script_setenv(vpninfo, "CISCO_DEF_DOMAIN", vpninfo->ip_info.domain, 0, 0); else script_setenv(vpninfo, "CISCO_DEF_DOMAIN", NULL, 0, 0); if (vpninfo->ip_info.proxy_pac) script_setenv(vpninfo, "CISCO_PROXY_PAC", vpninfo->ip_info.proxy_pac, 0, 0); if (vpninfo->ip_info.split_dns) { char *list; int len = 0; struct oc_split_include *dns = vpninfo->ip_info.split_dns; while (dns) { len += strlen(dns->route) + 1; dns = dns->next; } list = malloc(len); if (list) { char *p = list; dns = vpninfo->ip_info.split_dns; while (1) { strcpy(p, dns->route); p += strlen(p); dns = dns->next; if (!dns) break; *(p++) = ','; } script_setenv(vpninfo, "CISCO_SPLIT_DNS", list, 0, 0); free(list); } } if (vpninfo->ip_info.split_includes) { struct oc_split_include *this = vpninfo->ip_info.split_includes; int nr_split_includes = 0; int nr_v6_split_includes = 0; while (this) { process_split_xxclude(vpninfo, 1, this->route, &nr_split_includes, &nr_v6_split_includes); this = this->next; } if (nr_split_includes) script_setenv_int(vpninfo, "CISCO_SPLIT_INC", nr_split_includes); if (nr_v6_split_includes) script_setenv_int(vpninfo, "CISCO_IPV6_SPLIT_INC", nr_v6_split_includes); } if (vpninfo->ip_info.split_excludes) { struct oc_split_include *this = vpninfo->ip_info.split_excludes; int nr_split_excludes = 0; int nr_v6_split_excludes = 0; while (this) { process_split_xxclude(vpninfo, 0, this->route, &nr_split_excludes, &nr_v6_split_excludes); this = this->next; } if (nr_split_excludes) script_setenv_int(vpninfo, "CISCO_SPLIT_EXC", nr_split_excludes); if (nr_v6_split_excludes) script_setenv_int(vpninfo, "CISCO_IPV6_SPLIT_EXC", nr_v6_split_excludes); } setenv_cstp_opts(vpninfo); } void free_split_routes(struct oc_ip_info *ip_info) { struct oc_split_include *inc; for (inc = ip_info->split_includes; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } for (inc = ip_info->split_excludes; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } for (inc = ip_info->split_dns; inc; ) { struct oc_split_include *next = inc->next; free(inc); inc = next; } ip_info->split_dns = ip_info->split_includes = ip_info->split_excludes = NULL; } #ifdef _WIN32 static wchar_t *create_script_env(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt; struct oc_text_buf *envbuf; wchar_t **oldenv, **p, *newenv = NULL; int nr_envs = 0, i; /* _wenviron is NULL until we call _wgetenv() */ (void)_wgetenv(L"PATH"); /* Take a copy of _wenviron (but not of its strings) */ for (p = _wenviron; *p; p++) nr_envs++; oldenv = malloc(nr_envs * sizeof(*oldenv)); if (!oldenv) return NULL; memcpy(oldenv, _wenviron, nr_envs * sizeof(*oldenv)); envbuf = buf_alloc(); /* Add the script environment variables, prodding out any members of oldenv which are obsoleted by them. */ for (opt = vpninfo->script_env; opt && !buf_error(envbuf); opt = opt->next) { struct oc_text_buf *buf; buf = buf_alloc(); buf_append_utf16le(buf, opt->option); buf_append_utf16le(buf, "="); if (buf_error(buf)) { buf_free(buf); goto err; } /* See if we can find it in the existing environment */ for (i = 0; i < nr_envs; i++) { if (oldenv[i] && !wcsncmp((wchar_t *)buf->data, oldenv[i], buf->pos / 2)) { oldenv[i] = NULL; break; } } if (opt->value) { buf_append_bytes(envbuf, buf->data, buf->pos); buf_append_utf16le(envbuf, opt->value); buf_append_bytes(envbuf, "\0\0", 2); } buf_free(buf); } for (i = 0; i < nr_envs && !buf_error(envbuf); i++) { if (oldenv[i]) buf_append_bytes(envbuf, oldenv[i], (wcslen(oldenv[i]) + 1) * sizeof(wchar_t)); } buf_append_bytes(envbuf, "\0\0", 2); if (!buf_error(envbuf)) { newenv = (wchar_t *)envbuf->data; envbuf->data = NULL; } err: free(oldenv); buf_free(envbuf); return newenv; } int script_config_tun(struct openconnect_info *vpninfo, const char *reason) { wchar_t *script_w; wchar_t *script_env; int nr_chars; int ret; char *cmd; PROCESS_INFORMATION pi; STARTUPINFOW si; DWORD cpflags, exit_status; if (!vpninfo->vpnc_script || vpninfo->script_tun) return 0; memset(&si, 0, sizeof(si)); si.cb = sizeof(si); /* probably superfluous */ si.dwFlags = STARTF_USESHOWWINDOW; si.wShowWindow = SW_HIDE; script_setenv(vpninfo, "reason", reason, 0, 0); if (asprintf(&cmd, "cscript.exe \"%s\"", vpninfo->vpnc_script) == -1) return 0; nr_chars = MultiByteToWideChar(CP_UTF8, 0, cmd, -1, NULL, 0); script_w = malloc(nr_chars * sizeof(wchar_t)); if (!script_w) { free(cmd); return -ENOMEM; } MultiByteToWideChar(CP_UTF8, 0, cmd, -1, script_w, nr_chars); free(cmd); script_env = create_script_env(vpninfo); cpflags = CREATE_UNICODE_ENVIRONMENT; /* If we're running from a console, let the script use it too. */ if (!GetConsoleWindow()) cpflags |= CREATE_NO_WINDOW; if (CreateProcessW(NULL, script_w, NULL, NULL, FALSE, cpflags, script_env, NULL, &si, &pi)) { ret = WaitForSingleObject(pi.hProcess,10000); if (!GetExitCodeProcess(pi.hProcess, &exit_status)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to get script exit status: %s\n"), openconnect__win32_strerror(GetLastError())); ret = -EIO; } else if (exit_status > 0 && exit_status != STILL_ACTIVE) { /* STILL_ACTIVE == 259. That means that a perfectly normal positive integer return value overlaps with * an exceptional condition. Don't blame me. I didn't design this. * https://docs.microsoft.com/en-us/windows/win32/api/processthreadsapi/nf-processthreadsapi-getexitcodeprocess#remarks */ vpn_progress(vpninfo, PRG_ERR, _("Script '%s' returned error %ld\n"), vpninfo->vpnc_script, exit_status); ret = -EIO; } CloseHandle(pi.hThread); CloseHandle(pi.hProcess); if (ret == WAIT_TIMEOUT || exit_status == STILL_ACTIVE) { vpn_progress(vpninfo, PRG_ERR, _("Script did not complete within 10 seconds.\n")); ret = -ETIMEDOUT; } else if (ret != -EIO) ret = 0; } else { ret = -EIO; } free(script_env); if (ret < 0) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to spawn script '%s' for %s: %s\n"), vpninfo->vpnc_script, reason, errstr); free(errstr); goto cleanup; } cleanup: free(script_w); return ret; } #else /* Must only be run after fork(). */ int apply_script_env(struct oc_vpn_option *envs) { struct oc_vpn_option *p; for (p = envs; p; p = p->next) { if (p->value) setenv(p->option, p->value, 1); else unsetenv(p->option); } return 0; } int script_config_tun(struct openconnect_info *vpninfo, const char *reason) { int ret; pid_t pid; if (!vpninfo->vpnc_script || vpninfo->script_tun) return 0; pid = fork(); if (!pid) { /* Child */ char *script = openconnect_utf8_to_legacy(vpninfo, vpninfo->vpnc_script); apply_script_env(vpninfo->script_env); setenv("reason", reason, 1); execl("/bin/sh", "/bin/sh", "-c", script, NULL); exit(127); } if (pid == -1 || waitpid(pid, &ret, 0) == -1) { int e = errno; vpn_progress(vpninfo, PRG_ERR, _("Failed to spawn script '%s' for %s: %s\n"), vpninfo->vpnc_script, reason, strerror(e)); return -e; } if (!WIFEXITED(ret)) { vpn_progress(vpninfo, PRG_ERR, _("Script '%s' exited abnormally (%x)\n"), vpninfo->vpnc_script, ret); return -EIO; } ret = WEXITSTATUS(ret); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Script '%s' returned error %d\n"), vpninfo->vpnc_script, ret); return -EIO; } return 0; } #endif openconnect-8.20/openconnect.rc0000644000076400007640000000011614067426206020376 0ustar00dwoodhoudwoodhou00000000000000// application icon IDI_ICON1 ICON DISCARDABLE "openconnect.ico" openconnect-8.20/libopenconnect.map.in0000644000076400007640000000645714204454432021654 0ustar00dwoodhoudwoodhou00000000000000OPENCONNECT_5.0 { global: openconnect_check_peer_cert_hash; openconnect_clear_cookie; openconnect_free_cert_info; openconnect_get_cookie; openconnect_get_cstp_cipher; openconnect_get_dtls_cipher; openconnect_get_hostname; openconnect_get_ifname; openconnect_get_ip_info; openconnect_get_peer_cert_DER; openconnect_get_peer_cert_details; openconnect_get_peer_cert_hash; openconnect_get_port; openconnect_get_urlpath; openconnect_get_version; openconnect_has_oath_support; openconnect_has_pkcs11_support; openconnect_has_stoken_support; openconnect_has_system_key_support; openconnect_has_tss_blob_support; openconnect_has_yubioath_support; openconnect_init_ssl; openconnect_mainloop; openconnect_make_cstp_connection; openconnect_obtain_cookie; openconnect_parse_url; openconnect_passphrase_from_fsid; openconnect_reset_ssl; openconnect_set_cafile; openconnect_set_cancel_fd; openconnect_set_cert_expiry_warning; openconnect_set_client_cert; openconnect_set_csd_environ; openconnect_set_dpd; openconnect_set_hostname; openconnect_set_http_proxy; openconnect_set_mobile_info; openconnect_set_option_value; openconnect_set_pfs; openconnect_set_protect_socket_handler; openconnect_set_proxy_auth; openconnect_set_reported_os; openconnect_set_reqmtu; openconnect_set_setup_tun_handler; openconnect_set_stats_handler; openconnect_set_stoken_mode; openconnect_set_system_trust; openconnect_set_token_callbacks; openconnect_set_token_mode; openconnect_set_urlpath; openconnect_set_xmlpost; openconnect_set_xmlsha1; openconnect_setup_cmd_pipe; openconnect_setup_csd; openconnect_setup_dtls; openconnect_setup_tun_device; openconnect_setup_tun_fd; openconnect_setup_tun_script; openconnect_vpninfo_free; openconnect_vpninfo_new; }; OPENCONNECT_5_1 { global: openconnect_set_compression_mode; openconnect_set_loglevel; } OPENCONNECT_5.0; OPENCONNECT_5_2 { global: openconnect_set_http_auth; openconnect_set_protocol; } OPENCONNECT_5_1; OPENCONNECT_5_3 { global: openconnect_disable_ipv6; openconnect_free_peer_cert_chain; openconnect_get_cstp_compression; openconnect_get_dnsname; openconnect_get_dtls_compression; openconnect_get_peer_cert_chain; openconnect_override_getaddrinfo; openconnect_set_localname; openconnect_set_reconnected_handler; } OPENCONNECT_5_2; OPENCONNECT_5_4 { global: openconnect_set_pass_tos; } OPENCONNECT_5_3; OPENCONNECT_5_5 { global: openconnect_get_idle_timeout; openconnect_get_protocol; openconnect_get_supported_protocols; openconnect_free_supported_protocols; openconnect_has_tss2_blob_support; openconnect_set_key_password; openconnect_set_version_string; } OPENCONNECT_5_4; OPENCONNECT_5_6 { global: openconnect_set_trojan_interval; } OPENCONNECT_5_5; OPENCONNECT_5_7 { global: openconnect_set_cookie; openconnect_set_allow_insecure_crypto; openconnect_get_auth_expiration; openconnect_disable_dtls; openconnect_get_connect_url; openconnect_set_webview_callback; openconnect_webview_load_changed; } OPENCONNECT_5_6; OPENCONNECT_PRIVATE { global: @SYMVER_TIME@ @SYMVER_GETLINE@ @SYMVER_JAVA@ @SYMVER_ASPRINTF@ @SYMVER_VASPRINTF@ @SYMVER_WIN32_STRERROR@ @SYMVER_WIN32_SETENV@ openconnect_get_tls_library_version; openconnect_fopen_utf8; openconnect_open_utf8; openconnect_sha1; openconnect_version_str; openconnect_read_file; local: *; }; openconnect-8.20/openconnect.nsi.in0000644000076400007640000000612114171606260021166 0ustar00dwoodhoudwoodhou00000000000000#!Nsis Installer Command Script # # This is an NSIS Installer Command Script generated automatically # by the Fedora nsiswrapper program. For more information see: # # https://fedoraproject.org/wiki/MinGW # # To build an installer from the script you would normally do: # # makensis this_script # # which will generate the output file 'openconnect-installer.exe' which is a Windows # installer containing your program. Name "OpenConnect" OutFile "openconnect-installer.exe" InstallDir "$ProgramFiles\OpenConnect" InstallDirRegKey HKLM SOFTWARE\OpenConnect "Install_Dir" ShowInstDetails hide ShowUninstDetails hide SetCompressor /FINAL lzma VIAddVersionKey ProductName "OpenConnect" XPStyle on !include "x64.nsh" Function .onInit ${If} ${RunningX64} SetRegView 64 StrCpy $INSTDIR "$ProgramFiles64\OpenConnect" ${EndIf} FunctionEnd Page components Page directory Page instfiles ComponentText "Select which optional components you want to install." DirText "Please select the installation folder." Section "OpenConnect" SectionIn RO SetOutPath "$INSTDIR" !include instfiles.nsh ClearErrors FileOpen $0 "$INSTDIR\Online Documentation.url" w IfErrors done FileWrite $0 "[InternetShortcut]$\n" FileWrite $0 "URL=https://www.infradead.org/openconnect$\n" FileWrite $0 "IconIndex=0$\n" FileWrite $0 "IconFile=$INSTDIR\openconnect.exe$\n" FileClose $0 done: SectionEnd Section "Start Menu Shortcuts" CreateDirectory "$SMPROGRAMS\OpenConnect" CreateShortCut "$SMPROGRAMS\OpenConnect\Uninstall OpenConnect.lnk" "$INSTDIR\Uninstall OpenConnect.exe" "" "$INSTDIR\Uninstall OpenConnect.exe" 0 CreateShortCut "$SMPROGRAMS\OpenConnect\openconnect.exe.lnk" "$INSTDIR\.\openconnect.exe" "" "$INSTDIR\.\openconnect.exe" 0 SectionEnd Section "Desktop Icons" CreateShortCut "$DESKTOP\openconnect.exe.lnk" "$INSTDIR\.\openconnect.exe" "" "$INSTDIR\.\openconnect.exe" 0 SectionEnd Section "TAP-Windows driver" MessageBox MB_OK \ "OpenConnect uses the TAP-Windows driver from OpenVPN to create virtual Ethernet adapters for \ VPN connections. If you haven't already installed this driver, you should now install v9.21.2, \ which works on Windows 2003, Windows Vista, or newer. \ More information on this driver, and available versions, can be found at \ https://community.openvpn.net/openvpn/wiki/GettingTapWindows" MessageBox MB_YESNO "Install TAP-Windows driver v9.21.2?" /SD IDYES IDNO endTapWindows DetailPrint "Running TAP-Windows driver setup..." ExecWait "$INSTDIR\tap-windows-9.21.2.exe" DetailPrint "Finished TAP-Windows driver setup" endTapWindows: SectionEnd Section "Uninstall" Delete /rebootok "$DESKTOP\openconnect.exe.lnk" Delete /rebootok "$SMPROGRAMS\OpenConnect\openconnect.exe.lnk" Delete /rebootok "$SMPROGRAMS\OpenConnect\Uninstall OpenConnect.lnk" RMDir "$SMPROGRAMS\OpenConnect" !include uninstfiles.nsh Delete /rebootok "$INSTDIR\Online Documentation.url" Delete /rebootok "$INSTDIR\Uninstall OpenConnect.exe" RMDir "$INSTDIR" SectionEnd Section -post WriteUninstaller "$INSTDIR\Uninstall OpenConnect.exe" SectionEnd openconnect-8.20/compat.c0000644000076400007640000003616114204454432017170 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Authors: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #ifdef _WIN32 #include /* errno_t, size_t */ #ifndef HAVE_GETENV_S_DECL errno_t getenv_s( size_t *ret_required_buf_size, char *buf, size_t buf_size_in_bytes, const char *name ); #endif #ifndef HAVE_PUTENV_S_DECL errno_t _putenv_s( const char *varname, const char *value_string ); #endif #endif #ifdef HAVE_SUNOS_BROKEN_TIME /* * On SunOS, time() goes backwards. Thankfully, gethrtime() doesn't. * https://www.illumos.org/issues/1871 and, for Solaris 11, Oracle * bug ID #15760793 (previously Sun CR ID 7121035). */ #include time_t openconnect__time(time_t *t) { time_t s = gethrtime() / 1000000000LL; if (t) *t = s; return s; } #endif #ifndef HAVE_VASPRINTF int openconnect__vasprintf(char **strp, const char *fmt, va_list ap) { va_list ap2; char *res = NULL; int len = 160, len2; int ret = 0; int errno_save = -ENOMEM; res = malloc(160); if (!res) goto err; /* Use a copy of 'ap', preserving it in case we need to retry into a larger buffer. 160 characters should be sufficient for most strings in openconnect. */ #ifdef HAVE_VA_COPY va_copy(ap2, ap); #elif defined(HAVE___VA_COPY) __va_copy(ap2, ap); #else #error No va_copy()! /* You could try this. */ ap2 = ap; /* Or this */ *ap2 = *ap; #endif len = vsnprintf(res, 160, fmt, ap2); va_end(ap2); if (len < 0) { printf_err: errno_save = errno; free(res); res = NULL; goto err; } if (len >= 0 && len < 160) goto out; free(res); res = malloc(len+1); if (!res) goto err; len2 = vsnprintf(res, len+1, fmt, ap); if (len2 < 0 || len2 > len) goto printf_err; ret = 0; goto out; err: errno = errno_save; ret = -1; out: *strp = res; return ret; } #endif #ifndef HAVE_ASPRINTF int openconnect__asprintf(char **strp, const char *fmt, ...) { va_list ap; int ret; va_start(ap, fmt); ret = vasprintf(strp, fmt, ap); va_end(ap); return ret; } #endif #ifndef HAVE_GETLINE ssize_t openconnect__getline(char **lineptr, size_t *n, FILE *stream) { int len = 0; if (!*lineptr) { *n = 2; *lineptr = malloc(*n); if (!*lineptr) return -1; } while (fgets((*lineptr) + len, (*n) - len, stream)) { len += strlen((*lineptr) + len); if ((*lineptr)[len-1] == '\n') break; *n *= 2; realloc_inplace(*lineptr, *n); if (!*lineptr) return -1; } if (len) return len; return -1; } #endif #ifndef HAVE_STRCASESTR char *openconnect__strcasestr(const char *haystack, const char *needle) { int hlen = strlen(haystack); int nlen = strlen(needle); int i, j; for (i = 0; i < hlen - nlen + 1; i++) { for (j = 0; j < nlen; j++) { if (tolower(haystack[i + j]) != tolower(needle[j])) break; } if (j == nlen) return (char *)haystack + i; } return NULL; } #endif #ifndef HAVE_STRNDUP char *openconnect__strndup(const char *s, size_t n) { char *r; if ((r = memchr(s, '\0', n)) != NULL) n = r - s; r = malloc(n + 1); if (r) { memcpy(r, s, n); r[n] = 0; } return r; } #endif #ifndef HAVE_STRCHRNUL const char *openconnect__strchrnul(const char *s, int c) { while (*s && *s != c) s++; return s; } #endif #ifndef HAVE_INET_ATON /* XX: unlike "real" inet_aton(), inet_pton() only accepts dotted-decimal notation, not * looser/rarer formats like 32-bit decimal values. For example, inet_aton() accepts both * "127.0.0.1" and "2130706433" as equivalent, but inet_pton() only accepts the former. */ int openconnect__inet_aton(const char *cp, struct in_addr *addr) { return inet_pton(AF_INET, cp, addr); } #endif #ifdef _WIN32 int openconnect__win32_setenv(const char *name, const char *value, int overwrite) { /* https://stackoverflow.com/a/23616164 */ int errcode = 0; if(!overwrite) { size_t envsize = 0; errcode = getenv_s(&envsize, NULL, 0, name); if(errcode || envsize) return errcode; } return _putenv_s(name, value); } char *openconnect__win32_strerror(DWORD err) { wchar_t *msgw; char *msgutf8; int nr_chars; if (!FormatMessageW(FORMAT_MESSAGE_FROM_SYSTEM | FORMAT_MESSAGE_IGNORE_INSERTS | FORMAT_MESSAGE_ALLOCATE_BUFFER, NULL, err, MAKELANGID(LANG_NEUTRAL, SUBLANG_DEFAULT), (LPWSTR)&msgw, 0, NULL)) { if (asprintf(&msgutf8, _("(error 0x%lx)"), err) != -1) return msgutf8; fail: return strdup(_("(Error while describing error!)")); } nr_chars = wcslen(msgw); if (nr_chars && msgw[nr_chars - 1] == 10) msgw[--nr_chars] = 0; if (nr_chars && msgw[nr_chars - 1] == 13) msgw[--nr_chars] = 0; nr_chars = WideCharToMultiByte(CP_UTF8, 0, msgw, -1, NULL, 0, NULL, NULL); msgutf8 = malloc(nr_chars); if (!msgutf8) goto fail; WideCharToMultiByte(CP_UTF8, 0, msgw, -1, msgutf8, nr_chars, NULL, NULL); LocalFree(msgw); return msgutf8; } int openconnect__win32_sock_init(void) { WSADATA data; if (WSAStartup (MAKEWORD(1, 1), &data) != 0) { fprintf(stderr, _("ERROR: Cannot initialize sockets\n")); return -EIO; } return 0; } int openconnect__win32_inet_pton(int af, const char *src, void *dst) { union { struct sockaddr_in s4; struct sockaddr_in6 s6; } sa; int salen = sizeof(sa); if (af != AF_INET && af != AF_INET6) { errno = EAFNOSUPPORT; return -1; } memset(&sa, 0, sizeof(sa)); sa.s4.sin_family = af; if (WSAStringToAddressA((char *)src, af, NULL, (void *)&sa, &salen)) return 0; /* For Legacy IP we need to filter out a lot of crap that * inet_aton() (and WSAStringToAddress()) will support, but * which inet_pton() should not. Not to mention the fact that * Wine's implementation will even succeed for strings like * "2001::1" (https://bugs.winehq.org/show_bug.cgi?id=36991) */ if (af == AF_INET) { char canon[16]; unsigned char *a = (unsigned char *)&sa.s4.sin_addr; snprintf(canon, sizeof(canon), "%d.%d.%d.%d", a[0], a[1], a[2], a[3]); if (strcmp(canon, src)) return 0; memcpy(dst, &sa.s4.sin_addr, sizeof(sa.s4.sin_addr)); return 1; } else { memcpy(dst, &sa.s6.sin6_addr, sizeof(sa.s6.sin6_addr)); return 1; } } /* https://github.com/ncm/selectable-socketpair/blob/master/socketpair.c Copyright 2007, 2010 by Nathan C. Myers Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met: Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimer. Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimer in the documentation and/or other materials provided with the distribution. The name of the author must not be used to endorse or promote products derived from this software without specific prior written permission. THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE. */ /* Changes: * 2014-02-12: merge David Woodhouse, Ger Hobbelt improvements * git.infradead.org/users/dwmw2/openconnect.git/commitdiff/bdeefa54 * github.com/GerHobbelt/selectable-socketpair * always init the socks[] to -1/INVALID_SOCKET on error, both on Win32/64 * and UNIX/other platforms * 2013-07-18: Change to BSD 3-clause license * 2010-03-31: * set addr to 127.0.0.1 because win32 getsockname does not always set it. * 2010-02-25: * set SO_REUSEADDR option to avoid leaking some windows resource. * Windows System Error 10049, "Event ID 4226 TCP/IP has reached * the security limit imposed on the number of concurrent TCP connect * attempts." Bleah. * 2007-04-25: * preserve value of WSAGetLastError() on all error returns. * 2007-04-22: (Thanks to Matthew Gregan ) * s/EINVAL/WSAEINVAL/ fix trivial compile failure * s/socket/WSASocket/ enable creation of sockets suitable as stdin/stdout * of a child process. * add argument make_overlapped */ #include # include /* socklen_t, et al (MSVC20xx) */ # include # include #ifdef HAVE_AFUNIX_H #include #else #define UNIX_PATH_MAX 108 struct sockaddr_un { ADDRESS_FAMILY sun_family; /* AF_UNIX */ char sun_path[UNIX_PATH_MAX]; /* pathname */ } SOCKADDR_UN, *PSOCKADDR_UN;; #endif /* HAS_AFUNIX_H */ /* dumb_socketpair: * If make_overlapped is nonzero, both sockets created will be usable for * "overlapped" operations via WSASend etc. If make_overlapped is zero, * socks[0] (only) will be usable with regular ReadFile etc., and thus * suitable for use as stdin or stdout of a child process. Note that the * sockets must be closed with closesocket() regardless. */ int dumb_socketpair(OPENCONNECT_CMD_SOCKET socks[2], int make_overlapped) { union { struct sockaddr_un unaddr; struct sockaddr_in inaddr; struct sockaddr addr; } a; OPENCONNECT_CMD_SOCKET listener; int e, ii; int domain = AF_UNIX; socklen_t addrlen = sizeof(a.unaddr); DWORD flags = (make_overlapped ? WSA_FLAG_OVERLAPPED : 0); int reuse = 1; if (socks == 0) { WSASetLastError(WSAEINVAL); return SOCKET_ERROR; } socks[0] = socks[1] = -1; /* AF_UNIX/SOCK_STREAM became available in Windows 10 * ( https://devblogs.microsoft.com/commandline/af_unix-comes-to-windows ) * * We will attempt to use AF_UNIX, but fallback to using AF_INET if * setting up AF_UNIX socket fails in any other way, which it surely will * on earlier versions of Windows. */ for (ii = 0; ii < 2; ii++) { listener = socket(domain, SOCK_STREAM, domain == AF_INET ? IPPROTO_TCP : 0); if (listener == INVALID_SOCKET) goto fallback; memset(&a, 0, sizeof(a)); if (domain == AF_UNIX) { /* XX: Abstract sockets (filesystem-independent) don't work, contrary to * the claims of the aforementioned blog post: * https://github.com/microsoft/WSL/issues/4240#issuecomment-549663217 * * So we must use a named path, and that comes with all the attendant * problems of permissions and collisions. Trying various temporary * directories and putting high-res time and PID in the filename, that * seems like a less-bad option. */ LARGE_INTEGER ticks; DWORD n; int bind_try = 0; for (;;) { switch (bind_try++) { case 0: /* "The returned string ends with a backslash" */ n = GetTempPath(UNIX_PATH_MAX, a.unaddr.sun_path); break; case 1: /* Heckuva job with API consistency, Microsoft! Reversed argument order, and * "This path does not end with a backslash unless the Windows directory is the root directory.." */ n = GetWindowsDirectory(a.unaddr.sun_path, UNIX_PATH_MAX); n += snprintf(a.unaddr.sun_path + n, UNIX_PATH_MAX - n, "\\Temp\\"); break; case 2: n = snprintf(a.unaddr.sun_path, UNIX_PATH_MAX, "C:\\Temp\\"); break; case 3: n = 0; /* Current directory */ break; case 4: goto fallback; } /* GetTempFileName could be used here. * (https://docs.microsoft.com/en-us/windows/win32/api/fileapi/nf-fileapi-gettempfilenamea) * However it only adds 16 bits of time-based random bits, * fails if there isn't room for a 14-character filename, and * seems to offers no other apparent advantages. So we will * use high-res timer ticks and PID for filename. */ QueryPerformanceCounter(&ticks); snprintf(a.unaddr.sun_path + n, UNIX_PATH_MAX - n, "%"PRIx64"-%"PRId32".$$$", ticks.QuadPart, GetCurrentProcessId()); a.unaddr.sun_family = AF_UNIX; if (bind(listener, &a.addr, addrlen) != SOCKET_ERROR) break; } } else { a.inaddr.sin_family = AF_INET; a.inaddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK); a.inaddr.sin_port = 0; if (setsockopt(listener, SOL_SOCKET, SO_REUSEADDR, (char *) &reuse, (socklen_t) sizeof(reuse)) == -1) goto fallback;; if (bind(listener, &a.addr, addrlen) == SOCKET_ERROR) goto fallback; memset(&a, 0, sizeof(a)); if (getsockname(listener, &a.addr, &addrlen) == SOCKET_ERROR) goto fallback; // win32 getsockname may only set the port number, p=0.0005. // ( https://docs.microsoft.com/windows/win32/api/winsock/nf-winsock-getsockname ): a.inaddr.sin_addr.s_addr = htonl(INADDR_LOOPBACK); a.inaddr.sin_family = AF_INET; } if (listen(listener, 1) == SOCKET_ERROR) goto fallback; socks[0] = WSASocket(domain, SOCK_STREAM, 0, NULL, 0, flags); if (socks[0] == INVALID_SOCKET) goto fallback; if (connect(socks[0], &a.addr, addrlen) == SOCKET_ERROR) goto fallback; if (domain == AF_UNIX) DeleteFile(a.unaddr.sun_path); // Socket file no longer needed socks[1] = accept(listener, NULL, NULL); if (socks[1] == INVALID_SOCKET) goto fallback; closesocket(listener); return 0; fallback: domain = AF_INET; addrlen = sizeof(a.inaddr); e = WSAGetLastError(); closesocket(listener); closesocket(socks[0]); closesocket(socks[1]); WSASetLastError(e); } socks[0] = socks[1] = -1; return SOCKET_ERROR; } #endif openconnect-8.20/config.guess0000755000076400007640000012617314076063213020064 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Attempt to guess a canonical system name. # Copyright 1992-2018 Free Software Foundation, Inc. timestamp='2018-08-29' # This file is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, see . # # As a special exception to the GNU General Public License, if you # distribute this file as part of a program that contains a # configuration script generated by Autoconf, you may include it under # the same distribution terms that you use for the rest of that # program. This Exception is an additional permission under section 7 # of the GNU General Public License, version 3 ("GPLv3"). # # Originally written by Per Bothner; maintained since 2000 by Ben Elliston. # # You can get the latest version of this script from: # https://git.savannah.gnu.org/gitweb/?p=config.git;a=blob_plain;f=config.guess # # Please send patches to . me=`echo "$0" | sed -e 's,.*/,,'` usage="\ Usage: $0 [OPTION] Output the configuration name of the system \`$me' is run on. Options: -h, --help print this help, then exit -t, --time-stamp print date of last modification, then exit -v, --version print version number, then exit Report bugs and patches to ." version="\ GNU config.guess ($timestamp) Originally written by Per Bothner. Copyright 1992-2018 Free Software Foundation, Inc. This is free software; see the source for copying conditions. There is NO warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE." help=" Try \`$me --help' for more information." # Parse command line while test $# -gt 0 ; do case $1 in --time-stamp | --time* | -t ) echo "$timestamp" ; exit ;; --version | -v ) echo "$version" ; exit ;; --help | --h* | -h ) echo "$usage"; exit ;; -- ) # Stop option processing shift; break ;; - ) # Use stdin as input. break ;; -* ) echo "$me: invalid option $1$help" >&2 exit 1 ;; * ) break ;; esac done if test $# != 0; then echo "$me: too many arguments$help" >&2 exit 1 fi # CC_FOR_BUILD -- compiler used by this script. Note that the use of a # compiler to aid in system detection is discouraged as it requires # temporary files to be created and, as you can see below, it is a # headache to deal with in a portable fashion. # Historically, `CC_FOR_BUILD' used to be named `HOST_CC'. We still # use `HOST_CC' if defined, but it is deprecated. # Portable tmp directory creation inspired by the Autoconf team. tmp= # shellcheck disable=SC2172 trap 'test -z "$tmp" || rm -fr "$tmp"' 1 2 13 15 trap 'exitcode=$?; test -z "$tmp" || rm -fr "$tmp"; exit $exitcode' 0 set_cc_for_build() { : "${TMPDIR=/tmp}" # shellcheck disable=SC2039 { tmp=`(umask 077 && mktemp -d "$TMPDIR/cgXXXXXX") 2>/dev/null` && test -n "$tmp" && test -d "$tmp" ; } || { test -n "$RANDOM" && tmp=$TMPDIR/cg$$-$RANDOM && (umask 077 && mkdir "$tmp" 2>/dev/null) ; } || { tmp=$TMPDIR/cg-$$ && (umask 077 && mkdir "$tmp" 2>/dev/null) && echo "Warning: creating insecure temp directory" >&2 ; } || { echo "$me: cannot create a temporary directory in $TMPDIR" >&2 ; exit 1 ; } dummy=$tmp/dummy case ${CC_FOR_BUILD-},${HOST_CC-},${CC-} in ,,) echo "int x;" > "$dummy.c" for driver in cc gcc c89 c99 ; do if ($driver -c -o "$dummy.o" "$dummy.c") >/dev/null 2>&1 ; then CC_FOR_BUILD="$driver" break fi done if test x"$CC_FOR_BUILD" = x ; then CC_FOR_BUILD=no_compiler_found fi ;; ,,*) CC_FOR_BUILD=$CC ;; ,*,*) CC_FOR_BUILD=$HOST_CC ;; esac } # This is needed to find uname on a Pyramid OSx when run in the BSD universe. # (ghazi@noc.rutgers.edu 1994-08-24) if test -f /.attbin/uname ; then PATH=$PATH:/.attbin ; export PATH fi UNAME_MACHINE=`(uname -m) 2>/dev/null` || UNAME_MACHINE=unknown UNAME_RELEASE=`(uname -r) 2>/dev/null` || UNAME_RELEASE=unknown UNAME_SYSTEM=`(uname -s) 2>/dev/null` || UNAME_SYSTEM=unknown UNAME_VERSION=`(uname -v) 2>/dev/null` || UNAME_VERSION=unknown case "$UNAME_SYSTEM" in Linux|GNU|GNU/*) # If the system lacks a compiler, then just pick glibc. # We could probably try harder. LIBC=gnu set_cc_for_build cat <<-EOF > "$dummy.c" #include #if defined(__UCLIBC__) LIBC=uclibc #elif defined(__dietlibc__) LIBC=dietlibc #else LIBC=gnu #endif EOF eval "`$CC_FOR_BUILD -E "$dummy.c" 2>/dev/null | grep '^LIBC' | sed 's, ,,g'`" # If ldd exists, use it to detect musl libc. if command -v ldd >/dev/null && \ ldd --version 2>&1 | grep -q ^musl then LIBC=musl fi ;; esac # Note: order is significant - the case branches are not exclusive. case "$UNAME_MACHINE:$UNAME_SYSTEM:$UNAME_RELEASE:$UNAME_VERSION" in *:NetBSD:*:*) # NetBSD (nbsd) targets should (where applicable) match one or # more of the tuples: *-*-netbsdelf*, *-*-netbsdaout*, # *-*-netbsdecoff* and *-*-netbsd*. For targets that recently # switched to ELF, *-*-netbsd* would select the old # object file format. This provides both forward # compatibility and a consistent mechanism for selecting the # object file format. # # Note: NetBSD doesn't particularly care about the vendor # portion of the name. We always set it to "unknown". sysctl="sysctl -n hw.machine_arch" UNAME_MACHINE_ARCH=`(uname -p 2>/dev/null || \ "/sbin/$sysctl" 2>/dev/null || \ "/usr/sbin/$sysctl" 2>/dev/null || \ echo unknown)` case "$UNAME_MACHINE_ARCH" in armeb) machine=armeb-unknown ;; arm*) machine=arm-unknown ;; sh3el) machine=shl-unknown ;; sh3eb) machine=sh-unknown ;; sh5el) machine=sh5le-unknown ;; earmv*) arch=`echo "$UNAME_MACHINE_ARCH" | sed -e 's,^e\(armv[0-9]\).*$,\1,'` endian=`echo "$UNAME_MACHINE_ARCH" | sed -ne 's,^.*\(eb\)$,\1,p'` machine="${arch}${endian}"-unknown ;; *) machine="$UNAME_MACHINE_ARCH"-unknown ;; esac # The Operating System including object format, if it has switched # to ELF recently (or will in the future) and ABI. case "$UNAME_MACHINE_ARCH" in earm*) os=netbsdelf ;; arm*|i386|m68k|ns32k|sh3*|sparc|vax) set_cc_for_build if echo __ELF__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ELF__ then # Once all utilities can be ECOFF (netbsdecoff) or a.out (netbsdaout). # Return netbsd for either. FIX? os=netbsd else os=netbsdelf fi ;; *) os=netbsd ;; esac # Determine ABI tags. case "$UNAME_MACHINE_ARCH" in earm*) expr='s/^earmv[0-9]/-eabi/;s/eb$//' abi=`echo "$UNAME_MACHINE_ARCH" | sed -e "$expr"` ;; esac # The OS release # Debian GNU/NetBSD machines have a different userland, and # thus, need a distinct triplet. However, they do not need # kernel version information, so it can be replaced with a # suitable tag, in the style of linux-gnu. case "$UNAME_VERSION" in Debian*) release='-gnu' ;; *) release=`echo "$UNAME_RELEASE" | sed -e 's/[-_].*//' | cut -d. -f1,2` ;; esac # Since CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM: # contains redundant information, the shorter form: # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM is used. echo "$machine-${os}${release}${abi-}" exit ;; *:Bitrig:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/Bitrig.//'` echo "$UNAME_MACHINE_ARCH"-unknown-bitrig"$UNAME_RELEASE" exit ;; *:OpenBSD:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/OpenBSD.//'` echo "$UNAME_MACHINE_ARCH"-unknown-openbsd"$UNAME_RELEASE" exit ;; *:LibertyBSD:*:*) UNAME_MACHINE_ARCH=`arch | sed 's/^.*BSD\.//'` echo "$UNAME_MACHINE_ARCH"-unknown-libertybsd"$UNAME_RELEASE" exit ;; *:MidnightBSD:*:*) echo "$UNAME_MACHINE"-unknown-midnightbsd"$UNAME_RELEASE" exit ;; *:ekkoBSD:*:*) echo "$UNAME_MACHINE"-unknown-ekkobsd"$UNAME_RELEASE" exit ;; *:SolidBSD:*:*) echo "$UNAME_MACHINE"-unknown-solidbsd"$UNAME_RELEASE" exit ;; macppc:MirBSD:*:*) echo powerpc-unknown-mirbsd"$UNAME_RELEASE" exit ;; *:MirBSD:*:*) echo "$UNAME_MACHINE"-unknown-mirbsd"$UNAME_RELEASE" exit ;; *:Sortix:*:*) echo "$UNAME_MACHINE"-unknown-sortix exit ;; *:Redox:*:*) echo "$UNAME_MACHINE"-unknown-redox exit ;; mips:OSF1:*.*) echo mips-dec-osf1 exit ;; alpha:OSF1:*:*) case $UNAME_RELEASE in *4.0) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $3}'` ;; *5.*) UNAME_RELEASE=`/usr/sbin/sizer -v | awk '{print $4}'` ;; esac # According to Compaq, /usr/sbin/psrinfo has been available on # OSF/1 and Tru64 systems produced since 1995. I hope that # covers most systems running today. This code pipes the CPU # types through head -n 1, so we only detect the type of CPU 0. ALPHA_CPU_TYPE=`/usr/sbin/psrinfo -v | sed -n -e 's/^ The alpha \(.*\) processor.*$/\1/p' | head -n 1` case "$ALPHA_CPU_TYPE" in "EV4 (21064)") UNAME_MACHINE=alpha ;; "EV4.5 (21064)") UNAME_MACHINE=alpha ;; "LCA4 (21066/21068)") UNAME_MACHINE=alpha ;; "EV5 (21164)") UNAME_MACHINE=alphaev5 ;; "EV5.6 (21164A)") UNAME_MACHINE=alphaev56 ;; "EV5.6 (21164PC)") UNAME_MACHINE=alphapca56 ;; "EV5.7 (21164PC)") UNAME_MACHINE=alphapca57 ;; "EV6 (21264)") UNAME_MACHINE=alphaev6 ;; "EV6.7 (21264A)") UNAME_MACHINE=alphaev67 ;; "EV6.8CB (21264C)") UNAME_MACHINE=alphaev68 ;; "EV6.8AL (21264B)") UNAME_MACHINE=alphaev68 ;; "EV6.8CX (21264D)") UNAME_MACHINE=alphaev68 ;; "EV6.9A (21264/EV69A)") UNAME_MACHINE=alphaev69 ;; "EV7 (21364)") UNAME_MACHINE=alphaev7 ;; "EV7.9 (21364A)") UNAME_MACHINE=alphaev79 ;; esac # A Pn.n version is a patched version. # A Vn.n version is a released version. # A Tn.n version is a released field test version. # A Xn.n version is an unreleased experimental baselevel. # 1.2 uses "1.2" for uname -r. echo "$UNAME_MACHINE"-dec-osf"`echo "$UNAME_RELEASE" | sed -e 's/^[PVTX]//' | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz`" # Reset EXIT trap before exiting to avoid spurious non-zero exit code. exitcode=$? trap '' 0 exit $exitcode ;; Amiga*:UNIX_System_V:4.0:*) echo m68k-unknown-sysv4 exit ;; *:[Aa]miga[Oo][Ss]:*:*) echo "$UNAME_MACHINE"-unknown-amigaos exit ;; *:[Mm]orph[Oo][Ss]:*:*) echo "$UNAME_MACHINE"-unknown-morphos exit ;; *:OS/390:*:*) echo i370-ibm-openedition exit ;; *:z/VM:*:*) echo s390-ibm-zvmoe exit ;; *:OS400:*:*) echo powerpc-ibm-os400 exit ;; arm:RISC*:1.[012]*:*|arm:riscix:1.[012]*:*) echo arm-acorn-riscix"$UNAME_RELEASE" exit ;; arm*:riscos:*:*|arm*:RISCOS:*:*) echo arm-unknown-riscos exit ;; SR2?01:HI-UX/MPP:*:* | SR8000:HI-UX/MPP:*:*) echo hppa1.1-hitachi-hiuxmpp exit ;; Pyramid*:OSx*:*:* | MIS*:OSx*:*:* | MIS*:SMP_DC-OSx*:*:*) # akee@wpdis03.wpafb.af.mil (Earle F. Ake) contributed MIS and NILE. if test "`(/bin/universe) 2>/dev/null`" = att ; then echo pyramid-pyramid-sysv3 else echo pyramid-pyramid-bsd fi exit ;; NILE*:*:*:dcosx) echo pyramid-pyramid-svr4 exit ;; DRS?6000:unix:4.0:6*) echo sparc-icl-nx6 exit ;; DRS?6000:UNIX_SV:4.2*:7* | DRS?6000:isis:4.2*:7*) case `/usr/bin/uname -p` in sparc) echo sparc-icl-nx7; exit ;; esac ;; s390x:SunOS:*:*) echo "$UNAME_MACHINE"-ibm-solaris2"`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'`" exit ;; sun4H:SunOS:5.*:*) echo sparc-hal-solaris2"`echo "$UNAME_RELEASE"|sed -e 's/[^.]*//'`" exit ;; sun4*:SunOS:5.*:* | tadpole*:SunOS:5.*:*) echo sparc-sun-solaris2"`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'`" exit ;; i86pc:AuroraUX:5.*:* | i86xen:AuroraUX:5.*:*) echo i386-pc-auroraux"$UNAME_RELEASE" exit ;; i86pc:SunOS:5.*:* | i86xen:SunOS:5.*:*) UNAME_REL="`echo "$UNAME_RELEASE" | sed -e 's/[^.]*//'`" case `isainfo -b` in 32) echo i386-pc-solaris2"$UNAME_REL" ;; 64) echo x86_64-pc-solaris2"$UNAME_REL" ;; esac exit ;; sun4*:SunOS:6*:*) # According to config.sub, this is the proper way to canonicalize # SunOS6. Hard to guess exactly what SunOS6 will be like, but # it's likely to be more like Solaris than SunOS4. echo sparc-sun-solaris3"`echo "$UNAME_RELEASE"|sed -e 's/[^.]*//'`" exit ;; sun4*:SunOS:*:*) case "`/usr/bin/arch -k`" in Series*|S4*) UNAME_RELEASE=`uname -v` ;; esac # Japanese Language versions have a version number like `4.1.3-JL'. echo sparc-sun-sunos"`echo "$UNAME_RELEASE"|sed -e 's/-/_/'`" exit ;; sun3*:SunOS:*:*) echo m68k-sun-sunos"$UNAME_RELEASE" exit ;; sun*:*:4.2BSD:*) UNAME_RELEASE=`(sed 1q /etc/motd | awk '{print substr($5,1,3)}') 2>/dev/null` test "x$UNAME_RELEASE" = x && UNAME_RELEASE=3 case "`/bin/arch`" in sun3) echo m68k-sun-sunos"$UNAME_RELEASE" ;; sun4) echo sparc-sun-sunos"$UNAME_RELEASE" ;; esac exit ;; aushp:SunOS:*:*) echo sparc-auspex-sunos"$UNAME_RELEASE" exit ;; # The situation for MiNT is a little confusing. The machine name # can be virtually everything (everything which is not # "atarist" or "atariste" at least should have a processor # > m68000). The system name ranges from "MiNT" over "FreeMiNT" # to the lowercase version "mint" (or "freemint"). Finally # the system name "TOS" denotes a system which is actually not # MiNT. But MiNT is downward compatible to TOS, so this should # be no problem. atarist[e]:*MiNT:*:* | atarist[e]:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint"$UNAME_RELEASE" exit ;; atari*:*MiNT:*:* | atari*:*mint:*:* | atarist[e]:*TOS:*:*) echo m68k-atari-mint"$UNAME_RELEASE" exit ;; *falcon*:*MiNT:*:* | *falcon*:*mint:*:* | *falcon*:*TOS:*:*) echo m68k-atari-mint"$UNAME_RELEASE" exit ;; milan*:*MiNT:*:* | milan*:*mint:*:* | *milan*:*TOS:*:*) echo m68k-milan-mint"$UNAME_RELEASE" exit ;; hades*:*MiNT:*:* | hades*:*mint:*:* | *hades*:*TOS:*:*) echo m68k-hades-mint"$UNAME_RELEASE" exit ;; *:*MiNT:*:* | *:*mint:*:* | *:*TOS:*:*) echo m68k-unknown-mint"$UNAME_RELEASE" exit ;; m68k:machten:*:*) echo m68k-apple-machten"$UNAME_RELEASE" exit ;; powerpc:machten:*:*) echo powerpc-apple-machten"$UNAME_RELEASE" exit ;; RISC*:Mach:*:*) echo mips-dec-mach_bsd4.3 exit ;; RISC*:ULTRIX:*:*) echo mips-dec-ultrix"$UNAME_RELEASE" exit ;; VAX*:ULTRIX*:*:*) echo vax-dec-ultrix"$UNAME_RELEASE" exit ;; 2020:CLIX:*:* | 2430:CLIX:*:*) echo clipper-intergraph-clix"$UNAME_RELEASE" exit ;; mips:*:*:UMIPS | mips:*:*:RISCos) set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #ifdef __cplusplus #include /* for printf() prototype */ int main (int argc, char *argv[]) { #else int main (argc, argv) int argc; char *argv[]; { #endif #if defined (host_mips) && defined (MIPSEB) #if defined (SYSTYPE_SYSV) printf ("mips-mips-riscos%ssysv\\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_SVR4) printf ("mips-mips-riscos%ssvr4\\n", argv[1]); exit (0); #endif #if defined (SYSTYPE_BSD43) || defined(SYSTYPE_BSD) printf ("mips-mips-riscos%sbsd\\n", argv[1]); exit (0); #endif #endif exit (-1); } EOF $CC_FOR_BUILD -o "$dummy" "$dummy.c" && dummyarg=`echo "$UNAME_RELEASE" | sed -n 's/\([0-9]*\).*/\1/p'` && SYSTEM_NAME=`"$dummy" "$dummyarg"` && { echo "$SYSTEM_NAME"; exit; } echo mips-mips-riscos"$UNAME_RELEASE" exit ;; Motorola:PowerMAX_OS:*:*) echo powerpc-motorola-powermax exit ;; Motorola:*:4.3:PL8-*) echo powerpc-harris-powermax exit ;; Night_Hawk:*:*:PowerMAX_OS | Synergy:PowerMAX_OS:*:*) echo powerpc-harris-powermax exit ;; Night_Hawk:Power_UNIX:*:*) echo powerpc-harris-powerunix exit ;; m88k:CX/UX:7*:*) echo m88k-harris-cxux7 exit ;; m88k:*:4*:R4*) echo m88k-motorola-sysv4 exit ;; m88k:*:3*:R3*) echo m88k-motorola-sysv3 exit ;; AViiON:dgux:*:*) # DG/UX returns AViiON for all architectures UNAME_PROCESSOR=`/usr/bin/uname -p` if [ "$UNAME_PROCESSOR" = mc88100 ] || [ "$UNAME_PROCESSOR" = mc88110 ] then if [ "$TARGET_BINARY_INTERFACE"x = m88kdguxelfx ] || \ [ "$TARGET_BINARY_INTERFACE"x = x ] then echo m88k-dg-dgux"$UNAME_RELEASE" else echo m88k-dg-dguxbcs"$UNAME_RELEASE" fi else echo i586-dg-dgux"$UNAME_RELEASE" fi exit ;; M88*:DolphinOS:*:*) # DolphinOS (SVR3) echo m88k-dolphin-sysv3 exit ;; M88*:*:R3*:*) # Delta 88k system running SVR3 echo m88k-motorola-sysv3 exit ;; XD88*:*:*:*) # Tektronix XD88 system running UTekV (SVR3) echo m88k-tektronix-sysv3 exit ;; Tek43[0-9][0-9]:UTek:*:*) # Tektronix 4300 system running UTek (BSD) echo m68k-tektronix-bsd exit ;; *:IRIX*:*:*) echo mips-sgi-irix"`echo "$UNAME_RELEASE"|sed -e 's/-/_/g'`" exit ;; ????????:AIX?:[12].1:2) # AIX 2.2.1 or AIX 2.1.1 is RT/PC AIX. echo romp-ibm-aix # uname -m gives an 8 hex-code CPU id exit ;; # Note that: echo "'`uname -s`'" gives 'AIX ' i*86:AIX:*:*) echo i386-ibm-aix exit ;; ia64:AIX:*:*) if [ -x /usr/bin/oslevel ] ; then IBM_REV=`/usr/bin/oslevel` else IBM_REV="$UNAME_VERSION.$UNAME_RELEASE" fi echo "$UNAME_MACHINE"-ibm-aix"$IBM_REV" exit ;; *:AIX:2:3) if grep bos325 /usr/include/stdio.h >/dev/null 2>&1; then set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #include main() { if (!__power_pc()) exit(1); puts("powerpc-ibm-aix3.2.5"); exit(0); } EOF if $CC_FOR_BUILD -o "$dummy" "$dummy.c" && SYSTEM_NAME=`"$dummy"` then echo "$SYSTEM_NAME" else echo rs6000-ibm-aix3.2.5 fi elif grep bos324 /usr/include/stdio.h >/dev/null 2>&1; then echo rs6000-ibm-aix3.2.4 else echo rs6000-ibm-aix3.2 fi exit ;; *:AIX:*:[4567]) IBM_CPU_ID=`/usr/sbin/lsdev -C -c processor -S available | sed 1q | awk '{ print $1 }'` if /usr/sbin/lsattr -El "$IBM_CPU_ID" | grep ' POWER' >/dev/null 2>&1; then IBM_ARCH=rs6000 else IBM_ARCH=powerpc fi if [ -x /usr/bin/lslpp ] ; then IBM_REV=`/usr/bin/lslpp -Lqc bos.rte.libc | awk -F: '{ print $3 }' | sed s/[0-9]*$/0/` else IBM_REV="$UNAME_VERSION.$UNAME_RELEASE" fi echo "$IBM_ARCH"-ibm-aix"$IBM_REV" exit ;; *:AIX:*:*) echo rs6000-ibm-aix exit ;; ibmrt:4.4BSD:*|romp-ibm:4.4BSD:*) echo romp-ibm-bsd4.4 exit ;; ibmrt:*BSD:*|romp-ibm:BSD:*) # covers RT/PC BSD and echo romp-ibm-bsd"$UNAME_RELEASE" # 4.3 with uname added to exit ;; # report: romp-ibm BSD 4.3 *:BOSX:*:*) echo rs6000-bull-bosx exit ;; DPX/2?00:B.O.S.:*:*) echo m68k-bull-sysv3 exit ;; 9000/[34]??:4.3bsd:1.*:*) echo m68k-hp-bsd exit ;; hp300:4.4BSD:*:* | 9000/[34]??:4.3bsd:2.*:*) echo m68k-hp-bsd4.4 exit ;; 9000/[34678]??:HP-UX:*:*) HPUX_REV=`echo "$UNAME_RELEASE"|sed -e 's/[^.]*.[0B]*//'` case "$UNAME_MACHINE" in 9000/31?) HP_ARCH=m68000 ;; 9000/[34]??) HP_ARCH=m68k ;; 9000/[678][0-9][0-9]) if [ -x /usr/bin/getconf ]; then sc_cpu_version=`/usr/bin/getconf SC_CPU_VERSION 2>/dev/null` sc_kernel_bits=`/usr/bin/getconf SC_KERNEL_BITS 2>/dev/null` case "$sc_cpu_version" in 523) HP_ARCH=hppa1.0 ;; # CPU_PA_RISC1_0 528) HP_ARCH=hppa1.1 ;; # CPU_PA_RISC1_1 532) # CPU_PA_RISC2_0 case "$sc_kernel_bits" in 32) HP_ARCH=hppa2.0n ;; 64) HP_ARCH=hppa2.0w ;; '') HP_ARCH=hppa2.0 ;; # HP-UX 10.20 esac ;; esac fi if [ "$HP_ARCH" = "" ]; then set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #define _HPUX_SOURCE #include #include int main () { #if defined(_SC_KERNEL_BITS) long bits = sysconf(_SC_KERNEL_BITS); #endif long cpu = sysconf (_SC_CPU_VERSION); switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0"); break; case CPU_PA_RISC1_1: puts ("hppa1.1"); break; case CPU_PA_RISC2_0: #if defined(_SC_KERNEL_BITS) switch (bits) { case 64: puts ("hppa2.0w"); break; case 32: puts ("hppa2.0n"); break; default: puts ("hppa2.0"); break; } break; #else /* !defined(_SC_KERNEL_BITS) */ puts ("hppa2.0"); break; #endif default: puts ("hppa1.0"); break; } exit (0); } EOF (CCOPTS="" $CC_FOR_BUILD -o "$dummy" "$dummy.c" 2>/dev/null) && HP_ARCH=`"$dummy"` test -z "$HP_ARCH" && HP_ARCH=hppa fi ;; esac if [ "$HP_ARCH" = hppa2.0w ] then set_cc_for_build # hppa2.0w-hp-hpux* has a 64-bit kernel and a compiler generating # 32-bit code. hppa64-hp-hpux* has the same kernel and a compiler # generating 64-bit code. GNU and HP use different nomenclature: # # $ CC_FOR_BUILD=cc ./config.guess # => hppa2.0w-hp-hpux11.23 # $ CC_FOR_BUILD="cc +DA2.0w" ./config.guess # => hppa64-hp-hpux11.23 if echo __LP64__ | (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | grep -q __LP64__ then HP_ARCH=hppa2.0w else HP_ARCH=hppa64 fi fi echo "$HP_ARCH"-hp-hpux"$HPUX_REV" exit ;; ia64:HP-UX:*:*) HPUX_REV=`echo "$UNAME_RELEASE"|sed -e 's/[^.]*.[0B]*//'` echo ia64-hp-hpux"$HPUX_REV" exit ;; 3050*:HI-UX:*:*) set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #include int main () { long cpu = sysconf (_SC_CPU_VERSION); /* The order matters, because CPU_IS_HP_MC68K erroneously returns true for CPU_PA_RISC1_0. CPU_IS_PA_RISC returns correct results, however. */ if (CPU_IS_PA_RISC (cpu)) { switch (cpu) { case CPU_PA_RISC1_0: puts ("hppa1.0-hitachi-hiuxwe2"); break; case CPU_PA_RISC1_1: puts ("hppa1.1-hitachi-hiuxwe2"); break; case CPU_PA_RISC2_0: puts ("hppa2.0-hitachi-hiuxwe2"); break; default: puts ("hppa-hitachi-hiuxwe2"); break; } } else if (CPU_IS_HP_MC68K (cpu)) puts ("m68k-hitachi-hiuxwe2"); else puts ("unknown-hitachi-hiuxwe2"); exit (0); } EOF $CC_FOR_BUILD -o "$dummy" "$dummy.c" && SYSTEM_NAME=`"$dummy"` && { echo "$SYSTEM_NAME"; exit; } echo unknown-hitachi-hiuxwe2 exit ;; 9000/7??:4.3bsd:*:* | 9000/8?[79]:4.3bsd:*:*) echo hppa1.1-hp-bsd exit ;; 9000/8??:4.3bsd:*:*) echo hppa1.0-hp-bsd exit ;; *9??*:MPE/iX:*:* | *3000*:MPE/iX:*:*) echo hppa1.0-hp-mpeix exit ;; hp7??:OSF1:*:* | hp8?[79]:OSF1:*:*) echo hppa1.1-hp-osf exit ;; hp8??:OSF1:*:*) echo hppa1.0-hp-osf exit ;; i*86:OSF1:*:*) if [ -x /usr/sbin/sysversion ] ; then echo "$UNAME_MACHINE"-unknown-osf1mk else echo "$UNAME_MACHINE"-unknown-osf1 fi exit ;; parisc*:Lites*:*:*) echo hppa1.1-hp-lites exit ;; C1*:ConvexOS:*:* | convex:ConvexOS:C1*:*) echo c1-convex-bsd exit ;; C2*:ConvexOS:*:* | convex:ConvexOS:C2*:*) if getsysinfo -f scalar_acc then echo c32-convex-bsd else echo c2-convex-bsd fi exit ;; C34*:ConvexOS:*:* | convex:ConvexOS:C34*:*) echo c34-convex-bsd exit ;; C38*:ConvexOS:*:* | convex:ConvexOS:C38*:*) echo c38-convex-bsd exit ;; C4*:ConvexOS:*:* | convex:ConvexOS:C4*:*) echo c4-convex-bsd exit ;; CRAY*Y-MP:*:*:*) echo ymp-cray-unicos"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*[A-Z]90:*:*:*) echo "$UNAME_MACHINE"-cray-unicos"$UNAME_RELEASE" \ | sed -e 's/CRAY.*\([A-Z]90\)/\1/' \ -e y/ABCDEFGHIJKLMNOPQRSTUVWXYZ/abcdefghijklmnopqrstuvwxyz/ \ -e 's/\.[^.]*$/.X/' exit ;; CRAY*TS:*:*:*) echo t90-cray-unicos"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*T3E:*:*:*) echo alphaev5-cray-unicosmk"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; CRAY*SV1:*:*:*) echo sv1-cray-unicos"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; *:UNICOS/mp:*:*) echo craynv-cray-unicosmp"$UNAME_RELEASE" | sed -e 's/\.[^.]*$/.X/' exit ;; F30[01]:UNIX_System_V:*:* | F700:UNIX_System_V:*:*) FUJITSU_PROC=`uname -m | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz` FUJITSU_SYS=`uname -p | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/\///'` FUJITSU_REL=`echo "$UNAME_RELEASE" | sed -e 's/ /_/'` echo "${FUJITSU_PROC}-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; 5000:UNIX_System_V:4.*:*) FUJITSU_SYS=`uname -p | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/\///'` FUJITSU_REL=`echo "$UNAME_RELEASE" | tr ABCDEFGHIJKLMNOPQRSTUVWXYZ abcdefghijklmnopqrstuvwxyz | sed -e 's/ /_/'` echo "sparc-fujitsu-${FUJITSU_SYS}${FUJITSU_REL}" exit ;; i*86:BSD/386:*:* | i*86:BSD/OS:*:* | *:Ascend\ Embedded/OS:*:*) echo "$UNAME_MACHINE"-pc-bsdi"$UNAME_RELEASE" exit ;; sparc*:BSD/OS:*:*) echo sparc-unknown-bsdi"$UNAME_RELEASE" exit ;; *:BSD/OS:*:*) echo "$UNAME_MACHINE"-unknown-bsdi"$UNAME_RELEASE" exit ;; arm:FreeBSD:*:*) UNAME_PROCESSOR=`uname -p` set_cc_for_build if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_PCS_VFP then echo "${UNAME_PROCESSOR}"-unknown-freebsd"`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'`"-gnueabi else echo "${UNAME_PROCESSOR}"-unknown-freebsd"`echo ${UNAME_RELEASE}|sed -e 's/[-(].*//'`"-gnueabihf fi exit ;; *:FreeBSD:*:*) UNAME_PROCESSOR=`/usr/bin/uname -p` case "$UNAME_PROCESSOR" in amd64) UNAME_PROCESSOR=x86_64 ;; i386) UNAME_PROCESSOR=i586 ;; esac echo "$UNAME_PROCESSOR"-unknown-freebsd"`echo "$UNAME_RELEASE"|sed -e 's/[-(].*//'`" exit ;; i*:CYGWIN*:*) echo "$UNAME_MACHINE"-pc-cygwin exit ;; *:MINGW64*:*) echo "$UNAME_MACHINE"-pc-mingw64 exit ;; *:MINGW*:*) echo "$UNAME_MACHINE"-pc-mingw32 exit ;; *:MSYS*:*) echo "$UNAME_MACHINE"-pc-msys exit ;; i*:PW*:*) echo "$UNAME_MACHINE"-pc-pw32 exit ;; *:Interix*:*) case "$UNAME_MACHINE" in x86) echo i586-pc-interix"$UNAME_RELEASE" exit ;; authenticamd | genuineintel | EM64T) echo x86_64-unknown-interix"$UNAME_RELEASE" exit ;; IA64) echo ia64-unknown-interix"$UNAME_RELEASE" exit ;; esac ;; i*:UWIN*:*) echo "$UNAME_MACHINE"-pc-uwin exit ;; amd64:CYGWIN*:*:* | x86_64:CYGWIN*:*:*) echo x86_64-unknown-cygwin exit ;; prep*:SunOS:5.*:*) echo powerpcle-unknown-solaris2"`echo "$UNAME_RELEASE"|sed -e 's/[^.]*//'`" exit ;; *:GNU:*:*) # the GNU system echo "`echo "$UNAME_MACHINE"|sed -e 's,[-/].*$,,'`-unknown-$LIBC`echo "$UNAME_RELEASE"|sed -e 's,/.*$,,'`" exit ;; *:GNU/*:*:*) # other systems with GNU libc and userland echo "$UNAME_MACHINE-unknown-`echo "$UNAME_SYSTEM" | sed 's,^[^/]*/,,' | tr "[:upper:]" "[:lower:]"``echo "$UNAME_RELEASE"|sed -e 's/[-(].*//'`-$LIBC" exit ;; *:Minix:*:*) echo "$UNAME_MACHINE"-unknown-minix exit ;; aarch64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; aarch64_be:Linux:*:*) UNAME_MACHINE=aarch64_be echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; alpha:Linux:*:*) case `sed -n '/^cpu model/s/^.*: \(.*\)/\1/p' < /proc/cpuinfo` in EV5) UNAME_MACHINE=alphaev5 ;; EV56) UNAME_MACHINE=alphaev56 ;; PCA56) UNAME_MACHINE=alphapca56 ;; PCA57) UNAME_MACHINE=alphapca56 ;; EV6) UNAME_MACHINE=alphaev6 ;; EV67) UNAME_MACHINE=alphaev67 ;; EV68*) UNAME_MACHINE=alphaev68 ;; esac objdump --private-headers /bin/sh | grep -q ld.so.1 if test "$?" = 0 ; then LIBC=gnulibc1 ; fi echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; arc:Linux:*:* | arceb:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; arm*:Linux:*:*) set_cc_for_build if echo __ARM_EABI__ | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_EABI__ then echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" else if echo __ARM_PCS_VFP | $CC_FOR_BUILD -E - 2>/dev/null \ | grep -q __ARM_PCS_VFP then echo "$UNAME_MACHINE"-unknown-linux-"$LIBC"eabi else echo "$UNAME_MACHINE"-unknown-linux-"$LIBC"eabihf fi fi exit ;; avr32*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; cris:Linux:*:*) echo "$UNAME_MACHINE"-axis-linux-"$LIBC" exit ;; crisv32:Linux:*:*) echo "$UNAME_MACHINE"-axis-linux-"$LIBC" exit ;; e2k:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; frv:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; hexagon:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; i*86:Linux:*:*) echo "$UNAME_MACHINE"-pc-linux-"$LIBC" exit ;; ia64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; k1om:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; m32r*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; m68*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; mips:Linux:*:* | mips64:Linux:*:*) set_cc_for_build sed 's/^ //' << EOF > "$dummy.c" #undef CPU #undef ${UNAME_MACHINE} #undef ${UNAME_MACHINE}el #if defined(__MIPSEL__) || defined(__MIPSEL) || defined(_MIPSEL) || defined(MIPSEL) CPU=${UNAME_MACHINE}el #else #if defined(__MIPSEB__) || defined(__MIPSEB) || defined(_MIPSEB) || defined(MIPSEB) CPU=${UNAME_MACHINE} #else CPU= #endif #endif EOF eval "`$CC_FOR_BUILD -E "$dummy.c" 2>/dev/null | grep '^CPU'`" test "x$CPU" != x && { echo "$CPU-unknown-linux-$LIBC"; exit; } ;; mips64el:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; openrisc*:Linux:*:*) echo or1k-unknown-linux-"$LIBC" exit ;; or32:Linux:*:* | or1k*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; padre:Linux:*:*) echo sparc-unknown-linux-"$LIBC" exit ;; parisc64:Linux:*:* | hppa64:Linux:*:*) echo hppa64-unknown-linux-"$LIBC" exit ;; parisc:Linux:*:* | hppa:Linux:*:*) # Look for CPU level case `grep '^cpu[^a-z]*:' /proc/cpuinfo 2>/dev/null | cut -d' ' -f2` in PA7*) echo hppa1.1-unknown-linux-"$LIBC" ;; PA8*) echo hppa2.0-unknown-linux-"$LIBC" ;; *) echo hppa-unknown-linux-"$LIBC" ;; esac exit ;; ppc64:Linux:*:*) echo powerpc64-unknown-linux-"$LIBC" exit ;; ppc:Linux:*:*) echo powerpc-unknown-linux-"$LIBC" exit ;; ppc64le:Linux:*:*) echo powerpc64le-unknown-linux-"$LIBC" exit ;; ppcle:Linux:*:*) echo powerpcle-unknown-linux-"$LIBC" exit ;; riscv32:Linux:*:* | riscv64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; s390:Linux:*:* | s390x:Linux:*:*) echo "$UNAME_MACHINE"-ibm-linux-"$LIBC" exit ;; sh64*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; sh*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; sparc:Linux:*:* | sparc64:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; tile*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; vax:Linux:*:*) echo "$UNAME_MACHINE"-dec-linux-"$LIBC" exit ;; x86_64:Linux:*:*) echo "$UNAME_MACHINE"-pc-linux-"$LIBC" exit ;; xtensa*:Linux:*:*) echo "$UNAME_MACHINE"-unknown-linux-"$LIBC" exit ;; i*86:DYNIX/ptx:4*:*) # ptx 4.0 does uname -s correctly, with DYNIX/ptx in there. # earlier versions are messed up and put the nodename in both # sysname and nodename. echo i386-sequent-sysv4 exit ;; i*86:UNIX_SV:4.2MP:2.*) # Unixware is an offshoot of SVR4, but it has its own version # number series starting with 2... # I am not positive that other SVR4 systems won't match this, # I just have to hope. -- rms. # Use sysv4.2uw... so that sysv4* matches it. echo "$UNAME_MACHINE"-pc-sysv4.2uw"$UNAME_VERSION" exit ;; i*86:OS/2:*:*) # If we were able to find `uname', then EMX Unix compatibility # is probably installed. echo "$UNAME_MACHINE"-pc-os2-emx exit ;; i*86:XTS-300:*:STOP) echo "$UNAME_MACHINE"-unknown-stop exit ;; i*86:atheos:*:*) echo "$UNAME_MACHINE"-unknown-atheos exit ;; i*86:syllable:*:*) echo "$UNAME_MACHINE"-pc-syllable exit ;; i*86:LynxOS:2.*:* | i*86:LynxOS:3.[01]*:* | i*86:LynxOS:4.[02]*:*) echo i386-unknown-lynxos"$UNAME_RELEASE" exit ;; i*86:*DOS:*:*) echo "$UNAME_MACHINE"-pc-msdosdjgpp exit ;; i*86:*:4.*:*) UNAME_REL=`echo "$UNAME_RELEASE" | sed 's/\/MP$//'` if grep Novell /usr/include/link.h >/dev/null 2>/dev/null; then echo "$UNAME_MACHINE"-univel-sysv"$UNAME_REL" else echo "$UNAME_MACHINE"-pc-sysv"$UNAME_REL" fi exit ;; i*86:*:5:[678]*) # UnixWare 7.x, OpenUNIX and OpenServer 6. case `/bin/uname -X | grep "^Machine"` in *486*) UNAME_MACHINE=i486 ;; *Pentium) UNAME_MACHINE=i586 ;; *Pent*|*Celeron) UNAME_MACHINE=i686 ;; esac echo "$UNAME_MACHINE-unknown-sysv${UNAME_RELEASE}${UNAME_SYSTEM}{$UNAME_VERSION}" exit ;; i*86:*:3.2:*) if test -f /usr/options/cb.name; then UNAME_REL=`sed -n 's/.*Version //p' /dev/null >/dev/null ; then UNAME_REL=`(/bin/uname -X|grep Release|sed -e 's/.*= //')` (/bin/uname -X|grep i80486 >/dev/null) && UNAME_MACHINE=i486 (/bin/uname -X|grep '^Machine.*Pentium' >/dev/null) \ && UNAME_MACHINE=i586 (/bin/uname -X|grep '^Machine.*Pent *II' >/dev/null) \ && UNAME_MACHINE=i686 (/bin/uname -X|grep '^Machine.*Pentium Pro' >/dev/null) \ && UNAME_MACHINE=i686 echo "$UNAME_MACHINE"-pc-sco"$UNAME_REL" else echo "$UNAME_MACHINE"-pc-sysv32 fi exit ;; pc:*:*:*) # Left here for compatibility: # uname -m prints for DJGPP always 'pc', but it prints nothing about # the processor, so we play safe by assuming i586. # Note: whatever this is, it MUST be the same as what config.sub # prints for the "djgpp" host, or else GDB configure will decide that # this is a cross-build. echo i586-pc-msdosdjgpp exit ;; Intel:Mach:3*:*) echo i386-pc-mach3 exit ;; paragon:*:*:*) echo i860-intel-osf1 exit ;; i860:*:4.*:*) # i860-SVR4 if grep Stardent /usr/include/sys/uadmin.h >/dev/null 2>&1 ; then echo i860-stardent-sysv"$UNAME_RELEASE" # Stardent Vistra i860-SVR4 else # Add other i860-SVR4 vendors below as they are discovered. echo i860-unknown-sysv"$UNAME_RELEASE" # Unknown i860-SVR4 fi exit ;; mini*:CTIX:SYS*5:*) # "miniframe" echo m68010-convergent-sysv exit ;; mc68k:UNIX:SYSTEM5:3.51m) echo m68k-convergent-sysv exit ;; M680?0:D-NIX:5.3:*) echo m68k-diab-dnix exit ;; M68*:*:R3V[5678]*:*) test -r /sysV68 && { echo 'm68k-motorola-sysv'; exit; } ;; 3[345]??:*:4.0:3.0 | 3[34]??A:*:4.0:3.0 | 3[34]??,*:*:4.0:3.0 | 3[34]??/*:*:4.0:3.0 | 4400:*:4.0:3.0 | 4850:*:4.0:3.0 | SKA40:*:4.0:3.0 | SDS2:*:4.0:3.0 | SHG2:*:4.0:3.0 | S7501*:*:4.0:3.0) OS_REL='' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3"$OS_REL"; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } ;; 3[34]??:*:4.0:* | 3[34]??,*:*:4.0:*) /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4; exit; } ;; NCR*:*:4.2:* | MPRAS*:*:4.2:*) OS_REL='.3' test -r /etc/.relid \ && OS_REL=.`sed -n 's/[^ ]* [^ ]* \([0-9][0-9]\).*/\1/p' < /etc/.relid` /bin/uname -p 2>/dev/null | grep 86 >/dev/null \ && { echo i486-ncr-sysv4.3"$OS_REL"; exit; } /bin/uname -p 2>/dev/null | /bin/grep entium >/dev/null \ && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } /bin/uname -p 2>/dev/null | /bin/grep pteron >/dev/null \ && { echo i586-ncr-sysv4.3"$OS_REL"; exit; } ;; m68*:LynxOS:2.*:* | m68*:LynxOS:3.0*:*) echo m68k-unknown-lynxos"$UNAME_RELEASE" exit ;; mc68030:UNIX_System_V:4.*:*) echo m68k-atari-sysv4 exit ;; TSUNAMI:LynxOS:2.*:*) echo sparc-unknown-lynxos"$UNAME_RELEASE" exit ;; rs6000:LynxOS:2.*:*) echo rs6000-unknown-lynxos"$UNAME_RELEASE" exit ;; PowerPC:LynxOS:2.*:* | PowerPC:LynxOS:3.[01]*:* | PowerPC:LynxOS:4.[02]*:*) echo powerpc-unknown-lynxos"$UNAME_RELEASE" exit ;; SM[BE]S:UNIX_SV:*:*) echo mips-dde-sysv"$UNAME_RELEASE" exit ;; RM*:ReliantUNIX-*:*:*) echo mips-sni-sysv4 exit ;; RM*:SINIX-*:*:*) echo mips-sni-sysv4 exit ;; *:SINIX-*:*:*) if uname -p 2>/dev/null >/dev/null ; then UNAME_MACHINE=`(uname -p) 2>/dev/null` echo "$UNAME_MACHINE"-sni-sysv4 else echo ns32k-sni-sysv fi exit ;; PENTIUM:*:4.0*:*) # Unisys `ClearPath HMP IX 4000' SVR4/MP effort # says echo i586-unisys-sysv4 exit ;; *:UNIX_System_V:4*:FTX*) # From Gerald Hewes . # How about differentiating between stratus architectures? -djm echo hppa1.1-stratus-sysv4 exit ;; *:*:*:FTX*) # From seanf@swdc.stratus.com. echo i860-stratus-sysv4 exit ;; i*86:VOS:*:*) # From Paul.Green@stratus.com. echo "$UNAME_MACHINE"-stratus-vos exit ;; *:VOS:*:*) # From Paul.Green@stratus.com. echo hppa1.1-stratus-vos exit ;; mc68*:A/UX:*:*) echo m68k-apple-aux"$UNAME_RELEASE" exit ;; news*:NEWS-OS:6*:*) echo mips-sony-newsos6 exit ;; R[34]000:*System_V*:*:* | R4000:UNIX_SYSV:*:* | R*000:UNIX_SV:*:*) if [ -d /usr/nec ]; then echo mips-nec-sysv"$UNAME_RELEASE" else echo mips-unknown-sysv"$UNAME_RELEASE" fi exit ;; BeBox:BeOS:*:*) # BeOS running on hardware made by Be, PPC only. echo powerpc-be-beos exit ;; BeMac:BeOS:*:*) # BeOS running on Mac or Mac clone, PPC only. echo powerpc-apple-beos exit ;; BePC:BeOS:*:*) # BeOS running on Intel PC compatible. echo i586-pc-beos exit ;; BePC:Haiku:*:*) # Haiku running on Intel PC compatible. echo i586-pc-haiku exit ;; x86_64:Haiku:*:*) echo x86_64-unknown-haiku exit ;; SX-4:SUPER-UX:*:*) echo sx4-nec-superux"$UNAME_RELEASE" exit ;; SX-5:SUPER-UX:*:*) echo sx5-nec-superux"$UNAME_RELEASE" exit ;; SX-6:SUPER-UX:*:*) echo sx6-nec-superux"$UNAME_RELEASE" exit ;; SX-7:SUPER-UX:*:*) echo sx7-nec-superux"$UNAME_RELEASE" exit ;; SX-8:SUPER-UX:*:*) echo sx8-nec-superux"$UNAME_RELEASE" exit ;; SX-8R:SUPER-UX:*:*) echo sx8r-nec-superux"$UNAME_RELEASE" exit ;; SX-ACE:SUPER-UX:*:*) echo sxace-nec-superux"$UNAME_RELEASE" exit ;; Power*:Rhapsody:*:*) echo powerpc-apple-rhapsody"$UNAME_RELEASE" exit ;; *:Rhapsody:*:*) echo "$UNAME_MACHINE"-apple-rhapsody"$UNAME_RELEASE" exit ;; *:Darwin:*:*) UNAME_PROCESSOR=`uname -p` || UNAME_PROCESSOR=unknown set_cc_for_build if test "$UNAME_PROCESSOR" = unknown ; then UNAME_PROCESSOR=powerpc fi if test "`echo "$UNAME_RELEASE" | sed -e 's/\..*//'`" -le 10 ; then if [ "$CC_FOR_BUILD" != no_compiler_found ]; then if (echo '#ifdef __LP64__'; echo IS_64BIT_ARCH; echo '#endif') | \ (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_64BIT_ARCH >/dev/null then case $UNAME_PROCESSOR in i386) UNAME_PROCESSOR=x86_64 ;; powerpc) UNAME_PROCESSOR=powerpc64 ;; esac fi # On 10.4-10.6 one might compile for PowerPC via gcc -arch ppc if (echo '#ifdef __POWERPC__'; echo IS_PPC; echo '#endif') | \ (CCOPTS="" $CC_FOR_BUILD -E - 2>/dev/null) | \ grep IS_PPC >/dev/null then UNAME_PROCESSOR=powerpc fi fi elif test "$UNAME_PROCESSOR" = i386 ; then # Avoid executing cc on OS X 10.9, as it ships with a stub # that puts up a graphical alert prompting to install # developer tools. Any system running Mac OS X 10.7 or # later (Darwin 11 and later) is required to have a 64-bit # processor. This is not true of the ARM version of Darwin # that Apple uses in portable devices. UNAME_PROCESSOR=x86_64 fi echo "$UNAME_PROCESSOR"-apple-darwin"$UNAME_RELEASE" exit ;; *:procnto*:*:* | *:QNX:[0123456789]*:*) UNAME_PROCESSOR=`uname -p` if test "$UNAME_PROCESSOR" = x86; then UNAME_PROCESSOR=i386 UNAME_MACHINE=pc fi echo "$UNAME_PROCESSOR"-"$UNAME_MACHINE"-nto-qnx"$UNAME_RELEASE" exit ;; *:QNX:*:4*) echo i386-pc-qnx exit ;; NEO-*:NONSTOP_KERNEL:*:*) echo neo-tandem-nsk"$UNAME_RELEASE" exit ;; NSE-*:NONSTOP_KERNEL:*:*) echo nse-tandem-nsk"$UNAME_RELEASE" exit ;; NSR-*:NONSTOP_KERNEL:*:*) echo nsr-tandem-nsk"$UNAME_RELEASE" exit ;; NSV-*:NONSTOP_KERNEL:*:*) echo nsv-tandem-nsk"$UNAME_RELEASE" exit ;; NSX-*:NONSTOP_KERNEL:*:*) echo nsx-tandem-nsk"$UNAME_RELEASE" exit ;; *:NonStop-UX:*:*) echo mips-compaq-nonstopux exit ;; BS2000:POSIX*:*:*) echo bs2000-siemens-sysv exit ;; DS/*:UNIX_System_V:*:*) echo "$UNAME_MACHINE"-"$UNAME_SYSTEM"-"$UNAME_RELEASE" exit ;; *:Plan9:*:*) # "uname -m" is not consistent, so use $cputype instead. 386 # is converted to i386 for consistency with other x86 # operating systems. # shellcheck disable=SC2154 if test "$cputype" = 386; then UNAME_MACHINE=i386 else UNAME_MACHINE="$cputype" fi echo "$UNAME_MACHINE"-unknown-plan9 exit ;; *:TOPS-10:*:*) echo pdp10-unknown-tops10 exit ;; *:TENEX:*:*) echo pdp10-unknown-tenex exit ;; KS10:TOPS-20:*:* | KL10:TOPS-20:*:* | TYPE4:TOPS-20:*:*) echo pdp10-dec-tops20 exit ;; XKL-1:TOPS-20:*:* | TYPE5:TOPS-20:*:*) echo pdp10-xkl-tops20 exit ;; *:TOPS-20:*:*) echo pdp10-unknown-tops20 exit ;; *:ITS:*:*) echo pdp10-unknown-its exit ;; SEI:*:*:SEIUX) echo mips-sei-seiux"$UNAME_RELEASE" exit ;; *:DragonFly:*:*) echo "$UNAME_MACHINE"-unknown-dragonfly"`echo "$UNAME_RELEASE"|sed -e 's/[-(].*//'`" exit ;; *:*VMS:*:*) UNAME_MACHINE=`(uname -p) 2>/dev/null` case "$UNAME_MACHINE" in A*) echo alpha-dec-vms ; exit ;; I*) echo ia64-dec-vms ; exit ;; V*) echo vax-dec-vms ; exit ;; esac ;; *:XENIX:*:SysV) echo i386-pc-xenix exit ;; i*86:skyos:*:*) echo "$UNAME_MACHINE"-pc-skyos"`echo "$UNAME_RELEASE" | sed -e 's/ .*$//'`" exit ;; i*86:rdos:*:*) echo "$UNAME_MACHINE"-pc-rdos exit ;; i*86:AROS:*:*) echo "$UNAME_MACHINE"-pc-aros exit ;; x86_64:VMkernel:*:*) echo "$UNAME_MACHINE"-unknown-esx exit ;; amd64:Isilon\ OneFS:*:*) echo x86_64-unknown-onefs exit ;; esac echo "$0: unable to guess system type" >&2 case "$UNAME_MACHINE:$UNAME_SYSTEM" in mips:Linux | mips64:Linux) # If we got here on MIPS GNU/Linux, output extra information. cat >&2 <&2 </dev/null || echo unknown` uname -r = `(uname -r) 2>/dev/null || echo unknown` uname -s = `(uname -s) 2>/dev/null || echo unknown` uname -v = `(uname -v) 2>/dev/null || echo unknown` /usr/bin/uname -p = `(/usr/bin/uname -p) 2>/dev/null` /bin/uname -X = `(/bin/uname -X) 2>/dev/null` hostinfo = `(hostinfo) 2>/dev/null` /bin/universe = `(/bin/universe) 2>/dev/null` /usr/bin/arch -k = `(/usr/bin/arch -k) 2>/dev/null` /bin/arch = `(/bin/arch) 2>/dev/null` /usr/bin/oslevel = `(/usr/bin/oslevel) 2>/dev/null` /usr/convex/getsysinfo = `(/usr/convex/getsysinfo) 2>/dev/null` UNAME_MACHINE = "$UNAME_MACHINE" UNAME_RELEASE = "$UNAME_RELEASE" UNAME_SYSTEM = "$UNAME_SYSTEM" UNAME_VERSION = "$UNAME_VERSION" EOF exit 1 # Local variables: # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-start: "timestamp='" # time-stamp-format: "%:y-%02m-%02d" # time-stamp-end: "'" # End: openconnect-8.20/openssl-dtls.c0000644000076400007640000006777114204454432020347 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #ifndef _WIN32 #include #include #endif #include #include #include #include /* In the very early days there were cases where this wasn't found in * the header files but it did still work somehow. I forget the details * now but I was definitely avoiding using the macro. Let's just define * it for ourselves instead.*/ #ifndef DTLS1_BAD_VER #define DTLS1_BAD_VER 0x100 #endif #ifdef HAVE_DTLS1_STOP_TIMER /* OpenSSL doesn't deliberately export this, but we need it to workaround a DTLS bug in versions < 1.0.0e */ extern void dtls1_stop_timer(SSL *); #endif #ifndef DTLS_get_data_mtu /* This equivalent functionality was submitted for OpenSSL 1.1.1+ in * https://github.com/openssl/openssl/pull/1666 */ static int dtls_get_data_mtu(struct openconnect_info *vpninfo, int mtu) { int ivlen, maclen, blocksize = 0, pad = 0; #if OPENSSL_VERSION_NUMBER >= 0x10100000L && !defined(LIBRESSL_VERSION_NUMBER) const SSL_CIPHER *s_ciph = SSL_get_current_cipher(vpninfo->dtls_ssl); int cipher_nid; const EVP_CIPHER *e_ciph; const EVP_MD *e_md; char wtf[128]; cipher_nid = SSL_CIPHER_get_cipher_nid(s_ciph); if (cipher_nid == NID_chacha20_poly1305) { ivlen = 0; /* Automatically derived from handshake and seqno */ maclen = 16; /* Poly1305 */ } else { e_ciph = EVP_get_cipherbynid(cipher_nid); switch (EVP_CIPHER_mode(e_ciph)) { case EVP_CIPH_GCM_MODE: ivlen = EVP_GCM_TLS_EXPLICIT_IV_LEN; maclen = EVP_GCM_TLS_TAG_LEN; break; case EVP_CIPH_CCM_MODE: ivlen = EVP_CCM_TLS_EXPLICIT_IV_LEN; SSL_CIPHER_description(s_ciph, wtf, sizeof(wtf)); if (strstr(wtf, "CCM8")) maclen = 8; else maclen = 16; break; case EVP_CIPH_CBC_MODE: blocksize = EVP_CIPHER_block_size(e_ciph); ivlen = EVP_CIPHER_iv_length(e_ciph); pad = 1; e_md = EVP_get_digestbynid(SSL_CIPHER_get_digest_nid(s_ciph)); maclen = EVP_MD_size(e_md); break; default: vpn_progress(vpninfo, PRG_ERR, _("Unable to calculate DTLS overhead for %s\n"), SSL_CIPHER_get_name(s_ciph)); ivlen = 0; maclen = DTLS_OVERHEAD; break; } } #else /* OpenSSL <= 1.0.2 only supports CBC ciphers with PSK */ ivlen = EVP_CIPHER_iv_length(EVP_CIPHER_CTX_cipher(vpninfo->dtls_ssl->enc_read_ctx)); maclen = EVP_MD_CTX_size(vpninfo->dtls_ssl->read_hash); blocksize = ivlen; pad = 1; #endif /* Even when it pretended to, OpenSSL never did encrypt-then-mac. * So the MAC is *inside* the encryption, unconditionally. * https://github.com/openssl/openssl/pull/1705 */ if (mtu < DTLS1_RT_HEADER_LENGTH + ivlen) return 0; mtu -= DTLS1_RT_HEADER_LENGTH + ivlen; /* For CBC mode round down to blocksize */ if (blocksize) mtu -= mtu % blocksize; /* Finally, CBC modes require at least one byte to indicate * padding length, as well as the MAC. */ if (mtu < pad + maclen) return 0; mtu -= pad + maclen; return mtu; } #endif /* !DTLS_get_data_mtu */ /* sets the DTLS MTU and returns the actual tunnel MTU */ unsigned dtls_set_mtu(struct openconnect_info *vpninfo, unsigned mtu) { /* This is the record MTU (not the link MTU, which includes * IP+UDP headers, and not the payload MTU */ SSL_set_mtu(vpninfo->dtls_ssl, mtu); #ifdef DTLS_get_data_mtu return DTLS_get_data_mtu(vpninfo->dtls_ssl); #else return dtls_get_data_mtu(vpninfo, mtu); #endif } #if OPENSSL_VERSION_NUMBER >= 0x10100000L && !defined(LIBRESSL_VERSION_NUMBER) /* Since OpenSSL 1.1, the SSL_SESSION structure is opaque and we can't * just fill it in directly. So we have to generate the OpenSSL ASN.1 * representation of the SSL_SESSION, and use d2i_SSL_SESSION() to * create the SSL_SESSION from that. */ static void buf_append_INTEGER(struct oc_text_buf *buf, uint32_t datum) { int l; /* We only handle positive integers up to INT_MAX */ if (datum < 0x80) l = 1; else if (datum < 0x8000) l = 2; else if (datum < 0x800000) l = 3; else l = 4; if (buf_ensure_space(buf, 2 + l)) return; buf->data[buf->pos++] = 0x02; buf->data[buf->pos++] = l; while (l--) buf->data[buf->pos++] = datum >> (l * 8); } static void buf_append_OCTET_STRING(struct oc_text_buf *buf, void *data, int len) { /* We only (need to) cope with length < 0x80 for now */ if (len >= 0x80) { buf->error = -EINVAL; return; } if (buf_ensure_space(buf, 2 + len)) return; buf->data[buf->pos++] = 0x04; buf->data[buf->pos++] = len; memcpy(buf->data + buf->pos, data, len); buf->pos += len; } static SSL_SESSION *generate_dtls_session(struct openconnect_info *vpninfo, int dtlsver, const SSL_CIPHER *cipher, unsigned rnd_key) { struct oc_text_buf *buf = buf_alloc(); SSL_SESSION *dtls_session; const unsigned char *asn; uint16_t cid; uint8_t rnd_secret[TLS_MASTER_KEY_SIZE]; buf_append_bytes(buf, "\x30\x80", 2); // SEQUENCE, indeterminate length buf_append_INTEGER(buf, 1 /* SSL_SESSION_ASN1_VERSION */); buf_append_INTEGER(buf, dtlsver); store_be16(&cid, SSL_CIPHER_get_id(cipher) & 0xffff); buf_append_OCTET_STRING(buf, &cid, 2); if (rnd_key) { buf_append_OCTET_STRING(buf, vpninfo->dtls_app_id, vpninfo->dtls_app_id_size); if (openconnect_random(rnd_secret, sizeof(rnd_secret))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random key\n")); buf_free(buf); return NULL; } buf_append_OCTET_STRING(buf, rnd_secret, sizeof(rnd_secret)); } else { buf_append_OCTET_STRING(buf, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id)); buf_append_OCTET_STRING(buf, vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret)); } /* If the length actually fits in one byte (which it should), do * it that way. Else, leave it indeterminate and add two * end-of-contents octets to mark the end of the SEQUENCE. */ if (!buf_error(buf) && buf->pos <= 0x80) buf->data[1] = buf->pos - 2; else buf_append_bytes(buf, "\0\0", 2); if (buf_error(buf)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create SSL_SESSION ASN.1 for OpenSSL: %s\n"), strerror(-buf_error(buf))); buf_free(buf); return NULL; } asn = (void *)buf->data; dtls_session = d2i_SSL_SESSION(NULL, &asn, buf->pos); buf_free(buf); if (!dtls_session) { vpn_progress(vpninfo, PRG_ERR, _("OpenSSL failed to parse SSL_SESSION ASN.1\n")); openconnect_report_ssl_errors(vpninfo); return NULL; } return dtls_session; } #else /* OpenSSL before 1.1 */ static SSL_SESSION *generate_dtls_session(struct openconnect_info *vpninfo, int dtlsver, const SSL_CIPHER *cipher, unsigned rnd_key) { SSL_SESSION *dtls_session = SSL_SESSION_new(); if (!dtls_session) { vpn_progress(vpninfo, PRG_ERR, _("Initialise DTLSv1 session failed\n")); return NULL; } dtls_session->ssl_version = dtlsver; dtls_session->master_key_length = TLS_MASTER_KEY_SIZE; if (rnd_key) { if (openconnect_random(dtls_session->master_key, TLS_MASTER_KEY_SIZE)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate random key\n")); return NULL; } if (vpninfo->dtls_app_id_size > sizeof(dtls_session->session_id)) { vpn_progress(vpninfo, PRG_ERR, _("Too large application ID size\n")); return NULL; } dtls_session->session_id_length = vpninfo->dtls_app_id_size; memcpy(dtls_session->session_id, vpninfo->dtls_app_id, vpninfo->dtls_app_id_size); } else { memcpy(dtls_session->master_key, vpninfo->dtls_secret, sizeof(vpninfo->dtls_secret)); dtls_session->session_id_length = sizeof(vpninfo->dtls_session_id); memcpy(dtls_session->session_id, vpninfo->dtls_session_id, sizeof(vpninfo->dtls_session_id)); } dtls_session->cipher = (SSL_CIPHER *)cipher; dtls_session->cipher_id = cipher->id; return dtls_session; } #endif #if defined (HAVE_DTLS12) && !defined(OPENSSL_NO_PSK) static unsigned int psk_callback(SSL *ssl, const char *hint, char *identity, unsigned int max_identity_len, unsigned char *psk, unsigned int max_psk_len) { struct openconnect_info *vpninfo = SSL_get_app_data(ssl); if (!vpninfo || max_identity_len < 4 || max_psk_len < PSK_KEY_SIZE) return 0; vpn_progress(vpninfo, PRG_TRACE, _("PSK callback\n")); snprintf(identity, max_psk_len, "psk"); memcpy(psk, vpninfo->dtls_secret, PSK_KEY_SIZE); return PSK_KEY_SIZE; } #endif #ifndef HAVE_SSL_CIPHER_FIND static const SSL_CIPHER *SSL_CIPHER_find(SSL *ssl, const unsigned char *ptr) { return ssl->method->get_cipher_by_char(ptr); } #endif int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd) { method_const SSL_METHOD *dtls_method; SSL_SESSION *dtls_session; SSL *dtls_ssl; BIO *dtls_bio; int dtlsver = DTLS1_BAD_VER; const char *cipher = vpninfo->dtls_cipher; if (!cipher) { dtlsver = 0; #ifdef HAVE_DTLS12 /* The F5 BIG-IP server before v16, will crap itself if we * even *try* to do DTLSv1.2 */ if (!vpninfo->dtls12) dtlsver = DTLS1_VERSION; /* These things should never happen unless they're supported */ } else if (vpninfo->dtls12) { dtlsver = DTLS1_2_VERSION; } else if (!strcmp(cipher, "OC-DTLS1_2-AES128-GCM")) { dtlsver = DTLS1_2_VERSION; cipher = "AES128-GCM-SHA256"; } else if (!strcmp(cipher, "OC-DTLS1_2-AES256-GCM")) { dtlsver = DTLS1_2_VERSION; cipher = "AES256-GCM-SHA384"; #ifndef OPENSSL_NO_PSK } else if (!strcmp(cipher, "PSK-NEGOTIATE")) { dtlsver = 0; /* Let it negotiate */ #endif #endif } if (!vpninfo->dtls_ctx) { #ifdef HAVE_DTLS12 /* If we can use SSL_CTX_set_min_proto_version, do so. */ dtls_method = DTLS_client_method(); #elif !defined(HAVE_SSL_CTX_PROTOVER) dtls_method = DTLSv1_client_method(); #else #error "This can't happen as DTLS1.2 came before SSL_CTX_set_mXX_proto_version()" #endif vpninfo->dtls_ctx = SSL_CTX_new(dtls_method); if (!vpninfo->dtls_ctx) { vpn_progress(vpninfo, PRG_ERR, _("Initialise DTLSv1 CTX failed\n")); openconnect_report_ssl_errors(vpninfo); vpninfo->dtls_attempt_period = 0; return -EINVAL; } #ifdef HAVE_SSL_CTX_PROTOVER if (dtlsver && (!SSL_CTX_set_min_proto_version(vpninfo->dtls_ctx, dtlsver) || !SSL_CTX_set_max_proto_version(vpninfo->dtls_ctx, dtlsver))) { vpn_progress(vpninfo, PRG_ERR, _("Set DTLS CTX version failed\n")); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } #else /* !HAVE_SSL_CTX_PROTOVER */ /* If we used the legacy version-specific methods, we need the special * way to make TLSv1_client_method() do DTLS1_BAD_VER. */ if (dtlsver == DTLS1_BAD_VER) SSL_CTX_set_options(vpninfo->dtls_ctx, SSL_OP_CISCO_ANYCONNECT); #endif /* If we don't readahead, then we do short reads and throw away the tail of data packets. */ SSL_CTX_set_read_ahead(vpninfo->dtls_ctx, 1); if (vpninfo->proto->proto == PROTO_ANYCONNECT) { /* All the AnyConnect hackery about saved sessions and PSK */ #if defined (HAVE_DTLS12) && !defined(OPENSSL_NO_PSK) if (!dtlsver) { SSL_CTX_set_psk_client_callback(vpninfo->dtls_ctx, psk_callback); /* For PSK we override the DTLS master secret with one derived * from the HTTPS session. */ if (!SSL_export_keying_material(vpninfo->https_ssl, vpninfo->dtls_secret, PSK_KEY_SIZE, PSK_LABEL, PSK_LABEL_SIZE, NULL, 0, 0)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate DTLS key\n")); openconnect_report_ssl_errors(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } /* For SSL_CTX_set_cipher_list() */ cipher = "PSK"; } #endif /* OPENSSL_NO_PSK */ #ifdef SSL_OP_NO_ENCRYPT_THEN_MAC /* * I'm fairly sure I wasn't lying when I said I had tested * https://github.com/openssl/openssl/commit/e23d5071ec4c7aa6bb2b * against GnuTLS both with and without EtM in 2016. * * Nevertheless, in 2019 it seems to be failing to negotiate * at least for DTLS1_BAD_VER against ocserv with GnuTLS 3.6.7: * https://gitlab.com/gnutls/gnutls/issues/139 — I think because * GnuTLS isn't actually doing EtM after negotiating it (like * OpenSSL 1.1.0 used to). * * Just turn it off. Real Cisco servers don't do it for * DTLS1_BAD_VER, and against ocserv (and newer Cisco) we should * be using DTLSv1.2 with AEAD ciphersuites anyway so EtM is * irrelevant. */ SSL_CTX_set_options(vpninfo->dtls_ctx, SSL_OP_NO_ENCRYPT_THEN_MAC); #endif #ifdef SSL_OP_LEGACY_SERVER_CONNECT /* * Since https://github.com/openssl/openssl/pull/15127, OpenSSL * *requires* secure renegotiation support by default. For interop * with Cisco's resumed DTLS sessions, we have to turn that off. */ if (dtlsver) SSL_CTX_set_options(vpninfo->dtls_ctx, SSL_OP_LEGACY_SERVER_CONNECT); #endif #ifdef SSL_OP_NO_EXTENDED_MASTER_SECRET /* RFC7627 says: * * If the original session did not use the "extended_master_secret" * extension but the new ClientHello contains the extension, then the * server MUST NOT perform the abbreviated handshake. Instead, it * SHOULD continue with a full handshake (as described in * Section 5.2) to negotiate a new session. * * Now that would be distinctly suboptimal, since we have no way to do * a full handshake (we even explicitly protect against it, in case a * MITM server attempts to hijack our deliberately-resumed session). * * So where OpenSSL provides the choice, tell it not to use extms on * resumed sessions. */ if (dtlsver) SSL_CTX_set_options(vpninfo->dtls_ctx, SSL_OP_NO_EXTENDED_MASTER_SECRET); #endif if (!SSL_CTX_set_cipher_list(vpninfo->dtls_ctx, cipher)) { vpn_progress(vpninfo, PRG_ERR, _("Set DTLS cipher list failed\n")); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } } else { /* Protocols other than AnyConnect are plain DTLS and do * need to check the server certificate properly (which * AnyConnect can skip because it all depends on PSK or * session resumption anyway */ int ret = openconnect_install_ctx_verify(vpninfo, vpninfo->dtls_ctx); if (ret) { SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return ret; } } } dtls_ssl = SSL_new(vpninfo->dtls_ctx); SSL_set_connect_state(dtls_ssl); SSL_set_app_data(dtls_ssl, vpninfo); /* * AnyConnect always sets cipher; nothing else does. Checking this * instead of vpninfo->proto->proto == PROTO_ANYCONNECT makes the * static analyser less unhappy because it doesn't know that, so it * would think we can dereference cipher when it's NULL. */ if (!cipher) { /* Non-AnyConnect protocols need to verify the peer */ SSL_set_verify(dtls_ssl, SSL_VERIFY_PEER, NULL); /* Where they only do DTLSv1, they also don't cope with secure renegotiation */ if (dtlsver == DTLS1_VERSION) SSL_set_options(dtls_ssl, SSL_OP_LEGACY_SERVER_CONNECT); } else if (dtlsver) { /* This is the actual Cisco AnyConnect method, using session resume */ STACK_OF(SSL_CIPHER) *ciphers = SSL_get_ciphers(dtls_ssl); const SSL_CIPHER *ssl_ciph = NULL; int i; for (i = 0; i < sk_SSL_CIPHER_num(ciphers); i++) { ssl_ciph = sk_SSL_CIPHER_value(ciphers, i); /* For PSK-NEGOTIATE just use the first one we find */ if (!dtlsver || !strcmp(SSL_CIPHER_get_name(ssl_ciph), cipher)) break; } if (i == sk_SSL_CIPHER_num(ciphers)) { vpn_progress(vpninfo, PRG_ERR, _("DTLS cipher '%s' not found\n"), cipher); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } /* We're going to "resume" a session which never existed. Fake it... */ dtls_session = generate_dtls_session(vpninfo, dtlsver, ssl_ciph, 0); if (!dtls_session) { SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!SSL_set_session(dtls_ssl, dtls_session)) { vpn_progress(vpninfo, PRG_ERR, _("SSL_set_session() failed with DTLS protocol version 0x%x\n" "Are you using a version of OpenSSL older than 0.9.8m?\n" "See http://rt.openssl.org/Ticket/Display.html?id=1751\n" "Use the --no-dtls command line option to avoid this message\n"), dtlsver); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; SSL_SESSION_free(dtls_session); return -EINVAL; } /* We don't need our own refcount on it any more */ SSL_SESSION_free(dtls_session); } else if (vpninfo->dtls_app_id_size > 0) { /* * For ocserv PSK-NEGOTIATE we abuse the session resume * protocol just to pass an 'App ID' in our ClientHello * in the session identifier. This session doesn't exist * and isn't actually going to be resumed at all. */ const uint8_t cs[2] = {0x00, 0x2F}; /* RSA-AES-128 */ dtls_session = generate_dtls_session(vpninfo, DTLS1_VERSION, SSL_CIPHER_find(dtls_ssl, cs), 1); if (!dtls_session) { SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EINVAL; } if (!SSL_set_session(dtls_ssl, dtls_session)) { vpn_progress(vpninfo, PRG_ERR, _("SSL_set_session() failed\n")); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; SSL_SESSION_free(dtls_session); return -EINVAL; } /* We don't need our own refcount on it any more */ SSL_SESSION_free(dtls_session); } /* else it's ocserv PSK-NEGOTIATE without an App-ID */ dtls_bio = BIO_new_dgram(dtls_fd, BIO_NOCLOSE); if (!dtls_bio || !BIO_ctrl(dtls_bio, BIO_CTRL_DGRAM_SET_CONNECTED, 0, (char *)vpninfo->dtls_addr)) { vpn_progress(vpninfo, PRG_ERR, _("Create DTLS dgram BIO failed\n")); if (dtls_bio) BIO_free(dtls_bio); SSL_CTX_free(vpninfo->dtls_ctx); SSL_free(dtls_ssl); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; return -EIO; } /* Set non-blocking */ BIO_set_nbio(dtls_bio, 1); SSL_set_bio(dtls_ssl, dtls_bio, dtls_bio); vpninfo->dtls_ssl = dtls_ssl; return 0; } int dtls_try_handshake(struct openconnect_info *vpninfo, int *timeout) { int ret = SSL_do_handshake(vpninfo->dtls_ssl); if (ret == 1) { const char *c; if (!vpninfo->dtls_cipher) { /* Anonymous DTLS (PPP protocols) will set vpninfo->ip_info.mtu * in PPP negotiation. * * XX: Needs forthcoming overhaul to detect MTU correctly and offer * reasonable MRU values during PPP negotiation. */ int data_mtu = vpninfo->cstp_basemtu = 1500; if (vpninfo->peer_addr->sa_family == IPPROTO_IPV6) data_mtu -= 40; /* IPv6 header */ else data_mtu -= 20; /* Legacy IP header */ data_mtu -= 8; /* UDP header */ dtls_set_mtu(vpninfo, data_mtu); } else if (!strcmp(vpninfo->dtls_cipher, "PSK-NEGOTIATE")) { /* For PSK-NEGOTIATE, we have to determine the tunnel MTU * for ourselves based on the base MTU */ int data_mtu = vpninfo->cstp_basemtu; if (vpninfo->peer_addr->sa_family == AF_INET6) data_mtu -= 40; /* IPv6 header */ else data_mtu -= 20; /* Legacy IP header */ data_mtu -= 8; /* UDP header */ if (data_mtu < 0) { vpn_progress(vpninfo, PRG_ERR, _("Peer MTU %d too small to allow DTLS\n"), vpninfo->cstp_basemtu); goto nodtls; } /* Reduce it by one because that's the payload header *inside* * the encryption */ data_mtu = dtls_set_mtu(vpninfo, data_mtu) - 1; if (data_mtu < 0) goto nodtls; if (data_mtu < vpninfo->ip_info.mtu) { vpn_progress(vpninfo, PRG_INFO, _("DTLS MTU reduced to %d\n"), data_mtu); vpninfo->ip_info.mtu = data_mtu; } } else if (!SSL_session_reused(vpninfo->dtls_ssl)) { /* Someone attempting to hijack the DTLS session? * A real server would never allow a full session * establishment instead of the agreed resume. */ vpn_progress(vpninfo, PRG_ERR, _("DTLS session resume failed; possible MITM attack. Disabling DTLS.\n")); nodtls: dtls_close(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); vpninfo->dtls_ctx = NULL; vpninfo->dtls_attempt_period = 0; vpninfo->dtls_state = DTLS_DISABLED; return -EIO; } vpninfo->dtls_state = DTLS_CONNECTED; vpn_progress(vpninfo, PRG_INFO, _("Established DTLS connection (using OpenSSL). Ciphersuite %s-%s.\n"), SSL_get_version(vpninfo->dtls_ssl), SSL_get_cipher(vpninfo->dtls_ssl)); c = openconnect_get_dtls_compression(vpninfo); if (c) { vpn_progress(vpninfo, PRG_INFO, _("DTLS connection compression using %s.\n"), c); } vpninfo->dtls_times.last_rekey = vpninfo->dtls_times.last_rx = vpninfo->dtls_times.last_tx = time(NULL); /* From about 8.4.1(11) onwards, the ASA seems to get very unhappy if we resend ChangeCipherSpec messages after the initial setup. This was "fixed" in OpenSSL 1.0.0e for RT#2505, but it's not clear if that was the right fix. What happens if the original packet *does* get lost? Surely we *wanted* the retransmits, because without them the server will never be able to decrypt anything we send? Oh well, our retransmitted packets upset the server because we don't get the Cisco-compatibility right (this is one of the areas in which Cisco's DTLS differs from the RFC4347 spec), and DPD should help us notice if *nothing* is getting through. */ #if OPENSSL_VERSION_NUMBER >= 0x10100000L /* OpenSSL 1.1.0 or above. Do nothing. The SSLeay() function got renamed, and it's a pointless check in this case anyway because there's *no* chance that we linked against 1.1.0 and are running against something older than 1.0.0e. */ #elif OPENSSL_VERSION_NUMBER >= 0x1000005fL /* OpenSSL 1.0.0e or above doesn't resend anyway; do nothing. However, if we were *built* against 1.0.0e or newer, but at runtime we find that we are being run against an older version, warn about it. */ if (SSLeay() < 0x1000005fL) { vpn_progress(vpninfo, PRG_ERR, _("Your OpenSSL is older than the one you built against, so DTLS may fail!\n")); } #elif defined(HAVE_DTLS1_STOP_TIMER) /* * This works for any normal OpenSSL that supports * Cisco DTLS compatibility (0.9.8m to 1.0.0d inclusive, * and even later versions although it isn't needed there. */ dtls1_stop_timer(vpninfo->dtls_ssl); #elif defined(BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT) /* * Debian restricts visibility of dtls1_stop_timer() * so do it manually. This version also works on all * sane versions of OpenSSL: */ memset(&(vpninfo->dtls_ssl->d1->next_timeout), 0, sizeof((vpninfo->dtls_ssl->d1->next_timeout))); vpninfo->dtls_ssl->d1->timeout_duration = 1; BIO_ctrl(SSL_get_rbio(vpninfo->dtls_ssl), BIO_CTRL_DGRAM_SET_NEXT_TIMEOUT, 0, &(vpninfo->dtls_ssl->d1->next_timeout)); #elif defined(BIO_CTRL_DGRAM_SET_TIMEOUT) /* * OK, here it gets more fun... this should handle the case * of older OpenSSL which has the Cisco DTLS compatibility * backported, but *not* the fix for RT#1922. */ BIO_ctrl(SSL_get_rbio(vpninfo->dtls_ssl), BIO_CTRL_DGRAM_SET_TIMEOUT, 0, NULL); #else /* * And if they don't have any of the above, they probably * don't have RT#1829 fixed either, but that's OK because * that's the "fix" that *introduces* the timeout we're * trying to disable. So do nothing... */ #endif dtls_detect_mtu(vpninfo); return 0; } ret = SSL_get_error(vpninfo->dtls_ssl, ret); if (ret == SSL_ERROR_WANT_WRITE || ret == SSL_ERROR_WANT_READ) { int quit_time = vpninfo->new_dtls_started + 12 - time(NULL); if (quit_time > 0) { if (timeout) { struct timeval tv; if (SSL_ctrl(vpninfo->dtls_ssl, DTLS_CTRL_GET_TIMEOUT, 0, &tv)) { unsigned timeout_ms = tv.tv_sec * 1000 + tv.tv_usec / 1000; if (*timeout > timeout_ms) *timeout = timeout_ms; } if (*timeout > quit_time * 1000) *timeout = quit_time * 1000; } return 0; } static int badossl_bitched; /* static variable initialised to 0 */ if (((OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L) || OPENSSL_VERSION_NUMBER == 0x10002000L) && !badossl_bitched) { badossl_bitched = 1; vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake timed out\n")); vpn_progress(vpninfo, PRG_ERR, _("This is probably because your OpenSSL is broken\n" "See http://rt.openssl.org/Ticket/Display.html?id=2984\n")); } else { vpn_progress(vpninfo, PRG_DEBUG, _("DTLS handshake timed out\n")); } } vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake failed: %d\n"), ret); openconnect_report_ssl_errors(vpninfo); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; time(&vpninfo->new_dtls_started); if (timeout && *timeout > vpninfo->dtls_attempt_period * 1000) *timeout = vpninfo->dtls_attempt_period * 1000; return -EINVAL; } void dtls_shutdown(struct openconnect_info *vpninfo) { dtls_close(vpninfo); SSL_CTX_free(vpninfo->dtls_ctx); } void dtls_ssl_free(struct openconnect_info *vpninfo) { /* We are only ever called when this is non-NULL */ SSL_free(vpninfo->dtls_ssl); } #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { #ifdef HAVE_DTLS12 #ifndef OPENSSL_NO_PSK buf_append(buf, "PSK-NEGOTIATE:"); #endif buf_append(buf, "OC-DTLS1_2-AES256-GCM:OC-DTLS1_2-AES128-GCM:"); buf_append(buf12, "ECDHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:AES128-GCM-SHA256:AES256-GCM-SHA384\r\n"); #endif buf_append(buf, "DHE-RSA-AES256-SHA:DHE-RSA-AES128-SHA:"); buf_append(buf, "AES256-SHA:AES128-SHA:DES-CBC3-SHA:DES-CBC-SHA"); } #else void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { method_const SSL_METHOD *dtls_method; SSL_CTX *ctx; SSL *ssl; STACK_OF(SSL_CIPHER) *ciphers; int i; dtls_method = DTLS_client_method(); ctx = SSL_CTX_new(dtls_method); if (!ctx) return; ssl = SSL_new(ctx); if (!ssl) { SSL_CTX_free(ctx); return; } int aes128_gcm = 0, aes256_gcm = 0; ciphers = SSL_get1_supported_ciphers(ssl); for (i = 0; i < sk_SSL_CIPHER_num(ciphers); i++) { const SSL_CIPHER *ciph = sk_SSL_CIPHER_value(ciphers, i); const char *name = SSL_CIPHER_get_name(ciph); const char *vers = SSL_CIPHER_get_version(ciph); if (!strcmp(vers, "SSLv3") || !strcmp(vers, "TLSv1.0") || !strcmp(vers, "TLSv1/SSLv3")) { buf_append(buf, "%s%s", (buf_error(buf) || !buf->pos) ? "" : ":", name); } else if (!strcmp(vers, "TLSv1.2")) { buf_append(buf12, "%s%s", (buf_error(buf12) || !buf12->pos) ? "" : ":", name); /* The OC-specific names for the DTLSv1.2 AES-GCM ciphersuites * need to be added to the X-DTLS-CipherSuite: header too. */ if (!strcmp(name, "AES128-GCM-SHA256")) { aes128_gcm = 1; } else if (!strcmp(name, "AES256-GCM-SHA384")) { aes256_gcm = 1; } } } sk_SSL_CIPHER_free(ciphers); SSL_free(ssl); SSL_CTX_free(ctx); /* All DTLSv1 suites are also supported in DTLSv1.2 */ if (!buf_error(buf)) buf_append(buf12, ":%s", buf->data); if (aes128_gcm) buf_append(buf, ":OC-DTLS1_2-AES128-GCM"); if (aes256_gcm) buf_append(buf, ":OC-DTLS1_2-AES256-GCM"); #ifndef OPENSSL_NO_PSK buf_append(buf, ":PSK-NEGOTIATE"); #endif } #endif openconnect-8.20/version.sh0000755000076400007640000000106514204505630017555 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh v="v8.20" if [ -d ${GIT_DIR:-.git} ] && tag=`git describe --tags`; then v="$tag" # Update the index from working tree first git update-index --refresh --unmerged > /dev/null # Does the index show uncommitted changes? git diff-index --exit-code HEAD > /dev/null || \ v="$v"-dirty elif [ -n "$RPM_PACKAGE_VERSION" ] && [ -n "$RPM_PACKAGE_RELEASE" ]; then v="v$RPM_PACKAGE_VERSION-$RPM_PACKAGE_RELEASE" else # XXX: Equivalent for .deb packages? v="$v"-unknown fi echo "const char *openconnect_version_str = \"$v\";" > $1 echo "New version: $v" openconnect-8.20/configure.ac0000644000076400007640000013710214204505630020021 0ustar00dwoodhoudwoodhou00000000000000AC_INIT(openconnect, 8.20) AC_LANG([C]) AC_CONFIG_HEADERS([config.h]) m4_ifdef([AC_CONFIG_MACRO_DIRS], [AC_CONFIG_MACRO_DIRS([m4])]) PKG_PROG_PKG_CONFIG AC_CANONICAL_HOST AM_MAINTAINER_MODE([enable]) AM_INIT_AUTOMAKE([foreign tar-ustar subdir-objects]) m4_ifdef([AM_SILENT_RULES], [AM_SILENT_RULES([yes])]) AC_PREREQ([2.62], [], [AC_SUBST([localedir], ['$(datadir)/locale'])]) # Upstream's pkg.m4 (since 0.27) offers this now, but define our own # compatible version in case the local version of pkgconfig isn't new enough. # https://bugs.freedesktop.org/show_bug.cgi?id=48743 m4_ifdef([PKG_INSTALLDIR], [PKG_INSTALLDIR], [AC_ARG_WITH([pkgconfigdir], [AS_HELP_STRING([--with-pkgconfigdir], [install directory for openconnect.pc pkg-config file])], [],[with_pkgconfigdir='$(libdir)/pkgconfig']) AC_SUBST([pkgconfigdir], [${with_pkgconfigdir}])]) use_openbsd_libtool= symver_time= symver_getline= symver_asprintf= symver_vasprintf= symver_win32_strerror= symver_win32_setenv= # Autoconf is stupid and if the first time it needs to find the C compiler # is conditional (as it is here for some of the MinGW checks), it forgets # to ever look for one in the other code paths. Do it explicitly here. AC_PROG_CC AC_PROG_CC_C99 have_vhost=no case $host_os in *linux* | *gnu* | *nacl*) case $host_cpu in x86_64|amd64) have_vhost=yes ;; esac AC_MSG_NOTICE([Applying feature macros for GNU build]) AC_DEFINE(_GNU_SOURCE, 1, [_GNU_SOURCE]) ;; *netbsd*) AC_MSG_NOTICE([Applying feature macros for NetBSD build]) AC_DEFINE(_POSIX_C_SOURCE, 200112L, [_POSIX_C_SOURCE]) AC_DEFINE(_NETBSD_SOURCE, 1, [_NETBSD_SOURCE]) ;; *openbsd*) AC_MSG_NOTICE([Applying feature macros for OpenBSD build]) use_openbsd_libtool=true ;; *solaris*|*sunos*) AC_MSG_NOTICE([Applying workaround for broken SunOS time() function]) AC_DEFINE(HAVE_SUNOS_BROKEN_TIME, 1, [On SunOS time() can go backwards]) symver_time="openconnect__time;" ;; *mingw32*|*mingw64*|*msys*) AC_MSG_NOTICE([Applying feature macros for MinGW/Windows build]) # For GetVolumeInformationByHandleW() which is Vista+ AC_DEFINE(_WIN32_WINNT, 0x600, [Windows API version]) have_win=yes # For asprintf() AC_DEFINE(_GNU_SOURCE, 1, [_GNU_SOURCE]) symver_win32_strerror="openconnect__win32_strerror;" symver_win32_setenv="openconnect__win32_setenv;" # Win32 does have the SCard API system_pcsc_libs="-lwinscard" system_pcsc_cflags= AC_CHECK_TOOL([WINDRES], [windres], []) AC_CHECK_TOOL([MAKENSIS], [makensis], []) case $host_cpu in x86_64|amd64) wintun_arch=amd64 ;; *86) wintun_arch=x86 ;; aarch64|arm64) wintun_arch=arm64 ;; arm*) wintun_arch=arm ;; esac AC_SUBST(WINTUN_ARCH, "$wintun_arch") # Per https://github.com/MisterDA/ocaml/commit/5855ce5ffd931a2802d5b9a5b2987ab0b276fd0a, # "The header file declares the `struct sockaddr_un` type, but hasn't been picked by mingw-w64." AC_CHECK_HEADER([afunix.h], AC_DEFINE([HAVE_AF_UNIX_H], 1, [MinGW has afunix.h])) # MINGW_HAS_SECURE_API may only work on newer MinGW: # https://stackoverflow.com/a/51977723 AC_DEFINE(MINGW_HAS_SECURE_API, 1, [Try to make getenv_s and _putenv_s available]) AC_CHECK_DECL(_putenv_s, [AC_DEFINE(HAVE_PUTENV_S_DECL, 1, [MinGW declares _putenv_s])], [], [#include ]) AC_CHECK_DECL(getenv_s, [AC_DEFINE(HAVE_GETENV_S_DECL, 1, [MinGW declares getenv_s])], [], [#include ]) ;; *darwin*) system_pcsc_libs="-Wl,-framework -Wl,PCSC" system_pcsc_cflags= ;; *) # On FreeBSD the only way to get vsyslog() visible is to define # *nothing*, which makes absolutely everything visible. # On Darwin enabling _POSIX_C_SOURCE breaks because # u_long and other types don't get defined. OpenBSD is similar. ;; esac AM_CONDITIONAL(OPENCONNECT_WIN32, [ test "$have_win" = "yes" ]) build_nsis=no if test "${MAKENSIS}" != ""; then AC_CHECK_PROG(have_curl, curl, yes) if test "${have_curl}" = "yes"; then build_nsis=yes if test "${wintun_arch}" != ""; then AC_CHECK_PROG(have_unzip, unzip, yes) if test "${have_unzip}" != "yes"; then wintun_arch= fi fi fi fi AM_CONDITIONAL(BUILD_NSIS, [ test "$build_nsis" = "yes" ]) AM_CONDITIONAL(OPENCONNECT_WINTUN, [ test "${wintun_arch}" != "" ]) AC_ARG_WITH([vpnc-script], [AS_HELP_STRING([--with-vpnc-script], [default location of vpnc-script helper])]) if test "$with_vpnc_script" = "yes" || test "$with_vpnc_script" = ""; then AC_MSG_CHECKING([for vpnc-script in standard locations]) if test "$have_win" = "yes"; then with_vpnc_script=vpnc-script-win.js else for with_vpnc_script in /usr/local/share/vpnc-scripts/vpnc-script /usr/local/sbin/vpnc-script /usr/share/vpnc-scripts/vpnc-script /usr/sbin/vpnc-script /etc/vpnc/vpnc-script; do if test -x "$with_vpnc_script"; then break fi done if ! test -x "$with_vpnc_script"; then AC_MSG_ERROR([${with_vpnc_script} does not seem to be executable.] [OpenConnect will not function correctly without a vpnc-script.] [See https://www.infradead.org/openconnect/vpnc-script.html for more details.] [] [If you are building a distribution package, please ensure that your] [packaging is correct, and that a vpnc-script will be installed when the] [user installs your package. You should provide a --with-vpnc-script=] [argument to this configure script, giving the full path where the script] [will be installed.] [] [The standard location is ${with_vpnc_script}. To bypass this error and] [build OpenConnect to use the script from this location, even though it is] [not present at the time you are building OpenConnect, pass the argument] ["--with-vpnc-script=${with_vpnc_script}"]) else AC_MSG_RESULT([${with_vpnc_script}]) fi fi elif test "$with_vpnc_script" = "no"; then AC_MSG_ERROR(You cannot disable vpnc-script. OpenConnect will not function correctly without it. See https://www.infradead.org/openconnect/vpnc-script.html) elif test "$have_win" = "yes"; then # Oh Windows how we hate thee. If user specifies a vpnc-script and it contains # backslashes, double them all up to survive escaping. with_vpnc_script="$(echo "${with_vpnc_script}" | sed s/\\\\/\\\\\\\\/g)" fi AC_DEFINE_UNQUOTED(DEFAULT_VPNCSCRIPT, "${with_vpnc_script}", [Default vpnc-script locatin]) AC_SUBST(DEFAULT_VPNCSCRIPT, "${with_vpnc_script}") AC_CHECK_FUNC(fdevname_r, [AC_DEFINE(HAVE_FDEVNAME_R, 1, [Have fdevname_r() function])], []) AC_CHECK_FUNC(statfs, [AC_DEFINE(HAVE_STATFS, 1, [Have statfs() function])], []) AC_CHECK_FUNC(getline, [AC_DEFINE(HAVE_GETLINE, 1, [Have getline() function])], [symver_getline="openconnect__getline;"]) AC_CHECK_FUNC(strcasestr, [AC_DEFINE(HAVE_STRCASESTR, 1, [Have strcasestr() function])], []) AC_CHECK_FUNC(strndup, [AC_DEFINE(HAVE_STRNDUP, 1, [Have strndup() function])], []) AC_CHECK_FUNC(strchrnul, [AC_DEFINE(HAVE_STRCHRNUL, 1, [Have strchrnul() function])], []) AC_CHECK_FUNC(asprintf, [AC_DEFINE(HAVE_ASPRINTF, 1, [Have asprintf() function])], [symver_asprintf="openconnect__asprintf;"]) AC_CHECK_FUNC(vasprintf, [AC_DEFINE(HAVE_VASPRINTF, 1, [Have vasprintf() function])], [symver_vasprintf="openconnect__vasprintf;"]) AC_MSG_CHECKING([for __builtin_clz]) AC_LINK_IFELSE([AC_LANG_PROGRAM([],[return __builtin_clz(0xffffffff);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_BUILTIN_CLZ, 1, [Have __builtin_clz()])], [AC_MSG_RESULT(no)]) if test -n "$symver_vasprintf"; then AC_MSG_CHECKING([for va_copy]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include va_list a;],[ va_list b; va_copy(b,a); va_end(b);])], [AC_DEFINE(HAVE_VA_COPY, 1, [Have va_copy()]) AC_MSG_RESULT(va_copy)], [AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include va_list a;],[ va_list b; __va_copy(b,a); va_end(b);])], [AC_DEFINE(HAVE___VA_COPY, 1, [Have __va_copy()]) AC_MSG_RESULT(__va_copy)], [AC_MSG_RESULT(no) AC_MSG_ERROR([Your system lacks vasprintf() and va_copy()])]) ]) fi AC_SUBST(SYMVER_TIME, $symver_time) AC_SUBST(SYMVER_GETLINE, $symver_getline) AC_SUBST(SYMVER_ASPRINTF, $symver_asprintf) AC_SUBST(SYMVER_VASPRINTF, $symver_vasprintf) AC_SUBST(SYMVER_WIN32_STRERROR, $symver_win32_strerror) AC_SUBST(SYMVER_WIN32_SETENV, $symver_win32_setenv) AS_COMPILER_FLAGS(WFLAGS, "-Wall -Wextra -Wno-missing-field-initializers -Wno-sign-compare -Wno-unused-parameter -Werror=pointer-to-int-cast -Werror-implicit-function-declaration -Wformat-nonliteral -Wformat-security -Winit-self -Wmissing-declarations -Wmissing-include-dirs -Wnested-externs -Wpointer-arith -Wwrite-strings") AC_SUBST(WFLAGS, [$WFLAGS]) oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $WFLAGS" AC_MSG_CHECKING([For memset_s]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #define __STDC_WANT_LIB_EXT1__ 1 #include ],[[ unsigned char *foo[16]; memset_s(foo, 16, 0, 16);]])], [AC_MSG_RESULT([yes]) AC_DEFINE(__STDC_WANT_LIB_EXT1__, 1, [To request memset_s]) AC_DEFINE(HAVE_MEMSET_S, 1, [Have memset_s() function])], [AC_MSG_RESULT([no]) AC_CHECK_FUNC(explicit_memset, [AC_DEFINE(HAVE_EXPLICIT_MEMSET, 1, [Have explicit_memset() function])], [AC_CHECK_FUNC(explicit_bzero, [AC_DEFINE(HAVE_EXPLICIT_BZERO, 1, [Have explicit_bzero() function])], []) ]) ]) CFLAGS="$oldCFLAGS" AC_MSG_CHECKING([For localtime_r]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ],[[ struct tm tm; time_t t = 0; localtime_r(&t, &tm);]])], [AC_MSG_RESULT([yes]) AC_DEFINE(HAVE_LOCALTIME_R, 1, [Have localtime_r() function])], [AC_MSG_RESULT([no])]) if test "$have_win" = yes; then # Checking "properly" for __attribute__((dllimport,stdcall)) functions is non-trivial LIBS="$LIBS -lws2_32 -lshlwapi -lsecur32 -liphlpapi" AC_MSG_CHECKING([For localtime_s]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ],[[ struct tm tm; time_t t = 0; localtime_s(&tm, (time_t)0);]])], [AC_MSG_RESULT([yes]) AC_DEFINE(HAVE_LOCALTIME_S, 1, [Have localtime_s() function])], [AC_MSG_RESULT([no])]) else AC_CHECK_FUNC(socket, [], AC_CHECK_LIB(socket, socket, [], AC_MSG_ERROR(Cannot find socket() function))) fi have_inet_aton=yes AC_CHECK_FUNC(inet_aton, [], AC_CHECK_LIB(nsl, inet_aton, [], have_inet_aton=no)) if test "$have_inet_aton" = "yes"; then AC_DEFINE(HAVE_INET_ATON, 1, [Have inet_aton()]) fi AC_MSG_CHECKING([for IPV6_PATHMTU socket option]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([ #include #include #include ],[ int foo = IPV6_PATHMTU; (void)foo;])], [AC_DEFINE(HAVE_IPV6_PATHMTU, 1, [Have IPV6_PATHMTU socket option]) AC_MSG_RESULT([yes])], [AC_MSG_RESULT([no])]) AC_CHECK_FUNC(__android_log_vprint, [], AC_CHECK_LIB(log, __android_log_vprint, [], [])) AC_ENABLE_SHARED AC_DISABLE_STATIC AC_CHECK_FUNC(nl_langinfo, [AC_DEFINE(HAVE_NL_LANGINFO, 1, [Have nl_langinfo() function])], []) if test "$ac_cv_func_nl_langinfo" = "yes"; then AM_ICONV if test "$am_cv_func_iconv" = "yes"; then AC_SUBST(ICONV_LIBS, [$LTLIBICONV]) AC_SUBST(ICONV_CFLAGS, [$INCICONV]) AC_DEFINE(HAVE_ICONV, 1, [Have iconv() function]) fi fi AM_CONDITIONAL(OPENCONNECT_ICONV, [test "$am_cv_func_iconv" = "yes"]) AC_ARG_ENABLE([nls], AS_HELP_STRING([--disable-nls], [Do not use Native Language Support]), [USE_NLS=$enableval], [USE_NLS=yes]) LIBINTL= if test "$USE_NLS" = "yes"; then AC_PATH_PROG(MSGFMT, msgfmt) if test "$MSGFMT" = ""; then AC_MSG_ERROR(msgfmt could not be found. Try configuring with --disable-nls) fi fi LIBINTL= if test "$USE_NLS" = "yes"; then AC_MSG_CHECKING([for functional NLS support]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo");])], [AC_MSG_RESULT(yes)], [AC_LIB_LINKFLAGS_BODY([intl]) oldLIBS="$LIBS" LIBS="$LIBINTL $LIBS" oldCFLAGS="$LIBS" CFLAGS="$CFLAGS $INCINTL" AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ setlocale(LC_ALL, ""); bindtextdomain("openconnect", "/tmp"); (void)dgettext("openconnect", "foo");])], [AC_MSG_RESULT(yes (with $INCINTL $LIBINTL))], [AC_MSG_RESULT(no) USE_NLS=no]) LIBS="$oldLIBS"]) fi if test "$USE_NLS" = "yes"; then AC_SUBST(INTL_LIBS, [$LTLIBINTL]) AC_SUBST(INTL_CFLAGS, [$INCINTL]) AC_DEFINE(ENABLE_NLS, 1, [Enable NLS support]) fi AM_CONDITIONAL(USE_NLS, [test "$USE_NLS" = "yes"]) AC_ARG_WITH([system-cafile], AS_HELP_STRING([--with-system-cafile], [Location of the default system CA certificate file for old (<3.0.20) GnuTLS versions])) # We will use GnuTLS by default if it's present. We used to support # using GnuTLS for the TLS connections and OpenSSL for DTLS, but none # of the reasons for that make sense any more. AC_ARG_WITH([gnutls], AS_HELP_STRING([--without-gnutls], [Do not attempt to use GnuTLS; use OpenSSL instead])) AC_ARG_WITH([openssl], AS_HELP_STRING([--with-openssl], [Location of OpenSSL build dir])) ssl_library= esp= dtls= if test "$with_openssl" != "" -a "$with_openssl" != "no"; then if test "$with_gnutls" = ""; then with_gnutls=no elif test "$with_gnutls" = "yes"; then AC_MSG_ERROR([You cannot choose both GnuTLS and OpenSSL.]) fi fi # First, check if GnuTLS exists and is usable if test "$with_gnutls" = "yes" || test "$with_gnutls" = ""; then PKG_CHECK_MODULES(GNUTLS, gnutls, [if ! $PKG_CONFIG --atleast-version=3.2.10 gnutls; then AC_MSG_WARN([Your GnuTLS is too old. At least v3.2.10 is required]) else ssl_library=GnuTLS fi], [:]) elif test "$with_gnutls" != "no"; then AC_MSG_ERROR(Values other than 'yes' or 'no' for --with-gnutls are not supported) fi # Do we need to look for OpenSSL? if test "$ssl_library" = ""; then if test "$with_gnutls" = "yes" -o "$with_openssl" = "no"; then AC_MSG_ERROR([Suitable GnuTLS required but not found]) elif test "$with_openssl" = "yes" -o "$with_openssl" = ""; then PKG_CHECK_MODULES(OPENSSL, openssl, [AC_SUBST(SSL_PC, [openssl])], [oldLIBS="$LIBS" LIBS="-lssl -lcrypto $LIBS" AC_MSG_CHECKING([for OpenSSL without pkg-config]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ SSL_library_init(); ERR_clear_error(); SSL_load_error_strings(); OpenSSL_add_all_algorithms();])], [AC_MSG_RESULT(yes) AC_SUBST([OPENSSL_LIBS], ["-lssl -lcrypto"]) AC_SUBST([OPENSSL_CFLAGS], [])] AC_SUBST([openssl_pc_libs], [$OPENSSL_LIBS]), [AC_MSG_RESULT(no) AC_MSG_ERROR(Could not build against OpenSSL)]) LIBS="$oldLIBS"]) ssl_library=OpenSSL PKG_CHECK_MODULES(P11KIT, p11-kit-1, # libp11 0.4.7 fails to export ERR_LIB_PKCS11 so we don't know what it # is and can't match its errors, which we need to for login checks. [PKG_CHECK_MODULES(LIBP11, libp11 != 0.4.7, [AC_DEFINE(HAVE_LIBP11, 1, [Have libp11 and p11-kit for OpenSSL]) AC_SUBST(P11KIT_PC, ["libp11 p11-kit-1"]) proxy_module="`$PKG_CONFIG --variable=proxy_module p11-kit-1`" pkcs11_support="libp11" AC_DEFINE_UNQUOTED([DEFAULT_PKCS11_MODULE], "${proxy_module}", [p11-kit proxy])], [:])], [:]) else OPENSSL_CFLAGS="-I${with_openssl}/include ${OPENSSL_CFLAGS}" if test -r "${with_openssl}/libssl.a" -a -r "${with_openssl}/libcrypto.a"; then OPENSSL_LIBS="${with_openssl}/libssl.a ${with_openssl}/libcrypto.a -ldl -lz -pthread" elif test -r "${with_openssl}/crypto/.libs/libcrypto.a" -a \ -r "${with_openssl}/ssl/.libs/libssl.a"; then OPENSSL_LIBS="${with_openssl}/ssl/.libs/libssl.a ${with_openssl}/crypto/.libs/libcrypto.a -ldl -lz -pthread" else AC_MSG_ERROR(Could not find OpenSSL libraries in ${with_openssl}); fi AC_SUBST(OPENSSL_CFLAGS) AC_SUBST(OPENSSL_LIBS) enable_static=yes enable_shared=no ssl_library=OpenSSL fi fi AC_ARG_WITH([openssl-version-check], AS_HELP_STRING([--without-openssl-version-check], [Do not check for known-broken OpenSSL versions])) AC_ARG_WITH([gnutls-version-check], AS_HELP_STRING([--without-gnutls-version-check], [Do not check for known-broken GnuTLS versions])) AC_ARG_WITH([default-gnutls-priority], AS_HELP_STRING([--with-default-gnutls-priority=STRING], [Provide a default string as GnuTLS priority string]), default_gnutls_priority=$withval) if test -n "$default_gnutls_priority"; then AC_DEFINE_UNQUOTED([DEFAULT_PRIO], ["$default_gnutls_priority"], [The GnuTLS priority string]) fi AC_ARG_WITH([gnutls-tss2], AS_HELP_STRING([--with-gnutls-tss2], [Specify TSS2 library (tss2-esys, ibmtss)])) tss2lib=none case "$ssl_library" in OpenSSL) oldLIBS="${LIBS}" oldCFLAGS="${CFLAGS}" LIBS="${OPENSSL_LIBS} ${LIBS}" CFLAGS="${CFLAGS} ${OPENSSL_CFLAGS}" # Check for the various known-broken versions of OpenSSL, which includes LibreSSL. if test "$with_openssl_version_check" != "no"; then AC_MSG_CHECKING([for known-broken versions of OpenSSL]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ], [#if defined(LIBRESSL_VERSION_NUMBER) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_MSG_ERROR([LibreSSL does not support Cisco DTLS.] [Build with OpenSSL or GnuTLS instead.])]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ (OPENSSL_VERSION_NUMBER == 0x10002000L || \ (OPENSSL_VERSION_NUMBER >= 0x100000b0L && OPENSSL_VERSION_NUMBER <= 0x100000c0L) || \ (OPENSSL_VERSION_NUMBER >= 0x10001040L && OPENSSL_VERSION_NUMBER <= 0x10001060L)) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_MSG_ERROR(This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=2984&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead.)]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ (OPENSSL_VERSION_NUMBER == 0x1000200fL) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_MSG_ERROR(This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=3703&user=guest&pass=guest and http://rt.openssl.org/Ticket/Display.html?id=3711&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead.)]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ],[#if \ ((OPENSSL_VERSION_NUMBER >= 0x10001110L && OPENSSL_VERSION_NUMBER <= 0x10001150L) || \ (OPENSSL_VERSION_NUMBER >= 0x10002050L && OPENSSL_VERSION_NUMBER <= 0x10002090L)) #error Bad OpenSSL #endif ])], [], [AC_MSG_RESULT(yes) AC_MSG_ERROR(This version of OpenSSL is known to be broken with Cisco DTLS. See http://rt.openssl.org/Ticket/Display.html?id=4631&user=guest&pass=guest Add --without-openssl-version-check to configure args to avoid this check, or perhaps consider building with GnuTLS instead.)]) AC_MSG_RESULT(no) fi AC_MSG_CHECKING([for ENGINE_by_id() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [ENGINE_by_id("foo");])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_ENGINE, [1], [OpenSSL has ENGINE support])], [AC_MSG_RESULT(no) AC_MSG_NOTICE([Building without OpenSSL TPM ENGINE support])]) AC_MSG_CHECKING([for dtls1_stop_timer() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include #include extern void dtls1_stop_timer(SSL *);], [dtls1_stop_timer(NULL);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_DTLS1_STOP_TIMER, [1], [OpenSSL has dtls1_stop_timer() function])], [AC_MSG_RESULT(no)]) # DTLS_client_method() and DTLSv1_2_client_method() were both added between # OpenSSL v1.0.1 and v1.0.2. DTLSV1.2_client_method() was later deprecated # in v1.1.0 so we use DTLS_client_method() as our check for DTLSv1.2 support # and that's what we actually use in openssl-dtls.c too. AC_MSG_CHECKING([for DTLS_client_method() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [DTLS_client_method();])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_DTLS12, [1], [OpenSSL has DTLS_client_method() function])], [AC_MSG_RESULT(no)]) AC_MSG_CHECKING([for SSL_CTX_set_min_proto_version() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [SSL_CTX_set_min_proto_version((void *)0, 0);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_SSL_CTX_PROTOVER, [1], [OpenSSL has SSL_CTX_set_min_proto_version() function])], [AC_MSG_RESULT(no)]) AC_MSG_CHECKING([for BIO_meth_free() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [BIO_meth_free((void *)0);])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_BIO_METH_FREE, [1], [OpenSSL has BIO_meth_free() function])], [AC_MSG_RESULT(no)]) AC_CHECK_FUNC(HMAC_CTX_copy, [esp=yes], [AC_MSG_WARN([ESP support will be disabled])]) AC_MSG_CHECKING([for SSL_CIPHER_find() in OpenSSL]) AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [SSL_CIPHER_find((void *)0, "");])], [AC_MSG_RESULT(yes) AC_DEFINE(HAVE_SSL_CIPHER_FIND, [1], [OpenSSL has SSL_CIPHER_find() function])], [AC_MSG_RESULT(no)]) LIBS="${oldLIBS}" CFLAGS="${oldCFLAGS}" dtls=yes AC_DEFINE(OPENCONNECT_OPENSSL, 1, [Using OpenSSL]) AC_DEFINE(OPENSSL_SUPPRESS_DEPRECATED, 1, [We need to update to OpenSSL 3.0.0 API]) AC_SUBST(SSL_LIBS, ['$(OPENSSL_LIBS)']) AC_SUBST(SSL_CFLAGS, ['$(OPENSSL_CFLAGS)']) ;; GnuTLS) oldlibs="$LIBS" oldcflags="$CFLAGS" LIBS="$GNUTLS_LIBS $LIBS" CFLAGS="$CFLAGS $GNUTLS_CFLAGS" esp=yes dtls=yes # Check for the known-broken versions of GnuTLS, if test "$with_gnutls_version_check" != "no"; then AC_MSG_CHECKING([for known-broken versions of GnuTLS]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ], [#if GNUTLS_VERSION_NUMBER >= 0x030603 && GNUTLS_VERSION_NUMBER <= 0x03060c #error Bad GnuTLS #endif ])], [], [AC_MSG_RESULT(yes) AC_MSG_ERROR([DTLS is insecure in GnuTLS v3.6.3 through v3.6.12.] [See https://gitlab.com/gnutls/gnutls/issues/960] [Add --without-gnutls-version-check to configure args to avoid this check (DTLS] [will still be disabled at runtime), or build with another version.])]) AC_MSG_RESULT(no) fi AC_CHECK_FUNC(gnutls_system_key_add_x509, [AC_DEFINE(HAVE_GNUTLS_SYSTEM_KEYS, 1, [From GnuTLS 3.4.0])], []) AC_CHECK_FUNC(gnutls_pkcs11_add_provider, [PKG_CHECK_MODULES(P11KIT, p11-kit-1, [AC_DEFINE(HAVE_P11KIT, 1, [Have. P11. Kit.]) pkcs11_support=GnuTLS AC_SUBST(P11KIT_PC, p11-kit-1)], [:])], []) LIBS="-ltspi $oldlibs" AC_MSG_CHECKING([for Trousers tss library]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include ],[ int err = Tspi_Context_Create((void *)0); Trspi_Error_String(err);])], [AC_MSG_RESULT(yes) AC_SUBST([TSS_LIBS], [-ltspi]) AC_SUBST([TSS_CFLAGS], []) AC_DEFINE(HAVE_TROUSERS, 1, [Have Trousers TSS library])], [AC_MSG_RESULT(no)]) LIBS="$oldlibs" CFLAGS="$oldcflags" PKG_CHECK_MODULES(TASN1, [libtasn1], [have_tasn1=yes], [have_tasn1=no]) if test "$have_tasn1" = "yes"; then if test "$with_gnutls_tss2" = "yes" -o "$with_gnutls_tss2" = "tss2-esys" -o "$with_gnutls_tss2" = ""; then PKG_CHECK_MODULES(TSS2_ESYS, [tss2-esys tss2-mu tss2-tctildr], [AC_DEFINE(HAVE_TSS2, 1, [Have TSS2]) AC_SUBST(TPM2_CFLAGS, ['$(TASN1_CFLAGS) $(TSS2_ESYS_CFLAGS)']) AC_SUBST(TPM2_LIBS, ['$(TASN1_LIBS) $(TSS2_ESYS_LIBS)']) tss2lib=tss2-esys], [:]) fi if test "$tss2lib" = "none"; then if test "$with_gnutls_tss2" = "yes" -o "$with_gnutls_tss2" = "ibmtss" -o "$with_gnutls_tss2" = ""; then # The Fedora 'tss2-devel' package puts headers in /usr/include/ibmtss/ # and the library is named libibmtss.so. The Ubuntu libtss-dev package # puts headers in /usr/include/${host}/tss2/ and the library is named # libtss.so. Neither ships a pkg-config file at the time I write this. AC_CHECK_LIB([tss], [TSS_Create], [tss2inc=tss2 tss2lib=tss], AC_CHECK_LIB([ibmtss], [TSS_Create], [tss2inc=ibmtss tss2lib=ibmtss], [])) if test "$tss2lib" != "none"; then AC_MSG_CHECKING([For <${tss2inc}/tss.h>]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#define TPM_POSIX #include <${tss2inc}/tss.h> ],[])], [AC_MSG_RESULT(yes) AC_DEFINE_UNQUOTED(HAVE_TSS2, $tss2inc, [TSS2 library]) AC_SUBST(TSS2_LIBS, [-l$tss2lib]) AC_SUBST(TPM2_CFLAGS, ['$(TASN1_CFLAGS) -DTPM_POSIX']) AC_SUBST(TPM2_LIBS, ['$(TASN1_LIBS) $(TSS2_LIBS)'])], [AC_MSG_RESULT(no) tss2lib=none]) fi fi fi fi AC_DEFINE(OPENCONNECT_GNUTLS, 1, [Using GnuTLS]) AC_SUBST(SSL_PC, [gnutls]) AC_SUBST(SSL_LIBS, ['$(GNUTLS_LIBS) $(TPM2_LIBS)']) AC_SUBST(SSL_CFLAGS, ['$(GNUTLS_CFLAGS) $(TPM2_CFLAGS)']) ;; *) # This should never happen AC_MSG_ERROR([No SSL library selected]) ;; esac case x"$with_gnutls_tss2" in xtss2-esys) if test "$tss2lib" != "tss2-esys"; then AC_MSG_ERROR([tss2-esys requested but not found]) fi ;; xibmtss|xtss) if test "$tss2lib" != "ibmtss" -a "$tss2lib" != "tss"; then AC_MSG_ERROR([ibmtss requested but not found: $tss2lib]) fi ;; x|xno) ;; xyes) if test "$tss2lib" = "none" -a "$with_gnutls_tss2" = "yes"; then AC_MSG_ERROR([No TSS2 library found]) fi ;; *) AC_MSG_ERROR([Unknown value for gnutls-tss2]) ;; esac AM_CONDITIONAL(OPENCONNECT_TSS2_ESYS, [ test "$tss2lib" = "tss2-esys" ]) AM_CONDITIONAL(OPENCONNECT_TSS2_IBM, [ test "$tss2lib" = "ibmtss" -o "$tss2lib" = "tss" ]) AC_PATH_PROG(SWTPM, swtpm) SWTPM_IOCTL="" TPM2_STARTUP="" TSSTARTUP="" if test "$SWTPM" != ""; then AC_PATH_PROG(SWTPM_IOCTL, swtpm_ioctl) AC_PATH_PROG(TPM2_STARTUP, tpm2_startup) AC_PATH_PROG(TSSTARTUP, tsstartup) fi # The Intel/TCG TSS can only *create* keys AC_PATH_PROG(TPM2TSS_GENKEY, tpm2tss-genkey) # James's one can import them too. AC_PATH_PROG(CREATE_TPM2_KEY, create_tpm2_key) AC_ARG_ENABLE([hwtpm-test], AS_HELP_STRING([--enable-hwtpm-test], [Test TPM support using real TPMv2 [default=no]]), [test_hwtpm=$enableval], [test_hwtpm=no]) if test "$test_hwtpm" = "yes" -a "$TPM2TSS_GENKEY$CREATE_TPM2_KEY" = ""; then AC_MSG_ERROR([Hardware TPM test requires tpm2tss-genkey and/or create_tpm2_key tools]) fi AM_CONDITIONAL(TEST_HWTPM, [ test "$test_hwtpm" = "yes" ]) AM_CONDITIONAL(TEST_SWTPM, [ test "$SWTPM_IOCTL" != "" -a \( "$TPM2_STARTUP" != "" -o "$TSSTARTUP" != "" \) ]) AM_CONDITIONAL(TEST_TPM2_CREATE, [ test "$TPM2TSS_GENKEY" != "" ]) AM_CONDITIONAL(TEST_TPM2_IMPORT, [ test "$CREATE_TPM2_KEY" != "" ]) test_pkcs11= if test "$pkcs11_support" != ""; then AC_CHECK_PROG(test_pkcs11, softhsm2-util, yes) fi AM_CONDITIONAL(TEST_PKCS11, [ test "$test_pkcs11" = "yes" ]) # The test is OpenSSL-only for now. AM_CONDITIONAL(CHECK_DTLS, [ test "$ssl_library" = "OpenSSL" ]) AC_ARG_ENABLE([dtls-xfail], AS_HELP_STRING([--enable-dtls-xfail], [Only for gitlab CI. Do not use])) AM_CONDITIONAL(DTLS_XFAIL, [test "$enable_dtls_xfail" = "yes" ]) AC_ARG_ENABLE([dsa-tests], AS_HELP_STRING([--disable-dsa-tests], [Disable DSA keys in self-test]), [], [enable_dsa_tests=yes]) AM_CONDITIONAL(TEST_DSA, [test "$enable_dsa_tests" = "yes"]) AC_ARG_ENABLE([ppp-tests], AS_HELP_STRING([--enable-ppp-tests], [Enable PPP tests (which require socat and pppd, and must run as root)]), [enable_ppp_tests=yes]) AC_ARG_ENABLE([flask-tests], AS_HELP_STRING([--disable-flask-tests], [Disable Flask-based tests (which require Python 3.6+ and the Flask module)]), [], [enable_flask_tests=yes]) AM_CONDITIONAL(OPENCONNECT_GNUTLS, [ test "$ssl_library" = "GnuTLS" ]) AM_CONDITIONAL(OPENCONNECT_OPENSSL, [ test "$ssl_library" = "OpenSSL" ]) AM_CONDITIONAL(OPENCONNECT_ESP, [ test "$esp" != "" ]) AM_CONDITIONAL(OPENCONNECT_DTLS, [ test "$dtls" != "" ]) if test "$esp" != ""; then AC_DEFINE(HAVE_ESP, 1, [Build with ESP support]) fi if test "$dtls" != ""; then AC_DEFINE(HAVE_DTLS, 1, [Build with DTLS support]) fi AC_ARG_WITH(lz4, AS_HELP_STRING([--without-lz4], [disable support for LZ4 compression]), test_for_lz4=$withval, test_for_lz4=yes) lz4_pkg=no if test "$test_for_lz4" = yes; then PKG_CHECK_MODULES([LIBLZ4], [liblz4], [ AC_SUBST(LIBLZ4_PC, liblz4) AC_DEFINE([HAVE_LZ4], [], [LZ4 was found]) lz4_pkg=yes oldLIBS="$LIBS" LIBS="$LIBLZ4_LIBS $LIBS" oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $LIBLZ4_CFLAGS" AC_MSG_CHECKING([for LZ4_compress_default()]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include ],[ LZ4_compress_default("", (char *)0, 0, 0);])], [AC_MSG_RESULT(yes) AC_DEFINE([HAVE_LZ4_COMPRESS_DEFAULT], [], [From LZ4 r129]) ], [AC_MSG_RESULT(no)]) LIBS="$oldLIBS" CFLAGS="$oldCFLAGS" ], [ AC_MSG_WARN([[ *** *** lz4 not found. *** ]]) ]) fi # For some bizarre reason now that we use AM_ICONV, the mingw32 build doesn't # manage to set EGREP properly in the created ./libtool script. Make sure it's # found. AC_PROG_EGREP # Needs to happen after we default to static/shared libraries based on OpenSSL LT_INIT if test "$use_openbsd_libtool" = "true" && test -x /usr/bin/libtool; then echo using OpenBSD libtool LIBTOOL=/usr/bin/libtool fi AM_CONDITIONAL(OPENBSD_LIBTOOL, [ test "$use_openbsd_libtool" = "true" ]) AX_CHECK_VSCRIPT PKG_CHECK_MODULES(LIBXML2, libxml-2.0) AC_ARG_WITH([builtin-json], AS_HELP_STRING([--with-builtin-json], [Build with builtin json-parser library [default=auto]])) json= AS_IF([test "$with_builtin_json" != "yes"], [PKG_CHECK_MODULES(JSON, json-parser, [AC_SUBST(JSON_PC, [json-parser]) json=system], [:]) ]) AS_IF([test "$with_builtin_json" != "no" && test "$json" = "" ], [json=builtin oldLIBS="$LIBS" AC_SEARCH_LIBS(pow, [m]) LIBS="$oldLIBS" AC_SUBST([JSON_LIBS], [$ac_cv_search_pow]) AC_SUBST([JSON_CFLAGS], ['-I$(srcdir)/json']) ]) AS_IF([test "$json" = ""], AC_MSG_ERROR(No json-parser package found and --without-builtin-json specified) ) AM_CONDITIONAL(BUILTIN_JSON, [test "$json" = "builtin"]) PKG_CHECK_MODULES(ZLIB, zlib, [AC_SUBST(ZLIB_PC, [zlib])], [oldLIBS="$LIBS" LIBS="-lz $LIBS" AC_MSG_CHECKING([for zlib without pkg-config]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include ],[ z_stream zs; deflateInit2(&zs, Z_DEFAULT_COMPRESSION, Z_DEFLATED, -12, 9, Z_DEFAULT_STRATEGY);])], [AC_MSG_RESULT(yes) AC_SUBST([ZLIB_LIBS], [-lz]) AC_SUBST([ZLIB_CFLAGS], [])], [AC_MSG_RESULT(no) AC_MSG_ERROR(Could not build against zlib)]) LIBS="$oldLIBS"]) AC_ARG_WITH([libproxy], AS_HELP_STRING([--without-libproxy], [Build without libproxy library [default=auto]])) AS_IF([test "x$with_libproxy" != "xno"], [ PKG_CHECK_MODULES(LIBPROXY, libproxy-1.0, [AC_SUBST(LIBPROXY_PC, libproxy-1.0) AC_DEFINE([LIBPROXY_HDR], ["proxy.h"], [libproxy header file]) libproxy_pkg=yes], libproxy_pkg=no) ], [libproxy_pkg=disabled]) dnl Libproxy *can* exist without a .pc file, and its header may be called dnl libproxy.h in that case. if (test "$libproxy_pkg" = "no"); then AC_MSG_CHECKING([for libproxy]) oldLIBS="$LIBS" LIBS="-lproxy $LIBS" AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [(void)px_proxy_factory_new();])], [AC_MSG_RESULT(yes (with libproxy.h)) AC_DEFINE([LIBPROXY_HDR], ["libproxy.h"], [libproxy header file]) AC_SUBST([LIBPROXY_LIBS], [-lproxy]) libproxy_pkg=yes], [AC_LINK_IFELSE([AC_LANG_PROGRAM([#include ], [(void)px_proxy_factory_new();])], [AC_MSG_RESULT(yes (with proxy.h)) AC_DEFINE([LIBPROXY_HDR], ["proxy.h"], [libproxy header file]) AC_SUBST([LIBPROXY_LIBS], [-lproxy]) libproxy_pkg=yes], [AC_MSG_RESULT(no)])]) LIBS="$oldLIBS" fi AC_ARG_WITH([stoken], AS_HELP_STRING([--without-stoken], [Build without libstoken library [default=auto]])) AS_IF([test "x$with_stoken" != "xno"], [ PKG_CHECK_MODULES(LIBSTOKEN, stoken, [AC_SUBST(LIBSTOKEN_PC, stoken) AC_DEFINE([HAVE_LIBSTOKEN], 1, [Have libstoken]) libstoken_pkg=yes], libstoken_pkg=no) ], [libstoken_pkg=disabled]) AM_CONDITIONAL(OPENCONNECT_STOKEN, [test "$libstoken_pkg" = "yes"]) AC_ARG_WITH([libpcsclite], AS_HELP_STRING([--without-libpcsclite], [Build without libpcsclite library (for Yubikey support) [default=auto]])) AS_IF([test "x$with_libpcsclite" != "xno"], [ if test "$system_pcsc_libs" != ""; then AC_SUBST(LIBPCSCLITE_LIBS, "$system_pcsc_libs") AC_SUBST(LIBPCSCLITE_CFLAGS, "$system_pcsc_cflags") AC_SUBST(system_pcsc_libs) libpcsclite_pkg=yes else PKG_CHECK_MODULES(LIBPCSCLITE, libpcsclite, [AC_SUBST(LIBPCSCLITE_PC, libpcsclite) libpcsclite_pkg=yes], libpcsclite_pkg=no) fi ], [libpcsclite_pkg=disabled]) if test "$libpcsclite_pkg" = "yes"; then AC_DEFINE([HAVE_LIBPCSCLITE], 1, [Have libpcsclite]) fi AM_CONDITIONAL(OPENCONNECT_LIBPCSCLITE, [test "$libpcsclite_pkg" = "yes"]) AC_CHECK_FUNC(epoll_create1, [AC_DEFINE(HAVE_EPOLL, 1, [Have epoll])], []) AC_ARG_WITH([libpskc], AS_HELP_STRING([--without-libpskc], [Build without libpskc library [default=auto]])) AS_IF([test "x$with_libpskc" != "xno"], [ PKG_CHECK_MODULES(LIBPSKC, [libpskc >= 2.2.0], [AC_SUBST(LIBPSKC_PC, libpskc) AC_DEFINE([HAVE_LIBPSKC], 1, [Have libpskc]) libpskc_pkg=yes], libpskc_pkg=no)]) linked_gssapi=no AC_ARG_WITH([gssapi], AS_HELP_STRING([--without-gssapi], [Build without GSSAPI support [default=auto]])) AC_DEFUN([GSSAPI_CHECK_BUILD],[ gss_old_libs="$LIBS" LIBS="$LIBS ${GSSAPI_LIBS}" AC_MSG_CHECKING([GSSAPI compilation with "${GSSAPI_LIBS}"]) AC_LINK_IFELSE([AC_LANG_PROGRAM([ #include #include GSSAPI_HDR],[ OM_uint32 major, minor; gss_buffer_desc b = GSS_C_EMPTY_BUFFER; gss_ctx_id_t ctx = GSS_C_NO_CONTEXT; gss_init_sec_context(&minor, GSS_C_NO_CREDENTIAL, &ctx, GSS_C_NO_NAME, GSS_C_NO_OID, GSS_C_MUTUAL_FLAG, GSS_C_INDEFINITE, GSS_C_NO_CHANNEL_BINDINGS, NULL, NULL, NULL, NULL, NULL);])], [linked_gssapi=yes AC_MSG_RESULT(yes)], [linked_gssapi=no AC_MSG_RESULT(no)]) LIBS="$gss_old_libs" ]) # Attempt to work out how to build with GSSAPI. Mostly, krb5-config will # exist and work. Tested on FreeBSD 9, OpenBSD 5.5, NetBSD 6.1.4. Solaris # has krb5-config but it doesn't do GSSAPI so hard-code the results there. # Older OpenBSD (I tested 5.2) lacks krb5-config so leave that as an example. if test "$with_gssapi" != "no"; then found_gssapi=no if test "${with_gssapi}" != "yes" -a "${with_gssapi}" != "" ; then gssapi_root="${with_gssapi}" else gssapi_root="" fi # First: if they specify GSSAPI_LIBS and/or GSSAPI_CFLAGS then use them. if test "$GSSAPI_LIBS$GSSAPI_CFLAGS" != ""; then found_gssapi=yes fi # Second: try finding a viable krb5-config that supports gssapi if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then krb5path="${gssapi_root}/bin:$PATH" else krb5path="/usr/kerberos/bin:$PATH" fi if test -n "$host_alias"; then AC_PATH_PROG(KRB5_CONFIG, [${host_alias}-krb5-config], [], [$krb5path]) fi if test "$KRB5_CONFIG" = ""; then AC_PATH_PROG(KRB5_CONFIG, [krb5-config], [], [$krb5path]) fi if test "$KRB5_CONFIG" != ""; then AC_MSG_CHECKING([whether $KRB5_CONFIG supports gssapi]) if "${KRB5_CONFIG}" --cflags gssapi > /dev/null 2>/dev/null; then AC_MSG_RESULT(yes) found_gssapi=yes GSSAPI_LIBS="`"${KRB5_CONFIG}" --libs gssapi`" GSSAPI_CFLAGS="`"${KRB5_CONFIG}" --cflags gssapi`" else AC_MSG_RESULT(no) fi fi fi # Third: look for or in some likely places, # and we'll worry about how to *link* it in a moment... if test "$found_gssapi" = "no"; then if test -n "${gssapi_root}"; then if test -r "${with_gssapi}/include/gssapi.h" -o \ -r "${with_gssapi}/include/gssapi/gssapi.h"; then GSSAPI_CFLAGS="-I\"${with_gssapi}/include\"" fi else if test -r /usr/kerberos/include/gssapi.h -o \ -r /usr/kerberos/include/gssapi/gssapi.h; then GSSAPI_CFLAGS=-I/usr/kerberos/include elif test -r /usr/include/kerberosV/gssapi.h -o \ -r /usr/include/kerberosV/gssapi/gssapi.h; then # OpenBSD 5.2 puts it here GSSAPI_CFLAGS=-I/usr/include/kerberosV else # Maybe it'll Just Work GSSAPI_CFLAGS= fi fi fi oldcflags="$CFLAGS" CFLAGS="$CFLAGS ${GSSAPI_CFLAGS}" # OK, now see if we've correctly managed to find gssapi.h at least... gssapi_hdr= AC_CHECK_HEADER([gssapi/gssapi.h], [gssapi_hdr=""], [AC_CHECK_HEADER([gssapi.h], [gssapi_hdr=""], [AC_MSG_WARN([Cannot find or ])])]) # Finally, unless we've already failed, see if we can link it. linked_gssapi=no if test -n "${gssapi_hdr}"; then AC_DEFINE_UNQUOTED(GSSAPI_HDR, $gssapi_hdr, [GSSAPI header]) if test "$found_gssapi" = "yes"; then # We think we have GSSAPI_LIBS already so try it... GSSAPI_CHECK_BUILD else LFLAG= if test -n "$gssapi_root"; then LFLAG="-L\"${gssapi_root}/lib$libsuff\"" fi # Solaris, HPUX, etc. GSSAPI_LIBS="$LFLAG -lgss" GSSAPI_CHECK_BUILD if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then GSSAPI_LIBS="$LFLAG -lgssapi_krb5" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # OpenBSD 5.2 at least GSSAPI_LIBS="$LFLAG -lgssapi -lkrb5 -lcrypto" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # MIT GSSAPI_LIBS="$LFLAG -lgssapi_krb5 -lkrb5 -lk5crypto -lcom_err" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then # Heimdal GSSAPI_LIBS="$LFLAG -lkrb5 -lcrypto -lasn1 -lcom_err -lroken -lgssapi" GSSAPI_CHECK_BUILD fi if test "$linked_gssapi" = "no"; then AC_MSG_WARN([Cannot find GSSAPI. Try setting GSSAPI_LIBS and GSSAPI_CFLAGS manually]) fi fi fi CFLAGS="$oldcflags" if test "$linked_gssapi" = "yes"; then AC_DEFINE([HAVE_GSSAPI], 1, [Have GSSAPI support]) AC_SUBST(GSSAPI_CFLAGS) AC_SUBST(GSSAPI_LIBS) elif test "$with_gssapi" = ""; then AC_MSG_WARN([Building without GSSAPI support]); unset GSSAPI_CFLAGS unset GSSAPI_LIBS else AC_MSG_ERROR([GSSAPI support requested but not found. Try setting GSSAPI_LIBS/GSSAPI_CFLAGS]) fi fi AM_CONDITIONAL(OPENCONNECT_GSSAPI, [test "$linked_gssapi" = "yes"]) AC_ARG_WITH([java], AS_HELP_STRING([--with-java(=DIR)], [Build JNI bindings using jni.h from DIR [default=no]]), [], [with_java=no]) if test "$with_java" = "yes"; then AX_JNI_INCLUDE_DIR for JNI_INCLUDE_DIR in $JNI_INCLUDE_DIRS; do JNI_CFLAGS="$JNI_CFLAGS -I$JNI_INCLUDE_DIR" done elif test "$with_java" = "no"; then JNI_CFLAGS="" else JNI_CFLAGS="-I$with_java" fi if test "x$JNI_CFLAGS" != "x"; then oldCFLAGS="$CFLAGS" CFLAGS="$CFLAGS $JNI_CFLAGS" AC_MSG_CHECKING([jni.h usability]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([#include ], [jint foo = 0; (void)foo;])], AC_MSG_RESULT([yes]), [AC_MSG_RESULT([no]) AC_MSG_ERROR([unable to compile JNI test program])]) CFLAGS="$oldCFLAGS" AC_SUBST(JNI_CFLAGS, [$JNI_CFLAGS]) fi AM_CONDITIONAL(OPENCONNECT_JNI, [test "$JNI_CFLAGS" != ""]) AC_ARG_ENABLE([jni-standalone], AS_HELP_STRING([--enable-jni-standalone], [build JNI stubs directly into libopenconnect.so [default=no]]), [jni_standalone=$enableval], [jni_standalone=no]) AM_CONDITIONAL(JNI_STANDALONE, [test $jni_standalone = yes]) symver_java= if test "$jni_standalone" = "yes" ; then symver_java=$(sed -n '/JNIEXPORT/{s/^JNIEXPORT.*\(Java_.*\) *(/\1;/ p}' ${srcdir}/jni.c) # Remove the newlines between each item. symver_java=$(echo $symver_java) fi AC_SUBST(SYMVER_JAVA, $symver_java) AC_ARG_ENABLE([insecure-debugging], AS_HELP_STRING([--enable-insecure-debugging], [Enable --servercert=ACCEPT option, and don't logout on SIGINT]), [insecure_debugging=yes],[insecure_debugging=no]) if test "$insecure_debugging" = "yes"; then oldcflags="$CFLAGS" CFLAGS="$CFLAGS -DINSECURE_DEBUGGING" fi AC_CHECK_HEADER([if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["if_tun.h"], [if_tun.h include path])], [AC_CHECK_HEADER([linux/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["linux/if_tun.h"])], [AC_CHECK_HEADER([net/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["net/if_tun.h"])], [AC_CHECK_HEADER([net/tun/if_tun.h], [AC_DEFINE([IF_TUN_HDR], ["net/tun/if_tun.h"])])])])]) AC_CHECK_HEADER([net/if_utun.h], AC_DEFINE([HAVE_NET_UTUN_H], 1, [Have net/if_utun.h]), , [#include ]) AC_ARG_ENABLE([vhost-net], AS_HELP_STRING([--enable-vhost-net], [Build vhost-net support for tun device acceleration [default=no]]), [have_vhost=$enableval]) if test "$have_vhost" = "yes"; then AC_MSG_CHECKING([for vhost-net support]) AC_COMPILE_IFELSE([AC_LANG_PROGRAM([ #include #include #include #include struct foo { struct vring_desc desc; struct vring_avail avail; struct vring_used used; struct virtio_net_hdr_mrg_rxbuf h; }; ],[ (void)eventfd(0, EFD_CLOEXEC|EFD_NONBLOCK); (void)VHOST_NET_F_VIRTIO_NET_HDR; (void)VIRTIO_F_VERSION_1; (void)TUNSETSNDBUF; __sync_synchronize(); ])], [have_vhost=yes AC_DEFINE([HAVE_VHOST], 1, [Have vhost]) AC_MSG_RESULT([yes])], [have_vhost=no AC_MSG_RESULT([no])]) fi AM_CONDITIONAL(OPENCONNECT_VHOST, [test "$have_vhost" = "yes"]) AC_CHECK_HEADER([alloca.h], AC_DEFINE([HAVE_ALLOCA_H], 1, [Have alloca.h])) AC_CHECK_HEADER([endian.h], [AC_DEFINE([ENDIAN_HDR], [], [endian header include path])], [AC_CHECK_HEADER([sys/endian.h], [AC_DEFINE([ENDIAN_HDR], [])], [AC_CHECK_HEADER([sys/isa_defs.h], [AC_DEFINE([ENDIAN_HDR], [])])])]) build_www=yes AC_PATH_PROGS(PYTHON, [python3 python2 python], [], $PATH:/bin:/usr/bin) if test -z "${ac_cv_path_PYTHON}"; then AC_MSG_NOTICE([Python not found; not building HTML pages]) build_www=no fi if test "${build_www}" = "yes"; then AC_MSG_CHECKING([if groff can create UTF-8 XHTML]) AC_PATH_PROGS_FEATURE_CHECK([GROFF], [groff], [$ac_path_GROFF -t -K UTF-8 -mandoc -Txhtml /dev/null > /dev/null 2>&1 && ac_cv_path_GROFF=$ac_path_GROFF]) if test -n "$ac_cv_path_GROFF"; then AC_MSG_RESULT(yes) AC_SUBST(GROFF, ${ac_cv_path_GROFF}) else AC_MSG_RESULT([no. Not building HTML pages]) build_www=no fi fi AM_CONDITIONAL(BUILD_WWW, [test "${build_www}" = "yes"]) # Checks for tests PKG_CHECK_MODULES([CWRAP], [uid_wrapper, socket_wrapper], have_cwrap=yes, have_cwrap=no) AM_CONDITIONAL(HAVE_CWRAP, test "x$have_cwrap" != xno) have_python36_flask=no if test "$enable_flask_tests" = "yes" -a -n "${ac_cv_path_PYTHON}"; then AC_MSG_CHECKING([for Python 3.6+ with Flask module]) python3 -c 'import sys; assert sys.version_info >= (3,6); import flask' 2>/dev/null if test $? -ne 0 ; then AC_MSG_RESULT(not found) else have_python36_flask=yes AC_MSG_RESULT(found) fi fi AM_CONDITIONAL(HAVE_PYTHON36_FLASK, test "$have_python36_flask" = yes) if test "$enable_ppp_tests" = "yes"; then AC_PATH_PROGS(SOCAT, [socat], [], $PATH:/bin:/usr/bin) AC_PATH_PROGS(PPPD, [pppd], [], $PATH:/bin:/usr/bin:/sbin:/usr/sbin/) if test -z "${ac_cv_path_SOCAT}" -o -z "${ac_cv_path_PPPD}"; then AC_MSG_WARN([socat and/or pppd not found; disabling PPP tests]) enable_ppp_tests=no fi fi AM_CONDITIONAL(TEST_PPP, [test "$enable_ppp_tests" = "yes"]) have_netns=no AC_PATH_PROG(NUTTCP, nuttcp) if test -n "$ac_cv_path_NUTTCP"; then AC_PATH_PROG(IP, ip, [], $PATH:/sbin:/usr/sbin) if test -n "$ac_cv_path_IP"; then AC_MSG_CHECKING([For network namespaces]) NETNS=openconnect-configure-test-$$ if ip netns add $NETNS >/dev/null 2>/dev/null; then ip netns delete $NETNS have_netns=yes fi AC_MSG_RESULT($have_netns) fi fi AM_CONDITIONAL(HAVE_NETNS, test "x$have_netns" != xno) AC_ARG_WITH(asan-broken-tests, AS_HELP_STRING([--without-asan-broken-tests], [disable any tests that cannot be run under asan]), enable_asan_broken_tests=$withval, enable_asan_broken_tests=yes) AC_MSG_CHECKING([whether to enable broken in asan tests]) AC_MSG_RESULT([${enable_asan_broken_tests}]) AM_CONDITIONAL(DISABLE_ASAN_BROKEN_TESTS, test "x$enable_asan_broken_tests" = xno) AC_SUBST([CONFIG_STATUS_DEPENDENCIES], ['$(top_srcdir)/po/LINGUAS \ $(top_srcdir)/openconnect.h \ $(top_srcdir)/libopenconnect.map.in \ $(top_srcdir)/openconnect.8.in \ $(top_srcdir)/tests/softhsm2.conf.in \ $(top_srcdir)/tests/configs/test-user-cert.config.in \ $(top_srcdir)/tests/configs/test-user-pass.config.in']) RAWLINGUAS=`sed -e "/^#/d" -e "s/#.*//" "${srcdir}/po/LINGUAS"` # Remove newlines LINGUAS=`echo $RAWLINGUAS` AC_SUBST(LINGUAS) APIMAJOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MAJOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" APIMINOR="`sed -n 's/^#define OPENCONNECT_API_VERSION_MINOR \(.*\)/\1/p' ${srcdir}/openconnect.h`" AC_SUBST(APIMAJOR) AC_SUBST(APIMINOR) # We want version.c to depend on the files that would affect the # output of version.sh. But we cannot assume that they'll exist, # and we cannot use $(wildcard) in a non-GNU makefile. So we just # depend on the files which happen to exist at configure time. GITVERSIONDEPS= for a in ${srcdir}/.git/index ${srcdir}/.git/packed-refs \ ${srcdir}/.git/refs/tags ${srcdir}/.git/HEAD; do if test -r $a ; then GITVERSIONDEPS="$GITVERSIONDEPS $a" fi done AC_SUBST(GITVERSIONDEPS) AC_SUBST(OCSERV_USER, $(whoami)) AC_SUBST(OCSERV_GROUP, $(groups|cut -f 1 -d ' ')) AC_CONFIG_FILES(Makefile openconnect.pc po/Makefile www/Makefile \ libopenconnect.map openconnect.8 www/styles/Makefile \ www/inc/Makefile www/images/Makefile tests/Makefile \ tests/softhsm2.conf tests/configs/test-user-cert.config \ tests/configs/test-user-pass.config) AC_OUTPUT AC_DEFUN([SUMMARY], [pretty="$2" if test "$pretty" = "openssl"; then pretty=OpenSSL elif test "$pretty" = "gnutls" -o "$pretty" = "both"; then pretty=GnuTLS elif test "$pretty" = ""; then pretty=no fi echo "AS_HELP_STRING([$1:],[$pretty])"]) echo "BUILD OPTIONS:" SUMMARY([SSL library], [$ssl_library]) SUMMARY([[PKCS#11 support]], [$pkcs11_support]) if test "$ssl_library" = "GnuTLS"; then SUMMARY([TSS2 library], [$tss2lib]) fi SUMMARY([DTLS support], [$dtls]) SUMMARY([ESP support], [$esp]) SUMMARY([libproxy support], [$libproxy_pkg]) SUMMARY([RSA SecurID support], [$libstoken_pkg]) SUMMARY([PSKC OATH file support], [$libpskc_pkg]) SUMMARY([GSSAPI support], [$linked_gssapi]) SUMMARY([vhost-net support], [$have_vhost]) SUMMARY([Yubikey support], [$libpcsclite_pkg]) SUMMARY([JSON parser], [$json]) SUMMARY([LZ4 compression], [$lz4_pkg]) SUMMARY([Java bindings], [$with_java]) SUMMARY([Build docs], [$build_www]) SUMMARY([Unit tests], [$have_cwrap]) SUMMARY([Net namespace tests], [$have_netns]) SUMMARY([DSA tests], [$enable_dsa_tests]) SUMMARY([PPP tests], [$enable_ppp_tests]) SUMMARY([Flask tests], [$have_python36_flask]) SUMMARY([Insecure debugging], [$insecure_debugging]) SUMMARY([NSIS installer], [$build_nsis]) if test "$ssl_library" = "OpenSSL"; then AC_MSG_WARN([[ *** *** Be sure to run "make check" to verify OpenSSL DTLS support *** ]]) fi openconnect-8.20/openssl-esp.c0000644000076400007640000001242414100007325020137 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) #define EVP_CIPHER_CTX_free(c) do { \ EVP_CIPHER_CTX_cleanup(c); \ free(c); } while (0) #define HMAC_CTX_free(c) do { \ HMAC_CTX_cleanup(c); \ free(c); } while (0) static inline HMAC_CTX *HMAC_CTX_new(void) { HMAC_CTX *ret = malloc(sizeof(*ret)); if (ret) HMAC_CTX_init(ret); return ret; } #endif void destroy_esp_ciphers(struct esp *esp) { if (esp->cipher) { EVP_CIPHER_CTX_free(esp->cipher); esp->cipher = NULL; } if (esp->hmac) { HMAC_CTX_free(esp->hmac); esp->hmac = NULL; } } static int init_esp_cipher(struct openconnect_info *vpninfo, struct esp *esp, const EVP_MD *macalg, const EVP_CIPHER *encalg, int decrypt) { int ret; destroy_esp_ciphers(esp); #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) esp->cipher = malloc(sizeof(*esp->cipher)); if (!esp->cipher) return -ENOMEM; EVP_CIPHER_CTX_init(esp->cipher); #else esp->cipher = EVP_CIPHER_CTX_new(); if (!esp->cipher) return -ENOMEM; #endif if (decrypt) ret = EVP_DecryptInit_ex(esp->cipher, encalg, NULL, esp->enc_key, NULL); else { ret = EVP_EncryptInit_ex(esp->cipher, encalg, NULL, esp->enc_key, esp->iv); } if (!ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialise ESP cipher:\n")); openconnect_report_ssl_errors(vpninfo); return -EIO; } EVP_CIPHER_CTX_set_padding(esp->cipher, 0); esp->hmac = HMAC_CTX_new(); if (!esp->hmac) { destroy_esp_ciphers(esp); return -ENOMEM; } if (!HMAC_Init_ex(esp->hmac, esp->hmac_key, EVP_MD_size(macalg), macalg, NULL)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize ESP HMAC\n")); openconnect_report_ssl_errors(vpninfo); destroy_esp_ciphers(esp); } return 0; } int init_esp_ciphers(struct openconnect_info *vpninfo, struct esp *esp_out, struct esp *esp_in) { const EVP_CIPHER *encalg; const EVP_MD *macalg; int ret; switch (vpninfo->esp_enc) { case ENC_AES_128_CBC: encalg = EVP_aes_128_cbc(); break; case ENC_AES_256_CBC: encalg = EVP_aes_256_cbc(); break; default: return -EINVAL; } switch (vpninfo->esp_hmac) { case HMAC_MD5: macalg = EVP_md5(); break; case HMAC_SHA1: macalg = EVP_sha1(); break; case HMAC_SHA256: macalg = EVP_sha256(); break; default: return -EINVAL; } ret = init_esp_cipher(vpninfo, &vpninfo->esp_out, macalg, encalg, 0); if (ret) return ret; ret = init_esp_cipher(vpninfo, esp_in, macalg, encalg, 1); if (ret) { destroy_esp_ciphers(&vpninfo->esp_out); return ret; } return 0; } /* pkt->len shall be the *payload* length. Omitting the header and the 12-byte HMAC */ int decrypt_esp_packet(struct openconnect_info *vpninfo, struct esp *esp, struct pkt *pkt) { unsigned char hmac_buf[MAX_HMAC_SIZE]; unsigned int hmac_len = sizeof(hmac_buf); int crypt_len = pkt->len; HMAC_Init_ex(esp->hmac, NULL, 0, NULL, NULL); HMAC_Update(esp->hmac, (void *)&pkt->esp, sizeof(pkt->esp) + pkt->len); HMAC_Final(esp->hmac, hmac_buf, &hmac_len); if (memcmp(hmac_buf, pkt->data + pkt->len, vpninfo->hmac_out_len)) { vpn_progress(vpninfo, PRG_DEBUG, _("Received ESP packet with invalid HMAC\n")); return -EINVAL; } if (verify_packet_seqno(vpninfo, esp, ntohl(pkt->esp.seq))) return -EINVAL; if (!EVP_DecryptInit_ex(esp->cipher, NULL, NULL, NULL, pkt->esp.iv)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set up decryption context for ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } if (!EVP_DecryptUpdate(esp->cipher, pkt->data, &crypt_len, pkt->data, pkt->len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to decrypt ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } return 0; } int encrypt_esp_packet(struct openconnect_info *vpninfo, struct pkt *pkt, int crypt_len) { int blksize = 16; unsigned int hmac_len = vpninfo->hmac_out_len; if (!EVP_EncryptUpdate(vpninfo->esp_out.cipher, pkt->data, &crypt_len, pkt->data, crypt_len)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to encrypt ESP packet:\n")); openconnect_report_ssl_errors(vpninfo); return -EINVAL; } HMAC_Init_ex(vpninfo->esp_out.hmac, NULL, 0, NULL, NULL); HMAC_Update(vpninfo->esp_out.hmac, (void *)&pkt->esp, sizeof(pkt->esp) + crypt_len); HMAC_Final(vpninfo->esp_out.hmac, pkt->data + crypt_len, &hmac_len); EVP_EncryptUpdate(vpninfo->esp_out.cipher, vpninfo->esp_out.iv, &blksize, pkt->data + crypt_len + hmac_len - blksize, blksize); return 0; } openconnect-8.20/Makefile.am0000644000076400007640000003376414171606260017604 0ustar00dwoodhoudwoodhou00000000000000SUBDIRS = tests # We kind of want openconnect to be built before we try to test it check-recursive: openconnect$(EXEEXT) # And even *building* some of tests/*.c needs libopenconnect install-recursive: libopenconnect.la all-recursive: libopenconnect.la if BUILD_WWW SUBDIRS += www endif if USE_NLS SUBDIRS += po endif if BUILD_NSIS noinst_DATA = openconnect-installer.exe endif lib_LTLIBRARIES = libopenconnect.la sbin_PROGRAMS = openconnect man8_MANS = openconnect.8 AM_CFLAGS = @WFLAGS@ AM_CPPFLAGS = -DLOCALEDIR="\"$(localedir)\"" openconnect_SOURCES = xml.c main.c openconnect_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) \ $(LIBXML2_CFLAGS) $(JSON_CFLAGS) $(LIBPROXY_CFLAGS) \ $(ZLIB_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) \ $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) \ $(LIBPCSCLITE_CFLAGS) openconnect_LDADD = libopenconnect.la $(SSL_LIBS) $(LIBXML2_LIBS) \ $(LIBPROXY_LIBS) $(INTL_LIBS) $(ICONV_LIBS) if OPENCONNECT_WIN32 openconnect_SOURCES += openconnect.rc endif library_srcs = ssl.c http.c textbuf.c http-auth.c auth-common.c auth-html.c library.c compat.c lzs.c mainloop.c script.c ntlm.c digest.c mtucalc.c openconnect-internal.h lib_srcs_cisco = auth.c cstp.c lib_srcs_juniper = oncp.c lzo.c auth-juniper.c lib_srcs_pulse = pulse.c lib_srcs_globalprotect = gpst.c win32-ipicmp.h auth-globalprotect.c lib_srcs_array = array.c lib_srcs_oath = oath.c lib_srcs_oidc = oidc.c lib_srcs_ppp = ppp.c ppp.h lib_srcs_nullppp = nullppp.c lib_srcs_f5 = f5.c lib_srcs_fortinet = fortinet.c lib_srcs_json = jsondump.c library_srcs += $(lib_srcs_juniper) $(lib_srcs_cisco) $(lib_srcs_oath) \ $(lib_srcs_globalprotect) $(lib_srcs_pulse) \ $(lib_srcs_oidc) $(lib_srcs_ppp) $(lib_srcs_nullppp) \ $(lib_srcs_f5) $(lib_srcs_fortinet) $(lib_srcs_json) \ $(lib_srcs_array) lib_srcs_gnutls = gnutls.c gnutls_tpm.c gnutls_tpm2.c lib_srcs_openssl = openssl.c openssl-pkcs11.c lib_srcs_win32 = wintun.c tun-win32.c sspi.c lib_srcs_posix = tun.c lib_srcs_gssapi = gssapi.c lib_srcs_iconv = iconv.c lib_srcs_yubikey = yubikey.c lib_srcs_stoken = stoken.c lib_srcs_esp = esp.c esp-seqno.c lib_srcs_dtls = dtls.c lib_srcs_vhost = vhost.c POTFILES = $(openconnect_SOURCES) gnutls-esp.c gnutls-dtls.c openssl-esp.c openssl-dtls.c \ $(lib_srcs_esp) $(lib_srcs_dtls) gnutls_tpm2_esys.c gnutls_tpm2_ibm.c \ $(lib_srcs_openssl) $(lib_srcs_gnutls) $(library_srcs) \ $(lib_srcs_win32) $(lib_srcs_posix) $(lib_srcs_gssapi) $(lib_srcs_iconv) \ $(lib_srcs_yubikey) $(lib_srcs_stoken) $(lib_srcs_oidc) $(lib_srcs_vhost) if OPENCONNECT_VHOST library_srcs += $(lib_srcs_vhost) endif if OPENCONNECT_LIBPCSCLITE library_srcs += $(lib_srcs_yubikey) endif if OPENCONNECT_STOKEN library_srcs += $(lib_srcs_stoken) endif if OPENCONNECT_GSSAPI library_srcs += $(lib_srcs_gssapi) endif if OPENCONNECT_GNUTLS library_srcs += $(lib_srcs_gnutls) lib_srcs_esp += gnutls-esp.c lib_srcs_dtls += gnutls-dtls.c endif if OPENCONNECT_TSS2_ESYS library_srcs += gnutls_tpm2_esys.c endif if OPENCONNECT_TSS2_IBM library_srcs += gnutls_tpm2_ibm.c endif if OPENCONNECT_OPENSSL library_srcs += $(lib_srcs_openssl) lib_srcs_esp += openssl-esp.c lib_srcs_dtls += openssl-dtls.c endif if OPENCONNECT_DTLS lib_srcs_cisco += $(lib_srcs_dtls) endif if OPENCONNECT_ESP lib_srcs_juniper += $(lib_srcs_esp) endif if OPENCONNECT_ICONV library_srcs += $(lib_srcs_iconv) endif if BUILTIN_JSON library_srcs += json/json.c json/json.h endif if OPENCONNECT_WIN32 library_srcs += $(lib_srcs_win32) .rc.o: $(WINDRES) $^ -o $@ %.o : %.rc $(WINDRES) $^ -o $@ else library_srcs += $(lib_srcs_posix) endif libopenconnect_la_SOURCES = version.c $(library_srcs) libopenconnect_la_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) \ $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) $(ZLIB_CFLAGS) $(P11KIT_CFLAGS) \ $(TSS_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) \ $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) $(LIBP11_CFLAGS) \ $(LIBLZ4_CFLAGS) $(JSON_CFLAGS) libopenconnect_la_LIBADD = $(SSL_LIBS) $(DTLS_SSL_LIBS) \ $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(ZLIB_LIBS) $(P11KIT_LIBS) \ $(TSS_LIBS) $(LIBSTOKEN_LIBS) $(LIBPSKC_LIBS) $(GSSAPI_LIBS) \ $(INTL_LIBS) $(ICONV_LIBS) $(LIBPCSCLITE_LIBS) $(LIBP11_LIBS)\ $(LIBLZ4_LIBS) ${JSON_LIBS} if OPENBSD_LIBTOOL # OpenBSD's libtool doesn't have -version-number, but its -version-info arg # does what GNU libtool's -version-number does. Which arguably is what the # GNU -version-info arg ought to do too. I hate libtool. LT_VER_ARG = -version-info else LT_VER_ARG = -version-number endif libopenconnect_la_LDFLAGS = $(LT_VER_ARG) @APIMAJOR@:@APIMINOR@ -no-undefined noinst_HEADERS = openconnect-internal.h openconnect.h gnutls.h lzo.h include_HEADERS = openconnect.h if HAVE_VSCRIPT libopenconnect_la_LDFLAGS += @VSCRIPT_LDFLAGS@,libopenconnect.map libopenconnect_la_DEPENDENCIES = libopenconnect.map endif if OPENCONNECT_JNI if JNI_STANDALONE libopenconnect_la_SOURCES += jni.c libopenconnect_la_CFLAGS += $(JNI_CFLAGS) -Wno-missing-declarations else lib_LTLIBRARIES += libopenconnect-wrapper.la libopenconnect_wrapper_la_SOURCES = jni.c libopenconnect_wrapper_la_CFLAGS = $(AM_CFLAGS) $(JNI_CFLAGS) -Wno-missing-declarations libopenconnect_wrapper_la_LIBADD = libopenconnect.la endif endif pkgconfig_DATA = openconnect.pc EXTRA_DIST = AUTHORS version.sh COPYING.LGPL openconnect.ico $(POTFILES) openconnect.nsi.in EXTRA_DIST += json/AUTHORS json/LICENSE json/json.c json/json.h EXTRA_DIST += $(shell cd "$(top_srcdir)" && \ git ls-tree HEAD -r --name-only -- android/ java/ trojans/ bash/ 2>/dev/null) DISTCLEANFILES = $(pkgconfig_DATA) version.c pkglibexec_SCRIPTS = trojans/csd-post.sh trojans/csd-wrapper.sh trojans/tncc-wrapper.py \ trojans/hipreport.sh trojans/hipreport-android.sh trojans/tncc-emulate.py bashcompletiondir = $(datadir)/bash-completion/completions bashcompletion_DATA = bash/openconnect # main.c includes version.c openconnect-main.$(OBJEXT): version.c version.c: $(library_srcs) $(lib_openssl_srcs) $(lib_gnutls_srcs) \ $(openconnect_SOURCES) Makefile.am configure.ac \ openconnect.h openconnect-internal.h version.sh @GITVERSIONDEPS@ @cd $(srcdir) && ./version.sh $(abs_builddir)/version.c AUTHORS: @GITVERSIONDEPS@ @git shortlog -sen > AUTHORS tmp-dist: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 dist tmp-distdir: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 distdir uncommitted-check: @if ! git update-index --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; fi DISTHOOK=1 dist-hook: uncommitted-check @if [ $(DISTHOOK) = 1 ]; then \ if ! git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is not tagged"; exit 1; fi ; \ if ! git diff --name-only --exit-code v$(VERSION) HEAD > /dev/null; then \ echo "*** ERROR: Git checkout not at version v$(VERSION)"; exit 1; fi ; \ fi sign-dist: dist @for a in $(DIST_ARCHIVES); do \ gpg --default-key 67E2F359 --detach-sign -a $$a ; \ done tag: uncommitted-check @if git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is already tagged"; exit 1; fi @sed 's/AC_INIT.*/AC_INIT(openconnect, $(VERSION))/' -i $(srcdir)/configure.ac @sed 's/^v=.*/v="v$(VERSION)"/' -i $(srcdir)/version.sh @( echo '1,//p' ;\ echo '//,$$p' ;\ echo '//a\' ;\ echo 'The latest release is OpenConnect v$(VERSION)\' ;\ echo '(PGP signature),\' ;\ echo 'released on $(shell date +%Y-%m-%d) with the following changelog:

\' ;\ sed '0,/OpenConnect HEAD/d;/<\/ul>/,$$d;s/$$/\\/' $(srcdir)/www/changelog.xml ;\ echo ' ' ) | \ sed -n -f - -i $(srcdir)/www/download.xml @( echo "s/Last modified: .*/Last modified: $(shell date)/" ;\ echo '/
  • OpenConnect HEAD/a\' ;\ echo '
      \' ;\ echo '
    • No changelog entries yet
      • \';\ echo '

    \' ; echo '
    • \' ;\ echo '
  • OpenConnect v$(VERSION)\' ;\ echo ' (PGP signature) — $(shell date +%Y-%m-%d)' ) | \ sed -f - -i $(srcdir)/www/changelog.xml @echo '/API version [0-9]\+\.[0-9]\+:$$/s/:/ (v$(VERSION); $(shell date +%Y-%m-%d)):/' | \ sed -f - -i $(srcdir)/openconnect.h # stupid syntax highlighting ' @cd $(srcdir) && git commit -s -m "Tag version $(VERSION)" configure.ac version.sh www/download.xml www/changelog.xml openconnect.h @git tag v$(VERSION) @cd $(srcdir) && ./autogen.sh update-po: po/$(PACKAGE).pot @cd $(top_srcdir); if ! git diff-index --name-only --exit-code HEAD -- po/; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; \ else \ > po/LINGUAS; \ for a in po/*.po; do \ msgmerge -q -N -F $$a $(abs_builddir)/po/$(PACKAGE).pot > $$a.merge ; \ msgattrib -F --no-fuzzy --no-obsolete $$a.merge > $$a ; \ rm $$a.merge ; \ if msgattrib --translated $$a | grep -q msgstr; then \ echo $$a | sed 's%^po/\(.*\)\.po%\1%' >> po/LINGUAS ; \ fi ; \ done && \ if ! git update-index -q --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD -- po/ >/dev/null; then \ git commit -s -m "Resync translations with sources" -- po/ ; \ else \ echo No changes to commit ; \ fi; \ fi po/$(PACKAGE).pot: $(POTFILES) version.sh @echo "Regenerating $@" ; rm -f $@ && \ xgettext --directory=$(top_srcdir) --from-code=UTF-8 \ --sort-by-file --add-comments --keyword=_ --keyword=N_ \ --package-name="@PACKAGE@" --package-version="@VERSION@" \ --msgid-bugs-address=openconnect-devel@lists.infradead.org \ -o $@ $(POTFILES) ACLOCAL_AMFLAGS = -I m4 if BUILD_NSIS DISTCLEANFILES += .*.dll.d .*.exe.d file-list*.txt instfiles.nsh uninstfiles.nsh vpnc-script-win.js openconnect.nsi openconnect-installer.exe if OPENCONNECT_WINTUN WINTUN_DLL = .libs/wintun.dll DISTCLEANFILES += $(WINTUN_DLL) endif export V AM_DEFAULT_VERBOSITY bindir OBJDUMP # This Makefile has no rules to create these, just uses them to track # dependencies on file-list.txt if it already exists. -include .openconnect.exe.d -include .wintun.dll.d file-list.txt: Makefile.dlldeps openconnect$(EXEEXT) libopenconnect.la $(WINTUN_DLL) @$(MAKE) --no-print-directory -f $< $@ # Wintun Layer 3 TUN driver for Windows 7 and newer # (see https://wintun.net) WINTUNDRIVER = wintun-0.13.zip WINTUNSHA256 = 34afe7d0de1fdb781af3defc0a75fd8c97daa756279b42dd6be6a1bd8ccdc7f0 # OpenVPN TAP driver for Windows Vista/2003 and newer # (see https://community.openvpn.net/openvpn/wiki/GettingTapWindows) # XX: Newer releases exist, but are split between Win7+ and Win10+ versions. TAPDRIVER = tap-windows-9.21.2.exe TAPSHA256 = 645bee92ba4e9f32ddfdd9f8519dc1b9f9ff0b0a8e87e342f08d39da77e499a9 $(TAPDRIVER): curl https://build.openvpn.net/downloads/releases/tap-windows-9.21.2.exe -o $@ # Validate file and also let make find it in VPATH file-list-$(TAPDRIVER).txt: $(TAPDRIVER) echo $(TAPSHA256) $< | sha256sum -c echo $< > $@ $(WINTUNDRIVER): curl https://www.wintun.net/builds/$(WINTUNDRIVER) -o $@ .libs/wintun.dll: $(WINTUNDRIVER) echo $(WINTUNSHA256) $< | sha256sum -c unzip -DD -o -j -d .libs $< wintun/bin/$(WINTUN_ARCH)/wintun.dll # Latest vpnc-script-win.js, annotated with a header documenting the # exact source revision. vpnc-script-win.js: curl 'https://gitlab.com/api/v4/projects/openconnect%2Fvpnc-scripts/repository/commits?path=vpnc-script-win.js&branch=master' | \ jq -r '.[0] | "// This script matches the version found at " + (.web_url | sub("/commit/"; "/blob/")) + "/vpnc-script-win.js\n// Updated on " + .authored_date[:10] + " by " + .author_name + " <" + .author_email + "> (\"" + .title + "\")\n//"' > $@ curl https://gitlab.com/openconnect/vpnc-scripts/raw/master/vpnc-script-win.js >> $@ # Let make find the file in VPATH file-list-%.txt: % echo $< > $@ # Rather than trying to get clever in NSIS and iterate over lists, # just emit raw snippets to be included separately in the install # and uninstall sections. instfiles.nsh: file-list.txt file-list-vpnc-script-win.js.txt file-list-$(TAPDRIVER).txt $(AM_V_GEN) cat $^ | while read FILE; do echo "File \"$${FILE}\"" ; done > $@ uninstfiles.nsh: file-list.txt file-list-vpnc-script-win.js.txt file-list-$(TAPDRIVER).txt $(AM_V_GEN) cat $^ | while read FILE; do echo "Delete /rebootok \"\$$INSTDIR\\\\$${FILE##*/}\"" ; done > $@ # Theoretically makensis can define symbols with the -D command line # option and much of this could just be done that way, but I couldn't # get it to work and life's too short. openconnect.nsi: version.c $(AM_V_GEN) VERSION=$$(cut -f2 -d\" version.c); \ PROD_VERSION=$$(echo "$$VERSION" | perl -ne 'm|v(\d+)\.(\d+)(?:\.git\.\|\-)?(\d+)?(?:-g.+\|.*)|; print "$$1.$$2." . ($$3 or "0") . ".0"'); \ if egrep -q '^#define OPENCONNECT_GNUTLS' config.h; then \ TLS_LIBRARY=GnuTLS; \ elif egrep -q '^#define OPENCONNECT_OPENSSL' config.h; then \ TLS_LIBRARY=OpenSSL; \ else \ TLS_LIBRARY="Unknown TLS library"; \ fi; \ ( echo "VIProductVersion \"$$PROD_VERSION\""; \ echo "VIAddVersionKey ProductVersion \"$$VERSION\""; \ echo "VIAddVersionKey Comments \"OpenConnect multi-protocol VPN client for Windows (command-line version, built with $$TLS_LIBRARY). For more information, visit https://www.infradead.org/openconnect/\""; \ echo "!include $(srcdir)/openconnect.nsi.in" ) > $@ AM_V_MAKENSIS = $(am__v_MAKENSIS_$(V)) am__v_MAKENSIS_ = $(am__v_MAKENSIS_$(AM_DEFAULT_VERBOSITY)) am__v_MAKENSIS_0 = @echo " MAKENSIS " $@; am__v_MAKENSIS_1 = openconnect-installer.exe: openconnect.nsi instfiles.nsh uninstfiles.nsh $(srcdir)/openconnect.nsi.in html-recursive $(AM_V_MAKENSIS) $(MAKENSIS) $< endif openconnect-8.20/bash/0000755000076400007640000000000014204510554016445 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/bash/openconnect0000644000076400007640000000726514062600131020706 0ustar00dwoodhoudwoodhou00000000000000# # Bash completion for OpenConnect # # Copyright © David Woodhouse # # Author: David Woodhouse # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # version 2.1, as published by the Free Software Foundation. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # Consider a command line like the following: # # openconnect -c --authenticate\ -k -k "'"'"'.pem --authgroup 'foo # bar' --o\s linux-64 myserver # # There is absolutely no way I want to attempt parsing that in C and # attempting to come up with the correct results as bash would do. # That is just designing for failure; we'll never get it right. # # Yet if we use 'complete -C openconnect openconnect' and allow the # program to do completions all by itself, that's what bash expects # it to do. All that's passed into the program is $COMP_LINE and # some other metadata. # # So instead we use bash to help us. In a completion *function* we # are given the ${COMP_WORDS[]} array which has actually been parsed # correctly. We still want openconnect itself to be able to do the # result generation, so just prepend --autocomplete to the args. # # For special cases like filenames and hostnames, we want to invoke # compgen, again to avoid reinventing the wheel badly. So define # special cases HOSTNAME, FILENAME as the autocomplete results, # to be handled as special cases. In those cases we also use # ${COMP_WORDS[$COMP_CWORD]}) as the string to bew completed, # pristine from bash instead of having been passed through the # program itself. Thus, we see correct completions along the lines # of # # $ ls foo\ * # 'foo bar.pem' 'foo bar.xml' 'foo baz.crt' # $ openconnect -c ./fo # # ... partially completes to: # # $ openconnect -c ./foo\ ba # # ... and a second shows: # # foo bar.pem foo baz.crt # # Likewise, # # $ touch '"'"'".pem # $ openconnect -c '"' # # ...completes to: # # $ openconnect -c \"\'.pem # # This does fall down if I create a filename with a newline in it, # but even tab-completion for 'ls' falls over in that case. # # The main problem with this approach is that we can't easily map # $COMP_POINT to the precise character on the line at which TAB was # being pressed, which may not be the *end*. _complete_openconnect () { local cur _get_comp_words_by_ref cur # But if we do this, then our COMPREPLY isn't interpreted according to it. #_get_comp_words_by_ref-n =: -w COMP_WORDS -i COMP_CWORD cur COMP_WORDS[0]="--autocomplete" local IFS=$'\n' COMPREPLY=( $(COMP_CWORD=$COMP_CWORD openconnect "${COMP_WORDS[@]}") ) local FILTERPAT="${COMPREPLY[1]}" local PREFIX="${COMPREPLY[2]}" local COMP_WORD=${cur#${PREFIX}} case "${COMPREPLY[0]}" in FILENAME) compopt -o filenames COMPREPLY=( $( compgen -A file -ofilenames -o plusdirs -X "${FILTERPAT}" -- "${COMP_WORD}") ) COMPREPLY=( "${COMPREPLY[@]/#/${PREFIX}}" ) ;; EXECUTABLE) compopt -o filenames COMPREPLY=( $( compgen -A command -ofilenames -o plusdirs -- "${COMP_WORD}") ) COMPREPLY=( "${COMPREPLY[@]/#/${PREFIX}}" ) ;; HOSTNAME) compopt +o filenames COMPREPLY=( $( compgen -A hostname -P "${PREFIX}" -- "${COMP_WORD}") ) ;; USERNAME) compopt +o filenames COMPREPLY=( $( compgen -A user -P "${PREFIX}" -- "${COMP_WORD}") ) ;; *) compopt +o filenames ;; esac } complete -F _complete_openconnect openconnect openconnect-8.20/ChangeLog0000664000076400007640000000117612424411476017316 0ustar00dwoodhoudwoodhou000000000000002014-10-30 gettextize * m4/gettext.m4: New file, from gettext-0.19.2. * m4/nls.m4: New file, from gettext-0.19.2. * m4/po.m4: New file, from gettext-0.19.2. * m4/progtest.m4: New file, from gettext-0.19.2. * Makefile.am (ACLOCAL_AMFLAGS): New variable. * configure.ac (AC_CONFIG_FILES): Add po/Makefile.in. 2011-10-31 gettextize * Makefile.am (EXTRA_DIST): Add config.rpath. * configure.ac (AC_OUTPUT): Add po/Makefile.in. 2011-10-31 gettextize * Makefile.am (ACLOCAL_AMFLAGS): New variable. (EXTRA_DIST): Add config.rpath, m4/ChangeLog. openconnect-8.20/config.h.in0000644000076400007640000001234114204505635017560 0ustar00dwoodhoudwoodhou00000000000000/* config.h.in. Generated from configure.ac by autoheader. */ /* p11-kit proxy */ #undef DEFAULT_PKCS11_MODULE /* The GnuTLS priority string */ #undef DEFAULT_PRIO /* Default vpnc-script locatin */ #undef DEFAULT_VPNCSCRIPT /* Enable NLS support */ #undef ENABLE_NLS /* endian header include path */ #undef ENDIAN_HDR /* GSSAPI header */ #undef GSSAPI_HDR /* MinGW has afunix.h */ #undef HAVE_AF_UNIX_H /* Have alloca.h */ #undef HAVE_ALLOCA_H /* Have asprintf() function */ #undef HAVE_ASPRINTF /* OpenSSL has BIO_meth_free() function */ #undef HAVE_BIO_METH_FREE /* Have __builtin_clz() */ #undef HAVE_BUILTIN_CLZ /* Define to 1 if you have the header file. */ #undef HAVE_DLFCN_H /* Build with DTLS support */ #undef HAVE_DTLS /* OpenSSL has DTLS_client_method() function */ #undef HAVE_DTLS12 /* OpenSSL has dtls1_stop_timer() function */ #undef HAVE_DTLS1_STOP_TIMER /* OpenSSL has ENGINE support */ #undef HAVE_ENGINE /* Have epoll */ #undef HAVE_EPOLL /* Build with ESP support */ #undef HAVE_ESP /* Have explicit_bzero() function */ #undef HAVE_EXPLICIT_BZERO /* Have explicit_memset() function */ #undef HAVE_EXPLICIT_MEMSET /* Have fdevname_r() function */ #undef HAVE_FDEVNAME_R /* MinGW declares getenv_s */ #undef HAVE_GETENV_S_DECL /* Have getline() function */ #undef HAVE_GETLINE /* From GnuTLS 3.4.0 */ #undef HAVE_GNUTLS_SYSTEM_KEYS /* Have GSSAPI support */ #undef HAVE_GSSAPI /* Have iconv() function */ #undef HAVE_ICONV /* Have inet_aton() */ #undef HAVE_INET_ATON /* Define to 1 if you have the header file. */ #undef HAVE_INTTYPES_H /* Have IPV6_PATHMTU socket option */ #undef HAVE_IPV6_PATHMTU /* Define to 1 if you have the `log' library (-llog). */ #undef HAVE_LIBLOG /* Define to 1 if you have the `nsl' library (-lnsl). */ #undef HAVE_LIBNSL /* Have libp11 and p11-kit for OpenSSL */ #undef HAVE_LIBP11 /* Have libpcsclite */ #undef HAVE_LIBPCSCLITE /* Have libpskc */ #undef HAVE_LIBPSKC /* Define to 1 if you have the `socket' library (-lsocket). */ #undef HAVE_LIBSOCKET /* Have libstoken */ #undef HAVE_LIBSTOKEN /* Have localtime_r() function */ #undef HAVE_LOCALTIME_R /* Have localtime_s() function */ #undef HAVE_LOCALTIME_S /* LZ4 was found */ #undef HAVE_LZ4 /* From LZ4 r129 */ #undef HAVE_LZ4_COMPRESS_DEFAULT /* Define to 1 if you have the header file. */ #undef HAVE_MEMORY_H /* Have memset_s() function */ #undef HAVE_MEMSET_S /* Have net/if_utun.h */ #undef HAVE_NET_UTUN_H /* Have nl_langinfo() function */ #undef HAVE_NL_LANGINFO /* Have. P11. Kit. */ #undef HAVE_P11KIT /* MinGW declares _putenv_s */ #undef HAVE_PUTENV_S_DECL /* OpenSSL has SSL_CIPHER_find() function */ #undef HAVE_SSL_CIPHER_FIND /* OpenSSL has SSL_CTX_set_min_proto_version() function */ #undef HAVE_SSL_CTX_PROTOVER /* Have statfs() function */ #undef HAVE_STATFS /* Define to 1 if you have the header file. */ #undef HAVE_STDINT_H /* Define to 1 if you have the header file. */ #undef HAVE_STDLIB_H /* Have strcasestr() function */ #undef HAVE_STRCASESTR /* Have strchrnul() function */ #undef HAVE_STRCHRNUL /* Define to 1 if you have the header file. */ #undef HAVE_STRINGS_H /* Define to 1 if you have the header file. */ #undef HAVE_STRING_H /* Have strndup() function */ #undef HAVE_STRNDUP /* On SunOS time() can go backwards */ #undef HAVE_SUNOS_BROKEN_TIME /* Define to 1 if you have the header file. */ #undef HAVE_SYS_STAT_H /* Define to 1 if you have the header file. */ #undef HAVE_SYS_TYPES_H /* Have Trousers TSS library */ #undef HAVE_TROUSERS /* TSS2 library */ #undef HAVE_TSS2 /* Define to 1 if you have the header file. */ #undef HAVE_UNISTD_H /* Have vasprintf() function */ #undef HAVE_VASPRINTF /* Have va_copy() */ #undef HAVE_VA_COPY /* Have vhost */ #undef HAVE_VHOST /* Have __va_copy() */ #undef HAVE___VA_COPY /* Define as const if the declaration of iconv() needs const. */ #undef ICONV_CONST /* if_tun.h include path */ #undef IF_TUN_HDR /* libproxy header file */ #undef LIBPROXY_HDR /* Define to the sub-directory where libtool stores uninstalled libraries. */ #undef LT_OBJDIR /* Try to make getenv_s and _putenv_s available */ #undef MINGW_HAS_SECURE_API /* Using GnuTLS */ #undef OPENCONNECT_GNUTLS /* Using OpenSSL */ #undef OPENCONNECT_OPENSSL /* We need to update to OpenSSL 3.0.0 API */ #undef OPENSSL_SUPPRESS_DEPRECATED /* Name of package */ #undef PACKAGE /* Define to the address where bug reports for this package should be sent. */ #undef PACKAGE_BUGREPORT /* Define to the full name of this package. */ #undef PACKAGE_NAME /* Define to the full name and version of this package. */ #undef PACKAGE_STRING /* Define to the one symbol short name of this package. */ #undef PACKAGE_TARNAME /* Define to the home page for this package. */ #undef PACKAGE_URL /* Define to the version of this package. */ #undef PACKAGE_VERSION /* Define to 1 if you have the ANSI C header files. */ #undef STDC_HEADERS /* Version number of package */ #undef VERSION /* _GNU_SOURCE */ #undef _GNU_SOURCE /* _NETBSD_SOURCE */ #undef _NETBSD_SOURCE /* _POSIX_C_SOURCE */ #undef _POSIX_C_SOURCE /* Windows API version */ #undef _WIN32_WINNT /* To request memset_s */ #undef __STDC_WANT_LIB_EXT1__ openconnect-8.20/oncp.c0000644000076400007640000011273314204454432016644 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Grateful thanks to Tiebing Zhang, who did much of the hard work * of analysing and decoding the protocol. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include static void buf_append_tlv(struct oc_text_buf *buf, uint16_t val, uint32_t len, void *data) { unsigned char b[6]; store_be16(b, val); store_be32(b + 2, len); buf_append_bytes(buf, b, 6); if (len) buf_append_bytes(buf, data, len); } static void buf_append_tlv_be32(struct oc_text_buf *buf, uint16_t val, uint32_t data) { unsigned char d[4]; store_be32(d, data); buf_append_tlv(buf, val, 4, d); } static const char authpkt_head[] = { 0x00, 0x04, 0x00, 0x00, 0x00 }; static const char authpkt_tail[] = { 0xbb, 0x01, 0x00, 0x00, 0x00, 0x00 }; #define GRP_ATTR(g, a) (((g) << 16) | (a)) static int process_attr(struct openconnect_info *vpninfo, struct oc_vpn_option **new_opts, struct oc_ip_info *new_ip_info, int group, int attr, unsigned char *data, int attrlen) { char buf[80]; int i; switch(GRP_ATTR(group, attr)) { case GRP_ATTR(6, 2): if (attrlen != 4) { badlen: vpn_progress(vpninfo, PRG_ERR, _("Unexpected length %d for TLV %d/%d\n"), attrlen, group, attr); return -EINVAL; } new_ip_info->mtu = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("Received MTU %d from server\n"), new_ip_info->mtu); break; case GRP_ATTR(2, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!new_ip_info->dns[i]) { new_ip_info->dns[i] = add_option_dup(new_opts, "DNS", buf, -1); break; } } break; case GRP_ATTR(2, 2): vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS search domain %.*s\n"), attrlen, (char *)data); new_ip_info->domain = add_option_dup(new_opts, "search", (char *)data, attrlen); if (new_ip_info->domain) { char *p = (char *)new_ip_info->domain; while ((p = strchr(p, ','))) *p = ' '; } break; case GRP_ATTR(1, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal IP address %s\n"), buf); new_ip_info->addr = add_option_dup(new_opts, "ipaddr", buf, -1); break; case GRP_ATTR(1, 2): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received netmask %s\n"), buf); new_ip_info->netmask = add_option_dup(new_opts, "netmask", buf, -1); break; case GRP_ATTR(1, 3): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal gateway address %s\n"), buf); /* Hm, what are we supposed to do with this? It's a tunnel; having a gateway is meaningless. */ add_option_dup(new_opts, "ipaddr", buf, -1); break; case GRP_ATTR(3, 3): { struct oc_split_include *inc; if (attrlen != 8) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", data[0], data[1], data[2], data[3], data[4], data[5], data[6], data[7]); vpn_progress(vpninfo, PRG_DEBUG, _("Received split include route %s\n"), buf); if (!data[4] && !data[5] && !data[6] && !data[7]) break; inc = malloc(sizeof(*inc)); if (inc) { inc->route = add_option_dup(new_opts, "split-include", buf, -1); if (inc->route) { inc->next = new_ip_info->split_includes; new_ip_info->split_includes = inc; } else free(inc); } break; } case GRP_ATTR(3, 4): { struct oc_split_include *exc; if (attrlen != 8) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", data[0], data[1], data[2], data[3], data[4], data[5], data[6], data[7]); vpn_progress(vpninfo, PRG_DEBUG, _("Received split exclude route %s\n"), buf); if (!data[4] && !data[5] && !data[6] && !data[7]) break; exc = malloc(sizeof(*exc)); if (exc) { exc->route = add_option_dup(new_opts, "split-exclude", buf, -1); if (exc->route) { exc->next = new_ip_info->split_excludes; new_ip_info->split_excludes = exc; } else free(exc); } break; } case GRP_ATTR(4, 1): if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received WINS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!new_ip_info->nbns[i]) { new_ip_info->nbns[i] = add_option_dup(new_opts, "WINS", buf, -1); break; } } break; case GRP_ATTR(8, 1): { const char *enctype; if (attrlen != 1) goto badlen; if (data[0] == ENC_AES_128_CBC) { enctype = "AES-128"; vpninfo->enc_key_len = 16; } else if (data[0] == ENC_AES_256_CBC) { enctype = "AES-256"; vpninfo->enc_key_len = 32; } else enctype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP encryption: 0x%02x (%s)\n"), data[0], enctype); vpninfo->esp_enc = data[0]; break; } case GRP_ATTR(8, 2): { const char *mactype; if (attrlen != 1) goto badlen; if (data[0] == HMAC_MD5) { mactype = "MD5"; vpninfo->hmac_key_len = 16; } else if (data[0] == HMAC_SHA1) { mactype = "SHA1"; vpninfo->hmac_key_len = 20; } else mactype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP HMAC: 0x%02x (%s)\n"), data[0], mactype); vpninfo->esp_hmac = data[0]; break; } case GRP_ATTR(8, 3): if (attrlen != 1) goto badlen; vpninfo->esp_compr = data[0]; vpninfo->dtls_compr = data[0] ? COMPR_LZO : 0; vpn_progress(vpninfo, PRG_DEBUG, _("ESP compression: %d\n"), data[0]); break; case GRP_ATTR(8, 4): if (attrlen != 2) goto badlen; i = load_be16(data); udp_sockaddr(vpninfo, i); vpn_progress(vpninfo, PRG_DEBUG, _("ESP port: %d\n"), i); break; case GRP_ATTR(8, 5): if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_bytes = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u bytes\n"), vpninfo->esp_lifetime_bytes); break; case GRP_ATTR(8, 6): if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_seconds = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u seconds\n"), vpninfo->esp_lifetime_seconds); break; case GRP_ATTR(8, 9): if (attrlen != 4) goto badlen; vpninfo->esp_ssl_fallback = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP to SSL fallback: %u seconds\n"), vpninfo->esp_ssl_fallback); break; case GRP_ATTR(8, 10): if (attrlen != 4) goto badlen; vpninfo->esp_replay_protect = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP replay protection: %d\n"), load_be32(data)); break; case GRP_ATTR(7, 1): if (attrlen != 4) goto badlen; memcpy(&vpninfo->esp_out.spi, data, 4); vpn_progress(vpninfo, PRG_DEBUG, _("ESP SPI (outbound): %x\n"), load_be32(data)); break; case GRP_ATTR(7, 2): if (attrlen != 0x40) goto badlen; /* data contains enc_key and hmac_key concatenated */ memcpy(vpninfo->esp_out.enc_key, data, 0x40); vpn_progress(vpninfo, PRG_DEBUG, _("%d bytes of ESP secrets\n"), attrlen); break; default: buf[0] = 0; for (i=0; i < 16 && i < attrlen; i++) sprintf(buf + strlen(buf), " %02x", data[i]); if (attrlen > 16) sprintf(buf + strlen(buf), "..."); vpn_progress(vpninfo, PRG_DEBUG, _("Unknown TLV group %d attr %d len %d:%s\n"), group, attr, attrlen, buf); } return 0; } static void put_len16(struct oc_text_buf *buf, int where) { int len = buf->pos - where; store_be16(buf->data + where - 2, len); } static void put_len32(struct oc_text_buf *buf, int where) { int len = buf->pos - where; store_be32(buf->data + where - 4, len); } /* We don't know what these are so just hope they never change */ static const unsigned char kmp_head[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char kmp_tail[] = { 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char kmp_tail_out[] = { 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char data_hdr[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2c, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00 }; #ifdef HAVE_ESP static const unsigned char esp_kmp_hdr[] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2e, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, /* KMP header */ 0x00, 0x56, /* KMP length */ 0x00, 0x07, 0x00, 0x00, 0x00, 0x50, /* TLV group 7 */ 0x00, 0x01, 0x00, 0x00, 0x00, 0x04, /* Attr 1 (SPI) */ }; /* Followed by 4 bytes of SPI */ static const unsigned char esp_kmp_part2[] = { 0x00, 0x02, 0x00, 0x00, 0x00, 0x40, /* Attr 2 (secrets) */ }; /* And now 0x40 bytes of random secret for encryption and HMAC key */ #endif static const struct pkt esp_enable_pkt = { .next = NULL, { .oncp = { .rec = { 0x21, 0x00 }, .kmp = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, 0x2f, 0x01, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x0d } } }, .data = { 0x00, 0x06, 0x00, 0x00, 0x00, 0x07, /* Group 6, len 7 */ 0x00, 0x01, 0x00, 0x00, 0x00, 0x01, /* Attr 1, len 1 */ 0x01 }, .len = 13 }; static int queue_esp_control(struct openconnect_info *vpninfo, int enable) { struct pkt *new = alloc_pkt(vpninfo, esp_enable_pkt.len); if (!new) return -ENOMEM; new->oncp = esp_enable_pkt.oncp; new->len = esp_enable_pkt.len; memcpy(new->data, esp_enable_pkt.data, esp_enable_pkt.len); new->data[12] = enable; queue_packet(&vpninfo->tcp_control_queue, new); return 0; } static int check_kmp_header(struct openconnect_info *vpninfo, unsigned char *bytes, int pktlen) { if (pktlen < 20 || memcmp(bytes, kmp_head, sizeof(kmp_head)) || memcmp(bytes + 8, kmp_tail, sizeof(kmp_tail))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse KMP header\n")); return -EINVAL; } return load_be16(bytes + 6); } static int parse_conf_pkt(struct openconnect_info *vpninfo, unsigned char *bytes, int pktlen, int kmp) { int kmplen, kmpend, grouplen, groupend, group, attr, attrlen; int ofs = 0; int split_enc_hmac_keys = 0; struct oc_vpn_option *new_opts = NULL; struct oc_ip_info new_ip_info = {}; kmplen = load_be16(bytes + ofs + 18); kmpend = ofs + kmplen; if (kmpend > pktlen) { eparse: vpn_progress(vpninfo, PRG_ERR, _("Failed to parse KMP message\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, pktlen); einval: free_optlist(new_opts); free_split_routes(&new_ip_info); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Got KMP message %d of size %d\n"), kmp, kmplen); ofs += 0x14; while (ofs < kmpend) { if (ofs + 6 > kmpend) goto eparse; group = load_be16(bytes + ofs); grouplen = load_be32(bytes + ofs + 2); ofs += 6; groupend = ofs + grouplen; if (groupend > pktlen) goto eparse; if (kmp == 302 && group != 7 && group != 8) { vpn_progress(vpninfo, PRG_ERR, _("Received non-ESP TLVs (group %d) in ESP negotiation KMP\n"), group); goto einval; } while (ofs < groupend) { if (ofs + 6 > groupend) goto eparse; attr = load_be16(bytes + ofs); attrlen = load_be32(bytes + ofs + 2); ofs += 6; if (attrlen + ofs > groupend) goto eparse; if (process_attr(vpninfo, &new_opts, &new_ip_info, group, attr, bytes + ofs, attrlen)) goto eparse; if (GRP_ATTR(group, attr)==GRP_ATTR(7, 2)) split_enc_hmac_keys = 1; ofs += attrlen; } } /* The encryption and HMAC keys are sent concatenated together in a block of 0x40 bytes; we can't split them apart until we know how long the encryption key is. */ if (split_enc_hmac_keys) memcpy(vpninfo->esp_out.hmac_key, vpninfo->esp_out.enc_key + vpninfo->enc_key_len, vpninfo->hmac_key_len); int ret = install_vpn_opts(vpninfo, new_opts, &new_ip_info); if (ret) { free_optlist(new_opts); free_split_routes(&new_ip_info); return ret; } return 0; } int oncp_connect(struct openconnect_info *vpninfo) { int ret, len, kmp, kmplen, group, check_len; struct oc_text_buf *reqbuf; unsigned char bytes[65536]; if (!vpninfo->cookies) { /* XX: This will happen if authentication was separate/external */ ret = internal_split_cookies(vpninfo, 0, "DSID"); if (ret) return ret; } ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "POST /dana/js?prot=1&svc=4 HTTP/1.1\r\n"); /* The TLS socket actually remains open for use by the oNCP tunnel, but the "Connection: close" header is nevertheless required here. It appears to signal to the server to stop treating this as an HTTP connection and to start treating it as an oNCP connection. */ buf_append(reqbuf, "Connection: close\r\n"); oncp_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "Content-Length: 256\r\n"); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret < 0) goto out; ret = process_http_response(vpninfo, 1, NULL, reqbuf); if (ret < 0) goto out; if (ret != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = ((ret >= 400 && ret <= 499) || ret == 302) ? -EPERM : -EINVAL; goto out; } /* This is probably some kind of vestigial authentication packet, although * it's mostly obsolete now that the authentication is really done over * HTTP. We only send the hostname. */ buf_truncate(reqbuf); buf_append_le16(reqbuf, sizeof(authpkt_head) + 2 + strlen(vpninfo->localname) + sizeof(authpkt_tail)); buf_append_bytes(reqbuf, authpkt_head, sizeof(authpkt_head)); buf_append_le16(reqbuf, strlen(vpninfo->localname)); buf_append(reqbuf, "%s", vpninfo->localname); buf_append_bytes(reqbuf, authpkt_tail, sizeof(authpkt_tail)); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)reqbuf->data, reqbuf->pos); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret != reqbuf->pos) { if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in oNCP negotiation\n")); ret = -EIO; } goto out; } /* Now we expect a three-byte response with what's presumably an error code */ ret = vpninfo->ssl_read(vpninfo, (void *)bytes, 3); check_len = load_le16(bytes); if (ret < 0) goto out; vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of SSL record\n"), ret); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)bytes, ret); if (ret != 3 || check_len < 1) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response of size %d after hostname packet\n"), ret); ret = -EINVAL; goto out; } if (bytes[2]) { vpn_progress(vpninfo, PRG_ERR, _("Server response to hostname packet is error 0x%02x\n"), bytes[2]); if (bytes[2] == 0x08) vpn_progress(vpninfo, PRG_ERR, _("This seems to indicate that the server has disabled support for\n" "Juniper's older oNCP protocol, and only allows connections using\n" "the newer Junos Pulse protocol. This version of OpenConnect has\n" "EXPERIMENTAL support for Pulse using --prot=pulse\n")); ret = -EINVAL; goto out; } /* And then a KMP message 301 with the IP configuration. * Sometimes this arrives as a separate SSL record (with its own * 2-byte length prefix), and sometimes concatenated with the * previous 3-byte response). */ if (check_len == 1) { len = vpninfo->ssl_read(vpninfo, (void *)bytes, sizeof(bytes)); check_len = load_le16(bytes); } else { len = vpninfo->ssl_read(vpninfo, (void *)(bytes+2), sizeof(bytes)-2) + 2; check_len--; } if (len < 0) { ret = len; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of SSL record\n"), len); if (len < 0x16 || check_len + 2 != len) { vpn_progress(vpninfo, PRG_ERR, _("Invalid packet waiting for KMP 301\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, len); ret = -EINVAL; goto out; } ret = check_kmp_header(vpninfo, bytes + 2, len); if (ret < 0) goto out; /* We expect KMP message 301 here */ if (ret != 301) { vpn_progress(vpninfo, PRG_ERR, _("Expected KMP message 301 from server but got %d\n"), ret); ret = -EINVAL; goto out; } kmplen = load_be16(bytes + 20); if (kmplen + 2 >= sizeof(bytes)) { vpn_progress(vpninfo, PRG_ERR, _("KMP message 301 from server too large (%d bytes)\n"), kmplen); ret = -EINVAL; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("Got KMP message 301 of length %d\n"), kmplen); while (kmplen + 22 > len) { char l[2]; int thislen; if (vpninfo->ssl_read(vpninfo, (void *)l, 2) != 2) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read continuation record length\n")); ret = -EINVAL; goto out; } if (load_le16(l) + len > kmplen + 22) { vpn_progress(vpninfo, PRG_ERR, _("Record of additional %d bytes too large; would make %d\n"), load_le16(l), len + load_le16(l)); ret = -EINVAL; goto out; } thislen = vpninfo->ssl_read(vpninfo, (void *)(bytes + len), load_le16(l)); if (thislen != load_le16(l)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read continuation record of length %d\n"), load_le16(l)); ret = -EINVAL; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("Read additional %d bytes of KMP 301 message\n"), thislen); len += thislen; } ret = parse_conf_pkt(vpninfo, bytes + 2, len - 2, ret); if (ret) goto out; buf_truncate(reqbuf); buf_append_le16(reqbuf, 0); /* Length. We'll fix it later. */ buf_append_bytes(reqbuf, kmp_head, sizeof(kmp_head)); buf_append_be16(reqbuf, 303); /* KMP message 303 */ buf_append_bytes(reqbuf, kmp_tail_out, sizeof(kmp_tail_out)); buf_append_be16(reqbuf, 0); /* KMP message length */ kmp = reqbuf->pos; buf_append_tlv(reqbuf, 6, 0, NULL); /* TLV group 6 */ group = reqbuf->pos; buf_append_tlv_be32(reqbuf, 2, vpninfo->ip_info.mtu); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating oNCP negotiation request\n")); ret = buf_error(reqbuf); goto out; } put_len32(reqbuf, group); put_len16(reqbuf, kmp); #ifdef HAVE_ESP if (!openconnect_setup_esp_keys(vpninfo, 1)) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; /* Since we'll want to do this in the oncp_mainloop too, where it's easier * *not* to have an oc_text_buf and build it up manually, and since it's * all fixed size and fairly simple anyway, just hard-code the packet */ buf_append_bytes(reqbuf, esp_kmp_hdr, sizeof(esp_kmp_hdr)); buf_append_bytes(reqbuf, &esp->spi, sizeof(esp->spi)); buf_append_bytes(reqbuf, esp_kmp_part2, sizeof(esp_kmp_part2)); buf_append_bytes(reqbuf, &esp->enc_key, vpninfo->enc_key_len); buf_append_bytes(reqbuf, &esp->hmac_key, 0x40 - vpninfo->enc_key_len); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error negotiating ESP keys\n")); ret = buf_error(reqbuf); goto out; } } #endif /* Length at the start of the packet is little-endian */ store_le16(reqbuf->data, reqbuf->pos - 2); vpn_progress(vpninfo, PRG_DEBUG, _("oNCP negotiation request outgoing:\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)reqbuf->data, reqbuf->pos); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret != reqbuf->pos) { if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in oNCP negotiation\n")); ret = -EIO; } goto out; } ret = 0; out: if (ret) openconnect_close_https(vpninfo, 0); else { monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); } buf_free(reqbuf); vpninfo->partial_rec_size = 0; free_pkt(vpninfo, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; return ret; } static int oncp_receive_espkeys(struct openconnect_info *vpninfo, int len) { #ifdef HAVE_ESP int ret; ret = parse_conf_pkt(vpninfo, vpninfo->cstp_pkt->oncp.kmp, len + 20, 301); if (!ret) ret = openconnect_setup_esp_keys(vpninfo, 1); if (!ret) { struct esp *esp = &vpninfo->esp_in[vpninfo->current_esp_in]; unsigned char *p = vpninfo->cstp_pkt->oncp.kmp; memcpy(p, esp_kmp_hdr, sizeof(esp_kmp_hdr)); p += sizeof(esp_kmp_hdr); memcpy(p, &esp->spi, sizeof(esp->spi)); p += sizeof(esp->spi); memcpy(p, esp_kmp_part2, sizeof(esp_kmp_part2)); p += sizeof(esp_kmp_part2); memcpy(p, esp->enc_key, vpninfo->enc_key_len); memcpy(p+vpninfo->enc_key_len, esp->hmac_key, 0x40 - vpninfo->enc_key_len); p += 0x40; vpninfo->cstp_pkt->len = p - vpninfo->cstp_pkt->data; store_le16(vpninfo->cstp_pkt->oncp.rec, (p - vpninfo->cstp_pkt->oncp.kmp)); queue_packet(&vpninfo->tcp_control_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; print_esp_keys(vpninfo, _("new incoming"), esp); print_esp_keys(vpninfo, _("new outgoing"), &vpninfo->esp_out); } return ret; #else vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring ESP keys since ESP support not available in this build\n")); return 0; #endif } static int oncp_record_read(struct openconnect_info *vpninfo, void *buf, int len) { int ret; if (!vpninfo->partial_rec_size) { unsigned char lenbuf[2]; ret = ssl_nonblock_read(vpninfo, 0, lenbuf, 2); if (ret <= 0) return ret; if (ret == 1) { /* Surely at least *this* never happens? The two length bytes * of the oNCP record being split across multiple SSL records */ vpn_progress(vpninfo, PRG_ERR, _("Read only 1 byte of oNCP length field\n")); return -EIO; } vpninfo->partial_rec_size = load_le16(lenbuf); if (!vpninfo->partial_rec_size) { ret = ssl_nonblock_read(vpninfo, 0, lenbuf, 1); if (ret == 1) { if (lenbuf[0] == 1) { vpn_progress(vpninfo, PRG_ERR, _("Server terminated connection (session expired)\n")); vpninfo->quit_reason = "VPN session expired"; } else if (lenbuf[0] == 8) { vpn_progress(vpninfo, PRG_ERR, _("Server terminated connection (idle timeout)\n")); vpninfo->quit_reason = "Idle timeout"; } else { vpn_progress(vpninfo, PRG_ERR, _("Server terminated connection (reason: %d)\n"), lenbuf[0]); vpninfo->quit_reason = "Server terminated connection"; } return -EPIPE; } else { vpn_progress(vpninfo, PRG_ERR, _("Server sent zero-length oNCP record\n")); vpninfo->quit_reason = "Zero-length oNCP record"; return -EIO; } } } if (len > vpninfo->partial_rec_size) len = vpninfo->partial_rec_size; ret = ssl_nonblock_read(vpninfo, 0, buf, len); if (ret > 0) vpninfo->partial_rec_size -= ret; return ret; } int oncp_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; /* Periodic TNCC */ if (trojan_check_deadline(vpninfo, timeout)) { oncp_send_tncc_command(vpninfo, 0); return 1; } if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { int len, kmp, kmplen, iplen; /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); len = receive_mtu + vpninfo->pkt_trailer; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = alloc_pkt(vpninfo, len); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } vpninfo->cstp_pkt->len = 0; } /* * This protocol is horrid. There are encapsulations within * encapsulations within encapsulations. Some of them entirely * gratuitous. * * First there's the SSL records which are a natural part of * using TLS as a transport. They appear to make no use of the * packetisation which these provide. * * Then within the TLS data stream there are "records" preceded * by a 16-bit little-endian length. It's not clear what these * records represent; they appear to be entirely gratuitous and * just need to be discarded. A record boundary sometimes falls * right in the middle of a data packet; there's no apparent * logic to it. * * Then there are the KMP packets themselves, each of which has * a length field of its own. There can be multiple KMP packets * in each of the above-mention "records", and as noted there * even be *partial* KMP packets in each record. * * Finally, a KMP data packet may actually contain multiple IP * packets, which need to be split apart by using the length * field in the IP header. This is Legacy IP only, never IPv6 * for the Network Connect protocol. */ /* Until we pass it up the stack, we use cstp_pkt->len to show * the amount of data received *including* the KMP header. */ len = oncp_record_read(vpninfo, vpninfo->cstp_pkt->oncp.kmp + vpninfo->cstp_pkt->len, receive_mtu + 20 - vpninfo->cstp_pkt->len); if (!len) break; else if (len < 0) { if (vpninfo->quit_reason) return len; goto do_reconnect; } vpninfo->cstp_pkt->len += len; vpninfo->ssl_times.last_rx = time(NULL); if (vpninfo->cstp_pkt->len < 20) continue; next_kmp: /* Now we have a KMP header. It might already have been there */ kmp = load_be16(vpninfo->cstp_pkt->oncp.kmp + 6); kmplen = load_be16(vpninfo->cstp_pkt->oncp.kmp + 18); if (len == vpninfo->cstp_pkt->len) vpn_progress(vpninfo, PRG_DEBUG, _("Incoming KMP message %d of size %d (got %d)\n"), kmp, kmplen, vpninfo->cstp_pkt->len - 20); else vpn_progress(vpninfo, PRG_DEBUG, _("Continuing to process KMP message %d now size %d (got %d)\n"), kmp, kmplen, vpninfo->cstp_pkt->len - 20); switch (kmp) { case 300: next_ip: /* Need at least 6 bytes of payload to check the IP packet length */ if (vpninfo->cstp_pkt->len < 26) continue; switch(vpninfo->cstp_pkt->data[0] >> 4) { case 4: iplen = load_be16(vpninfo->cstp_pkt->data + 2); break; case 6: iplen = load_be16(vpninfo->cstp_pkt->data + 4) + 40; break; default: badiplen: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised data packet\n")); goto unknown_pkt; } if (!iplen || iplen > receive_mtu || iplen > kmplen) goto badiplen; if (iplen > vpninfo->cstp_pkt->len - 20) continue; work_done = 1; vpn_progress(vpninfo, PRG_TRACE, _("Received uncompressed data packet of %d bytes\n"), iplen); /* If there's nothing after the IP packet, and it's the last (or * only) packet in this KMP300 so we don't need to keep the KMP * header either, then just queue it. */ if (iplen == kmplen && iplen == vpninfo->cstp_pkt->len - 20) { vpninfo->cstp_pkt->len = iplen; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; continue; } /* OK, we have a whole packet, and we have stuff after it */ queue_new_packet(vpninfo, &vpninfo->incoming_queue, vpninfo->cstp_pkt->data, iplen); kmplen -= iplen; if (kmplen) { /* Still data packets to come in this KMP300 */ store_be16(vpninfo->cstp_pkt->oncp.kmp + 18, kmplen); vpninfo->cstp_pkt->len -= iplen; if (vpninfo->cstp_pkt->len > 20) memmove(vpninfo->cstp_pkt->data, vpninfo->cstp_pkt->data + iplen, vpninfo->cstp_pkt->len - 20); goto next_ip; } /* We have depleted the KMP300, and there are more bytes from * the next KMP message in the buffer. Move it up and process it */ memmove(vpninfo->cstp_pkt->oncp.kmp, vpninfo->cstp_pkt->data + iplen, vpninfo->cstp_pkt->len - iplen - 20); vpninfo->cstp_pkt->len -= (iplen + 20); goto next_kmp; case 302: /* Should never happen; if it does we'll have to cope */ if (kmplen > receive_mtu) goto unknown_pkt; /* Probably never happens. We need it in its own record. * If I fix oncp_receive_espkeys() not to reuse cstp_pkt * we can stop doing this. */ if (vpninfo->cstp_pkt->len != kmplen + 20) goto unknown_pkt; ret = oncp_receive_espkeys(vpninfo, kmplen); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set up ESP: %s\n"), strerror(-ret)); oncp_esp_close(vpninfo); } work_done = 1; break; default: unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown KMP message %d of size %d:\n"), kmp, kmplen); dump_buf_hex(vpninfo, PRG_ERR, '<', vpninfo->cstp_pkt->oncp.kmp, vpninfo->cstp_pkt->len); if (kmplen + 20 != vpninfo->cstp_pkt->len) vpn_progress(vpninfo, PRG_DEBUG, _(".... + %d more bytes unreceived\n"), kmplen + 20 - vpninfo->cstp_pkt->len); vpninfo->quit_reason = "Unknown packet received"; return 1; } } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); vpn_progress(vpninfo, PRG_TRACE, _("Packet outgoing:\n")); dump_buf_hex(vpninfo, PRG_TRACE, '>', vpninfo->current_ssl_pkt->oncp.rec, vpninfo->current_ssl_pkt->len + 22); ret = ssl_nonblock_write(vpninfo, 0, vpninfo->current_ssl_pkt->oncp.rec, vpninfo->current_ssl_pkt->len + 22); if (ret < 0) { do_reconnect: /* XXX: Do we have to do this or can we leave it open? * Perhaps we could even reconnect asynchronously while * the ESP is still running? */ #ifdef HAVE_ESP esp_shutdown(vpninfo); #endif ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "oNCP reconnect failed"; return ret; } vpninfo->dtls_need_reconnect = 1; return 1; } else if (!ret) { #if 0 /* Not for Juniper yet */ /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ break; } #else return work_done; #endif } if (ret != vpninfo->current_ssl_pkt->len + 22) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 22, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free_pkt(vpninfo, vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } else if (vpninfo->current_ssl_pkt == &esp_enable_pkt) { /* Only set the ESP state to connected and actually start sending packets on it once the enable message has been *sent* over the TCP channel. */ vpn_progress(vpninfo, PRG_TRACE, _("Sent ESP enable control packet\n")); vpninfo->dtls_state = DTLS_ESTABLISHED; work_done = 1; } else { free_pkt(vpninfo, vpninfo->current_ssl_pkt); } vpninfo->current_ssl_pkt = NULL; } #if 0 /* Not understood for Juniper yet */ if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_ESTABLISHED && vpninfo->outgoing_queue) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } #endif /* Queue the ESP enable message. We will start sending packets * via ESP once the enable message has been *sent* over the * TCP channel. Assign it directly to current_ssl_pkt so that * we can use it in-place and match against it above. */ if (vpninfo->dtls_state == DTLS_CONNECTED) { vpninfo->current_ssl_pkt = (struct pkt *)&esp_enable_pkt; goto handle_outgoing; } vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->tcp_control_queue); if (vpninfo->current_ssl_pkt) goto handle_outgoing; /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_ESTABLISHED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; /* Little-endian overall record length */ store_le16(this->oncp.rec, (this->len + 20)); memcpy(this->oncp.kmp, data_hdr, 18); /* Big-endian length in KMP message header */ store_be16(this->oncp.kmp + 18, this->len); vpn_progress(vpninfo, PRG_TRACE, _("Sending uncompressed data packet of %d bytes\n"), this->len); goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int oncp_bye(struct openconnect_info *vpninfo, const char *reason) { char *orig_path; char *res_buf=NULL; int ret; /* We need to close and reopen the HTTPS connection (to kill * the oncp tunnel) and submit a new HTTPS request to logout. */ openconnect_close_https(vpninfo, 0); orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("dana-na/auth/logout.cgi"); /* redirect segfaults without strdup */ ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (ret < 0) vpn_progress(vpninfo, PRG_ERR, _("Logout failed.\n")); else vpn_progress(vpninfo, PRG_INFO, _("Logout successful.\n")); free(res_buf); return ret; } #ifdef HAVE_ESP void oncp_esp_close(struct openconnect_info *vpninfo) { /* Tell server to stop sending on ESP channel */ if (vpninfo->dtls_state >= DTLS_CONNECTED) queue_esp_control(vpninfo, 0); esp_close(vpninfo); } int oncp_esp_send_probes(struct openconnect_info *vpninfo) { struct pkt *pkt; int pktlen, seq; if (vpninfo->dtls_fd == -1) { int fd = udp_connect(vpninfo); if (fd < 0) return fd; /* We are not connected until we get an ESP packet back */ vpninfo->dtls_state = DTLS_SLEEPING; vpninfo->dtls_fd = fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); } pkt = alloc_pkt(vpninfo, 1 + vpninfo->pkt_trailer); if (!pkt) return -ENOMEM; for (seq=1; seq <= (vpninfo->dtls_state==DTLS_ESTABLISHED ? 1 : 2); seq++) { pkt->len = 1; pkt->data[0] = 0; pktlen = construct_esp_packet(vpninfo, pkt, vpninfo->dtls_addr->sa_family == AF_INET6 ? IPPROTO_IPV6 : IPPROTO_IPIP); if (pktlen < 0 || send(vpninfo->dtls_fd, (void *)&pkt->esp, pktlen, 0) < 0) vpn_progress(vpninfo, PRG_DEBUG, _("Failed to send ESP probe\n")); } free_pkt(vpninfo, pkt); vpninfo->dtls_times.last_tx = time(&vpninfo->new_dtls_started); return 0; }; int oncp_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt) { return (pkt->len == 1 && pkt->data[0] == 0); } #endif /* HAVE_ESP */ openconnect-8.20/main.c0000644000076400007640000023465314204454432016637 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * Copyright © 2013 John Morrissey * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #ifdef HAVE_GETLINE /* Various BSD systems require this for getline() to be visible */ #define _WITH_GETLINE #endif #include #include #include #include #include #include #ifdef HAVE_STRINGS_H #include #endif #ifdef LIBPROXY_HDR #include LIBPROXY_HDR #endif #ifdef _WIN32 #include #include #include #else #include #include #include #endif #include #include #include #include #include #include #include #ifdef HAVE_NL_LANGINFO #include static const char *legacy_charset; #endif static int write_new_config(void *_vpninfo, const char *buf, int buflen); static void __attribute__ ((format(printf, 3, 4))) write_progress(void *_vpninfo, int level, const char *fmt, ...); static int validate_peer_cert(void *_vpninfo, const char *reason); static int process_auth_form_cb(void *_vpninfo, struct oc_auth_form *form); static void init_token(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str); /* A sanity check that the openconnect executable is running against a library of the same version */ #define openconnect_version_str openconnect_binary_version #include #undef openconnect_version_str static int timestamp; #ifndef _WIN32 static int background; static int use_syslog; /* static variable initialised to 0 */ static int wrote_pid; /* static variable initialised to 0 */ static char *pidfile; /* static variable initialised to NULL */ #endif static int do_passphrase_from_fsid; static int non_inter; static int cookieonly; static int allow_stdin_read; static char *token_filename; static int allowed_fingerprints; struct accepted_cert { struct accepted_cert *next; char *fingerprint; char *host; int port; } *accepted_certs; static char *username; static char *password; static char *authgroup; static int authgroup_set; static int last_form_empty; static int sig_cmd_fd; static struct openconnect_info *sig_vpninfo; static void add_form_field(char *field); #ifdef __ANDROID__ #include static void __attribute__ ((format(printf, 3, 4))) syslog_progress(void *_vpninfo, int level, const char *fmt, ...) { struct openconnect_info *vpninfo; static int l[4] = { ANDROID_LOG_ERROR, /* PRG_ERR */ ANDROID_LOG_INFO, /* PRG_INFO */ ANDROID_LOG_DEBUG, /* PRG_DEBUG */ ANDROID_LOG_DEBUG /* PRG_TRACE */ }; va_list args, args2; if (vpninfo->verbose >= level) { va_start(args, fmt); va_copy(args2, args); __android_log_vprint(l[level], "openconnect", fmt, args); /* Android wants it to stderr too, so the GUI can scrape it and display it as well as going to syslog */ vfprintf(stderr, fmt, args2); va_end(args); va_end(args2); } } #define openlog(...) /* */ #elif defined(_WIN32) || defined(__native_client__) /* * FIXME: Perhaps we could implement syslog_progress() using these APIs: * https://docs.microsoft.com/en-us/windows/win32/etw/tracing-events */ #else /* !__ANDROID__ && !_WIN32 && !__native_client__ */ #include static void __attribute__ ((format(printf, 3, 4))) syslog_progress(void *_vpninfo, int level, const char *fmt, ...) { struct openconnect_info *vpninfo = _vpninfo; int priority = level ? LOG_INFO : LOG_NOTICE; va_list args; if (vpninfo->verbose >= level) { va_start(args, fmt); vsyslog(priority, fmt, args); va_end(args); } } #endif enum { OPT_AUTHENTICATE = 0x100, OPT_AUTHGROUP, OPT_BASEMTU, OPT_CAFILE, OPT_COMPRESSION, OPT_CONFIGFILE, OPT_COOKIEONLY, OPT_COOKIE_ON_STDIN, OPT_CSD_USER, OPT_CSD_WRAPPER, OPT_CIPHERSUITES, OPT_DISABLE_IPV6, OPT_DTLS_CIPHERS, OPT_DTLS12_CIPHERS, OPT_DUMP_HTTP, OPT_FORCE_DPD, OPT_FORCE_TROJAN, OPT_GNUTLS_DEBUG, OPT_JUNIPER, OPT_KEY_PASSWORD_FROM_FSID, OPT_LIBPROXY, OPT_NO_CERT_CHECK, OPT_NO_DTLS, OPT_NO_HTTP_KEEPALIVE, OPT_NO_SYSTEM_TRUST, OPT_NO_PASSWD, OPT_NO_PROXY, OPT_NO_XMLPOST, OPT_PIDFILE, OPT_PASSWORD_ON_STDIN, OPT_PRINTCOOKIE, OPT_RECONNECT_TIMEOUT, OPT_SERVERCERT, OPT_RESOLVE, OPT_USERAGENT, OPT_NON_INTER, OPT_DTLS_LOCAL_PORT, OPT_TOKEN_MODE, OPT_TOKEN_SECRET, OPT_OS, OPT_TIMESTAMP, OPT_PFS, OPT_ALLOW_INSECURE_CRYPTO, OPT_PROXY_AUTH, OPT_HTTP_AUTH, OPT_LOCAL_HOSTNAME, OPT_PROTOCOL, OPT_PASSTOS, OPT_VERSION, OPT_SERVER, }; #ifdef __sun__ /* * The 'name' field in Solaris 'struct option' lacks the 'const', and causes * lots of warnings unless we cast it... https://www.illumos.org/issues/1881 */ #define OPTION(name, arg, abbrev) {(char *)name, arg, NULL, abbrev} #else #define OPTION(name, arg, abbrev) {name, arg, NULL, abbrev} #endif static const struct option long_options[] = { #ifndef _WIN32 OPTION("background", 0, 'b'), OPTION("pid-file", 1, OPT_PIDFILE), OPTION("setuid", 1, 'U'), OPTION("script-tun", 0, 'S'), OPTION("syslog", 0, 'l'), OPTION("csd-user", 1, OPT_CSD_USER), OPTION("csd-wrapper", 1, OPT_CSD_WRAPPER), #endif OPTION("pfs", 0, OPT_PFS), OPTION("allow-insecure-crypto", 0, OPT_ALLOW_INSECURE_CRYPTO), OPTION("certificate", 1, 'c'), OPTION("sslkey", 1, 'k'), OPTION("cookie", 1, 'C'), OPTION("compression", 1, OPT_COMPRESSION), OPTION("deflate", 0, 'd'), OPTION("juniper", 0, OPT_JUNIPER), OPTION("no-deflate", 0, 'D'), OPTION("cert-expire-warning", 1, 'e'), OPTION("usergroup", 1, 'g'), OPTION("help", 0, 'h'), OPTION("http-auth", 1, OPT_HTTP_AUTH), OPTION("interface", 1, 'i'), OPTION("mtu", 1, 'm'), OPTION("base-mtu", 1, OPT_BASEMTU), OPTION("script", 1, 's'), OPTION("timestamp", 0, OPT_TIMESTAMP), OPTION("passtos", 0, OPT_PASSTOS), OPTION("key-password", 1, 'p'), OPTION("proxy", 1, 'P'), OPTION("proxy-auth", 1, OPT_PROXY_AUTH), OPTION("user", 1, 'u'), OPTION("verbose", 0, 'v'), OPTION("version", 0, 'V'), OPTION("cafile", 1, OPT_CAFILE), OPTION("config", 1, OPT_CONFIGFILE), OPTION("no-dtls", 0, OPT_NO_DTLS), OPTION("authenticate", 0, OPT_AUTHENTICATE), OPTION("cookieonly", 0, OPT_COOKIEONLY), OPTION("printcookie", 0, OPT_PRINTCOOKIE), OPTION("quiet", 0, 'q'), OPTION("queue-len", 1, 'Q'), OPTION("xmlconfig", 1, 'x'), OPTION("cookie-on-stdin", 0, OPT_COOKIE_ON_STDIN), OPTION("passwd-on-stdin", 0, OPT_PASSWORD_ON_STDIN), OPTION("no-passwd", 0, OPT_NO_PASSWD), OPTION("reconnect-timeout", 1, OPT_RECONNECT_TIMEOUT), OPTION("dtls-ciphers", 1, OPT_DTLS_CIPHERS), OPTION("dtls12-ciphers", 1, OPT_DTLS12_CIPHERS), OPTION("authgroup", 1, OPT_AUTHGROUP), OPTION("servercert", 1, OPT_SERVERCERT), OPTION("resolve", 1, OPT_RESOLVE), OPTION("key-password-from-fsid", 0, OPT_KEY_PASSWORD_FROM_FSID), OPTION("useragent", 1, OPT_USERAGENT), OPTION("version-string", 1, OPT_VERSION), OPTION("local-hostname", 1, OPT_LOCAL_HOSTNAME), OPTION("disable-ipv6", 0, OPT_DISABLE_IPV6), OPTION("no-proxy", 0, OPT_NO_PROXY), OPTION("libproxy", 0, OPT_LIBPROXY), OPTION("no-http-keepalive", 0, OPT_NO_HTTP_KEEPALIVE), OPTION("no-cert-check", 0, OPT_NO_CERT_CHECK), OPTION("force-dpd", 1, OPT_FORCE_DPD), OPTION("force-trojan", 1, OPT_FORCE_TROJAN), OPTION("non-inter", 0, OPT_NON_INTER), OPTION("dtls-local-port", 1, OPT_DTLS_LOCAL_PORT), OPTION("token-mode", 1, OPT_TOKEN_MODE), OPTION("token-secret", 1, OPT_TOKEN_SECRET), OPTION("os", 1, OPT_OS), OPTION("no-xmlpost", 0, OPT_NO_XMLPOST), OPTION("dump-http-traffic", 0, OPT_DUMP_HTTP), OPTION("no-system-trust", 0, OPT_NO_SYSTEM_TRUST), OPTION("protocol", 1, OPT_PROTOCOL), OPTION("form-entry", 1, 'F'), #ifdef OPENCONNECT_GNUTLS OPTION("gnutls-debug", 1, OPT_GNUTLS_DEBUG), OPTION("gnutls-priority", 1, OPT_CIPHERSUITES), #elif defined(OPENCONNECT_OPENSSL) OPTION("openssl-ciphers", 1, OPT_CIPHERSUITES), #endif OPTION("server", 1, OPT_SERVER), OPTION(NULL, 0, 0) }; #ifdef OPENCONNECT_GNUTLS static void oc_gnutls_log_func(int level, const char *str) { fputs(str, stderr); } #endif #ifdef _WIN32 static int __attribute__ ((format(printf, 2, 0))) vfprintf_utf8(FILE *f, const char *fmt, va_list args) { HANDLE h = GetStdHandle(f == stdout ? STD_OUTPUT_HANDLE : STD_ERROR_HANDLE); wchar_t wbuf[1024]; char buf[1024]; int bytes, wchars; /* No need to NUL-terminate strings here */ bytes = _vsnprintf(buf, sizeof(buf), fmt, args); if (bytes < 0) return bytes; if (bytes > sizeof(buf)) bytes = sizeof(buf); wchars = MultiByteToWideChar(CP_UTF8, 0, buf, bytes, wbuf, ARRAY_SIZE(wbuf)); if (!wchars) return -1; /* * If writing to console fails, that's probably due to redirection. * Convert to console CP and write to the FH, following the example of * https://github.com/wine-mirror/wine/blob/e909986e6e/programs/whoami/main.c#L33-L49 */ if (!WriteConsoleW(h, wbuf, wchars, NULL, NULL)) { bytes = WideCharToMultiByte(GetConsoleOutputCP(), 0, wbuf, wchars, buf, sizeof(buf), NULL, NULL); if (!bytes) return -1; return fwrite(buf, 1, bytes, f); } return bytes; } static int __attribute__ ((format(printf, 2, 3))) fprintf_utf8(FILE *f, const char *fmt, ...) { va_list args; int ret; va_start(args, fmt); ret = vfprintf_utf8(f, fmt, args); va_end(args); return ret; } static wchar_t **argv_w; /* This isn't so much "convert" the arg to UTF-8, as go grubbing * around in the real UTF-16 command line and find the corresponding * argument *there*, and convert *that* to UTF-8. Ick. But the * alternative is to implement wgetopt(), and that's even more horrid. */ static char *convert_arg_to_utf8(char **argv, char *arg) { char *utf8; int chars; int offset; if (!argv_w) { int argc_w; argv_w = CommandLineToArgvW(GetCommandLineW(), &argc_w); if (!argv_w) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("CommandLineToArgvW() failed: %s\n"), errstr); free(errstr); exit(1); } } offset = arg - argv[optind - 1]; /* Sanity check */ if (offset < 0 || offset >= strlen(argv[optind - 1]) || (offset && (argv[optind - 1][offset-1] != '=' || argv_w[optind - 1][offset - 1] != '='))) { fprintf(stderr, _("Fatal error in command line handling\n")); exit(1); } chars = WideCharToMultiByte(CP_UTF8, 0, argv_w[optind-1] + offset, -1, NULL, 0, NULL, NULL); utf8 = malloc(chars); if (!utf8) return arg; WideCharToMultiByte(CP_UTF8, 0, argv_w[optind-1] + offset, -1, utf8, chars, NULL, NULL); return utf8; } #undef fprintf #undef vfprintf #define fprintf fprintf_utf8 #define vfprintf vfprintf_utf8 #define is_arg_utf8(str) (0) static void read_stdin(char **string, int hidden, int allow_fail) { CONSOLE_READCONSOLE_CONTROL rcc = { sizeof(rcc), 0, 13, 0 }; HANDLE stdinh = GetStdHandle(STD_INPUT_HANDLE); DWORD cmode, nr_read, last_error; wchar_t wbuf[1024]; char *buf; if (GetConsoleMode(stdinh, &cmode)) { if (hidden) SetConsoleMode(stdinh, cmode & (~ENABLE_ECHO_INPUT)); SetLastError(0); if (!ReadConsoleW(stdinh, wbuf, ARRAY_SIZE(wbuf), &nr_read, &rcc)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("ReadConsole() failed: %s\n"), errstr); free(errstr); *string = NULL; if (hidden) SetConsoleMode(stdinh, cmode); return; } last_error = GetLastError(); if (hidden) SetConsoleMode(stdinh, cmode); if (!nr_read) { if (allow_fail) { *string = NULL; return; } else { if (last_error == ERROR_OPERATION_ABORTED) { fprintf(stderr, _("Operation aborted by user\n")); } else { /* Should never happen */ fprintf(stderr, _("ReadConsole() didn't read any input\n")); } exit(1); } } } else { /* Not a console; maybe reading from a piped stdin? */ if (!fgetws(wbuf, ARRAY_SIZE(wbuf), stdin)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("fgetws() failed: %s\n"), errstr); free(errstr); *string = NULL; return; } nr_read = wcslen(wbuf); } if (nr_read >= 2 && wbuf[nr_read - 1] == 10 && wbuf[nr_read - 2] == 13) { /* remove trailing "\r\n" */ wbuf[nr_read - 2] = 0; nr_read -= 2; } else if (nr_read >= 1 && wbuf[nr_read - 1] == 10) { /* remove trailing "\n" */ wbuf[nr_read - 1] = 0; nr_read -= 1; } nr_read = WideCharToMultiByte(CP_UTF8, 0, wbuf, -1, NULL, 0, NULL, NULL); if (!nr_read) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("Error converting console input: %s\n"), errstr); free(errstr); return; } buf = malloc(nr_read); if (!buf) { fprintf(stderr, _("Allocation failure for string from stdin\n")); exit(1); } if (!WideCharToMultiByte(CP_UTF8, 0, wbuf, -1, buf, nr_read, NULL, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); fprintf(stderr, _("Error converting console input: %s\n"), errstr); free(errstr); free(buf); return; } *string = buf; } #elif defined(HAVE_ICONV) #include static int is_ascii(char *str) { while (str && *str) { if ((unsigned char)*str > 0x7f) return 0; str++; } return 1; } static int __attribute__ ((format(printf, 2, 0))) vfprintf_utf8(FILE *f, const char *fmt, va_list args) { char *utf8_str; iconv_t ic; int ret; char outbuf[80]; ICONV_CONST char *ic_in; char *ic_out; size_t insize, outsize; if (!legacy_charset) return vfprintf(f, fmt, args); ret = vasprintf(&utf8_str, fmt, args); if (ret < 0) return -1; if (is_ascii(utf8_str)) return fwrite(utf8_str, 1, strlen(utf8_str), f); ic = iconv_open(legacy_charset, "UTF-8"); if (ic == (iconv_t) -1) { /* Better than nothing... */ ret = fprintf(f, "%s", utf8_str); free(utf8_str); return ret; } ic_in = utf8_str; insize = strlen(utf8_str); ret = 0; while (insize) { ic_out = outbuf; outsize = sizeof(outbuf) - 1; if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == EILSEQ) { do { ic_in++; insize--; } while (insize && (ic_in[0] & 0xc0) == 0x80); ic_out[0] = '?'; outsize--; } else if (errno != E2BIG) break; } ret += fwrite(outbuf, 1, sizeof(outbuf) - 1 - outsize, f); } iconv_close(ic); return ret; } static int __attribute__ ((format(printf, 2, 3))) fprintf_utf8(FILE *f, const char *fmt, ...) { va_list args; int ret; va_start(args, fmt); ret = vfprintf_utf8(f, fmt, args); va_end(args); return ret; } static char *convert_to_utf8(char *legacy, int free_it) { char *utf8_str; iconv_t ic; ICONV_CONST char *ic_in; char *ic_out; size_t insize, outsize; if (!legacy_charset || is_ascii(legacy)) return legacy; ic = iconv_open("UTF-8", legacy_charset); if (ic == (iconv_t) -1) return legacy; insize = strlen(legacy) + 1; ic_in = legacy; outsize = insize; ic_out = utf8_str = malloc(outsize); if (!utf8_str) { enomem: iconv_close(ic); return legacy; } while (insize) { if (iconv(ic, &ic_in, &insize, &ic_out, &outsize) == (size_t)-1) { if (errno == E2BIG) { int outlen = ic_out - utf8_str; realloc_inplace(utf8_str, outlen + 10); if (!utf8_str) goto enomem; ic_out = utf8_str + outlen; outsize = 10; } else { /* Should never happen */ perror("iconv"); free(utf8_str); goto enomem; } } } iconv_close(ic); if (free_it) free(legacy); return utf8_str; } #define fprintf fprintf_utf8 #define vfprintf vfprintf_utf8 #define convert_arg_to_utf8(av, l) convert_to_utf8((l), 0) #define is_arg_utf8(a) (!legacy_charset || is_ascii(a)) #else #define convert_to_utf8(l,f) (l) #define convert_arg_to_utf8(av, l) (l) #define is_arg_utf8(a) (1) #endif static void helpmessage(void) { printf(_("For assistance with OpenConnect, please see the web page at\n" " https://www.infradead.org/openconnect/mail.html\n")); } static void print_build_opts(void) { const char *comma = ", ", *sep = comma + 1; printf(_("Using %s. Features present:"), openconnect_get_tls_library_version()); if (openconnect_has_tss_blob_support()) { printf("%sTPM", sep); sep = comma; } if (openconnect_has_tss2_blob_support()) { printf("%sTPMv2", sep); sep = comma; } #if defined(OPENCONNECT_OPENSSL) && defined(HAVE_ENGINE) else { printf("%sTPM (%s)", sep, _("OpenSSL ENGINE not present")); sep = comma; } #endif if (openconnect_has_pkcs11_support()) { printf("%sPKCS#11", sep); sep = comma; } if (openconnect_has_stoken_support()) { printf("%sRSA software token", sep); sep = comma; } switch(openconnect_has_oath_support()) { case 2: printf("%sHOTP software token", sep); sep = comma; /* fall through */ case 1: printf("%sTOTP software token", sep); sep = comma; } if (openconnect_has_yubioath_support()) { printf("%sYubikey OATH", sep); sep = comma; } if (openconnect_has_system_key_support()) { printf("%sSystem keys", sep); sep = comma; } #ifdef HAVE_DTLS printf("%sDTLS", sep); #endif #ifdef HAVE_ESP printf("%sESP", sep); #endif printf("\n"); #if !defined(HAVE_DTLS) || !defined(HAVE_ESP) printf(_("WARNING: This binary lacks DTLS and/or ESP support. Performance will be impaired.\n")); #endif } static void print_supported_protocols(void) { const char *comma = ", ", *sep = comma + 1; struct oc_vpn_proto *protos, *p; int n; n = openconnect_get_supported_protocols(&protos); if (n>=0) { printf(_("Supported protocols:")); for (p=protos; n; p++, n--) { printf("%s%s%s", sep, p->name, p==protos ? _(" (default)") : ""); sep = comma; } printf("\n"); free(protos); } } static void print_supported_protocols_usage(void) { struct oc_vpn_proto *protos, *p; int n; n = openconnect_get_supported_protocols(&protos); if (n>=0) { printf("\n%s:\n", _("Set VPN protocol")); for (p=protos; n; p++, n--) printf(" --protocol=%-16s %s%s\n", p->name, p->description, p==protos ? _(" (default)") : ""); openconnect_free_supported_protocols(protos); } } #ifndef _WIN32 static const char default_vpncscript[] = DEFAULT_VPNCSCRIPT; static void read_stdin(char **string, int hidden, int allow_fail) { char *c, *got, *buf = malloc(1025); int fd = fileno(stdin); struct termios t; if (!buf) { fprintf(stderr, _("Allocation failure for string from stdin\n")); exit(1); } if (hidden) { tcgetattr(fd, &t); t.c_lflag &= ~ECHO; tcsetattr(fd, TCSANOW, &t); } got = fgets(buf, 1025, stdin); if (hidden) { t.c_lflag |= ECHO; tcsetattr(fd, TCSANOW, &t); fprintf(stderr, "\n"); } if (!got) { if (allow_fail) { *string = NULL; free(buf); return; } else { perror(_("fgets (stdin)")); exit(1); } } c = strchr(buf, '\n'); if (c) *c = 0; *string = convert_to_utf8(buf, 1); } static void handle_signal(int sig) { char cmd; switch (sig) { case SIGTERM: cmd = OC_CMD_CANCEL; break; case SIGHUP: cmd = OC_CMD_DETACH; break; case SIGINT: #ifdef INSECURE_DEBUGGING cmd = OC_CMD_DETACH; #else cmd = OC_CMD_CANCEL; #endif break; case SIGUSR1: cmd = OC_CMD_STATS; break; case SIGUSR2: default: cmd = OC_CMD_PAUSE; break; } if (write(sig_cmd_fd, &cmd, 1) < 0) { /* suppress warn_unused_result */ } if (sig_vpninfo) sig_vpninfo->need_poll_cmd_fd = 1; } #else /* _WIN32 */ static const char *default_vpncscript; static void set_default_vpncscript(void) { if (PathIsRelative(DEFAULT_VPNCSCRIPT)) { char *c = strrchr(_pgmptr, '\\'); if (!c) { fprintf(stderr, _("Cannot process this executable path \"%s\""), _pgmptr); exit(1); } if (asprintf((char **)&default_vpncscript, "%.*s%s", (c - _pgmptr + 1), _pgmptr, DEFAULT_VPNCSCRIPT) < 0) { fprintf(stderr, _("Allocation for vpnc-script path failed\n")); exit(1); } } else { default_vpncscript = "cscript " DEFAULT_VPNCSCRIPT; } } static BOOL WINAPI console_ctrl_handler(DWORD dwCtrlType) { char cmd; /* Note: this function always runs in a separate thread */ switch (dwCtrlType) { case CTRL_C_EVENT: case CTRL_CLOSE_EVENT: case CTRL_LOGOFF_EVENT: case CTRL_SHUTDOWN_EVENT: cmd = OC_CMD_CANCEL; break; case CTRL_BREAK_EVENT: cmd = OC_CMD_DETACH; break; default: return FALSE; } /* Use send() here since, on Windows, sig_cmd_fd is a socket descriptor */ send(sig_cmd_fd, &cmd, 1, 0); if (sig_vpninfo) sig_vpninfo->need_poll_cmd_fd = 1; return TRUE; } #endif static void print_default_vpncscript(void) { printf("%s %s\n", _("Default vpnc-script (override with --script):"), default_vpncscript); } static struct oc_vpn_option *gai_overrides; static int gai_override_cb(void *cbdata, const char *node, const char *service, const struct addrinfo *hints, struct addrinfo **res) { struct openconnect_info *vpninfo = cbdata; struct oc_vpn_option *p = gai_overrides; while (p) { if (!strcmp(node, p->option)) { vpn_progress(vpninfo, PRG_TRACE, _("Override hostname '%s' to '%s'\n"), node, p->value); node = p->value; break; } p = p->next; } return getaddrinfo(node, service, hints, res); } static void usage(void) { printf(_("Usage: openconnect [options] \n")); printf(_("Open client for multiple VPN protocols, version %s\n\n"), openconnect_version_str); print_build_opts(); printf(" --config=CONFIGFILE %s\n", _("Read options from config file")); printf(" -V, --version %s\n", _("Report version number")); printf(" -h, --help %s\n", _("Display help text")); print_supported_protocols_usage(); printf("\n%s:\n", _("Authentication")); printf(" -u, --user=NAME %s\n", _("Set login username")); printf(" --no-passwd %s\n", _("Disable password/SecurID authentication")); printf(" --non-inter %s\n", _("Do not expect user input; exit if it is required")); printf(" --passwd-on-stdin %s\n", _("Read password from standard input")); printf(" --authgroup=GROUP %s\n", _("Choose authentication login selection")); printf(" -F, --form-entry=FORM:OPT=VALUE %s\n", _("Provide authentication form responses")); printf(" -c, --certificate=CERT %s\n", _("Use SSL client certificate CERT")); printf(" -k, --sslkey=KEY %s\n", _("Use SSL private key file KEY")); printf(" -e, --cert-expire-warning=DAYS %s\n", _("Warn when certificate lifetime < DAYS")); printf(" -g, --usergroup=GROUP %s\n", _("Set login usergroup")); printf(" -p, --key-password=PASS %s\n", _("Set key passphrase or TPM SRK PIN")); printf(" --key-password-from-fsid %s\n", _("Key passphrase is fsid of file system")); printf(" --token-mode=MODE %s\n", _("Software token type: rsa, totp, hotp or oidc")); printf(" --token-secret=STRING %s\n", _("Software token secret or oidc token")); #ifndef HAVE_LIBSTOKEN printf(" %s\n", _("(NOTE: libstoken (RSA SecurID) disabled in this build)")); #endif #ifndef HAVE_LIBPCSCLITE printf(" %s\n", _("(NOTE: Yubikey OATH disabled in this build)")); #endif printf("\n%s:\n", _("Server validation")); printf(" --servercert=FINGERPRINT %s\n", _("Accept only server certificate with this fingerprint")); printf(" --no-system-trust %s\n", _("Disable default system certificate authorities")); printf(" --cafile=FILE %s\n", _("Cert file for server verification")); printf("\n%s:\n", _("Internet connectivity")); printf(" --server=SERVER %s\n", _("Set VPN server")); printf(" -P, --proxy=URL %s\n", _("Set proxy server")); printf(" --proxy-auth=METHODS %s\n", _("Set proxy authentication methods")); printf(" --no-proxy %s\n", _("Disable proxy")); printf(" --libproxy %s\n", _("Use libproxy to automatically configure proxy")); #ifndef LIBPROXY_HDR printf(" %s\n", _("(NOTE: libproxy disabled in this build)")); #endif printf(" --reconnect-timeout %s\n", _("Connection retry timeout in seconds")); printf(" --resolve=HOST:IP %s\n", _("Use IP when connecting to HOST")); printf(" --passtos %s\n", _("Copy TOS / TCLASS field into DTLS and ESP packets")); printf(" --dtls-local-port=PORT %s\n", _("Set local port for DTLS and ESP datagrams")); printf("\n%s:\n", _("Authentication (two-phase)")); printf(" -C, --cookie=COOKIE %s\n", _("Use authentication cookie COOKIE")); printf(" --cookie-on-stdin %s\n", _("Read cookie from standard input")); printf(" --authenticate %s\n", _("Authenticate only and print login info")); printf(" --cookieonly %s\n", _("Fetch and print cookie only; don't connect")); printf(" --printcookie %s\n", _("Print cookie before connecting")); #ifndef _WIN32 printf("\n%s:\n", _("Process control")); printf(" -b, --background %s\n", _("Continue in background after startup")); printf(" --pid-file=PIDFILE %s\n", _("Write the daemon's PID to this file")); printf(" -U, --setuid=USER %s\n", _("Drop privileges after connecting")); #endif printf("\n%s:\n", _("Logging (two-phase)")); #ifndef _WIN32 printf(" -l, --syslog %s\n", _("Use syslog for progress messages")); #endif printf(" -v, --verbose %s\n", _("More output")); printf(" -q, --quiet %s\n", _("Less output")); printf(" --dump-http-traffic %s\n", _("Dump HTTP authentication traffic (implies --verbose)")); printf(" --timestamp %s\n", _("Prepend timestamp to progress messages")); printf("\n%s:\n", _("VPN configuration script")); printf(" -i, --interface=IFNAME %s\n", _("Use IFNAME for tunnel interface")); printf(" -s, --script=SCRIPT %s\n", _("Shell command line for using a vpnc-compatible config script")); printf(" %s: \"%s\"\n", _("default"), default_vpncscript); #ifndef _WIN32 printf(" -S, --script-tun %s\n", _("Pass traffic to 'script' program, not tun")); #endif printf("\n%s:\n", _("Tunnel control")); printf(" --disable-ipv6 %s\n", _("Do not ask for IPv6 connectivity")); printf(" -x, --xmlconfig=CONFIG %s\n", _("XML config file")); printf(" -m, --mtu=MTU %s\n", _("Request MTU from server (legacy servers only)")); printf(" --base-mtu=MTU %s\n", _("Indicate path MTU to/from server")); printf(" -d, --deflate %s\n", _("Enable stateful compression (default is stateless only)")); printf(" -D, --no-deflate %s\n", _("Disable all compression")); printf(" --force-dpd=INTERVAL %s\n", _("Set Dead Peer Detection interval (in seconds)")); printf(" --pfs %s\n", _("Require perfect forward secrecy")); printf(" --no-dtls %s\n", _("Disable DTLS and ESP")); printf(" --dtls-ciphers=LIST %s\n", _("OpenSSL ciphers to support for DTLS")); printf(" -Q, --queue-len=LEN %s\n", _("Set packet queue limit to LEN pkts")); printf("\n%s:\n", _("Local system information")); printf(" --useragent=STRING %s\n", _("HTTP header User-Agent: field")); printf(" --local-hostname=STRING %s\n", _("Local hostname to advertise to server")); printf(" --os=STRING %s\n", _("OS type to report. Allowed values are the following:")); printf(" %s\n", _("linux, linux-64, win, mac-intel, android, apple-ios")); printf(" --version-string=STRING %s\n", _("reported version string during authentication")); printf(" (%s %s)\n", _("default:"), openconnect_version_str); printf("\n%s:\n", _("Trojan binary (CSD) execution")); #ifndef _WIN32 printf(" --csd-user=USER %s\n", _("Drop privileges during trojan execution")); printf(" --csd-wrapper=SCRIPT %s\n", _("Run SCRIPT instead of trojan binary")); #endif printf(" --force-trojan=INTERVAL %s\n", _("Set minimum interval between trojan runs (in seconds)")); printf("\n%s:\n", _("Server bugs")); printf(" --no-http-keepalive %s\n", _("Disable HTTP connection re-use")); printf(" --no-xmlpost %s\n", _("Do not attempt XML POST authentication")); printf(" --allow-insecure-crypto %s\n", _("Allow use of the ancient, insecure 3DES and RC4 ciphers")); printf("\n"); helpmessage(); exit(1); } static FILE *config_file; /* static variable initialised to NULL */ static int config_line_num; /* static variable initialised to 0 */ static char *xstrdup(const char *arg) { char *ret; if (!arg) return NULL; ret = strdup(arg); if (!ret) { fprintf(stderr, _("Failed to allocate string\n")); exit(1); } return ret; } /* There are three ways to handle config_arg: * * 1. We only care about it transiently and it can be lost entirely * (e.g. vpninfo->reconnect_timeout = atoi(config_arg); * 2. We need to keep it, but it's a static string and will never be freed * so when it's part of argv[] we can use it in place (unless it needs * converting to UTF-8), but when it comes from a file we have to strdup() * because otherwise it'll be overwritten. * For this we use the keep_config_arg() macro below. * 3. It may be freed during normal operation, so we have to use strdup() * or convert_arg_to_utf8() even when it's an option from argv[]. * (e.g. vpninfo->certinfo[0].password). * For this we use the dup_config_arg() macro below. */ #define keep_config_arg() \ (config_file ? xstrdup(config_arg) : convert_arg_to_utf8(argv, config_arg)) #define dup_config_arg() __dup_config_arg(argv, config_arg) static inline char *__dup_config_arg(char **argv, char *config_arg) { char *res; if (config_file || is_arg_utf8(config_arg)) return xstrdup(config_arg); res = convert_arg_to_utf8(argv, config_arg); /* Force a copy, even if conversion failed */ if (res == config_arg) res = xstrdup(res); return res; } static int next_option(int argc, char **argv, char **config_arg) { /* These get re-used */ static char *line_buf; /* static variable initialised to NULL */ static size_t line_size; /* static variable initialised to 0 */ ssize_t llen; int opt, optlen = 0; const struct option *this; char *line; int ate_equals = 0; next: if (!config_file) { opt = getopt_long(argc, argv, #ifdef _WIN32 "C:c:Dde:F:g:hi:k:m:P:p:Q:qs:u:Vvx:", #else "bC:c:Dde:F:g:hi:k:lm:P:p:Q:qSs:U:u:Vvx:", #endif long_options, NULL); *config_arg = optarg; return opt; } llen = getline(&line_buf, &line_size, config_file); if (llen < 0) { if (feof(config_file)) { fclose(config_file); config_file = NULL; goto next; } fprintf(stderr, _("Failed to get line from config file: %s\n"), strerror(errno)); exit(1); } line = line_buf; /* Strip the trailing newline (coping with DOS newlines) */ if (llen && line[llen-1] == '\n') line[--llen] = 0; if (llen && line[llen-1] == '\r') line[--llen] = 0; /* Skip and leading whitespace */ while (line[0] == ' ' || line[0] == '\t' || line[0] == '\r') line++; /* Ignore comments and empty lines */ if (!line[0] || line[0] == '#') { config_line_num++; goto next; } /* Try to match on a known option... naïvely. This could be improved. */ for (this = long_options; this->name; this++) { optlen = strlen(this->name); /* If the option isn't followed by whitespace or NUL, or perhaps an equals sign if the option takes an argument, then it's not a match */ if (!strncmp(this->name, line, optlen) && (!line[optlen] || line[optlen] == ' ' || line[optlen] == '\t' || line[optlen] == '=')) break; } if (!this->name) { char *l; for (l = line; *l && *l != ' ' && *l != '\t'; l++) ; *l = 0; fprintf(stderr, _("Unrecognised option at line %d: '%s'\n"), config_line_num, line); return '?'; } line += optlen; while (*line == ' ' || *line == '\t' || (*line == '=' && this->has_arg && !ate_equals && ++ate_equals)) line++; if (!this->has_arg && *line) { fprintf(stderr, _("Option '%s' does not take an argument at line %d\n"), this->name, config_line_num); return '?'; } else if (this->has_arg == 1 && !*line) { fprintf(stderr, _("Option '%s' requires an argument at line %d\n"), this->name, config_line_num); return '?'; } else if (this->has_arg == 2 && !*line) { line = NULL; } config_line_num++; *config_arg = line; return this->val; } static void assert_nonnull_config_arg(const char *opt, const char *config_arg) { if (!config_arg) { /* Should never happen */ fprintf(stderr, _("Internal error; option '%s' unexpectedly yielded null config_arg\n"), opt); exit(1); /* Shut static analyzer up */ } } #ifndef _WIN32 static void get_uids(const char *config_arg, uid_t *uid, gid_t *gid) { char *strend; struct passwd *pw; int e; *uid = strtol(config_arg, &strend, 0); if (strend[0]) { pw = getpwnam(config_arg); if (!pw) { e = errno; fprintf(stderr, _("Invalid user \"%s\": %s\n"), config_arg, strerror(e)); exit(1); } *uid = pw->pw_uid; *gid = pw->pw_gid; } else { pw = getpwuid(*uid); if (!pw) { e = errno; fprintf(stderr, _("Invalid user ID \"%d\": %s\n"), (int)*uid, strerror(e)); exit(1); } *gid = pw->pw_gid; } } #endif static int complete_words(const char *comp_opt, int prefixlen, ...) { int partlen = strlen(comp_opt + prefixlen); va_list vl; char *check; va_start(vl, prefixlen); while ( (check = va_arg(vl, char *)) ) { if (!strncmp(comp_opt + prefixlen, check, partlen)) printf("%.*s%s\n", prefixlen, comp_opt, check); } va_end(vl); return 0; } static int autocomplete_special(const char *verb, const char *prefix, int prefixlen, const char *filterpat) { printf("%s\n", verb); printf("%s\n", filterpat ? : "''"); if (prefixlen) printf("%.*s\n", prefixlen, prefix); return 0; } static int autocomplete(int argc, char **argv) { int opt; const char *comp_cword = getenv("COMP_CWORD"); char *comp_opt; int cword, longidx, prefixlen = 0; /* Skip over the --autocomplete */ argc--; argv++; if (!comp_cword) return -EINVAL; cword = atoi(comp_cword); if (cword <= 0 || cword > argc) return -EINVAL; comp_opt = argv[cword]; if (!comp_opt) return -EINVAL; opterr = 0; while (argv[optind]) { /* If optind is the one that is being autocompleted, don't * let getopt_long() see it; we process it directly. */ if (argv[optind] == comp_opt) { if (!strncmp(comp_opt, "--", 2)) { const char *arg = strchr(comp_opt, '='); int matchlen; if (arg) { /* We have --option=... so complete the arg */ matchlen = arg - comp_opt - 2; for (longidx = 0; long_options[longidx].name; longidx++) { if (!strncmp(comp_opt + 2, long_options[longidx].name, matchlen)) { prefixlen = matchlen + 3; opt = long_options[longidx].val; goto got_opt; } } } else { /* Not --option= just --opt so complete the option name(s) */ comp_opt += 2; autocomplete_optname: matchlen = strlen(comp_opt); for (longidx = 0; long_options[longidx].name; longidx++) { if (!strncmp(comp_opt, long_options[longidx].name, matchlen)) { printf("--%s\n", long_options[longidx].name); } } } } else if (comp_opt[0] == '-') { if (!comp_opt[1]) { /* Just a single dash. Autocomplete like '--' with all the (long) options */ comp_opt++; goto autocomplete_optname; } /* Single-char -X option, with or without an argument. */ for (longidx = 0; long_options[longidx].name; longidx++) { if (comp_opt[1] == long_options[longidx].val) { if (comp_opt[2]) { if (long_options[longidx].has_arg) { prefixlen = 2; opt = long_options[longidx].val; goto got_opt; } } else { /* Just the option; complete to the long name of same. */ printf("--%s\n", long_options[longidx].name); } break; } } } else printf("HOSTNAME\n"); return 0; } /* Skip over non-option elements, in an attempt to prevent * getopt_long() from reordering the array as we go. The problem * is that we've seen it *delay* the reordering. So it processes * the argv element *after* the non-option, but argv[optind] is * still pointing to the non-option. */ if (argv[optind][0] != '-') { optind++; continue; } opt = getopt_long(argc, argv, #ifdef _WIN32 "C:c:Dde:F:g:hi:k:m:P:p:Q:qs:u:Vvx:", #else "bC:c:Dde:F:g:hi:k:lm:P:p:Q:qSs:U:u:Vvx:", #endif long_options, &longidx); if (opt == -1) break; if (optarg == comp_opt) { prefixlen = 0; got_opt: switch (opt) { case 'k': /* --sslkey */ case 'c': /* --certificate */ if (!strncmp(comp_opt + prefixlen, "pkcs11:", 7)) { /* We could do clever things here... */ return 0; /* .. but we don't. */ } autocomplete_special("FILENAME", comp_opt, prefixlen, "!*.@(pem|der|p12|crt)"); break; case OPT_CAFILE: /* --cafile */ autocomplete_special("FILENAME", comp_opt, prefixlen, "!*.@(pem|der|crt)"); break; case 'x': /* --xmlconfig */ autocomplete_special("FILENAME", comp_opt, prefixlen, "!*.xml"); break; case OPT_CONFIGFILE: /* --config */ case OPT_PIDFILE: /* --pid-file */ autocomplete_special("FILENAME", comp_opt, prefixlen, NULL); break; case 's': /* --script */ case OPT_CSD_WRAPPER: /* --csd-wrapper */ autocomplete_special("EXECUTABLE", comp_opt, prefixlen, NULL); break; case OPT_LOCAL_HOSTNAME: /* --local-hostname */ autocomplete_special("HOSTNAME", comp_opt, prefixlen, NULL); break; case OPT_CSD_USER: /* --csd-user */ case 'U': /* --setuid */ autocomplete_special("USERNAME", comp_opt, prefixlen, NULL); break; case OPT_OS: /* --os */ complete_words(comp_opt, prefixlen, "mac-intel", "android", "linux-64", "linux", "apple-ios", "win", NULL); break; case OPT_COMPRESSION: /* --compression */ complete_words(comp_opt, prefixlen, "none", "off", "all", "stateless", NULL); break; case OPT_PROTOCOL: /* --protocol */ { struct oc_vpn_proto *protos, *p; int partlen = strlen(comp_opt + prefixlen); if (openconnect_get_supported_protocols(&protos) >= 0) { for (p = protos; p->name; p++) { if(!strncmp(comp_opt + prefixlen, p->name, partlen)) printf("%.*s%s\n", prefixlen, comp_opt, p->name); } free(protos); } break; } case OPT_HTTP_AUTH: /* --http-auth */ case OPT_PROXY_AUTH: /* --proxy-auth */ /* FIXME: Expand latest list item */ break; case OPT_TOKEN_MODE: /* --token-mode */ complete_words(comp_opt, prefixlen, "totp", "hotp", "oidc", NULL); if (openconnect_has_stoken_support()) complete_words(comp_opt, prefixlen, "rsa", NULL); if (openconnect_has_yubioath_support()) complete_words(comp_opt, prefixlen, "yubioath", NULL); break; case OPT_TOKEN_SECRET: /* --token-secret */ switch (comp_opt[prefixlen]) { case '@': prefixlen++; /* Fall through */ case 0: case '/': autocomplete_special("FILENAME", comp_opt, prefixlen, NULL); break; } break; case OPT_SERVER: /* --server */ autocomplete_special("HOSTNAME", comp_opt, prefixlen, NULL); break; case 'i': /* --interface */ /* FIXME: Enumerate available tun devices */ break; case OPT_SERVERCERT: /* --servercert */ /* We could do something really evil here and actually * connect, then return the result? */ break; /* No autocomplete for these but handle them explicitly so that * we can have automatic checking for *accidentally* unhandled * options. Right after we do automated checking of man page * entries and --help output for all supported options too. */ case 'e': /* --cert-expire-warning */ case 'C': /* --cookie */ case 'g': /* --usergroup */ case 'm': /* --mtu */ case OPT_BASEMTU: /* --base-mtu */ case 'p': /* --key-password */ case 'P': /* --proxy */ case 'u': /* --user */ case 'Q': /* --queue-len */ case OPT_RECONNECT_TIMEOUT: /* --reconnect-timeout */ case OPT_AUTHGROUP: /* --authgroup */ case OPT_RESOLVE: /* --resolve */ case OPT_USERAGENT: /* --useragent */ case OPT_VERSION: /* --version-string */ case OPT_FORCE_DPD: /* --force-dpd */ case OPT_FORCE_TROJAN: /* --force-trojan */ case OPT_DTLS_LOCAL_PORT: /* --dtls-local-port */ case 'F': /* --form-entry */ case OPT_GNUTLS_DEBUG: /* --gnutls-debug */ case OPT_CIPHERSUITES: /* --gnutls-priority */ case OPT_DTLS_CIPHERS: /* --dtls-ciphers */ case OPT_DTLS12_CIPHERS: /* --dtls12-ciphers */ break; default: fprintf(stderr, _("Unhandled autocomplete for option %d '--%s'. Please report.\n"), opt, long_options[longidx].name); return -ENOENT; } return 0; } } /* The only non-option argument we accept is the hostname */ printf("HOSTNAME\n"); return 0; } static void print_connection_info(struct openconnect_info *vpninfo) { const struct oc_ip_info *ip_info; const char *ssl_compr, *udp_compr, *dtls_state, *ssl_state; openconnect_get_ip_info(vpninfo, &ip_info, NULL, NULL); ssl_state = vpninfo->ssl_fd == -1 ? _("disconnected") : _("connected"); switch (vpninfo->dtls_state) { case DTLS_NOSECRET: dtls_state = _("unsuccessful"); break; case DTLS_SLEEPING: case DTLS_SECRET: case DTLS_CONNECTING: dtls_state = _("in progress"); break; case DTLS_DISABLED: dtls_state = _("disabled"); break; case DTLS_CONNECTED: dtls_state = _("connected"); break; case DTLS_ESTABLISHED: dtls_state = _("established"); break; default: dtls_state = _("unknown"); break; } ssl_compr = openconnect_get_cstp_compression(vpninfo); udp_compr = openconnect_get_dtls_compression(vpninfo); vpn_progress(vpninfo, PRG_INFO, _("Configured as %s%s%s, with SSL%s%s %s and %s%s%s %s\n"), ip_info->addr?:"", ((ip_info->netmask6 || ip_info->addr6) && ip_info->addr) ? " + " : "", ip_info->netmask6 ? : (ip_info->addr6 ? : ""), ssl_compr ? " + " : "", ssl_compr ? : "", ssl_state, vpninfo->proto->udp_protocol ? : "UDP", udp_compr ? " + " : "", udp_compr ? : "", dtls_state); if (vpninfo->auth_expiration != 0) vpn_progress(vpninfo, PRG_INFO, _("Session authentication will expire at %s\n"), ctime(&vpninfo->auth_expiration)); } static void print_connection_stats(void *_vpninfo, const struct oc_stats *stats) { struct openconnect_info *vpninfo = _vpninfo; int saved_loglevel = vpninfo->verbose; /* XX: print even if loglevel would otherwise suppress */ openconnect_set_loglevel(vpninfo, PRG_INFO); print_connection_info(vpninfo); vpn_progress(vpninfo, PRG_INFO, _("RX: %"PRId64" packets (%"PRId64" B); TX: %"PRId64" packets (%"PRId64" B)\n"), stats->rx_pkts, stats->rx_bytes, stats->tx_pkts, stats->tx_bytes); if (vpninfo->ssl_fd != -1) vpn_progress(vpninfo, PRG_INFO, _("SSL ciphersuite: %s\n"), openconnect_get_cstp_cipher(vpninfo)); if (vpninfo->dtls_state == DTLS_CONNECTED) vpn_progress(vpninfo, PRG_INFO, _("%s ciphersuite: %s\n"), vpninfo->proto->udp_protocol ? : "UDP", openconnect_get_dtls_cipher(vpninfo)); if (vpninfo->ssl_times.last_rekey && vpninfo->ssl_times.rekey) vpn_progress(vpninfo, PRG_INFO, _("Next SSL rekey in %ld seconds\n"), (long)(time(NULL) - vpninfo->ssl_times.last_rekey + vpninfo->ssl_times.rekey)); if (vpninfo->dtls_times.last_rekey && vpninfo->dtls_times.rekey) vpn_progress(vpninfo, PRG_INFO, _("Next %s rekey in %ld seconds\n"), vpninfo->proto->udp_protocol ? : "UDP", (long)(time(NULL) - vpninfo->ssl_times.last_rekey + vpninfo->ssl_times.rekey)); if (vpninfo->trojan_interval && vpninfo->last_trojan) vpn_progress(vpninfo, PRG_INFO, _("Next Trojan invocation in %ld seconds\n"), (long)(time(NULL) - vpninfo->last_trojan + vpninfo->trojan_interval)); /* XX: restore loglevel */ openconnect_set_loglevel(vpninfo, saved_loglevel); } #ifndef _WIN32 static int background_self(struct openconnect_info *vpninfo, char *pidfile) { FILE *fp = NULL; int pid; /* Open the pidfile before forking, so we can report errors more sanely. It's *possible* that we'll fail to write to it, but very unlikely. */ if (pidfile != NULL) { fp = openconnect_fopen_utf8(vpninfo, pidfile, "w"); if (!fp) { fprintf(stderr, _("Failed to open '%s' for write: %s\n"), pidfile, strerror(errno)); sig_vpninfo = NULL; openconnect_vpninfo_free(vpninfo); exit(1); } } pid = fork(); if (pid == -1) { vpn_perror(vpninfo, "Failed to continue in background\n"); exit(1); } else if (pid > 0) { if (fp) { fprintf(fp, "%d\n", pid); fclose(fp); } vpn_progress(vpninfo, PRG_INFO, _("Continuing in background; pid %d\n"), pid); sig_vpninfo = NULL; /* Don't invoke EPOLL_CTL_DEL; it'll mess up the real one */ #ifdef HAVE_EPOLL vpninfo->epoll_fd = -1; #endif openconnect_vpninfo_free(vpninfo); exit(0); } if (fp) fclose(fp); return !!fp; } #endif /* _WIN32 */ static void fully_up_cb(void *_vpninfo) { struct openconnect_info *vpninfo = _vpninfo; print_connection_info(vpninfo); #ifndef _WIN32 if (background) wrote_pid = background_self(vpninfo, pidfile); #ifndef __native_client__ if (use_syslog) { openlog("openconnect", LOG_PID, LOG_DAEMON); vpninfo->progress = syslog_progress; } #endif /* !__native_client__ */ #endif /* !_WIN32 */ } int main(int argc, char **argv) { struct openconnect_info *vpninfo; char *urlpath = NULL; struct oc_vpn_option *gai; struct accepted_cert *newcert; char *ip; char *proxy = getenv("https_proxy"); char *vpnc_script = NULL; int autoproxy = 0; int opt; char *config_arg; char *config_filename; char *token_str = NULL; oc_token_mode_t token_mode = OC_TOKEN_MODE_NONE; int reconnect_timeout = 300; int ret; int verbose = PRG_INFO; #ifdef HAVE_NL_LANGINFO char *charset; #endif #ifndef _WIN32 struct sigaction sa; struct utsname utsbuf; #endif #ifdef ENABLE_NLS bindtextdomain("openconnect", LOCALEDIR); #endif if (!setlocale(LC_ALL, "")) fprintf(stderr, _("WARNING: Cannot set locale: %s\n"), strerror(errno)); if (argc > 2 && !strcmp(argv[1], "--autocomplete")) return autocomplete(argc, argv); #ifdef HAVE_NL_LANGINFO charset = nl_langinfo(CODESET); if (charset && strcmp(charset, "UTF-8")) legacy_charset = strdup(charset); #ifndef HAVE_ICONV if (legacy_charset) fprintf(stderr, _("WARNING: This version of openconnect was built without iconv\n" " support but you appear to be using the legacy character\n" " set \"%s\". Expect strangeness.\n"), legacy_charset); #endif /* !HAVE_ICONV */ #endif /* HAVE_NL_LANGINFO */ if (strcmp(openconnect_version_str, openconnect_binary_version)) { fprintf(stderr, _("WARNING: This version of openconnect is %s but\n" " the libopenconnect library is %s\n"), openconnect_binary_version, openconnect_version_str); } #ifdef INSECURE_DEBUGGING fprintf(stderr, _("WARNING: This build is intended only for debugging purposes and\n" " may allow you to establish insecure connections.\n")); #endif /* Some systems have a crypto policy which completely prevents DTLSv1.0 * from being used, which is entirely pointless and will just drive * users back to the crappy proprietary clients. Or drive OpenConnect * to implement its own DTLS instead of using the system crypto libs. * We're happy to conform by default to the system policy which is * carefully curated to keep up to date with developments in crypto * attacks — but we also *need* to be able to override it and connect * anyway, when the user asks us to. Just as we *can* continue even * when the server has an invalid certificate, based on user input. * It was a massive oversight that GnuTLS implemented the system * policy *without* that basic override facility, so until/unless * it actually gets implemented properly we have to just disable it. * We can't do this from openconnect_init_ssl() since that would be * calling setenv() from a library in someone else's process. And * thankfully we don't really need to since the auth-dialogs don't * care; this is mostly for the DTLS connection. */ #ifdef OPENCONNECT_GNUTLS setenv("GNUTLS_SYSTEM_PRIORITY_FILE", DEVNULL, 0); #else setenv("OPENSSL_CONF", DEVNULL, 0); #endif openconnect_init_ssl(); vpninfo = openconnect_vpninfo_new((char *)"Open AnyConnect VPN Agent", validate_peer_cert, NULL, process_auth_form_cb, write_progress, NULL); if (!vpninfo) { fprintf(stderr, _("Failed to allocate vpninfo structure\n")); exit(1); } vpninfo->cbdata = vpninfo; #ifdef _WIN32 set_default_vpncscript(); #else vpninfo->use_tun_script = 0; vpninfo->uid = getuid(); vpninfo->gid = getgid(); if (!uname(&utsbuf)) { openconnect_set_localname(vpninfo, utsbuf.nodename); } #endif while ((opt = next_option(argc, argv, &config_arg))) { if (opt < 0) break; switch (opt) { #ifndef _WIN32 case 'b': background = 1; break; case 'l': use_syslog = 1; break; case 'S': vpninfo->use_tun_script = 1; break; case 'U': assert_nonnull_config_arg("U", config_arg); get_uids(config_arg, &vpninfo->uid, &vpninfo->gid); break; case OPT_CSD_USER: assert_nonnull_config_arg("csd-user", config_arg); get_uids(config_arg, &vpninfo->uid_csd, &vpninfo->gid_csd); vpninfo->uid_csd_given = 1; break; case OPT_CSD_WRAPPER: vpninfo->csd_wrapper = keep_config_arg(); break; #endif /* !_WIN32 */ case 'F': add_form_field(keep_config_arg()); break; case OPT_PROTOCOL: if (openconnect_set_protocol(vpninfo, config_arg)) exit(1); break; case OPT_JUNIPER: fprintf(stderr, "WARNING: Juniper Network Connect support is experimental.\n"); fprintf(stderr, "It will probably be superseded by Junos Pulse support.\n"); openconnect_set_protocol(vpninfo, "nc"); break; case OPT_CONFIGFILE: if (config_file) { fprintf(stderr, _("Cannot use 'config' option inside config file\n")); exit(1); } config_filename = keep_config_arg(); /* Convert to UTF-8 */ config_file = openconnect_fopen_utf8(vpninfo, config_filename, "r"); if (config_filename != config_arg) free(config_filename); if (!config_file) { fprintf(stderr, _("Cannot open config file '%s': %s\n"), config_arg, strerror(errno)); exit(1); } config_line_num = 1; /* The next option will come from the file... */ break; case OPT_COMPRESSION: assert_nonnull_config_arg("compression", config_arg); if (!strcmp(config_arg, "none") || !strcmp(config_arg, "off")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_NONE); else if (!strcmp(config_arg, "all")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_ALL); else if (!strcmp(config_arg, "stateless")) openconnect_set_compression_mode(vpninfo, OC_COMPRESSION_MODE_STATELESS); else { fprintf(stderr, _("Invalid compression mode '%s'\n"), config_arg); exit(1); } break; case OPT_CAFILE: openconnect_set_cafile(vpninfo, dup_config_arg()); break; #ifndef _WIN32 case OPT_PIDFILE: pidfile = keep_config_arg(); break; #endif case OPT_PFS: openconnect_set_pfs(vpninfo, 1); break; case OPT_ALLOW_INSECURE_CRYPTO: if (openconnect_set_allow_insecure_crypto(vpninfo, 1)) { fprintf(stderr, _("Cannot enable insecure 3DES or RC4 ciphers, because the library\n" "%s no longer supports them.\n"), openconnect_get_tls_library_version()); exit(1); } break; case OPT_SERVERCERT: newcert = malloc(sizeof(*newcert)); if (!newcert) { fprintf(stderr, _("Failed to allocate memory\n")); exit(1); } newcert->next = accepted_certs; accepted_certs = newcert; newcert->fingerprint = keep_config_arg(); newcert->host = NULL; newcert->port = 0; openconnect_set_system_trust(vpninfo, 0); allowed_fingerprints++; break; case OPT_RESOLVE: assert_nonnull_config_arg("resolve", config_arg); ip = strchr(config_arg, ':'); if (!ip) { fprintf(stderr, _("Missing colon in resolve option\n")); exit(1); } gai = malloc(sizeof(*gai) + strlen(config_arg) + 1); if (!gai) { fprintf(stderr, _("Failed to allocate memory\n")); exit(1); } gai->next = gai_overrides; gai_overrides = gai; gai->option = (void *)(gai + 1); memcpy(gai->option, config_arg, strlen(config_arg) + 1); gai->option[ip - config_arg] = 0; gai->value = gai->option + (ip - config_arg) + 1; break; case OPT_NO_DTLS: openconnect_disable_dtls(vpninfo); break; case OPT_COOKIEONLY: cookieonly = 1; break; case OPT_PRINTCOOKIE: cookieonly = 2; break; case OPT_AUTHENTICATE: cookieonly = 3; break; case OPT_COOKIE_ON_STDIN: read_stdin(&vpninfo->cookie, 0, 0); /* If the cookie is empty, ignore it */ if (!*vpninfo->cookie) vpninfo->cookie = NULL; break; case OPT_PASSWORD_ON_STDIN: read_stdin(&password, 0, 0); allow_stdin_read = 1; break; case OPT_NO_PASSWD: vpninfo->nopasswd = 1; break; case OPT_NO_XMLPOST: openconnect_set_xmlpost(vpninfo, 0); break; case OPT_NON_INTER: non_inter = 1; break; case OPT_RECONNECT_TIMEOUT: assert_nonnull_config_arg("reconnect-timeout", config_arg); reconnect_timeout = atoi(config_arg); break; case OPT_DTLS_CIPHERS: vpninfo->dtls_ciphers = keep_config_arg(); break; case OPT_DTLS12_CIPHERS: vpninfo->dtls12_ciphers = keep_config_arg(); break; case OPT_AUTHGROUP: authgroup = keep_config_arg(); break; case 'C': vpninfo->cookie = dup_config_arg(); break; case 'c': vpninfo->certinfo[0].cert = dup_config_arg(); break; case 'e': assert_nonnull_config_arg("e", config_arg); vpninfo->cert_expire_warning = 86400 * atoi(config_arg); break; case 'k': vpninfo->certinfo[0].key = dup_config_arg(); break; case 'd': vpninfo->req_compr = COMPR_ALL; break; case 'D': vpninfo->req_compr = 0; break; case 'g': free(urlpath); urlpath = dup_config_arg(); break; case 'h': usage(); break; case 'i': vpninfo->ifname = dup_config_arg(); break; case 'm': { assert_nonnull_config_arg("m", config_arg); int mtu = atol(config_arg); if (mtu < 576) { fprintf(stderr, _("MTU %d too small\n"), mtu); mtu = 576; } openconnect_set_reqmtu(vpninfo, mtu); break; } case OPT_BASEMTU: assert_nonnull_config_arg("base-mtu", config_arg); vpninfo->basemtu = atol(config_arg); if (vpninfo->basemtu < 576) { fprintf(stderr, _("MTU %d too small\n"), vpninfo->basemtu); vpninfo->basemtu = 576; } break; case 'p': vpninfo->certinfo[0].password = dup_config_arg(); break; case 'P': proxy = keep_config_arg(); autoproxy = 0; break; case OPT_PROXY_AUTH: openconnect_set_proxy_auth(vpninfo, config_arg); break; case OPT_HTTP_AUTH: openconnect_set_http_auth(vpninfo, config_arg); break; case OPT_NO_PROXY: autoproxy = 0; proxy = NULL; break; case OPT_NO_SYSTEM_TRUST: openconnect_set_system_trust(vpninfo, 0); break; case OPT_LIBPROXY: autoproxy = 1; proxy = NULL; break; case OPT_NO_HTTP_KEEPALIVE: fprintf(stderr, _("Disabling all HTTP connection re-use due to --no-http-keepalive option.\n" "If this helps, please report to .\n")); vpninfo->no_http_keepalive = 1; break; case OPT_NO_CERT_CHECK: fprintf(stderr, _("The --no-cert-check option was insecure and has been removed.\n" "Fix your server's certificate or use --servercert to trust it.\n")); exit(1); break; case 's': vpnc_script = dup_config_arg(); break; case 'u': free(username); username = dup_config_arg(); break; case OPT_DISABLE_IPV6: openconnect_disable_ipv6(vpninfo); break; case 'Q': assert_nonnull_config_arg("Q", config_arg); vpninfo->max_qlen = atol(config_arg); if (!vpninfo->max_qlen) { fprintf(stderr, _("Queue length zero not permitted; using 1\n")); vpninfo->max_qlen = 1; } break; case 'q': verbose = PRG_ERR; break; case OPT_DUMP_HTTP: vpninfo->dump_http_traffic = 1; break; case 'v': verbose++; break; case 'V': printf(_("OpenConnect version %s\n"), openconnect_version_str); print_build_opts(); print_supported_protocols(); print_default_vpncscript(); exit(0); case 'x': vpninfo->xmlconfig = keep_config_arg(); vpninfo->write_new_config = write_new_config; break; case OPT_KEY_PASSWORD_FROM_FSID: do_passphrase_from_fsid = 1; break; case OPT_USERAGENT: free(vpninfo->useragent); vpninfo->useragent = dup_config_arg(); break; case OPT_VERSION: free(vpninfo->version_string); vpninfo->version_string = dup_config_arg(); break; case OPT_LOCAL_HOSTNAME: openconnect_set_localname(vpninfo, config_arg); break; case OPT_FORCE_DPD: assert_nonnull_config_arg("force-dpd", config_arg); openconnect_set_dpd(vpninfo, atoi(config_arg)); break; case OPT_FORCE_TROJAN: assert_nonnull_config_arg("force-trojan", config_arg); openconnect_set_trojan_interval(vpninfo, atoi(config_arg)); break; case OPT_DTLS_LOCAL_PORT: assert_nonnull_config_arg("dtls-local-port", config_arg); vpninfo->dtls_local_port = atoi(config_arg); break; case OPT_TOKEN_MODE: assert_nonnull_config_arg("token-mode", config_arg); if (strcasecmp(config_arg, "rsa") == 0) { token_mode = OC_TOKEN_MODE_STOKEN; } else if (strcasecmp(config_arg, "totp") == 0) { token_mode = OC_TOKEN_MODE_TOTP; } else if (strcasecmp(config_arg, "hotp") == 0) { token_mode = OC_TOKEN_MODE_HOTP; } else if (strcasecmp(config_arg, "yubioath") == 0) { token_mode = OC_TOKEN_MODE_YUBIOATH; } else if (strcasecmp(config_arg, "oidc") == 0) { token_mode = OC_TOKEN_MODE_OIDC; } else { fprintf(stderr, _("Invalid software token mode \"%s\"\n"), config_arg); exit(1); } break; case OPT_TOKEN_SECRET: token_str = keep_config_arg(); break; case OPT_OS: assert_nonnull_config_arg("os", config_arg); if (openconnect_set_reported_os(vpninfo, config_arg)) { fprintf(stderr, _("Invalid OS identity \"%s\"\n" "Allowed values: linux, linux-64, win, mac-intel, android, apple-ios\n"), config_arg); exit(1); } if (!strcmp(config_arg, "android") || !strcmp(config_arg, "apple-ios")) { /* generic defaults */ openconnect_set_mobile_info(vpninfo, xstrdup("1.0"), dup_config_arg(), xstrdup("AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA")); } break; case OPT_PASSTOS: openconnect_set_pass_tos(vpninfo, 1); break; case OPT_TIMESTAMP: timestamp = 1; break; #ifdef OPENCONNECT_GNUTLS case OPT_GNUTLS_DEBUG: assert_nonnull_config_arg("gnutls-debug", config_arg); gnutls_global_set_log_level(atoi(config_arg)); gnutls_global_set_log_function(oc_gnutls_log_func); break; #endif case OPT_CIPHERSUITES: fprintf(stderr, _("WARNING: You specified %s. This should not be\n" " necessary; please report cases where a priority string\n" " override is necessary to connect to a server\n" " to .\n"), #ifdef OPENCONNECT_GNUTLS "--gnutls-priority" #elif defined(OPENCONNECT_OPENSSL) "--openssl-ciphers" #endif ); vpninfo->ciphersuite_config = dup_config_arg(); break; case OPT_SERVER: if (openconnect_parse_url(vpninfo, config_arg)) exit(1); break; default: usage(); } } if (gai_overrides) openconnect_override_getaddrinfo(vpninfo, gai_override_cb); if (optind < argc - (vpninfo->hostname ? 0 : 1)) { fprintf(stderr, _("Too many arguments on command line\n")); usage(); } else if (optind > argc - (vpninfo->hostname ? 0 : 1)) { fprintf(stderr, _("No server specified\n")); usage(); } if (!vpninfo->certinfo[0].key) vpninfo->certinfo[0].key = vpninfo->certinfo[0].cert; if (vpninfo->dump_http_traffic && verbose < PRG_DEBUG) verbose = PRG_DEBUG; if (autoproxy) { #ifdef LIBPROXY_HDR vpninfo->proxy_factory = px_proxy_factory_new(); #else fprintf(stderr, _("This version of openconnect was built without libproxy support\n")); exit(1); #endif } if (token_mode != OC_TOKEN_MODE_NONE) init_token(vpninfo, token_mode, token_str); if (proxy && openconnect_set_http_proxy(vpninfo, strdup(proxy))) exit(1); #ifndef _WIN32 memset(&sa, 0, sizeof(sa)); sa.sa_handler = handle_signal; sigaction(SIGTERM, &sa, NULL); sigaction(SIGINT, &sa, NULL); sigaction(SIGHUP, &sa, NULL); sigaction(SIGUSR1, &sa, NULL); sigaction(SIGUSR2, &sa, NULL); #else /* _WIN32 */ SetConsoleCtrlHandler(console_ctrl_handler, TRUE /* Add */); #endif sig_vpninfo = vpninfo; sig_cmd_fd = openconnect_setup_cmd_pipe(vpninfo); if (sig_cmd_fd < 0) { #ifdef _WIN32 char *errstr = openconnect__win32_strerror(GetLastError()); #else const char *errstr = strerror(errno); #endif /* _WIN32 */ fprintf(stderr, _("Error opening cmd pipe: %s\n"), errstr); #ifdef _WIN32 free(errstr); #endif /* _WIN32 */ exit(1); } vpninfo->cmd_fd_internal = 1; if (vpninfo->certinfo[0].key && do_passphrase_from_fsid) openconnect_passphrase_from_fsid(vpninfo); if (config_lookup_host(vpninfo, argv[optind])) exit(1); if (!vpninfo->hostname) { char *url = strdup(argv[optind]); if (openconnect_parse_url(vpninfo, url)) exit(1); free(url); } /* Historically, the path in the URL superseded the one in the * --usergroup argument, just because of the order in which they * were processed. Preserve that behaviour. */ if (urlpath && !vpninfo->urlpath) { vpninfo->urlpath = urlpath; urlpath = NULL; } free(urlpath); if (!vpninfo->cookie && openconnect_obtain_cookie(vpninfo)) { if (vpninfo->csd_scriptname) { unlink(vpninfo->csd_scriptname); vpninfo->csd_scriptname = NULL; } fprintf(stderr, _("Failed to complete authentication\n")); exit(1); } if (cookieonly == 3) { /* --authenticate */ printf("COOKIE='%s'\n", vpninfo->cookie); printf("HOST='%s'\n", openconnect_get_hostname(vpninfo)); printf("CONNECT_URL='%s'\n", openconnect_get_connect_url(vpninfo)); printf("FINGERPRINT='%s'\n", openconnect_get_peer_cert_hash(vpninfo)); if (vpninfo->unique_hostname) { char *p = vpninfo->unique_hostname; int l = strlen(p); if (vpninfo->unique_hostname[0] == '[' && vpninfo->unique_hostname[l-1] == ']') { p++; l -=2; } printf("RESOLVE='%s:%.*s'\n", vpninfo->hostname, l, p); } else printf("RESOLVE="); sig_vpninfo = NULL; openconnect_vpninfo_free(vpninfo); exit(0); } else if (cookieonly) { printf("%s\n", vpninfo->cookie); if (cookieonly == 1) { /* We use cookieonly=2 for 'print it and continue' */ sig_vpninfo = NULL; openconnect_vpninfo_free(vpninfo); exit(0); } } if ((ret = openconnect_make_cstp_connection(vpninfo)) != 0) { fprintf(stderr, _("Creating SSL connection failed\n")); goto out; } if (!vpnc_script) vpnc_script = xstrdup(default_vpncscript); vpninfo->vpnc_script = vpnc_script; if (vpninfo->dtls_state != DTLS_DISABLED && openconnect_setup_dtls(vpninfo, 60)) { /* Disable DTLS if we cannot set it up, otherwise * reconnects end up in infinite loop trying to connect * to non existing DTLS */ vpninfo->dtls_state = DTLS_DISABLED; fprintf(stderr, _("Set up UDP failed; using SSL instead\n")); } if (!vpninfo->vpnc_script) { vpn_progress(vpninfo, PRG_INFO, _("No --script argument provided; DNS and routing are not configured\n")); vpn_progress(vpninfo, PRG_INFO, _("See https://www.infradead.org/openconnect/vpnc-script.html\n")); } openconnect_set_loglevel(vpninfo, verbose); openconnect_set_setup_tun_handler(vpninfo, fully_up_cb); openconnect_set_stats_handler(vpninfo, print_connection_stats); while (1) { ret = openconnect_mainloop(vpninfo, reconnect_timeout, RECONNECT_INTERVAL_MIN); if (ret) break; vpn_progress(vpninfo, PRG_INFO, _("User requested reconnect\n")); } #ifndef _WIN32 if (wrote_pid) unlink(pidfile); #endif out: switch (ret) { case -EPERM: vpn_progress(vpninfo, PRG_ERR, _("Cookie was rejected by server; exiting.\n")); ret = 2; break; case -EPIPE: vpn_progress(vpninfo, PRG_ERR, _("Session terminated by server; exiting.\n")); ret = 1; break; case -EINTR: vpn_progress(vpninfo, PRG_INFO, _("User cancelled (%s); exiting.\n"), #ifdef INSECURE_DEBUGGING "SIGTERM" #else "SIGINT/SIGTERM" #endif ); ret = 0; break; case -ECONNABORTED: vpn_progress(vpninfo, PRG_INFO, _("User detached from session (%s); exiting.\n"), #ifdef INSECURE_DEBUGGING "SIGHUP/SIGINT" #else "SIGHUP" #endif ); ret = 0; break; case -EIO: vpn_progress(vpninfo, PRG_INFO, _("Unrecoverable I/O error; exiting.\n")); ret = 1; break; default: if (vpninfo->quit_reason) vpn_progress(vpninfo, PRG_ERR, "%s; exiting\n", vpninfo->quit_reason); else vpn_progress(vpninfo, PRG_ERR, _("Unknown error; exiting.\n")); ret = 1; break; } sig_vpninfo = NULL; openconnect_vpninfo_free(vpninfo); exit(ret); } static int write_new_config(void *_vpninfo, const char *buf, int buflen) { struct openconnect_info *vpninfo = _vpninfo; int config_fd; int err; config_fd = openconnect_open_utf8(vpninfo, vpninfo->xmlconfig, O_WRONLY|O_TRUNC|O_CREAT|O_BINARY); if (config_fd < 0) { err = errno; fprintf(stderr, _("Failed to open %s for write: %s\n"), vpninfo->xmlconfig, strerror(err)); return -err; } /* FIXME: We should actually write to a new tempfile, then rename */ if (write(config_fd, buf, buflen) != buflen) { err = errno; fprintf(stderr, _("Failed to write config to %s: %s\n"), vpninfo->xmlconfig, strerror(err)); close(config_fd); return -err; } close(config_fd); return 0; } static void __attribute__ ((format(printf, 3, 4))) write_progress(void *_vpninfo, int level, const char *fmt, ...) { struct openconnect_info *vpninfo = _vpninfo; FILE *outf = level ? stdout : stderr; va_list args; if (cookieonly) outf = stderr; if (vpninfo->verbose >= level) { if (timestamp) { char ts[64]; time_t t = time(NULL); struct tm *tm = localtime(&t); strftime(ts, 64, "[%Y-%m-%d %H:%M:%S] ", tm); fprintf(outf, "%s", ts); } va_start(args, fmt); vfprintf(outf, fmt, args); va_end(args); fflush(outf); } } static int validate_peer_cert(void *_vpninfo, const char *reason) { struct openconnect_info *vpninfo = _vpninfo; const char *fingerprint; struct accepted_cert *this; fingerprint = openconnect_get_peer_cert_hash(vpninfo); for (this = accepted_certs; this; this = this->next) { #ifdef INSECURE_DEBUGGING if (this->port == 0 && this->host == NULL && !strcasecmp(this->fingerprint, "ACCEPT")) { fprintf(stderr, _("Insecurely accepting certificate from VPN server \"%s\" because you ran with --servercert=ACCEPT.\n"), vpninfo->hostname); return 0; } else #endif /* XX: if set by --servercert argument (port 0 and host NULL), accept for any host/port */ if ((this->host == NULL || !strcasecmp(this->host, vpninfo->hostname)) && (this->port == 0 || this->port == vpninfo->port)) { int err = openconnect_check_peer_cert_hash(vpninfo, this->fingerprint); if (!err) return 0; else if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Could not check server's certificate against %s\n"), this->fingerprint); } } } if (allowed_fingerprints) { vpn_progress(vpninfo, PRG_ERR, _("None of the %d fingerprint(s) specified via --servercert match server's certificate: %s\n"), allowed_fingerprints, fingerprint); return -EINVAL; } while (1) { char *details; char *response = NULL; fprintf(stderr, _("\nCertificate from VPN server \"%s\" failed verification.\n" "Reason: %s\n"), vpninfo->hostname, reason); fprintf(stderr, _("To trust this server in future, perhaps add this to your command line:\n")); fprintf(stderr, _(" --servercert %s\n"), fingerprint); if (non_inter) return -EINVAL; fprintf(stderr, _("Enter '%s' to accept, '%s' to abort; anything else to view: "), _("yes"), _("no")); read_stdin(&response, 0, 0); if (!response) return -EINVAL; if (!strcasecmp(response, _("yes"))) { struct accepted_cert *newcert; newcert = malloc(sizeof(*newcert)); if (newcert) { newcert->next = accepted_certs; accepted_certs = newcert; newcert->fingerprint = strdup(fingerprint); newcert->host = strdup(vpninfo->hostname); newcert->port = vpninfo->port; } free(response); return 0; } if (!strcasecmp(response, _("no"))) { free(response); return -EINVAL; } free(response); details = openconnect_get_peer_cert_details(vpninfo); fputs(details, stderr); openconnect_free_cert_info(vpninfo, details); fprintf(stderr, _("Server key hash: %s\n"), fingerprint); } } static int match_choice_label(struct openconnect_info *vpninfo, struct oc_form_opt_select *select_opt, char *label) { int i, input_len, partial_matches = 0; char *match = NULL; input_len = strlen(label); if (input_len < 1) return -EINVAL; for (i = 0; i < select_opt->nr_choices; i++) { struct oc_choice *choice = select_opt->choices[i]; if (!strncasecmp(label, choice->label, input_len)) { if (strlen(choice->label) == input_len) { select_opt->form._value = choice->name; return 0; } else { match = choice->name; partial_matches++; } } } if (partial_matches == 1) { select_opt->form._value = match; return 0; } else if (partial_matches > 1) { vpn_progress(vpninfo, PRG_ERR, _("Auth choice \"%s\" matches multiple options\n"), label); return -EINVAL; } else { vpn_progress(vpninfo, PRG_ERR, _("Auth choice \"%s\" not available\n"), label); return -EINVAL; } } static char *prompt_for_input(const char *prompt, struct openconnect_info *vpninfo, int hidden) { char *response = NULL; fprintf(stderr, "%s", prompt); fflush(stderr); if (non_inter) { if (allow_stdin_read) { read_stdin(&response, hidden, 1); } if (response == NULL) { fprintf(stderr, "***\n"); vpn_progress(vpninfo, PRG_ERR, _("User input required in non-interactive mode\n")); } return response; } read_stdin(&response, hidden, 0); return response; } static int prompt_opt_select(struct openconnect_info *vpninfo, struct oc_form_opt_select *select_opt, char **saved_response) { int i; char *response; if (!select_opt->nr_choices) return -EINVAL; retry: fprintf(stderr, "%s [", select_opt->form.label); for (i = 0; i < select_opt->nr_choices; i++) { struct oc_choice *choice = select_opt->choices[i]; if (i) fprintf(stderr, "|"); fprintf(stderr, "%s", choice->label); } fprintf(stderr, "]:"); if (select_opt->nr_choices == 1) { response = strdup(select_opt->choices[0]->label); fprintf(stderr, "%s\n", response); } else response = prompt_for_input("", vpninfo, 0); if (!response) return -EINVAL; if (match_choice_label(vpninfo, select_opt, response) < 0) { free(response); goto retry; } if (saved_response) *saved_response = response; else free(response); return 0; } struct form_field { struct form_field *next; char *form_id; char *opt_id; char *value; }; static struct form_field *form_fields; /* static variable initialised to NULL */ static void add_form_field(char *arg) { struct form_field *ff; char *opt, *value = strchr(arg, '='); if (!value || value == arg) { bad_field: fprintf(stderr, "Form field invalid. Use --form-entry=FORM_ID:OPT_NAME=VALUE\n"); exit(1); } *(value++) = 0; opt = strchr(arg, ':'); if (!opt || opt == arg) goto bad_field; *(opt++) = 0; ff = malloc(sizeof(*ff)); if (!ff) { fprintf(stderr, "Out of memory for form field\n"); exit(1); } ff->form_id = arg; ff->opt_id = opt; ff->value = value; ff->next = form_fields; form_fields = ff; } static char *saved_form_field(struct openconnect_info *vpninfo, const char *form_id, const char *opt_id) { struct form_field *ff = form_fields; while (ff) { if (!strcmp(form_id, ff->form_id) && !strcmp(ff->opt_id, opt_id)) return strdup(ff->value); ff = ff->next; } return NULL; } /* Return value: * < 0, on error * = 0, when form was parsed and POST required * = 1, when response was cancelled by user */ static int process_auth_form_cb(void *_vpninfo, struct oc_auth_form *form) { struct openconnect_info *vpninfo = _vpninfo; struct oc_form_opt *opt; int empty = 1; if (!form->auth_id) return -EINVAL; if (form->banner && vpninfo->verbose > PRG_ERR) fprintf(stderr, "%s\n", form->banner); if (form->error) fprintf(stderr, "%s\n", form->error); if (form->message && vpninfo->verbose > PRG_ERR) fprintf(stderr, "%s\n", form->message); /* Special handling for GROUP: field if present, as different group selections can make other fields disappear/reappear */ if (form->authgroup_opt) { if (!authgroup) authgroup = saved_form_field(vpninfo, form->auth_id, form->authgroup_opt->form.name); if (!authgroup || match_choice_label(vpninfo, form->authgroup_opt, authgroup) != 0) { if (prompt_opt_select(vpninfo, form->authgroup_opt, &authgroup) < 0) goto err; } if (!authgroup_set) { authgroup_set = 1; return OC_FORM_RESULT_NEWGROUP; } } for (opt = form->opts; opt; opt = opt->next) { if (opt->flags & OC_FORM_OPT_IGNORE) continue; /* I haven't actually seen a non-authgroup dropdown in the wild, but the Cisco clients do support them */ if (opt->type == OC_FORM_OPT_SELECT) { struct oc_form_opt_select *select_opt = (void *)opt; char *opt_response; if (select_opt == form->authgroup_opt) continue; opt_response = saved_form_field(vpninfo, form->auth_id, select_opt->form.name); if (opt_response && match_choice_label(vpninfo, select_opt, opt_response) == 0) { free(opt_response); continue; } free(opt_response); if (prompt_opt_select(vpninfo, select_opt, NULL) < 0) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_TEXT) { if (username && (!strncasecmp(opt->name, "user", 4) || !strncasecmp(opt->name, "uname", 5))) { opt->_value = strdup(username); } else { opt->_value = saved_form_field(vpninfo, form->auth_id, opt->name); if (!opt->_value) opt->_value = prompt_for_input(opt->label, vpninfo, 0); } if (!opt->_value) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_PASSWORD) { if (password) { opt->_value = password; password = NULL; } else { opt->_value = saved_form_field(vpninfo, form->auth_id, opt->name); if (!opt->_value) opt->_value = prompt_for_input(opt->label, vpninfo, 1); } if (!opt->_value) goto err; empty = 0; } else if (opt->type == OC_FORM_OPT_TOKEN || opt->type == OC_FORM_OPT_HIDDEN) { /* Nothing to do here, but if the tokencode is being * automatically generated then don't treat it as an * empty form for the purpose of loop avoidance. */ empty = 0; } } /* prevent infinite loops if the authgroup requires certificate auth only */ if (last_form_empty && empty) return OC_FORM_RESULT_CANCELLED; last_form_empty = empty; return OC_FORM_RESULT_OK; err: return OC_FORM_RESULT_ERR; } static int lock_token(void *tokdata) { struct openconnect_info *vpninfo = tokdata; char *file_token; int err; /* FIXME: Actually lock the file */ err = openconnect_read_file(vpninfo, token_filename, &file_token); if (err < 0) return err; err = openconnect_set_token_mode(vpninfo, vpninfo->token_mode, file_token); free(file_token); return err; } static int unlock_token(void *tokdata, const char *new_tok) { struct openconnect_info *vpninfo = tokdata; int tok_fd; int err; if (!new_tok) return 0; tok_fd = openconnect_open_utf8(vpninfo, token_filename, O_WRONLY|O_TRUNC|O_CREAT|O_BINARY); if (tok_fd < 0) { err = errno; fprintf(stderr, _("Failed to open token file for write: %s\n"), strerror(err)); return -err; } /* FIXME: We should actually write to a new tempfile, then rename */ if (write(tok_fd, new_tok, strlen(new_tok)) != strlen(new_tok)) { err = errno; fprintf(stderr, _("Failed to write token: %s\n"), strerror(err)); close(tok_fd); return -err; } close(tok_fd); return 0; } static void init_token(struct openconnect_info *vpninfo, oc_token_mode_t token_mode, const char *token_str) { int ret; char *file_token = NULL; if (token_str && (token_mode == OC_TOKEN_MODE_TOTP || token_mode == OC_TOKEN_MODE_HOTP)) { switch(token_str[0]) { case '@': token_str++; /* fall through... */ case '/': if (openconnect_read_file(vpninfo, token_str, &file_token) < 0) exit(1); break; default: /* Use token_str as raw data */ break; } } ret = openconnect_set_token_mode(vpninfo, token_mode, file_token ? : token_str); if (file_token) { token_filename = strdup(token_str); openconnect_set_token_callbacks(vpninfo, vpninfo, lock_token, unlock_token); free(file_token); } switch (token_mode) { case OC_TOKEN_MODE_STOKEN: switch (ret) { case 0: return; case -EINVAL: fprintf(stderr, _("Soft token string is invalid\n")); exit(1); case -ENOENT: if (token_str) fprintf(stderr, _("Can't open stoken file\n")); else fprintf(stderr, _("Can't open ~/.stokenrc file\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with libstoken support\n")); exit(1); default: fprintf(stderr, _("General failure in libstoken\n")); exit(1); } break; case OC_TOKEN_MODE_TOTP: case OC_TOKEN_MODE_HOTP: switch (ret) { case 0: return; case -EINVAL: fprintf(stderr, _("Soft token string is invalid\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with liboath support\n")); exit(1); default: fprintf(stderr, _("General failure in liboath\n")); exit(1); } break; case OC_TOKEN_MODE_YUBIOATH: switch(ret) { case 0: return; case -ENOENT: fprintf(stderr, _("Yubikey token not found\n")); exit(1); case -EOPNOTSUPP: fprintf(stderr, _("OpenConnect was not built with Yubikey support\n")); exit(1); default: fprintf(stderr, _("General Yubikey failure: %s\n"), strerror(-ret)); exit(1); } case OC_TOKEN_MODE_OIDC: switch (ret) { case 0: return; case -ENOENT: fprintf(stderr, _("Can't open oidc file\n")); exit(1); default: fprintf(stderr, _("General failure in oidc token\n")); exit(1); } break; case OC_TOKEN_MODE_NONE: /* No-op */ break; /* Option parsing already checked for invalid modes. */ } } openconnect-8.20/gpst.c0000644000076400007640000014457214171606260016671 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2016-2017 Daniel Lenski * * Author: Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #ifdef HAVE_LZ4 #include #endif #include #include #include #ifdef _WIN32 #include "win32-ipicmp.h" #else #include /* The BSDs require the first two headers before netinet/ip.h * (Linux and macOS already #include them within netinet/ip.h) */ #include #include #include #include #include #include #endif #if defined(__linux__) /* For TCP_INFO */ # include #endif #include #include #include #include #include #include #include /* * Data packets are encapsulated in the SSL stream as follows: * * 0000: Magic "\x1a\x2b\x3c\x4d" * 0004: Big-endian EtherType (0x0800 for IPv4) * 0006: Big-endian 16-bit length (not including 16-byte header) * 0008: Always "\x01\0\0\0\0\0\0\0" * 0010: data payload */ /* Strange initialisers here to work around GCC PR#10676 (which was * fixed in GCC 4.6 but it takes a while for some systems to catch * up. */ static const struct pkt dpd_pkt = { .next = NULL, { .gpst.hdr = { 0x1a, 0x2b, 0x3c, 0x4d } } }; static int filter_opts(struct oc_text_buf *buf, const char *query, const char *incexc, int include) { const char *f, *endf, *eq; const char *found, *comma; for (f = query; *f; f=(*endf) ? endf+1 : endf) { endf = strchrnul(f, '&'); eq = strchr(f, '='); if (!eq || eq > endf) eq = endf; for (found = incexc; *found; found=(*comma) ? comma+1 : comma) { comma = strchrnul(found, ','); if (!strncmp(found, f, MAX(comma-found, eq-f))) break; } if ((include && *found) || (!include && !*found)) { if (buf->pos && buf->data[buf->pos-1] != '?' && buf->data[buf->pos-1] != '&') buf_append(buf, "&"); buf_append_bytes(buf, f, (int)(endf-f)); } } return buf_error(buf); } /* Parse this JavaScript-y mess: "var respStatus = \"Challenge|Error\";\n" "var respMsg = \"\";\n" "thisForm.inputStr.value = "";\n" */ static int parse_javascript(char *buf, char **prompt, char **inputStr) { const char *start, *end = buf; int status; const char *pre_status = "var respStatus = \"", *pre_prompt = "var respMsg = \"", *pre_inputStr = "thisForm.inputStr.value = \""; /* Status */ while (isspace(*end)) end++; if (strncmp(end, pre_status, strlen(pre_status))) goto err; start = end+strlen(pre_status); end = strchr(start, '\n'); if (!end || end[-1] != ';' || end[-2] != '"') goto err; if (!strncmp(start, "Challenge", 8)) status = 0; else if (!strncmp(start, "Error", 5)) status = 1; else goto err; /* Prompt */ while (isspace(*end)) end++; if (strncmp(end, pre_prompt, strlen(pre_prompt))) goto err; start = end+strlen(pre_prompt); end = strchr(start, '\n'); if (!end || end[-1] != ';' || end[-2] != '"' || (end.. ? */ if (xmlnode_is_named(xml_node, "response") && !xmlnode_match_prop(xml_node, "status", "error")) { for (xml_node=xml_node->children; xml_node; xml_node=xml_node->next) { if (!xmlnode_get_val(xml_node, "error", &err)) goto out; } goto bad_xml; } /* Is it Error.. ? */ if (xmlnode_is_named(xml_node, "prelogin-response")) { char *s = NULL; int has_err = 0; xmlNode *x; for (x=xml_node->children; x; x=x->next) { if (!xmlnode_get_val(x, "status", &s)) has_err = strcmp(s, "Success"); else xmlnode_get_val(x, "msg", &err); } free(s); if (has_err) goto out; free(err); err = NULL; } /* is it user.name...... */ if (xmlnode_is_named(xml_node, "challenge")) { for (xml_node=xml_node->children; xml_node; xml_node=xml_node->next) { xmlnode_get_val(xml_node, "inputstr", &inputStr); xmlnode_get_val(xml_node, "respmsg", &prompt); /* XXX: override the username passed to the next form from ? */ } result = challenge_cb ? challenge_cb(vpninfo, prompt, inputStr, cb_data) : -EINVAL; free(prompt); free(inputStr); goto bad_xml; } /* if it's XML, invoke callback (or default to success) */ result = xml_cb ? xml_cb(vpninfo, xml_node, cb_data) : 0; bad_xml: if (result == -EINVAL) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse server response\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was: %s\n"), response); } out: if (err) { if (!strcmp(err, "GlobalProtect gateway does not exist") || !strcmp(err, "GlobalProtect portal does not exist")) { vpn_progress(vpninfo, PRG_DEBUG, "%s\n", err); result = -EEXIST; } else if (!strcmp(err, "Invalid authentication cookie") /* equivalent to custom HTTP status 512 */ || !strcmp(err, "Portal name not found") /* cookie is bogus */ || !strcmp(err, "Valid client certificate is required") /* equivalent to custom HTTP status 513 */ || !strcmp(err, "Allow Automatic Restoration of SSL VPN is disabled")) { /* Any of these errors indicates that retrying won't help us reconnect (EPERM signals this to mainloop.) */ vpn_progress(vpninfo, PRG_ERR, "%s\n", err); result = -EPERM; } else { vpn_progress(vpninfo, PRG_ERR, "%s\n", err); result = -EINVAL; } free(err); } if (xml_doc) xmlFreeDoc(xml_doc); return result; } #define ESP_HEADER_SIZE (4 /* SPI */ + 4 /* sequence number */) #define ESP_FOOTER_SIZE (1 /* pad length */ + 1 /* next header */) #ifdef HAVE_ESP static int check_hmac_algo(struct openconnect_info *v, const char *s) { if (!strcmp(s, "sha1")) return HMAC_SHA1; if (!strcmp(s, "md5")) return HMAC_MD5; if (!strcmp(s, "sha256")) return HMAC_SHA256; vpn_progress(v, PRG_ERR, _("Unknown ESP MAC algorithm: %s\n"), s); return -ENOENT; } static int check_enc_algo(struct openconnect_info *v, const char *s) { if (!strcmp(s, "aes128") || !strcmp(s, "aes-128-cbc")) return ENC_AES_128_CBC; if (!strcmp(s, "aes-256-cbc")) return ENC_AES_256_CBC; vpn_progress(v, PRG_ERR, _("Unknown ESP encryption algorithm: %s\n"), s); return -ENOENT; } /* Reads Nhex digits and saves the * key in dest, returning its length in bytes. */ static int xml_to_key(xmlNode *xml_node, unsigned char *dest, int dest_size) { int explen = -1, len = 0; xmlNode *child; char *p, *s = NULL; for (child = xml_node->children; child; child=child->next) { if (xmlnode_get_val(child, "bits", &s) == 0) { explen = atoi(s); if (explen & 0x07) goto out; explen >>= 3; } else if (xmlnode_get_val(child, "val", &s) == 0) { for (p=s; p[0] && p[1]; p+=2) if (len++ < dest_size) *dest++ = unhex(p); } } out: free(s); return (len == explen) ? len : -EINVAL; } #endif /* Return value: * < 0, on error * = 0, on success; *form is populated */ static int gpst_parse_config_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { xmlNode *member; char *s = NULL, *deferred_netmask = NULL; struct oc_split_include *inc; int split_route_is_default_route = 0; int n_dns = 0, esp_keys = 0, esp_v4 = 0, esp_v6 = 0; int ret = 0; int ii; uint32_t esp_magic = 0; struct in6_addr esp6_magic; if (!xml_node || !xmlnode_is_named(xml_node, "response")) return -EINVAL; struct oc_vpn_option *new_opts = NULL; struct oc_ip_info new_ip_info = {}; memset(vpninfo->esp_magic, 0, sizeof(vpninfo->esp_magic)); vpninfo->esp_replay_protect = 1; vpninfo->ssl_times.rekey_method = REKEY_NONE; /* Parse config */ for (xml_node = xml_node->children; xml_node; xml_node=xml_node->next) { if (!xmlnode_get_val(xml_node, "ip-address", &s)) new_ip_info.addr = add_option_steal(&new_opts, "ipaddr", &s); else if (!xmlnode_get_val(xml_node, "ip-address-v6", &s)) { if (!vpninfo->disable_ipv6) new_ip_info.addr6 = add_option_steal(&new_opts, "ipaddr6", &s); } else if (!xmlnode_get_val(xml_node, "netmask", &deferred_netmask)) { /* XX: GlobalProtect servers always (almost always?) send 255.255.255.255 as their netmask * (a /32 host route), and if they want to include an actual default route (0.0.0.0/0) * they instead put it under . We defer saving the netmask until later. */ } else if (!xmlnode_get_val(xml_node, "mtu", &s)) new_ip_info.mtu = atoi(s); else if (!xmlnode_get_val(xml_node, "lifetime", &s)) vpninfo->auth_expiration = time(NULL) + atol(s); else if (!xmlnode_get_val(xml_node, "quarantine", &s)) { if (strcmp(s, "no")) vpn_progress(vpninfo, PRG_DEBUG, _("WARNING: Config XML contains tag with value of \"%s\".\n" " VPN connectivity may be disabled or limited.\n"), s); } else if (!xmlnode_get_val(xml_node, "disconnect-on-idle", &s)) { int sec = atoi(s); vpn_progress(vpninfo, PRG_INFO, _("Idle timeout is %d minutes.\n"), sec/60); vpninfo->idle_timeout = sec; } else if (!xmlnode_get_val(xml_node, "ssl-tunnel-url", &s)) { free(vpninfo->urlpath); vpninfo->urlpath = s; if (strcmp(s, "/ssl-tunnel-connect.sslvpn")) vpn_progress(vpninfo, PRG_INFO, _("Non-standard SSL tunnel path: %s\n"), s); s = NULL; } else if (!xmlnode_get_val(xml_node, "timeout", &s)) { int sec = atoi(s); vpn_progress(vpninfo, PRG_INFO, _("Tunnel timeout (rekey interval) is %d minutes.\n"), sec/60); vpninfo->ssl_times.last_rekey = time(NULL); vpninfo->ssl_times.rekey = sec - 60; vpninfo->ssl_times.rekey_method = REKEY_TUNNEL; } else if (!xmlnode_get_val(xml_node, "gw-address", &s)) { /* As remarked in oncp.c, "this is a tunnel; having a * gateway is meaningless." See esp_send_probes_gp for the * gory details of what this field actually means. */ if (vpninfo->peer_addr->sa_family == IPPROTO_IP && vpninfo->ip_info.gateway_addr && strcmp(s, vpninfo->ip_info.gateway_addr)) vpn_progress(vpninfo, PRG_DEBUG, _("Gateway address in config XML (%s) differs from external gateway address (%s).\n"), s, new_ip_info.gateway_addr); esp_magic = inet_addr(s); esp_v4 = 1; } else if (!xmlnode_get_val(xml_node, "gw-address-v6", &s)) { if (vpninfo->peer_addr->sa_family == IPPROTO_IPV6 && vpninfo->ip_info.gateway_addr && strcmp(s, vpninfo->ip_info.gateway_addr)) vpn_progress(vpninfo, PRG_DEBUG, _("IPv6 gateway address in config XML (%s) differs from external gateway address (%s).\n"), s, vpninfo->ip_info.gateway_addr); inet_pton(AF_INET6, s, &esp6_magic); esp_v6 = 1; } else if (!xmlnode_get_val(xml_node, "connected-gw-ip", &s)) { if (vpninfo->ip_info.gateway_addr && strcmp(s, vpninfo->ip_info.gateway_addr)) vpn_progress(vpninfo, PRG_DEBUG, _("Config XML address (%s) differs from external\n" "gateway address (%s). Please report this to\n" ", including any problems\n" "with ESP or other apparent loss of connectivity or performance.\n"), s, vpninfo->ip_info.gateway_addr); } else if (xmlnode_is_named(xml_node, "dns-v6") || xmlnode_is_named(xml_node, "dns")) { for (member = xml_node->children; member && n_dns<3; member=member->next) { if (!xmlnode_get_val(member, "member", &s)) { for (ii=0; ii and */ if (!strcmp(s, new_ip_info.dns[ii])) break; if (ii==n_dns) new_ip_info.dns[n_dns++] = add_option_steal(&new_opts, "DNS", &s); } } } else if (xmlnode_is_named(xml_node, "wins")) { for (ii=0, member = xml_node->children; member && ii<3; member=member->next) if (!xmlnode_get_val(member, "member", &s)) new_ip_info.nbns[ii++] = add_option_steal(&new_opts, "WINS", &s); } else if (xmlnode_is_named(xml_node, "dns-suffix")) { struct oc_text_buf *domains = buf_alloc(); for (member = xml_node->children; member; member=member->next) if (!xmlnode_get_val(member, "member", &s)) buf_append(domains, "%s ", s); if (buf_error(domains) == 0 && domains->pos > 0) { domains->data[domains->pos-1] = '\0'; new_ip_info.domain = add_option_steal(&new_opts, "search", &domains->data); } buf_free(domains); } else if (xmlnode_is_named(xml_node, "access-routes-v6") || xmlnode_is_named(xml_node, "exclude-access-routes-v6") || xmlnode_is_named(xml_node, "access-routes") || xmlnode_is_named(xml_node, "exclude-access-routes")) { for (member = xml_node->children; member; member=member->next) { if (!xmlnode_get_val(member, "member", &s)) { int is_inc = (xml_node->name[0] == 'a'); /* XX: if this is a default Legacy IP route jammed into the split-include * routes, just mark it for now. */ if (is_inc && !strcmp(s, "0.0.0.0/0")) { split_route_is_default_route = 1; continue; } inc = malloc(sizeof(*inc)); if (!inc) { ret = -ENOMEM; goto err; } if (is_inc) { inc->route = add_option_steal(&new_opts, "split-include", &s); inc->next = new_ip_info.split_includes; new_ip_info.split_includes = inc; } else { inc->route = add_option_steal(&new_opts, "split-exclude", &s); inc->next = new_ip_info.split_excludes; new_ip_info.split_excludes = inc; } } } } else if (xmlnode_is_named(xml_node, "ipsec")) { #ifdef HAVE_ESP if (vpninfo->dtls_state != DTLS_DISABLED) { int c = (vpninfo->current_esp_in ^= 1); struct esp *ei = &vpninfo->esp_in[c], *eo = &vpninfo->esp_out; vpninfo->old_esp_maxseq = vpninfo->esp_in[c^1].seq + 32; for (member = xml_node->children; member; member=member->next) { if (!xmlnode_get_val(member, "udp-port", &s)) udp_sockaddr(vpninfo, atoi(s)); else if (!xmlnode_get_val(member, "enc-algo", &s)) vpninfo->esp_enc = check_enc_algo(vpninfo, s); else if (!xmlnode_get_val(member, "hmac-algo", &s)) vpninfo->esp_hmac = check_hmac_algo(vpninfo, s); else if (!xmlnode_get_val(member, "c2s-spi", &s)) eo->spi = htonl(strtoul(s, NULL, 16)); else if (!xmlnode_get_val(member, "s2c-spi", &s)) ei->spi = htonl(strtoul(s, NULL, 16)); else if (xmlnode_is_named(member, "ekey-c2s")) vpninfo->enc_key_len = xml_to_key(member, eo->enc_key, sizeof(eo->enc_key)); else if (xmlnode_is_named(member, "ekey-s2c")) vpninfo->enc_key_len = xml_to_key(member, ei->enc_key, sizeof(ei->enc_key)); else if (xmlnode_is_named(member, "akey-c2s")) vpninfo->hmac_key_len = xml_to_key(member, eo->hmac_key, sizeof(eo->hmac_key)); else if (xmlnode_is_named(member, "akey-s2c")) vpninfo->hmac_key_len = xml_to_key(member, ei->hmac_key, sizeof(ei->hmac_key)); else if (!xmlnode_get_val(member, "ipsec-mode", &s) && strcmp(s, "esp-tunnel")) vpn_progress(vpninfo, PRG_ERR, _("GlobalProtect config sent ipsec-mode=%s (expected esp-tunnel)\n"), s); } if (!(vpninfo->esp_enc > 0 && vpninfo->esp_hmac > 0 && vpninfo->enc_key_len > 0 && vpninfo->hmac_key_len > 0)) vpn_progress(vpninfo, PRG_ERR, "Server's ESP configuration is incomplete or uses unknown algorithms.\n"); else esp_keys = 1; } #else vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring ESP keys since ESP support not available in this build\n")); #endif } else if (xmlnode_is_named(xml_node, "need-tunnel") || xmlnode_is_named(xml_node, "bw-c2s") || xmlnode_is_named(xml_node, "bw-s2c") || xmlnode_is_named(xml_node, "default-gateway") || xmlnode_is_named(xml_node, "default-gateway-v6") || xmlnode_is_named(xml_node, "no-direct-access-to-local-network") || xmlnode_is_named(xml_node, "ip-address-preferred") || xmlnode_is_named(xml_node, "ip-address-v6-preferred") || xmlnode_is_named(xml_node, "ipv6-connection") || xmlnode_is_named(xml_node, "portal") || xmlnode_is_named(xml_node, "user")) { /* XX: Do these have any potential value at all for routing configuration or diagnostics? */ } else if (xml_node->type == XML_ELEMENT_NODE) { free(s); s = (char *)xmlNodeGetContent(xml_node); if (strchr((char *)xml_node->name, '6')) vpn_progress(vpninfo, PRG_ERR, _("Potential IPv6-related GlobalProtect config tag <%s>: %s\n"), xml_node->name, s); else vpn_progress(vpninfo, PRG_DEBUG, _("Unknown GlobalProtect config tag <%s>: %s\n"), xml_node->name, s); } } /* Fix the issue of a 0.0.0.0/0 "split"-include route by swapping the "split" route with the default netmask. */ if (split_route_is_default_route) { char *original_netmask = deferred_netmask; if ((deferred_netmask = strdup("0.0.0.0")) == NULL) return -ENOMEM; /* If the original netmask wasn't /32, add it as a split route */ if (new_ip_info.addr && original_netmask) { uint32_t nm_bits = inet_addr(original_netmask); if (nm_bits != 0xffffffff) { /* 255.255.255.255 */ struct in_addr net_addr; inet_aton(new_ip_info.addr, &net_addr); net_addr.s_addr &= nm_bits; /* clear host bits */ char abuf[INET_ADDRSTRLEN]; if ((inc = malloc(sizeof(*inc))) == NULL || asprintf(&s, "%s/%s", inet_ntop(AF_INET, &net_addr, abuf, sizeof(abuf)), original_netmask) <= 0) return -ENOMEM; inc->route = add_option_steal(&new_opts, "split-include", &s); inc->next = new_ip_info.split_includes; new_ip_info.split_includes = inc; } } free(original_netmask); } if (deferred_netmask) new_ip_info.netmask = add_option_steal(&new_opts, "netmask", &deferred_netmask); /* Set 10-second DPD/keepalive (same as Windows client) unless * overridden with --force-dpd */ if (!vpninfo->ssl_times.dpd) vpninfo->ssl_times.dpd = 10; vpninfo->ssl_times.keepalive = vpninfo->esp_ssl_fallback = vpninfo->ssl_times.dpd; /* Warn about IPv6 config, if present, and ESP config, if absent */ if (new_ip_info.addr6) vpn_progress(vpninfo, PRG_ERR, _("GlobalProtect IPv6 support is experimental. Please report results to .\n")); #ifdef HAVE_ESP if (esp_keys && esp_v6 && new_ip_info.addr6) { /* We got ESP keys, an IPv6 esp_magic address, and an IPv6 address */ vpninfo->esp_magic_af = AF_INET6; memcpy(vpninfo->esp_magic, &esp6_magic, sizeof(esp6_magic)); setup_esp_keys: if (openconnect_setup_esp_keys(vpninfo, 0)) { vpn_progress(vpninfo, PRG_ERR, "Failed to setup ESP keys.\n"); } else { /* prevent race condition between esp_mainloop() and gpst_mainloop() timers */ vpninfo->dtls_times.last_rekey = time(&vpninfo->new_dtls_started); vpninfo->delay_tunnel_reason = "awaiting GPST ESP connection"; } } else if (esp_keys && esp_v4 && new_ip_info.addr) { /* We got ESP keys, an IPv4 esp_magic address, and an IPv4 address */ vpninfo->esp_magic_af = AF_INET; memcpy(vpninfo->esp_magic, &esp_magic, sizeof(esp_magic)); goto setup_esp_keys; } else if (vpninfo->dtls_state != DTLS_DISABLED) vpn_progress(vpninfo, PRG_ERR, _("Did not receive ESP keys and matching gateway in GlobalProtect config; tunnel will be TLS only.\n")); #endif free(s); ret = install_vpn_opts(vpninfo, new_opts, &new_ip_info); if (ret) { err: free_optlist(new_opts); free_split_routes(&new_ip_info); } return ret; } static int gpst_get_config(struct openconnect_info *vpninfo) { char *orig_path; int result; struct oc_text_buf *request_body = buf_alloc(); const char *old_addr = vpninfo->ip_info.addr; const char *old_addr6 = vpninfo->ip_info.addr6; const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *xml_buf = NULL; /* submit getconfig request */ buf_append(request_body, "client-type=1&protocol-version=p1&app-version=5.1.5-8"); append_opt(request_body, "ipv6-support", vpninfo->disable_ipv6 ? "no" : "yes"); append_opt(request_body, "clientos", gpst_os_name(vpninfo)); append_opt(request_body, "os-version", vpninfo->platname); append_opt(request_body, "hmac-algo", "sha1,md5,sha256"); append_opt(request_body, "enc-algo", "aes-128-cbc,aes-256-cbc"); if (old_addr || old_addr6) { append_opt(request_body, "preferred-ip", old_addr); append_opt(request_body, "preferred-ipv6", old_addr6); filter_opts(request_body, vpninfo->cookie, "preferred-ip,preferred-ipv6", 0); } else buf_append(request_body, "&%s", vpninfo->cookie); if ((result = buf_error(request_body))) goto out; orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("ssl-vpn/getconfig.esp"); result = do_https_request(vpninfo, method, request_body_type, request_body, &xml_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; /* parse getconfig result */ if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, gpst_parse_config_xml, NULL, NULL); if (result) { /* XX: if our "cookie" is bogus (doesn't include at least 'user', 'authcookie', * and 'portal' fields) the server will respond like this. */ if (result == -EINVAL && xml_buf && !strcmp(xml_buf, "errors getting SSL/VPN config")) result = -EPERM; goto out; } if (!vpninfo->ip_info.mtu) { /* FIXME: GP gateway config always seems to be 0 */ char *no_esp_reason = NULL; #ifdef HAVE_ESP if (vpninfo->dtls_state == DTLS_DISABLED) no_esp_reason = _("ESP disabled"); else if (vpninfo->dtls_state == DTLS_NOSECRET) no_esp_reason = _("No ESP keys received"); #else no_esp_reason = _("ESP support not available in this build"); #endif if (!no_esp_reason) vpninfo->ip_info.mtu = calculate_mtu( vpninfo, 1, ESP_HEADER_SIZE + vpninfo->hmac_out_len + MAX_IV_SIZE, /* ESP header size */ ESP_FOOTER_SIZE, /* ESP footer (contributes to payload before padding) */ 16 /* blocksize for both AES-128 and AES-256 */ ); else vpninfo->ip_info.mtu = calculate_mtu(vpninfo, 0, TLS_OVERHEAD, 0, 1); vpn_progress(vpninfo, PRG_ERR, _("No MTU received. Calculated %d for %s%s\n"), vpninfo->ip_info.mtu, no_esp_reason ? "SSL tunnel. " : "ESP tunnel", no_esp_reason ? : ""); /* return -EINVAL; */ } out: buf_free(request_body); free(xml_buf); return result; } static int gpst_connect(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *reqbuf; static const char start_tunnel[12] = "START_TUNNEL"; /* NOT zero-terminated */ char buf[256]; /* We do NOT actually start the HTTPS tunnel if ESP is enabled and we received * ESP keys, because the ESP keys become invalid as soon as the HTTPS tunnel * is connected! >:-( */ if (vpninfo->dtls_state != DTLS_DISABLED && vpninfo->dtls_state != DTLS_NOSECRET) return 0; /* Connect to SSL VPN tunnel */ vpn_progress(vpninfo, PRG_DEBUG, _("Connecting to HTTPS tunnel endpoint ...\n")); ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "GET %s?", vpninfo->urlpath); filter_opts(reqbuf, vpninfo->cookie, "user,authcookie", 1); buf_append(reqbuf, " HTTP/1.1\r\n\r\n"); if ((ret = buf_error(reqbuf))) goto out; if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if ((ret = vpninfo->ssl_read(vpninfo, buf, 12)) < 0) { if (ret == -EINTR) goto out; vpn_progress(vpninfo, PRG_ERR, _("Error fetching GET-tunnel HTTPS response.\n")); ret = -EINVAL; goto out; } if (!strncmp(buf, start_tunnel, sizeof(start_tunnel))) { ret = 0; } else if (ret==0) { vpn_progress(vpninfo, PRG_ERR, _("Gateway disconnected immediately after GET-tunnel request.\n")); ret = -EPIPE; } else { if (ret==sizeof(start_tunnel)) { ret = vpninfo->ssl_gets(vpninfo, buf+sizeof(start_tunnel), sizeof(buf)-sizeof(start_tunnel)); ret = (ret>0 ? ret : 0) + sizeof(start_tunnel); } int status = check_http_status(buf, ret); /* XX: GP servers return 502 when they don't like the cookie */ if (status == 502) ret = -EPERM; else { vpn_progress(vpninfo, PRG_ERR, _("Got unexpected HTTP response: %.*s\n"), ret, buf); ret = -EINVAL; } } if (ret < 0) openconnect_close_https(vpninfo, 0); else { monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); vpninfo->ssl_times.last_rx = vpninfo->ssl_times.last_tx = time(NULL); /* connecting the HTTPS tunnel totally invalidates the ESP keys, hence shutdown */ if (vpninfo->proto->udp_shutdown) vpninfo->proto->udp_shutdown(vpninfo); } out: buf_free(reqbuf); return ret; } static int parse_hip_report_check(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { char *s = NULL; int result = -EINVAL; if (!xml_node || !xmlnode_is_named(xml_node, "response")) goto out; for (xml_node = xml_node->children; xml_node; xml_node=xml_node->next) { if (!xmlnode_get_val(xml_node, "hip-report-needed", &s)) { if (!strcmp(s, "no")) result = 0; else if (!strcmp(s, "yes")) result = -EAGAIN; else result = -EINVAL; goto out; } } out: free(s); return result; } /* Unlike CSD, the HIP security checker runs during the connection * phase, not during the authentication phase. * * The HIP security checker will (probably) ask us to resubmit the * HIP report if either of the following changes: * - Client IP address * - Client HIP report md5sum * * I'm not sure what the md5sum is computed over in the official * client, but it doesn't really matter. * * We just need an identifier for the combination of the local host * and the VPN gateway which won't change when our IP address * or authcookie are changed. */ static int build_csd_token(struct openconnect_info *vpninfo) { struct oc_text_buf *buf; unsigned char md5[16]; int i; if (vpninfo->csd_token) return 0; vpninfo->csd_token = malloc(MD5_SIZE * 2 + 1); if (!vpninfo->csd_token) return -ENOMEM; /* use cookie (excluding volatile authcookie and preferred-ip/ipv6) to build md5sum */ buf = buf_alloc(); filter_opts(buf, vpninfo->cookie, "authcookie,preferred-ip,preferred-ipv6", 0); if (buf_error(buf)) goto out; /* save as csd_token */ openconnect_md5(md5, buf->data, buf->pos); for (i=0; i < MD5_SIZE; i++) sprintf(&vpninfo->csd_token[i*2], "%02x", md5[i]); out: return buf_free(buf); } /* check if HIP report is needed (to ssl-vpn/hipreportcheck.esp) or submit HIP report contents (to ssl-vpn/hipreport.esp) */ static int check_or_submit_hip_report(struct openconnect_info *vpninfo, const char *report) { int result; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *xml_buf=NULL, *orig_path; /* cookie gives us these fields: authcookie, portal, user, domain, computer, and (maybe the unnecessary) preferred-ip/ipv6 */ buf_append(request_body, "client-role=global-protect-full&%s", vpninfo->cookie); if (vpninfo->ip_info.addr) append_opt(request_body, "client-ip", vpninfo->ip_info.addr); if (vpninfo->ip_info.addr6) append_opt(request_body, "client-ipv6", vpninfo->ip_info.addr6); if (report) { /* XML report contains many characters requiring URL-encoding (%xx) */ buf_ensure_space(request_body, strlen(report)*3); append_opt(request_body, "report", report); } else { result = build_csd_token(vpninfo); if (result) goto out; append_opt(request_body, "md5", vpninfo->csd_token); } if ((result = buf_error(request_body))) goto out; orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup(report ? "ssl-vpn/hipreport.esp" : "ssl-vpn/hipreportcheck.esp"); result = do_https_request(vpninfo, method, request_body_type, request_body, &xml_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, report ? NULL : parse_hip_report_check, NULL, NULL); out: buf_free(request_body); free(xml_buf); return result; } static int run_hip_script(struct openconnect_info *vpninfo) { #if !defined(_WIN32) && !defined(__native_client__) int pipefd[2]; int ret; pid_t child; #endif if (!vpninfo->csd_wrapper) { /* Only warn once */ if (!vpninfo->last_trojan) { vpn_progress(vpninfo, PRG_ERR, _("WARNING: Server asked us to submit HIP report with md5sum %s.\n" " VPN connectivity may be disabled or limited without HIP report submission.\n %s\n"), vpninfo->csd_token, #if defined(_WIN32) || defined(__native_client__) _("However, running the HIP report submission script on this platform is not yet implemented.") #else _("You need to provide a --csd-wrapper argument with the HIP report submission script.") #endif ); /* XXX: Many GlobalProtect VPNs work fine despite allegedly requiring HIP report submission */ } return 0; } #if defined(_WIN32) || defined(__native_client__) vpn_progress(vpninfo, PRG_ERR, _("Error: Running the 'HIP Report' script on this platform is not yet implemented.\n")); return -EPERM; #else vpn_progress(vpninfo, PRG_INFO, _("Trying to run HIP Trojan script '%s'.\n"), vpninfo->csd_wrapper); #ifdef __linux__ if (pipe2(pipefd, O_CLOEXEC)) #endif { if (pipe(pipefd)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create pipe for HIP script\n")); return -EPERM; } set_fd_cloexec(pipefd[0]); set_fd_cloexec(pipefd[1]); } child = fork(); if (child == -1) { vpn_progress(vpninfo, PRG_ERR, _("Failed to fork for HIP script\n")); return -EPERM; } else if (child > 0) { /* in parent: read report from child */ struct oc_text_buf *report_buf = buf_alloc(); char b[256]; int i, status; close(pipefd[1]); buf_truncate(report_buf); while ((i = read(pipefd[0], b, sizeof(b))) > 0) buf_append_bytes(report_buf, b, i); waitpid(child, &status, 0); if (!WIFEXITED(status)) { vpn_progress(vpninfo, PRG_ERR, _("HIP script '%s' exited abnormally\n"), vpninfo->csd_wrapper); ret = -EINVAL; } else if (WEXITSTATUS(status) != 0) { vpn_progress(vpninfo, PRG_ERR, _("HIP script '%s' returned non-zero status: %d\n"), vpninfo->csd_wrapper, WEXITSTATUS(status)); ret = -EINVAL; } else { vpn_progress(vpninfo, PRG_INFO, _("HIP script '%s' completed successfully (report is %d bytes).\n"), vpninfo->csd_wrapper, report_buf->pos); ret = check_or_submit_hip_report(vpninfo, report_buf->data); if (ret < 0) vpn_progress(vpninfo, PRG_ERR, _("HIP report submission failed.\n")); else { vpn_progress(vpninfo, PRG_INFO, _("HIP report submitted successfully.\n")); ret = 0; } } buf_free(report_buf); return ret; } else { /* in child: run HIP script */ const char *hip_argv[32]; int i = 0; close(pipefd[0]); /* The duplicated fd does not have O_CLOEXEC */ dup2(pipefd[1], 1); if (set_csd_user(vpninfo) < 0) exit(1); hip_argv[i++] = openconnect_utf8_to_legacy(vpninfo, vpninfo->csd_wrapper); hip_argv[i++] = "--cookie"; hip_argv[i++] = vpninfo->cookie; if (vpninfo->ip_info.addr) { hip_argv[i++] = "--client-ip"; hip_argv[i++] = vpninfo->ip_info.addr; } if (vpninfo->ip_info.addr6) { hip_argv[i++] = "--client-ipv6"; hip_argv[i++] = vpninfo->ip_info.addr6; } hip_argv[i++] = "--md5"; hip_argv[i++] = vpninfo->csd_token; hip_argv[i++] = "--client-os"; hip_argv[i++] = gpst_os_name(vpninfo); hip_argv[i++] = NULL; execv(hip_argv[0], (char **)hip_argv); vpn_progress(vpninfo, PRG_ERR, _("Failed to exec HIP script %s\n"), hip_argv[0]); exit(1); } #endif /* !_WIN32 && !__native_client__ */ } static int check_and_maybe_submit_hip_report(struct openconnect_info *vpninfo) { int ret; ret = check_or_submit_hip_report(vpninfo, NULL); if (ret == -EAGAIN) { vpn_progress(vpninfo, PRG_DEBUG, _("Gateway says HIP report submission is needed.\n")); ret = run_hip_script(vpninfo); } else if (ret == 0) vpn_progress(vpninfo, PRG_DEBUG, _("Gateway says no HIP report submission is needed.\n")); return ret; } int gpst_setup(struct openconnect_info *vpninfo) { int ret; /* ESP keys are invalid as soon as we (re-)fetch the configuration, hence shutdown */ if (vpninfo->proto->udp_shutdown) vpninfo->proto->udp_shutdown(vpninfo); /* Get configuration */ ret = gpst_get_config(vpninfo); if (ret) goto out; /* Always check HIP after getting configuration */ ret = check_and_maybe_submit_hip_report(vpninfo); if (ret) goto out; /* XX: last_trojan is used both as a sentinel to detect the * first time we check/submit HIP, and for the mainloop to timeout * when periodic re-checking is required. */ vpninfo->last_trojan = time(NULL); /* Default HIP re-checking to 3600 seconds unless already set by * --force-trojan or portal config. */ if (!vpninfo->trojan_interval) vpninfo->trojan_interval = 3600; /* Connect tunnel immediately if ESP is not going to be used */ ret = gpst_connect(vpninfo); out: return ret; } int gpst_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; uint16_t ethertype; uint32_t one, zero, magic; /* Starting the HTTPS tunnel kills ESP, so we avoid starting * it if the ESP tunnel is connected or connecting. */ switch (vpninfo->dtls_state) { case DTLS_CONNECTING: /* Can never happen */ case DTLS_CONNECTED: openconnect_close_https(vpninfo, 0); /* don't keep stale HTTPS socket */ vpn_progress(vpninfo, PRG_INFO, _("ESP tunnel connected; exiting HTTPS mainloop.\n")); vpninfo->dtls_state = DTLS_ESTABLISHED; /* Now that we are connected, let's ensure timeout is less than * or equal to DTLS DPD/keepalive else we might over sleep, eg * if timeout is set to DTLS attempt period from ESP mainloop, * and falsely detect dead peer. */ if (vpninfo->dtls_times.dpd) if (*timeout > vpninfo->dtls_times.dpd * 1000) *timeout = vpninfo->dtls_times.dpd * 1000; /* fall through */ case DTLS_ESTABLISHED: /* Rekey or check-and-resubmit HIP if needed */ if (keepalive_action(&vpninfo->ssl_times, timeout) == KA_REKEY) goto do_rekey; else if (trojan_check_deadline(vpninfo, timeout)) goto do_recheck_hip; return 0; case DTLS_SECRET: case DTLS_SLEEPING: /* Allow 5 seconds after configuration for ESP to start */ if (!ka_check_deadline(timeout, time(NULL), vpninfo->new_dtls_started + 5)) { vpninfo->delay_tunnel_reason = "awaiting GPST ESP connection"; return 0; } /* ... before we switch to HTTPS instead */ vpn_progress(vpninfo, PRG_ERR, _("Failed to connect ESP tunnel; using HTTPS instead.\n")); /* XX: gpst_connect does nothing if ESP is enabled and has secrets */ vpninfo->dtls_state = DTLS_NOSECRET; if (gpst_connect(vpninfo)) { vpninfo->quit_reason = "GPST connect failed"; return 1; } break; case DTLS_NOSECRET: /* HTTPS tunnel already started, or getconfig.esp did not provide any ESP keys */ case DTLS_DISABLED: /* ESP is disabled */ ; } if (vpninfo->ssl_fd == -1) goto do_reconnect; while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); int len, payload_len; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = alloc_pkt(vpninfo, receive_mtu); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } len = ssl_nonblock_read(vpninfo, 0, vpninfo->cstp_pkt->gpst.hdr, receive_mtu + 16); if (!len) break; if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Packet receive error: %s\n"), strerror(-len)); goto do_reconnect; } if (len < 16) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } /* check packet header */ magic = load_be32(vpninfo->cstp_pkt->gpst.hdr); ethertype = load_be16(vpninfo->cstp_pkt->gpst.hdr + 4); payload_len = load_be16(vpninfo->cstp_pkt->gpst.hdr + 6); one = load_le32(vpninfo->cstp_pkt->gpst.hdr + 8); zero = load_le32(vpninfo->cstp_pkt->gpst.hdr + 12); if (magic != 0x1a2b3c4d) goto unknown_pkt; if (len != 16 + payload_len) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected packet length. SSL_read returned %d (includes 16 header bytes) but header payload_len is %d\n"), len, payload_len); dump_buf_hex(vpninfo, PRG_ERR, '<', vpninfo->cstp_pkt->gpst.hdr, 16); continue; } vpninfo->ssl_times.last_rx = time(NULL); switch (ethertype) { case 0: vpn_progress(vpninfo, PRG_DEBUG, _("Got GPST DPD/keepalive response\n")); if (one != 0 || zero != 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Expected 0000000000000000 as last 8 bytes of DPD/keepalive packet header, but got:\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '<', vpninfo->cstp_pkt->gpst.hdr + 8, 8); } continue; case 0x0800: case 0x86DD: vpn_progress(vpninfo, PRG_TRACE, _("Received IPv%d data packet of %d bytes\n"), ethertype == 0x86DD ? 6 : 4, payload_len); if (one != 1 || zero != 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Expected 0100000000000000 as last 8 bytes of data packet header, but got:\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '<', vpninfo->cstp_pkt->gpst.hdr + 8, 8); } vpninfo->cstp_pkt->len = payload_len; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; work_done = 1; continue; } unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown packet. Header dump follows:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', vpninfo->cstp_pkt->gpst.hdr, 16); vpninfo->quit_reason = "Unknown packet received"; return 1; } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); ret = ssl_nonblock_write(vpninfo, 0, vpninfo->current_ssl_pkt->gpst.hdr, vpninfo->current_ssl_pkt->len + 16); if (ret < 0) goto do_reconnect; else if (!ret) { switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: goto do_rekey; case KA_DPD_DEAD: goto peer_dead; case KA_NONE: return work_done; } } if (ret != vpninfo->current_ssl_pkt->len + 16) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 16, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt != &dpd_pkt) free_pkt(vpninfo, vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } if (trojan_check_deadline(vpninfo, timeout)) { do_recheck_hip: vpn_progress(vpninfo, PRG_INFO, _("GlobalProtect HIP check due\n")); /* We could just be lazy and treat this as a reconnect, but that * would require us to repull the routing configuration and new ESP * keys, instead of just redoing the HIP check/submission. * * Therefore we'll just close the HTTPS tunnel (if up), * redo the HIP check/submission, and reconnect the HTTPS tunnel * if needed. */ openconnect_close_https(vpninfo, 0); ret = check_and_maybe_submit_hip_report(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("HIP check or report failed\n")); vpninfo->quit_reason = "HIP check or report failed"; return ret; } /* XX: no need to do_reconnect, since ESP doesn't need reconnection */ if (gpst_connect(vpninfo)) vpninfo->quit_reason = "GPST connect failed"; return 1; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: vpn_progress(vpninfo, PRG_INFO, _("GlobalProtect rekey due\n")); goto do_reconnect; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("GPST Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "GPST connect failed"; return ret; } if (vpninfo->proto->udp_setup) vpninfo->proto->udp_setup(vpninfo); return 1; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_ESTABLISHED && vpninfo->outgoing_queue.head) break; /* fall through */ case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send GPST DPD/keepalive request\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; } /* Service outgoing packet queue */ while (vpninfo->dtls_state != DTLS_ESTABLISHED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; /* IPv4 or IPv6 EtherType */ int ethertype = this->len && (this->data[0] & 0xF0) == 0x60 ? 0x86DD : 0x0800; /* store header */ store_be32(this->gpst.hdr, 0x1a2b3c4d); store_be16(this->gpst.hdr + 4, ethertype); store_be16(this->gpst.hdr + 6, this->len); store_le32(this->gpst.hdr + 8, 1); store_le32(this->gpst.hdr + 12, 0); vpn_progress(vpninfo, PRG_TRACE, _("Sending IPv%d data packet of %d bytes\n"), (ethertype == 0x86DD ? 6 : 4), this->len); goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } #ifdef HAVE_ESP static inline uint32_t csum_partial(uint16_t *buf, int nwords) { uint32_t sum = 0; for(sum=0; nwords>0; nwords--) sum += ntohs(*buf++); return sum; } static inline uint16_t csum_finish(uint32_t sum) { sum = (sum >> 16) + (sum &0xffff); sum += (sum >> 16); return htons((uint16_t)(~sum)); } static inline uint16_t csum(uint16_t *buf, int nwords) { return csum_finish(csum_partial(buf, nwords)); } static char magic_ping_payload[16] = "monitor\x00\x00pan ha "; int gpst_esp_send_probes(struct openconnect_info *vpninfo) { /* The GlobalProtect VPN initiates and maintains the ESP connection * using specially-crafted ICMP ("ping") packets. * * 1) These ping packets have a special magic payload. It must * include at least the 16 bytes below. The Windows client actually * sends this 56-byte version, but the remaining bytes don't * seem to matter: * * "monitor\x00\x00pan ha 0123456789:;<=>? !\"#$%&\'()*+,-./\x10\x11\x12\x13\x14\x15\x16\x17"; * * 2) The ping packets are addressed to the IP supplied in the * config XML as . In most cases, this is the * same as the *external* IP address of the VPN gateway * (vpninfo->ip_info.gateway_addr), but in some cases it is a * separate address. * * Don't blame me. I didn't design this. */ const int icmplen = ICMP_MINLEN + sizeof(magic_ping_payload); int plen, seq; if (vpninfo->esp_magic_af == AF_INET6) plen = sizeof(struct ip6_hdr) + icmplen; else plen = sizeof(struct ip) + icmplen; struct pkt *pkt = alloc_pkt(vpninfo, plen + vpninfo->pkt_trailer); if (!pkt) return -ENOMEM; if (vpninfo->dtls_fd == -1) { int fd = udp_connect(vpninfo); if (fd < 0) { free_pkt(vpninfo, pkt); return fd; } /* We are not connected until we get an ESP packet back */ vpninfo->dtls_state = DTLS_SLEEPING; vpninfo->dtls_fd = fd; monitor_fd_new(vpninfo, dtls); monitor_read_fd(vpninfo, dtls); monitor_except_fd(vpninfo, dtls); } for (seq=1; seq <= (vpninfo->dtls_state==DTLS_ESTABLISHED ? 1 : 3); seq++) { if (vpninfo->esp_magic_af == AF_INET6) { memset(pkt, 0, sizeof(*pkt) + plen); pkt->len = plen; struct ip6_hdr *iph = (void *)pkt->data; struct icmp6_hdr *icmph = (void *)(pkt->data + sizeof(*iph)); /* IPv6 Header */ iph->ip6_flow = htonl((6 << 28) + /* version 6 */ (0 << 20) + /* traffic class; match Windows client */ (0 << 0)); /* flow ID; match Windows client */ iph->ip6_nxt = IPPROTO_ICMPV6; iph->ip6_plen = htons(icmplen); iph->ip6_hlim = 128; /* what the Windows client uses */ inet_pton(AF_INET6, vpninfo->ip_info.addr6, &iph->ip6_src); memcpy(&iph->ip6_dst, vpninfo->esp_magic, 16); /* ICMPv6 echo request */ icmph->icmp6_type = ICMP6_ECHO_REQUEST; icmph->icmp6_code = 0; /* Windows client seemingly uses random IDs here but fall back to * 0x4747 even if only to keep Coverity happy about error checking. */ if (openconnect_random(&icmph->icmp6_data16[0], 2)) icmph->icmp6_data16[0] = htons(0x4747); icmph->icmp6_data16[1] = htons(seq); /* sequence */ /* required to get gateway to respond */ memcpy(&icmph[1], magic_ping_payload, sizeof(magic_ping_payload)); /* * IPv6 upper-layer checksums include a pseudo-header * for IPv6 which contains the source address, the * destination address, the upper-layer packet length * and next-header field. See RFC8200 §8.1. The * checksum is as follows: * * checksum 32 bytes of real IPv6 header: * src addr (16 bytes) * dst addr (16 bytes) * 8 bytes more: * length of ICMPv6 in bytes (be32) * 3 bytes of 0 * next header byte (IPPROTO_ICMPV6) * Then the actual ICMPv6 bytes */ uint32_t sum = csum_partial((uint16_t *)&iph->ip6_src, 8); /* 8 uint16_t */ sum += csum_partial((uint16_t *)&iph->ip6_dst, 8); /* 8 uint16_t */ /* The easiest way to checksum the following 8-byte * part of the pseudo-header without horridly violating * C type aliasing rules is *not* to build it in memory * at all. We know the length fits in 16 bits so the * partial checksum of 00 00 LL LL 00 00 00 NH ends up * being just LLLL + NH. */ sum += IPPROTO_ICMPV6; sum += ICMP_MINLEN + sizeof(magic_ping_payload); sum += csum_partial((uint16_t *)icmph, icmplen / 2); icmph->icmp6_cksum = csum_finish(sum); } else { memset(pkt, 0, sizeof(*pkt) + plen); pkt->len = plen; struct ip *iph = (void *)pkt->data; struct icmp *icmph = (void *)(pkt->data + sizeof(*iph)); char *pmagic = (void *)(pkt->data + sizeof(*iph) + ICMP_MINLEN); /* IP Header */ iph->ip_hl = 5; iph->ip_v = 4; iph->ip_len = htons(sizeof(*iph) + icmplen); iph->ip_id = htons(0x4747); /* what the Windows client uses */ iph->ip_off = htons(IP_DF); /* don't fragment, frag offset = 0 */ iph->ip_ttl = 64; /* hops */ iph->ip_p = IPPROTO_ICMP; iph->ip_src.s_addr = inet_addr(vpninfo->ip_info.addr); memcpy(&iph->ip_dst.s_addr, vpninfo->esp_magic, 4); iph->ip_sum = csum((uint16_t *)iph, sizeof(*iph)/2); /* ICMP echo request */ icmph->icmp_type = ICMP_ECHO; icmph->icmp_hun.ih_idseq.icd_id = htons(0x4747); icmph->icmp_hun.ih_idseq.icd_seq = htons(seq); memcpy(pmagic, magic_ping_payload, sizeof(magic_ping_payload)); /* required to get gateway to respond */ icmph->icmp_cksum = csum((uint16_t *)icmph, (ICMP_MINLEN+sizeof(magic_ping_payload))/2); } if (vpninfo->dtls_state != DTLS_ESTABLISHED) { vpn_progress(vpninfo, PRG_TRACE, _("ICMPv%d probe packet (seq %d) for GlobalProtect ESP:\n"), vpninfo->esp_magic_af == AF_INET6 ? 6 : 4, seq); dump_buf_hex(vpninfo, PRG_TRACE, '>', pkt->data, pkt->len); } int pktlen = construct_esp_packet(vpninfo, pkt, vpninfo->esp_magic_af == AF_INET6 ? IPPROTO_IPV6 : IPPROTO_IPIP); if (pktlen < 0 || send(vpninfo->dtls_fd, (void *)&pkt->esp, pktlen, 0) < 0) vpn_progress(vpninfo, PRG_DEBUG, _("Failed to send ESP probe\n")); } free_pkt(vpninfo, pkt); vpninfo->dtls_times.last_tx = time(&vpninfo->new_dtls_started); return 0; } int gpst_esp_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt) { if (vpninfo->esp_magic_af == AF_INET6) { struct ip6_hdr *iph = (void *)(pkt->data); return ( pkt->len >= 41 && (ntohl(iph->ip6_flow) >> 28)==6 /* IPv6 header */ && iph->ip6_nxt == IPPROTO_ICMPV6 /* IPv6 next header field = ICMPv6 */ && !memcmp(&iph->ip6_src, vpninfo->esp_magic, 16) /* source == magic address */ && pkt->len >= 40 + ICMP_MINLEN + sizeof(magic_ping_payload) /* No short-packet segfaults */ && pkt->data[40]==ICMP6_ECHO_REPLY /* ICMPv6 reply */ && !memcmp(&pkt->data[40 + ICMP_MINLEN], magic_ping_payload, sizeof(magic_ping_payload)) /* Same magic payload in response */ ); } else { struct ip *iph = (void *)(pkt->data); return ( pkt->len >= 21 && iph->ip_v==4 /* IPv4 header */ && iph->ip_p==IPPROTO_ICMP /* IPv4 protocol field == ICMP */ && !memcmp(&iph->ip_src.s_addr, vpninfo->esp_magic, 4) /* source == magic address */ && pkt->len >= (iph->ip_hl<<2) + ICMP_MINLEN + sizeof(magic_ping_payload) /* No short-packet segfaults */ && pkt->data[iph->ip_hl<<2]==ICMP_ECHOREPLY /* ICMP reply */ && !memcmp(&pkt->data[(iph->ip_hl<<2) + ICMP_MINLEN], magic_ping_payload, sizeof(magic_ping_payload)) /* Same magic payload in response */ ); } } #endif /* HAVE_ESP */ openconnect-8.20/gnutls_tpm.c0000644000076400007640000002204714067426206020104 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * TPM code based on client-tpm.c from * Carolin Latze and Tobias Soder */ #include #include "openconnect-internal.h" #include "gnutls.h" #include #include #include #ifdef HAVE_TROUSERS #include #include struct oc_tpm1_ctx { TSS_HCONTEXT tpm_context; TSS_HKEY srk; TSS_HPOLICY srk_policy; TSS_HKEY tpm_key; TSS_HPOLICY tpm_key_policy; }; /* Signing function for TPM privkeys, set with gnutls_privkey_import_ext() */ static int tpm_sign_fn(gnutls_privkey_t key, void *_certinfo, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; TSS_HHASH hash; int err; vpn_progress(vpninfo, PRG_DEBUG, _("TPM sign function called for %d bytes.\n"), data->size); err = Tspi_Context_CreateObject(certinfo->tpm1->tpm_context, TSS_OBJECT_TYPE_HASH, TSS_HASH_OTHER, &hash); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create TPM hash object: %s\n"), Trspi_Error_String(err)); return GNUTLS_E_PK_SIGN_FAILED; } err = Tspi_Hash_SetHashValue(hash, data->size, data->data); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set value in TPM hash object: %s\n"), Trspi_Error_String(err)); Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, hash); return GNUTLS_E_PK_SIGN_FAILED; } err = Tspi_Hash_Sign(hash, certinfo->tpm1->tpm_key, &sig->size, &sig->data); Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, hash); if (err) { if (certinfo->tpm1->tpm_key_policy || err != TPM_E_AUTHFAIL) vpn_progress(vpninfo, PRG_ERR, _("TPM hash signature failed: %s\n"), Trspi_Error_String(err)); if (err == TPM_E_AUTHFAIL) return GNUTLS_E_INSUFFICIENT_CREDENTIALS; else return GNUTLS_E_PK_SIGN_FAILED; } return 0; } int load_tpm1_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_datum_t *fdata, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig) { static const TSS_UUID SRK_UUID = TSS_UUID_SRK; gnutls_datum_t asn1; unsigned int tss_len; char *pass; int ofs, err; err = gnutls_pem_base64_decode_alloc("TSS KEY BLOB", fdata, &asn1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Error decoding TSS key blob: %s\n"), gnutls_strerror(err)); return -EINVAL; } certinfo->tpm1 = calloc(1, sizeof(*certinfo->tpm1)); /* Ick. We have to parse the ASN1 OCTET_STRING for ourselves. */ if (asn1.size < 2 || asn1.data[0] != 0x04 /* OCTET_STRING */) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } tss_len = asn1.data[1]; ofs = 2; if (tss_len & 0x80) { int lenlen = tss_len & 0x7f; if (asn1.size < 2 + lenlen || lenlen > 3) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } tss_len = 0; while (lenlen) { tss_len <<= 8; tss_len |= asn1.data[ofs++]; lenlen--; } } if (tss_len + ofs != asn1.size) { vpn_progress(vpninfo, PRG_ERR, _("Error in TSS key blob\n")); goto out_blob; } err = Tspi_Context_Create(&certinfo->tpm1->tpm_context); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create TPM context: %s\n"), Trspi_Error_String(err)); goto out_blob; } err = Tspi_Context_Connect(certinfo->tpm1->tpm_context, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to connect TPM context: %s\n"), Trspi_Error_String(err)); goto out_context; } err = Tspi_Context_LoadKeyByUUID(certinfo->tpm1->tpm_context, TSS_PS_TYPE_SYSTEM, SRK_UUID, &certinfo->tpm1->srk); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM SRK key: %s\n"), Trspi_Error_String(err)); goto out_context; } err = Tspi_GetPolicyObject(certinfo->tpm1->srk, TSS_POLICY_USAGE, &certinfo->tpm1->srk_policy); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM SRK policy object: %s\n"), Trspi_Error_String(err)); goto out_srk; } pass = certinfo->password; certinfo->password = NULL; while (1) { static const char nullpass[20]; /* We don't seem to get the error here... */ if (pass) err = Tspi_Policy_SetSecret(certinfo->tpm1->srk_policy, TSS_SECRET_MODE_PLAIN, strlen(pass), (BYTE *)pass); else /* Well-known NULL key */ err = Tspi_Policy_SetSecret(certinfo->tpm1->srk_policy, TSS_SECRET_MODE_SHA1, sizeof(nullpass), (BYTE *)nullpass); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set TPM PIN: %s\n"), Trspi_Error_String(err)); goto out_srkpol; } free_pass(&pass); /* ... we get it here instead. */ err = Tspi_Context_LoadKeyByBlob(certinfo->tpm1->tpm_context, certinfo->tpm1->srk, tss_len, asn1.data + ofs, &certinfo->tpm1->tpm_key); if (!err) break; if (pass) vpn_progress(vpninfo, PRG_ERR, _("Failed to load TPM key blob: %s\n"), Trspi_Error_String(err)); if (err != TPM_E_AUTHFAIL) goto out_srkpol; err = request_passphrase(vpninfo, "openconnect_tpm_srk", &pass, _("Enter TPM SRK PIN:")); if (err) goto out_srkpol; } gnutls_privkey_init(pkey); /* This would be nicer if there was a destructor callback. I could allocate a data structure with the TPM handles and the vpninfo pointer, and destroy that properly when the key is destroyed. */ gnutls_privkey_import_ext(*pkey, GNUTLS_PK_RSA, certinfo, tpm_sign_fn, NULL, 0); retry_sign: err = gnutls_privkey_sign_data(*pkey, GNUTLS_DIG_SHA1, 0, fdata, pkey_sig); if (err == GNUTLS_E_INSUFFICIENT_CREDENTIALS) { if (!certinfo->tpm1->tpm_key_policy) { err = Tspi_Context_CreateObject(certinfo->tpm1->tpm_context, TSS_OBJECT_TYPE_POLICY, TSS_POLICY_USAGE, &certinfo->tpm1->tpm_key_policy); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to create key policy object: %s\n"), Trspi_Error_String(err)); goto out_key; } err = Tspi_Policy_AssignToObject(certinfo->tpm1->tpm_key_policy, certinfo->tpm1->tpm_key); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to assign policy to key: %s\n"), Trspi_Error_String(err)); goto out_key_policy; } } err = request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_tpm_key", "openconnect_secondary_tpm_key"), &pass, certinfo_string(certinfo, _("Enter TPM key PIN:"), _("Enter secondary key TPM PIN:"))); if (err) goto out_key_policy; err = Tspi_Policy_SetSecret(certinfo->tpm1->tpm_key_policy, TSS_SECRET_MODE_PLAIN, strlen(pass), (void *)pass); free_pass(&pass); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set key PIN: %s\n"), Trspi_Error_String(err)); goto out_key_policy; } goto retry_sign; } free(asn1.data); return 0; out_key_policy: Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->tpm_key_policy); certinfo->tpm1->tpm_key_policy = 0; out_key: Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->tpm_key); certinfo->tpm1->tpm_key = 0; out_srkpol: Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->srk_policy); certinfo->tpm1->srk_policy = 0; out_srk: Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->srk); certinfo->tpm1->srk = 0; out_context: Tspi_Context_Close(certinfo->tpm1->tpm_context); certinfo->tpm1->tpm_context = 0; out_blob: free(asn1.data); free(certinfo->tpm1); certinfo->tpm1 = NULL; return -EIO; } void release_tpm1_ctx(struct openconnect_info *vpninfo, struct cert_info *certinfo) { if (!certinfo->tpm1) return; if (certinfo->tpm1->tpm_key_policy) { Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->tpm_key_policy); certinfo->tpm1->tpm_key = 0; } if (certinfo->tpm1->tpm_key) { Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->tpm_key); certinfo->tpm1->tpm_key = 0; } if (certinfo->tpm1->srk_policy) { Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->srk_policy); certinfo->tpm1->srk_policy = 0; } if (certinfo->tpm1->srk) { Tspi_Context_CloseObject(certinfo->tpm1->tpm_context, certinfo->tpm1->srk); certinfo->tpm1->srk = 0; } if (certinfo->tpm1->tpm_context) { Tspi_Context_Close(certinfo->tpm1->tpm_context); certinfo->tpm1->tpm_context = 0; } free(certinfo->tpm1); certinfo->tpm1 = NULL; }; #endif /* HAVE_TROUSERS */ openconnect-8.20/mtucalc.c0000644000076400007640000000752714067426206017346 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020 Daniel Lenski * * Authors: Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #if defined(__linux__) /* For TCP_INFO */ # include #endif #define ESP_HEADER_SIZE (4 /* SPI */ + 4 /* sequence number */) #define ESP_FOOTER_SIZE (1 /* pad length */ + 1 /* next header */) #define UDP_HEADER_SIZE 8 #define TCP_HEADER_SIZE 20 /* with no options */ #define IPV4_HEADER_SIZE 20 #define IPV6_HEADER_SIZE 40 /* Calculate MTU of a tunnel. * * is_udp: 1 if outer packet is UDP, 0 if TCP * unpadded_overhead: overhead that does not get padded (headers or footers) * padded_overhead: overhead that gets before padding the payload (typically footers) * block_size: block size that payload will be padded to AFTER adding padded overhead */ int calculate_mtu(struct openconnect_info *vpninfo, int is_udp, int unpadded_overhead, int padded_overhead, int block_size) { int mtu = vpninfo->reqmtu, base_mtu = vpninfo->basemtu; int mss = 0; /* Try to figure out base_mtu (from TCP PMTU), and save TCP MSS for later */ #if defined(__linux__) && defined(TCP_INFO) if (!mtu) { struct tcp_info ti; socklen_t ti_size = sizeof(ti); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_INFO, &ti, &ti_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_INFO rcv mss %d, snd mss %d, adv mss %d, pmtu %d\n"), ti.tcpi_rcv_mss, ti.tcpi_snd_mss, ti.tcpi_advmss, ti.tcpi_pmtu); /* If base_mtu unknown, use TCP PMTU */ if (!base_mtu) { base_mtu = ti.tcpi_pmtu; } /* Use largest MSS */ mss = MAX(ti.tcpi_rcv_mss, ti.tcpi_snd_mss); mss = MAX(mss, ti.tcpi_advmss); } } #endif #ifdef TCP_MAXSEG if (!mtu && !mss) { socklen_t mss_size = sizeof(mss); if (!getsockopt(vpninfo->ssl_fd, IPPROTO_TCP, TCP_MAXSEG, &mss, &mss_size)) { vpn_progress(vpninfo, PRG_DEBUG, _("TCP_MAXSEG %d\n"), mss); } } #endif /* Default base_mtu needs to be big enough for IPv6 (1280 minimum) */ if (!base_mtu) { /* Default */ base_mtu = 1406; } if (base_mtu < 1280) base_mtu = 1280; vpn_progress(vpninfo, PRG_TRACE, _("Using base_mtu of %d\n"), base_mtu); /* base_mtu is now (we hope) the PMTU between our external network interface * and the VPN gateway */ if (!mtu) { if (!is_udp && mss) /* MSS already has IP, TCP header size removed */ mtu = mss; else { /* remove TCP/UDP, IP headers from base (wire) MTU */ mtu = base_mtu - (is_udp ? UDP_HEADER_SIZE : TCP_HEADER_SIZE); mtu -= (vpninfo->peer_addr->sa_family == AF_INET6) ? IPV6_HEADER_SIZE : IPV4_HEADER_SIZE; } } vpn_progress(vpninfo, PRG_TRACE, _("After removing %s/IPv%d headers, MTU of %d\n"), (is_udp ? "UDP" : "TCP"), vpninfo->peer_addr->sa_family == AF_INET6 ? 6 : 4, mtu); /* MTU is now (we hope) the number of payload bytes that can fit in a UDP or * TCP packet exchanged with the VPN gateway. */ mtu -= unpadded_overhead; /* remove protocol-specific overhead that isn't affected by padding */ mtu -= mtu % block_size; /* round down to a multiple of blocksize */ mtu -= padded_overhead; /* remove protocol-specific overhead that contributes to payload padding */ vpn_progress(vpninfo, PRG_TRACE, _("After removing protocol specific overhead (%d unpadded, %d padded, %d blocksize), MTU of %d\n"), unpadded_overhead, padded_overhead, block_size, mtu); return mtu; } openconnect-8.20/Makefile.in0000644000076400007640000044514114204505636017613 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.2 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2020 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @BUILD_WWW_TRUE@am__append_1 = www @USE_NLS_TRUE@am__append_2 = po sbin_PROGRAMS = openconnect$(EXEEXT) @OPENCONNECT_WIN32_TRUE@am__append_3 = openconnect.rc @OPENCONNECT_VHOST_TRUE@am__append_4 = $(lib_srcs_vhost) @OPENCONNECT_LIBPCSCLITE_TRUE@am__append_5 = $(lib_srcs_yubikey) @OPENCONNECT_STOKEN_TRUE@am__append_6 = $(lib_srcs_stoken) @OPENCONNECT_GSSAPI_TRUE@am__append_7 = $(lib_srcs_gssapi) @OPENCONNECT_GNUTLS_TRUE@am__append_8 = $(lib_srcs_gnutls) @OPENCONNECT_GNUTLS_TRUE@am__append_9 = gnutls-esp.c @OPENCONNECT_GNUTLS_TRUE@am__append_10 = gnutls-dtls.c @OPENCONNECT_TSS2_ESYS_TRUE@am__append_11 = gnutls_tpm2_esys.c @OPENCONNECT_TSS2_IBM_TRUE@am__append_12 = gnutls_tpm2_ibm.c @OPENCONNECT_OPENSSL_TRUE@am__append_13 = $(lib_srcs_openssl) @OPENCONNECT_OPENSSL_TRUE@am__append_14 = openssl-esp.c @OPENCONNECT_OPENSSL_TRUE@am__append_15 = openssl-dtls.c @OPENCONNECT_DTLS_TRUE@am__append_16 = $(lib_srcs_dtls) @OPENCONNECT_ESP_TRUE@am__append_17 = $(lib_srcs_esp) @OPENCONNECT_ICONV_TRUE@am__append_18 = $(lib_srcs_iconv) @BUILTIN_JSON_TRUE@am__append_19 = json/json.c json/json.h @OPENCONNECT_WIN32_TRUE@am__append_20 = $(lib_srcs_win32) @OPENCONNECT_WIN32_FALSE@am__append_21 = $(lib_srcs_posix) @HAVE_VSCRIPT_TRUE@am__append_22 = @VSCRIPT_LDFLAGS@,libopenconnect.map @HAVE_VSCRIPT_FALSE@libopenconnect_la_DEPENDENCIES = \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) \ @HAVE_VSCRIPT_FALSE@ $(am__DEPENDENCIES_1) @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__append_23 = jni.c @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__append_24 = $(JNI_CFLAGS) -Wno-missing-declarations @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am__append_25 = libopenconnect-wrapper.la @BUILD_NSIS_TRUE@am__append_26 = .*.dll.d .*.exe.d file-list*.txt instfiles.nsh uninstfiles.nsh vpnc-script-win.js openconnect.nsi openconnect-installer.exe @BUILD_NSIS_TRUE@@OPENCONNECT_WINTUN_TRUE@am__append_27 = $(WINTUN_DLL) subdir = . ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(top_srcdir)/configure \ $(am__configure_deps) $(include_HEADERS) $(noinst_HEADERS) \ $(am__DIST_COMMON) am__CONFIG_DISTCLEAN_FILES = config.status config.cache config.log \ configure.lineno config.status.lineno mkinstalldirs = $(install_sh) -d CONFIG_HEADER = config.h CONFIG_CLEAN_FILES = openconnect.pc libopenconnect.map openconnect.8 \ tests/configs/test-user-cert.config \ tests/configs/test-user-pass.config CONFIG_CLEAN_VPATH_FILES = am__installdirs = "$(DESTDIR)$(sbindir)" "$(DESTDIR)$(libdir)" \ "$(DESTDIR)$(pkglibexecdir)" "$(DESTDIR)$(man8dir)" \ "$(DESTDIR)$(bashcompletiondir)" "$(DESTDIR)$(pkgconfigdir)" \ "$(DESTDIR)$(includedir)" PROGRAMS = $(sbin_PROGRAMS) am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } LTLIBRARIES = $(lib_LTLIBRARIES) @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_DEPENDENCIES = \ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@ libopenconnect.la am__libopenconnect_wrapper_la_SOURCES_DIST = jni.c @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am_libopenconnect_wrapper_la_OBJECTS = libopenconnect_wrapper_la-jni.lo libopenconnect_wrapper_la_OBJECTS = \ $(am_libopenconnect_wrapper_la_OBJECTS) AM_V_lt = $(am__v_lt_@AM_V@) am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) am__v_lt_0 = --silent am__v_lt_1 = libopenconnect_wrapper_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) $(AM_LDFLAGS) \ $(LDFLAGS) -o $@ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@am_libopenconnect_wrapper_la_rpath = \ @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@ -rpath $(libdir) am__DEPENDENCIES_1 = am__libopenconnect_la_SOURCES_DIST = version.c ssl.c http.c textbuf.c \ http-auth.c auth-common.c auth-html.c library.c compat.c lzs.c \ mainloop.c script.c ntlm.c digest.c mtucalc.c \ openconnect-internal.h oncp.c lzo.c auth-juniper.c esp.c \ esp-seqno.c gnutls-esp.c openssl-esp.c auth.c cstp.c dtls.c \ gnutls-dtls.c openssl-dtls.c oath.c gpst.c win32-ipicmp.h \ auth-globalprotect.c pulse.c oidc.c ppp.c ppp.h nullppp.c f5.c \ fortinet.c jsondump.c array.c vhost.c yubikey.c stoken.c \ gssapi.c gnutls.c gnutls_tpm.c gnutls_tpm2.c \ gnutls_tpm2_esys.c gnutls_tpm2_ibm.c openssl.c \ openssl-pkcs11.c iconv.c json/json.c json/json.h wintun.c \ tun-win32.c sspi.c tun.c jni.c @OPENCONNECT_GNUTLS_TRUE@am__objects_1 = \ @OPENCONNECT_GNUTLS_TRUE@ libopenconnect_la-gnutls-esp.lo @OPENCONNECT_OPENSSL_TRUE@am__objects_2 = \ @OPENCONNECT_OPENSSL_TRUE@ libopenconnect_la-openssl-esp.lo am__objects_3 = libopenconnect_la-esp.lo \ libopenconnect_la-esp-seqno.lo $(am__objects_1) \ $(am__objects_2) @OPENCONNECT_ESP_TRUE@am__objects_4 = $(am__objects_3) am__objects_5 = libopenconnect_la-oncp.lo libopenconnect_la-lzo.lo \ libopenconnect_la-auth-juniper.lo $(am__objects_4) @OPENCONNECT_GNUTLS_TRUE@am__objects_6 = \ @OPENCONNECT_GNUTLS_TRUE@ libopenconnect_la-gnutls-dtls.lo @OPENCONNECT_OPENSSL_TRUE@am__objects_7 = \ @OPENCONNECT_OPENSSL_TRUE@ libopenconnect_la-openssl-dtls.lo am__objects_8 = libopenconnect_la-dtls.lo $(am__objects_6) \ $(am__objects_7) @OPENCONNECT_DTLS_TRUE@am__objects_9 = $(am__objects_8) am__objects_10 = libopenconnect_la-auth.lo libopenconnect_la-cstp.lo \ $(am__objects_9) am__objects_11 = libopenconnect_la-oath.lo am__objects_12 = libopenconnect_la-gpst.lo \ libopenconnect_la-auth-globalprotect.lo am__objects_13 = libopenconnect_la-pulse.lo am__objects_14 = libopenconnect_la-oidc.lo am__objects_15 = libopenconnect_la-ppp.lo am__objects_16 = libopenconnect_la-nullppp.lo am__objects_17 = libopenconnect_la-f5.lo am__objects_18 = libopenconnect_la-fortinet.lo am__objects_19 = libopenconnect_la-jsondump.lo am__objects_20 = libopenconnect_la-array.lo am__objects_21 = libopenconnect_la-vhost.lo @OPENCONNECT_VHOST_TRUE@am__objects_22 = $(am__objects_21) am__objects_23 = libopenconnect_la-yubikey.lo @OPENCONNECT_LIBPCSCLITE_TRUE@am__objects_24 = $(am__objects_23) am__objects_25 = libopenconnect_la-stoken.lo @OPENCONNECT_STOKEN_TRUE@am__objects_26 = $(am__objects_25) am__objects_27 = libopenconnect_la-gssapi.lo @OPENCONNECT_GSSAPI_TRUE@am__objects_28 = $(am__objects_27) am__objects_29 = libopenconnect_la-gnutls.lo \ libopenconnect_la-gnutls_tpm.lo \ libopenconnect_la-gnutls_tpm2.lo @OPENCONNECT_GNUTLS_TRUE@am__objects_30 = $(am__objects_29) @OPENCONNECT_TSS2_ESYS_TRUE@am__objects_31 = libopenconnect_la-gnutls_tpm2_esys.lo @OPENCONNECT_TSS2_IBM_TRUE@am__objects_32 = libopenconnect_la-gnutls_tpm2_ibm.lo am__objects_33 = libopenconnect_la-openssl.lo \ libopenconnect_la-openssl-pkcs11.lo @OPENCONNECT_OPENSSL_TRUE@am__objects_34 = $(am__objects_33) am__objects_35 = libopenconnect_la-iconv.lo @OPENCONNECT_ICONV_TRUE@am__objects_36 = $(am__objects_35) am__dirstamp = $(am__leading_dot)dirstamp @BUILTIN_JSON_TRUE@am__objects_37 = json/libopenconnect_la-json.lo am__objects_38 = libopenconnect_la-wintun.lo \ libopenconnect_la-tun-win32.lo libopenconnect_la-sspi.lo @OPENCONNECT_WIN32_TRUE@am__objects_39 = $(am__objects_38) am__objects_40 = libopenconnect_la-tun.lo @OPENCONNECT_WIN32_FALSE@am__objects_41 = $(am__objects_40) am__objects_42 = libopenconnect_la-ssl.lo libopenconnect_la-http.lo \ libopenconnect_la-textbuf.lo libopenconnect_la-http-auth.lo \ libopenconnect_la-auth-common.lo \ libopenconnect_la-auth-html.lo libopenconnect_la-library.lo \ libopenconnect_la-compat.lo libopenconnect_la-lzs.lo \ libopenconnect_la-mainloop.lo libopenconnect_la-script.lo \ libopenconnect_la-ntlm.lo libopenconnect_la-digest.lo \ libopenconnect_la-mtucalc.lo $(am__objects_5) \ $(am__objects_10) $(am__objects_11) $(am__objects_12) \ $(am__objects_13) $(am__objects_14) $(am__objects_15) \ $(am__objects_16) $(am__objects_17) $(am__objects_18) \ $(am__objects_19) $(am__objects_20) $(am__objects_22) \ $(am__objects_24) $(am__objects_26) $(am__objects_28) \ $(am__objects_30) $(am__objects_31) $(am__objects_32) \ $(am__objects_34) $(am__objects_36) $(am__objects_37) \ $(am__objects_39) $(am__objects_41) @JNI_STANDALONE_TRUE@@OPENCONNECT_JNI_TRUE@am__objects_43 = libopenconnect_la-jni.lo am_libopenconnect_la_OBJECTS = libopenconnect_la-version.lo \ $(am__objects_42) $(am__objects_43) libopenconnect_la_OBJECTS = $(am_libopenconnect_la_OBJECTS) libopenconnect_la_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC \ $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=link $(CCLD) \ $(libopenconnect_la_CFLAGS) $(CFLAGS) \ $(libopenconnect_la_LDFLAGS) $(LDFLAGS) -o $@ am__openconnect_SOURCES_DIST = xml.c main.c openconnect.rc @OPENCONNECT_WIN32_TRUE@am__objects_44 = openconnect.$(OBJEXT) am_openconnect_OBJECTS = openconnect-xml.$(OBJEXT) \ openconnect-main.$(OBJEXT) $(am__objects_44) openconnect_OBJECTS = $(am_openconnect_OBJECTS) openconnect_DEPENDENCIES = libopenconnect.la $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) \ $(am__DEPENDENCIES_1) $(am__DEPENDENCIES_1) openconnect_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(openconnect_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ SCRIPTS = $(pkglibexec_SCRIPTS) AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = DEFAULT_INCLUDES = -I.@am__isrc@ depcomp = $(SHELL) $(top_srcdir)/depcomp am__maybe_remake_depfiles = depfiles am__depfiles_remade = ./$(DEPDIR)/libopenconnect_la-array.Plo \ ./$(DEPDIR)/libopenconnect_la-auth-common.Plo \ ./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo \ ./$(DEPDIR)/libopenconnect_la-auth-html.Plo \ ./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo \ ./$(DEPDIR)/libopenconnect_la-auth.Plo \ ./$(DEPDIR)/libopenconnect_la-compat.Plo \ ./$(DEPDIR)/libopenconnect_la-cstp.Plo \ ./$(DEPDIR)/libopenconnect_la-digest.Plo \ ./$(DEPDIR)/libopenconnect_la-dtls.Plo \ ./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo \ ./$(DEPDIR)/libopenconnect_la-esp.Plo \ ./$(DEPDIR)/libopenconnect_la-f5.Plo \ ./$(DEPDIR)/libopenconnect_la-fortinet.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo \ ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo \ ./$(DEPDIR)/libopenconnect_la-gpst.Plo \ ./$(DEPDIR)/libopenconnect_la-gssapi.Plo \ ./$(DEPDIR)/libopenconnect_la-http-auth.Plo \ ./$(DEPDIR)/libopenconnect_la-http.Plo \ ./$(DEPDIR)/libopenconnect_la-iconv.Plo \ ./$(DEPDIR)/libopenconnect_la-jni.Plo \ ./$(DEPDIR)/libopenconnect_la-jsondump.Plo \ ./$(DEPDIR)/libopenconnect_la-library.Plo \ ./$(DEPDIR)/libopenconnect_la-lzo.Plo \ ./$(DEPDIR)/libopenconnect_la-lzs.Plo \ ./$(DEPDIR)/libopenconnect_la-mainloop.Plo \ ./$(DEPDIR)/libopenconnect_la-mtucalc.Plo \ ./$(DEPDIR)/libopenconnect_la-ntlm.Plo \ ./$(DEPDIR)/libopenconnect_la-nullppp.Plo \ ./$(DEPDIR)/libopenconnect_la-oath.Plo \ ./$(DEPDIR)/libopenconnect_la-oidc.Plo \ ./$(DEPDIR)/libopenconnect_la-oncp.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo \ ./$(DEPDIR)/libopenconnect_la-openssl.Plo \ ./$(DEPDIR)/libopenconnect_la-ppp.Plo \ ./$(DEPDIR)/libopenconnect_la-pulse.Plo \ ./$(DEPDIR)/libopenconnect_la-script.Plo \ ./$(DEPDIR)/libopenconnect_la-ssl.Plo \ ./$(DEPDIR)/libopenconnect_la-sspi.Plo \ ./$(DEPDIR)/libopenconnect_la-stoken.Plo \ ./$(DEPDIR)/libopenconnect_la-textbuf.Plo \ ./$(DEPDIR)/libopenconnect_la-tun-win32.Plo \ ./$(DEPDIR)/libopenconnect_la-tun.Plo \ ./$(DEPDIR)/libopenconnect_la-version.Plo \ ./$(DEPDIR)/libopenconnect_la-vhost.Plo \ ./$(DEPDIR)/libopenconnect_la-wintun.Plo \ ./$(DEPDIR)/libopenconnect_la-yubikey.Plo \ ./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo \ ./$(DEPDIR)/openconnect-main.Po ./$(DEPDIR)/openconnect-xml.Po \ json/$(DEPDIR)/libopenconnect_la-json.Plo am__mv = mv -f COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) LTCOMPILE = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) \ $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) \ $(AM_CFLAGS) $(CFLAGS) AM_V_CC = $(am__v_CC_@AM_V@) am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) am__v_CC_0 = @echo " CC " $@; am__v_CC_1 = CCLD = $(CC) LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(AM_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_CCLD = $(am__v_CCLD_@AM_V@) am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) am__v_CCLD_0 = @echo " CCLD " $@; am__v_CCLD_1 = SOURCES = $(libopenconnect_wrapper_la_SOURCES) \ $(libopenconnect_la_SOURCES) $(openconnect_SOURCES) DIST_SOURCES = $(am__libopenconnect_wrapper_la_SOURCES_DIST) \ $(am__libopenconnect_la_SOURCES_DIST) \ $(am__openconnect_SOURCES_DIST) RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac man8dir = $(mandir)/man8 NROFF = nroff MANS = $(man8_MANS) DATA = $(bashcompletion_DATA) $(noinst_DATA) $(pkgconfig_DATA) HEADERS = $(include_HEADERS) $(noinst_HEADERS) RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ cscope distdir distdir-am dist dist-all distcheck am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) \ config.h.in # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags CSCOPE = cscope DIST_SUBDIRS = tests www po am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/config.h.in \ $(srcdir)/libopenconnect.map.in $(srcdir)/openconnect.8.in \ $(srcdir)/openconnect.pc.in \ $(top_srcdir)/tests/configs/test-user-cert.config.in \ $(top_srcdir)/tests/configs/test-user-pass.config.in ABOUT-NLS \ AUTHORS ChangeLog TODO compile config.guess config.rpath \ config.sub depcomp install-sh ltmain.sh missing DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) distdir = $(PACKAGE)-$(VERSION) top_distdir = $(distdir) am__remove_distdir = \ if test -d "$(distdir)"; then \ find "$(distdir)" -type d ! -perm -200 -exec chmod u+w {} ';' \ && rm -rf "$(distdir)" \ || { sleep 5 && rm -rf "$(distdir)"; }; \ else :; fi am__post_remove_distdir = $(am__remove_distdir) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" DIST_ARCHIVES = $(distdir).tar.gz GZIP_ENV = --best DIST_TARGETS = dist-gzip distuninstallcheck_listfiles = find . -type f -print am__distuninstallcheck_listfiles = $(distuninstallcheck_listfiles) \ | sed 's|^\./|$(prefix)/|' | grep -v '$(infodir)/dir$$' distcleancheck_listfiles = find . -type f -print ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CREATE_TPM2_KEY = @CREATE_TPM2_KEY@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ JSON_CFLAGS = @JSON_CFLAGS@ JSON_LIBS = @JSON_LIBS@ JSON_PC = @JSON_PC@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAKENSIS = @MAKENSIS@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PPPD = @PPPD@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SOCAT = @SOCAT@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SWTPM = @SWTPM@ SWTPM_IOCTL = @SWTPM_IOCTL@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_SETENV = @SYMVER_WIN32_SETENV@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2TSS_GENKEY = @TPM2TSS_GENKEY@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TPM2_STARTUP = @TPM2_STARTUP@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSSTARTUP = @TSSTARTUP@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ WINTUN_ARCH = @WINTUN_ARCH@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ have_curl = @have_curl@ have_unzip = @have_unzip@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ runstatedir = @runstatedir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ SUBDIRS = tests $(am__append_1) $(am__append_2) @BUILD_NSIS_TRUE@noinst_DATA = openconnect-installer.exe lib_LTLIBRARIES = libopenconnect.la $(am__append_25) man8_MANS = openconnect.8 AM_CFLAGS = @WFLAGS@ AM_CPPFLAGS = -DLOCALEDIR="\"$(localedir)\"" openconnect_SOURCES = xml.c main.c $(am__append_3) openconnect_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) $(DTLS_SSL_CFLAGS) \ $(LIBXML2_CFLAGS) $(JSON_CFLAGS) $(LIBPROXY_CFLAGS) \ $(ZLIB_CFLAGS) $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) \ $(GSSAPI_CFLAGS) $(INTL_CFLAGS) $(ICONV_CFLAGS) \ $(LIBPCSCLITE_CFLAGS) openconnect_LDADD = libopenconnect.la $(SSL_LIBS) $(LIBXML2_LIBS) \ $(LIBPROXY_LIBS) $(INTL_LIBS) $(ICONV_LIBS) library_srcs = ssl.c http.c textbuf.c http-auth.c auth-common.c \ auth-html.c library.c compat.c lzs.c mainloop.c script.c \ ntlm.c digest.c mtucalc.c openconnect-internal.h \ $(lib_srcs_juniper) $(lib_srcs_cisco) $(lib_srcs_oath) \ $(lib_srcs_globalprotect) $(lib_srcs_pulse) $(lib_srcs_oidc) \ $(lib_srcs_ppp) $(lib_srcs_nullppp) $(lib_srcs_f5) \ $(lib_srcs_fortinet) $(lib_srcs_json) $(lib_srcs_array) \ $(am__append_4) $(am__append_5) $(am__append_6) \ $(am__append_7) $(am__append_8) $(am__append_11) \ $(am__append_12) $(am__append_13) $(am__append_18) \ $(am__append_19) $(am__append_20) $(am__append_21) lib_srcs_cisco = auth.c cstp.c $(am__append_16) lib_srcs_juniper = oncp.c lzo.c auth-juniper.c $(am__append_17) lib_srcs_pulse = pulse.c lib_srcs_globalprotect = gpst.c win32-ipicmp.h auth-globalprotect.c lib_srcs_array = array.c lib_srcs_oath = oath.c lib_srcs_oidc = oidc.c lib_srcs_ppp = ppp.c ppp.h lib_srcs_nullppp = nullppp.c lib_srcs_f5 = f5.c lib_srcs_fortinet = fortinet.c lib_srcs_json = jsondump.c lib_srcs_gnutls = gnutls.c gnutls_tpm.c gnutls_tpm2.c lib_srcs_openssl = openssl.c openssl-pkcs11.c lib_srcs_win32 = wintun.c tun-win32.c sspi.c lib_srcs_posix = tun.c lib_srcs_gssapi = gssapi.c lib_srcs_iconv = iconv.c lib_srcs_yubikey = yubikey.c lib_srcs_stoken = stoken.c lib_srcs_esp = esp.c esp-seqno.c $(am__append_9) $(am__append_14) lib_srcs_dtls = dtls.c $(am__append_10) $(am__append_15) lib_srcs_vhost = vhost.c POTFILES = $(openconnect_SOURCES) gnutls-esp.c gnutls-dtls.c openssl-esp.c openssl-dtls.c \ $(lib_srcs_esp) $(lib_srcs_dtls) gnutls_tpm2_esys.c gnutls_tpm2_ibm.c \ $(lib_srcs_openssl) $(lib_srcs_gnutls) $(library_srcs) \ $(lib_srcs_win32) $(lib_srcs_posix) $(lib_srcs_gssapi) $(lib_srcs_iconv) \ $(lib_srcs_yubikey) $(lib_srcs_stoken) $(lib_srcs_oidc) $(lib_srcs_vhost) libopenconnect_la_SOURCES = version.c $(library_srcs) $(am__append_23) libopenconnect_la_CFLAGS = $(AM_CFLAGS) $(SSL_CFLAGS) \ $(DTLS_SSL_CFLAGS) $(LIBXML2_CFLAGS) $(LIBPROXY_CFLAGS) \ $(ZLIB_CFLAGS) $(P11KIT_CFLAGS) $(TSS_CFLAGS) \ $(LIBSTOKEN_CFLAGS) $(LIBPSKC_CFLAGS) $(GSSAPI_CFLAGS) \ $(INTL_CFLAGS) $(ICONV_CFLAGS) $(LIBPCSCLITE_CFLAGS) \ $(LIBP11_CFLAGS) $(LIBLZ4_CFLAGS) $(JSON_CFLAGS) \ $(am__append_24) libopenconnect_la_LIBADD = $(SSL_LIBS) $(DTLS_SSL_LIBS) \ $(LIBXML2_LIBS) $(LIBPROXY_LIBS) $(ZLIB_LIBS) $(P11KIT_LIBS) \ $(TSS_LIBS) $(LIBSTOKEN_LIBS) $(LIBPSKC_LIBS) $(GSSAPI_LIBS) \ $(INTL_LIBS) $(ICONV_LIBS) $(LIBPCSCLITE_LIBS) $(LIBP11_LIBS)\ $(LIBLZ4_LIBS) ${JSON_LIBS} @OPENBSD_LIBTOOL_FALSE@LT_VER_ARG = -version-number # OpenBSD's libtool doesn't have -version-number, but its -version-info arg # does what GNU libtool's -version-number does. Which arguably is what the # GNU -version-info arg ought to do too. I hate libtool. @OPENBSD_LIBTOOL_TRUE@LT_VER_ARG = -version-info libopenconnect_la_LDFLAGS = $(LT_VER_ARG) @APIMAJOR@:@APIMINOR@ \ -no-undefined $(am__append_22) noinst_HEADERS = openconnect-internal.h openconnect.h gnutls.h lzo.h include_HEADERS = openconnect.h @HAVE_VSCRIPT_TRUE@libopenconnect_la_DEPENDENCIES = libopenconnect.map @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_SOURCES = jni.c @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_CFLAGS = $(AM_CFLAGS) $(JNI_CFLAGS) -Wno-missing-declarations @JNI_STANDALONE_FALSE@@OPENCONNECT_JNI_TRUE@libopenconnect_wrapper_la_LIBADD = libopenconnect.la pkgconfig_DATA = openconnect.pc EXTRA_DIST = AUTHORS version.sh COPYING.LGPL openconnect.ico \ $(POTFILES) openconnect.nsi.in json/AUTHORS json/LICENSE \ json/json.c json/json.h $(shell cd "$(top_srcdir)" && git \ ls-tree HEAD -r --name-only -- android/ java/ trojans/ bash/ \ 2>/dev/null) DISTCLEANFILES = $(pkgconfig_DATA) version.c $(am__append_26) \ $(am__append_27) pkglibexec_SCRIPTS = trojans/csd-post.sh trojans/csd-wrapper.sh trojans/tncc-wrapper.py \ trojans/hipreport.sh trojans/hipreport-android.sh trojans/tncc-emulate.py bashcompletiondir = $(datadir)/bash-completion/completions bashcompletion_DATA = bash/openconnect DISTHOOK = 1 ACLOCAL_AMFLAGS = -I m4 @BUILD_NSIS_TRUE@@OPENCONNECT_WINTUN_TRUE@WINTUN_DLL = .libs/wintun.dll # Wintun Layer 3 TUN driver for Windows 7 and newer # (see https://wintun.net) @BUILD_NSIS_TRUE@WINTUNDRIVER = wintun-0.13.zip @BUILD_NSIS_TRUE@WINTUNSHA256 = 34afe7d0de1fdb781af3defc0a75fd8c97daa756279b42dd6be6a1bd8ccdc7f0 # OpenVPN TAP driver for Windows Vista/2003 and newer # (see https://community.openvpn.net/openvpn/wiki/GettingTapWindows) # XX: Newer releases exist, but are split between Win7+ and Win10+ versions. @BUILD_NSIS_TRUE@TAPDRIVER = tap-windows-9.21.2.exe @BUILD_NSIS_TRUE@TAPSHA256 = 645bee92ba4e9f32ddfdd9f8519dc1b9f9ff0b0a8e87e342f08d39da77e499a9 @BUILD_NSIS_TRUE@AM_V_MAKENSIS = $(am__v_MAKENSIS_$(V)) @BUILD_NSIS_TRUE@am__v_MAKENSIS_ = $(am__v_MAKENSIS_$(AM_DEFAULT_VERBOSITY)) @BUILD_NSIS_TRUE@am__v_MAKENSIS_0 = @echo " MAKENSIS " $@; @BUILD_NSIS_TRUE@am__v_MAKENSIS_1 = all: config.h $(MAKE) $(AM_MAKEFLAGS) all-recursive .SUFFIXES: .SUFFIXES: .c .lo .o .obj .rc am--refresh: Makefile @: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ echo ' cd $(srcdir) && $(AUTOMAKE) --foreign'; \ $(am__cd) $(srcdir) && $(AUTOMAKE) --foreign \ && exit 0; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ echo ' $(SHELL) ./config.status'; \ $(SHELL) ./config.status;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) $(SHELL) ./config.status --recheck $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) $(am__cd) $(srcdir) && $(AUTOCONF) $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) $(am__cd) $(srcdir) && $(ACLOCAL) $(ACLOCAL_AMFLAGS) $(am__aclocal_m4_deps): config.h: stamp-h1 @test -f $@ || rm -f stamp-h1 @test -f $@ || $(MAKE) $(AM_MAKEFLAGS) stamp-h1 stamp-h1: $(srcdir)/config.h.in $(top_builddir)/config.status @rm -f stamp-h1 cd $(top_builddir) && $(SHELL) ./config.status config.h $(srcdir)/config.h.in: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) ($(am__cd) $(top_srcdir) && $(AUTOHEADER)) rm -f stamp-h1 touch $@ distclean-hdr: -rm -f config.h stamp-h1 openconnect.pc: $(top_builddir)/config.status $(srcdir)/openconnect.pc.in cd $(top_builddir) && $(SHELL) ./config.status $@ libopenconnect.map: $(top_builddir)/config.status $(srcdir)/libopenconnect.map.in cd $(top_builddir) && $(SHELL) ./config.status $@ openconnect.8: $(top_builddir)/config.status $(srcdir)/openconnect.8.in cd $(top_builddir) && $(SHELL) ./config.status $@ tests/configs/test-user-cert.config: $(top_builddir)/config.status $(top_srcdir)/tests/configs/test-user-cert.config.in cd $(top_builddir) && $(SHELL) ./config.status $@ tests/configs/test-user-pass.config: $(top_builddir)/config.status $(top_srcdir)/tests/configs/test-user-pass.config.in cd $(top_builddir) && $(SHELL) ./config.status $@ install-sbinPROGRAMS: $(sbin_PROGRAMS) @$(NORMAL_INSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(sbindir)'"; \ $(MKDIR_P) "$(DESTDIR)$(sbindir)" || exit 1; \ fi; \ for p in $$list; do echo "$$p $$p"; done | \ sed 's/$(EXEEXT)$$//' | \ while read p p1; do if test -f $$p \ || test -f $$p1 \ ; then echo "$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n;h' \ -e 's|.*|.|' \ -e 'p;x;s,.*/,,;s/$(EXEEXT)$$//;$(transform);s/$$/$(EXEEXT)/' | \ sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1 } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) files[d] = files[d] " " $$1; \ else { print "f", $$3 "/" $$4, $$1; } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files '$(DESTDIR)$(sbindir)$$dir'"; \ $(INSTALL_PROGRAM_ENV) $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL_PROGRAM) $$files "$(DESTDIR)$(sbindir)$$dir" || exit $$?; \ } \ ; done uninstall-sbinPROGRAMS: @$(NORMAL_UNINSTALL) @list='$(sbin_PROGRAMS)'; test -n "$(sbindir)" || list=; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 'h;s,^.*/,,;s/$(EXEEXT)$$//;$(transform)' \ -e 's/$$/$(EXEEXT)/' \ `; \ test -n "$$list" || exit 0; \ echo " ( cd '$(DESTDIR)$(sbindir)' && rm -f" $$files ")"; \ cd "$(DESTDIR)$(sbindir)" && rm -f $$files clean-sbinPROGRAMS: @list='$(sbin_PROGRAMS)'; test -n "$$list" || exit 0; \ echo " rm -f" $$list; \ rm -f $$list || exit $$?; \ test -n "$(EXEEXT)" || exit 0; \ list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ echo " rm -f" $$list; \ rm -f $$list install-libLTLIBRARIES: $(lib_LTLIBRARIES) @$(NORMAL_INSTALL) @list='$(lib_LTLIBRARIES)'; test -n "$(libdir)" || list=; \ list2=; for p in $$list; do \ if test -f $$p; then \ list2="$$list2 $$p"; \ else :; fi; \ done; \ test -z "$$list2" || { \ echo " $(MKDIR_P) '$(DESTDIR)$(libdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(libdir)" || exit 1; \ echo " $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL) $(INSTALL_STRIP_FLAG) $$list2 '$(DESTDIR)$(libdir)'"; \ $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=install $(INSTALL) $(INSTALL_STRIP_FLAG) $$list2 "$(DESTDIR)$(libdir)"; \ } uninstall-libLTLIBRARIES: @$(NORMAL_UNINSTALL) @list='$(lib_LTLIBRARIES)'; test -n "$(libdir)" || list=; \ for p in $$list; do \ $(am__strip_dir) \ echo " $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=uninstall rm -f '$(DESTDIR)$(libdir)/$$f'"; \ $(LIBTOOL) $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=uninstall rm -f "$(DESTDIR)$(libdir)/$$f"; \ done clean-libLTLIBRARIES: -test -z "$(lib_LTLIBRARIES)" || rm -f $(lib_LTLIBRARIES) @list='$(lib_LTLIBRARIES)'; \ locs=`for p in $$list; do echo $$p; done | \ sed 's|^[^/]*$$|.|; s|/[^/]*$$||; s|$$|/so_locations|' | \ sort -u`; \ test -z "$$locs" || { \ echo rm -f $${locs}; \ rm -f $${locs}; \ } libopenconnect-wrapper.la: $(libopenconnect_wrapper_la_OBJECTS) $(libopenconnect_wrapper_la_DEPENDENCIES) $(EXTRA_libopenconnect_wrapper_la_DEPENDENCIES) $(AM_V_CCLD)$(libopenconnect_wrapper_la_LINK) $(am_libopenconnect_wrapper_la_rpath) $(libopenconnect_wrapper_la_OBJECTS) $(libopenconnect_wrapper_la_LIBADD) $(LIBS) json/$(am__dirstamp): @$(MKDIR_P) json @: > json/$(am__dirstamp) json/$(DEPDIR)/$(am__dirstamp): @$(MKDIR_P) json/$(DEPDIR) @: > json/$(DEPDIR)/$(am__dirstamp) json/libopenconnect_la-json.lo: json/$(am__dirstamp) \ json/$(DEPDIR)/$(am__dirstamp) libopenconnect.la: $(libopenconnect_la_OBJECTS) $(libopenconnect_la_DEPENDENCIES) $(EXTRA_libopenconnect_la_DEPENDENCIES) $(AM_V_CCLD)$(libopenconnect_la_LINK) -rpath $(libdir) $(libopenconnect_la_OBJECTS) $(libopenconnect_la_LIBADD) $(LIBS) openconnect$(EXEEXT): $(openconnect_OBJECTS) $(openconnect_DEPENDENCIES) $(EXTRA_openconnect_DEPENDENCIES) @rm -f openconnect$(EXEEXT) $(AM_V_CCLD)$(openconnect_LINK) $(openconnect_OBJECTS) $(openconnect_LDADD) $(LIBS) install-pkglibexecSCRIPTS: $(pkglibexec_SCRIPTS) @$(NORMAL_INSTALL) @list='$(pkglibexec_SCRIPTS)'; test -n "$(pkglibexecdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(pkglibexecdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(pkglibexecdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ if test -f "$$d$$p"; then echo "$$d$$p"; echo "$$p"; else :; fi; \ done | \ sed -e 'p;s,.*/,,;n' \ -e 'h;s|.*|.|' \ -e 'p;x;s,.*/,,;$(transform)' | sed 'N;N;N;s,\n, ,g' | \ $(AWK) 'BEGIN { files["."] = ""; dirs["."] = 1; } \ { d=$$3; if (dirs[d] != 1) { print "d", d; dirs[d] = 1 } \ if ($$2 == $$4) { files[d] = files[d] " " $$1; \ if (++n[d] == $(am__install_max)) { \ print "f", d, files[d]; n[d] = 0; files[d] = "" } } \ else { print "f", d "/" $$4, $$1 } } \ END { for (d in files) print "f", d, files[d] }' | \ while read type dir files; do \ if test "$$dir" = .; then dir=; else dir=/$$dir; fi; \ test -z "$$files" || { \ echo " $(INSTALL_SCRIPT) $$files '$(DESTDIR)$(pkglibexecdir)$$dir'"; \ $(INSTALL_SCRIPT) $$files "$(DESTDIR)$(pkglibexecdir)$$dir" || exit $$?; \ } \ ; done uninstall-pkglibexecSCRIPTS: @$(NORMAL_UNINSTALL) @list='$(pkglibexec_SCRIPTS)'; test -n "$(pkglibexecdir)" || exit 0; \ files=`for p in $$list; do echo "$$p"; done | \ sed -e 's,.*/,,;$(transform)'`; \ dir='$(DESTDIR)$(pkglibexecdir)'; $(am__uninstall_files_from_dir) mostlyclean-compile: -rm -f *.$(OBJEXT) -rm -f json/*.$(OBJEXT) -rm -f json/*.lo distclean-compile: -rm -f *.tab.c @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-array.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-common.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-html.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-auth.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-compat.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-cstp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-digest.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-dtls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-esp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-f5.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-fortinet.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gpst.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-gssapi.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-http-auth.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-http.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-iconv.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-jni.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-jsondump.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-library.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-lzo.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-lzs.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-mainloop.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-mtucalc.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-ntlm.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-nullppp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-oath.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-oidc.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-oncp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-openssl.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-ppp.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-pulse.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-script.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-ssl.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-sspi.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-stoken.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-textbuf.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-tun-win32.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-tun.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-version.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-vhost.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-wintun.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_la-yubikey.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/openconnect-main.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/openconnect-xml.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@json/$(DEPDIR)/libopenconnect_la-json.Plo@am__quote@ # am--include-marker $(am__depfiles_remade): @$(MKDIR_P) $(@D) @echo '# dummy' >$@-t && $(am__mv) $@-t $@ am--depfiles: $(am__depfiles_remade) .c.o: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.o$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ $< &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< .c.obj: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.obj$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ `$(CYGPATH_W) '$<'` &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` .c.lo: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.lo$$||'`;\ @am__fastdepCC_TRUE@ $(LTCOMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ $< &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LTCOMPILE) -c -o $@ $< libopenconnect_wrapper_la-jni.lo: jni.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) -MT libopenconnect_wrapper_la-jni.lo -MD -MP -MF $(DEPDIR)/libopenconnect_wrapper_la-jni.Tpo -c -o libopenconnect_wrapper_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_wrapper_la-jni.Tpo $(DEPDIR)/libopenconnect_wrapper_la-jni.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='jni.c' object='libopenconnect_wrapper_la-jni.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_wrapper_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_wrapper_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c libopenconnect_la-version.lo: version.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-version.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-version.Tpo -c -o libopenconnect_la-version.lo `test -f 'version.c' || echo '$(srcdir)/'`version.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-version.Tpo $(DEPDIR)/libopenconnect_la-version.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='version.c' object='libopenconnect_la-version.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-version.lo `test -f 'version.c' || echo '$(srcdir)/'`version.c libopenconnect_la-ssl.lo: ssl.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-ssl.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-ssl.Tpo -c -o libopenconnect_la-ssl.lo `test -f 'ssl.c' || echo '$(srcdir)/'`ssl.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-ssl.Tpo $(DEPDIR)/libopenconnect_la-ssl.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ssl.c' object='libopenconnect_la-ssl.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-ssl.lo `test -f 'ssl.c' || echo '$(srcdir)/'`ssl.c libopenconnect_la-http.lo: http.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-http.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-http.Tpo -c -o libopenconnect_la-http.lo `test -f 'http.c' || echo '$(srcdir)/'`http.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-http.Tpo $(DEPDIR)/libopenconnect_la-http.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='http.c' object='libopenconnect_la-http.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-http.lo `test -f 'http.c' || echo '$(srcdir)/'`http.c libopenconnect_la-textbuf.lo: textbuf.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-textbuf.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-textbuf.Tpo -c -o libopenconnect_la-textbuf.lo `test -f 'textbuf.c' || echo '$(srcdir)/'`textbuf.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-textbuf.Tpo $(DEPDIR)/libopenconnect_la-textbuf.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='textbuf.c' object='libopenconnect_la-textbuf.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-textbuf.lo `test -f 'textbuf.c' || echo '$(srcdir)/'`textbuf.c libopenconnect_la-http-auth.lo: http-auth.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-http-auth.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-http-auth.Tpo -c -o libopenconnect_la-http-auth.lo `test -f 'http-auth.c' || echo '$(srcdir)/'`http-auth.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-http-auth.Tpo $(DEPDIR)/libopenconnect_la-http-auth.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='http-auth.c' object='libopenconnect_la-http-auth.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-http-auth.lo `test -f 'http-auth.c' || echo '$(srcdir)/'`http-auth.c libopenconnect_la-auth-common.lo: auth-common.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-common.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-common.Tpo -c -o libopenconnect_la-auth-common.lo `test -f 'auth-common.c' || echo '$(srcdir)/'`auth-common.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-common.Tpo $(DEPDIR)/libopenconnect_la-auth-common.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-common.c' object='libopenconnect_la-auth-common.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-common.lo `test -f 'auth-common.c' || echo '$(srcdir)/'`auth-common.c libopenconnect_la-auth-html.lo: auth-html.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-html.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-html.Tpo -c -o libopenconnect_la-auth-html.lo `test -f 'auth-html.c' || echo '$(srcdir)/'`auth-html.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-html.Tpo $(DEPDIR)/libopenconnect_la-auth-html.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-html.c' object='libopenconnect_la-auth-html.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-html.lo `test -f 'auth-html.c' || echo '$(srcdir)/'`auth-html.c libopenconnect_la-library.lo: library.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-library.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-library.Tpo -c -o libopenconnect_la-library.lo `test -f 'library.c' || echo '$(srcdir)/'`library.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-library.Tpo $(DEPDIR)/libopenconnect_la-library.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='library.c' object='libopenconnect_la-library.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-library.lo `test -f 'library.c' || echo '$(srcdir)/'`library.c libopenconnect_la-compat.lo: compat.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-compat.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-compat.Tpo -c -o libopenconnect_la-compat.lo `test -f 'compat.c' || echo '$(srcdir)/'`compat.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-compat.Tpo $(DEPDIR)/libopenconnect_la-compat.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='compat.c' object='libopenconnect_la-compat.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-compat.lo `test -f 'compat.c' || echo '$(srcdir)/'`compat.c libopenconnect_la-lzs.lo: lzs.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-lzs.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-lzs.Tpo -c -o libopenconnect_la-lzs.lo `test -f 'lzs.c' || echo '$(srcdir)/'`lzs.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-lzs.Tpo $(DEPDIR)/libopenconnect_la-lzs.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='lzs.c' object='libopenconnect_la-lzs.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-lzs.lo `test -f 'lzs.c' || echo '$(srcdir)/'`lzs.c libopenconnect_la-mainloop.lo: mainloop.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-mainloop.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-mainloop.Tpo -c -o libopenconnect_la-mainloop.lo `test -f 'mainloop.c' || echo '$(srcdir)/'`mainloop.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-mainloop.Tpo $(DEPDIR)/libopenconnect_la-mainloop.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='mainloop.c' object='libopenconnect_la-mainloop.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-mainloop.lo `test -f 'mainloop.c' || echo '$(srcdir)/'`mainloop.c libopenconnect_la-script.lo: script.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-script.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-script.Tpo -c -o libopenconnect_la-script.lo `test -f 'script.c' || echo '$(srcdir)/'`script.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-script.Tpo $(DEPDIR)/libopenconnect_la-script.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='script.c' object='libopenconnect_la-script.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-script.lo `test -f 'script.c' || echo '$(srcdir)/'`script.c libopenconnect_la-ntlm.lo: ntlm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-ntlm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-ntlm.Tpo -c -o libopenconnect_la-ntlm.lo `test -f 'ntlm.c' || echo '$(srcdir)/'`ntlm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-ntlm.Tpo $(DEPDIR)/libopenconnect_la-ntlm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ntlm.c' object='libopenconnect_la-ntlm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-ntlm.lo `test -f 'ntlm.c' || echo '$(srcdir)/'`ntlm.c libopenconnect_la-digest.lo: digest.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-digest.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-digest.Tpo -c -o libopenconnect_la-digest.lo `test -f 'digest.c' || echo '$(srcdir)/'`digest.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-digest.Tpo $(DEPDIR)/libopenconnect_la-digest.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='digest.c' object='libopenconnect_la-digest.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-digest.lo `test -f 'digest.c' || echo '$(srcdir)/'`digest.c libopenconnect_la-mtucalc.lo: mtucalc.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-mtucalc.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-mtucalc.Tpo -c -o libopenconnect_la-mtucalc.lo `test -f 'mtucalc.c' || echo '$(srcdir)/'`mtucalc.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-mtucalc.Tpo $(DEPDIR)/libopenconnect_la-mtucalc.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='mtucalc.c' object='libopenconnect_la-mtucalc.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-mtucalc.lo `test -f 'mtucalc.c' || echo '$(srcdir)/'`mtucalc.c libopenconnect_la-oncp.lo: oncp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-oncp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-oncp.Tpo -c -o libopenconnect_la-oncp.lo `test -f 'oncp.c' || echo '$(srcdir)/'`oncp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-oncp.Tpo $(DEPDIR)/libopenconnect_la-oncp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oncp.c' object='libopenconnect_la-oncp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-oncp.lo `test -f 'oncp.c' || echo '$(srcdir)/'`oncp.c libopenconnect_la-lzo.lo: lzo.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-lzo.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-lzo.Tpo -c -o libopenconnect_la-lzo.lo `test -f 'lzo.c' || echo '$(srcdir)/'`lzo.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-lzo.Tpo $(DEPDIR)/libopenconnect_la-lzo.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='lzo.c' object='libopenconnect_la-lzo.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-lzo.lo `test -f 'lzo.c' || echo '$(srcdir)/'`lzo.c libopenconnect_la-auth-juniper.lo: auth-juniper.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-juniper.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-juniper.Tpo -c -o libopenconnect_la-auth-juniper.lo `test -f 'auth-juniper.c' || echo '$(srcdir)/'`auth-juniper.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-juniper.Tpo $(DEPDIR)/libopenconnect_la-auth-juniper.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-juniper.c' object='libopenconnect_la-auth-juniper.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-juniper.lo `test -f 'auth-juniper.c' || echo '$(srcdir)/'`auth-juniper.c libopenconnect_la-esp.lo: esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-esp.Tpo -c -o libopenconnect_la-esp.lo `test -f 'esp.c' || echo '$(srcdir)/'`esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-esp.Tpo $(DEPDIR)/libopenconnect_la-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='esp.c' object='libopenconnect_la-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-esp.lo `test -f 'esp.c' || echo '$(srcdir)/'`esp.c libopenconnect_la-esp-seqno.lo: esp-seqno.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-esp-seqno.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-esp-seqno.Tpo -c -o libopenconnect_la-esp-seqno.lo `test -f 'esp-seqno.c' || echo '$(srcdir)/'`esp-seqno.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-esp-seqno.Tpo $(DEPDIR)/libopenconnect_la-esp-seqno.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='esp-seqno.c' object='libopenconnect_la-esp-seqno.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-esp-seqno.lo `test -f 'esp-seqno.c' || echo '$(srcdir)/'`esp-seqno.c libopenconnect_la-gnutls-esp.lo: gnutls-esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls-esp.Tpo -c -o libopenconnect_la-gnutls-esp.lo `test -f 'gnutls-esp.c' || echo '$(srcdir)/'`gnutls-esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls-esp.Tpo $(DEPDIR)/libopenconnect_la-gnutls-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls-esp.c' object='libopenconnect_la-gnutls-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls-esp.lo `test -f 'gnutls-esp.c' || echo '$(srcdir)/'`gnutls-esp.c libopenconnect_la-openssl-esp.lo: openssl-esp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-esp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-esp.Tpo -c -o libopenconnect_la-openssl-esp.lo `test -f 'openssl-esp.c' || echo '$(srcdir)/'`openssl-esp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-esp.Tpo $(DEPDIR)/libopenconnect_la-openssl-esp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-esp.c' object='libopenconnect_la-openssl-esp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-esp.lo `test -f 'openssl-esp.c' || echo '$(srcdir)/'`openssl-esp.c libopenconnect_la-auth.lo: auth.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth.Tpo -c -o libopenconnect_la-auth.lo `test -f 'auth.c' || echo '$(srcdir)/'`auth.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth.Tpo $(DEPDIR)/libopenconnect_la-auth.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth.c' object='libopenconnect_la-auth.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth.lo `test -f 'auth.c' || echo '$(srcdir)/'`auth.c libopenconnect_la-cstp.lo: cstp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-cstp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-cstp.Tpo -c -o libopenconnect_la-cstp.lo `test -f 'cstp.c' || echo '$(srcdir)/'`cstp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-cstp.Tpo $(DEPDIR)/libopenconnect_la-cstp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='cstp.c' object='libopenconnect_la-cstp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-cstp.lo `test -f 'cstp.c' || echo '$(srcdir)/'`cstp.c libopenconnect_la-dtls.lo: dtls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-dtls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-dtls.Tpo -c -o libopenconnect_la-dtls.lo `test -f 'dtls.c' || echo '$(srcdir)/'`dtls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-dtls.Tpo $(DEPDIR)/libopenconnect_la-dtls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='dtls.c' object='libopenconnect_la-dtls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-dtls.lo `test -f 'dtls.c' || echo '$(srcdir)/'`dtls.c libopenconnect_la-gnutls-dtls.lo: gnutls-dtls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls-dtls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls-dtls.Tpo -c -o libopenconnect_la-gnutls-dtls.lo `test -f 'gnutls-dtls.c' || echo '$(srcdir)/'`gnutls-dtls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls-dtls.Tpo $(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls-dtls.c' object='libopenconnect_la-gnutls-dtls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls-dtls.lo `test -f 'gnutls-dtls.c' || echo '$(srcdir)/'`gnutls-dtls.c libopenconnect_la-openssl-dtls.lo: openssl-dtls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-dtls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-dtls.Tpo -c -o libopenconnect_la-openssl-dtls.lo `test -f 'openssl-dtls.c' || echo '$(srcdir)/'`openssl-dtls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-dtls.Tpo $(DEPDIR)/libopenconnect_la-openssl-dtls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-dtls.c' object='libopenconnect_la-openssl-dtls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-dtls.lo `test -f 'openssl-dtls.c' || echo '$(srcdir)/'`openssl-dtls.c libopenconnect_la-oath.lo: oath.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-oath.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-oath.Tpo -c -o libopenconnect_la-oath.lo `test -f 'oath.c' || echo '$(srcdir)/'`oath.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-oath.Tpo $(DEPDIR)/libopenconnect_la-oath.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oath.c' object='libopenconnect_la-oath.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-oath.lo `test -f 'oath.c' || echo '$(srcdir)/'`oath.c libopenconnect_la-gpst.lo: gpst.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gpst.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gpst.Tpo -c -o libopenconnect_la-gpst.lo `test -f 'gpst.c' || echo '$(srcdir)/'`gpst.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gpst.Tpo $(DEPDIR)/libopenconnect_la-gpst.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gpst.c' object='libopenconnect_la-gpst.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gpst.lo `test -f 'gpst.c' || echo '$(srcdir)/'`gpst.c libopenconnect_la-auth-globalprotect.lo: auth-globalprotect.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-auth-globalprotect.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-auth-globalprotect.Tpo -c -o libopenconnect_la-auth-globalprotect.lo `test -f 'auth-globalprotect.c' || echo '$(srcdir)/'`auth-globalprotect.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-auth-globalprotect.Tpo $(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='auth-globalprotect.c' object='libopenconnect_la-auth-globalprotect.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-auth-globalprotect.lo `test -f 'auth-globalprotect.c' || echo '$(srcdir)/'`auth-globalprotect.c libopenconnect_la-pulse.lo: pulse.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-pulse.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-pulse.Tpo -c -o libopenconnect_la-pulse.lo `test -f 'pulse.c' || echo '$(srcdir)/'`pulse.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-pulse.Tpo $(DEPDIR)/libopenconnect_la-pulse.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='pulse.c' object='libopenconnect_la-pulse.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-pulse.lo `test -f 'pulse.c' || echo '$(srcdir)/'`pulse.c libopenconnect_la-oidc.lo: oidc.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-oidc.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-oidc.Tpo -c -o libopenconnect_la-oidc.lo `test -f 'oidc.c' || echo '$(srcdir)/'`oidc.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-oidc.Tpo $(DEPDIR)/libopenconnect_la-oidc.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='oidc.c' object='libopenconnect_la-oidc.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-oidc.lo `test -f 'oidc.c' || echo '$(srcdir)/'`oidc.c libopenconnect_la-ppp.lo: ppp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-ppp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-ppp.Tpo -c -o libopenconnect_la-ppp.lo `test -f 'ppp.c' || echo '$(srcdir)/'`ppp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-ppp.Tpo $(DEPDIR)/libopenconnect_la-ppp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='ppp.c' object='libopenconnect_la-ppp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-ppp.lo `test -f 'ppp.c' || echo '$(srcdir)/'`ppp.c libopenconnect_la-nullppp.lo: nullppp.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-nullppp.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-nullppp.Tpo -c -o libopenconnect_la-nullppp.lo `test -f 'nullppp.c' || echo '$(srcdir)/'`nullppp.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-nullppp.Tpo $(DEPDIR)/libopenconnect_la-nullppp.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='nullppp.c' object='libopenconnect_la-nullppp.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-nullppp.lo `test -f 'nullppp.c' || echo '$(srcdir)/'`nullppp.c libopenconnect_la-f5.lo: f5.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-f5.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-f5.Tpo -c -o libopenconnect_la-f5.lo `test -f 'f5.c' || echo '$(srcdir)/'`f5.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-f5.Tpo $(DEPDIR)/libopenconnect_la-f5.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='f5.c' object='libopenconnect_la-f5.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-f5.lo `test -f 'f5.c' || echo '$(srcdir)/'`f5.c libopenconnect_la-fortinet.lo: fortinet.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-fortinet.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-fortinet.Tpo -c -o libopenconnect_la-fortinet.lo `test -f 'fortinet.c' || echo '$(srcdir)/'`fortinet.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-fortinet.Tpo $(DEPDIR)/libopenconnect_la-fortinet.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='fortinet.c' object='libopenconnect_la-fortinet.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-fortinet.lo `test -f 'fortinet.c' || echo '$(srcdir)/'`fortinet.c libopenconnect_la-jsondump.lo: jsondump.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-jsondump.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-jsondump.Tpo -c -o libopenconnect_la-jsondump.lo `test -f 'jsondump.c' || echo '$(srcdir)/'`jsondump.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-jsondump.Tpo $(DEPDIR)/libopenconnect_la-jsondump.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='jsondump.c' object='libopenconnect_la-jsondump.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-jsondump.lo `test -f 'jsondump.c' || echo '$(srcdir)/'`jsondump.c libopenconnect_la-array.lo: array.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-array.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-array.Tpo -c -o libopenconnect_la-array.lo `test -f 'array.c' || echo '$(srcdir)/'`array.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-array.Tpo $(DEPDIR)/libopenconnect_la-array.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='array.c' object='libopenconnect_la-array.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-array.lo `test -f 'array.c' || echo '$(srcdir)/'`array.c libopenconnect_la-vhost.lo: vhost.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-vhost.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-vhost.Tpo -c -o libopenconnect_la-vhost.lo `test -f 'vhost.c' || echo '$(srcdir)/'`vhost.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-vhost.Tpo $(DEPDIR)/libopenconnect_la-vhost.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='vhost.c' object='libopenconnect_la-vhost.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-vhost.lo `test -f 'vhost.c' || echo '$(srcdir)/'`vhost.c libopenconnect_la-yubikey.lo: yubikey.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-yubikey.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-yubikey.Tpo -c -o libopenconnect_la-yubikey.lo `test -f 'yubikey.c' || echo '$(srcdir)/'`yubikey.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-yubikey.Tpo $(DEPDIR)/libopenconnect_la-yubikey.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='yubikey.c' object='libopenconnect_la-yubikey.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-yubikey.lo `test -f 'yubikey.c' || echo '$(srcdir)/'`yubikey.c libopenconnect_la-stoken.lo: stoken.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-stoken.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-stoken.Tpo -c -o libopenconnect_la-stoken.lo `test -f 'stoken.c' || echo '$(srcdir)/'`stoken.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-stoken.Tpo $(DEPDIR)/libopenconnect_la-stoken.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='stoken.c' object='libopenconnect_la-stoken.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-stoken.lo `test -f 'stoken.c' || echo '$(srcdir)/'`stoken.c libopenconnect_la-gssapi.lo: gssapi.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gssapi.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gssapi.Tpo -c -o libopenconnect_la-gssapi.lo `test -f 'gssapi.c' || echo '$(srcdir)/'`gssapi.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gssapi.Tpo $(DEPDIR)/libopenconnect_la-gssapi.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gssapi.c' object='libopenconnect_la-gssapi.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gssapi.lo `test -f 'gssapi.c' || echo '$(srcdir)/'`gssapi.c libopenconnect_la-gnutls.lo: gnutls.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls.Tpo -c -o libopenconnect_la-gnutls.lo `test -f 'gnutls.c' || echo '$(srcdir)/'`gnutls.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls.Tpo $(DEPDIR)/libopenconnect_la-gnutls.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls.c' object='libopenconnect_la-gnutls.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls.lo `test -f 'gnutls.c' || echo '$(srcdir)/'`gnutls.c libopenconnect_la-gnutls_tpm.lo: gnutls_tpm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm.Tpo -c -o libopenconnect_la-gnutls_tpm.lo `test -f 'gnutls_tpm.c' || echo '$(srcdir)/'`gnutls_tpm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm.c' object='libopenconnect_la-gnutls_tpm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm.lo `test -f 'gnutls_tpm.c' || echo '$(srcdir)/'`gnutls_tpm.c libopenconnect_la-gnutls_tpm2.lo: gnutls_tpm2.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm2.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm2.Tpo -c -o libopenconnect_la-gnutls_tpm2.lo `test -f 'gnutls_tpm2.c' || echo '$(srcdir)/'`gnutls_tpm2.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm2.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm2.c' object='libopenconnect_la-gnutls_tpm2.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm2.lo `test -f 'gnutls_tpm2.c' || echo '$(srcdir)/'`gnutls_tpm2.c libopenconnect_la-gnutls_tpm2_esys.lo: gnutls_tpm2_esys.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm2_esys.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Tpo -c -o libopenconnect_la-gnutls_tpm2_esys.lo `test -f 'gnutls_tpm2_esys.c' || echo '$(srcdir)/'`gnutls_tpm2_esys.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm2_esys.c' object='libopenconnect_la-gnutls_tpm2_esys.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm2_esys.lo `test -f 'gnutls_tpm2_esys.c' || echo '$(srcdir)/'`gnutls_tpm2_esys.c libopenconnect_la-gnutls_tpm2_ibm.lo: gnutls_tpm2_ibm.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-gnutls_tpm2_ibm.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Tpo -c -o libopenconnect_la-gnutls_tpm2_ibm.lo `test -f 'gnutls_tpm2_ibm.c' || echo '$(srcdir)/'`gnutls_tpm2_ibm.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Tpo $(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='gnutls_tpm2_ibm.c' object='libopenconnect_la-gnutls_tpm2_ibm.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-gnutls_tpm2_ibm.lo `test -f 'gnutls_tpm2_ibm.c' || echo '$(srcdir)/'`gnutls_tpm2_ibm.c libopenconnect_la-openssl.lo: openssl.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl.Tpo -c -o libopenconnect_la-openssl.lo `test -f 'openssl.c' || echo '$(srcdir)/'`openssl.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl.Tpo $(DEPDIR)/libopenconnect_la-openssl.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl.c' object='libopenconnect_la-openssl.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl.lo `test -f 'openssl.c' || echo '$(srcdir)/'`openssl.c libopenconnect_la-openssl-pkcs11.lo: openssl-pkcs11.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-openssl-pkcs11.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Tpo -c -o libopenconnect_la-openssl-pkcs11.lo `test -f 'openssl-pkcs11.c' || echo '$(srcdir)/'`openssl-pkcs11.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Tpo $(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='openssl-pkcs11.c' object='libopenconnect_la-openssl-pkcs11.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-openssl-pkcs11.lo `test -f 'openssl-pkcs11.c' || echo '$(srcdir)/'`openssl-pkcs11.c libopenconnect_la-iconv.lo: iconv.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-iconv.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-iconv.Tpo -c -o libopenconnect_la-iconv.lo `test -f 'iconv.c' || echo '$(srcdir)/'`iconv.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-iconv.Tpo $(DEPDIR)/libopenconnect_la-iconv.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='iconv.c' object='libopenconnect_la-iconv.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-iconv.lo `test -f 'iconv.c' || echo '$(srcdir)/'`iconv.c json/libopenconnect_la-json.lo: json/json.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT json/libopenconnect_la-json.lo -MD -MP -MF json/$(DEPDIR)/libopenconnect_la-json.Tpo -c -o json/libopenconnect_la-json.lo `test -f 'json/json.c' || echo '$(srcdir)/'`json/json.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) json/$(DEPDIR)/libopenconnect_la-json.Tpo json/$(DEPDIR)/libopenconnect_la-json.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='json/json.c' object='json/libopenconnect_la-json.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o json/libopenconnect_la-json.lo `test -f 'json/json.c' || echo '$(srcdir)/'`json/json.c libopenconnect_la-wintun.lo: wintun.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-wintun.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-wintun.Tpo -c -o libopenconnect_la-wintun.lo `test -f 'wintun.c' || echo '$(srcdir)/'`wintun.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-wintun.Tpo $(DEPDIR)/libopenconnect_la-wintun.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='wintun.c' object='libopenconnect_la-wintun.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-wintun.lo `test -f 'wintun.c' || echo '$(srcdir)/'`wintun.c libopenconnect_la-tun-win32.lo: tun-win32.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-tun-win32.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-tun-win32.Tpo -c -o libopenconnect_la-tun-win32.lo `test -f 'tun-win32.c' || echo '$(srcdir)/'`tun-win32.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-tun-win32.Tpo $(DEPDIR)/libopenconnect_la-tun-win32.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tun-win32.c' object='libopenconnect_la-tun-win32.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-tun-win32.lo `test -f 'tun-win32.c' || echo '$(srcdir)/'`tun-win32.c libopenconnect_la-sspi.lo: sspi.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-sspi.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-sspi.Tpo -c -o libopenconnect_la-sspi.lo `test -f 'sspi.c' || echo '$(srcdir)/'`sspi.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-sspi.Tpo $(DEPDIR)/libopenconnect_la-sspi.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='sspi.c' object='libopenconnect_la-sspi.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-sspi.lo `test -f 'sspi.c' || echo '$(srcdir)/'`sspi.c libopenconnect_la-tun.lo: tun.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-tun.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-tun.Tpo -c -o libopenconnect_la-tun.lo `test -f 'tun.c' || echo '$(srcdir)/'`tun.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-tun.Tpo $(DEPDIR)/libopenconnect_la-tun.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='tun.c' object='libopenconnect_la-tun.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-tun.lo `test -f 'tun.c' || echo '$(srcdir)/'`tun.c libopenconnect_la-jni.lo: jni.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -MT libopenconnect_la-jni.lo -MD -MP -MF $(DEPDIR)/libopenconnect_la-jni.Tpo -c -o libopenconnect_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/libopenconnect_la-jni.Tpo $(DEPDIR)/libopenconnect_la-jni.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='jni.c' object='libopenconnect_la-jni.lo' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(libopenconnect_la_CFLAGS) $(CFLAGS) -c -o libopenconnect_la-jni.lo `test -f 'jni.c' || echo '$(srcdir)/'`jni.c openconnect-xml.o: xml.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-xml.o -MD -MP -MF $(DEPDIR)/openconnect-xml.Tpo -c -o openconnect-xml.o `test -f 'xml.c' || echo '$(srcdir)/'`xml.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-xml.Tpo $(DEPDIR)/openconnect-xml.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='xml.c' object='openconnect-xml.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-xml.o `test -f 'xml.c' || echo '$(srcdir)/'`xml.c openconnect-xml.obj: xml.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-xml.obj -MD -MP -MF $(DEPDIR)/openconnect-xml.Tpo -c -o openconnect-xml.obj `if test -f 'xml.c'; then $(CYGPATH_W) 'xml.c'; else $(CYGPATH_W) '$(srcdir)/xml.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-xml.Tpo $(DEPDIR)/openconnect-xml.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='xml.c' object='openconnect-xml.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-xml.obj `if test -f 'xml.c'; then $(CYGPATH_W) 'xml.c'; else $(CYGPATH_W) '$(srcdir)/xml.c'; fi` openconnect-main.o: main.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-main.o -MD -MP -MF $(DEPDIR)/openconnect-main.Tpo -c -o openconnect-main.o `test -f 'main.c' || echo '$(srcdir)/'`main.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-main.Tpo $(DEPDIR)/openconnect-main.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='main.c' object='openconnect-main.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-main.o `test -f 'main.c' || echo '$(srcdir)/'`main.c openconnect-main.obj: main.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -MT openconnect-main.obj -MD -MP -MF $(DEPDIR)/openconnect-main.Tpo -c -o openconnect-main.obj `if test -f 'main.c'; then $(CYGPATH_W) 'main.c'; else $(CYGPATH_W) '$(srcdir)/main.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/openconnect-main.Tpo $(DEPDIR)/openconnect-main.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='main.c' object='openconnect-main.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(openconnect_CFLAGS) $(CFLAGS) -c -o openconnect-main.obj `if test -f 'main.c'; then $(CYGPATH_W) 'main.c'; else $(CYGPATH_W) '$(srcdir)/main.c'; fi` mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs -rm -rf json/.libs json/_libs distclean-libtool: -rm -f libtool config.lt install-man8: $(man8_MANS) @$(NORMAL_INSTALL) @list1='$(man8_MANS)'; \ list2=''; \ test -n "$(man8dir)" \ && test -n "`echo $$list1$$list2`" \ || exit 0; \ echo " $(MKDIR_P) '$(DESTDIR)$(man8dir)'"; \ $(MKDIR_P) "$(DESTDIR)$(man8dir)" || exit 1; \ { for i in $$list1; do echo "$$i"; done; \ if test -n "$$list2"; then \ for i in $$list2; do echo "$$i"; done \ | sed -n '/\.8[a-z]*$$/p'; \ fi; \ } | while read p; do \ if test -f $$p; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; echo "$$p"; \ done | \ sed -e 'n;s,.*/,,;p;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,' | \ sed 'N;N;s,\n, ,g' | { \ list=; while read file base inst; do \ if test "$$base" = "$$inst"; then list="$$list $$file"; else \ echo " $(INSTALL_DATA) '$$file' '$(DESTDIR)$(man8dir)/$$inst'"; \ $(INSTALL_DATA) "$$file" "$(DESTDIR)$(man8dir)/$$inst" || exit $$?; \ fi; \ done; \ for i in $$list; do echo "$$i"; done | $(am__base_list) | \ while read files; do \ test -z "$$files" || { \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(man8dir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(man8dir)" || exit $$?; }; \ done; } uninstall-man8: @$(NORMAL_UNINSTALL) @list='$(man8_MANS)'; test -n "$(man8dir)" || exit 0; \ files=`{ for i in $$list; do echo "$$i"; done; \ } | sed -e 's,.*/,,;h;s,.*\.,,;s,^[^8][0-9a-z]*$$,8,;x' \ -e 's,\.[0-9a-z]*$$,,;$(transform);G;s,\n,.,'`; \ dir='$(DESTDIR)$(man8dir)'; $(am__uninstall_files_from_dir) install-bashcompletionDATA: $(bashcompletion_DATA) @$(NORMAL_INSTALL) @list='$(bashcompletion_DATA)'; test -n "$(bashcompletiondir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(bashcompletiondir)'"; \ $(MKDIR_P) "$(DESTDIR)$(bashcompletiondir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(bashcompletiondir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(bashcompletiondir)" || exit $$?; \ done uninstall-bashcompletionDATA: @$(NORMAL_UNINSTALL) @list='$(bashcompletion_DATA)'; test -n "$(bashcompletiondir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(bashcompletiondir)'; $(am__uninstall_files_from_dir) install-pkgconfigDATA: $(pkgconfig_DATA) @$(NORMAL_INSTALL) @list='$(pkgconfig_DATA)'; test -n "$(pkgconfigdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(pkgconfigdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(pkgconfigdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(pkgconfigdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(pkgconfigdir)" || exit $$?; \ done uninstall-pkgconfigDATA: @$(NORMAL_UNINSTALL) @list='$(pkgconfig_DATA)'; test -n "$(pkgconfigdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(pkgconfigdir)'; $(am__uninstall_files_from_dir) install-includeHEADERS: $(include_HEADERS) @$(NORMAL_INSTALL) @list='$(include_HEADERS)'; test -n "$(includedir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(includedir)'"; \ $(MKDIR_P) "$(DESTDIR)$(includedir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_HEADER) $$files '$(DESTDIR)$(includedir)'"; \ $(INSTALL_HEADER) $$files "$(DESTDIR)$(includedir)" || exit $$?; \ done uninstall-includeHEADERS: @$(NORMAL_UNINSTALL) @list='$(include_HEADERS)'; test -n "$(includedir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(includedir)'; $(am__uninstall_files_from_dir) # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscope: cscope.files test ! -s cscope.files \ || $(CSCOPE) -b -q $(AM_CSCOPEFLAGS) $(CSCOPEFLAGS) -i cscope.files $(CSCOPE_ARGS) clean-cscope: -rm -f cscope.files cscope.files: clean-cscope cscopelist cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags -rm -f cscope.out cscope.in.out cscope.po.out cscope.files distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) $(am__remove_distdir) test -d "$(distdir)" || mkdir "$(distdir)" @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$(top_distdir)" distdir="$(distdir)" \ dist-hook -test -n "$(am__skip_mode_fix)" \ || find "$(distdir)" -type d ! -perm -755 \ -exec chmod u+rwx,go+rx {} \; -o \ ! -type d ! -perm -444 -links 1 -exec chmod a+r {} \; -o \ ! -type d ! -perm -400 -exec chmod a+r {} \; -o \ ! -type d ! -perm -444 -exec $(install_sh) -c -m a+r {} {} \; \ || chmod -R a+r "$(distdir)" dist-gzip: distdir tardir=$(distdir) && $(am__tar) | eval GZIP= gzip $(GZIP_ENV) -c >$(distdir).tar.gz $(am__post_remove_distdir) dist-bzip2: distdir tardir=$(distdir) && $(am__tar) | BZIP2=$${BZIP2--9} bzip2 -c >$(distdir).tar.bz2 $(am__post_remove_distdir) dist-lzip: distdir tardir=$(distdir) && $(am__tar) | lzip -c $${LZIP_OPT--9} >$(distdir).tar.lz $(am__post_remove_distdir) dist-xz: distdir tardir=$(distdir) && $(am__tar) | XZ_OPT=$${XZ_OPT--e} xz -c >$(distdir).tar.xz $(am__post_remove_distdir) dist-zstd: distdir tardir=$(distdir) && $(am__tar) | zstd -c $${ZSTD_CLEVEL-$${ZSTD_OPT--19}} >$(distdir).tar.zst $(am__post_remove_distdir) dist-tarZ: distdir @echo WARNING: "Support for distribution archives compressed with" \ "legacy program 'compress' is deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 tardir=$(distdir) && $(am__tar) | compress -c >$(distdir).tar.Z $(am__post_remove_distdir) dist-shar: distdir @echo WARNING: "Support for shar distribution archives is" \ "deprecated." >&2 @echo WARNING: "It will be removed altogether in Automake 2.0" >&2 shar $(distdir) | eval GZIP= gzip $(GZIP_ENV) -c >$(distdir).shar.gz $(am__post_remove_distdir) dist-zip: distdir -rm -f $(distdir).zip zip -rq $(distdir).zip $(distdir) $(am__post_remove_distdir) dist dist-all: $(MAKE) $(AM_MAKEFLAGS) $(DIST_TARGETS) am__post_remove_distdir='@:' $(am__post_remove_distdir) # This target untars the dist file and tries a VPATH configuration. Then # it guarantees that the distribution is self-contained by making another # tarfile. distcheck: dist case '$(DIST_ARCHIVES)' in \ *.tar.gz*) \ eval GZIP= gzip $(GZIP_ENV) -dc $(distdir).tar.gz | $(am__untar) ;;\ *.tar.bz2*) \ bzip2 -dc $(distdir).tar.bz2 | $(am__untar) ;;\ *.tar.lz*) \ lzip -dc $(distdir).tar.lz | $(am__untar) ;;\ *.tar.xz*) \ xz -dc $(distdir).tar.xz | $(am__untar) ;;\ *.tar.Z*) \ uncompress -c $(distdir).tar.Z | $(am__untar) ;;\ *.shar.gz*) \ eval GZIP= gzip $(GZIP_ENV) -dc $(distdir).shar.gz | unshar ;;\ *.zip*) \ unzip $(distdir).zip ;;\ *.tar.zst*) \ zstd -dc $(distdir).tar.zst | $(am__untar) ;;\ esac chmod -R a-w $(distdir) chmod u+w $(distdir) mkdir $(distdir)/_build $(distdir)/_build/sub $(distdir)/_inst chmod a-w $(distdir) test -d $(distdir)/_build || exit 0; \ dc_install_base=`$(am__cd) $(distdir)/_inst && pwd | sed -e 's,^[^:\\/]:[\\/],/,'` \ && dc_destdir="$${TMPDIR-/tmp}/am-dc-$$$$/" \ && am__cwd=`pwd` \ && $(am__cd) $(distdir)/_build/sub \ && ../../configure \ $(AM_DISTCHECK_CONFIGURE_FLAGS) \ $(DISTCHECK_CONFIGURE_FLAGS) \ --srcdir=../.. --prefix="$$dc_install_base" \ && $(MAKE) $(AM_MAKEFLAGS) \ && $(MAKE) $(AM_MAKEFLAGS) dvi \ && $(MAKE) $(AM_MAKEFLAGS) check \ && $(MAKE) $(AM_MAKEFLAGS) install \ && $(MAKE) $(AM_MAKEFLAGS) installcheck \ && $(MAKE) $(AM_MAKEFLAGS) uninstall \ && $(MAKE) $(AM_MAKEFLAGS) distuninstallcheck_dir="$$dc_install_base" \ distuninstallcheck \ && chmod -R a-w "$$dc_install_base" \ && ({ \ (cd ../.. && umask 077 && mkdir "$$dc_destdir") \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" install \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" uninstall \ && $(MAKE) $(AM_MAKEFLAGS) DESTDIR="$$dc_destdir" \ distuninstallcheck_dir="$$dc_destdir" distuninstallcheck; \ } || { rm -rf "$$dc_destdir"; exit 1; }) \ && rm -rf "$$dc_destdir" \ && $(MAKE) $(AM_MAKEFLAGS) dist \ && rm -rf $(DIST_ARCHIVES) \ && $(MAKE) $(AM_MAKEFLAGS) distcleancheck \ && cd "$$am__cwd" \ || exit 1 $(am__post_remove_distdir) @(echo "$(distdir) archives ready for distribution: "; \ list='$(DIST_ARCHIVES)'; for i in $$list; do echo $$i; done) | \ sed -e 1h -e 1s/./=/g -e 1p -e 1x -e '$$p' -e '$$x' distuninstallcheck: @test -n '$(distuninstallcheck_dir)' || { \ echo 'ERROR: trying to run $@ with an empty' \ '$$(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ $(am__cd) '$(distuninstallcheck_dir)' || { \ echo 'ERROR: cannot chdir into $(distuninstallcheck_dir)' >&2; \ exit 1; \ }; \ test `$(am__distuninstallcheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left after uninstall:" ; \ if test -n "$(DESTDIR)"; then \ echo " (check DESTDIR support)"; \ fi ; \ $(distuninstallcheck_listfiles) ; \ exit 1; } >&2 distcleancheck: distclean @if test '$(srcdir)' = . ; then \ echo "ERROR: distcleancheck can only run from a VPATH build" ; \ exit 1 ; \ fi @test `$(distcleancheck_listfiles) | wc -l` -eq 0 \ || { echo "ERROR: files left in build directory after distclean:" ; \ $(distcleancheck_listfiles) ; \ exit 1; } >&2 check-am: all-am check: check-recursive all-am: Makefile $(PROGRAMS) $(LTLIBRARIES) $(SCRIPTS) $(MANS) $(DATA) \ $(HEADERS) config.h installdirs: installdirs-recursive installdirs-am: for dir in "$(DESTDIR)$(sbindir)" "$(DESTDIR)$(libdir)" "$(DESTDIR)$(pkglibexecdir)" "$(DESTDIR)$(man8dir)" "$(DESTDIR)$(bashcompletiondir)" "$(DESTDIR)$(pkgconfigdir)" "$(DESTDIR)$(includedir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) -rm -f json/$(DEPDIR)/$(am__dirstamp) -rm -f json/$(am__dirstamp) -test -z "$(DISTCLEANFILES)" || rm -f $(DISTCLEANFILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic clean-libLTLIBRARIES clean-libtool \ clean-sbinPROGRAMS mostlyclean-am distclean: distclean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -f ./$(DEPDIR)/libopenconnect_la-array.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-common.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-html.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-compat.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-cstp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-digest.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-f5.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-fortinet.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gpst.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gssapi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-iconv.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-jni.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-jsondump.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-library.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzo.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzs.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-mainloop.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-mtucalc.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ntlm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-nullppp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oath.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oidc.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oncp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ppp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-pulse.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-script.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-sspi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-stoken.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-textbuf.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun-win32.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-version.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-vhost.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-wintun.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-yubikey.Plo -rm -f ./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo -rm -f ./$(DEPDIR)/openconnect-main.Po -rm -f ./$(DEPDIR)/openconnect-xml.Po -rm -f json/$(DEPDIR)/libopenconnect_la-json.Plo -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-hdr distclean-libtool distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-bashcompletionDATA install-includeHEADERS \ install-man install-pkgconfigDATA install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-libLTLIBRARIES install-pkglibexecSCRIPTS \ install-sbinPROGRAMS install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-man8 install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f $(am__CONFIG_DISTCLEAN_FILES) -rm -rf $(top_srcdir)/autom4te.cache -rm -f ./$(DEPDIR)/libopenconnect_la-array.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-common.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-globalprotect.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-html.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth-juniper.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-compat.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-cstp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-digest.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp-seqno.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-f5.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-fortinet.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_esys.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gnutls_tpm2_ibm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gpst.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-gssapi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http-auth.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-http.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-iconv.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-jni.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-jsondump.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-library.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzo.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-lzs.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-mainloop.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-mtucalc.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ntlm.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-nullppp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oath.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oidc.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-oncp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-dtls.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-esp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl-pkcs11.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-openssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ppp.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-pulse.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-script.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-ssl.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-sspi.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-stoken.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-textbuf.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun-win32.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-tun.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-version.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-vhost.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-wintun.Plo -rm -f ./$(DEPDIR)/libopenconnect_la-yubikey.Plo -rm -f ./$(DEPDIR)/libopenconnect_wrapper_la-jni.Plo -rm -f ./$(DEPDIR)/openconnect-main.Po -rm -f ./$(DEPDIR)/openconnect-xml.Po -rm -f json/$(DEPDIR)/libopenconnect_la-json.Plo -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-compile mostlyclean-generic \ mostlyclean-libtool pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: uninstall-bashcompletionDATA uninstall-includeHEADERS \ uninstall-libLTLIBRARIES uninstall-man uninstall-pkgconfigDATA \ uninstall-pkglibexecSCRIPTS uninstall-sbinPROGRAMS uninstall-man: uninstall-man8 .MAKE: $(am__recursive_targets) all install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am \ am--depfiles am--refresh check check-am clean clean-cscope \ clean-generic clean-libLTLIBRARIES clean-libtool \ clean-sbinPROGRAMS cscope cscopelist-am ctags ctags-am dist \ dist-all dist-bzip2 dist-gzip dist-hook dist-lzip dist-shar \ dist-tarZ dist-xz dist-zip dist-zstd distcheck distclean \ distclean-compile distclean-generic distclean-hdr \ distclean-libtool distclean-tags distcleancheck distdir \ distuninstallcheck dvi dvi-am html html-am info info-am \ install install-am install-bashcompletionDATA install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am \ install-includeHEADERS install-info install-info-am \ install-libLTLIBRARIES install-man install-man8 install-pdf \ install-pdf-am install-pkgconfigDATA install-pkglibexecSCRIPTS \ install-ps install-ps-am install-sbinPROGRAMS install-strip \ installcheck installcheck-am installdirs installdirs-am \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-compile mostlyclean-generic mostlyclean-libtool \ pdf pdf-am ps ps-am tags tags-am uninstall uninstall-am \ uninstall-bashcompletionDATA uninstall-includeHEADERS \ uninstall-libLTLIBRARIES uninstall-man uninstall-man8 \ uninstall-pkgconfigDATA uninstall-pkglibexecSCRIPTS \ uninstall-sbinPROGRAMS .PRECIOUS: Makefile # We kind of want openconnect to be built before we try to test it check-recursive: openconnect$(EXEEXT) # And even *building* some of tests/*.c needs libopenconnect install-recursive: libopenconnect.la all-recursive: libopenconnect.la @OPENCONNECT_WIN32_TRUE@.rc.o: @OPENCONNECT_WIN32_TRUE@ $(WINDRES) $^ -o $@ @OPENCONNECT_WIN32_TRUE@%.o : %.rc @OPENCONNECT_WIN32_TRUE@ $(WINDRES) $^ -o $@ # main.c includes version.c openconnect-main.$(OBJEXT): version.c version.c: $(library_srcs) $(lib_openssl_srcs) $(lib_gnutls_srcs) \ $(openconnect_SOURCES) Makefile.am configure.ac \ openconnect.h openconnect-internal.h version.sh @GITVERSIONDEPS@ @cd $(srcdir) && ./version.sh $(abs_builddir)/version.c AUTHORS: @GITVERSIONDEPS@ @git shortlog -sen > AUTHORS tmp-dist: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 dist tmp-distdir: uncommitted-check $(MAKE) $(AM_MAKEFLAGS) VERSION=$(patsubst v%,%,$(shell git describe --tags)) DISTHOOK=0 distdir uncommitted-check: @if ! git update-index --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; fi dist-hook: uncommitted-check @if [ $(DISTHOOK) = 1 ]; then \ if ! git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is not tagged"; exit 1; fi ; \ if ! git diff --name-only --exit-code v$(VERSION) HEAD > /dev/null; then \ echo "*** ERROR: Git checkout not at version v$(VERSION)"; exit 1; fi ; \ fi sign-dist: dist @for a in $(DIST_ARCHIVES); do \ gpg --default-key 67E2F359 --detach-sign -a $$a ; \ done tag: uncommitted-check @if git rev-parse --verify v$(VERSION) &> /dev/null; then \ echo "*** ERROR: Version v$(VERSION) is already tagged"; exit 1; fi @sed 's/AC_INIT.*/AC_INIT(openconnect, $(VERSION))/' -i $(srcdir)/configure.ac @sed 's/^v=.*/v="v$(VERSION)"/' -i $(srcdir)/version.sh @( echo '1,//p' ;\ echo '//,$$p' ;\ echo '//a\' ;\ echo 'The latest release is OpenConnect v$(VERSION)\' ;\ echo '(PGP signature),\' ;\ echo 'released on $(shell date +%Y-%m-%d) with the following changelog:

    \' ;\ sed '0,/OpenConnect HEAD/d;/<\/ul>/,$$d;s/$$/\\/' $(srcdir)/www/changelog.xml ;\ echo ' ' ) | \ sed -n -f - -i $(srcdir)/www/download.xml @( echo "s/Last modified: .*/Last modified: $(shell date)/" ;\ echo '/
  • OpenConnect HEAD/a\' ;\ echo '
      \' ;\ echo '
    • No changelog entries yet
      • \';\ echo '

    \' ; echo '
    • \' ;\ echo '
  • OpenConnect v$(VERSION)\' ;\ echo ' (PGP signature) — $(shell date +%Y-%m-%d)' ) | \ sed -f - -i $(srcdir)/www/changelog.xml @echo '/API version [0-9]\+\.[0-9]\+:$$/s/:/ (v$(VERSION); $(shell date +%Y-%m-%d)):/' | \ sed -f - -i $(srcdir)/openconnect.h # stupid syntax highlighting ' @cd $(srcdir) && git commit -s -m "Tag version $(VERSION)" configure.ac version.sh www/download.xml www/changelog.xml openconnect.h @git tag v$(VERSION) @cd $(srcdir) && ./autogen.sh update-po: po/$(PACKAGE).pot @cd $(top_srcdir); if ! git diff-index --name-only --exit-code HEAD -- po/; then \ echo "*** ERROR: Uncommitted changes in above files"; exit 1; \ else \ > po/LINGUAS; \ for a in po/*.po; do \ msgmerge -q -N -F $$a $(abs_builddir)/po/$(PACKAGE).pot > $$a.merge ; \ msgattrib -F --no-fuzzy --no-obsolete $$a.merge > $$a ; \ rm $$a.merge ; \ if msgattrib --translated $$a | grep -q msgstr; then \ echo $$a | sed 's%^po/\(.*\)\.po%\1%' >> po/LINGUAS ; \ fi ; \ done && \ if ! git update-index -q --refresh --unmerged || \ ! git diff-index --name-only --exit-code HEAD -- po/ >/dev/null; then \ git commit -s -m "Resync translations with sources" -- po/ ; \ else \ echo No changes to commit ; \ fi; \ fi po/$(PACKAGE).pot: $(POTFILES) version.sh @echo "Regenerating $@" ; rm -f $@ && \ xgettext --directory=$(top_srcdir) --from-code=UTF-8 \ --sort-by-file --add-comments --keyword=_ --keyword=N_ \ --package-name="@PACKAGE@" --package-version="@VERSION@" \ --msgid-bugs-address=openconnect-devel@lists.infradead.org \ -o $@ $(POTFILES) @BUILD_NSIS_TRUE@export V AM_DEFAULT_VERBOSITY bindir OBJDUMP # This Makefile has no rules to create these, just uses them to track # dependencies on file-list.txt if it already exists. @BUILD_NSIS_TRUE@-include .openconnect.exe.d @BUILD_NSIS_TRUE@-include .wintun.dll.d @BUILD_NSIS_TRUE@file-list.txt: Makefile.dlldeps openconnect$(EXEEXT) libopenconnect.la $(WINTUN_DLL) @BUILD_NSIS_TRUE@ @$(MAKE) --no-print-directory -f $< $@ @BUILD_NSIS_TRUE@$(TAPDRIVER): @BUILD_NSIS_TRUE@ curl https://build.openvpn.net/downloads/releases/tap-windows-9.21.2.exe -o $@ # Validate file and also let make find it in VPATH @BUILD_NSIS_TRUE@file-list-$(TAPDRIVER).txt: $(TAPDRIVER) @BUILD_NSIS_TRUE@ echo $(TAPSHA256) $< | sha256sum -c @BUILD_NSIS_TRUE@ echo $< > $@ @BUILD_NSIS_TRUE@$(WINTUNDRIVER): @BUILD_NSIS_TRUE@ curl https://www.wintun.net/builds/$(WINTUNDRIVER) -o $@ @BUILD_NSIS_TRUE@.libs/wintun.dll: $(WINTUNDRIVER) @BUILD_NSIS_TRUE@ echo $(WINTUNSHA256) $< | sha256sum -c @BUILD_NSIS_TRUE@ unzip -DD -o -j -d .libs $< wintun/bin/$(WINTUN_ARCH)/wintun.dll # Latest vpnc-script-win.js, annotated with a header documenting the # exact source revision. @BUILD_NSIS_TRUE@vpnc-script-win.js: @BUILD_NSIS_TRUE@ curl 'https://gitlab.com/api/v4/projects/openconnect%2Fvpnc-scripts/repository/commits?path=vpnc-script-win.js&branch=master' | \ @BUILD_NSIS_TRUE@ jq -r '.[0] | "// This script matches the version found at " + (.web_url | sub("/commit/"; "/blob/")) + "/vpnc-script-win.js\n// Updated on " + .authored_date[:10] + " by " + .author_name + " <" + .author_email + "> (\"" + .title + "\")\n//"' > $@ @BUILD_NSIS_TRUE@ curl https://gitlab.com/openconnect/vpnc-scripts/raw/master/vpnc-script-win.js >> $@ # Let make find the file in VPATH @BUILD_NSIS_TRUE@file-list-%.txt: % @BUILD_NSIS_TRUE@ echo $< > $@ # Rather than trying to get clever in NSIS and iterate over lists, # just emit raw snippets to be included separately in the install # and uninstall sections. @BUILD_NSIS_TRUE@instfiles.nsh: file-list.txt file-list-vpnc-script-win.js.txt file-list-$(TAPDRIVER).txt @BUILD_NSIS_TRUE@ $(AM_V_GEN) cat $^ | while read FILE; do echo "File \"$${FILE}\"" ; done > $@ @BUILD_NSIS_TRUE@uninstfiles.nsh: file-list.txt file-list-vpnc-script-win.js.txt file-list-$(TAPDRIVER).txt @BUILD_NSIS_TRUE@ $(AM_V_GEN) cat $^ | while read FILE; do echo "Delete /rebootok \"\$$INSTDIR\\\\$${FILE##*/}\"" ; done > $@ # Theoretically makensis can define symbols with the -D command line # option and much of this could just be done that way, but I couldn't # get it to work and life's too short. @BUILD_NSIS_TRUE@openconnect.nsi: version.c @BUILD_NSIS_TRUE@ $(AM_V_GEN) VERSION=$$(cut -f2 -d\" version.c); \ @BUILD_NSIS_TRUE@ PROD_VERSION=$$(echo "$$VERSION" | perl -ne 'm|v(\d+)\.(\d+)(?:\.git\.\|\-)?(\d+)?(?:-g.+\|.*)|; print "$$1.$$2." . ($$3 or "0") . ".0"'); \ @BUILD_NSIS_TRUE@ if egrep -q '^#define OPENCONNECT_GNUTLS' config.h; then \ @BUILD_NSIS_TRUE@ TLS_LIBRARY=GnuTLS; \ @BUILD_NSIS_TRUE@ elif egrep -q '^#define OPENCONNECT_OPENSSL' config.h; then \ @BUILD_NSIS_TRUE@ TLS_LIBRARY=OpenSSL; \ @BUILD_NSIS_TRUE@ else \ @BUILD_NSIS_TRUE@ TLS_LIBRARY="Unknown TLS library"; \ @BUILD_NSIS_TRUE@ fi; \ @BUILD_NSIS_TRUE@ ( echo "VIProductVersion \"$$PROD_VERSION\""; \ @BUILD_NSIS_TRUE@ echo "VIAddVersionKey ProductVersion \"$$VERSION\""; \ @BUILD_NSIS_TRUE@ echo "VIAddVersionKey Comments \"OpenConnect multi-protocol VPN client for Windows (command-line version, built with $$TLS_LIBRARY). For more information, visit https://www.infradead.org/openconnect/\""; \ @BUILD_NSIS_TRUE@ echo "!include $(srcdir)/openconnect.nsi.in" ) > $@ @BUILD_NSIS_TRUE@openconnect-installer.exe: openconnect.nsi instfiles.nsh uninstfiles.nsh $(srcdir)/openconnect.nsi.in html-recursive @BUILD_NSIS_TRUE@ $(AM_V_MAKENSIS) $(MAKENSIS) $< # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.20/TODO0000644000076400007640000000020514062600131016206 0ustar00dwoodhoudwoodhou00000000000000See the contribute.html web page in the documentation, generated in www/ or at https://www.infradead.org/openconnect/contribute.html openconnect-8.20/http.c0000644000076400007640000010744014176202121016655 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * Copyright © 2008 Nick Andrew * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include static int proxy_write(struct openconnect_info *vpninfo, char *buf, size_t len); static int proxy_read(struct openconnect_info *vpninfo, char *buf, size_t len); /* * We didn't really want to have to do this for ourselves -- one might have * thought that it would be available in a library somewhere. But neither * cURL nor Neon have reliable cross-platform ways of either using a cert * from the TPM, or just reading from / writing to a transport which is * provided by their caller. */ int http_add_cookie(struct openconnect_info *vpninfo, const char *option, const char *value, int replace) { struct oc_vpn_option *new, **this; if (*value) { new = malloc(sizeof(*new)); if (!new) { vpn_progress(vpninfo, PRG_ERR, _("No memory for allocating cookies\n")); return -ENOMEM; } new->next = NULL; new->option = strdup(option); new->value = strdup(value); if (!new->option || !new->value) { free(new->option); free(new->value); free(new); return -ENOMEM; } } else { /* Kill cookie; don't replace it */ new = NULL; /* This would be meaningless */ if (!replace) return -EINVAL; } for (this = &vpninfo->cookies; *this; this = &(*this)->next) { if (!strcmp(option, (*this)->option)) { if (!replace) { free(new->value); free(new->option); free(new); return 0; } /* Replace existing cookie */ if (new) new->next = (*this)->next; else new = (*this)->next; free((*this)->option); free((*this)->value); free(*this); *this = new; break; } } if (new && !*this) { *this = new; new->next = NULL; } return 0; } /* Some protocols use an "authentication cookie" which needs * to be split into multiple HTTP cookies. (For example, oNCP * 'DSSignInUrl=/; DSID=xxx; DSFirstAccess=xxx; DSLastAccess=xxx') * Process those into vpninfo->cookies. */ int internal_split_cookies(struct openconnect_info *vpninfo, int replace, const char *def_cookie) { char *p = vpninfo->cookie; while (p && *p) { char *semicolon = strchr(p, ';'); char *equals; if (semicolon) *semicolon = 0; equals = strchr(p, '='); if (equals) { *equals = 0; http_add_cookie(vpninfo, p, equals+1, replace); *equals = '='; } else if (def_cookie) { /* XX: assume this represents a single cookie's value */ http_add_cookie(vpninfo, def_cookie, p, replace); } else { vpn_progress(vpninfo, PRG_ERR, _("Invalid cookie '%s'\n"), p); return -EINVAL; } p = semicolon; if (p) { *p = ';'; p++; while (*p && isspace((int)(unsigned char)*p)) p++; } } return 0; } int urldecode_inplace(char *p) { char *q; if (!p) return -EINVAL; for (q = p; *p; p++, q++) { if (*p == '+') { *q = ' '; } else if (*p == '%' && isxdigit((int)(unsigned char)p[1]) && isxdigit((int)(unsigned char)p[2])) { *q = unhex(p + 1); p += 2; } else *q = *p; } *q = 0; return 0; } /* Read one HTTP header line into hdrbuf, potentially allowing for * continuation lines. Will never leave a character in 'nextchar' when * an empty line (signifying end of headers) is received. Will only * return success when hdrbuf is valid. */ static int read_http_header(struct openconnect_info *vpninfo, char *nextchar, struct oc_text_buf *hdrbuf, int allow_cont) { int eol = 0; int ret; char c; buf_truncate(hdrbuf); c = *nextchar; if (c) { *nextchar = 0; goto skip_first; } while (1) { ret = vpninfo->ssl_read(vpninfo, &c, 1); if (ret < 0) return ret; if (ret != 1) return -EINVAL; /* If we were looking for a continuation line and didn't get it, * stash the character we *did* get into *nextchar for next time. */ if (eol && c != ' ' && c != '\t') { *nextchar = c; return buf_error(hdrbuf); } eol = 0; skip_first: if (c == '\n') { if (!buf_error(hdrbuf) && hdrbuf->pos && hdrbuf->data[hdrbuf->pos - 1] == '\r') { hdrbuf->pos--; hdrbuf->data[hdrbuf->pos] = 0; } /* For a non-empty header line, see if there's a continuation */ if (allow_cont && hdrbuf->pos) { eol = 1; continue; } return buf_error(hdrbuf); } buf_append_bytes(hdrbuf, &c, 1); } return buf_error(hdrbuf); } #define BODY_HTTP10 -1 #define BODY_CHUNKED -2 int process_http_response(struct openconnect_info *vpninfo, int connect, int (*header_cb)(struct openconnect_info *, char *, char *), struct oc_text_buf *body) { struct oc_text_buf *hdrbuf = buf_alloc(); char nextchar = 0; int bodylen = BODY_HTTP10; int closeconn = 0; int result; int ret = -EINVAL; int i; buf_truncate(body); /* Ensure it has *something* in it, so that we can dereference hdrbuf->data * later without checking (for anything except buf_error(hdrbuf), which is * what read_http_header() uses for its return code anyway). */ buf_append_bytes(hdrbuf, "\0", 1); cont: ret = read_http_header(vpninfo, &nextchar, hdrbuf, 0); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response: %s\n"), strerror(-ret)); goto err; } if (!strncmp(hdrbuf->data, "HTTP/1.0 ", 9)) closeconn = 1; if ((!closeconn && strncmp(hdrbuf->data, "HTTP/1.1 ", 9)) || !(result = atoi(hdrbuf->data + 9))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse HTTP response '%s'\n"), hdrbuf->data); ret = -EINVAL; goto err; } vpn_progress(vpninfo, (result == 200 || result == 407) ? PRG_DEBUG : PRG_INFO, _("Got HTTP response: %s\n"), hdrbuf->data); /* Eat headers... */ while (1) { char *colon; char *hdrline; ret = read_http_header(vpninfo, &nextchar, hdrbuf, 1); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response: %s\n"), strerror(-ret)); goto err; } /* Empty line ends headers */ if (!hdrbuf->pos) break; hdrline = hdrbuf->data; colon = strchr(hdrline, ':'); if (!colon) { vpn_progress(vpninfo, PRG_ERR, _("Ignoring unknown HTTP response line '%s'\n"), hdrline); continue; } *(colon++) = 0; if (*colon == ' ') colon++; /* Handle Set-Cookie first so that we can avoid printing the webvpn cookie in the verbose debug output */ if (!strcasecmp(hdrline, "Set-Cookie")) { char *semicolon = strchr(colon, ';'); const char *print_equals; char *equals = strchr(colon, '='); if (semicolon) *semicolon = 0; if (!equals) { vpn_progress(vpninfo, PRG_ERR, _("Invalid cookie offered: %s\n"), hdrline); ret = -EINVAL; goto err; } *(equals++) = 0; print_equals = equals; /* Don't print the webvpn cookie unless it's empty; we don't want people posting it in public with debugging output */ if (vpninfo->proto->secure_cookie && !strcmp(colon, vpninfo->proto->secure_cookie) && *equals) print_equals = _(""); vpn_progress(vpninfo, PRG_DEBUG, "%s: %s=%s%s%s\n", hdrline, colon, print_equals, semicolon ? ";" : "", semicolon ? (semicolon+1) : ""); /* The server tends to ask for the username and password as usual, even if we've already failed because it didn't like our cert. Thankfully it does give us this hint... */ if (!strcmp(colon, "ClientCertAuthFailed")) vpn_progress(vpninfo, PRG_ERR, _("SSL certificate authentication failed\n")); ret = http_add_cookie(vpninfo, colon, equals, 1); if (ret) goto err; } else { vpn_progress(vpninfo, PRG_DEBUG, "%s: %s\n", hdrline, colon); } if (!strcasecmp(hdrline, "Connection")) { if (!strcasecmp(colon, "Close")) closeconn = 1; #if 0 /* This might seem reasonable, but in fact it breaks certificate authentication with some servers. If they give an HTTP/1.0 response, even if they explicitly give a Connection: Keep-Alive header, just close the connection. */ else if (!strcasecmp(colon, "Keep-Alive")) closeconn = 0; #endif } if (!strcasecmp(hdrline, "Location")) { vpninfo->redirect_url = strdup(colon); if (!vpninfo->redirect_url) { ret = -ENOMEM; goto err; } } if (!strcasecmp(hdrline, "Content-Length")) { bodylen = atoi(colon); if (bodylen < 0) { vpn_progress(vpninfo, PRG_ERR, _("Response body has negative size (%d)\n"), bodylen); ret = -EINVAL; goto err; } } if (!strcasecmp(hdrline, "Transfer-Encoding")) { if (!strcasecmp(colon, "chunked")) bodylen = BODY_CHUNKED; else { vpn_progress(vpninfo, PRG_ERR, _("Unknown Transfer-Encoding: %s\n"), colon); ret = -EINVAL; goto err; } } if (header_cb) header_cb(vpninfo, hdrline, colon); } /* Handle 'HTTP/1.1 100 Continue'. Not that we should ever see it */ if (result == 100) goto cont; /* On successful CONNECT or upgrade, there is no body. Return success */ if (connect && (result == 200 || result == 101)) { buf_free(hdrbuf); return result; } /* Now the body, if there is one */ vpn_progress(vpninfo, PRG_DEBUG, _("HTTP body %s (%d)\n"), bodylen == BODY_HTTP10 ? "http 1.0" : bodylen == BODY_CHUNKED ? "chunked" : "length: ", bodylen); /* If we were given Content-Length, it's nice and easy... */ if (bodylen > 0) { if (buf_ensure_space(body, bodylen + 1)) { ret = buf_error(body); goto err; } while (body->pos < bodylen) { i = vpninfo->ssl_read(vpninfo, body->data + body->pos, bodylen - body->pos); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response body\n")); ret = i; goto err; } body->pos += i; } } else if (bodylen == BODY_CHUNKED) { char clen_buf[16]; /* ... else, chunked */ while ((i = vpninfo->ssl_gets(vpninfo, clen_buf, sizeof(clen_buf)))) { int lastchunk = 0; long chunklen; if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching chunk header\n")); ret = i; goto err; } chunklen = strtol(clen_buf, NULL, 16); if (!chunklen) { lastchunk = 1; goto skip; } if (chunklen < 0) { vpn_progress(vpninfo, PRG_ERR, _("HTTP chunk length is negative (%ld)\n"), chunklen); ret = -EINVAL; goto err; } if (chunklen >= INT_MAX) { vpn_progress(vpninfo, PRG_ERR, _("HTTP chunk length is too large (%ld)\n"), chunklen); ret = -EINVAL; goto err; } if (buf_ensure_space(body, chunklen + 1)) { ret = buf_error(body); goto err; } while (chunklen) { i = vpninfo->ssl_read(vpninfo, body->data + body->pos, chunklen); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading HTTP response body\n")); ret = i; goto err; } chunklen -= i; body->pos += i; } skip: if ((i = vpninfo->ssl_gets(vpninfo, clen_buf, sizeof(clen_buf)))) { if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error fetching HTTP response body\n")); ret = i; } else { vpn_progress(vpninfo, PRG_ERR, _("Error in chunked decoding. Expected '', got: '%s'\n"), clen_buf); ret = -EINVAL; } goto err; } if (lastchunk) break; } } else if (bodylen == BODY_HTTP10) { if (!closeconn) { vpn_progress(vpninfo, PRG_ERR, _("Cannot receive HTTP 1.0 body without closing connection\n")); openconnect_close_https(vpninfo, 0); buf_free(hdrbuf); return -EINVAL; } /* HTTP 1.0 response. Just eat all we can in 4KiB chunks */ while (1) { if (buf_ensure_space(body, 4096 + 1)) { ret = buf_error(body); goto err; } i = vpninfo->ssl_read(vpninfo, body->data + body->pos, 4096); if (i < 0) { /* Error */ ret = i; goto err; } else if (!i) break; /* Got more data */ body->pos += i; } } if (body && body->data) body->data[body->pos] = 0; ret = result; if (closeconn || vpninfo->no_http_keepalive) { err: openconnect_close_https(vpninfo, 0); } buf_free(hdrbuf); return ret; } int internal_parse_url(const char *url, char **res_proto, char **res_host, int *res_port, char **res_path, int default_port) { const char *orig_host, *orig_path; char *host, *port_str; int port, proto_len = 0; orig_host = strstr(url, "://"); if (orig_host) { proto_len = orig_host - url; orig_host += 3; if (strprefix_match(url, proto_len, "https")) port = 443; else if (strprefix_match(url, proto_len, "http")) port = 80; else if (strprefix_match(url, proto_len, "socks") || strprefix_match(url, proto_len, "socks4") || strprefix_match(url, proto_len, "socks5")) port = 1080; else return -EPROTONOSUPPORT; } else { if (default_port) { port = default_port; orig_host = url; } else return -EINVAL; } orig_path = strchr(orig_host, '/'); if (orig_path) { host = strndup(orig_host, orig_path - orig_host); orig_path++; } else host = strdup(orig_host); if (!host) return -ENOMEM; port_str = strrchr(host, ':'); if (port_str) { char *end; int new_port = strtol(port_str + 1, &end, 10); if (!*end) { *port_str = 0; port = new_port; if (port <= 0 || port > 0xffff) { free(host); return -EINVAL; } } } if (res_proto) *res_proto = proto_len ? strndup(url, proto_len) : NULL; if (res_host) *res_host = host; else free(host); if (res_port) *res_port = port; if (res_path) *res_path = (orig_path && *orig_path) ? strdup(orig_path) : NULL; return 0; } char *internal_get_url(struct openconnect_info *vpninfo) { struct oc_text_buf *buf = buf_alloc(); char *url; buf_append(buf, "https://%s", vpninfo->hostname); if (vpninfo->port != 443) buf_append(buf, ":%d", vpninfo->port); buf_append(buf, "/"); if (vpninfo->urlpath) buf_append(buf, "%s", vpninfo->urlpath); if (buf_error(buf)) { buf_free(buf); return NULL; } else { url = buf->data; buf->data = NULL; buf_free(buf); return url; } } void openconnect_clear_cookies(struct openconnect_info *vpninfo) { struct oc_vpn_option *opt, *next; for (opt = vpninfo->cookies; opt; opt = next) { next = opt->next; free(opt->option); free(opt->value); free(opt); } vpninfo->cookies = NULL; } /* Return value: * < 0, on error * = 0, on success (go ahead and retry with the latest vpninfo->{hostname,urlpath,port,...}) */ int handle_redirect(struct openconnect_info *vpninfo) { vpninfo->redirect_type = REDIR_TYPE_LOCAL; if (!strncmp(vpninfo->redirect_url, "https://", 8)) { /* New host. Tear down the existing connection and make a new one */ char *host; int port; int ret; free(vpninfo->urlpath); vpninfo->urlpath = NULL; ret = internal_parse_url(vpninfo->redirect_url, NULL, &host, &port, &vpninfo->urlpath, 0); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse redirected URL '%s': %s\n"), vpninfo->redirect_url, strerror(-ret)); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return ret; } if (strcasecmp(vpninfo->hostname, host) || port != vpninfo->port) { openconnect_set_hostname(vpninfo, host); vpninfo->port = port; /* Kill the existing connection, and a new one will happen */ openconnect_close_https(vpninfo, 0); openconnect_clear_cookies(vpninfo); vpninfo->redirect_type = REDIR_TYPE_NEWHOST; } free(host); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return 0; } else if (vpninfo->redirect_url[0] == '/') { /* Absolute redirect within same host */ free(vpninfo->urlpath); vpninfo->urlpath = strdup(vpninfo->redirect_url + 1); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return 0; } else if (strstr(vpninfo->redirect_url, "://")) { vpn_progress(vpninfo, PRG_ERR, _("Cannot follow redirection to non-https URL '%s'\n"), vpninfo->redirect_url); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; return -EINVAL; } else { char *lastslash = NULL; if (vpninfo->urlpath) lastslash = strrchr(vpninfo->urlpath, '/'); if (!lastslash) { free(vpninfo->urlpath); vpninfo->urlpath = vpninfo->redirect_url; vpninfo->redirect_url = NULL; } else { char *oldurl = vpninfo->urlpath; *lastslash = 0; vpninfo->urlpath = NULL; if (asprintf(&vpninfo->urlpath, "%s/%s", oldurl, vpninfo->redirect_url) == -1) { int err = -errno; vpn_progress(vpninfo, PRG_ERR, _("Allocating new path for relative redirect failed: %s\n"), strerror(-err)); return err; } free(oldurl); free(vpninfo->redirect_url); vpninfo->redirect_url = NULL; } return 0; } } void dump_buf(struct openconnect_info *vpninfo, char prefix, char *buf) { while (*buf) { char *eol = buf; char eol_char = 0; while (*eol) { if (*eol == '\r' || *eol == '\n') { eol_char = *eol; *eol = 0; break; } eol++; } vpn_progress(vpninfo, PRG_DEBUG, "%c %s\n", prefix, buf); if (!eol_char) break; *eol = eol_char; buf = eol + 1; if (eol_char == '\r' && *buf == '\n') buf++; } } void dump_buf_hex(struct openconnect_info *vpninfo, int loglevel, char prefix, unsigned char *buf, int len) { struct oc_text_buf *line = buf_alloc(); int i, j; for (i = 0; i < len; i+=16) { buf_truncate(line); buf_append(line, "%04x:", i); for (j = i; j < i+16; j++) { if (!(j & 7)) buf_append(line, " "); if (j < len) buf_append(line, " %02x", buf[j]); else buf_append(line, " "); } buf_append(line, " |"); for (j = i; j < i+16 && j < len; j++) buf_append(line, "%c", isprint(buf[j])? buf[j] : '.'); buf_append(line, "|"); if (buf_error(line)) break; vpn_progress(vpninfo, loglevel, "%c %s\n", prefix, line->data); } buf_free(line); } static int https_socket_closed(struct openconnect_info *vpninfo) { char c; if (!openconnect_https_connected(vpninfo)) return 1; if (recv(vpninfo->ssl_fd, &c, 1, MSG_PEEK) == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("HTTPS socket closed by peer; reopening\n")); openconnect_close_https(vpninfo, 0); return 1; } return 0; } /* Inputs: * method: GET or POST * vpninfo->hostname: Host DNS name * vpninfo->port: TCP port, typically 443 * vpninfo->urlpath: Relative path, e.g. /+webvpn+/foo.html * request_body_type: Content type for a POST (e.g. text/html). Can be NULL. * request_body: POST content * form_buf: Callee-allocated buffer for server content * header_cb: Callback executed on every header line * If HTTP authentication is needed, the callback specified needs to call http_auth_hdrs. * flags (bitfield): HTTP_REDIRECT: follow redirects; * HTTP_REDIRECT_TO_GET: follow redirects, but change POST to GET; * HTTP_BODY_ON_ERR: return server content in form_buf even on error * * Return value: * < 0, on error * >=0, on success, indicating the length of the data in *form_buf */ int do_https_request(struct openconnect_info *vpninfo, const char *method, const char *request_body_type, struct oc_text_buf *request_body, char **form_buf, int (*header_cb)(struct openconnect_info *, char *, char *), int flags) { struct oc_text_buf *buf; int result; int rq_retry; int rlen, pad; int i, auth = 0; int max_redirects = 10; if (!header_cb) header_cb = http_auth_hdrs; if (request_body_type && buf_error(request_body)) return buf_error(request_body); buf = buf_alloc(); redirected: if (max_redirects-- <= 0) { result = -EIO; goto out; } vpninfo->redirect_type = REDIR_TYPE_NONE; if (*form_buf) { free(*form_buf); *form_buf = NULL; } /* * A long time ago, I *wanted* to use an HTTP client library like cURL * for this. But we need a *lot* of control over the underlying SSL * transport, and we also have to do horrid tricks like the Juniper NC * 'GET' request that actually behaves like a 'CONNECT'. * * So the world gained Yet Another HTTP Implementation. Sorry. * */ buf_truncate(buf); buf_append(buf, "%s /%s HTTP/1.1\r\n", method, vpninfo->urlpath ?: ""); if (auth) { result = gen_authorization_hdr(vpninfo, 0, buf); if (result) goto out; /* Forget existing challenges */ clear_auth_states(vpninfo, vpninfo->http_auth, 0); } if (vpninfo->proto->add_http_headers) vpninfo->proto->add_http_headers(vpninfo, buf); if (request_body_type) { rlen = request_body->pos; /* force body length to be a multiple of 64, to avoid leaking * password length. */ pad = 64*(1+rlen/64) - rlen; buf_append(buf, "X-Pad: %0*d\r\n", pad, 0); buf_append(buf, "Content-Type: %s\r\n", request_body_type); buf_append(buf, "Content-Length: %d\r\n", (int)rlen); } buf_append(buf, "\r\n"); if (request_body_type) buf_append_bytes(buf, request_body->data, request_body->pos); if (vpninfo->port == 443) vpn_progress(vpninfo, PRG_INFO, "%s https://%s/%s\n", method, vpninfo->hostname, vpninfo->urlpath ?: ""); else vpn_progress(vpninfo, PRG_INFO, "%s https://%s:%d/%s\n", method, vpninfo->hostname, vpninfo->port, vpninfo->urlpath ?: ""); if (buf_error(buf)) return buf_free(buf); vpninfo->retry_on_auth_fail = 0; retry: if (!https_socket_closed(vpninfo)) { /* The session is already connected. If we get a failure on * *sending* the request, try it again immediately with a new * connection. */ rq_retry = 1; } else { rq_retry = 0; if ((openconnect_open_https(vpninfo))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open HTTPS connection to %s\n"), vpninfo->hostname); /* We really don't want to return -EINVAL if we have failed to even connect to the server, because if we do that openconnect_obtain_cookie() might try again without XMLPOST... with the same result. */ result = -EIO; goto out; } } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', buf->data); for (i = 0; i < buf->pos; i += 16384) { result = vpninfo->ssl_write(vpninfo, buf->data + i, MIN(buf->pos - i, 16384) ); if (result < 0) { if (rq_retry) { /* Retry if we failed to send the request on an already-open connection */ openconnect_close_https(vpninfo, 0); goto retry; } /* We'll already have complained about whatever offended us */ goto out; } } result = process_http_response(vpninfo, 0, header_cb, buf); if (result < 0) { if (rq_retry) { openconnect_close_https(vpninfo, 0); vpn_progress(vpninfo, PRG_INFO, _("Retrying failed %s request on new connection\n"), method); /* All the way back to 'redirected' since we need to rebuild * the request in 'buf' from scratch. */ goto redirected; } goto out; } if (vpninfo->dump_http_traffic && buf->pos) dump_buf(vpninfo, '<', buf->data); if (result == 401 && vpninfo->try_http_auth) { auth = 1; goto redirected; } if (result != 200 && vpninfo->redirect_url) { result = handle_redirect(vpninfo); if (result == 0) { if (!(flags & (HTTP_REDIRECT | HTTP_REDIRECT_TO_GET))) goto out; if (flags & HTTP_REDIRECT_TO_GET) { /* Some protocols require a GET after a redirected POST */ method = "GET"; request_body_type = NULL; } if (vpninfo->redirect_type == REDIR_TYPE_NEWHOST) clear_auth_states(vpninfo, vpninfo->http_auth, 1); goto redirected; } goto out; } if (!buf->pos || result != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), result); if (result == 401 || result == 403) result = -EPERM; else if (result == 512) /* GlobalProtect invalid username/password */ result = -EACCES; else result = -EINVAL; if (!buf->pos || !(flags & HTTP_BODY_ON_ERROR)) goto out; } else result = buf->pos; *form_buf = buf->data; buf->data = NULL; out: buf_free(buf); /* On success, clear out all authentication state for the next request */ clear_auth_states(vpninfo, vpninfo->http_auth, 1); return result; } char *openconnect_create_useragent(const char *base) { char *uagent; if (asprintf(&uagent, "%s %s", base, openconnect_version_str) < 0) return NULL; return uagent; } static int proxy_gets(struct openconnect_info *vpninfo, char *buf, size_t len) { return cancellable_gets(vpninfo, vpninfo->proxy_fd, buf, len); } static int proxy_write(struct openconnect_info *vpninfo, char *buf, size_t len) { return cancellable_send(vpninfo, vpninfo->proxy_fd, buf, len); } static int proxy_read(struct openconnect_info *vpninfo, char *buf, size_t len) { return cancellable_recv(vpninfo, vpninfo->proxy_fd, buf, len); } static const char *socks_errors[] = { N_("request granted"), N_("general failure"), N_("connection not allowed by ruleset"), N_("network unreachable"), N_("host unreachable"), N_("connection refused by destination host"), N_("TTL expired"), N_("command not supported / protocol error"), N_("address type not supported") }; static int socks_password_auth(struct openconnect_info *vpninfo) { int ul, pl, i; char buf[1024]; if (!vpninfo->proxy_user || !vpninfo->proxy_pass) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested username/password but we have none\n")); return -EIO; } ul = strlen(vpninfo->proxy_user); pl = strlen(vpninfo->proxy_pass); if (ul > 255 || pl > 255) { vpn_progress(vpninfo, PRG_ERR, _("Username and password for SOCKS authentication must be < 255 bytes\n")); return -EINVAL; } buf[0] = 1; buf[1] = ul; memcpy(buf + 2, vpninfo->proxy_user, ul); buf[2 + ul] = pl; memcpy(buf + 3 + ul, vpninfo->proxy_pass, pl); i = proxy_write(vpninfo, buf, 3 + ul + pl); /* Don't leave passwords lying around if we can easily avoid it... */ memset(buf, 0, sizeof(buf)); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing auth request to SOCKS proxy: %s\n"), strerror(-i)); return i; } if ((i = proxy_read(vpninfo, buf, 2)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading auth response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (buf[0] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected auth response from SOCKS proxy: %02x %02x\n"), buf[0], buf[1]); return -EIO; } if (buf[1] == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Authenticated to SOCKS server using password\n")); return 0; } else { vpn_progress(vpninfo, PRG_ERR, _("Password authentication to SOCKS server failed\n")); return -EIO; } } #define SOCKS_AUTH_NONE 0 /* RFC1928 */ #define SOCKS_AUTH_GSSAPI 1 /* RFC1961 */ #define SOCKS_AUTH_PASSWORD 2 /* RFC1929 */ #define SOCKS_AUTH_NO_ACCEPTABLE 0xff /* RFC1928 */ static int process_socks_proxy(struct openconnect_info *vpninfo) { char buf[1024]; int i, nr_auth_methods = 0; buf[0] = 5; /* SOCKS version */ buf[2 + nr_auth_methods++] = SOCKS_AUTH_NONE; #if defined(HAVE_GSSAPI) || defined(_WIN32) if (vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state > AUTH_FAILED && !vpninfo->proxy_user && !vpninfo->proxy_pass) buf[2 + nr_auth_methods++] = SOCKS_AUTH_GSSAPI; #endif /* * Basic auth is disabled by default. But for SOCKS, if the user has * actually provided a password then that should implicitly allow * basic auth since that's all that SOCKS can do. We shouldn't force * the user to also add --proxy-auth=basic on the command line. */ if ((vpninfo->proxy_auth[AUTH_TYPE_BASIC].state > AUTH_FAILED || vpninfo->proxy_auth[AUTH_TYPE_BASIC].state == AUTH_DEFAULT_DISABLED) && vpninfo->proxy_user && vpninfo->proxy_pass) buf[2 + nr_auth_methods++] = SOCKS_AUTH_PASSWORD; buf[1] = nr_auth_methods; if ((i = proxy_write(vpninfo, buf, 2 + nr_auth_methods)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing auth request to SOCKS proxy: %s\n"), strerror(-i)); return i; } if ((i = proxy_read(vpninfo, buf, 2)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading auth response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (buf[0] != 5) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected auth response from SOCKS proxy: %02x %02x\n"), buf[0], buf[1]); return -EIO; } switch ((unsigned char)buf[1]) { case SOCKS_AUTH_NONE: /* No authentication */ break; case SOCKS_AUTH_GSSAPI: #if defined(HAVE_GSSAPI) || defined(_WIN32) vpn_progress(vpninfo, PRG_DEBUG, _("SOCKS server requested GSSAPI authentication\n")); if (socks_gssapi_auth(vpninfo)) return -EIO; break; #else /* This should never happen since we didn't ask for it! */ vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested GSSAPI authentication\n")); return -EIO; #endif case SOCKS_AUTH_PASSWORD: vpn_progress(vpninfo, PRG_DEBUG, _("SOCKS server requested password authentication\n")); if (socks_password_auth(vpninfo)) return -EIO; break; case SOCKS_AUTH_NO_ACCEPTABLE: vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requires authentication\n")); #if !defined(HAVE_GSSAPI) && !defined(_WIN32) vpn_progress(vpninfo, PRG_INFO, _("This version of OpenConnect was built without GSSAPI support\n")); #endif return -EIO; default: vpn_progress(vpninfo, PRG_ERR, _("SOCKS server requested unknown authentication type %02x\n"), (unsigned char)buf[1]); return -EIO; } vpn_progress(vpninfo, PRG_INFO, _("Requesting SOCKS proxy connection to %s:%d\n"), vpninfo->hostname, vpninfo->port); buf[0] = 5; /* SOCKS version */ buf[1] = 1; /* CONNECT */ buf[2] = 0; /* Reserved */ buf[3] = 3; /* Address type is domain name */ buf[4] = strlen(vpninfo->hostname); strcpy((char *)buf + 5, vpninfo->hostname); i = strlen(vpninfo->hostname) + 5; store_be16(buf + i, vpninfo->port); i += 2; if ((i = proxy_write(vpninfo, buf, i)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error writing connect request to SOCKS proxy: %s\n"), strerror(-i)); return i; } /* Read 5 bytes -- up to and including the first byte of the returned address (which might be the length byte of a domain name) */ if ((i = proxy_read(vpninfo, buf, 5)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading connect response from SOCKS proxy: %s\n"), strerror(-i)); return i; } if (i != 5 || buf[0] != 5) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected connect response from SOCKS proxy: %02x %02x...\n"), buf[0], buf[1]); return -EIO; } if (buf[1]) { unsigned char err = buf[1]; if (err < ARRAY_SIZE(socks_errors)) vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy error %02x: %s\n"), err, _(socks_errors[err])); else vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy error %02x\n"), err); return -EIO; } /* Connect responses contain an address */ switch (buf[3]) { case 1: /* Legacy IP */ i = 5; break; case 3: /* Domain name */ i = buf[4] + 2; break; case 4: /* IPv6 */ i = 17; break; default: vpn_progress(vpninfo, PRG_ERR, _("Unexpected address type %02x in SOCKS connect response\n"), buf[3]); return -EIO; } if ((i = proxy_read(vpninfo, buf, i)) < 0) { vpn_progress(vpninfo, PRG_ERR, _("Error reading connect response from SOCKS proxy: %s\n"), strerror(-i)); return i; } return 0; } static int process_http_proxy(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; int result; int auth = vpninfo->proxy_close_during_auth; vpninfo->proxy_close_during_auth = 0; vpn_progress(vpninfo, PRG_INFO, _("Requesting HTTP proxy connection to %s:%d\n"), vpninfo->hostname, vpninfo->port); retry: reqbuf = buf_alloc(); buf_append(reqbuf, "CONNECT %s:%d HTTP/1.1\r\n", vpninfo->hostname, vpninfo->port); if (vpninfo->port == 443) buf_append(reqbuf, "Host: %s\r\n", vpninfo->hostname); else buf_append(reqbuf, "Host: %s:%d\r\n", vpninfo->hostname, vpninfo->port); buf_append(reqbuf, "User-Agent: %s\r\n", vpninfo->useragent); buf_append(reqbuf, "Proxy-Connection: keep-alive\r\n"); buf_append(reqbuf, "Connection: keep-alive\r\n"); buf_append(reqbuf, "Accept-Encoding: identity\r\n"); if (auth) { result = gen_authorization_hdr(vpninfo, 1, reqbuf); if (result) { buf_free(reqbuf); return result; } /* Forget existing challenges */ clear_auth_states(vpninfo, vpninfo->proxy_auth, 0); } buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) return buf_free(reqbuf); if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); result = proxy_write(vpninfo, reqbuf->data, reqbuf->pos); if (result < 0) { buf_free(reqbuf); vpn_progress(vpninfo, PRG_ERR, _("Sending proxy request failed: %s\n"), strerror(-result)); return result; } result = process_http_response(vpninfo, 1, proxy_auth_hdrs, reqbuf); buf_free(reqbuf); if (result < 0) return -EINVAL; if (result == 407) { /* If the proxy asked us to close the connection, do so */ if (vpninfo->proxy_close_during_auth) return -EAGAIN; auth = 1; goto retry; } if (result == 200) return 0; vpn_progress(vpninfo, PRG_ERR, _("Proxy CONNECT request failed: %d\n"), result); return -EIO; } int process_proxy(struct openconnect_info *vpninfo, int ssl_sock) { int ret; vpninfo->proxy_fd = ssl_sock; vpninfo->ssl_read = proxy_read; vpninfo->ssl_write = proxy_write; vpninfo->ssl_gets = proxy_gets; if (!vpninfo->proxy_type || !strcmp(vpninfo->proxy_type, "http")) ret = process_http_proxy(vpninfo); else if (!strcmp(vpninfo->proxy_type, "socks") || !strcmp(vpninfo->proxy_type, "socks5")) ret = process_socks_proxy(vpninfo); else { vpn_progress(vpninfo, PRG_ERR, _("Unknown proxy type '%s'\n"), vpninfo->proxy_type); ret = -EIO; } vpninfo->proxy_fd = -1; if (!vpninfo->proxy_close_during_auth) clear_auth_states(vpninfo, vpninfo->proxy_auth, 1); return ret; } int openconnect_set_http_proxy(struct openconnect_info *vpninfo, const char *proxy) { char *p; int ret; free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; ret = internal_parse_url(proxy, &vpninfo->proxy_type, &vpninfo->proxy, &vpninfo->proxy_port, NULL, 80); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse proxy '%s'\n"), proxy); return ret; } p = strrchr(vpninfo->proxy, '@'); if (p) { /* Proxy username/password */ *p = 0; vpninfo->proxy_user = vpninfo->proxy; vpninfo->proxy = strdup(p + 1); p = strchr(vpninfo->proxy_user, ':'); if (p) { *p = 0; vpninfo->proxy_pass = strdup(p + 1); xmlURIUnescapeString(vpninfo->proxy_pass, 0, vpninfo->proxy_pass); } xmlURIUnescapeString(vpninfo->proxy_user, 0, vpninfo->proxy_user); } if (vpninfo->proxy_type && strcmp(vpninfo->proxy_type, "http") && strcmp(vpninfo->proxy_type, "socks") && strcmp(vpninfo->proxy_type, "socks5")) { vpn_progress(vpninfo, PRG_ERR, _("Only http or socks(5) proxies supported\n")); free(vpninfo->proxy_type); vpninfo->proxy_type = NULL; free(vpninfo->proxy); vpninfo->proxy = NULL; return -EINVAL; } return 0; } void http_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { struct oc_vpn_option *opt; if (vpninfo->port == 443) buf_append(buf, "Host: %s\r\n", vpninfo->hostname); else buf_append(buf, "Host: %s:%d\r\n", vpninfo->hostname, vpninfo->port); buf_append(buf, "User-Agent: %s\r\n", vpninfo->useragent); if (vpninfo->cookies) { buf_append(buf, "Cookie: "); for (opt = vpninfo->cookies; opt; opt = opt->next) buf_append(buf, "%s=%s%s", opt->option, opt->value, opt->next ? "; " : "\r\n"); } } openconnect-8.20/AUTHORS0000644000076400007640000001072014204505643016603 0ustar00dwoodhoudwoodhou00000000000000 2816 David Woodhouse 564 Daniel Lenski 273 Kevin Cernekee 135 Nikos Mavrogiannopoulos 107 Dimitri Papadopoulos <3350651-DimitriPapadopoulos@users.noreply.gitlab.com> 24 Jussi Kukkonen 17 Adam Piątyszek 17 Antonio Borneo 13 Mike Miller 11 Nick Andrew 10 Joachim Kuebart 9 Tom Carroll 7 Corey Wright 6 Erik Mouw 5 Luca Boccassi 4 Fengguang Wu 4 Nikolay Martynov 4 Stuart Henderson 3 Daiki Ueno 3 Dirk Hohndel 3 Jason Cooper 3 Lukáš Karas 3 Tim De Baets <10608063-tdebaets@users.noreply.gitlab.com> 3 Ľubomír Carik 2 Björn Ketelaars 2 David Dindorp 2 David Overton 2 Jay Soffian 2 Jeremy Visser 2 Joerg Mayer 2 John Morrissey 2 Jon DeVree 2 Kazuyoshi Aizawa 2 Marcel Holtmann 2 Piotr Kubaj 2 Ralph Schmieder 2 Ray Kohler 2 Rosen Penev 1 Alan Jowett 1 Andreas Gnau 1 André Draszik 1 Antonino Orlando 1 Ash Holland 1 Cameron Eagans 1 Chad Catlett 1 Chaskiel Grundman 1 Colin Petrie 1 David GEIGER 1 Dominic Hargreaves 1 Dominique Leuenberger 1 Elias Norberg 1 Eric Barkie 1 Fabian Jäger 1 François Grenier 1 Ilia Kats 1 Ivan Afonichev 1 James Laird-Wah 1 Janne Juntunen 1 Jason Wessel 1 Jiří Klimeš 1 Joe Hu 1 John Spencer 1 Jordy Zomer 1 Julien Barbot 1 Justin Kendrick 1 Jørgen Wahlberg 1 Katelyn Schiesser 1 Keith Moyer 1 Kevin Yue 1 Kyle Johnson 1 Manuel Rüger 1 Marc St-Amand 1 Mathias Schuepany 1 Michael Zhilin 1 Murilo Opsfelder Araujo 1 Nick Parrin 1 Nikolay Panin 1 Omar Sandoval 1 Patrick Lühne 1 Paul Brook 1 Paul Donohue 1 Pouya D. Tafti 1 Randy Moss 1 Roberto Leinardi 1 Ross Burton 1 Sabin Rapan 1 Sergei Trofimovich 1 Stefan Becker 1 Steven Allen 1 Steven Ihde 1 Steven Luo 1 Svante Signell 1 Thomas Schwinge 1 Thomas Uhle 1 Thomas Wood 1 Thorsten Bonhagen 1 Tiago Vignatti 1 Yoshimasa Niwa 1 Youfu Zhang 1 jethrogb 1 raminfp openconnect-8.20/auth-globalprotect.c0000644000076400007640000006524314204454432021510 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2016-2018 Daniel Lenski * * Author: Dan Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include struct login_context { char *username; /* Username that has already succeeded in some form */ char *alt_secret; /* Alternative secret (DO NOT FREE) */ char *portal_userauthcookie; /* portal-userauthcookie (from global-protect/getconfig.esp) */ char *portal_prelogonuserauthcookie; /* portal-prelogonuserauthcookie (from global-protect/getconfig.esp) */ struct oc_auth_form *form; }; void gpst_common_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { char *orig_ua = vpninfo->useragent; /* XX: more recent servers don't appear to require this specific UA value, * but we don't have any good way to detect them. */ vpninfo->useragent = (char *)"PAN GlobalProtect"; http_common_headers(vpninfo, buf); vpninfo->useragent = orig_ua; } /* Translate platform names (derived from AnyConnect) into the values * known to be emitted by GlobalProtect clients. */ const char *gpst_os_name(struct openconnect_info *vpninfo) { if (!strcmp(vpninfo->platname, "mac-intel") || !strcmp(vpninfo->platname, "apple-ios")) return "Mac"; else if (!strcmp(vpninfo->platname, "linux-64") || !strcmp(vpninfo->platname, "linux") || !strcmp(vpninfo->platname, "android")) return "Linux"; else return "Windows"; } /* Parse pre-login response ({POST,GET} /{global-protect,ssl-vpn}/pre-login.esp) * * Extracts the relevant arguments from the XML (username-label, password-label) * and uses them to build an auth form, which always has 2-3 fields: * * 1) username (hidden in challenge forms, since it's simply repeated) * 2) one secret value: * - normal account password * - "challenge" (2FA) password * - cookie from external authentication flow ("alternative secret" INSTEAD OF password) * 3) inputStr for challenge form (shoehorned into form->action) * */ static int parse_prelogin_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { struct login_context *ctx = cb_data; struct oc_auth_form *form = NULL; struct oc_form_opt *opt, *opt2; char *prompt = NULL, *username_label = NULL, *password_label = NULL; char *saml_method = NULL, *saml_path = NULL; int result = 0; if (!xmlnode_is_named(xml_node, "prelogin-response")) goto out; for (xml_node = xml_node->children; xml_node; xml_node = xml_node->next) { char *s = NULL; if (!xmlnode_get_val(xml_node, "saml-request", &s)) { int len; free(saml_path); saml_path = openconnect_base64_decode(&len, s); if (len < 0) { vpn_progress(vpninfo, PRG_ERR, "Could not decode SAML request as base64: %s\n", s); free(s); result = -EINVAL; goto out; } free(s); realloc_inplace(saml_path, len+1); if (!saml_path) { result = -ENOMEM; goto out; } saml_path[len] = '\0'; } else { xmlnode_get_val(xml_node, "saml-auth-method", &saml_method); xmlnode_get_val(xml_node, "authentication-message", &prompt); xmlnode_get_val(xml_node, "username-label", &username_label); xmlnode_get_val(xml_node, "password-label", &password_label); /* XX: should we save the certificate username from ? */ } } /* XX: Alt-secret form field must be specified for SAML, because we can't autodetect it */ if (saml_method || saml_path) { if (ctx->portal_userauthcookie) vpn_progress(vpninfo, PRG_DEBUG, _("SAML authentication required; using portal-userauthcookie to continue SAML.\n")); else if (ctx->portal_prelogonuserauthcookie) vpn_progress(vpninfo, PRG_DEBUG, _("SAML authentication required; using portal-prelogonuserauthcookie to continue SAML.\n")); else if (ctx->alt_secret) vpn_progress(vpninfo, PRG_DEBUG, _("Destination form field %s was specified; assuming SAML %s authentication is complete.\n"), ctx->alt_secret, saml_method); else { if (saml_method && !strcmp(saml_method, "REDIRECT")) vpn_progress(vpninfo, PRG_ERR, _("SAML %s authentication is required via %s\n"), saml_method, saml_path); else vpn_progress(vpninfo, PRG_ERR, _("SAML %s authentication is required via external script.\n"), saml_method); vpn_progress(vpninfo, PRG_ERR, _("When SAML authentication is complete, specify destination form field by appending :field_name to login URL.\n")); /* XX: EINVAL will lead to "failure to parse response", with unnecessary/confusing extra logging output */ result = -EPERM; goto out; } } /* Replace old form */ form = ctx->form = calloc(1, sizeof(*form)); if (!form) { nomem: free_auth_form(form); result = -ENOMEM; goto out; } form->message = prompt ? : strdup(_("Please enter your username and password")); prompt = NULL; form->auth_id = strdup("_login"); /* First field (username) */ opt = form->opts = calloc(1, sizeof(*opt)); if (!opt) goto nomem; opt->name = strdup("user"); if (asprintf(&opt->label, "%s: ", username_label ? : _("Username")) == 0) goto nomem; if (!ctx->username) opt->type = OC_FORM_OPT_TEXT; else { opt->type = OC_FORM_OPT_HIDDEN; opt->_value = ctx->username; ctx->username = NULL; } /* Second field (secret) */ opt2 = opt->next = calloc(1, sizeof(*opt)); if (!opt2) goto nomem; opt2->name = strdup(ctx->alt_secret ? : "passwd"); if (asprintf(&opt2->label, "%s: ", ctx->alt_secret ? : password_label ? : _("Password")) == 0) goto nomem; /* XX: Some VPNs use a password in the first form, followed by a * a token in the second ("challenge") form. Others use only a * token. How can we distinguish these? * * Currently using the heuristic that a non-default label for the * password in the first form means we should treat the first * form's password as a token field. */ if (!can_gen_tokencode(vpninfo, form, opt2) && !ctx->alt_secret && password_label && strcmp(password_label, "Password")) opt2->type = OC_FORM_OPT_TOKEN; else opt2->type = OC_FORM_OPT_PASSWORD; vpn_progress(vpninfo, PRG_TRACE, "Prelogin form %s: \"%s\" %s(%s)=%s, \"%s\" %s(%s)\n", form->auth_id, opt->label, opt->name, opt->type == OC_FORM_OPT_TEXT ? "TEXT" : "HIDDEN", opt->_value, opt2->label, opt2->name, opt2->type == OC_FORM_OPT_PASSWORD ? "PASSWORD" : "TOKEN"); out: free(prompt); free(username_label); free(password_label); free(saml_method); free(saml_path); return result; } /* Callback function to create a new form from a challenge * */ static int challenge_cb(struct openconnect_info *vpninfo, char *prompt, char *inputStr, void *cb_data) { struct login_context *ctx = cb_data; struct oc_auth_form *form = ctx->form; struct oc_form_opt *opt = form->opts, *opt2 = form->opts->next; /* Replace prompt, inputStr, and password prompt; * clear password field, and make user field hidden. */ free(form->message); free(form->auth_id); free(form->action); free(opt2->label); free(opt2->_value); opt2->_value = NULL; opt->type = OC_FORM_OPT_HIDDEN; /* XX: Some VPNs use a password in the first form, followed by a * a token in the second ("challenge") form. Others use only a * token. How can we distinguish these? * * Currently using the heuristic that if the password field in * the preceding form wasn't treated as a token field, treat this * as a token field. */ if (!can_gen_tokencode(vpninfo, form, opt2) && opt2->type == OC_FORM_OPT_PASSWORD) opt2->type = OC_FORM_OPT_TOKEN; else opt2->type = OC_FORM_OPT_PASSWORD; if ( !(form->message = strdup(prompt)) || !(form->action = strdup(inputStr)) || !(form->auth_id = strdup("_challenge")) || !(opt2->label = strdup(_("Challenge: "))) ) return -ENOMEM; vpn_progress(vpninfo, PRG_TRACE, "Challenge form %s: \"%s\" %s(%s)=%s, \"%s\" %s(%s), inputStr=%s\n", form->auth_id, opt->label, opt->name, opt->type == OC_FORM_OPT_TEXT ? "TEXT" : "HIDDEN", opt->_value, opt2->label, opt2->name, opt2->type == OC_FORM_OPT_PASSWORD ? "PASSWORD" : "TOKEN", inputStr); return -EAGAIN; } /* Parse gateway login response (POST /ssl-vpn/login.esp) * * Extracts the relevant arguments from the XML (...) * and uses them to build a query string fragment which is usable for subsequent requests. * This query string fragment is saved as vpninfo->cookie. * */ struct gp_login_arg { const char *opt; unsigned save:1; unsigned show:1; unsigned warn_missing:1; unsigned err_missing:1; unsigned unknown:1; const char *check; }; static const struct gp_login_arg gp_login_args[] = { { .unknown=1 }, /* seemingly always empty */ { .opt="authcookie", .save=1, .err_missing=1 }, { .opt="persistent-cookie", .warn_missing=1 }, /* 40 hex digits; persists across sessions */ { .opt="portal", .save=1, .warn_missing=1 }, { .opt="user", .save=1, .err_missing=1 }, { .opt="authentication-source", .show=1 }, /* LDAP-auth, AUTH-RADIUS_RSA_OTP, etc. */ { .opt="configuration", .warn_missing=1 }, /* usually vsys1 (sometimes vsys2, etc.) */ { .opt="domain", .save=1, .warn_missing=1 }, { .unknown=1 }, /* 4 arguments, seemingly always empty */ { .unknown=1 }, { .unknown=1 }, { .unknown=1 }, { .opt="connection-type", .err_missing=1, .check="tunnel" }, { .opt="password-expiration-days", .show=1 }, /* days until password expires, if not -1 */ { .opt="clientVer", .err_missing=1, .check="4100" }, { .opt="preferred-ip", .save=1 }, { .opt="portal-userauthcookie", .show=1}, { .opt="portal-prelogonuserauthcookie", .show=1}, { .opt="preferred-ipv6", .save=1 }, { .opt="usually-equals-4", .show=1 }, /* newer servers send "4" here, meaning unknown */ { .opt="usually-equals-unknown", .show=1 }, /* newer servers send "unknown" here */ }; static const int gp_login_nargs = ARRAY_SIZE(gp_login_args); static int parse_login_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { struct oc_text_buf *cookie = buf_alloc(); char *value = NULL; const struct gp_login_arg *arg; int argn, unknown_args = 0, fatal_args = 0; if (!xmlnode_is_named(xml_node, "jnlp")) goto err_out; xml_node = xml_node->children; while (xml_node && xml_node->type != XML_ELEMENT_NODE) xml_node = xml_node->next; if (!xml_node || !xmlnode_is_named(xml_node, "application-desc")) goto err_out; xml_node = xml_node->children; /* XXX: Loop as long as there are EITHER more known arguments OR more XML tags, * so that we catch both more-than-expected and fewer-than-expected arguments. */ for (argn = 0; argn < gp_login_nargs || xml_node; argn++) { while (xml_node && xml_node->type != XML_ELEMENT_NODE) xml_node = xml_node->next; /* XX: argument 0 is unknown so we reuse this for extra arguments */ arg = &gp_login_args[(argn < gp_login_nargs) ? argn : 0]; if (!xml_node) value = NULL; else if (!xmlnode_get_val(xml_node, "argument", &value)) { if (value && (!value[0] || !strcmp(value, "(null)") || !strcmp(value, "-1"))) { free(value); value = NULL; } else if (arg->save) { /* XX: Some of the fields returned here (e.g. portal-*cookie) should NOT be * URL-decoded in order to be reused correctly, but the ones which get saved * into "cookie" must be URL-decoded. They will be needed for the (stupidly * redundant) logout parameters. In particular the domain value "%28empty_domain%29" * appears frequently in the wild, and it needs to be decoded here for the logout * request to succeed. */ urldecode_inplace(value); } xml_node = xml_node->next; } else goto err_out; if (arg->unknown && value) { unknown_args++; vpn_progress(vpninfo, PRG_ERR, _("GlobalProtect login returned unexpected argument value arg[%d]=%s\n"), argn, value); } else if (arg->check && (!value || strcmp(value, arg->check))) { unknown_args++; fatal_args += arg->err_missing; vpn_progress(vpninfo, PRG_ERR, _("GlobalProtect login returned %s=%s (expected %s)\n"), arg->opt, value, arg->check); } else if ((arg->err_missing || arg->warn_missing) && !value) { unknown_args++; fatal_args += arg->err_missing; vpn_progress(vpninfo, PRG_ERR, _("GlobalProtect login returned empty or missing %s\n"), arg->opt); } else if (value && arg->show) { vpn_progress(vpninfo, PRG_INFO, _("GlobalProtect login returned %s=%s\n"), arg->opt, value); } if (value && arg->save) append_opt(cookie, arg->opt, value); free(value); value = NULL; } append_opt(cookie, "computer", vpninfo->localname); if (unknown_args) vpn_progress(vpninfo, PRG_ERR, _("Please report %d unexpected values above (of which %d fatal) to \n"), unknown_args, fatal_args); if (fatal_args) { buf_free(cookie); return -EPERM; } if (!buf_error(cookie)) { vpninfo->cookie = cookie->data; cookie->data = NULL; } return buf_free(cookie); err_out: free(value); buf_free(cookie); return -EINVAL; } /* Parse portal login/config response (POST /ssl-vpn/getconfig.esp) * * Extracts the list of gateways from the XML, writes them to the XML config, * presents the user with a form to choose the gateway, and redirects * to that gateway. * */ static int parse_portal_xml(struct openconnect_info *vpninfo, xmlNode *xml_node, void *cb_data) { struct login_context *ctx = cb_data; struct oc_auth_form *form; xmlNode *x, *x2, *x3, *gateways = NULL; struct oc_form_opt_select *opt; struct oc_text_buf *buf = NULL; int max_choices = 0, result; char *portal = NULL; char *hip_interval = NULL; form = calloc(1, sizeof(*form)); if (!form) return -ENOMEM; form->message = strdup(_("Please select GlobalProtect gateway.")); form->auth_id = strdup("_portal"); opt = form->authgroup_opt = calloc(1, sizeof(*opt)); if (!opt) { result = -ENOMEM; goto out; } opt->form.type = OC_FORM_OPT_SELECT; opt->form.name = strdup("gateway"); opt->form.label = strdup(_("GATEWAY:")); form->opts = (void *)opt; /* * The portal contains a ton of stuff, but basically none of it is * useful to a VPN client that wishes to give control to the client * user, as opposed to the VPN administrator. The exceptions are the * list of gateways in policy/gateways/external/list and the interval * for HIP checks in policy/hip-collection/hip-report-interval */ if (xmlnode_is_named(xml_node, "policy")) { for (x = xml_node->children; x; x = x->next) { if (xmlnode_is_named(x, "gateways")) { for (x2 = x->children; x2; x2 = x2->next) if (xmlnode_is_named(x2, "external")) for (x3 = x2->children; x3; x3 = x3->next) if (xmlnode_is_named(x3, "list")) gateways = x3; } else if (xmlnode_is_named(x, "hip-collection")) { for (x2 = x->children; x2; x2 = x2->next) { if (!xmlnode_get_val(x2, "hip-report-interval", &hip_interval)) { int sec = atoi(hip_interval); if (vpninfo->trojan_interval) vpn_progress(vpninfo, PRG_INFO, _("Ignoring portal's HIP report interval (%d minutes), because interval is already set to %d minutes.\n"), sec/60, vpninfo->trojan_interval/60); else { vpninfo->trojan_interval = sec - 60; vpn_progress(vpninfo, PRG_INFO, _("Portal set HIP report interval to %d minutes).\n"), sec/60); } } } } else { xmlnode_get_val(x, "portal-name", &portal); if (!xmlnode_get_val(x, "portal-userauthcookie", &ctx->portal_userauthcookie)) { if (!*ctx->portal_userauthcookie || !strcmp(ctx->portal_userauthcookie, "empty")) { free(ctx->portal_userauthcookie); ctx->portal_userauthcookie = NULL; } } if (!xmlnode_get_val(x, "portal-prelogonuserauthcookie", &ctx->portal_prelogonuserauthcookie)) { if (!*ctx->portal_prelogonuserauthcookie || !strcmp(ctx->portal_prelogonuserauthcookie, "empty")) { free(ctx->portal_prelogonuserauthcookie); ctx->portal_prelogonuserauthcookie = NULL; } } } } } if (!gateways) { result = -EINVAL; goto out; } if (vpninfo->write_new_config) { buf = buf_alloc(); buf_append(buf, "\n \n"); if (portal) { buf_append(buf, " "); buf_append_xmlescaped(buf, portal); buf_append(buf, "%s", vpninfo->hostname); if (vpninfo->port!=443) buf_append(buf, ":%d", vpninfo->port); buf_append(buf, "/global-protect\n"); } } /* first, count the number of gateways */ for (x = gateways->children; x; x = x->next) if (xmlnode_is_named(x, "entry")) max_choices++; opt->choices = calloc(max_choices, sizeof(opt->choices[0])); if (!opt->choices) { result = -ENOMEM; goto out; } /* each entry looks like Label */ vpn_progress(vpninfo, PRG_INFO, _("%d gateway servers available:\n"), max_choices); for (x = gateways->children; x; x = x->next) { if (xmlnode_is_named(x, "entry")) { struct oc_choice *choice = calloc(1, sizeof(*choice)); if (!choice) { result = -ENOMEM; goto out; } xmlnode_get_prop(x, "name", &choice->name); for (x2 = x->children; x2; x2=x2->next) if (!xmlnode_get_val(x2, "description", &choice->label)) { if (vpninfo->write_new_config) { buf_append(buf, " "); buf_append_xmlescaped(buf, choice->label); buf_append(buf, "%s/ssl-vpn\n", choice->name); } } opt->choices[opt->nr_choices++] = choice; vpn_progress(vpninfo, PRG_INFO, _(" %s (%s)\n"), choice->label, choice->name); } } if (!opt->nr_choices) { vpn_progress(vpninfo, PRG_ERR, _("GlobalProtect portal configuration lists no gateway servers.\n")); result = -EINVAL; goto out; } if (!vpninfo->authgroup && opt->nr_choices) vpninfo->authgroup = strdup(opt->choices[0]->name); if (vpninfo->write_new_config) { buf_append(buf, " \n\n"); if ((result = buf_error(buf))) goto out; if ((result = vpninfo->write_new_config(vpninfo->cbdata, buf->data, buf->pos))) goto out; } /* process auth form to select gateway */ result = process_auth_form(vpninfo, form); if (result == OC_FORM_RESULT_CANCELLED || result < 0) goto out; /* redirect to the gateway (no-op if it's the same host) */ free(vpninfo->redirect_url); if (asprintf(&vpninfo->redirect_url, "https://%s", vpninfo->authgroup) == 0) { result = -ENOMEM; goto out; } result = handle_redirect(vpninfo); out: buf_free(buf); free(portal); free(hip_interval); free_auth_form(form); return result; } /* Main login entry point * * portal: 0 for gateway login, 1 for portal login * alt_secret: "alternate secret" field (see new_auth_form) * */ static int gpst_login(struct openconnect_info *vpninfo, int portal, struct login_context *ctx) { int result, blind_retry = 0; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; char *xml_buf = NULL, *orig_path; /* Ask the user to fill in the auth form; repeat as necessary */ for (;;) { int keep_urlpath = 0; if (vpninfo->urlpath) { /* XX: If the path ends with .esp (possibly followed by a query string), leave as-is */ const char *esp = strstr(vpninfo->urlpath, ".esp"); if (esp && (esp[4] == '\0' || esp[4] == '?')) keep_urlpath = 1; } if (!keep_urlpath) { orig_path = vpninfo->urlpath; if (asprintf(&vpninfo->urlpath, "%s/prelogin.esp?tmp=tmp&clientVer=4100&clientos=%s", portal ? "global-protect" : "ssl-vpn", gpst_os_name(vpninfo)) < 0) { result = -ENOMEM; goto out; } } /* submit prelogin request to get form */ result = do_https_request(vpninfo, "POST", NULL, NULL, &xml_buf, NULL, HTTP_REDIRECT); if (!keep_urlpath) { free(vpninfo->urlpath); vpninfo->urlpath = orig_path; } if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, parse_prelogin_xml, NULL, ctx); if (result) goto out; got_form: /* process auth form */ result = process_auth_form(vpninfo, ctx->form); if (result) goto out; replay_form: /* generate token code if specified */ result = do_gen_tokencode(vpninfo, ctx->form); if (result) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate OTP tokencode; disabling token\n")); vpninfo->token_bypassed = 1; goto out; } /* submit gateway login (ssl-vpn/login.esp) or portal config (global-protect/getconfig.esp) request */ buf_truncate(request_body); buf_append(request_body, "jnlpReady=jnlpReady&ok=Login&direct=yes&clientVer=4100&prot=https:"); append_opt(request_body, "ipv6-support", vpninfo->disable_ipv6 ? "no" : "yes"); append_opt(request_body, "clientos", gpst_os_name(vpninfo)); append_opt(request_body, "os-version", vpninfo->platname); append_opt(request_body, "server", vpninfo->hostname); append_opt(request_body, "computer", vpninfo->localname); if (ctx->portal_userauthcookie) append_opt(request_body, "portal-userauthcookie", ctx->portal_userauthcookie); if (ctx->portal_prelogonuserauthcookie) append_opt(request_body, "portal-prelogonuserauthcookie", ctx->portal_prelogonuserauthcookie); if (vpninfo->ip_info.addr) append_opt(request_body, "preferred-ip", vpninfo->ip_info.addr); if (vpninfo->ip_info.addr6) append_opt(request_body, "preferred-ipv6", vpninfo->ip_info.addr); if (ctx->form->action) append_opt(request_body, "inputStr", ctx->form->action); append_form_opts(vpninfo, ctx->form, request_body); if ((result = buf_error(request_body))) goto out; orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup(portal ? "global-protect/getconfig.esp" : "ssl-vpn/login.esp"); result = do_https_request(vpninfo, "POST", request_body_type, request_body, &xml_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; /* Result could be either a JavaScript challenge or XML */ if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, portal ? parse_portal_xml : parse_login_xml, challenge_cb, ctx); if (result == -EACCES) { /* Invalid username/password; reuse same form, but blank, * unless we just did a blind retry. */ nuke_opt_values(ctx->form->opts); if (!blind_retry) goto got_form; else blind_retry = 0; } else { /* Save successful username */ if (!ctx->username) ctx->username = strdup(ctx->form->opts->_value); if (result == -EAGAIN) { /* New form is already populated from the challenge */ goto got_form; } else if (portal && result == 0) { /* Portal login succeeded; blindly retry same credentials on gateway if: * (a) we received a cookie that should allow automatic retry * OR (b) portal form was neither challenge auth nor alt-secret (SAML) */ portal = 0; if (ctx->portal_userauthcookie || ctx->portal_prelogonuserauthcookie || (strcmp(ctx->form->auth_id, "_challenge") && !ctx->alt_secret)) { blind_retry = 1; goto replay_form; } } else break; } } out: buf_free(request_body); free(xml_buf); return result; } int gpst_obtain_cookie(struct openconnect_info *vpninfo) { struct login_context ctx = { .username=NULL, .alt_secret=NULL, .portal_userauthcookie=NULL, .portal_prelogonuserauthcookie=NULL, .form=NULL }; int result; /* An alternate password/secret field may be specified in the "URL path" (or --usergroup). * Known possibilities are: * /portal:portal-userauthcookie * /gateway:prelogin-cookie */ if (vpninfo->urlpath && (ctx.alt_secret = strrchr(vpninfo->urlpath, ':')) != NULL) { *(ctx.alt_secret) = '\0'; ctx.alt_secret = strdup(ctx.alt_secret+1); } if (vpninfo->urlpath && (!strcmp(vpninfo->urlpath, "portal") || !strncmp(vpninfo->urlpath, "global-protect", 14))) { /* assume the server is a portal */ result = gpst_login(vpninfo, 1, &ctx); } else if (vpninfo->urlpath && (!strcmp(vpninfo->urlpath, "gateway") || !strncmp(vpninfo->urlpath, "ssl-vpn", 7))) { /* assume the server is a gateway */ result = gpst_login(vpninfo, 0, &ctx); } else { /* first try handling it as a portal, then a gateway */ result = gpst_login(vpninfo, 1, &ctx); if (result == -EEXIST) { result = gpst_login(vpninfo, 0, &ctx); if (result == -EEXIST) vpn_progress(vpninfo, PRG_ERR, _("Server is neither a GlobalProtect portal nor a gateway.\n")); } } free(ctx.username); free(ctx.alt_secret); free(ctx.portal_userauthcookie); free(ctx.portal_prelogonuserauthcookie); free_auth_form(ctx.form); return result; } int gpst_bye(struct openconnect_info *vpninfo, const char *reason) { char *orig_path; int result; struct oc_text_buf *request_body = buf_alloc(); const char *request_body_type = "application/x-www-form-urlencoded"; const char *method = "POST"; char *xml_buf = NULL; /* In order to logout successfully, the client must send not only * the session's authcookie, but also the portal, user, computer, * and domain matching the values sent with the getconfig request. * * You read that right: the client must send a bunch of irrelevant * non-secret values in its logout request. If they're wrong or * missing, the logout will fail and the authcookie will remain * valid -- which is a security hole. * * Don't blame me. I didn't design this. */ buf_append(request_body, "%s", vpninfo->cookie); if ((result = buf_error(request_body))) goto out; /* We need to close and reopen the HTTPS connection (to kill * the tunnel session) and submit a new HTTPS request to * logout. */ orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("ssl-vpn/logout.esp"); openconnect_close_https(vpninfo, 0); result = do_https_request(vpninfo, method, request_body_type, request_body, &xml_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; /* logout.esp returns HTTP status 200 and when * successful, and all manner of malformed junk when unsuccessful. */ if (result >= 0) result = gpst_xml_or_error(vpninfo, xml_buf, NULL, NULL, NULL); if (result < 0) vpn_progress(vpninfo, PRG_ERR, _("Logout failed.\n")); else vpn_progress(vpninfo, PRG_INFO, _("Logout successful.\n")); out: buf_free(request_body); free(xml_buf); return result; } openconnect-8.20/textbuf.c0000644000076400007640000002333314067426206017370 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * Copyright © 2016-2021 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #define BUF_CHUNK_SIZE 4096 #define OC_BUF_MAX ((unsigned)(16*1024*1024)) struct oc_text_buf *buf_alloc(void) { return calloc(1, sizeof(struct oc_text_buf)); } int buf_error(struct oc_text_buf *buf) { return buf ? buf->error : -ENOMEM; } void buf_truncate(struct oc_text_buf *buf) { if (!buf) return; if (buf->data) memset(buf->data, 0, buf->pos); buf->pos = 0; } int buf_free(struct oc_text_buf *buf) { int error = buf_error(buf); if (buf) { buf_truncate(buf); if (buf->data) free(buf->data); free(buf); } return error; } int buf_ensure_space(struct oc_text_buf *buf, int len) { unsigned int new_buf_len; if (!buf) return -ENOMEM; new_buf_len = (buf->pos + len + BUF_CHUNK_SIZE - 1) & ~(BUF_CHUNK_SIZE - 1); if (new_buf_len <= buf->buf_len) return 0; if (new_buf_len > OC_BUF_MAX) { buf->error = -E2BIG; return buf->error; } else { realloc_inplace(buf->data, new_buf_len); if (!buf->data) buf->error = -ENOMEM; else buf->buf_len = new_buf_len; } return buf->error; } void buf_append_bytes(struct oc_text_buf *buf, const void *bytes, int len) { if (!buf || buf->error) return; if (buf_ensure_space(buf, len + 1)) return; memcpy(buf->data + buf->pos, bytes, len); buf->pos += len; buf->data[buf->pos] = 0; } void __attribute__ ((format (printf, 2, 3))) buf_append(struct oc_text_buf *buf, const char *fmt, ...) { va_list ap; if (!buf || buf->error) return; if (buf_ensure_space(buf, 1)) return; while (1) { int max_len = buf->buf_len - buf->pos, ret; va_start(ap, fmt); ret = vsnprintf(buf->data + buf->pos, max_len, fmt, ap); va_end(ap); if (ret < 0) { buf->error = -EIO; break; } else if (ret < max_len) { buf->pos += ret; break; } else if (buf_ensure_space(buf, ret)) break; } } void buf_append_urlencoded(struct oc_text_buf *buf, const char *str) { while (str && *str) { unsigned char c = *str; if (c < 0x80 && (isalnum((int)(c)) || c=='-' || c=='_' || c=='.' || c=='~')) buf_append_bytes(buf, str, 1); else buf_append(buf, "%%%02x", c); str++; } } void buf_append_xmlescaped(struct oc_text_buf *buf, const char *str) { while (str && *str) { unsigned char c = *str; if (c=='<' || c=='>' || c=='&' || c=='"' || c=='\'') buf_append(buf, "&#x%02x;", c); else buf_append_bytes(buf, str, 1); str++; } } void buf_append_be16(struct oc_text_buf *buf, uint16_t val) { unsigned char b[2]; store_be16(b, val); buf_append_bytes(buf, b, 2); } void buf_append_be32(struct oc_text_buf *buf, uint32_t val) { unsigned char b[4]; store_be32(b, val); buf_append_bytes(buf, b, 4); } void buf_append_le16(struct oc_text_buf *buf, uint16_t val) { unsigned char b[2]; store_le16(b, val); buf_append_bytes(buf, b, 2); } void buf_append_hex(struct oc_text_buf *buf, const void *str, unsigned len) { const unsigned char *data = str; unsigned i; for (i = 0; i < len; i++) buf_append(buf, "%02x", (unsigned)data[i]); } void buf_append_from_utf16le(struct oc_text_buf *buf, const void *_utf16) { const unsigned char *utf16 = _utf16; unsigned char utf8[4]; int c; if (!utf16) return; while (utf16[0] || utf16[1]) { if ((utf16[1] & 0xfc) == 0xd8 && (utf16[3] & 0xfc) == 0xdc) { c = ((load_le16(utf16) & 0x3ff) << 10)| (load_le16(utf16 + 2) & 0x3ff); c += 0x10000; utf16 += 4; } else { c = load_le16(utf16); utf16 += 2; } if (c < 0x80) { utf8[0] = c; buf_append_bytes(buf, utf8, 1); } else if (c < 0x800) { utf8[0] = 0xc0 | (c >> 6); utf8[1] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 2); } else if (c < 0x10000) { utf8[0] = 0xe0 | (c >> 12); utf8[1] = 0x80 | ((c >> 6) & 0x3f); utf8[2] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 3); } else { utf8[0] = 0xf0 | (c >> 18); utf8[1] = 0x80 | ((c >> 12) & 0x3f); utf8[2] = 0x80 | ((c >> 6) & 0x3f); utf8[3] = 0x80 | (c & 0x3f); buf_append_bytes(buf, utf8, 4); } } utf8[0] = 0; buf_append_bytes(buf, utf8, 1); } int get_utf8char(const char **p) { const char *utf8 = *p; unsigned char c; int utfchar, nr_extra, min; c = *(utf8++); if (c < 128) { utfchar = c; nr_extra = 0; min = 0; } else if ((c & 0xe0) == 0xc0) { utfchar = c & 0x1f; nr_extra = 1; min = 0x80; } else if ((c & 0xf0) == 0xe0) { utfchar = c & 0x0f; nr_extra = 2; min = 0x800; } else if ((c & 0xf8) == 0xf0) { utfchar = c & 0x07; nr_extra = 3; min = 0x10000; } else { return -EILSEQ; } while (nr_extra--) { c = *(utf8++); if ((c & 0xc0) != 0x80) return -EILSEQ; utfchar <<= 6; utfchar |= (c & 0x3f); } if (utfchar > 0x10ffff || utfchar < min) return -EILSEQ; *p = utf8; return utfchar; } int buf_append_utf16le(struct oc_text_buf *buf, const char *utf8) { int utfchar, len = 0; /* Ick. Now I'm implementing my own UTF8 handling too. Perhaps it's time to bite the bullet and start requiring something like glib? */ while (*utf8) { utfchar = get_utf8char(&utf8); if (utfchar < 0) { if (buf) buf->error = utfchar; return utfchar; } if (!buf) continue; if (utfchar >= 0x10000) { utfchar -= 0x10000; if (buf_ensure_space(buf, 4)) return buf_error(buf); store_le16(buf->data + buf->pos, (utfchar >> 10) | 0xd800); store_le16(buf->data + buf->pos + 2, (utfchar & 0x3ff) | 0xdc00); buf->pos += 4; len += 4; } else { if (buf_ensure_space(buf, 2)) return buf_error(buf); store_le16(buf->data + buf->pos, utfchar); buf->pos += 2; len += 2; } } /* We were only being used for validation */ if (!buf) return 0; /* Ensure UTF16 is NUL-terminated */ if (buf_ensure_space(buf, 2)) return buf_error(buf); buf->data[buf->pos] = buf->data[buf->pos + 1] = 0; return len; } /* Ick. Yet another wheel to reinvent. But although we could pull it in from OpenSSL, we can't from GnuTLS */ static inline int b64_char(char c) { if (c >= 'A' && c <= 'Z') return c - 'A'; if (c >= 'a' && c <= 'z') return c - 'a' + 26; if (c >= '0' && c <= '9') return c - '0' + 52; if (c == '+') return 62; if (c == '/') return 63; return -1; } void *openconnect_base64_decode(int *ret_len, const char *in) { unsigned char *buf; int b[4]; int len = strlen(in); if (len & 3) { *ret_len = -EINVAL; return NULL; } len = (len * 3) / 4; buf = malloc(len); if (!buf) { *ret_len = -ENOMEM; return NULL; } len = 0; while (*in) { if (!in[1] || !in[2] || !in[3]) goto err; b[0] = b64_char(in[0]); b[1] = b64_char(in[1]); if (b[0] < 0 || b[1] < 0) goto err; buf[len++] = (b[0] << 2) | (b[1] >> 4); if (in[2] == '=') { if (in[3] != '=' || in[4] != 0) goto err; break; } b[2] = b64_char(in[2]); if (b[2] < 0) goto err; buf[len++] = (b[1] << 4) | (b[2] >> 2); if (in[3] == '=') { if (in[4] != 0) goto err; break; } b[3] = b64_char(in[3]); if (b[3] < 0) goto err; buf[len++] = (b[2] << 6) | b[3]; in += 4; } *ret_len = len; return buf; err: free(buf); *ret_len = -EINVAL; return NULL; } static const char b64_table[] = { 'A', 'B', 'C', 'D', 'E', 'F', 'G', 'H', 'I', 'J', 'K', 'L', 'M', 'N', 'O', 'P', 'Q', 'R', 'S', 'T', 'U', 'V', 'W', 'X', 'Y', 'Z', 'a', 'b', 'c', 'd', 'e', 'f', 'g', 'h', 'i', 'j', 'k', 'l', 'm', 'n', 'o', 'p', 'q', 'r', 's', 't', 'u', 'v', 'w', 'x', 'y', 'z', '0', '1', '2', '3', '4', '5', '6', '7', '8', '9', '+', '/' }; void buf_append_base64(struct oc_text_buf *buf, const void *bytes, int len, int line_len) { const unsigned char *in = bytes; int hibits; if (!buf || buf->error) return; if (len < 0 || line_len < 0 || (line_len & 3)) { buf->error = -EINVAL; return; } unsigned int needed = ((len + 2u) / 3) * 4; /* Line endings, but not for the last line if it reaches line_len */ if (line_len && needed) needed += (needed - 1) / line_len; needed++; /* Allow for the trailing NUL */ if (needed >= (unsigned)(OC_BUF_MAX - buf->pos)) { buf->error = -E2BIG; return; } if (buf_ensure_space(buf, needed)) return; #ifdef BUFTEST int orig_len = len, orig_pos = buf->pos; #endif int ll = 0; while (len > 0) { if (line_len) { if (ll >= line_len) { ll = 0; buf->data[buf->pos++] = '\n'; } ll += 4; } buf->data[buf->pos++] = b64_table[in[0] >> 2]; hibits = (in[0] << 4) & 0x30; if (len == 1) { buf->data[buf->pos++] = b64_table[hibits]; buf->data[buf->pos++] = '='; buf->data[buf->pos++] = '='; break; } buf->data[buf->pos++] = b64_table[hibits | (in[1] >> 4)]; hibits = (in[1] << 2) & 0x3c; if (len == 2) { buf->data[buf->pos++] = b64_table[hibits]; buf->data[buf->pos++] = '='; break; } buf->data[buf->pos++] = b64_table[hibits | (in[2] >> 6)]; buf->data[buf->pos++] = b64_table[in[2] & 0x3f]; in += 3; len -= 3; } #ifdef BUFTEST if (buf->pos != orig_pos + needed - 1) { printf("Used %d instead of calculated %d for %d bytes at line len %d\n", buf->pos - orig_pos, needed, orig_len, line_len); buf->error = -EIO; } #endif buf->data[buf->pos] = 0; } openconnect-8.20/gnutls-dtls.c0000644000076400007640000005031114100007334020144 0ustar00dwoodhoudwoodhou00000000000000 /* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "gnutls.h" #include #include #include #include #ifndef _WIN32 #include #include #endif #include #include #include #include #if GNUTLS_VERSION_NUMBER < 0x030400 # define GNUTLS_CIPHER_CHACHA20_POLY1305 23 #endif /* sets the DTLS MTU and returns the actual tunnel MTU */ unsigned dtls_set_mtu(struct openconnect_info *vpninfo, unsigned mtu) { gnutls_dtls_set_mtu(vpninfo->dtls_ssl, mtu); return gnutls_dtls_get_data_mtu(vpninfo->dtls_ssl); } struct { const char *name; gnutls_protocol_t version; gnutls_cipher_algorithm_t cipher; gnutls_kx_algorithm_t kx; gnutls_mac_algorithm_t mac; const char *prio; const char *min_gnutls_version; int cisco_dtls12; } gnutls_dtls_ciphers[] = { { "DHE-RSA-AES128-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_128_CBC, GNUTLS_KX_DHE_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-128-CBC:+SHA1:+DHE-RSA:+SIGN-ALL:%COMPAT", "3.0.0" }, { "DHE-RSA-AES256-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_256_CBC, GNUTLS_KX_DHE_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-256-CBC:+SHA1:+DHE-RSA:+SIGN-ALL:%COMPAT", "3.0.0" }, { "AES128-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_128_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-128-CBC:+SHA1:+RSA:+SIGN-ALL:%COMPAT", "3.0.0" }, { "AES256-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_AES_256_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+AES-256-CBC:+SHA1:+RSA:+SIGN-ALL:%COMPAT", "3.0.0" }, { "DES-CBC3-SHA", GNUTLS_DTLS0_9, GNUTLS_CIPHER_3DES_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS0.9:+COMP-NULL:+3DES-CBC:+SHA1:+RSA:+SIGN-ALL:%COMPAT", "3.0.0" }, { "OC-DTLS1_2-AES128-GCM", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-GCM:+AEAD:+RSA:%COMPAT:+SIGN-ALL", "3.2.7" }, { "OC-DTLS1_2-AES256-GCM", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-GCM:+AEAD:+RSA:%COMPAT:+SIGN-ALL", "3.2.7" }, { "OC2-DTLS1_2-CHACHA20-POLY1305", GNUTLS_DTLS1_2, GNUTLS_CIPHER_CHACHA20_POLY1305, GNUTLS_KX_PSK, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+CHACHA20-POLY1305:+AEAD:+PSK:%COMPAT:+SIGN-ALL", "3.4.8" }, /* Cisco X-DTLS12-CipherSuite: values */ { "DHE-RSA-AES128-SHA", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_CBC, GNUTLS_KX_DHE_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-CBC:+SHA1:+DHE-RSA:+SIGN-ALL:%COMPAT", "3.0.0", 1 }, { "DHE-RSA-AES256-SHA", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_CBC, GNUTLS_KX_DHE_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-CBC:+SHA1:+DHE-RSA:+SIGN-ALL:%COMPAT", "3.0.0", 1 }, { "AES128-SHA", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-CBC:+SHA1:+RSA:+SIGN-ALL:%COMPAT", "3.0.0", 1 }, { "AES256-SHA", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_CBC, GNUTLS_KX_RSA, GNUTLS_MAC_SHA1, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-CBC:+SHA1:+RSA:+SIGN-ALL:%COMPAT", "3.0.0", 1 }, { "ECDHE-RSA-AES256-GCM-SHA384", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_GCM, GNUTLS_KX_ECDHE_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-GCM:+AEAD:+ECDHE-RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, { "ECDHE-RSA-AES128-GCM-SHA256", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_GCM, GNUTLS_KX_ECDHE_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-GCM:+AEAD:+ECDHE-RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, { "AES128-GCM-SHA256", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_128_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-128-GCM:+AEAD:+RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, { "AES256-GCM-SHA384", GNUTLS_DTLS1_2, GNUTLS_CIPHER_AES_256_GCM, GNUTLS_KX_RSA, GNUTLS_MAC_AEAD, "NONE:+VERS-DTLS1.2:+COMP-NULL:+AES-256-GCM:+AEAD:+RSA:+SIGN-ALL:%COMPAT", "3.2.7", 1 }, /* NB. We agreed that any new cipher suites probably shouldn't use * Cisco's session resume hack (which ties us to a specific version * of DTLS). Instead, we'll use GNUTLS_KX_PSK and let it negotiate * the session properly. We might want to wait for * draft-jay-tls-psk-identity-extension before we do that. */ }; #if GNUTLS_VERSION_NUMBER < 0x030009 void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { int i, first = 1; for (i = 0; i < ARRAY_SIZE(gnutls_dtls_ciphers); i++) { if (!gnutls_dtls_ciphers[i].cisco_dtls12 && gnutls_check_version(gnutls_dtls_ciphers[i].min_gnutls_version)) { buf_append(buf, "%s%s", first ? "" : ":", gnutls_dtls_ciphers[i].name); first = 0; } } } #else void gather_dtls_ciphers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, struct oc_text_buf *buf12) { /* only enable the ciphers that would have been negotiated in the TLS channel */ unsigned i, j; int ret; unsigned idx; gnutls_cipher_algorithm_t cipher; gnutls_mac_algorithm_t mac; gnutls_priority_t cache; uint32_t used = 0; buf_append(buf, "PSK-NEGOTIATE"); ret = gnutls_priority_init(&cache, vpninfo->ciphersuite_config, NULL); if (ret < 0) { buf->error = -EIO; return; } for (j=0; ; j++) { ret = gnutls_priority_get_cipher_suite_index(cache, j, &idx); if (ret == GNUTLS_E_UNKNOWN_CIPHER_SUITE) continue; else if (ret < 0) break; if (gnutls_cipher_suite_info(idx, NULL, NULL, &cipher, &mac, NULL) != NULL) { for (i = 0; i < ARRAY_SIZE(gnutls_dtls_ciphers); i++) { if (used & (1 << i)) continue; if (gnutls_dtls_ciphers[i].mac == mac && gnutls_dtls_ciphers[i].cipher == cipher) { /* This cipher can be supported. Decide whether which list it lives * in. Cisco's DTLSv1.2 options need to go into a separate * into a separate X-DTLS12-CipherSuite header for some reason... */ struct oc_text_buf *list; if (gnutls_dtls_ciphers[i].cisco_dtls12) list = buf12; else list = buf; if (list && list->pos) buf_append(list, ":%s", gnutls_dtls_ciphers[i].name); else buf_append(list, "%s", gnutls_dtls_ciphers[i].name); used |= (1 << i); break; } } } } gnutls_priority_deinit(cache); } #endif /* This enables a DTLS protocol negotiation. The new negotiation is as follows: * * If the client's X-DTLS-CipherSuite contains the "PSK-NEGOTIATE" keyword, * the server will reply with "X-DTLS-CipherSuite: PSK-NEGOTIATE" and will * enable DTLS-PSK negotiation on the DTLS channel. This allows the protocol * to use new DTLS versions, as well as new DTLS ciphersuites, as long as * they are also permitted by the system crypto policy in use. * * That change still requires to client to pretend it is resuming by setting * in the TLS ClientHello the session ID provided by the X-DTLS-Session-ID * header. That is, because there is no TLS extension we can use to set an * identifier in the client hello (draft-jay-tls-psk-identity-extension * could be used in the future). The session is not actually resumed. */ static int start_dtls_psk_handshake(struct openconnect_info *vpninfo, gnutls_session_t dtls_ssl) { gnutls_datum_t key; struct oc_text_buf *prio; int err; if (!vpninfo->https_sess) { vpn_progress(vpninfo, PRG_INFO, _("Deferring DTLS resumption until CSTP generates a PSK\n")); return -EAGAIN; } prio = buf_alloc(); buf_append(prio, "%s:-VERS-TLS-ALL:+VERS-DTLS-ALL:-KX-ALL:+PSK", vpninfo->ciphersuite_config); if (buf_error(prio)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate DTLS priority string\n")); return buf_free(prio); } err = gnutls_priority_set_direct(dtls_ssl, prio->data, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS priority: '%s': %s\n"), prio->data, gnutls_strerror(err)); goto fail; } /* set our session identifier match the application ID; we do that in addition * to the extension which contains the same information in order to deprecate * the latter. The reason is that the session ID field is a field not used * with TLS1.3 (and DTLS1.3), and as such we can rely on it being available to * us, while avoiding a custom extension which requires standardization. */ if (vpninfo->dtls_app_id_size > 0) { gnutls_datum_t id = {vpninfo->dtls_app_id, vpninfo->dtls_app_id_size}; gnutls_session_set_id(dtls_ssl, &id); } /* set PSK credentials */ err = gnutls_psk_allocate_client_credentials(&vpninfo->psk_cred); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to allocate credentials: %s\n"), gnutls_strerror(err)); goto fail; } /* generate key */ /* we should have used gnutls_prf_rfc5705() but since we don't use * the RFC5705 context, the output is identical with gnutls_prf(). The * latter is available in much earlier versions of gnutls. */ err = gnutls_prf(vpninfo->https_sess, PSK_LABEL_SIZE, PSK_LABEL, 0, 0, 0, PSK_KEY_SIZE, (char *)vpninfo->dtls_secret); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to generate DTLS key: %s\n"), gnutls_strerror(err)); goto fail; } key.data = vpninfo->dtls_secret; key.size = PSK_KEY_SIZE; /* we set an arbitrary username here. We cannot take advantage of the * username field to send our ID to the server, since the username in TLS-PSK * is sent after the server-hello. */ err = gnutls_psk_set_client_credentials(vpninfo->psk_cred, "psk", &key, 0); if (err < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS key: %s\n"), gnutls_strerror(err)); goto fail; } err = gnutls_credentials_set(dtls_ssl, GNUTLS_CRD_PSK, vpninfo->psk_cred); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS PSK credentials: %s\n"), gnutls_strerror(err)); goto fail; } buf_free(prio); return 0; fail: buf_free(prio); gnutls_psk_free_client_credentials(vpninfo->psk_cred); vpninfo->psk_cred = NULL; return -EINVAL; } static int start_dtls_resume_handshake(struct openconnect_info *vpninfo, gnutls_session_t dtls_ssl) { gnutls_datum_t master_secret, session_id; int err; int cipher; for (cipher = 0; cipher < ARRAY_SIZE(gnutls_dtls_ciphers); cipher++) { if (gnutls_dtls_ciphers[cipher].cisco_dtls12 != vpninfo->dtls12 || gnutls_check_version(gnutls_dtls_ciphers[cipher].min_gnutls_version) == NULL) continue; if (!strcmp(vpninfo->dtls_cipher, gnutls_dtls_ciphers[cipher].name)) goto found_cipher; } vpn_progress(vpninfo, PRG_ERR, _("Unknown DTLS parameters for requested CipherSuite '%s'\n"), vpninfo->dtls_cipher); return -EINVAL; found_cipher: err = gnutls_priority_set_direct(dtls_ssl, gnutls_dtls_ciphers[cipher].prio, NULL); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS priority: '%s': %s\n"), gnutls_dtls_ciphers[cipher].prio, gnutls_strerror(err)); return -EINVAL; } gnutls_record_disable_padding(dtls_ssl); master_secret.data = vpninfo->dtls_secret; master_secret.size = sizeof(vpninfo->dtls_secret); session_id.data = vpninfo->dtls_session_id; session_id.size = sizeof(vpninfo->dtls_session_id); err = gnutls_session_set_premaster(dtls_ssl, GNUTLS_CLIENT, gnutls_dtls_ciphers[cipher].version, gnutls_dtls_ciphers[cipher].kx, gnutls_dtls_ciphers[cipher].cipher, gnutls_dtls_ciphers[cipher].mac, GNUTLS_COMP_NULL, &master_secret, &session_id); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS session parameters: %s\n"), gnutls_strerror(err)); return -EINVAL; } return 0; } static int start_dtls_anon_handshake(struct openconnect_info *vpninfo, gnutls_session_t dtls_ssl) { char *prio = vpninfo->ciphersuite_config; int ret; /* * Use the same cred store as for the HTTPS session. That has * our own verify_peer() callback installed, and will validate * just like we do for the HTTPS service. * * There is also perhaps a case to be made for *only* accepting * precisely the same cert that we get from the HTTPS service, * but we tried that for EAP-TTLS in the Pulse protocol and the * theory was disproven, so we ended up doing this there too. */ gnutls_credentials_set(dtls_ssl, GNUTLS_CRD_CERTIFICATE, vpninfo->https_cred); /* The F5 BIG-IP server before v16, will crap itself if we * even *try* to do DTLSv1.2 */ if (!vpninfo->dtls12 && asprintf(&prio, "%s:-VERS-DTLS1.2:+VERS-DTLS1.0", vpninfo->ciphersuite_config) < 0) return -ENOMEM; ret = gnutls_priority_set_direct(dtls_ssl, prio ? : vpninfo->ciphersuite_config, NULL); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS priority: '%s': %s\n"), prio, gnutls_strerror(ret)); } if (prio != vpninfo->ciphersuite_config) free(prio); return ret; } /* * GnuTLS version between 3.6.3 and 3.6.12 send zero'ed ClientHello. Make sure * we are not hitting that bug. Adapted from: * https://gitlab.com/gnutls/gnutls/-/blob/3.6.13/tests/tls_hello_random_value.c */ static int check_client_hello_random(gnutls_session_t ttls_sess, unsigned int type, unsigned hook, unsigned int incoming, const gnutls_datum_t *msg) { unsigned non_zero = 0, i; struct openconnect_info *vpninfo = (struct openconnect_info *)gnutls_session_get_ptr(ttls_sess); if (type == GNUTLS_HANDSHAKE_CLIENT_HELLO && hook == GNUTLS_HOOK_POST) { gnutls_datum_t buf; gnutls_session_get_random(ttls_sess, &buf, NULL); if (buf.size != 32) { vpn_progress(vpninfo, PRG_ERR, _("GnuTLS used %d ClientHello random bytes; this should never happen\n"), buf.size); return GNUTLS_E_INVALID_REQUEST; } for (i = 0; i < buf.size; ++i) { if (buf.data[i] != 0) { non_zero++; } } /* The GnuTLS bug was that *all* bytes were zero, but as part of the unit test * they also slipped in a coincidental check on how well the random number * generator is behaving. Eight or more zeroes is a bad thing whatever the * reason for it. So we have the same check. */ if (non_zero <= 8) { /* TODO: mention CVE number in log message once it's assigned */ vpn_progress(vpninfo, PRG_ERR, _("GnuTLS sent insecure ClientHello random. Upgrade to 3.6.13 or newer.\n")); return GNUTLS_E_INVALID_REQUEST; } } return 0; } int start_dtls_handshake(struct openconnect_info *vpninfo, int dtls_fd) { gnutls_session_t dtls_ssl; int err, ret; err = gnutls_init(&dtls_ssl, GNUTLS_CLIENT|GNUTLS_DATAGRAM|GNUTLS_NONBLOCK|GNUTLS_NO_EXTENSIONS); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to initialize DTLS: %s\n"), gnutls_strerror(err)); return -EINVAL; } gnutls_session_set_ptr(dtls_ssl, (void *) vpninfo); gnutls_transport_set_ptr(dtls_ssl, (gnutls_transport_ptr_t)(intptr_t)dtls_fd); if (!vpninfo->dtls_cipher) { /* Anonymous DTLS (PPP protocols) */ ret = start_dtls_anon_handshake(vpninfo, dtls_ssl); } else if (!strcmp(vpninfo->dtls_cipher, "PSK-NEGOTIATE")) { /* For OpenConnect/ocserv protocol */ ret = start_dtls_psk_handshake(vpninfo, dtls_ssl); } else { /* Nonexistent session resume hack (Cisco AnyConnect) */ ret = start_dtls_resume_handshake(vpninfo, dtls_ssl); } if (ret) { if (ret != -EAGAIN) vpninfo->dtls_attempt_period = 0; gnutls_deinit(dtls_ssl); return ret; } if (gnutls_check_version_numeric(3,6,3) && !gnutls_check_version_numeric(3,6,13)) { gnutls_handshake_set_hook_function(dtls_ssl, GNUTLS_HANDSHAKE_CLIENT_HELLO, GNUTLS_HOOK_POST, check_client_hello_random); } vpninfo->dtls_ssl = dtls_ssl; return 0; } int dtls_try_handshake(struct openconnect_info *vpninfo, int *timeout) { int err = gnutls_handshake(vpninfo->dtls_ssl); char *str; if (!err) { if (!vpninfo->dtls_cipher) { /* Anonymous DTLS (PPP protocols) will set vpninfo->ip_info.mtu * in PPP negotiation. * * XX: Needs forthcoming overhaul to detect MTU correctly and offer * reasonable MRU values during PPP negotiation. */ int data_mtu = vpninfo->cstp_basemtu = 1500; if (vpninfo->peer_addr->sa_family == IPPROTO_IPV6) data_mtu -= 40; /* IPv6 header */ else data_mtu -= 20; /* Legacy IP header */ data_mtu -= 8; /* UDP header */ dtls_set_mtu(vpninfo, data_mtu); } else if (!strcmp(vpninfo->dtls_cipher, "PSK-NEGOTIATE")) { /* For PSK-NEGOTIATE (OpenConnect/ocserv protocol) * we have to determine the tunnel MTU * for ourselves based on the base MTU */ int data_mtu = vpninfo->cstp_basemtu; if (vpninfo->peer_addr->sa_family == IPPROTO_IPV6) data_mtu -= 40; /* IPv6 header */ else data_mtu -= 20; /* Legacy IP header */ data_mtu -= 8; /* UDP header */ if (data_mtu < 0) { vpn_progress(vpninfo, PRG_ERR, _("Peer MTU %d too small to allow DTLS\n"), vpninfo->cstp_basemtu); goto nodtls; } /* Reduce it by one because that's the payload header *inside* * the encryption */ data_mtu = dtls_set_mtu(vpninfo, data_mtu) - 1; if (data_mtu < vpninfo->ip_info.mtu) { vpn_progress(vpninfo, PRG_INFO, _("DTLS MTU reduced to %d\n"), data_mtu); vpninfo->ip_info.mtu = data_mtu; } } else { /* Nonexistent session resume hack (Cisco AnyConnect) */ if (!gnutls_session_is_resumed(vpninfo->dtls_ssl)) { /* Someone attempting to hijack the DTLS session? * A real server would never allow a full session * establishment instead of the agreed resume. */ vpn_progress(vpninfo, PRG_ERR, _("DTLS session resume failed; possible MITM attack. Disabling DTLS.\n")); nodtls: dtls_close(vpninfo); vpninfo->dtls_attempt_period = 0; vpninfo->dtls_state = DTLS_DISABLED; return -EIO; } /* Make sure GnuTLS's idea of the MTU is sufficient to take a full VPN MTU (with 1-byte header) in a data record. */ err = gnutls_dtls_set_data_mtu(vpninfo->dtls_ssl, vpninfo->ip_info.mtu + 1); if (err) { vpn_progress(vpninfo, PRG_ERR, _("Failed to set DTLS MTU: %s\n"), gnutls_strerror(err)); goto error; } } vpninfo->dtls_state = DTLS_CONNECTED; str = get_gnutls_cipher(vpninfo->dtls_ssl); if (str) { const char *c; vpn_progress(vpninfo, PRG_INFO, _("Established DTLS connection (using GnuTLS). Ciphersuite %s.\n"), str); gnutls_free(str); c = openconnect_get_dtls_compression(vpninfo); if (c) { vpn_progress(vpninfo, PRG_INFO, _("DTLS connection compression using %s.\n"), c); } } vpninfo->dtls_times.last_rekey = vpninfo->dtls_times.last_rx = vpninfo->dtls_times.last_tx = time(NULL); dtls_detect_mtu(vpninfo); /* XXX: For OpenSSL we explicitly prevent retransmits here. */ return 0; } if (err == GNUTLS_E_AGAIN || err == GNUTLS_E_INTERRUPTED) { int quit_time = vpninfo->new_dtls_started + 12 - time(NULL); if (quit_time > 0) { if (timeout) { unsigned next_resend = gnutls_dtls_get_timeout(vpninfo->dtls_ssl); if (next_resend && *timeout > next_resend) *timeout = next_resend; if (*timeout > quit_time * 1000) *timeout = quit_time * 1000; } return 0; } vpn_progress(vpninfo, PRG_DEBUG, _("DTLS handshake timed out\n")); } vpn_progress(vpninfo, PRG_ERR, _("DTLS handshake failed: %s\n"), gnutls_strerror(err)); if (err == GNUTLS_E_PUSH_ERROR) vpn_progress(vpninfo, PRG_ERR, _("(Is a firewall preventing you from sending UDP packets?)\n")); error: dtls_close(vpninfo); vpninfo->dtls_state = DTLS_SLEEPING; time(&vpninfo->new_dtls_started); if (timeout && *timeout > vpninfo->dtls_attempt_period * 1000) *timeout = vpninfo->dtls_attempt_period * 1000; return -EINVAL; } void dtls_shutdown(struct openconnect_info *vpninfo) { dtls_close(vpninfo); } void dtls_ssl_free(struct openconnect_info *vpninfo) { gnutls_deinit(vpninfo->dtls_ssl); if (vpninfo->psk_cred) { gnutls_psk_free_client_credentials(vpninfo->psk_cred); vpninfo->psk_cred = NULL; } } openconnect-8.20/tests/0000755000076400007640000000000014204510554016672 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/buftest.c0000644000076400007640000000607614062600131020514 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2021 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #ifdef _WIN32 #include #else #include #endif #define __OPENCONNECT_INTERNAL_H__ /* I always coded as if it worked like this. Now it does. */ #define realloc_inplace(p, size) do { \ void *__realloc_old = p; \ p = realloc(p, size); \ if (size && !p) \ free(__realloc_old); \ } while (0) struct oc_packed_uint32_t { uint32_t d; } __attribute__((packed)); struct oc_packed_uint16_t { uint16_t d; } __attribute__((packed)); static inline uint32_t load_be32(const void *_p) { const struct oc_packed_uint32_t *p = _p; return ntohl(p->d); } static inline uint16_t load_be16(const void *_p) { const struct oc_packed_uint16_t *p = _p; return ntohs(p->d); } static inline void store_be32(void *_p, uint32_t d) { struct oc_packed_uint32_t *p = _p; p->d = htonl(d); } static inline void store_be16(void *_p, uint16_t d) { struct oc_packed_uint16_t *p = _p; p->d = htons(d); } static inline uint32_t load_le32(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8) | (p[2] << 16) | (p[3] << 24); } static inline uint16_t load_le16(const void *_p) { const unsigned char *p = _p; return p[0] | (p[1] << 8); } static inline void store_le16(void *_p, uint16_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; } static inline void store_le32(void *_p, uint32_t d) { unsigned char *p = _p; p[0] = d; p[1] = d >> 8; p[2] = d >> 16; p[3] = d >> 24; } struct oc_text_buf { char *data; int pos; int buf_len; int error; }; #define BUFTEST #include "../textbuf.c" #define assert(x) if (!(x)) { \ fprintf(stderr, "assert(%s) failed at line %d\n", #x, __LINE__); \ exit(1); } static char testbytes[OC_BUF_MAX]; int main(void) { struct oc_text_buf *buf = NULL; assert(buf_error(buf) == -ENOMEM); buf = buf_alloc(); assert(!buf_error(buf)); int len = (OC_BUF_MAX - 1) / 4 * 3; buf_append_base64(buf, testbytes, len, 0); assert(!buf_error(buf)); assert(buf->pos == OC_BUF_MAX - 4); buf_truncate(buf); len++; buf_append_base64(buf, testbytes, len, 0); assert(buf_error(buf) == -E2BIG); buf->error = 0; buf_append_base64(buf, testbytes, -1, 0); assert(buf_error(buf) == -EINVAL); buf->error = 0; buf_truncate(buf); int ll; for (ll = 0; ll < 128; ll += 4) { for (len = 0; len < 16384; len++) { buf_truncate(buf); buf_append_base64(buf, testbytes, len, ll); assert(!buf_error(buf)); if (len > 128) len += len/2; } } buf_free(buf); return 0; } openconnect-8.20/tests/juniper-auth0000755000076400007640000000755514171606260021252 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh FINGERPRINT="--servercert=d66b507ae074d03b02eafca40d35f87dd81049d3" CERT=$certdir/server-cert.pem KEY=$certdir/server-key.pem FAKE_TOKEN="--token-mode=totp --token-secret=ABCD" echo "Testing Juniper auth against fake server ..." OCSERV=${srcdir}/fake-juniper-server.py launch_simple_sr_server $ADDRESS 443 $CERT $KEY > /dev/null 2>&1 PID=$! wait_server $PID 1 echo -n "frmLogin with username/password" ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q $ADDRESS:443 -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Juniper server" echo ok echo -n "frmLogin with username/password/authgroup" ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q $ADDRESS:443/?realms=xyz,abc,def --authgroup=abc -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Juniper server" echo ok echo -n "frmLogin with username/password/token-as-2nd-password" ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q $ADDRESS:443/?token_form=frmLogin -u test $FAKE_TOKEN $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Juniper server" echo ok echo -n "frmLogin with username/password → frmTotpToken" ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q $ADDRESS:443/?token_form=frmTotpToken -u test $FAKE_TOKEN $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Juniper server" echo ok echo -n "frmLogin with username/password → frmDefender → frmConfirmation" ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q "$ADDRESS:443/?token_form=frmDefender&confirm=1" -u test $FAKE_TOKEN $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Juniper server" echo ok echo -n "frmLogin with username/password → frmNextToken" ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q $ADDRESS:443/?token_form=frmNextToken -u test $FAKE_TOKEN $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Juniper server" ok # --authgroup will now fill in EITHER the role and/or the realm echo -n "frmLogin with username/password → frmConfirmation → frmSelectRoles" ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q "$ADDRESS:443/?confirm=1&roles=foo,bar,baz" --authgroup=bar -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Juniper server" echo ok echo -n "frmLogin with username/password, then proceeding to tunnel stage... " echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=nc -q $ADDRESS:443 -u test $FINGERPRINT >/dev/null 2>&1 test $? = 2 || # what OpenConnect returns when server rejects cookie upon tunnel connection, as the fake server does fail $PID "Something went wrong in fake Juniper server (other than the expected rejection of cookie)" echo ok cleanup exit 0 openconnect-8.20/tests/f5-auth-and-config0000755000076400007640000000473014171606260022103 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh FINGERPRINT="--servercert=d66b507ae074d03b02eafca40d35f87dd81049d3" CERT=$certdir/server-cert.pem KEY=$certdir/server-key.pem echo "Testing F5 auth against fake server ..." OCSERV=${srcdir}/fake-f5-server.py launch_simple_sr_server $ADDRESS 443 $CERT $KEY > /dev/null 2>&1 PID=$! wait_server $PID 1 echo -n "Authenticating with username/password in the absence of an HTML login form... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=f5 -q $ADDRESS:443/?no_html_login_form=1 -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake F5 server" echo ok echo -n "Authenticating with username/password... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=f5 -q $ADDRESS:443 -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake F5 server" echo ok echo -n "Authenticating with username/password/authgroup... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=f5 -q $ADDRESS:443/?domains=xyz,abc,def --authgroup=abc -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake F5 server" echo ok echo -n "Authenticating with username/password, then proceeding to tunnel stage... " echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=f5 -q $ADDRESS:443 -u test $FINGERPRINT >/dev/null 2>&1 test $? = 2 || # what OpenConnect returns when server rejects cookie upon tunnel connection, as the fake server does fail $PID "Something went wrong in fake F5 server (other than the expected rejection of cookie)" echo ok cleanup exit 0 openconnect-8.20/tests/ppp-over-tls-sync0000755000076400007640000000505314171606260022150 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh FINGERPRINT="--servercert=d66b507ae074d03b02eafca40d35f87dd81049d3" CERT=$certdir/server-cert.pem KEY=$certdir/server-key.pem # pppd is very poorly designed for mocking and testing in isolation, and running as non-root. # See launch_simple_pppd() in common.sh for a number of caveats about using it for these # purposes. IPV4_NO="noip" IPV4_YES="'169.254.1.1:169.254.128.128'" # needs single-quotes to escape for socat IPV6_NO="noipv6" IPV6_YES="+ipv6" OFFER_DNS="ms-dns 1.1.1.1 ms-dns 8.8.8.8" NO_HDR_COMP="nopcomp noaccomp" NO_JUNK_COMP="novj noccp" HDLC_YES="" HDLC_NO="sync" IPV4_SUCCESS_1="rcvd [IPCP ConfAck " IPV4_SUCCESS_2="sent [IPCP ConfAck " IPV6_SUCCESS_1="rcvd [IPV6CP ConfAck " IPV6_SUCCESS_2="sent [IPV6CP ConfAck " TIMEOUT_3S_IDLE="idle 3" echo "Testing PPP with 'synchronous' framing (plain RFC1661)... " echo -n "Starting PPP peer (sync/no-HDLC/plain-RFC1661, IPv4+IPv6, DNS, extraneous VJ and CCP)... " start=$(date +%s) launch_simple_pppd $CERT $KEY $HDLC_NO $IPV4_YES $OFFER_DNS $IPV6_YES 2>&1 echo "started in $(( $(date +%s) - start )) seconds" wait_server "$PID" echo -n "Connecting to it with openconnect --protocol=nullppp... " start=$(date +%s) LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q --protocol=nullppp $ADDRESS:443 -u test $FINGERPRINT --cookie "term" -Ss '' >/dev/null 2>&1 took=$(( $(date +%s) - start )) if grep -qF "$IPV4_SUCCESS_1" $LOGFILE && grep -qF "$IPV4_SUCCESS_2" $LOGFILE && grep -qF "$IPV6_SUCCESS_1" $LOGFILE && grep -qF "$IPV6_SUCCESS_2" $LOGFILE; then echo "ok (took $took seconds)" else echo "failed (after $took seconds)" echo "Log from pppd"; echo "===== START pppd log =====" cat $LOGFILE echo "===== END pppd log =====" fail "$PID" "Did not negotiate IPCP and IP6CP successfully." fi cleanup exit 0 openconnect-8.20/tests/auth-pkcs110000755000076400007640000000323314171606260020665 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh pkcs11_keys=${pkcs11_keys:-object=RSA object=DSA object=EC id=%01 id=%02 id=%03} pkcs11_tokens=${pkcs11_tokens:-openconnect-test} echo "Testing PKCS#11 auth..." launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID for TOKEN in ${pkcs11_tokens}; do for KEY in ${pkcs11_keys}; do echo -n "Connecting to obtain cookie (token ${TOKEN} key ${KEY})... " CERTURI="pkcs11:token=${TOKEN};${KEY};pin-value=1234" ( echo "test" | SOFTHSM2_CONF=softhsm2.conf LD_PRELOAD=libsocket_wrapper.so \ $OPENCONNECT -q $ADDRESS:443 -u test -c "${CERTURI}" --key-password 1234 --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly --passwd-on-stdin ) || fail $PID "Could not connect with token ${TOKEN} key ${KEY##*/}!" done done echo ok cleanup exit 0 openconnect-8.20/tests/common.sh0000644000076400007640000001241214062600131020507 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright 2013-2016 Nikos Mavrogiannopoulos # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see #this test can only be run as root if ! test -x /usr/sbin/ocserv;then echo "You need ocserv to run this test" exit 77 fi if test "${DISABLE_ASAN_BROKEN_TESTS}" = 1 && test "${PRELOAD}" = 1;then echo "This test cannot be run under asan" exit 77 fi OCSERV=/usr/sbin/ocserv PPPD=/usr/sbin/pppd test $(id -u) -eq 0 && SUDO= || SUDO=sudo top_builddir=${top_builddir:-..} SOCKDIR="./sockwrap.$$.tmp" mkdir -p $SOCKDIR export SOCKET_WRAPPER_DIR=$SOCKDIR export SOCKET_WRAPPER_DEFAULT_IFACE=2 ADDRESS=127.0.0.$SOCKET_WRAPPER_DEFAULT_IFACE OPENCONNECT="${OPENCONNECT:-${top_builddir}/openconnect}"${EXEEXT} LOGFILE="$SOCKDIR/log.$$.tmp" OCCTL_SOCKET="${OCCTL_SOCKET:-./occtl-comp-$$.socket}" certdir="${srcdir}/certs" confdir="${srcdir}/configs" update_config() { file=$1 username=$(whoami) group=$(groups|cut -f 1 -d ' ') cp "${srcdir}/configs/${file}" "$file.$$.tmp" sed -i -e 's|@USERNAME@|'${username}'|g' "$file.$$.tmp" \ -e 's|@GROUP@|'${group}'|g' "$file.$$.tmp" \ -e 's|@SRCDIR@|'${srcdir}'|g' "$file.$$.tmp" \ -e 's|@OTP_FILE@|'${OTP_FILE}'|g' "$file.$$.tmp" \ -e 's|@CRLNAME@|'${CRLNAME}'|g' "$file.$$.tmp" \ -e 's|@PORT@|'${PORT}'|g' "$file.$$.tmp" \ -e 's|@ADDRESS@|'${ADDRESS}'|g' "$file.$$.tmp" \ -e 's|@VPNNET@|'${VPNNET}'|g' "$file.$$.tmp" \ -e 's|@VPNNET6@|'${VPNNET6}'|g' "$file.$$.tmp" \ -e 's|@OCCTL_SOCKET@|'${OCCTL_SOCKET}'|g' "$file.$$.tmp" \ -e 's|@TLS_PRIORITIES@|'${TLS_PRIORITIES}'|g' "$file.$$.tmp" CONFIG="$file.$$.tmp" } launch_simple_sr_server() { LD_PRELOAD=libsocket_wrapper.so:libuid_wrapper.so UID_WRAPPER=1 UID_WRAPPER_ROOT=1 $OCSERV $* & } launch_simple_pppd() { CERT="$1" KEY="$2" shift 2 # remaining arguments (now in $*) are for pppd # In addition to its arcane option naming, pppd is very poorly designed for mocking and testing # in isolation, and running as non-root. We use socat(1) to connect it to a TLS socat. There # are a number of caveats in about this process. # # 1) The 'raw,echo=0' option is obsolete (http://www.dest-unreach.org/socat/doc/CHANGES), but its # replacement 'rawer' isn't available until v1.7.3.0, which is newer than what we have available # on our CentOS 6 CI image. # 2) pppd complains vigorously about being started with libsocket_wrapper.so, and does not need it # anyway since its direct I/O is only with the pty. # 3) The pppd process should be started first, and the TLS listener second. If this is run the other # way around, the client's initial TLS packets may go to a black hole before pppd starts up # and begins receiving them. # 4) These pppd options should always be present for our test usage: # - nauth (self-explanatory) # - local (no modem control lines) # - nodefaultroute (don't touch routing) # - debug and logfile (log all control packets to a file so test can analyze them) # 5) The scripts normally installed in /etc/ppp (e.g. ip-up, ipv6-up) should NOT be present for # our test usage, since they require true root and probably cannot be run in our containerized # CI environments. CI should move these scripts out of the way before running tests with pppd. # 6) The pppd option 'sync' can be used to avoid "HDLC" (more precisely, "asynchronous HDLC-like # framing"). # # However, pppd+socat has problems framing its I/O correctly in this case, occasionally # misinterpreting incoming packets as concatenated to one another, or sending outgoing packets # in a single TLS record. This effectively means that the peers may drop/miss some of # the config packets exchanged, causing retries and leading to a longer negotiation period. # [use `socat -x` for a hex log of I/O to/from the connected sockets] LD_PRELOAD=libsocket_wrapper.so socat \ SYSTEM:"LD_PRELOAD= $SUDO $PPPD noauth local debug nodefaultroute logfile '$LOGFILE' $*",pty,raw,echo=0 \ OPENSSL-LISTEN:443,verify=0,cert="$CERT",key="$KEY" 2>&1 & PID=$! } wait_server() { test $# -ge 2 && DELAY="$2" || DELAY=5 trap "kill $1" 1 15 2 sleep "$DELAY" } cleanup() { ret=0 kill $PID 2>/dev/null if test $? != 0;then ret=1 fi wait test -n "$SOCKDIR" && rm -rf $SOCKDIR && mkdir -p $SOCKDIR return $ret } fail() { PID="$1" shift; echo "Failure: $1" >&2 kill $PID test -n "$SOCKDIR" && rm -rf $SOCKDIR exit 1 } trap "fail \"Failed to launch the server, aborting test... \"" 10 openconnect-8.20/tests/suppressions.lsan0000644000076400007640000000005614062600131022320 0ustar00dwoodhoudwoodhou00000000000000# reported by glibc leak:__vasprintf_internal openconnect-8.20/tests/seqtest.c0000644000076400007640000000627414040533771020543 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #define __OPENCONNECT_INTERNAL_H__ #define vpn_progress(v, d, ...) printf(__VA_ARGS__) #define _(x) x struct openconnect_info { int esp_replay_protect; }; struct esp { uint64_t seq_backlog; uint64_t seq; }; #include "../esp-seqno.c" int main(void) { struct esp esptest = { 0, 0 }; struct openconnect_info vpninfo = { 1}; if ( verify_packet_seqno(&vpninfo, &esptest, 0) || verify_packet_seqno(&vpninfo, &esptest, 2) || verify_packet_seqno(&vpninfo, &esptest, 1) || !verify_packet_seqno(&vpninfo, &esptest, 0) || verify_packet_seqno(&vpninfo, &esptest, 64) || verify_packet_seqno(&vpninfo, &esptest, 65) || !verify_packet_seqno(&vpninfo, &esptest, 65) || verify_packet_seqno(&vpninfo, &esptest, 66) || verify_packet_seqno(&vpninfo, &esptest, 67) || verify_packet_seqno(&vpninfo, &esptest, 68) || !verify_packet_seqno(&vpninfo, &esptest, 68) || !verify_packet_seqno(&vpninfo, &esptest, 2) || !verify_packet_seqno(&vpninfo, &esptest, 3) || verify_packet_seqno(&vpninfo, &esptest, 4) || verify_packet_seqno(&vpninfo, &esptest, 164) || !verify_packet_seqno(&vpninfo, &esptest, 99) || verify_packet_seqno(&vpninfo, &esptest, 100) || verify_packet_seqno(&vpninfo, &esptest, 200) || verify_packet_seqno(&vpninfo, &esptest, 264) || !verify_packet_seqno(&vpninfo, &esptest, 199) || !verify_packet_seqno(&vpninfo, &esptest, 200) || verify_packet_seqno(&vpninfo, &esptest, 265) || verify_packet_seqno(&vpninfo, &esptest, 210) || verify_packet_seqno(&vpninfo, &esptest, 201) || verify_packet_seqno(&vpninfo, &esptest, 270) || verify_packet_seqno(&vpninfo, &esptest, 206) || !verify_packet_seqno(&vpninfo, &esptest, 210) || verify_packet_seqno(&vpninfo, &esptest, 333) || !verify_packet_seqno(&vpninfo, &esptest, 268) || verify_packet_seqno(&vpninfo, &esptest, 269) || !verify_packet_seqno(&vpninfo, &esptest, 270) || verify_packet_seqno(&vpninfo, &esptest, 0xfffffffd) || !verify_packet_seqno(&vpninfo, &esptest, 1) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffc1) || verify_packet_seqno(&vpninfo, &esptest, 0xfffffffc) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffff) || !verify_packet_seqno(&vpninfo, &esptest, 0) || !verify_packet_seqno(&vpninfo, &esptest, 0xffffffbe) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffbf) || !verify_packet_seqno(&vpninfo, &esptest, 0xffffffc1) || verify_packet_seqno(&vpninfo, &esptest, 0xffffffc0)) return 1; return 0; } openconnect-8.20/tests/obsolete-server-crypto0000755000076400007640000000463614171606260023272 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2020 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh ######################################## # Verify that we cannot connect to a server offering only obsolete, insecure # crypto UNLESS --allow-insecure-crypto is specified. ######################################## echo "Testing against server with insecure crypto (3DES and RC4 only)..." # Run servers PORT=4568 TLS_PRIORITIES="LEGACY:%SERVER_PRECEDENCE:%COMPAT:-VERS-TLS-ALL:+VERS-TLS1.0:-CIPHER-ALL:+3DES-CBC:+ARCFOUR-128:+MD5:+SHA1" update_config test-obsolete-server-crypto.config ######################################## # Need to override mandatory system-wide crypto policy on Fedora 31+, in # order for ocserv to offer 3DES and RC4. # # However, we want to leave this policy in place for openconnect, # in order to verify the client's ability to disable it on its own. ######################################## GNUTLS_SYSTEM_PRIORITY_FILE=/dev/null launch_simple_sr_server -d 1 -f -c $CONFIG PID=$! wait_server $PID echo -n "Connecting without --allow-insecure-crypto... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:$PORT -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) && fail $PID "Connected successfully when we shouldn't" echo ok echo -n "Connecting with --allow-insecure-crypto... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:$PORT -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --allow-insecure-crypto --cookieonly >/dev/null 2>&1) || fail $PID "Could not connect and obtain cookie with --allow-insecure-crypto" echo ok cleanup exit 0 openconnect-8.20/tests/fake-juniper-sso-server.py0000755000076400007640000001444014171606260023743 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Copyright © 2021 Joachim Kuebart # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see from flask import ( Flask, make_response, redirect, render_template_string, request, url_for ) import re import ssl import sys host, port, *cert_and_maybe_keyfile = sys.argv[1:] context = ssl.SSLContext() context.load_cert_chain(*cert_and_maybe_keyfile) app = Flask(__name__) @app.route("/") def root(): # Step 0. Step 11. return redirect(url_for("welcome")) @app.route("/dana-na/auth/url_default/welcome.cgi") def welcome(): if request.args.get("p") != "preauth": # Step 1. Step 12. return redirect(url_for("login")) if request.cookies.get("DSPREAUTH") != "success": # Step 14: set DSPREAUTH. resp = make_response("Waiting for host checker…") resp.set_cookie("DSPREAUTH", "hostchecker") return resp # Step 15. return redirect(url_for("login", loginmode="mode_postAuth")) @app.route("/dana-na/auth/url_default/login.cgi") def login(): if request.cookies.get("DSASSERTREF") != "assert_ref": # Step 2. return redirect(url_for("ls")) if request.args.get("loginmode") != "mode_postAuth": # Step 13. return redirect(url_for("welcome", p="preauth")) # Step 16: set DSID. resp = redirect(url_for("starter0")) resp.set_cookie("DSID", "dsid") return resp @app.route("/adfs/ls/", methods=["GET", "POST"]) def ls(): if request.cookies.get("MSISAuth") != "success": if ( request.method == "GET" or request.form.get("UserName") != "test@example.com" or request.form.get("Password") != "test" ): # Step 3: user/password form. return render_template_string("""
    """) # Step 4: username/password success. resp = redirect(url_for("ls")) resp.set_cookie("MSISAuth", "success") return resp if request.cookies.get("MSISAuth1") != "success": if ( "VerificationCode" not in request.form or not re.match("^\\d{6}$", request.form["VerificationCode"]) ): # Step 5. Step 6: TOTP form. return render_template_string("""
    {% if request.method == "POST" %} {% endif %}
    """) # Step 7: TOTP success. resp = redirect(url_for("ls")) resp.set_cookie("MSISAuth1", "success") return resp # Step 8. return render_template_string("""
    """) @app.route("/data-na/auth/saml-consumer0.cgi", methods=["POST"]) def saml_consumer0(): # Step 9: in reality, this is hosted on a different domain than the # next step. return render_template_string("""
    """) @app.route("/data-na/auth/saml-consumer.cgi", methods=["POST"]) def saml_consumer(): # Step 10. resp = redirect(url_for("root")) resp.set_cookie("DSASSERTREF", "assert_ref") return resp @app.route("/dana/home/starter0.cgi") def starter0(): # Need to provide a form to make the parser happy. return "
    The DSID is in your cookie jar." app.run(host=host, port=int(port), ssl_context=context) openconnect-8.20/tests/fake-f5-server.py0000755000076400007640000002264614171606260022006 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see ######################################## # This program emulates the authentication-phase behavior of a F5 # server enough to test OpenConnect's authentication behavior against it. # Specifically, it emulates the following requests: # # GET / # GET /my.policy # POST /my.policy # # It does not actually validate the credentials in any way, but attempts to # verify their consistency from one request to the next, by saving their # values via a (cookie-based) session. ######################################## import sys import ssl import random import base64 import time from json import dumps from functools import wraps from flask import Flask, request, redirect, url_for, make_response, session host, port, *cert_and_maybe_keyfile = sys.argv[1:] context = ssl.SSLContext() context.load_cert_chain(*cert_and_maybe_keyfile) app = Flask(__name__) app.config.update(SECRET_KEY=b'fake', DEBUG=True, HOST=host, PORT=int(port), SESSION_COOKIE_NAME='fake') ######################################## def cookify(jsonable): return base64.urlsafe_b64encode(dumps(jsonable).encode()) def require_MRHSession(fn): @wraps(fn) def wrapped(*args, **kwargs): if not request.cookies.get('MRHSession'): session.clear() return redirect(url_for('get_policy')) return fn(*args, **kwargs) return wrapped def check_form_against_session(*fields, use_query=False): def inner(fn): @wraps(fn) def wrapped(*args, **kwargs): source = request.args if use_query else request.form source_name = 'args' if use_query else 'form' for f in fields: assert session.get(f) == source.get(f), \ f'at step {session.get("step")}: {source_name} {f!r} {source.get(f)!r} != session {f!r} {session.get(f)!r}' return fn(*args, **kwargs) return wrapped return inner ######################################## # Respond to initial 'GET /' with a redirect to '/my.policy' # [Save list of domains/authgroups in the session for use later] @app.route('/') def root(): domains, mock_dtls, no_html_login_form = request.args.get('domains'), request.args.get('mock_dtls'), request.args.get('no_html_login_form') assert not (domains and no_html_login_form), \ f'combination of domains and no_html_login_form is not allow specified' session.update(step='initial-GET', domains=domains and domains.split(','), mock_dtls=mock_dtls and bool(mock_dtls), no_html_login_form = no_html_login_form and bool(no_html_login_form)) # print(session) return redirect(url_for('get_policy')) # Respond to 'GET /my.policy with a login form @app.route('/my.policy') def get_policy(): session.update(step='GET-login-form') no_html_login_form = session.get('no_html_login_form') if no_html_login_form: return '''It would be nice if F5 login pages consistently used actual HTML forms''' domains = session.get('domains') sel = '' if domains: sel = '' % ''.join( '' % nv for nv in enumerate(domains)) return '''
    %s
    ''' % sel # Respond to 'POST /my.policy with a redirect response containing MRHSession and F5_ST # cookies (OpenConnect uses the combination of the two to detect successful authentication) @app.route('/my.policy', methods=['POST']) def post_policy(): domains = session.get('domains') if domains: assert 0 <= int(request.form.get('domain', -1)) < len(domains) session.update(step='POST-login', username=request.form.get('username'), credential=request.form.get('password'), domain=request.form.get('domain')) # print(session) resp = redirect(url_for('webtop')) resp.set_cookie('MRHSession', cookify(dict(session))) resp.set_cookie('F5_ST', '1z1z1z%dz%d' % (time.time(), 3600)) return resp @app.route('/vdesk/webtop.eui') def webtop(): session.update(step='POST-login-webtop') # print(session) return 'some junk HTML webtop' # Respond to 'GET /vdesk/vpn/index.php3?outform=xml&client_version=2.0 with an XML config # [Save VPN resource name in the session for verification of client state later] @app.route('/vdesk/vpn/index.php3') @require_MRHSession def profile_params(): print(request.args) assert request.args.get('outform') == 'xml' and request.args.get('client_version') == '2.0' vpn_name = 'demo%d_vpn_resource' % random.randint(1, 100) session.update(step='GET-profile-params', resourcename='/Common/'+vpn_name) # print(session) return (f''' {vpn_name} /Common/{vpn_name} resourcename=/Common/{vpn_name} ''', {'content-type': 'application/xml'}) # Respond to 'GET /vdesk/vpn/connect.php3?outform=xml&client_version=2.0&resourcename=RESOURCENAME # with an ugliest-XML-you've-ever-seen config. # [Save random HDLC flag and ur_Z for verification later.] @app.route('/vdesk/vpn/connect.php3') @require_MRHSession @check_form_against_session('resourcename', use_query=True) def options(): assert request.args.get('outform') == 'xml' and request.args.get('client_version') == '2.0' session.update(hdlc_framing=['no', 'yes'][random.randint(0, 1)], Z=session['resourcename'] + str(random.randint(1, 100)), ipv4='yes', ipv6=['no', 'yes'][random.randint(0, 1)], sess=request.cookies['MRHSession'] + str(random.randint(1, 100))) return (f''' {session['Z']} {session['sess']} {session['resourcename']} {app.config['HOST']} {app.config['PORT']} {app.config['HOST']} {app.config['PORT']} https 900 {int(session['ipv4']=='yes')} {int(session['ipv6']=='yes')} {int(session['mock_dtls'] or 0)} {app.config['PORT']} 1.1.1.1 8.8.8.8 2606:4700:4700::1111 2001:4860:4860::8888 foo.com 2 10.11.10.10/32 10.11.1.0/24 ::/1 8000::/1 * {session['hdlc_framing']} ''', {'content-type': 'application/xml'}) # Respond to faux-CONNECT 'GET /myvpn' with 504 Gateway Timeout # (what the real F5 server responds with when it doesn't like the parameters, intended # to trigger "cookie rejected" error in OpenConnect) @app.route('/myvpn') # Can't use because OpenConnect doesn't send cookies here (see f5.c for why) # @check_form_against_session('sess', 'hdlc_framing', 'ipv4', 'ipv6', 'Z', use_query=True) def tunnel(): try: base64.urlsafe_b64decode(request.args.get('hostname') or None) except (ValueError, TypeError): raise AssertionError('Hostname is not a base64 string') return make_response('', 504, {'X-VPN-Client-IP': '10.11.1.2', 'X-VPN-Client-IPv6': '2601::f00f:1234'}) # Respond to 'GET /remote/logout' by clearing session and MRHSession @app.route('/vdesk/hangup.php3') @require_MRHSession def logout(): assert request.args.get('hangup_error') == '1' session.clear() resp = make_response('successful logout') resp.set_cookie('MRHSession', '') return resp app.run(host=app.config['HOST'], port=app.config['PORT'], debug=app.config['DEBUG'], ssl_context=context, use_debugger=False) openconnect-8.20/tests/pass-ISO8859-20000644000076400007640000000000314040533771020705 0ustar00dwoodhoudwoodhou00000000000000ï openconnect-8.20/tests/auth-nonascii0000755000076400007640000000305614171606260021371 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh echo "Testing certificate auth with non-ASCII passwords..." launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID KEY=${srcdir}/certs/user-key-nonascii-password.p12 set -x for CHARSET in UTF-8 ISO8859-2; do echo -n "Connecting to obtain cookie (with password charset ${CHARSET})... " CERTARGS="-c ${KEY} --key-password $(cat ${srcdir}/pass-${CHARSET})" ( echo "test" | LC_ALL=cs_CZ.${CHARSET} LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test $CERTARGS --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly --passwd-on-stdin ) || fail $PID "Could not connect with charset ${CHARSET}!" done echo ok cleanup exit 0 openconnect-8.20/tests/bad_dtls_test.c0000644000076400007640000007176114204454432021667 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ /* * Unit test for Cisco DTLS1_BAD_VER session resume, as used by * AnyConnect VPN protocol. * * This is designed to exercise the code paths in * https://git.infradead.org/users/dwmw2/openconnect.git/blob/HEAD:/dtls.c * which have frequently been affected by regressions in DTLS1_BAD_VER * support. * * Note that unlike other SSL tests, we don't test against our own SSL * server method. Firstly because we don't have one; we *only* support * DTLS1_BAD_VER as a client. And secondly because even if that were * fixed up it's the wrong thing to test against — because if changes * are made in generic DTLS code which don't take DTLS1_BAD_VER into * account, there's plenty of scope for making those changes such that * they break *both* the client and the server in the same way. * * So we handle the server side manually. In a session resume there isn't * much to be done anyway. */ #include #define OPENSSL_SUPPRESS_DEPRECATED #include #include #include #include #include #include /* LibreSSL lacks this. Let it fail on testing, not building. */ #ifndef DTLS1_BAD_VER #define DTLS1_BAD_VER 0x100 #endif /* PACKET functions lifted from OpenSSL 1.1's ssl/packet_locl.h. Permission * requested in https://github.com/openssl/openssl/pull/1296 for reuse here * as an OpenConnect test case. */ /* * Copyright 2015-2016 The OpenSSL Project Authors. All Rights Reserved. * * Licensed under the OpenSSL license (the "License"). You may not use * this file except in compliance with the License. You can obtain a copy * in the file LICENSE in the source distribution or at * https://www.openssl.org/source/license.html */ typedef struct { /* Pointer to where we are currently reading from */ const unsigned char *curr; /* Number of bytes remaining */ size_t remaining; } PACKET; /* Internal unchecked shorthand; don't use outside this file. */ static inline void packet_forward(PACKET *pkt, size_t len) { pkt->curr += len; pkt->remaining -= len; } /* * Returns the number of bytes remaining to be read in the PACKET */ static inline size_t PACKET_remaining(const PACKET *pkt) { return pkt->remaining; } /* * Initialise a PACKET with |len| bytes held in |buf|. This does not make a * copy of the data so |buf| must be present for the whole time that the PACKET * is being used. */ static inline int PACKET_buf_init(PACKET *pkt, const unsigned char *buf, size_t len) { /* Sanity check for negative values. */ if (len > (size_t)65536) return 0; pkt->curr = buf; pkt->remaining = len; return 1; } /* * Returns 1 if the packet has length |num| and its contents equal the |num| * bytes read from |ptr|. Returns 0 otherwise (lengths or contents not equal). * If lengths are equal, performs the comparison in constant time. */ static inline int PACKET_equal(const PACKET *pkt, const void *ptr, size_t num) { if (PACKET_remaining(pkt) != num) return 0; return CRYPTO_memcmp(pkt->curr, ptr, num) == 0; } /* * Peek ahead at 2 bytes in network order from |pkt| and store the value in * |*data| */ static inline int PACKET_peek_net_2(const PACKET *pkt, unsigned int *data) { if (PACKET_remaining(pkt) < 2) return 0; *data = ((unsigned int)(*pkt->curr)) << 8; *data |= *(pkt->curr + 1); return 1; } /* Equivalent of n2s */ /* Get 2 bytes in network order from |pkt| and store the value in |*data| */ static inline int PACKET_get_net_2(PACKET *pkt, unsigned int *data) { if (!PACKET_peek_net_2(pkt, data)) return 0; packet_forward(pkt, 2); return 1; } /* Peek ahead at 1 byte from |pkt| and store the value in |*data| */ static inline int PACKET_peek_1(const PACKET *pkt, unsigned int *data) { if (!PACKET_remaining(pkt)) return 0; *data = *pkt->curr; return 1; } /* Get 1 byte from |pkt| and store the value in |*data| */ static inline int PACKET_get_1(PACKET *pkt, unsigned int *data) { if (!PACKET_peek_1(pkt, data)) return 0; packet_forward(pkt, 1); return 1; } /* * Peek ahead at |len| bytes from the |pkt| and store a pointer to them in * |*data|. This just points at the underlying buffer that |pkt| is using. The * caller should not free this data directly (it will be freed when the * underlying buffer gets freed */ static inline int PACKET_peek_bytes(const PACKET *pkt, const unsigned char **data, size_t len) { if (PACKET_remaining(pkt) < len) return 0; *data = pkt->curr; return 1; } /* * Read |len| bytes from the |pkt| and store a pointer to them in |*data|. This * just points at the underlying buffer that |pkt| is using. The caller should * not free this data directly (it will be freed when the underlying buffer gets * freed */ static inline int PACKET_get_bytes(PACKET *pkt, const unsigned char **data, size_t len) { if (!PACKET_peek_bytes(pkt, data, len)) return 0; packet_forward(pkt, len); return 1; } /* Peek ahead at |len| bytes from |pkt| and copy them to |data| */ static inline int PACKET_peek_copy_bytes(const PACKET *pkt, unsigned char *data, size_t len) { if (PACKET_remaining(pkt) < len) return 0; memcpy(data, pkt->curr, len); return 1; } /* * Read |len| bytes from |pkt| and copy them to |data|. * The caller is responsible for ensuring that |data| can hold |len| bytes. */ static inline int PACKET_copy_bytes(PACKET *pkt, unsigned char *data, size_t len) { if (!PACKET_peek_copy_bytes(pkt, data, len)) return 0; packet_forward(pkt, len); return 1; } /* Move the current reading position forward |len| bytes */ static inline int PACKET_forward(PACKET *pkt, size_t len) { if (PACKET_remaining(pkt) < len) return 0; packet_forward(pkt, len); return 1; } /* * Reads a variable-length vector prefixed with a one-byte length, and stores * the contents in |subpkt|. |pkt| can equal |subpkt|. * Data is not copied: the |subpkt| packet will share its underlying buffer with * the original |pkt|, so data wrapped by |pkt| must outlive the |subpkt|. * Upon failure, the original |pkt| and |subpkt| are not modified. */ static inline int PACKET_get_length_prefixed_1(PACKET *pkt, PACKET *subpkt) { unsigned int length; const unsigned char *data; PACKET tmp = *pkt; if (!PACKET_get_1(&tmp, &length) || !PACKET_get_bytes(&tmp, &data, (size_t)length)) { return 0; } *pkt = tmp; subpkt->curr = data; subpkt->remaining = length; return 1; } #define ARRAY_SIZE(x) (sizeof(x) / sizeof((x)[0])) /* For DTLS1_BAD_VER packets the MAC doesn't include the handshake header */ #define MAC_OFFSET (DTLS1_RT_HEADER_LENGTH + DTLS1_HM_HEADER_LENGTH) static unsigned char client_random[SSL3_RANDOM_SIZE]; static unsigned char server_random[SSL3_RANDOM_SIZE]; /* These are all generated locally, sized purely according to our own whim */ static unsigned char session_id[32]; static unsigned char master_secret[48]; static unsigned char cookie[20]; /* We've hard-coded the cipher suite; we know it's 104 bytes */ static unsigned char key_block[104]; #define mac_key (key_block + 20) #define dec_key (key_block + 40) #define enc_key (key_block + 56) static EVP_MD_CTX *handshake_md5; static EVP_MD_CTX *handshake_sha1; #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) static inline HMAC_CTX *HMAC_CTX_new(void) { HMAC_CTX *ret = malloc(sizeof(*ret)); HMAC_CTX_init(ret); return ret; } static inline void HMAC_CTX_free(HMAC_CTX *ctx) { HMAC_CTX_cleanup(ctx); free(ctx); } #define EVP_MD_CTX_new EVP_MD_CTX_create #define EVP_MD_CTX_free EVP_MD_CTX_destroy #endif static int tls1_P_hash(const EVP_MD *md, const unsigned char *sec, int sec_len, const void *seed1, int seed1_len, const void *seed2, int seed2_len, const void *seed3, int seed3_len, unsigned char *out, int olen) { unsigned char A1[EVP_MAX_MD_SIZE]; HMAC_CTX *ctx = HMAC_CTX_new(); unsigned int chunk; int i = 0; HMAC_Init_ex(ctx, sec, sec_len, md, NULL); do { if (i) HMAC_Update(ctx, A1, chunk); if (seed1) HMAC_Update(ctx, seed1, seed1_len); if (seed2) HMAC_Update(ctx, seed2, seed2_len); if (seed3) HMAC_Update(ctx, seed3, seed3_len); /* First generate A1 from the seed */ if (!i) HMAC_Final(ctx, A1, &chunk); else if (i * chunk <= olen) { HMAC_Final(ctx, out + ((i-1) * chunk), NULL); /* calculate A(n+1) value */ HMAC(md, sec, sec_len, A1, chunk, A1, NULL); } else { HMAC_Final(ctx, A1, NULL); memcpy(out + ((i-1) * chunk), A1, olen % chunk); break; } HMAC_Init_ex(ctx, NULL, 0, NULL, NULL); i++; } while ((i-1) * chunk <= olen); HMAC_CTX_free(ctx); return 1; } /* seed1 through seed5 are virtually concatenated */ static int do_PRF(const void *seed1, int seed1_len, const void *seed2, int seed2_len, const void *seed3, int seed3_len, unsigned char *out, int olen) { unsigned char out2[104]; int i, len; if (olen > (int)sizeof(out2)) return 0; len = sizeof(master_secret) / 2; if (!tls1_P_hash(EVP_md5(), master_secret, len, seed1, seed1_len, seed2, seed2_len, seed3, seed3_len, out, olen) || !tls1_P_hash(EVP_sha1(), master_secret + len, len, seed1, seed1_len, seed2, seed2_len, seed3, seed3_len, out2, olen)) return 0; for (i = 0; i < olen; i++) out[i] ^= out2[i]; return 1; } static SSL_SESSION *client_session(void) { static unsigned char session_asn1[] = { 0x30, 0x5F, /* SEQUENCE, length 0x5F */ 0x02, 0x01, 0x01, /* INTEGER, SSL_SESSION_ASN1_VERSION */ 0x02, 0x02, 0x01, 0x00, /* INTEGER, DTLS1_BAD_VER */ 0x04, 0x02, 0x00, 0x2F, /* OCTET_STRING, AES128-SHA */ 0x04, 0x20, /* OCTET_STRING, session id */ #define SS_SESSID_OFS 15 /* Session ID goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x04, 0x30, /* OCTET_STRING, master secret */ #define SS_SECRET_OFS 49 /* Master secret goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }; const unsigned char *p = session_asn1; /* Copy the randomly-generated fields into the above ASN1 */ memcpy(session_asn1 + SS_SESSID_OFS, session_id, sizeof(session_id)); memcpy(session_asn1 + SS_SECRET_OFS, master_secret, sizeof(master_secret)); return d2i_SSL_SESSION(NULL, &p, sizeof(session_asn1)); } /* Returns 1 for initial ClientHello, 2 for ClientHello with cookie */ static int validate_client_hello(BIO *wbio) { PACKET pkt, pkt2; long len; unsigned char *data; int cookie_found = 0; unsigned int u; len = BIO_get_mem_data(wbio, (char **)&data); if (!PACKET_buf_init(&pkt, data, len)) return 0; /* Check record header type */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_RT_HANDSHAKE) return 0; /* Version */ if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Skip the rest of the record header */ if (!PACKET_forward(&pkt, DTLS1_RT_HEADER_LENGTH - 3)) return 0; /* Check it's a ClientHello */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_MT_CLIENT_HELLO) return 0; /* Skip the rest of the handshake message header */ if (!PACKET_forward(&pkt, DTLS1_HM_HEADER_LENGTH - 1)) return 0; /* Check client version */ if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Store random */ if (!PACKET_copy_bytes(&pkt, client_random, SSL3_RANDOM_SIZE)) return 0; /* Check session id length and content */ if (!PACKET_get_length_prefixed_1(&pkt, &pkt2) || !PACKET_equal(&pkt2, session_id, sizeof(session_id))) return 0; /* Check cookie */ if (!PACKET_get_length_prefixed_1(&pkt, &pkt2)) return 0; if (PACKET_remaining(&pkt2)) { if (!PACKET_equal(&pkt2, cookie, sizeof(cookie))) return 0; cookie_found = 1; } /* Skip ciphers */ if (!PACKET_get_net_2(&pkt, &u) || !PACKET_forward(&pkt, u)) return 0; /* Skip compression */ if (!PACKET_get_1(&pkt, &u) || !PACKET_forward(&pkt, u)) return 0; /* Skip extensions */ if (!PACKET_get_net_2(&pkt, &u) || !PACKET_forward(&pkt, u)) return 0; /* Now we are at the end */ if (PACKET_remaining(&pkt)) return 0; /* Update handshake MAC for second ClientHello (with cookie) */ if (cookie_found && (!EVP_DigestUpdate(handshake_md5, data + MAC_OFFSET, len - MAC_OFFSET) || !EVP_DigestUpdate(handshake_sha1, data + MAC_OFFSET, len - MAC_OFFSET))) printf("EVP_DigestUpdate() failed\n"); (void)BIO_reset(wbio); return 1 + cookie_found; } static int send_hello_verify(BIO *rbio) { static unsigned char hello_verify[] = { 0x16, /* Handshake */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x00, 0x00, /* Epoch 0 */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, /* Seq# 0 */ 0x00, 0x23, /* Length */ 0x03, /* Hello Verify */ 0x00, 0x00, 0x17, /* Length */ 0x00, 0x00, /* Seq# 0 */ 0x00, 0x00, 0x00, /* Fragment offset */ 0x00, 0x00, 0x17, /* Fragment length */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x14, /* Cookie length */ #define HV_COOKIE_OFS 28 /* Cookie goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, }; memcpy(hello_verify + HV_COOKIE_OFS, cookie, sizeof(cookie)); BIO_write(rbio, hello_verify, sizeof(hello_verify)); return 1; } static int send_server_hello(BIO *rbio) { static unsigned char server_hello[] = { 0x16, /* Handshake */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x00, 0x00, /* Epoch 0 */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x01, /* Seq# 1 */ 0x00, 0x52, /* Length */ 0x02, /* Server Hello */ 0x00, 0x00, 0x46, /* Length */ 0x00, 0x01, /* Seq# */ 0x00, 0x00, 0x00, /* Fragment offset */ 0x00, 0x00, 0x46, /* Fragment length */ 0x01, 0x00, /* DTLS1_BAD_VER */ #define SH_RANDOM_OFS 27 /* Server random goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x20, /* Session ID length */ #define SH_SESSID_OFS 60 /* Session ID goes here */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x2f, /* Cipher suite AES128-SHA */ 0x00, /* Compression null */ }; static unsigned char change_cipher_spec[] = { 0x14, /* Change Cipher Spec */ 0x01, 0x00, /* DTLS1_BAD_VER */ 0x00, 0x00, /* Epoch 0 */ 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, /* Seq# 2 */ 0x00, 0x03, /* Length */ 0x01, 0x00, 0x02, /* Message */ }; memcpy(server_hello + SH_RANDOM_OFS, server_random, sizeof(server_random)); memcpy(server_hello + SH_SESSID_OFS, session_id, sizeof(session_id)); if (!EVP_DigestUpdate(handshake_md5, server_hello + MAC_OFFSET, sizeof(server_hello) - MAC_OFFSET) || !EVP_DigestUpdate(handshake_sha1, server_hello + MAC_OFFSET, sizeof(server_hello) - MAC_OFFSET)) printf("EVP_DigestUpdate() failed\n"); BIO_write(rbio, server_hello, sizeof(server_hello)); BIO_write(rbio, change_cipher_spec, sizeof(change_cipher_spec)); return 1; } /* Create header, HMAC, pad, encrypt and send a record */ static int send_record(BIO *rbio, unsigned char type, unsigned long seqnr, const void *msg, size_t len) { /* Note that the order of the record header fields on the wire, * and in the HMAC, is different. So we just keep them in separate * variables and handle them individually. */ static unsigned char epoch[2] = { 0x00, 0x01 }; static unsigned char seq[6] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static unsigned char ver[2] = { 0x01, 0x00 }; /* DTLS1_BAD_VER */ unsigned char lenbytes[2]; HMAC_CTX *ctx = HMAC_CTX_new(); EVP_CIPHER_CTX *enc_ctx = EVP_CIPHER_CTX_new(); unsigned char iv[16]; unsigned char pad; unsigned char *enc; #ifdef SIXTY_FOUR_BIT_LONG seq[0] = (seqnr >> 40) & 0xff; seq[1] = (seqnr >> 32) & 0xff; #endif seq[2] = (seqnr >> 24) & 0xff; seq[3] = (seqnr >> 16) & 0xff; seq[4] = (seqnr >> 8) & 0xff; seq[5] = seqnr & 0xff; pad = 15 - ((len + SHA_DIGEST_LENGTH) % 16); enc = OPENSSL_malloc(len + SHA_DIGEST_LENGTH + 1 + pad); if (enc == NULL) return 0; /* Copy record to encryption buffer */ memcpy(enc, msg, len); /* Append HMAC to data */ HMAC_Init_ex(ctx, mac_key, 20, EVP_sha1(), NULL); HMAC_Update(ctx, epoch, 2); HMAC_Update(ctx, seq, 6); HMAC_Update(ctx, &type, 1); HMAC_Update(ctx, ver, 2); /* Version */ lenbytes[0] = len >> 8; lenbytes[1] = len & 0xff; HMAC_Update(ctx, lenbytes, 2); /* Length */ HMAC_Update(ctx, enc, len); /* Finally the data itself */ HMAC_Final(ctx, enc + len, NULL); HMAC_CTX_free(ctx); /* Append padding bytes */ len += SHA_DIGEST_LENGTH; do { enc[len++] = pad; } while (len % 16); /* Generate IV, and encrypt */ RAND_bytes(iv, sizeof(iv)); // EVP_CIPHER_CTX_init(enc_ctx); EVP_CipherInit_ex(enc_ctx, EVP_aes_128_cbc(), NULL, enc_key, iv, 1); EVP_Cipher(enc_ctx, enc, enc, len); EVP_CIPHER_CTX_free(enc_ctx); /* Finally write header (from fragmented variables), IV and encrypted record */ BIO_write(rbio, &type, 1); BIO_write(rbio, ver, 2); BIO_write(rbio, epoch, 2); BIO_write(rbio, seq, 6); lenbytes[0] = (len + sizeof(iv)) >> 8; lenbytes[1] = (len + sizeof(iv)) & 0xff; BIO_write(rbio, lenbytes, 2); BIO_write(rbio, iv, sizeof(iv)); BIO_write(rbio, enc, len); OPENSSL_free(enc); return 1; } static int send_finished(SSL *s, BIO *rbio) { static unsigned char finished_msg[DTLS1_HM_HEADER_LENGTH + TLS1_FINISH_MAC_LENGTH] = { 0x14, /* Finished */ 0x00, 0x00, 0x0c, /* Length */ 0x00, 0x03, /* Seq# 3 */ 0x00, 0x00, 0x00, /* Fragment offset */ 0x00, 0x00, 0x0c, /* Fragment length */ /* Finished MAC (12 bytes) */ }; unsigned char handshake_hash[EVP_MAX_MD_SIZE * 2]; /* Derive key material */ do_PRF(TLS_MD_KEY_EXPANSION_CONST, TLS_MD_KEY_EXPANSION_CONST_SIZE, server_random, SSL3_RANDOM_SIZE, client_random, SSL3_RANDOM_SIZE, key_block, sizeof(key_block)); /* Generate Finished MAC */ if (!EVP_DigestFinal_ex(handshake_md5, handshake_hash, NULL) || !EVP_DigestFinal_ex(handshake_sha1, handshake_hash + EVP_MD_CTX_size(handshake_md5), NULL)) printf("EVP_DigestFinal_ex() failed\n"); do_PRF(TLS_MD_SERVER_FINISH_CONST, TLS_MD_SERVER_FINISH_CONST_SIZE, handshake_hash, EVP_MD_CTX_size(handshake_md5) + EVP_MD_CTX_size(handshake_sha1), NULL, 0, finished_msg + DTLS1_HM_HEADER_LENGTH, TLS1_FINISH_MAC_LENGTH); return send_record(rbio, SSL3_RT_HANDSHAKE, 0, finished_msg, sizeof(finished_msg)); } static int validate_ccs(BIO *wbio) { PACKET pkt; long len; unsigned char *data; unsigned int u; len = BIO_get_mem_data(wbio, (char **)&data); if (!PACKET_buf_init(&pkt, data, len)) return 0; /* Check record header type */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_RT_CHANGE_CIPHER_SPEC) return 0; /* Version */ if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Skip the rest of the record header */ if (!PACKET_forward(&pkt, DTLS1_RT_HEADER_LENGTH - 3)) return 0; /* Check ChangeCipherSpec message */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_MT_CCS) return 0; /* A DTLS1_BAD_VER ChangeCipherSpec also contains the * handshake sequence number (which is 2 here) */ if (!PACKET_get_net_2(&pkt, &u) || u != 0x0002) return 0; /* Now check the Finished packet */ if (!PACKET_get_1(&pkt, &u) || u != SSL3_RT_HANDSHAKE) return 0; if (!PACKET_get_net_2(&pkt, &u) || u != DTLS1_BAD_VER) return 0; /* Check epoch is now 1 */ if (!PACKET_get_net_2(&pkt, &u) || u != 0x0001) return 0; /* That'll do for now. If OpenSSL accepted *our* Finished packet * then it's evidently remembered that DTLS1_BAD_VER doesn't * include the handshake header in the MAC. There's not a lot of * point in implementing decryption here, just to check that it * continues to get it right for one more packet. */ return 1; } #define NODROP(x) { x##UL, 0 } #define DROP(x) { x##UL, 1 } static struct { unsigned long seq; int drop; } tests[] = { NODROP(1), NODROP(3), NODROP(2), NODROP(0x1234), NODROP(0x1230), NODROP(0x1235), NODROP(0xffff), NODROP(0x10001), NODROP(0xfffe), NODROP(0x10000), DROP(0x10001), DROP(0xff), NODROP(0x100000), NODROP(0x800000), NODROP(0x7fffe1), NODROP(0xffffff), NODROP(0x1000000), NODROP(0xfffffe), DROP(0xffffff), NODROP(0x1000010), NODROP(0xfffffd), NODROP(0x1000011), DROP(0x12), NODROP(0x1000012), NODROP(0x1ffffff), NODROP(0x2000000), DROP(0x1ff00fe), NODROP(0x2000001), NODROP(0x20fffff), NODROP(0x2105500), DROP(0x20ffffe), NODROP(0x21054ff), NODROP(0x211ffff), DROP(0x2110000), NODROP(0x2120000) /* The last test should be NODROP, because a DROP wouldn't get tested. */ }; int main(int argc, char *argv[]) { SSL_SESSION *sess; SSL_CTX *ctx; SSL *con; BIO *rbio; BIO *wbio; int testresult = 0; int ret; int i; #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) SSL_library_init(); SSL_load_error_strings(); #endif RAND_bytes(session_id, sizeof(session_id)); RAND_bytes(master_secret, sizeof(master_secret)); RAND_bytes(cookie, sizeof(cookie)); RAND_bytes(server_random + 4, sizeof(server_random) - 4); time((void *)server_random); sess = client_session(); if (sess == NULL) { printf("Failed to generate SSL_SESSION\n"); goto end; } handshake_md5 = EVP_MD_CTX_new(); handshake_sha1 = EVP_MD_CTX_new(); if (!EVP_DigestInit_ex(handshake_md5, EVP_md5(), NULL) || !EVP_DigestInit_ex(handshake_sha1, EVP_sha1(), NULL)) { printf("Failed to initialise handshake_md\n"); goto end; } #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) ctx = SSL_CTX_new(DTLSv1_client_method()); if (ctx == NULL) { printf("Failed to allocate SSL_CTX\n"); goto end_md; } SSL_CTX_set_options(ctx, SSL_OP_CISCO_ANYCONNECT); #else ctx = SSL_CTX_new(DTLS_client_method()); if (ctx == NULL || !SSL_CTX_set_min_proto_version(ctx, DTLS1_BAD_VER) || !SSL_CTX_set_max_proto_version(ctx, DTLS1_BAD_VER) || !SSL_CTX_set_options(ctx, SSL_OP_LEGACY_SERVER_CONNECT)) { printf("Failed to allocate SSL_CTX\n"); goto end_md; } #endif if (!SSL_CTX_set_cipher_list(ctx, "AES128-SHA")) { printf("SSL_CTX_set_cipher_list() failed\n"); goto end_ctx; } con = SSL_new(ctx); if (!SSL_set_session(con, sess)) { printf("SSL_set_session() failed\n"); goto end_con; } SSL_SESSION_free(sess); rbio = BIO_new(BIO_s_mem()); wbio = BIO_new(BIO_s_mem()); BIO_set_nbio(rbio, 1); BIO_set_nbio(wbio, 1); SSL_set_bio(con, rbio, wbio); SSL_set_connect_state(con); /* Send initial ClientHello */ ret = SSL_do_handshake(con); if (ret > 0 || SSL_get_error(con, ret) != SSL_ERROR_WANT_READ) { printf("Unexpected handshake result at initial call!\n"); goto end_con; } if (validate_client_hello(wbio) != 1) { printf("Initial ClientHello failed validation\n"); goto end_con; } if (send_hello_verify(rbio) != 1) { printf("Failed to send HelloVerify\n"); goto end_con; } ret = SSL_do_handshake(con); if (ret > 0 || SSL_get_error(con, ret) != SSL_ERROR_WANT_READ) { printf("Unexpected handshake result after HelloVerify!\n"); goto end_con; } if (validate_client_hello(wbio) != 2) { printf("Second ClientHello failed validation\n"); goto end_con; } if (send_server_hello(rbio) != 1) { printf("Failed to send ServerHello\n"); goto end_con; } ret = SSL_do_handshake(con); if (ret > 0 || SSL_get_error(con, ret) != SSL_ERROR_WANT_READ) { printf("Unexpected handshake result after ServerHello!\n"); goto end_con; } if (send_finished(con, rbio) != 1) { printf("Failed to send Finished\n"); goto end_con; } ret = SSL_do_handshake(con); if (ret < 1) { printf("Handshake not successful after Finished!\n"); goto end_con; } if (validate_ccs(wbio) != 1) { printf("Failed to validate client CCS/Finished\n"); goto end_con; } /* While we're here and crafting packets by hand, we might as well do a bit of a stress test on the DTLS record replay handling. Not Cisco-DTLS specific but useful anyway for the general case. It's been broken before, and in fact was broken even for a basic 0, 2, 1 test case when this test was first added.... */ for (i = 0; i < (int)ARRAY_SIZE(tests); i++) { unsigned long recv_buf[2]; if (send_record(rbio, SSL3_RT_APPLICATION_DATA, tests[i].seq, &tests[i].seq, sizeof(unsigned long)) != 1) { printf("Failed to send data seq #0x%lx (%d)\n", tests[i].seq, i); goto end_con; } if (tests[i].drop) continue; ret = SSL_read(con, recv_buf, 2 * sizeof(unsigned long)); if (ret != sizeof(unsigned long)) { printf("SSL_read failed or wrong size on seq#0x%lx (%d)\n", tests[i].seq, i); goto end_con; } if (recv_buf[0] != tests[i].seq) { printf("Wrong data packet received (0x%lx not 0x%lx) at packet %d\n", recv_buf[0], tests[i].seq, i); goto end_con; } } if (tests[i-1].drop) { printf("Error: last test cannot be DROP()\n"); goto end_con; } testresult=1; end_con: SSL_free(con); end_ctx: SSL_CTX_free(ctx); end_md: EVP_MD_CTX_free(handshake_md5); EVP_MD_CTX_free(handshake_sha1); end: ERR_print_errors_fp(stderr); if (!testresult) { printf("Cisco BadDTLS test: FAILED\n"); } #if OPENSSL_VERSION_NUMBER < 0x10100000L || defined(LIBRESSL_VERSION_NUMBER) ERR_free_strings(); EVP_cleanup(); #endif return testresult?0:1; } openconnect-8.20/tests/scripts/0000755000076400007640000000000014204510554020361 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/scripts/vpnc-script0000755000076400007640000000057414062600131022556 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh -x # Fake script just for unit tests. Do not use. # For a real one, see https://www.infradead.org/openconnect/vpnc-script.html if [ "$reason" = "connect" ]; then ip link set dev "$TUNDEV" up mtu "$INTERNAL_IP4_MTU" ip addr add "$INTERNAL_IP4_ADDRESS/32" peer "$INTERNAL_IP4_ADDRESS" dev "$TUNDEV" ip -6 addr add $INTERNAL_IP6_NETMASK dev $TUNDEV fi exit 0 openconnect-8.20/tests/scripts/vpnc-script-detect-disconnect0000755000076400007640000000073514062600131026152 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh -x # Fake script just for unit tests. Do not use. # For a real one, see https://www.infradead.org/openconnect/vpnc-script.html if [ "$reason" = "connect" ]; then ip link set dev "$TUNDEV" up mtu "$INTERNAL_IP4_MTU" ip addr add "$INTERNAL_IP4_ADDRESS/32" peer "$INTERNAL_IP4_ADDRESS" dev "$TUNDEV" ip -6 addr add $INTERNAL_IP6_NETMASK dev $TUNDEV rm -f ${DISCONNECT_FILE} elif [ "$reason" = "disconnect" ];then touch ${DISCONNECT_FILE} fi exit 0 openconnect-8.20/tests/ppp-over-tls0000755000076400007640000001222114171606260021171 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright © 2020 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh FINGERPRINT="--servercert=d66b507ae074d03b02eafca40d35f87dd81049d3" CERT=$certdir/server-cert.pem KEY=$certdir/server-key.pem # pppd is very poorly designed for mocking and testing in isolation, and running as non-root. # See launch_simple_pppd() in common.sh for a number of caveats about using it for these # purposes. IPV4_NO="noip" IPV4_YES="'169.254.1.1:169.254.128.128'" # needs single-quotes to escape for socat IPV6_NO="noipv6" IPV6_YES="+ipv6" OFFER_DNS="ms-dns 1.1.1.1 ms-dns 8.8.8.8" NO_HDR_COMP="nopcomp noaccomp" NO_JUNK_COMP="novj noccp" HDLC_YES="" HDLC_NO="sync" IPV4_SUCCESS_1="rcvd [IPCP ConfAck " IPV4_SUCCESS_2="sent [IPCP ConfAck " IPV6_SUCCESS_1="rcvd [IPV6CP ConfAck " IPV6_SUCCESS_2="sent [IPV6CP ConfAck " TIMEOUT_3S_IDLE="idle 3" echo "Testing PPP with 'HDLC-like framing' (RFC1662)..." echo -n "Starting PPP peer (HDLC/RFC1662, IPv4+IPv6, DNS, extraneous VJ and CCP)... " start=$(date +%s) launch_simple_pppd $CERT $KEY $HDLC_YES $IPV4_YES $OFFER_DNS $IPV6_YES 2>&1 echo "started in $(( $(date +%s) - start )) seconds" wait_server "$PID" echo -n "Connecting to it with openconnect --protocol=nullppp... " start=$(date +%s) LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q --protocol=nullppp $ADDRESS:443 -u test $FINGERPRINT --cookie "hdlc,term" -Ss '' >/dev/null 2>&1 took=$(( $(date +%s) - start )) if grep -qF "$IPV4_SUCCESS_1" $LOGFILE && grep -qF "$IPV4_SUCCESS_2" $LOGFILE && grep -qF "$IPV6_SUCCESS_1" $LOGFILE && grep -qF "$IPV6_SUCCESS_2" $LOGFILE; then echo "ok (took $took seconds)" else echo "failed (after $took seconds)" echo "Log from pppd"; echo "===== START pppd log =====" cat $LOGFILE echo "===== END pppd log =====" fail "$PID" "Did not negotiate IPCP and IP6CP successfully." fi cleanup echo -n "Starting PPP peer (HDLC/RFC1662, IPv4+IPv6, DNS, extraneous VJ and CCP, no header compression)... " start=$(date +%s) launch_simple_pppd $CERT $KEY $HDLC_YES $IPV4_YES $OFFER_DNS $IPV6_YES $NO_HDR_COMP 2>&1 echo "started in $(( $(date +%s) - start )) seconds" wait_server "$PID" echo -n "Connecting to it with openconnect --protocol=nullppp... " start=$(date +%s) LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q --protocol=nullppp $ADDRESS:443 -u test $FINGERPRINT --cookie "hdlc,term" -Ss '' >/dev/null 2>&1 took=$(( $(date +%s) - start )) if grep -qF "$IPV4_SUCCESS_1" $LOGFILE && grep -qF "$IPV4_SUCCESS_2" $LOGFILE && grep -qF "$IPV6_SUCCESS_1" $LOGFILE && grep -qF "$IPV6_SUCCESS_2" $LOGFILE; then echo "ok (took $took seconds)" else echo "failed (after $took seconds)" echo "Log from pppd"; echo "===== START pppd log =====" cat $LOGFILE echo "===== END pppd log =====" fail "$PID" "Did not negotiate IPCP and IP6CP successfully." fi cleanup echo -n "Starting PPP peer (HDLC/RFC1662, IPv4 only)... " start=$(date +%s) launch_simple_pppd $CERT $KEY $HDLC_YES $NO_JUNK_COMP $IPV4_YES $IPV6_NO 2>&1 echo "started in $(( $(date +%s) - start )) seconds" wait_server "$PID" echo -n "Connecting to it with openconnect --protocol=nullppp... " start=$(date +%s) LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q --protocol=nullppp $ADDRESS:443 -u test $FINGERPRINT --cookie "hdlc,term" -Ss '' >/dev/null 2>&1 took=$(( $(date +%s) - start )) if grep -qF "$IPV4_SUCCESS_1" $LOGFILE && grep -qF "$IPV4_SUCCESS_2" $LOGFILE; then echo "ok (took $took seconds)" else echo "failed (after $took seconds)" echo "Log from pppd"; echo "===== START pppd log =====" cat $LOGFILE echo "===== END pppd log =====" fail "$PID" "Did not negotiate IPCP successfully." fi cleanup echo -n "Starting PPP peer (HDLC/RFC1662, IPv6 only, 3s idle timeout)... " start=$(date +%s) launch_simple_pppd $CERT $KEY $HDLC_YES $NO_JUNK_COMP $IPV4_NO $IPV6_YES $TIMEOUT_3S_IDLE 2>&1 echo "started in $(( $(date +%s) - start )) seconds" wait_server "$PID" echo -n "Connecting to it with openconnect --protocol=nullppp... " start=$(date +%s) LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q --protocol=nullppp $ADDRESS:443 -u test $FINGERPRINT --cookie "hdlc" -Ss '' >/dev/null 2>&1 took=$(( $(date +%s) - start )) if grep -qF "$IPV6_SUCCESS_1" $LOGFILE && grep -qF "$IPV6_SUCCESS_2" $LOGFILE; then echo "ok (took $took seconds)" else echo "failed (after $took seconds)" echo "Log from pppd"; echo "===== START pppd log =====" cat $LOGFILE echo "===== END pppd log =====" fail "$PID" "Did not negotiate IP6CP successfully." fi cleanup exit 0 openconnect-8.20/tests/cert-fingerprint0000755000076400007640000001001314171606260022100 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh echo "Testing certificate auth..." launch_simple_sr_server -d 1 -f -c configs/test-user-pass.config PID=$! wait_server $PID expect_cert_fail() { SERVERCERT=$1 echo -n "Testing with cert fingerprint $SERVERCERT..." ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert $SERVERCERT --cookieonly >/dev/null 2>&1) && fail $PID "Accepted wrong fingerprint $SERVERCERT" echo "ok (rejected)" } expect_cert_success() { SERVERCERT=$1 echo -n "Testing with cert fingerprint $SERVERCERT..." ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert $SERVERCERT --cookieonly >/dev/null 2>&1) || fail $PID "Rejected good fingerprint $SERVERCERT" echo "ok (accepted)" } expect_cert_success d66b507ae074d03b02eafca40d35f87dd81049d3 expect_cert_success D66B507AE074D03B02EAFCA40D35F87DD81049D3 expect_cert_fail d66b507ae074d03b02eafca40d35f87dd81049d34 expect_cert_fail D66B507AE074D03B02EAFCA40D35F87DD81049D34 expect_cert_fail d66b507ae074d03b02eafca41d35f87dd81049d3 expect_cert_fail D66B507AE074D03B02EAFCA41D35F87DD81049D3 expect_cert_success d66b507ae074d03b0 expect_cert_success D66B507AE074D03B0 expect_cert_fail d66 expect_cert_fail D66 expect_cert_success d66B expect_cert_success D66b expect_cert_success sha1:a82547f68f44d6351bef6cacd1d7b96e84f9dfa3 expect_cert_success sha1:A82547F68F44D6351BEF6CACD1D7B96E84F9DFA3 expect_cert_fail sha1:a82547f68f44d6351bef6cacd1d7b96e84f9dfa34 expect_cert_fail sha1:A82547F68F44D6351BEF6CACD1D7B96E84F9DFA34 expect_cert_fail sha1:a82547f68f44d6352bef6cacd1d7b96e84f9dfa3 expect_cert_fail sha1:A82547F68F44D6352BEF6CACD1D7B96E84F9DFA3 expect_cert_success sha1:a82547f68f44d635 expect_cert_success sha1:A82547F68F44D635 expect_cert_fail sha1:a82 expect_cert_fail sha1:A82 expect_cert_success sha1:a825 expect_cert_success sha1:A825 expect_cert_success sha256:c69dec71fcf2deb390b2ff4d70ebdeffc61556ffa91ebe2a3425c45eb365e6cf expect_cert_success sha256:C69DEC71FCF2DEB390B2FF4D70EBDEFFC61556FFA91EBE2A3425C45EB365E6CF expect_cert_fail sha256:c69dec71fcf2deb390b2ff4d70ebdeffc61556ffa91ebe2a3425c45eb365e6cf3 expect_cert_fail sha256:C69DEC71FCF2DEB390B2FF4D70EBDEFFC61556FFA91EBE2A3425C45EB365E6CF3 expect_cert_fail sha256:c69dec71fcf2deb390b2fe4d70ebdeffc61556ffa91ebe2a3425c45eb365e6cf expect_cert_fail sha256:C69DEC71FCF2DEB390B2FE4D70EBDEFFC61556FFA91EBE2A3425C45EB365E6CF expect_cert_success sha256:c69dec71fcf2deb390b2f expect_cert_success sha256:C69DEC71FCF2DEB390B2F expect_cert_fail sha256:c69 expect_cert_fail sha256:C69 expect_cert_success sha256:c69D expect_cert_success sha256:C69d # pin-sha256: is case sensitive. expect_cert_success pin-sha256:xp3scfzy3rOQsv9NcOve/8YVVv+pHr4qNCXEXrNl5s8= expect_cert_fail pin-sha256:xp3scfzy3rOQsv9NcOvE/8YVVv+pHr4qNCXEXrNl5s8= expect_cert_fail pin-sha256:XP3SCFZY3ROQSV9NCOVE/8YVVV+PHR4QNCXEXRNL5S8= expect_cert_success pin-sha256:xp3scfzy3rOQsv9NcO expect_cert_fail pin-sha256:xp3scfzy3rOQsv9NCO expect_cert_fail pin-sha256:xp3 expect_cert_fail pin-sha256:xp3 expect_cert_success pin-sha256:xp3s expect_cert_fail pin-sha256:xP3s cleanup exit 0 openconnect-8.20/tests/lzstest.c0000644000076400007640000000455014062600131020543 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #define __OPENCONNECT_INTERNAL_H__ struct oc_packed_uint16_t { unsigned short d; } __attribute__((packed)); int lzs_decompress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); int lzs_compress(unsigned char *dst, int dstlen, const unsigned char *src, int srclen); #include "../lzs.c" #include #include #include #include #define NR_PKTS 2048 #define MAX_PKT 65536 /* * Compressed data can encode an 11-bit offset of zero, which is invalid. * 10 00000000000 00 110000000 * Compr offset len end marker * * In bytes: * 1000.0000 0000.0001 1000.0000 */ static const unsigned char zero_ofs[] = { 0x80, 0x01, 0x80 }; int main(void) { int i, j, ret; int pktlen; unsigned char pktbuf[MAX_PKT + 3]; unsigned char comprbuf[MAX_PKT * 9 / 8 + 2]; unsigned char uncomprbuf[MAX_PKT]; srand(0xdeadbeef); uncomprbuf[0] = 0x5a; uncomprbuf[1] = 0xa5; ret = lzs_decompress(uncomprbuf, 3, zero_ofs, sizeof(zero_ofs)); if (ret != -EINVAL) { fprintf(stderr, "Decompressing zero-offset should have failed -EINVAL: %d, bytes %08x %08x\n", ret, uncomprbuf[0], uncomprbuf[1]); exit(1); } for (i = 0; i < NR_PKTS; i++) { if (i) pktlen = (rand() % MAX_PKT) + 1; else pktlen = MAX_PKT; for (j = 0; j < pktlen; j++) pktbuf[j] = rand(); ret = lzs_compress(comprbuf, sizeof(comprbuf), pktbuf, pktlen); if (ret < 0) { fprintf(stderr, "Compressing packet %d failed: %s\n", i, strerror(-ret)); exit(1); } ret = lzs_decompress(uncomprbuf, pktlen, comprbuf, sizeof(comprbuf)); if (ret != pktlen) { fprintf(stderr, "Compressing packet %d failed\n", i); exit(1); } if (memcmp(uncomprbuf, pktbuf, pktlen)) { fprintf(stderr, "Comparing packet %d failed\n", i); exit(1); } } return 0; } openconnect-8.20/tests/pass-UTF-80000644000076400007640000000000514040533771020363 0ustar00dwoodhoudwoodhou00000000000000ĂŻ openconnect-8.20/tests/fake-juniper-server.py0000755000076400007640000002172714171606260023147 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see ######################################## # This program emulates the authentication-phase behavior of a Juniper # server enough to test OpenConnect's authentication behavior against it. ######################################## import sys import ssl import base64 from json import dumps from functools import wraps from flask import Flask, request, abort, redirect, url_for, make_response, session host, port, *cert_and_maybe_keyfile = sys.argv[1:] context = ssl.SSLContext() context.load_cert_chain(*cert_and_maybe_keyfile) app = Flask(__name__) app.config.update(SECRET_KEY=b'fake', DEBUG=True, HOST=host, PORT=int(port), SESSION_COOKIE_NAME='fake') ######################################## def cookify(jsonable): return base64.urlsafe_b64encode(dumps(jsonable).encode()) def require_DSID(fn): @wraps(fn) def wrapped(*args, **kwargs): if not request.cookies.get('DSID'): session.clear() return redirect(url_for('get_policy')) return fn(*args, **kwargs) return wrapped def check_form_against_session(*fields, use_query=False): def inner(fn): @wraps(fn) def wrapped(*args, **kwargs): source = request.args if use_query else request.form source_name = 'args' if use_query else 'form' for f in fields: assert session.get(f) == source.get(f), \ f'at step {session.get("step")}: {source_name} {f!r} {source.get(f)!r} != session {f!r} {session.get(f)!r}' return fn(*args, **kwargs) return wrapped return inner ######################################## # Respond to initial 'GET /' with a redirect to '/dana-na/auth/url_default/welcome.cgi' # [Save in the session for use later: # list of realms, # session confirmation requirement, # token/2FA form name (can be frmLogin, for 2-password-in-one-form option)] @app.route('/') def root(): # We don't support the Junos/Pulse protocol (which starts with this request) if request.headers.get('Upgrade') == 'IF-T/TLS 1.0' and request.headers.get('Content-Type') == 'EAP': return abort(501) realms = request.args.get('realms') roles = request.args.get('roles') confirm = bool(request.args.get('confirm')) token_form = request.args.get('token_form') session.update(step='initial-GET', realms=realms and realms.split(','), roles=roles and roles.split(','), confirm=confirm, token_form=token_form) # print(session) return redirect(url_for('frmLogin')) # frmLogin @app.route('/dana-na/auth/url_default/welcome.cgi') def frmLogin(): session.update(step='GET-frmLogin') realms = session.get('realms') token_form = session.get('token_form') sel = token = '' if realms: sel = '' % ''.join( '' % nv for nv in enumerate(realms)) if token_form == 'frmLogin': token = '' return '''
    %s %s
    ''' % (url_for('frmLogin_post'), token, sel) # frmLogin POST-response # This either yields a successful DSID cookie, or redirects to a confirmation page, # depending on session['confirm'] @app.route('/dana-na/auth/url_default/login.cgi', methods=['POST']) def frmLogin_post(): realms = session.get('realms') confirm = session.get('confirm') token_form = session.get('token_form') roles = session.get('roles') if realms: assert 0 <= int(request.form.get('realm', -1)) < len(realms) session.update(step='POST-login', username=request.form.get('username'), password=request.form.get('password'), realm=request.form.get('realm')) # print(session) need_confirm = need_token = False got_confirm = got_token = None if confirm: need_confirm = request.form.get('btnContinue') is None got_confirm = not need_confirm if token_form: need_token = request.form.get('btnAction') is None and request.form.get('totpactionEnter') is None and request.form.get('token_as_second_password') is None got_token = not need_token session.update(got_token=got_token, got_confirm=got_confirm) if need_token and not got_confirm: return redirect(url_for('frm2FA')) elif need_confirm: return redirect(url_for('frmConfirmation')) elif roles: return redirect(url_for('frmSelectRoles')) else: resp = redirect(url_for('webtop')) resp.set_cookie('DSID', cookify(dict(session))) return resp # frmSelectRoles # This is some insane post-login realm-ish select-y thing @app.route('/dana-na/auth/url_default/select_role.cgi') def frmSelectRoles(): session.update(step='GET-frmSelectRoles') roles = session.get('roles') dest = url_for('frmSelectRoles_AFTER') roles = '\n'.join('%s' % (dest, nn, role) for (nn, role) in enumerate(roles)) return '''
    %s
    You have access to the following roles:
    Each role allows you to access certain resources. Click on the role you want to join for this session. Please contact your administrator if you need help choosing a role.
    ''' % roles # Note the URL is shared with the frmLogin POST URL... so weird @app.route('/dana-na/auth/url_default/login.cgi', methods=['GET']) def frmSelectRoles_AFTER(): roles = session.get('roles') assert roles assert 0 <= int(request.args.get('role', -1)) < len(roles) session.update(step='AFTER-frmSelectRoles', role=request.form.get('role')) resp = redirect(url_for('webtop')) resp.set_cookie('DSID', cookify(dict(session))) return resp # 2FA forms (frmDefender, frmNextToken, or frmTotpToken) # This redirects back to frmLogin_POST @app.route('/dana-na/auth/url_default/token.cgi') def frm2FA(): token_form = session.get('token_form') submit_button = ('totpactionEnter' if token_form == 'frmTotpToken' else 'btnAction') session.update(step='GET-frmConfirm') return '''
    Enter your 2FA token code.
    ''' % ( token_form, url_for('frmLogin_post'), session.get('username'), session.get('realm'), submit_button ) # frmConfirmation # This redirects back to frmLogin_POST @app.route('/dana-na/auth/url_default/confirm.cgi') def frmConfirmation(): session.update(step='GET-frmConfirm') return '''
    Confirm your login for whatever reason.
    ''' % ( url_for('frmLogin_post'), session.get('username'), session.get('password'), session.get('realm')) # stand-in for the "webtop" UI if logged in through a browser @app.route('/dana/home/starter0.cgi') def webtop(): session.update(step='POST-login-webtop') # print(session) return 'some junk HTML webtop' # respond to faux-CONNECT 'POST /dana/na?prot=1&svc=4' with 401 @app.route('/dana/js', methods=['POST']) @require_DSID def tunnel_post(): session.update(step='POST-tunnel') assert request.args.get('prot') == '1' and request.args.get('svc') == '4' assert request.headers['Connection'].lower().strip() == 'close' abort(401) # Respond to 'GET /dana-na/auth/logout.cgi' by clearing session and DSID @app.route('/dana-na/auth/logout.cgi') @require_DSID def logout(): session.clear() resp = make_response('successful logout') resp.set_cookie('DSID', '') return resp app.run(host=app.config['HOST'], port=app.config['PORT'], debug=app.config['DEBUG'], ssl_context=context, use_debugger=False) openconnect-8.20/tests/softhsm2.conf.in0000644000076400007640000000013614040533771021717 0ustar00dwoodhoudwoodhou00000000000000directories.tokendir = @top_srcdir@/tests/softhsm objectstore.backend = file loglevel = INFO openconnect-8.20/tests/autocompletion0000755000076400007640000000305014062600131021651 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Bash completion for OpenConnect # # Copyright © David Woodhouse # # Author: David Woodhouse # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # version 2.1, as published by the Free Software Foundation. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # Consider a command line like the following: # # openconnect -c --authenticate\ -k -k "'"'"'.pem --authgroup 'foo # bar' --o\s linux-64 myserver OPENCONNECT="${OPENCONNECT:-${top_builddir}/openconnect}" if ! [ -x $OPENCONNECT ]; then echo "$OPENCONNECT is not executable. Are you cross-compiling for Windows?" exit 77 fi do_test() { if [ "$(COMP_CWORD=$WORD $OPENCONNECT --autocomplete "$@")" != "$RESULT" ]; then echo "Autocomplete failed (word $WORD) for '$@'" exit 1 fi echo "Autocomplete OK (word $WORD) for '$@'" } WORD=1 RESULT="HOSTNAME" do_test "" WORD=1 RESULT="--certificate" do_test -c WORD=3 RESULT="FILENAME !*.@(pem|der|p12|crt)" do_test foo -k '' WORD=2 RESULT="--protocol" do_test somehost --proto WORD=1 RESULT="HOSTNAME" do_test somehost --proto WORD=3 RESULT="FILENAME !*.@(pem|der|crt)" do_test foo --cafile '' WORD=4 RESULT="none off all stateless" do_test -k foo --compr '' WORD=1 RESULT="EXECUTABLE '' -s" do_test -s/bin openconnect-8.20/tests/serverhash.c0000644000076400007640000000362314040533771021220 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2016 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include /* Normally it's nice for header files to automatically include anything * they need. But winsock is a horrid can of worms; we 're not going to * make openconnect.h include anything for itself. So just do this... */ #ifdef _WIN32 #define SOCKET int #endif #include "../openconnect.h" static void progress(void *privdata, int level, const char *fmt, ...) { va_list args; if (level > PRG_ERR) return; va_start(args, fmt); vfprintf(stderr, fmt, args); va_end(args); } static int validate_peer_cert(void *_vpninfo, const char *reason) { printf("%s\n", openconnect_get_peer_cert_hash(_vpninfo)); exit(0); } /* We do this in a separate test tool because we *really* don't want * people scripting it to recover the --no-cert-check functionality. * Validate your server certs properly, people! */ int main(int argc, char **argv) { struct openconnect_info *vpninfo; if (argc != 2) { fprintf(stderr, "usage: serverhash \n"); exit(1); } openconnect_init_ssl(); vpninfo = openconnect_vpninfo_new(NULL, validate_peer_cert, NULL, NULL, progress, NULL); if (openconnect_parse_url(vpninfo, argv[1])) { fprintf(stderr, "Failed to parse URL\n"); exit(1); } openconnect_set_system_trust(vpninfo, 0); openconnect_obtain_cookie(vpninfo); return -1; } openconnect-8.20/tests/dtls-psk0000755000076400007640000001070514171606260020367 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # Copyright (C) 2018 Nikos Mavrogiannopoulos # # This file is part of ocserv. # # ocserv is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at # your option) any later version. # # ocserv is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # # This tests operation/traffic under compression (lzs or lz4). OCCTL="${OCCTL:-occtl}" SERV="${OCSERV:-ocserv}" srcdir=${srcdir:-.} PORT=4568 PIDFILE=ocserv-pid.$$.tmp CLIPID=oc-pid.$$.tmp PATH=${PATH}:/usr/sbin IP=$(which ip) OUTFILE=traffic.$$.tmp . `dirname $0`/common.sh if test -z "${IP}";then echo "no IP tool is present" exit 77 fi if test "$(id -u)" != "0";then echo "This test must be run as root" exit 77 fi echo "Testing ocserv connection with DTLS-PSK..." function finish { set +e echo " * Cleaning up..." test -n "${PID}" && kill ${PID} >/dev/null 2>&1 test -n "${PIDFILE}" && rm -f ${PIDFILE} >/dev/null 2>&1 test -n "${CLIPID}" && kill $(cat ${CLIPID}) >/dev/null 2>&1 test -n "${CLIPID}" && rm -f ${CLIPID} >/dev/null 2>&1 test -n "${CONFIG}" && rm -f ${CONFIG} >/dev/null 2>&1 rm -f ${OUTFILE} 2>&1 } trap finish EXIT # server address ADDRESS=10.201.2.1 CLI_ADDRESS=10.201.1.1 VPNNET=192.168.2.0/24 VPNADDR=192.168.2.1 VPNNET6=fd91:6d87:7341:dc6a::/112 VPNADDR6=fd91:6d87:7341:dc6a::1 USERNAME=test TUNDEV=oc-$$-tun0 . `dirname $0`/ns.sh # Run servers update_config test-dtls-psk.config if test "$VERBOSE" = 1;then DEBUG="-d 3" fi ${CMDNS2} ${SERV} -p ${PIDFILE} -f -c ${CONFIG} ${DEBUG} & PID=$! sleep 4 # Run clients echo " * Getting cookie from ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly ) if test $? != 0;then echo "Could not get cookie from server" exit 1 fi echo " * Connecting to ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} -Q16 --interface ${TUNDEV} --dtls-ciphers=PSK-NEGOTIATE ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 -s ${srcdir}/scripts/vpnc-script --pid-file=${CLIPID} --passwd-on-stdin -b ) if test $? != 0;then echo "Could not connect to server" exit 1 fi set -e echo " * wait for ${TUNDEV}" TIMEOUT=10 while ! ${CMDNS1} ip addr list dev ${TUNDEV} &>/dev/null; do TIMEOUT=$(($TIMEOUT - 1)) if [ $TIMEOUT -eq 0 ]; then echo "Timed out waiting for ${TUNDEV}" exit 1 fi sleep 1 done sleep 1 # XX: CI needs additional delay here TIMEOUT=10 while ! ${CMDNS2} ip addr list|grep vpns >/dev/null; do TIMEOUT=$(($TIMEOUT - 1)) if [ $TIMEOUT -eq 0 ]; then echo "Timed out waiting for vpns" exit 1 fi sleep 1 done echo " * add routes" ${CMDNS1} ip route add ${VPNADDR} dev ${TUNDEV} ${CMDNS1} ip -6 route add ${VPNADDR6} dev ${TUNDEV} echo " * ping remote address" ${CMDNS2} nuttcp -1 ${CMDNS1} ping -c 3 ${VPNADDR} sleep 2 echo " * Transmitting with nuttcp" ${CMDNS1} nuttcp -T 6 -t ${VPNADDR} # IPv6 ${CMDNS2} nuttcp -1 ${CMDNS1} ping -6 -c 3 ${VPNADDR6} echo " * Receiving with nuttcp" ${CMDNS1} nuttcp -T 6 -r ${VPNADDR} set +e ${OCCTL} -s ${OCCTL_SOCKET} show users|grep ${USERNAME} if test $? != 0;then echo "occtl didn't find connected user!" exit 1 fi ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} >${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl didn't find connected user!" exit 1 fi grep "Username: ${USERNAME}" ${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl show user didn't find connected user!" exit 1 fi grep "DTLS cipher: (DTLS1.2)-(PSK)" ${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl show user didn't show DTLS-PSK ciphersuite!" exit 1 fi grep ${CLI_ADDRESS} ${OUTFILE} if test $? != 0;then ${OCCTL} -s ${OCCTL_SOCKET} show user ${USERNAME} echo "occtl show user didn't find client address!" exit 1 fi echo " * ping remote address after reconnect" kill -USR2 $(cat ${CLIPID}) ${CMDNS2} nuttcp -1 ${CMDNS1} ping -c 3 ${VPNADDR} sleep 2 exit 0 openconnect-8.20/tests/juniper-sso-auth0000755000076400007640000000313414204454452022042 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh -efu # # Copyright © 2021 Joachim Kuebart # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh FINGERPRINT="--servercert=d66b507ae074d03b02eafca40d35f87dd81049d3" CERT=$certdir/server-cert.pem KEY=$certdir/server-key.pem FAKE_TOKEN="--token-mode=totp --token-secret=ABCD" echo "Testing Juniper SSO auth against fake server ..." ${srcdir}/fake-juniper-sso-server.py $ADDRESS 1443 $CERT $KEY >/dev/null 2>&1 & PID=$! wait_server $PID 1 echo -n "Azure SSO with MFA. " ( echo test | $OPENCONNECT \ $FAKE_TOKEN \ $FINGERPRINT \ --cookieonly \ --csd-wrapper ${srcdir}/fake-tncc.py \ --protocol nc \ --quiet \ --user "test@example.com" \ $ADDRESS:1443 \ >/dev/null 2>&1 ) || fail $PID "Could not receive cookie from fake Juniper server" echo ok cleanup openconnect-8.20/tests/configs/0000755000076400007640000000000014204510554020322 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/configs/test-dtls-psk.config0000644000076400007640000001324314176202121024226 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. #auth = "certificate" auth = "plain[@SRCDIR@/configs/test1.passwd]" #auth = "pam" isolate-workers = false max-ban-score = 0 # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = @ADDRESS@ use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 listen-proxy-proto = false # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. #rate-limit-ms = 100 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = @PORT@ udp-port = @PORT@ # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = @SRCDIR@/certs/server-cert.pem server-key = @SRCDIR@/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. #ca-cert = /path/to/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 #cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP #use-utmp = true # PID file #pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket occtl-socket-file = @OCCTL_SOCKET@ use-occtl = true # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = @USERNAME@ run-as-group = @GROUP@ # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = @VPNNET@ # Use the keyword local to advertise the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 ipv6-network = @VPNNET6@ #address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = #route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. #always-require-cert = false compression = false openconnect-8.20/tests/configs/server-cert.prm0000644000076400007640000000102514062600131023272 0ustar00dwoodhoudwoodhou00000000000000[ req ] prompt = no default_bits = 2432 distinguished_name = req_DN default_md = sha256 string_mask = utf8only #req_extensions = req_EXT [ req_DN ] CN = "localhost" [ req_EXT ] basicConstraints = CA:false subjectAltName = @alt_names extendedKeyUsage = serverAuth keyUsage = digitalSignature, keyEncipherment subjectKeyIdentifier = hash authorityKeyIdentifier = keyid [alt_names] DNS.1 = localhost openconnect-8.20/tests/configs/test1.passwd0000644000076400007640000000102414040533771022606 0ustar00dwoodhoudwoodhou00000000000000test:tost,group1, group2 , group3:$5$i6SNmLDCgBNjyJ7q$SZ4bVJb7I/DLgXo3txHBVohRFBjOtdbxGQZp.DOnrA. sp@c/al:*:$5$kDNrlGibUoktiQ0n$mE/ys1XehvvoWQiSqAfB.Aw1WbAYayMV/ZYTX/6IlkC test2:*:$5$QB3iB31ID49rW6kr$wSvbsDTzUPw51hqWTgvac9LyJ6HLv2HYyxh2Ud4v.x1 test3:*:$5$d24yO9edrMd5ISka$/77d6DRK4fhdbTAecc4V8mmnQXSOU4Qn4zZQhOVaEqC test4:*:$5$5Hzjz2RPxM70vXiH$lCAFmGx77MNcauzf30.HJlKWm8dwVNiut.nyZyQRndC test5:*:$5$nvA.6.RBPqZg16K2$WAEXw7MJaSUj/Nwosu54JfqxMDlkZnrG.0/rsxl276C empty:*:$5$tScKhdO1ZcJ0GmmQ$rw095k.ThqbeQ60N06efHnAOibV/GoW5cRZKyHr8jd2 openconnect-8.20/tests/configs/user-cert.prm0000644000076400007640000000110614040533771022755 0ustar00dwoodhoudwoodhou00000000000000extensions = x509v3 [ x509v3 ] #keyUsage = keyEncipherment,digitalSignature,keyAgreement extendedKeyUsage = clientAuth subjectKeyIdentifier = hash authorityKeyIdentifier = keyid basicConstraints = CA:false [ req ] default_bits = 2432 distinguished_name = req_DN default_md = sha256 string_mask = utf8only [ req_DN ] commonName = "Common Name" commonName_value = "A user" userId = "User ID" userId_value = "test" [something] # The key # the certificate # some dhparam openconnect-8.20/tests/configs/test-user-cert.config.in0000644000076400007640000001367414176202121025013 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. auth = "certificate" auth = "plain[@abs_top_srcdir@/tests/configs/test1.passwd]" #auth = "pam" # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = [IP|HOSTNAME] use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. #rate-limit-ms = 100 # Do not ban clients for excessive connection attempts. We kind of expect # that in the certificate test. ban-points-connection = 0 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = 443 udp-port = 443 # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = @abs_top_srcdir@/tests/certs/server-cert.pem server-key = @abs_top_srcdir@/tests/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. ca-cert = @abs_top_srcdir@/tests/certs/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT:+SIGN-DSA-SHA1" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Cookie validity time (in seconds) # Once a client is authenticated he's provided a cookie with # which he can reconnect. This option sets the maximum lifetime # of that cookie. cookie-validity = 172800 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP use-utmp = true # PID file pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = @OCSERV_USER@ run-as-group = @OCSERV_GROUP@ # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 # Use the keyword local to advertise the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 #ipv6-address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. cisco-client-compat = true openconnect-8.20/tests/configs/test-obsolete-server-crypto.config0000644000076400007640000001326414171606260027135 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. #auth = "certificate" auth = "plain[@SRCDIR@/configs/test1.passwd]" #auth = "pam" # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = [IP|HOSTNAME] use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. rate-limit-ms = 0 # Don't ban failing clients because cert-fingerprint does that on purpose max-ban-score = 0 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = @PORT@ udp-port = @PORT@ # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = @SRCDIR@/certs/server-cert.pem server-key = @SRCDIR@/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. ca-cert = @SRCDIR@/certs/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "@TLS_PRIORITIES@" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Cookie validity time (in seconds) # Once a client is authenticated he's provided a cookie with # which he can reconnect. This option sets the maximum lifetime # of that cookie. cookie-validity = 172800 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP use-utmp = true # PID file pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = @OCCTL_SOCKET@ # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = @USERNAME@ run-as-group = @GROUP@ # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 # Use the keyword local to advertise the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 #ipv6-address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. cisco-client-compat = true openconnect-8.20/tests/configs/test-user-pass.config.in0000644000076400007640000001360314176202121025014 0ustar00dwoodhoudwoodhou00000000000000# User authentication method. Could be set multiple times and in that case # all should succeed. # Options: certificate, pam. #auth = "certificate" auth = "plain[@abs_top_srcdir@/tests/configs/test1.passwd]" #auth = "pam" # A banner to be displayed on clients #banner = "Welcome" # Use listen-host to limit to specific IPs or to the IPs of a provided hostname. #listen-host = [IP|HOSTNAME] use-dbus = no # Limit the number of clients. Unset or set to zero for unlimited. #max-clients = 1024 max-clients = 16 # Limit the number of client connections to one every X milliseconds # (X is the provided value). Set to zero for no limit. rate-limit-ms = 0 # Don't ban failing clients because cert-fingerprint does that on purpose max-ban-score = 0 # Limit the number of identical clients (i.e., users connecting multiple times) # Unset or set to zero for unlimited. max-same-clients = 2 # TCP and UDP port number tcp-port = 443 udp-port = 443 # Keepalive in seconds keepalive = 32400 # Dead peer detection in seconds dpd = 440 # MTU discovery (DPD must be enabled) try-mtu-discovery = false # The key and the certificates of the server # The key may be a file, or any URL supported by GnuTLS (e.g., # tpmkey:uuid=xxxxxxx-xxxx-xxxx-xxxx-xxxxxxxx;storage=user # or pkcs11:object=my-vpn-key;object-type=private) # # There may be multiple certificate and key pairs and each key # should correspond to the preceding certificate. server-cert = @abs_top_srcdir@/tests/certs/server-cert.pem server-key = @abs_top_srcdir@/tests/certs/server-key.pem # Diffie-Hellman parameters. Only needed if you require support # for the DHE ciphersuites (by default this server supports ECDHE). # Can be generated using: # certtool --generate-dh-params --outfile /path/to/dh.pem #dh-params = /path/to/dh.pem # If you have a certificate from a CA that provides an OCSP # service you may provide a fresh OCSP status response within # the TLS handshake. That will prevent the client from connecting # independently on the OCSP server. # You can update this response periodically using: # ocsptool --ask --load-cert=your_cert --load-issuer=your_ca --outfile response # Make sure that you replace the following file in an atomic way. #ocsp-response = /path/to/ocsp.der # In case PKCS #11 or TPM keys are used the PINs should be available # in files. The srk-pin-file is applicable to TPM keys only (It's the storage # root key). #pin-file = /path/to/pin.txt #srk-pin-file = /path/to/srkpin.txt # The Certificate Authority that will be used # to verify clients if certificate authentication # is set. ca-cert = @abs_top_srcdir@/tests/certs/ca.pem # The object identifier that will be used to read the user ID in the client certificate. # The object identifier should be part of the certificate's DN # Useful OIDs are: # CN = 2.5.4.3, UID = 0.9.2342.19200300.100.1.1 cert-user-oid = 0.9.2342.19200300.100.1.1 # The object identifier that will be used to read the user group in the client # certificate. The object identifier should be part of the certificate's DN # Useful OIDs are: # OU (organizational unit) = 2.5.4.11 #cert-group-oid = 2.5.4.11 # A revocation list of ca-cert is set #crl = /path/to/crl.pem # GnuTLS priority string tls-priorities = "PERFORMANCE:%SERVER_PRECEDENCE:%COMPAT" # To enforce perfect forward secrecy (PFS) on the main channel. #tls-priorities = "NORMAL:%SERVER_PRECEDENCE:%COMPAT:-RSA" # The time (in seconds) that a client is allowed to stay connected prior # to authentication auth-timeout = 40 # The time (in seconds) that a client is not allowed to reconnect after # a failed authentication attempt. #min-reauth-time = 2 # Cookie validity time (in seconds) # Once a client is authenticated he's provided a cookie with # which he can reconnect. This option sets the maximum lifetime # of that cookie. cookie-validity = 172800 # Script to call when a client connects and obtains an IP # Parameters are passed on the environment. # REASON, USERNAME, GROUPNAME, HOSTNAME (the hostname selected by client), # DEVICE, IP_REAL (the real IP of the client), IP_LOCAL (the local IP # in the P-t-P connection), IP_REMOTE (the VPN IP of the client). REASON # may be "connect" or "disconnect". #connect-script = /usr/bin/myscript #disconnect-script = /usr/bin/myscript # UTMP use-utmp = true # PID file pid-file = ./ocserv.pid # The default server directory. Does not require any devices present. #chroot-dir = /path/to/chroot # socket file used for IPC, will be appended with .PID # It must be accessible within the chroot environment (if any) socket-file = ./ocserv-socket # The user the worker processes will be run as. It should be # unique (no other services run as this user). run-as-user = @OCSERV_USER@ run-as-group = @OCSERV_GROUP@ # Network settings device = vpns # The default domain to be advertised default-domain = example.com ipv4-network = 192.168.1.0 ipv4-netmask = 255.255.255.0 # Use the keyword local to advertise the local P-t-P address as DNS server ipv4-dns = 192.168.1.1 # The NBNS server (if any) #ipv4-nbns = 192.168.2.3 #ipv6-address = #ipv6-mask = #ipv6-dns = # Prior to leasing any IP from the pool ping it to verify that # it is not in use by another (unrelated to this server) host. ping-leases = false # Leave empty to assign the default MTU of the device # mtu = route = 192.168.1.0/255.255.255.0 #route = 192.168.5.0/255.255.255.0 # # The following options are for (experimental) AnyConnect client # compatibility. They are only available if the server is built # with --enable-anyconnect # # Client profile xml. A sample file exists in doc/profile.xml. # This file must be accessible from inside the worker's chroot. # The profile is ignored by the openconnect client. #user-profile = profile.xml # Unless set to false it is required for clients to present their # certificate even if they are authenticating via a previously granted # cookie. Legacy CISCO clients do not do that, and thus this option # should be set for them. cisco-client-compat = true openconnect-8.20/tests/sigterm0000755000076400007640000000643314171606260020303 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # Copyright (C) 2018 Nikos Mavrogiannopoulos # # This file is part of ocserv. # # ocserv is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at # your option) any later version. # # ocserv is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # # This tests operation/traffic under compression (lzs or lz4). OCCTL="${OCCTL:-occtl}" SERV="${OCSERV:-ocserv}" srcdir=${srcdir:-.} PORT=4569 PIDFILE=ocserv-pid.$$.tmp CLIPID=oc-pid.$$.tmp PATH=${PATH}:/usr/sbin IP=$(which ip) OUTFILE=traffic.$$.tmp export DISCONNECT_FILE=disconnected-ok.$$.tmp . `dirname $0`/common.sh rm -f ${DISCONNECT_FILE} if test -z "${IP}";then echo "no IP tool is present" exit 77 fi if test "$(id -u)" != "0";then echo "This test must be run as root" exit 77 fi echo "Testing ocserv connection with DTLS-PSK..." function finish { set +e echo " * Cleaning up..." test -n "${PID}" && kill ${PID} >/dev/null 2>&1 test -n "${PIDFILE}" && rm -f ${PIDFILE} >/dev/null 2>&1 test -f "${CLIPID}" && kill $(cat ${CLIPID}) >/dev/null 2>&1 test -f "${CLIPID}" && rm -f ${CLIPID} >/dev/null 2>&1 test -n "${CONFIG}" && rm -f ${CONFIG} >/dev/null 2>&1 rm -f ${OUTFILE} 2>&1 } trap finish EXIT # server address ADDRESS=10.202.2.1 CLI_ADDRESS=10.202.1.1 VPNNET=192.168.3.0/24 VPNADDR=192.168.3.1 VPNNET6=fd91:6d87:8341:dc6a::/112 VPNADDR6=fd91:6d87:8341:dc6a::1 USERNAME=test TUNDEV=oc-$$-tun0 . `dirname $0`/ns.sh # Run servers update_config test-dtls-psk.config if test "$VERBOSE" = 1;then DEBUG="-d 3" fi ${CMDNS2} ${SERV} -p ${PIDFILE} -f -c ${CONFIG} ${DEBUG} & PID=$! sleep 4 # Run clients echo " * Getting cookie from ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly ) if test $? != 0;then echo "Could not get cookie from server" exit 1 fi echo " * Connecting to ${ADDRESS}:${PORT}..." ( echo "test" | ${CMDNS1} ${OPENCONNECT} -Q16 --interface ${TUNDEV} --dtls-ciphers=PSK-NEGOTIATE ${ADDRESS}:${PORT} -u ${USERNAME} --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 -s ${srcdir}/scripts/vpnc-script-detect-disconnect --pid-file=${CLIPID} --passwd-on-stdin -b ) if test $? != 0;then echo "Could not connect to server" exit 1 fi set -e echo " * wait for ${TUNDEV}" TIMEOUT=10 while ! ${CMDNS1} ip link show dev ${TUNDEV} 2>/dev/null | grep -q UP; do TIMEOUT=$(($TIMEOUT - 1)) if [ $TIMEOUT -eq 0 ]; then echo "Timed out waiting for ${TUNDEV}" exit 1 fi sleep 1 done echo " * add routes" ${CMDNS1} ip route add ${VPNADDR} dev ${TUNDEV} ${CMDNS1} ip -6 route add ${VPNADDR6} dev ${TUNDEV} echo " * ping remote address" ${CMDNS1} ping -c 3 ${VPNADDR} test -f "${CLIPID}" && kill $(cat ${CLIPID}) >/dev/null 2>&1 rm -f "${CLIPID}" sleep 5 if ! test -f ${DISCONNECT_FILE};then echo "Could not find ${DISCONNECT_FILE}" exit 1 fi exit 0 openconnect-8.20/tests/auth-swtpm0000755000076400007640000000577314171606260020750 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh swtpm_list=${swtpm_list:-`echo ${certdir}/swtpm*-key-tpm.pem`} echo "Testing TPMv2 auth with swtpm..." launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID mkdir -p ${SOCKDIR}/swtpm LD_PRELOAD=libsocket_wrapper.so ${SWTPM} socket --tpm2 --server type=tcp,port=2321 --ctrl type=tcp,port=2322 --tpmstate dir=`pwd`/${SOCKDIR}/swtpm --log file=swtpm-log -d sleep 0.5 LD_PRELOAD=libsocket_wrapper.so ${SWTPM_IOCTL} --tcp 127.0.0.1:2322 --load permanent ${srcdir}/swtpm-perm.state LD_PRELOAD=libsocket_wrapper.so ${SWTPM_IOCTL} --tcp 127.0.0.1:2322 -i export TPM_INTERFACE_TYPE=socsim # We don't actually *require* either of the startup tools # to be present; we can fall back to killing swtpm and then # restarting it with the startup-clear option. Sadly, there # isn't a way for swtpm_ioctl to start it once swtpm is # running. # # We are also inconsistent: the Esys build will automatically # start the TPM while the IBM TSS build won't. I'd "fix" that # to make the tests work, but I actually think *not* doing so # is probably correct. if ! tsstartup && ! tpm2_startup -T swtpm -c; then LD_PRELOAD=libsocket_wrapper.so ${SWTPM_IOCTL} --tcp 127.0.0.1:2322 -s LD_PRELOAD=libsocket_wrapper.so ${SWTPM} socket --tpm2 --server type=tcp,port=2321 --ctrl type=tcp,port=2322 --tpmstate dir=`pwd`/${SOCKDIR}/swtpm --log file=swtpm-log --flags not-need-init,startup-clear -d fi for KEY in ${swtpm_list}; do echo -n "Connecting to obtain cookie (with key ${KEY##*/})... " if [ "${KEY%%.p12}" != "${KEY}" ]; then CERTARGS="-c ${KEY} --key-password password" else CERT="${KEY%-key-*.pem}-cert.pem" if [ ! -r "$CERT" ]; then CERT="${certdir}/$CERT"; fi CERTARGS="--sslkey ${KEY} -c ${CERT}" fi if ! echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test $CERTARGS --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly -vvvvv --passwd-on-stdin; then LD_PRELOAD=libsocket_wrapper.so ${SWTPM_IOCTL} --tcp 127.0.0.1:2322 -s fail $PID "Could not connect with key ${KEY##*/}!" fi done echo ok LD_PRELOAD=libsocket_wrapper.so ${SWTPM_IOCTL} --tcp 127.0.0.1:2322 -s cleanup exit 0 openconnect-8.20/tests/ns.sh0000644000076400007640000000537714040533771017666 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # # Copyright (C) 2018 Nikos Mavrogiannopoulos # # This file is part of ocserv. # # ocserv is free software; you can redistribute it and/or modify it # under the terms of the GNU General Public License as published by the # Free Software Foundation; either version 2 of the License, or (at # your option) any later version. # # ocserv is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . # # Input: # ADDRESS=10.200.2.1 # CLI_ADDRESS=10.200.1.1 # VPNNET=192.168.1.0/24 # VPNADDR=192.168.1.1 # # Provides: # ${NSCMD1} - to run on NS1 # ${NSCMD2} - to run on NS2 # # Cleanup is automatic via a trap # Requires: finish() to be defined PATH=${PATH}:/usr/sbin IP=$(which ip) if test "$(id -u)" != "0";then echo "This test must be run as root" exit 77 fi ip netns list >/dev/null 2>&1 if test $? != 0;then echo "This test requires ip netns command" exit 77 fi if test "$(uname -s)" != Linux;then echo "This test must be run on Linux" exit 77 fi function nsfinish { set +e test -n "${ETHNAME1}" && ${IP} link delete ${ETHNAME1} >/dev/null 2>&1 test -n "${ETHNAME2}" && ${IP} link delete ${ETHNAME2} >/dev/null 2>&1 test -n "${NSNAME1}" && ${IP} netns delete ${NSNAME1} >/dev/null 2>&1 test -n "${NSNAME2}" && ${IP} netns delete ${NSNAME2} >/dev/null 2>&1 finish } trap nsfinish EXIT echo " * Setting up namespaces..." set -e NSNAME1="ocserv-c-tmp-$$" NSNAME2="ocserv-s-tmp-$$" ETHNAME1="oceth-c$$" ETHNAME2="oceth-s$$" ${IP} netns add ${NSNAME1} ${IP} netns add ${NSNAME2} ${IP} link add ${ETHNAME1} type veth peer name ${ETHNAME2} ${IP} link set ${ETHNAME1} netns ${NSNAME1} ${IP} link set ${ETHNAME2} netns ${NSNAME2} ${IP} netns exec ${NSNAME1} ip link set ${ETHNAME1} up ${IP} netns exec ${NSNAME2} ip link set ${ETHNAME2} up ${IP} netns exec ${NSNAME2} ip link set lo up ${IP} netns exec ${NSNAME1} ip addr add ${CLI_ADDRESS} dev ${ETHNAME1} ${IP} netns exec ${NSNAME2} ip addr add ${ADDRESS} dev ${ETHNAME2} ${IP} netns exec ${NSNAME1} ip route add default via ${CLI_ADDRESS} dev ${ETHNAME1} ${IP} netns exec ${NSNAME2} ip route add default via ${ADDRESS} dev ${ETHNAME2} ${IP} netns exec ${NSNAME2} ip addr ${IP} netns exec ${NSNAME2} ip route ${IP} netns exec ${NSNAME1} ip route ${IP} netns exec ${NSNAME1} ping -c 1 ${ADDRESS} >/dev/null ${IP} netns exec ${NSNAME2} ping -c 1 ${ADDRESS} >/dev/null ${IP} netns exec ${NSNAME2} ping -c 1 ${CLI_ADDRESS} >/dev/null set +e CMDNS1="${IP} netns exec ${NSNAME1}" CMDNS2="${IP} netns exec ${NSNAME2}" openconnect-8.20/tests/fake-gp-server.py0000755000076400007640000003015414171606260022073 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see import sys import ssl from random import randint import base64 from json import dumps from functools import wraps from flask import Flask, request, abort, redirect, url_for, session host, port, *cert_and_maybe_keyfile = sys.argv[1:] context = ssl.SSLContext() context.load_cert_chain(*cert_and_maybe_keyfile) app = Flask(__name__) app.config.update(SECRET_KEY=b'fake', DEBUG=True, HOST=host, PORT=int(port), SESSION_COOKIE_NAME='fake') ######################################## def cookify(jsonable): return base64.urlsafe_b64encode(dumps(jsonable).encode()) def check_form_against_session(*fields, use_query=False, on_failure=None): def inner(fn): @wraps(fn) def wrapped(*args, **kwargs): source = request.args if use_query else request.form source_name = 'args' if use_query else 'form' for f in fields: fs = f.replace('_', '-') if on_failure: if session.get(f) != source.get(fs): return on_failure else: assert session.get(f) == source.get(fs), \ f'at step {session.get("step")}: {source_name} {f!r} {source.get(fs)!r} != session {f!r} {session.get(f)!r}' return fn(*args, **kwargs) return wrapped return inner ######################################## if_path2name = {'global-protect': 'portal', 'ssl-vpn': 'gateway'} # Get parameters into the initial session setup in order to configure: # gateways: list of gateway names for portal to offer (all will point to same HOST:PORT as portal) # portal_2fa: if set, require challenge-based 2FA to complete /global-protect/getconfig.esp request # gateway_2fa: if set, require challenge-based 2FA to complete /ssl-vpn/login.esp request # portal_saml: set to 'portal-userauthcookie' or 'prelogin-cookie' to require SAML on portal (and # expect the named cookie to be provided to signal SAML completion) # gateway_saml: likewise, set to require SAML on gateway # portal_cookie: if set (to 'portal-userauthcookie' or 'portal-prelogonuserauthcookie'), then # the portal getconfig response will include the named "cookie" field which should # be used to automatically continue login on the gateway @app.route('//testconfig.esp', methods=('GET','POST',)) def testconfig(interface): gateways, portal_2fa, gw_2fa, portal_cookie, portal_saml, gateway_saml = request.args.get('gateways'), request.args.get('portal_2fa'), request.args.get('gw_2fa'), request.args.get('portal_cookie'), request.args.get('portal_saml'), request.args.get('gateway_saml') session.update(gateways=gateways and gateways.split(','), portal_cookie=portal_cookie, portal_2fa=portal_2fa and bool(portal_2fa), gw_2fa=gw_2fa and bool(gw_2fa), portal_saml=portal_saml, gateway_saml=gateway_saml) prelogin = url_for('prelogin', interface=interface) return redirect(prelogin) # Respond to initial prelogin requests @app.route('//prelogin.esp', methods=('GET','POST',)) def prelogin(interface): ifname = if_path2name[interface] if session.get(ifname + '_saml'): saml = 'REDIRECT{}'.format( base64.urlsafe_b64encode(url_for('saml_form', interface=interface, _external=True).encode()).decode()) else: saml = '' session.update(step='%s-prelogin' % ifname) return ''' Success false Please login to this fake GP VPN {ifname} Username Password 1{saml} EARTH '''.format(ifname=ifname, saml=saml) # Simple SAML form (not actually hooked up, for now) @app.route('//SAML_FORM') def saml_form(interface): abort(503) def challenge_2fa(where): # select a random inputStr of 4 hex digits, and randomly return challenge in either XML or Javascript-y form inputStr = '%04x' % randint(0x1000, 0xffff) session.update(step='%s-2FA' % where, inputStr=inputStr) if randint(1, 2) == 1: tmpl = '2FA challenge from %s%s' else: tmpl = ('var respStatus = "Challenge";\n' 'var respMsg = "2FA challenge from %s";\n' 'thisForm.inputStr.value = "%s";\n') return tmpl % (where, inputStr) # Respond to portal getconfig request @app.route('/global-protect/getconfig.esp', methods=('POST',)) def portal_config(): portal_2fa = session.get('portal_2fa') portal_saml = session.get('portal_saml') portal_cookie = session.get('portal_cookie') inputStr = request.form.get('inputStr') or None if portal_2fa and not inputStr: return challenge_2fa('portal') okay = False if portal_saml and request.form.get('user') and request.form.get(portal_saml): okay = True elif request.form.get('user') and request.form.get('passwd') and inputStr == session.get('inputStr'): okay = True if not okay: return 'Invalid username or password', 512 session.update(step='portal-config', user=request.form.get('user'), passwd=request.form.get('passwd'), # clear SAML result fields to ensure failure if blindly retried on gateway saml_user=None, saml_value=None, # clear inputStr to ensure failure if same form fields are blindly retried on another challenge form: inputStr=None) gateways = session.get('gateways') or ('Default gateway',) gwlist = ''.join('{}'.format(app.config['HOST'], app.config['PORT'], gw) for gw in gateways) if portal_cookie: val = session[portal_cookie] = 'portal-cookie-%d' % randint(1, 10) pc = '<{0}>{1}'.format(portal_cookie, val) else: pc = '' return ''' {} 600 {}'''.format(gwlist, pc) # Respond to gateway login request @app.route('/ssl-vpn/login.esp', methods=('POST',)) def gateway_login(): gw_2fa = session.get('gw_2fa') gateway_saml = session.get('gateway_saml') inputStr = request.form.get('inputStr') or None if session.get('portal_cookie') and request.form.get(session['portal_cookie']) == session.get(session['portal_cookie']): # a correct portal_cookie explicitly allows us to bypass other gateway login forms pass elif gw_2fa and not inputStr: return challenge_2fa('gateway') else: okay = False if gateway_saml and request.form.get('user') and request.form.get(gateway_saml): okay = True elif request.form.get('user') and request.form.get('passwd') and inputStr == session.get('inputStr'): okay = True if not okay: return 'Invalid username or password', 512 session.update(step='gateway-login', user=request.form.get('user'), passwd=request.form.get('passwd'), # clear inputStr to ensure failure if same form fields are blindly retried on another challenge form: inputStr=None) for k, v in (('jnlpReady', 'jnlpReady'), ('ok', 'Login'), ('direct', 'yes'), ('clientVer', '4100'), ('prot', 'https:')): if request.form.get(k) != v: abort(500) for k in ('clientos', 'os-version', 'server', 'computer'): if not request.form.get(k): abort(500) portal = 'Portal%d' % randint(1, 10) auth = 'Auth%d' % randint(1, 10) domain = 'Domain%d' % randint(1, 10) preferred_ip = request.form.get('preferred-ip') or '192.168.%d.%d' % (randint(2, 254), randint(2, 254)) if request.form.get('ipv6-support') == 'yes': preferred_ipv6 = request.form.get('preferred-ipv6') or 'fd00::%x' % randint(0x1000, 0xffff) else: preferred_ipv6 = None session.update(preferred_ip=preferred_ip, portal=portal, auth=auth, domain=domain, computer=request.form.get('computer'), ipv6_support=request.form.get('ipv6-support'), preferred_ipv6=preferred_ipv6) session.setdefault('portal-prelogonuserauthcookie', '') session.setdefault('portal-userauthcookie', '') session['authcookie'] = cookify(dict(session)).decode() return ''' (null) {authcookie} PersistentCookie {portal} {user} TestAuth vsys1 {domain} (null) tunnel -1 4100 {preferred_ip} {portal-userauthcookie} {portal-prelogonuserauthcookie} {ipv6} '''.format(ipv6=preferred_ipv6 or '', **session) # Respond to gateway getconfig request @app.route('/ssl-vpn/getconfig.esp', methods=('POST',)) @check_form_against_session('user', 'portal', 'domain', 'authcookie', 'preferred_ip', 'preferred_ipv6', 'ipv6_support', on_failure="errors getting SSL/VPN config") def getconfig(): session.update(step='gateway-config') addrs = '{}'.format(session['preferred_ip']) if session['ipv6_support'] == 'yes': addrs += '{}'.format(session['preferred_ipv6']) return '''{}/ssl-tunnel-connect.sslvpn'''.format(addrs) # Respond to gateway hipreportcheck request @app.route('/ssl-vpn/hipreportcheck.esp', methods=('POST',)) @check_form_against_session('user', 'portal', 'domain', 'authcookie', 'computer') def hipcheck(): session.update(step='gateway-config') return '''no''' # Respond to faux-CONNECT GET-tunnel with 502 # (what the real GP server responds with when it doesn't like the cookie, intended # to trigger "cookie rejected" error in OpenConnect) @app.route('/ssl-tunnel-connect.sslvpn') # Can't use because OpenConnect doesn't send headers here # @check_form_against_session('user', 'authcookie', use_query=True) def tunnel(): assert 'user' in request.args and 'authcookie' in request.args session.update(step='GET-tunnel') abort(502) # Respond to 'GET /ssl-vpn/logout.esp' by clearing session and MRHSession @app.route('/ssl-vpn/logout.esp') # XX: real server really requires all these fields; see auth-globalprotect.c @check_form_against_session('authcookie', 'portal', 'user', 'computer') def logout(): return '' app.run(host=app.config['HOST'], port=app.config['PORT'], debug=True, ssl_context=context) openconnect-8.20/tests/softhsm/0000755000076400007640000000000014062600131020346 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387a/0000755000076400007640000000000014204467471024777 5ustar00dwoodhoudwoodhou000000000000006f0c01c2-2aa2-225f-0e9c-97e305cb990f.object0000644000076400007640000000211414204467471032736 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387aEC00W0  *H  0 1 0 UCA0 160831164053Z 260829164053Z0'10 U A user10 &,d test0Y0*H=*H=BOr*Y@7LZ*틙pt |c1bcqAʛt6tu c LQbz漣DzQ o*-uh):3 cO tbcdefpq@6f0c01c2-2aa2-225f-0e9c-97e305cb990f.lock0000644000076400007640000000000014204457652032410 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387aopenconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387a/generation0000644000076400007640000000001014204457653027045 0ustar00dwoodhoudwoodhou0000000000000042ea2faf-bed1-0335-5c9e-6031151d1358.object0000644000076400007640000000271214204467471032653 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387aRSA00DQ/0  *H  0 1 0 UCA0"20130706145205Z20230515145205Z0'10 UA user10 &,dtest0R0  *H ?0:1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)v0t0 U00U% 0 +0U0U K;!kL]@^0U#0H#4S 18JZʶҦ+0  *H  1kl aWA*FDl`>/[EjP-ǀuY{TkmE H `0^5RUD|=mX5;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)"#0] $W~P3T[-b'\BN 2+$^,yjzTx}.5i39B]47,|*[AtRߡF=4/U@|L$?\d\UR1B&@-,V ޮás-*5eGtpحtPrՇ?̶&%YٺGCM۝IP3*D@d.B% vy](U82ֺsܶ_fLָid\~L[7)<=C3#3$XîL=$ N.x v=^o}MqjG% ;־9ׂ=T=v]4Oy^\qYCW<3 M9?bO!zZ_)g?#=ټGV~)gjZ0 I`ј%⊝)3Dw4>ߘ̫s<\"O <#=u|NwpWT">YZObU}-!շO":2mRvV='t[Xrn"DjEkF>B? *{!]س]|b6"74^g8[Mօ: <G5/Ƭhq^:aD룠/]_)†ggtl5=[j^َꇽoVHtWim|Q(;㪞u s8^s:$UNX*BI%+E`X>L@B ?NhAy~dgE(W f`$2l$CV"P)8NBYI2 e07)c  4ThqHbcdefpq@4ee180eb-b69e-d6e1-149c-73f3794c4ab8.object0000644000076400007640000000265514062600131033041 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387aDSAs0o0'W0  *H  0 1 0 UCA0 160919124550Z 260917124550Z0'10 U A user10 &,d test00+*H80z -ť A-"u y05m(q,H˦k]/rfC2WX[X4<ӺUcYlIE4++o9kA´Xx\ќug?E,bUvEz%K|O5[ɤl3N.z }Fľ،0଴CAʛt6tu c LQbz漣DzQ o*-uh):3 cO ti  \CfgE{oIz±F/j3΢s>\4>.&s4SYmS\4)1ֈGF864:ȗ{<̺^('I]G0  *H  12fv x6qw4QTӍ;y:<ʶcmjn^]A:t!#K}-Z:¬pA*nϲa=xoT%_zGI֡8E]ͯzS .xhHh6dF[c]5Ic pÄq;c͍V>1R 䌵GR2td@PplYt6Tf4AM`Ds7F}4ӕK6uzń_єnv*F AIL 0 1 0 UCAW )0'10 U A user10 &,d testpq6aab9e82-479e-533b-a1d8-46fc69fe94fb.object0000644000076400007640000000111514204467471033141 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387aEC bnQyͼ:ϟ>wIzv9'w/>Q  bcdefpq *H=@0f93ad33-8495-7e09-67e8-fc911ab3714c.lock0000644000076400007640000000000014062600131032262 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387a4ee180eb-b69e-d6e1-149c-73f3794c4ab8.lock0000644000076400007640000000000014062600131032501 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/20526acd-3d1b-8363-eb79-163b3233387aopenconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4/0000755000076400007640000000000014204467471024765 5ustar00dwoodhoudwoodhou000000000000001225b1ef-5e4d-7b1c-6eb9-6af1314746b8.lock0000644000076400007640000000000014062600131032367 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4b743ccfe-8f38-eaf7-7ffd-aa7fa7e15a10.object0000644000076400007640000000271214204467471033413 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4RSA00DQ/0  *H  0 1 0 UCA0"20130706145205Z20230515145205Z0'10 UA user10 &,dtest0R0  *H ?0:1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)v0t0 U00U% 0 +0U0U K;!kL]@^0U#0H#4S 18JZʶҦ+0  *H  1kl aWA*FDl`>/[EjP-ǀuY{TkmE H `0^5RUD|=mX5H4*qaе1 XB2;QyI.}*֊~yNF>Ή3 z21| WgmϠA'n`jU#&=Gqv> $?b(Ġl[@cO}fOQָҊӊǷh4aq$SBnN?^" +c/E&o*C L0Ͻ6`J[Z#PFtN%^jbejd!Iy5EoV>aȯHiy| )߹A heS6d'@ \ж&"|WRυ'7!ߧ pA`CtVL+mSY1_{:vA9FZi:s Y!^s582dE?3@`S(#2 vw&d1fGDΨ`KZ]I }O/ʭ]QxIhmJT|@ =%~4 fW7~^g CRt`R7eeI ?ߖ)0ObQ <ܑ0k\]{Y$:K"9ĺ6~kp70ɢu*{@openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4/generation0000644000076400007640000000001014204457653027033 0ustar00dwoodhoudwoodhou00000000000000 d7409cfb-5bd6-b267-a958-d49e32049ef6.lock0000644000076400007640000000000014062600131032416 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4a995f4ad-d827-d0b0-c1f3-7871156daaff.object0000644000076400007640000000211314062600131033062 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4 E:m(O|8Ӄ@J`zjuxan<_=j]aPt?RI%[8?EFqoNML]Þ)e+mZXyW[]8>GN5U^ K$Sh#:kЭ/\6sQUl niNրe?|Խk5 IS8Rj@lALp{5"$sBͫ   0E~3^9A#N\ YHf[SX%-i VML7 2AO;wvΟj >{J*RY!|w2@vpw3qQOC:=xewf~r2nUч T= (=10\K:?OG6GYny>N"|f_t2–912`|c_zRbse9m|fԴKb.ۭlNsġ $ײ8pV"|dpYMq|_1 L "? .C0X\XOA$i`qANAʛt6tu c LQbz漣DzQ o*-uh):3 cO ti  \CfgE{oIz±F/j3΢s>\4>.&s4SYmS\4)1ֈGF864:ȗ{<̺^('I]G0  *H  12fv x6qw4QTӍ;y:<ʶcmjn^]A:t!#K}-Z:¬pA*nϲa=xoT%_zGI֡8E]ͯzS .xhHh6dF[c]5Ic pÄq;c͍V>1R 䌵GR2td@PplYt6Tf4AM`Ds7F}4ӕK6uzń_єnv*F AIL 0 1 0 UCAW )0'10 U A user10 &,d testpqb743ccfe-8f38-eaf7-7ffd-aa7fa7e15a10.lock0000644000076400007640000000000014204457651033060 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c42954e9f7-bc71-e02a-e0ab-fd376dae3dda.lock0000644000076400007640000000000014062600131032745 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c49a3f35f0-1252-42f9-0100-2b47f73d2e2b.lock0000644000076400007640000000000014204457651032147 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c49a3f35f0-1252-42f9-0100-2b47f73d2e2b.object0000644000076400007640000000211414204467471032476 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4EC00W0  *H  0 1 0 UCA0 160831164053Z 260829164053Z0'10 U A user10 &,d test0Y0*H=*H=BOr*Y@7LZ*틙pt |c1bcqӨE$wy\&Gl$~3! " oFͺֶ|-ui7($%0cfpq@2954e9f7-bc71-e02a-e0ab-fd376dae3dda.object0000644000076400007640000000206014062600131033273 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4  9{vŰ#@Mv Dh0C%E3%(7'Hje#v'd6'1"^;-2 <mׯJŹc圶 xi:  0|IGJȑ4}eA%yȼH،P'N'>{|mP.vcs ~WNǦJ j SGV.渚m ʊkRG{&1[%[a`ɯUS ̊'E10m\rQOT 3Bm\4xol݂1g2qh.:jNG5kпk c.pٷՂwj^)NyP;9b._uܖݘ _t^G }@JwiCe"\n.ddXCBI6Rj`ǧ7bcdefpq@08ab136b-af33-e833-7f9e-41d10981fdcb.lock0000644000076400007640000000000014204457651032465 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c408ab136b-af33-e833-7f9e-41d10981fdcb.object0000644000076400007640000000130014204467471033010 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4 .xl/t q] ^6l)J3GJ'PSf@UJO S4)PdC6:CJB.=(**c(߼L6XhI8; 4 nu+gk/[S]),  bcdefpq e3ޯN7-905S& Hf6@a995f4ad-d827-d0b0-c1f3-7871156daaff.lock0000644000076400007640000000000014062600131032535 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/32189381-01d2-550b-8c0c-ccc58244a0c4openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a/0000755000076400007640000000000014204467471025160 5ustar00dwoodhoudwoodhou000000000000006040e1c7-9d3f-886f-bcad-7f2c753eaa1f.object0000644000076400007640000000206014062600131033337 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a  )Æ,LO֬;O0R| 8l:~ѷo >= F6];uދ@Vl)4| 7O1Va6_(.\  0^Y-yLbY$plQ x,G)NumJI9F>0>Zz6> 8?8&Lb&}e1d`P77Ϊ%oP:Ah Qj{ɷ 9B,iaS4e?\g10,CsbPaDB׋MM'`|0O9}2SZs}hsӤuKi`7?a}+o\Wlۛ?6ԟ8H?O(ENP Skh% ,k/"ZGg0$:6td:]!Ü\*W4k gyam|^*V!!'bcdefpq@openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a/token.object0000644000076400007640000000050014204467471027463 0ustar00dwoodhoudwoodhou00000000000000SI openconnect-test2 SJd93a3d77c9fb819aSK-SLH86˘x;4eA6,Eq.>k)P.zuoc.x.jSMH:4_"IljGA$>RO/dYC: 7=ԠzhR{8]-Kopenconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a/token.lock0000644000076400007640000000000014204457653027141 0ustar00dwoodhoudwoodhou000000000000005221b8e5-f706-5763-75dc-942025e74148.lock0000644000076400007640000000000014204457653032161 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a3936e1d3-017b-1623-5db2-5e755f29012a.object0000644000076400007640000000130014204467471032613 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a ulssɵEfކ`>?9ڤ6}"U&{9ɬa s~#pQ!xݒqPUii (u  bcdefpq ZK0l=ȵ(h*\`"@openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a/generation0000644000076400007640000000001014204457653027226 0ustar00dwoodhoudwoodhou00000000000000af68913c-cb7f-5625-cbf3-bba947bfbd04.lock0000644000076400007640000000000014204457653033107 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a05198b99-70cb-d1f0-fa2d-57b6ac772930.object0000644000076400007640000000240514204467471033060 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a  rgybcdF};,,q@0+}) >H.]\+Cكh}Uܔ8QrSb2}3oFF4o82qO(q\ZqÂν&RQ0 TӬ>jC0!1IsZƱqx˼u3ߒ 9o$"'tob4}t{ j5ڐCDvb2I(xޭX@ͪ#DⷊBPQD~3ң*f^PUXI+l8 #vmH\akC)xkAp[{/i K/ dqA{X:|{c ],B]/)AkjվĀ3!H::yЂ)](Q7כ`}6#.ܫ%3'U_Yà*"Xޝmm.FbbhbsH\Ͱ!MqyG#zxCV-.߽VH3' {Dߏdf5Ak|"7۩ xJՌ5S\e="tJ(   8&E桑@i:9 b>{@eFVv!zDF$=¹'@ugʭgH4RN|EǢzq  Q}D[D]d۱7 pqaf68913c-cb7f-5625-cbf3-bba947bfbd04.object0000644000076400007640000000320514204467471033436 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a j%2zV/x(ԦkuδQd\Kw9X2r*fneV_~>'&X3pZ]ki';&l&3#'pAq͈xspݎm'Β ɰ}{NC}걉8ϵc'gw( K9C&Pj0!0b OGV xUV0!&dW)͵O/YS/"P6#}hHja^U9lԎ7%vW{P)q5*ѡQּ{AtDF7Z=MS)WG@~*9{["ޫf¢S'ԙ.2 Go]!K[2oW}yp}w:|U9nd1c@"QXi3Wak?_U[5TX,``C^si`vXYu`}|qmlB;Q Yrfc $@]dM E,t)2V k =gTHǮĴ$Z|3Zrѱ4~ԖdXtiD "Hjq@.c6{6jR L>`" Js٦ 6l,Nv⧛ M:Ub][+ Vi{`>C4w.@+{ư0> )Sw ~&qd)Oe}VNBԎ!/Տ"Ae@/Y 4clD| !@ <*3n[ \ݭs֎)"Zc<.h[SO\X~STba/zf'6^)ʤg,೚ؤ]3FnܡU6Jk!rf ~{ȅ<8۳t|Hpgf ]QaLC qWzgF-.,K?5Z6u  %KQk ɟh4 @ӷrnMbP7rIR%U+[o,?݅ܖ׉7`#e`Q!Ӑ~NM NgޟFvŻ sSIҭXXl\pq7c179df3-453a-20db-5b7c-8e4fa7aa11db.object0000644000076400007640000000314514062600131033326 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a <~倅/'ҳ]J-|v`A[_ EoVʳuʊzm'MW,Sς~,=-߇Z 't(Ku|2MWYńrрJP!ԣV6 1tON\} qOjv;XDA`fG\EǸ_b\=] ivf6T[cߏBaf<&_KwfWe|;#8 -X^>ܵ._-PuD lz^m"R:&N*}CK(BWl0dH{yںrKEr= 3r mWj\)s̋ciVUTq#ZWyWg~h5Fa|GT+N6; q?KTN$Vc7J*v ͥ=gpTY/W/Rc(b!-#S+4֡VX8@,zU'˭TdǗ;3$ὊbӃQ8fD|; eJ;>6o N<5Ϡyb3SeS ;C  g TFMzQP:X=щ#p"0[Iۿ GcE(~1 9UR]R2h"Dꃿj1%_Ƒ S<(SX/ =7f[}:{llfvh6 쭂ԛy|<4abZfqNΞ /hQbg8u1~l{~tb8'gK5'\wG ʹУ=s I8=l$ ^Sʜp8not7D'6t"Q CF1[IJ6hWL NF4LZ . QR C) PA֔ 4+*:BU\Š)KQ]RL |͇lA:kR? cƉ"shmJUO`SÌjR" H f7 OnՒCV.S:9~n#P=Z[K;+&O3vQ\SMB0TSʌqۗ?@j͐.=Q$-/+<ߖymR-@&beq[i#NE'$Lmv0}DcI]#AV/0 `:`KqRWnɷqc}a|M.pجXWaTEòˍ,8LlxÓm],6 N.Wlfn:ikcn$+7a3-k+4Zz|*c#y|E2U3,D0`0x!Ay[jgLi'C7t3Q큊'-]up#b1 dʫ2S3B# 7aYBђ0uzXqX0?[ w _p(9L}{86 /(|~ֆu>4%{ropo}J`\ޖN% C0"bbX lHv_XXF iRۻ$N!Nڵ2RpHz+| \}yx]ݠIl Jv&ZL3mbm.\dl*F\ ;-ߔHIPF2z,[Xh| i lUMS&'(5F^>xh<2~2~W]0 Rd-iI,M֜iHG\=9,F_av6h\n%I &ϸB 1ol\$`Pzߗ:07`eIrQor4H#z0ڝUu.\t69>Fkv^ܠ $ڑc(Mbcdefpq@6040e1c7-9d3f-886f-bcad-7f2c753eaa1f.lock0000644000076400007640000000000014062600131033011 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819a7c179df3-453a-20db-5b7c-8e4fa7aa11db.lock0000644000076400007640000000000014062600131032773 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/340020a8-6289-ead5-d93a-3d77c9fb819aopenconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7/0000755000076400007640000000000014062600131025213 5ustar00dwoodhoudwoodhou000000000000009bf49199-36eb-ac67-8fee-644f9a743af2.object0000644000076400007640000000444014062600131033310 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7$ DN;۠`;_µo6' " pr 5c ΐ7%B3˛   Phq근CC`+yX| XI_).yOi@Ck$ d `,5{ p܄V?4a~'o+ UnS~ ~g  MMUJѵ`L#hWٛ8^n PQUY%aoQHsTkkh&u;n`]yh\iZQ!9xԌ`B9"UgiN t'" h^SpL 4Kۈ"?h v#P uY, dH6 C# iԆi~-ވOJ-@^<.I%'|&-GµmAC~ ̅q rcڮ3P&i<8W Y$4A# HP[8ᵋvFZn.`IXO m\o^i} 4P!o/2QH7+wݣYFEAYZ5izgA,ҋ$Y*։5 ~շKݩ z[[j "Gqjfh斉WGKX&8G*ub)@h${%M2x1-Zt@PG-fv֏+M:_9@K>u&7Еhz#4Z٬fjN?FcPI2vΧӲVo@^9Do GobMZЙNh~G0\AH ?<9 %l d`U7vA^.?~<ۓj.+-+>jkI޻XZ0RJRl~%R?oxX~O1Ct[oK`o@̑KzX>hĴsUK?5/|1<2%x$e*ސW&ò6^_һYeiO?G*w@((L r61I$ȋK~QfmKYfDG)7p m]#<3@~5 >X>@{ѣ"2ˮH5%H@fV !}'y13{{L^_66 츼<|_7s0A=0HlSS$d(T|)fxv&, rEW1h jn9C ^H"ꌨ0ێg6TP6Ӡ3cg*LkJlr%`+p 1[(O0A,r]eYdάMJ"dYbH1V~Gj\ħ 'dg&-)#r  V  0}*SfGeG}\@p\R"ۏaP?iL!!Y9P1&8odߩ}[:?ޞf՘U-6*ZEvZ|ipc4;7аVVy)$|4՝>c10s ZC:Ÿ7612Czfj%Z2&CGh9yrrzxf!v|+ՓN܎Zy8ͽQF /r\< Rv؂!_.S Jz[޲\$L0 ws+[傽ljQ[_h?xs֕r@(@dbcdefpq@ea59535b-eecb-e2fd-a6e3-99d828e5972f.lock0000644000076400007640000000000014062600131033113 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e72da91be2-c722-1e38-acb9-d42aa5911b3b.object0000644000076400007640000000320514062600131033302 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7 ՈS*NLaEMj牋*޾D/E_ot (V.*J(DGeQ#U ;;th1RWWa4}J5'q|VCIw~CL$2]ձC> 9㓿^58 E@6+n\}~B_H+d 5]u%uDq {>WA8LT.-ؿgFuV & Ioz !pu%EBğ!SyW$A/ .{Fۑ`" r"X4=qPvݷ>#".;2c%FgT `[Gkق)*'JԎbX=)m"pF%7AEzW)02-ZwK,!踐ވ{ŏ#a"Y7kp>#aחkg^Ԭq48S뉿15=H`;TBJ\'ٚ +Zds!~!zdK>!I31NIާ_ = 8p1? ULEl(C_1D4mi@ h0HtYs&4+6eWPi1b 3/Ǡuk7(R>!jgOoipqopenconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7/token.lock0000644000076400007640000000000014062600131027173 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7/generation0000644000076400007640000000001014204457653027301 0ustar00dwoodhoudwoodhou0000000000000053c2b10f-0c5e-de1d-2d1e-22fd048e3d70.lock0000644000076400007640000000000014062600131032751 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e76795319c-f776-6faa-b1d7-3878b9096eff.object0000644000076400007640000000130014062600131033147 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7 E"ɢB-8i,Ͼx\'ڒ9^@ oy?Ϟ`y |q&&C4(mswxKqDd|X nB_d08 Ny =2  bcdefpq Hxgk.YX{wg-1唴A@9bf49199-36eb-ac67-8fee-644f9a743af2.lock0000644000076400007640000000000014062600131032756 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7ea59535b-eecb-e2fd-a6e3-99d828e5972f.object0000644000076400007640000000314514062600131033446 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7 {V$ju{6pMMHr2Դ|,[~$vVoSzuʐ䀜skh4n6C7QJz{2p~QIcY]H!=7<4ɒUDO;S/O*иS;kxYW(FjTjʡMX=,"P\  ڗ.~#e#h8̱0oj+~ JO# :҉2cBTUc^|X"d$vu9ܽ}= +GY{f iu gJڍ@@Fn(~/g@&h~YJJ$z6S@ӻ%'M)( {0NK/B#ʞ?%'vpqa273d1ac-570a-d217-b4b1-a8d7ed34203c.object0000644000076400007640000000240514062600131033216 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7 nvəR@AYwR]NY͜Bv60~o=||7y +o؞ iR8c-O`C\"wzxrqhmJ5 b$:Z#[n neKTML` Sݹ~L343Jr\w¸ /APRo+4 .YH(D?6+ `3fx¹HdyVPȧdRfd`o'w NX5Xvc 6MAϟp E8\`pOۚ҆_.KKq$T2%@-Gsi:h+ 3yl ڀ[o5ӀM=E- ^/gHBGR'{;WjC.Wć'wJ$~KԸ*@Ιh~F]B6[F$F+ydM:2IFGe_@Uūj8,- 5P/_3%T(ڎ޾ -d $`D._ZYW_L. \RBz`}"B ^=s# gRGڲa_o; ?Zl'  fOO?0bS Z9̀cx2@YB (_wq^O3AF|1j )ɐ~qX#*!2%2.B ރ"iSΪ$0[RgDp"Q %\e#pqa273d1ac-570a-d217-b4b1-a8d7ed34203c.lock0000644000076400007640000000000014062600131032665 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e72da91be2-c722-1e38-acb9-d42aa5911b3b.lock0000644000076400007640000000000014062600131032752 0ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/softhsm/e0a4adf3-068e-288d-1c53-a97935ad11e7openconnect-8.20/tests/fake-tncc.py0000755000076400007640000000230314171606260021103 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Copyright © 2021 Joachim Kuebart # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see import os def main(): """ Reply "success" when we receive "hostchecker". """ io = os.fdopen(0, "r+b", buffering=0) started = False for line in io: line = line.decode("ascii").rstrip() if line == "start": started = True if started and line == "Cookie=hostchecker": io.write(b"200\n3\nsuccess\n\n\n") started = False if __name__ == "__main__": main() openconnect-8.20/tests/Makefile.am0000644000076400007640000004227214204505567020745 0ustar00dwoodhoudwoodhou00000000000000 certsdir=$(srcdir)/certs USER_KEYS = \ $(certsdir)/user-key-pkcs1.pem $(certsdir)/user-key-pkcs1.der \ $(certsdir)/user-key-pkcs1-aes128.pem \ $(certsdir)/user-key-pkcs8.pem $(certsdir)/user-key-pkcs8.der \ $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.pem $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.der \ $(certsdir)/user-key-pkcs8-pbes2-sha1.pem $(certsdir)/user-key-pkcs8-pbes2-sha1.der \ $(certsdir)/user-key-sha1-3des-sha1.p12 $(certsdir)/user-key-sha1-3des-sha256.p12 \ $(certsdir)/user-key-aes256-cbc-sha256.p12 # We know GnuTLS doesn't support these for now. https://bugzilla.redhat.com/1369484 OSSL_KEYS = \ $(certsdir)/user-key-md5-des-sha1.p12 $(certsdir)/user-key-aes256-cbc-md5-des-sha256.p12 \ $(certsdir)/user-key-pkcs8-pbes2-sha256.pem $(certsdir)/user-key-pkcs8-pbes2-sha256.der \ $(certsdir)/user-key-pkcs8-pbes1-md5-des.pem $(certsdir)/user-key-pkcs8-pbes1-md5-des.der if OPENCONNECT_OPENSSL USER_KEYS += $(OSSL_KEYS) endif DSA_KEYS = \ $(certsdir)/dsa-key-pkcs1.pem $(certsdir)/dsa-key-pkcs1.der \ $(certsdir)/dsa-key-pkcs1-aes128.pem \ $(certsdir)/dsa-key-pkcs8.pem $(certsdir)/dsa-key-pkcs8.der \ $(certsdir)/dsa-key-pkcs8-pbes2-sha1.pem $(certsdir)/dsa-key-pkcs8-pbes2-sha1.der \ $(certsdir)/dsa-key-aes256-cbc-sha256.p12 if TEST_DSA USER_KEYS += $(DSA_KEYS) endif USER_KEYS += $(certsdir)/ec-key-pkcs1.pem $(certsdir)/ec-key-pkcs1.der \ $(certsdir)/ec-key-pkcs1-aes128.pem \ $(certsdir)/ec-key-pkcs8.pem $(certsdir)/ec-key-pkcs8.der \ $(certsdir)/ec-key-pkcs8-pbes2-sha1.pem $(certsdir)/ec-key-pkcs8-pbes2-sha1.der \ $(certsdir)/ec-key-aes256-cbc-sha256.p12 SWTPM_KEYS = $(certsdir)/ec-key-swtpm.pem $(certsdir)/swtpm-rsa-key-tpm.pem \ $(certsdir)/swtpm-ec-key-tpm.pem $(certsdir)/swtpm-ec-p384-key-tpm.pem SWTPM_CERTS = $(certsdir)/swtpm-ec-cert.pem $(certsdir)/swtpm-rsa-cert.pem \ $(certsdir)/swtpm-ec-p384-cert.pem HWTPM_KEYS = HWTPM_CERTS = # Importing the existing EC key (not DSA since it's ancient and not RSA because # the TPM probably can't cope with 2432-bit keys). if TEST_TPM2_IMPORT HWTPM_KEYS += ec-key-hwtpm.pem endif # Creating new keys in TPM. if TEST_TPM2_CREATE HWTPM_KEYS += hwtpm-ec-key-tpm.pem hwtpm-rsa-key-tpm.pem HWTPM_CERTS += hwtpm-ec-cert.pem hwtpm-rsa-cert.pem endif USER_CERTS = $(certsdir)/user-cert.pem $(certsdir)/dsa-cert.pem $(certsdir)/ec-cert.pem EXTRA_DIST = certs/ca.pem certs/ca-key.pem certs/user-cert.pem $(USER_KEYS) $(USER_CERTS) \ $(OSSL_KEYS) $(DSA_KEYS) $(certsdir)/user-key-nonascii-password.p12 \ pass-UTF-8 pass-ISO8859-2 $(SWTPM_KEYS) $(SWTPM_CERTS) swtpm-perm.state \ certs/server-cert.pem certs/server-key.pem configs/test1.passwd \ common.sh configs/test-user-cert.config.in \ configs/test-user-pass.config.in \ configs/test-obsolete-server-crypto.config \ configs/user-cert.prm configs/server-cert.prm \ softhsm2.conf.in softhsm ns.sh configs/test-dtls-psk.config \ scripts/vpnc-script scripts/vpnc-script-detect-disconnect \ suppressions.lsan fake-fortinet-server.py fake-f5-server.py fake-juniper-server.py \ fake-juniper-sso-server.py fake-tncc.py fake-gp-server.py dist_check_SCRIPTS = autocompletion TESTS = autocompletion dist_check_SCRIPTS += dtls-psk sigterm if HAVE_NETNS TESTS += dtls-psk sigterm endif dist_check_SCRIPTS += ppp-over-tls ppp-over-tls-sync if TEST_PPP TESTS += ppp-over-tls ppp-over-tls-sync endif dist_check_SCRIPTS += auth-username-pass auth-certificate auth-nonascii cert-fingerprint \ id-test obsolete-server-crypto pfs auth-swtpm auth-hwtpm fortinet-auth-and-config \ f5-auth-and-config juniper-auth juniper-sso-auth gp-auth-and-config auth-pkcs11 if HAVE_CWRAP TESTS += auth-username-pass auth-certificate auth-nonascii cert-fingerprint id-test \ obsolete-server-crypto pfs if TEST_SWTPM TESTS += auth-swtpm # The rules for swtpm-perm.state are not invoked during normal builds since # the files are already present in git. auth-swtpm: swtpm-perm.state endif if TEST_HWTPM # This is only invoked *manually* with 'make TESTS=auth-hwtpm check'. TESTS += auth-hwtpm # These files are generated locally against the real TPM. auth-hwtpm: $(HWTPM_CERTS) $(HWTPM_KEYS) endif if HAVE_PYTHON36_FLASK TESTS += fortinet-auth-and-config f5-auth-and-config juniper-auth juniper-sso-auth gp-auth-and-config endif if TEST_PKCS11 TESTS += auth-pkcs11 PKCS11_TOKENS = openconnect-test openconnect-test1 PKCS11_KEYS = object=RSA id=%01 # Neither GnuTLS or libp11 support this #PKCS11_KEYS += object=DSA id=%02 PKCS11_KEYS += object=EC id=%03 if OPENCONNECT_GNUTLS # We fail test2 because PKCS11_enumerate_certs() still doesn't seem to return # the certs after we log in. Perhaps it's cached the results? PKCS11_TOKENS += openconnect-test2 endif # OPENCONNECT_GNUTLS if OPENCONNECT_OPENSSL # GnuTLS build fails this one: https://gitlab.com/gnutls/gnutls/-/issues/977 PKCS11_TOKENS += openconnect-test3 endif # OPENCONNECT_OPENSSL endif # TEST_PKCS11 endif # HAVE_CWRAP TESTS_ENVIRONMENT = srcdir="$(srcdir)" \ top_builddir="$(top_builddir)" \ key_list="$(USER_KEYS)" \ swtpm_list="$(SWTPM_KEYS)" \ hwtpm_list="$(HWTPM_KEYS)" \ SWTPM="$(SWTPM)" \ SWTPM_IOCTL="$(SWTPM_IOCTL)" \ pkcs11_keys="$(PKCS11_KEYS)" \ pkcs11_tokens="$(PKCS11_TOKENS)" \ EXEEXT=$(EXEEXT) \ LSAN_OPTIONS=$(srcdir)/suppressions=suppressions.lsan C_TESTS = lzstest seqtest buftest if OPENCONNECT_WIN32 C_TESTS += list-taps endif if CHECK_DTLS C_TESTS += bad_dtls_test bad_dtls_test_SOURCES = bad_dtls_test.c bad_dtls_test_CFLAGS = $(OPENSSL_CFLAGS) bad_dtls_test_LDADD = $(OPENSSL_LIBS) if DTLS_XFAIL XFAIL_TESTS = bad_dtls_test endif endif TESTS += $(C_TESTS) noinst_PROGRAMS = $(C_TESTS) serverhash serverhash_SOURCES = serverhash.c serverhash_LDADD = ../libopenconnect.la $(SSL_LIBS) # Nothing actually *depends* on the cert files; they are created manually # and considered part of the sources, committed to the git tree. But for # reference, the commands used to generate them are here... keyfiles: $(USER_KEYS) $(USER_CERTS) $(certsdir)/server-cert.pem OPENSSL = openssl OSSLARGS = -in $< -out $@ -passout pass:password OSSLARGSP12 = -inkey $< -out $@ -in $${KEYFILE%-key-pkcs8.pem}-cert.pem -passout pass:$${PASSWORD%-password} # Strictly speaking this is only PKCS#1 for RSA. For EC it's probably # best described as RFC5915§4, and no idea what defines it for DSA. $(certsdir)/user-key-pkcs1.pem: $(OPENSSL) genrsa -out $@ 2432 $(certsdir)/dsa-key-pkcs1.pem: $(OPENSSL) dsaparam -genkey 1024 -out $@ $(certsdir)/ec-key-pkcs1.pem: $(OPENSSL) ecparam -genkey -out $@ -name prime256v1 # Even in OpenSSL 1.1, this creates the old encrypted PEM format. $(certsdir)/user-key-pkcs1-aes128.pem: | certs/user-key-pkcs1.pem $(OPENSSL) rsa $(OSSLARGS) -aes128 $(certsdir)/dsa-key-pkcs1-aes128.pem: | certs/dsa-key-pkcs1.pem $(OPENSSL) dsa $(OSSLARGS) -aes128 $(certsdir)/ec-key-pkcs1-aes128.pem: | certs/ec-key-pkcs1.pem $(OPENSSL) ec $(OSSLARGS) -aes128 # Plain unencrypted PKCS#8 %-key-pkcs8.pem: | %-key-pkcs1.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -nocrypt %-key-pkcs8-pbes1-sha1-3des.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithSHA1And3-KeyTripleDES-CBC # This is the default created by OpenSSL 1.0.2 with -topk8 %-key-pkcs8-pbes1-md5-des.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithMD5AndDES-CBC %-key-pkcs8-pbes2-sha1.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA1 # This is the default created by OpenSSL 1.1 with -topk8 %-key-pkcs8-pbes2-sha256.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA256 %-key-sha1-3des-sha1.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-sha1-3des-sha256.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-md5-des-sha1.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithMD5AndDES-CBC -keypbe pbeWithMD5AndDES-CBC %-key-aes256-cbc-sha256.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # NB: Needs OpenSSL 1.1 or newer %-key-nonascii-password.p12: | %-key-pkcs8.pem %-cert.pem LC_ALL=en_GB.UTF-8 PASSWORD="$$(cat $(srcdir)/pass-UTF-8)" KEYFILE="$<" ; \ $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # This one makes GnuTLS behave strangely... %-key-aes256-cbc-md5-des-sha256.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe pbeWithMD5AndDES-CBC %.der: | %.pem sed -e '0,/^-----BEGIN.*KEY-----/d' -e '/^-----END.*KEY-----/,$$d' $< | base64 -d > $@ $(certsdir)/server-cert.pem: $(OPENSSL) req -new -config $(srcdir)/configs/server-cert.prm -key $(certsdir)/server-key.pem -out $@.csr $(OPENSSL) x509 -days 3650 -CA $(certsdir)/ca.pem -CAkey $(certsdir)/ca-key.pem \ -extfile $(srcdir)/configs/server-cert.prm -extensions req_EXT \ -set_serial $(shell date +%s) -req -out $@ -in $@.csr # Like most of the rules to generate keys/certs, the swtpm rules are # dormant for most builds; they were used once to generate the state # which is committed to git and used thereafter (just like the cert # files and the SoftHSM state). The rules here are to ensure that # what gets committed was reproducible, and to document how it was # created. So for swtpm, we need to: # # • Start a new swtpm # • Import/create the keys # • Generate CSRs from the created keys # • Extract the swtpm state to 'swtpm-perm.state' # • Shut down the swtpm # # These rules attempt to do that, keeping variants of the existing # CSR/cert generation rules for the middle parts. SWTPM_TMPDIR := $(shell echo swtpm.$$$$.tmp) SWTPM_PRELOAD := LD_PRELOAD=libsocket_wrapper.so SOCKET_WRAPPER_DIR=$(SWTPM_TMPDIR) \ TPM_INTERFACE_TYPE=socsim TPM2TSSENGINE_TCTI=swtpm SWTPM_IOCTL_RUN = $(SWTPM_PRELOAD) $(SWTPM_IOCTL) --tcp 127.0.0.1:2322 # This isn't safe for parallel builds, as it is invoked in mulltiple # places and has an obvious race condition. However, this is only for # the one-time setup of the persistent swtpm state, and I can remember # not to use 'make -j' that one time. Fixing it to be a proper # separate 'tpm-started' phony rule without *always* having that rule # executed even when the certs/keys already exist is beyond me today. START_SWTPM := \ mkdir -p $(SWTPM_TMPDIR); \ if ! $(SWTPM_IOCTL_RUN) -g; then \ if [ -r $(srcdir)/swtpm-perm.state ]; then \ $(SWTPM_PRELOAD) $(SWTPM) socket --tpm2 \ --server type=tcp,port=2321 --ctrl type=tcp,port=2322 \ --tpmstate dir=`pwd`/$(SWTPM_TMPDIR) -d; \ sleep 0.5; \ $(SWTPM_IOCTL_RUN) --load permanent $(srcdir)/swtpm-perm.state; \ $(SWTPM_IOCTL_RUN) -i; \ $(SWTPM_IOCTL_RUN) -s; \ fi; \ $(SWTPM_PRELOAD) $(SWTPM) socket --tpm2 --server type=tcp,port=2321 --ctrl type=tcp,port=2322 \ --tpmstate dir=`pwd`/$(SWTPM_TMPDIR) --flags not-need-init,startup-clear -d; \ fi swtpm-perm.state: | $(SWTPM_KEYS) $(SWTPM_CERTS) $(SWTPM_IOCTL_RUN) --save permanent $@ $(SWTPM_IOCTL_RUN) -s rm -rf $(SWTPM_TMPDIR) # This is an *import* of the normal ec key, hence having same prefix 'ec-'. # Separate fileames for swtpm (which is shipped with OpenConnect sources) # vs local real TPM. Like many of the key/cert rules here, the swtpm rule # is dormant and should never really be invoked for normal users once the # files are committed to git. Which is why it doesn't matter that it needs # the swtpm to have been started manually. $(certsdir)/ec-key-swtpm.pem: | certs/ec-key-pkcs8.pem $(START_SWTPM) $(SWTPM_PRELOAD) $(CREATE_TPM2_KEY) -w $< $@ ec-key-hwtpm.pem: | certs/ec-key-pkcs8.pem TPM_INTERFACE_TYPE=dev $(CREATE_TPM2_KEY) -w $< $@ # These are *different* keys generated inside the TPM, hence a different prefix. $(certsdir)/swtpm-ec-key-tpm.pem: $(START_SWTPM) $(SWTPM_PRELOAD) $(TPM2TSS_GENKEY) -t swtpm -a ecdsa $@ $(certsdir)/swtpm-ec-p384-key-tpm.pem: $(START_SWTPM) $(SWTPM_PRELOAD) $(TPM2TSS_GENKEY) -t swtpm -c nist_p384 -a ecdsa $@ hwtpm-ec-key-tpm.pem: $(TPM2TSS_GENKEY) -t device -a ecdsa $@ $(certsdir)/swtpm-rsa-key-tpm.pem: $(START_SWTPM) $(SWTPM_PRELOAD) $(TPM2TSS_GENKEY) -t swtpm -a rsa -s 2048 $@ hwtpm-rsa-key-tpm.pem: $(TPM2TSS_GENKEY) -t device -a rsa -s 2048 $@ $(certsdir)/swtpm-%-cert.csr: | $(certsdir)/swtpm-%-key-tpm.pem $(SWTPM_PRELOAD) $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -engine tpm2tss -keyform ENGINE -key $< -out $@ hwtpm-%-cert.csr: | hwtpm-%-key-tpm.pem TPM2TSSENGINE_TCTI=device $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -engine tpm2tss -keyform ENGINE -key $< -out $@ %-cert.csr: | %-key-hwtpm.pem TPM2TSSENGINE_TCTI=device $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -engine tpm2tss -keyform ENGINE -key $< -out $@ %-cert.csr: | %-key-pkcs8.pem $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -key $< -out $@ %.pem: | %.csr $(OPENSSL) x509 -days 3650 -CA $(certsdir)/ca.pem -CAkey $(certsdir)/ca-key.pem \ -set_serial $(shell date +%s) -req -out $@ -in $< SHM2_UTIL=SOFTHSM2_CONF=softhsm2.conf softhsm2-util P11TOOL=SOFTHSM2_CONF=softhsm2.conf p11tool # Nice and simple: Certs visible without login, public keys present in token softhsm-setup0: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test \ --so-pin 12345678 --pin 1234 $(SHM2_UTIL) --token openconnect-test --pin 1234 --import $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --label RSA --id 01 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --token openconnect-test --pin 1234 --import $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --label DSA --id 02 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --token openconnect-test --pin 1234 --import $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --label EC --id 03 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" # Second test: Import keys with GnuTLS so public key is absent softhsm-setup1: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test1 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" # Third test: CKA_PRIVATE on certificates softhsm-setup2: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test2 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" # Fourth test: token lacks CKF_LOGIN_REQUIRED (#123) softhsm-setup3: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test3 \ --so-pin 12345678 --pin 1234 # Remove the CKF_LOGIN_REQUIRED flag TOKOBJ=$$(grep -l openconnect-test3 $(srcdir)/softhsm/*/token.object); \ if [ -n "$$TOKOBJ" ] && od -t x1 $$TOKOBJ | grep -q '^0000160.* 04 2d$$'; then \ echo -en \\x29 | dd bs=1 count=1 conv=notrunc seek=127 of=$$TOKOBJ; \ else \ echo "Token file not understood"; \ exit 1; \ fi $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test3;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test3;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test3;pin-value=1234" if DISABLE_ASAN_BROKEN_TESTS TESTS_ENVIRONMENT += DISABLE_ASAN_BROKEN_TESTS=1 else TESTS_ENVIRONMENT += DISABLE_ASAN_BROKEN_TESTS=0 endif openconnect-8.20/tests/Makefile.in0000644000076400007640000020034014204505636020743 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.2 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2020 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ @OPENCONNECT_OPENSSL_TRUE@am__append_1 = $(OSSL_KEYS) @TEST_DSA_TRUE@am__append_2 = $(DSA_KEYS) # Importing the existing EC key (not DSA since it's ancient and not RSA because # the TPM probably can't cope with 2432-bit keys). @TEST_TPM2_IMPORT_TRUE@am__append_3 = ec-key-hwtpm.pem # Creating new keys in TPM. @TEST_TPM2_CREATE_TRUE@am__append_4 = hwtpm-ec-key-tpm.pem hwtpm-rsa-key-tpm.pem @TEST_TPM2_CREATE_TRUE@am__append_5 = hwtpm-ec-cert.pem hwtpm-rsa-cert.pem TESTS = autocompletion $(am__append_6) $(am__append_7) $(am__append_8) \ $(am__append_9) $(am__append_10) $(am__append_11) \ $(am__append_12) $(am__EXEEXT_3) @HAVE_NETNS_TRUE@am__append_6 = dtls-psk sigterm @TEST_PPP_TRUE@am__append_7 = ppp-over-tls ppp-over-tls-sync @HAVE_CWRAP_TRUE@am__append_8 = auth-username-pass auth-certificate auth-nonascii cert-fingerprint id-test \ @HAVE_CWRAP_TRUE@ obsolete-server-crypto pfs @HAVE_CWRAP_TRUE@@TEST_SWTPM_TRUE@am__append_9 = auth-swtpm # This is only invoked *manually* with 'make TESTS=auth-hwtpm check'. @HAVE_CWRAP_TRUE@@TEST_HWTPM_TRUE@am__append_10 = auth-hwtpm @HAVE_CWRAP_TRUE@@HAVE_PYTHON36_FLASK_TRUE@am__append_11 = fortinet-auth-and-config f5-auth-and-config juniper-auth juniper-sso-auth gp-auth-and-config @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@am__append_12 = auth-pkcs11 # We fail test2 because PKCS11_enumerate_certs() still doesn't seem to return # the certs after we log in. Perhaps it's cached the results? @HAVE_CWRAP_TRUE@@OPENCONNECT_GNUTLS_TRUE@@TEST_PKCS11_TRUE@am__append_13 = openconnect-test2 # GnuTLS build fails this one: https://gitlab.com/gnutls/gnutls/-/issues/977 @HAVE_CWRAP_TRUE@@OPENCONNECT_OPENSSL_TRUE@@TEST_PKCS11_TRUE@am__append_14 = openconnect-test3 @OPENCONNECT_WIN32_TRUE@am__append_15 = list-taps @CHECK_DTLS_TRUE@am__append_16 = bad_dtls_test @CHECK_DTLS_TRUE@@DTLS_XFAIL_TRUE@XFAIL_TESTS = \ @CHECK_DTLS_TRUE@@DTLS_XFAIL_TRUE@ bad_dtls_test$(EXEEXT) noinst_PROGRAMS = $(am__EXEEXT_3) serverhash$(EXEEXT) @DISABLE_ASAN_BROKEN_TESTS_TRUE@am__append_17 = DISABLE_ASAN_BROKEN_TESTS=1 @DISABLE_ASAN_BROKEN_TESTS_FALSE@am__append_18 = DISABLE_ASAN_BROKEN_TESTS=0 subdir = tests ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(dist_check_SCRIPTS) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = softhsm2.conf CONFIG_CLEAN_VPATH_FILES = @OPENCONNECT_WIN32_TRUE@am__EXEEXT_1 = list-taps$(EXEEXT) @CHECK_DTLS_TRUE@am__EXEEXT_2 = bad_dtls_test$(EXEEXT) am__EXEEXT_3 = lzstest$(EXEEXT) seqtest$(EXEEXT) buftest$(EXEEXT) \ $(am__EXEEXT_1) $(am__EXEEXT_2) PROGRAMS = $(noinst_PROGRAMS) am__bad_dtls_test_SOURCES_DIST = bad_dtls_test.c @CHECK_DTLS_TRUE@am_bad_dtls_test_OBJECTS = \ @CHECK_DTLS_TRUE@ bad_dtls_test-bad_dtls_test.$(OBJEXT) bad_dtls_test_OBJECTS = $(am_bad_dtls_test_OBJECTS) am__DEPENDENCIES_1 = @CHECK_DTLS_TRUE@bad_dtls_test_DEPENDENCIES = $(am__DEPENDENCIES_1) AM_V_lt = $(am__v_lt_@AM_V@) am__v_lt_ = $(am__v_lt_@AM_DEFAULT_V@) am__v_lt_0 = --silent am__v_lt_1 = bad_dtls_test_LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(bad_dtls_test_CFLAGS) \ $(CFLAGS) $(AM_LDFLAGS) $(LDFLAGS) -o $@ buftest_SOURCES = buftest.c buftest_OBJECTS = buftest.$(OBJEXT) buftest_LDADD = $(LDADD) list_taps_SOURCES = list-taps.c list_taps_OBJECTS = list-taps.$(OBJEXT) list_taps_LDADD = $(LDADD) lzstest_SOURCES = lzstest.c lzstest_OBJECTS = lzstest.$(OBJEXT) lzstest_LDADD = $(LDADD) seqtest_SOURCES = seqtest.c seqtest_OBJECTS = seqtest.$(OBJEXT) seqtest_LDADD = $(LDADD) am_serverhash_OBJECTS = serverhash.$(OBJEXT) serverhash_OBJECTS = $(am_serverhash_OBJECTS) serverhash_DEPENDENCIES = ../libopenconnect.la $(am__DEPENDENCIES_1) AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = DEFAULT_INCLUDES = -I.@am__isrc@ -I$(top_builddir) depcomp = $(SHELL) $(top_srcdir)/depcomp am__maybe_remake_depfiles = depfiles am__depfiles_remade = ./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po \ ./$(DEPDIR)/buftest.Po ./$(DEPDIR)/list-taps.Po \ ./$(DEPDIR)/lzstest.Po ./$(DEPDIR)/seqtest.Po \ ./$(DEPDIR)/serverhash.Po am__mv = mv -f COMPILE = $(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) \ $(CPPFLAGS) $(AM_CFLAGS) $(CFLAGS) LTCOMPILE = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=compile $(CC) $(DEFS) \ $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) \ $(AM_CFLAGS) $(CFLAGS) AM_V_CC = $(am__v_CC_@AM_V@) am__v_CC_ = $(am__v_CC_@AM_DEFAULT_V@) am__v_CC_0 = @echo " CC " $@; am__v_CC_1 = CCLD = $(CC) LINK = $(LIBTOOL) $(AM_V_lt) --tag=CC $(AM_LIBTOOLFLAGS) \ $(LIBTOOLFLAGS) --mode=link $(CCLD) $(AM_CFLAGS) $(CFLAGS) \ $(AM_LDFLAGS) $(LDFLAGS) -o $@ AM_V_CCLD = $(am__v_CCLD_@AM_V@) am__v_CCLD_ = $(am__v_CCLD_@AM_DEFAULT_V@) am__v_CCLD_0 = @echo " CCLD " $@; am__v_CCLD_1 = SOURCES = $(bad_dtls_test_SOURCES) buftest.c list-taps.c lzstest.c \ seqtest.c $(serverhash_SOURCES) DIST_SOURCES = $(am__bad_dtls_test_SOURCES_DIST) buftest.c list-taps.c \ lzstest.c seqtest.c $(serverhash_SOURCES) am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags am__tty_colors_dummy = \ mgn= red= grn= lgn= blu= brg= std=; \ am__color_tests=no am__tty_colors = { \ $(am__tty_colors_dummy); \ if test "X$(AM_COLOR_TESTS)" = Xno; then \ am__color_tests=no; \ elif test "X$(AM_COLOR_TESTS)" = Xalways; then \ am__color_tests=yes; \ elif test "X$$TERM" != Xdumb && { test -t 1; } 2>/dev/null; then \ am__color_tests=yes; \ fi; \ if test $$am__color_tests = yes; then \ red=''; \ grn=''; \ lgn=''; \ blu=''; \ mgn=''; \ brg=''; \ std=''; \ fi; \ } am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__recheck_rx = ^[ ]*:recheck:[ ]* am__global_test_result_rx = ^[ ]*:global-test-result:[ ]* am__copy_in_global_log_rx = ^[ ]*:copy-in-global-log:[ ]* # A command that, given a newline-separated list of test names on the # standard input, print the name of the tests that are to be re-run # upon "make recheck". am__list_recheck_tests = $(AWK) '{ \ recheck = 1; \ while ((rc = (getline line < ($$0 ".trs"))) != 0) \ { \ if (rc < 0) \ { \ if ((getline line2 < ($$0 ".log")) < 0) \ recheck = 0; \ break; \ } \ else if (line ~ /$(am__recheck_rx)[nN][Oo]/) \ { \ recheck = 0; \ break; \ } \ else if (line ~ /$(am__recheck_rx)[yY][eE][sS]/) \ { \ break; \ } \ }; \ if (recheck) \ print $$0; \ close ($$0 ".trs"); \ close ($$0 ".log"); \ }' # A command that, given a newline-separated list of test names on the # standard input, create the global log from their .trs and .log files. am__create_global_log = $(AWK) ' \ function fatal(msg) \ { \ print "fatal: making $@: " msg | "cat >&2"; \ exit 1; \ } \ function rst_section(header) \ { \ print header; \ len = length(header); \ for (i = 1; i <= len; i = i + 1) \ printf "="; \ printf "\n\n"; \ } \ { \ copy_in_global_log = 1; \ global_test_result = "RUN"; \ while ((rc = (getline line < ($$0 ".trs"))) != 0) \ { \ if (rc < 0) \ fatal("failed to read from " $$0 ".trs"); \ if (line ~ /$(am__global_test_result_rx)/) \ { \ sub("$(am__global_test_result_rx)", "", line); \ sub("[ ]*$$", "", line); \ global_test_result = line; \ } \ else if (line ~ /$(am__copy_in_global_log_rx)[nN][oO]/) \ copy_in_global_log = 0; \ }; \ if (copy_in_global_log) \ { \ rst_section(global_test_result ": " $$0); \ while ((rc = (getline line < ($$0 ".log"))) != 0) \ { \ if (rc < 0) \ fatal("failed to read from " $$0 ".log"); \ print line; \ }; \ printf "\n"; \ }; \ close ($$0 ".trs"); \ close ($$0 ".log"); \ }' # Restructured Text title. am__rst_title = { sed 's/.*/ & /;h;s/./=/g;p;x;s/ *$$//;p;g' && echo; } # Solaris 10 'make', and several other traditional 'make' implementations, # pass "-e" to $(SHELL), and POSIX 2008 even requires this. Work around it # by disabling -e (using the XSI extension "set +e") if it's set. am__sh_e_setup = case $$- in *e*) set +e;; esac # Default flags passed to test drivers. am__common_driver_flags = \ --color-tests "$$am__color_tests" \ --enable-hard-errors "$$am__enable_hard_errors" \ --expect-failure "$$am__expect_failure" # To be inserted before the command running the test. Creates the # directory for the log if needed. Stores in $dir the directory # containing $f, in $tst the test, in $log the log. Executes the # developer- defined test setup AM_TESTS_ENVIRONMENT (if any), and # passes TESTS_ENVIRONMENT. Set up options for the wrapper that # will run the test scripts (or their associated LOG_COMPILER, if # thy have one). am__check_pre = \ $(am__sh_e_setup); \ $(am__vpath_adj_setup) $(am__vpath_adj) \ $(am__tty_colors); \ srcdir=$(srcdir); export srcdir; \ case "$@" in \ */*) am__odir=`echo "./$@" | sed 's|/[^/]*$$||'`;; \ *) am__odir=.;; \ esac; \ test "x$$am__odir" = x"." || test -d "$$am__odir" \ || $(MKDIR_P) "$$am__odir" || exit $$?; \ if test -f "./$$f"; then dir=./; \ elif test -f "$$f"; then dir=; \ else dir="$(srcdir)/"; fi; \ tst=$$dir$$f; log='$@'; \ if test -n '$(DISABLE_HARD_ERRORS)'; then \ am__enable_hard_errors=no; \ else \ am__enable_hard_errors=yes; \ fi; \ case " $(XFAIL_TESTS) " in \ *[\ \ ]$$f[\ \ ]* | *[\ \ ]$$dir$$f[\ \ ]*) \ am__expect_failure=yes;; \ *) \ am__expect_failure=no;; \ esac; \ $(AM_TESTS_ENVIRONMENT) $(TESTS_ENVIRONMENT) # A shell command to get the names of the tests scripts with any registered # extension removed (i.e., equivalently, the names of the test logs, with # the '.log' extension removed). The result is saved in the shell variable # '$bases'. This honors runtime overriding of TESTS and TEST_LOGS. Sadly, # we cannot use something simpler, involving e.g., "$(TEST_LOGS:.log=)", # since that might cause problem with VPATH rewrites for suffix-less tests. # See also 'test-harness-vpath-rewrite.sh' and 'test-trs-basic.sh'. am__set_TESTS_bases = \ bases='$(TEST_LOGS)'; \ bases=`for i in $$bases; do echo $$i; done | sed 's/\.log$$//'`; \ bases=`echo $$bases` RECHECK_LOGS = $(TEST_LOGS) AM_RECURSIVE_TARGETS = check recheck TEST_SUITE_LOG = test-suite.log TEST_EXTENSIONS = @EXEEXT@ .test LOG_DRIVER = $(SHELL) $(top_srcdir)/test-driver LOG_COMPILE = $(LOG_COMPILER) $(AM_LOG_FLAGS) $(LOG_FLAGS) am__set_b = \ case '$@' in \ */*) \ case '$*' in \ */*) b='$*';; \ *) b=`echo '$@' | sed 's/\.log$$//'`; \ esac;; \ *) \ b='$*';; \ esac am__test_logs1 = $(TESTS:=.log) am__test_logs2 = $(am__test_logs1:@EXEEXT@.log=.log) TEST_LOGS = $(am__test_logs2:.test.log=.log) TEST_LOG_DRIVER = $(SHELL) $(top_srcdir)/test-driver TEST_LOG_COMPILE = $(TEST_LOG_COMPILER) $(AM_TEST_LOG_FLAGS) \ $(TEST_LOG_FLAGS) am__DIST_COMMON = $(srcdir)/Makefile.in $(srcdir)/softhsm2.conf.in \ $(top_srcdir)/depcomp $(top_srcdir)/test-driver DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CREATE_TPM2_KEY = @CREATE_TPM2_KEY@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ JSON_CFLAGS = @JSON_CFLAGS@ JSON_LIBS = @JSON_LIBS@ JSON_PC = @JSON_PC@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAKENSIS = @MAKENSIS@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PPPD = @PPPD@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SOCAT = @SOCAT@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SWTPM = @SWTPM@ SWTPM_IOCTL = @SWTPM_IOCTL@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_SETENV = @SYMVER_WIN32_SETENV@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2TSS_GENKEY = @TPM2TSS_GENKEY@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TPM2_STARTUP = @TPM2_STARTUP@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSSTARTUP = @TSSTARTUP@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ WINTUN_ARCH = @WINTUN_ARCH@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ have_curl = @have_curl@ have_unzip = @have_unzip@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ runstatedir = @runstatedir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ certsdir = $(srcdir)/certs USER_KEYS = $(certsdir)/user-key-pkcs1.pem \ $(certsdir)/user-key-pkcs1.der \ $(certsdir)/user-key-pkcs1-aes128.pem \ $(certsdir)/user-key-pkcs8.pem $(certsdir)/user-key-pkcs8.der \ $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.pem \ $(certsdir)/user-key-pkcs8-pbes1-sha1-3des.der \ $(certsdir)/user-key-pkcs8-pbes2-sha1.pem \ $(certsdir)/user-key-pkcs8-pbes2-sha1.der \ $(certsdir)/user-key-sha1-3des-sha1.p12 \ $(certsdir)/user-key-sha1-3des-sha256.p12 \ $(certsdir)/user-key-aes256-cbc-sha256.p12 $(am__append_1) \ $(am__append_2) $(certsdir)/ec-key-pkcs1.pem \ $(certsdir)/ec-key-pkcs1.der \ $(certsdir)/ec-key-pkcs1-aes128.pem \ $(certsdir)/ec-key-pkcs8.pem $(certsdir)/ec-key-pkcs8.der \ $(certsdir)/ec-key-pkcs8-pbes2-sha1.pem \ $(certsdir)/ec-key-pkcs8-pbes2-sha1.der \ $(certsdir)/ec-key-aes256-cbc-sha256.p12 # We know GnuTLS doesn't support these for now. https://bugzilla.redhat.com/1369484 OSSL_KEYS = \ $(certsdir)/user-key-md5-des-sha1.p12 $(certsdir)/user-key-aes256-cbc-md5-des-sha256.p12 \ $(certsdir)/user-key-pkcs8-pbes2-sha256.pem $(certsdir)/user-key-pkcs8-pbes2-sha256.der \ $(certsdir)/user-key-pkcs8-pbes1-md5-des.pem $(certsdir)/user-key-pkcs8-pbes1-md5-des.der DSA_KEYS = \ $(certsdir)/dsa-key-pkcs1.pem $(certsdir)/dsa-key-pkcs1.der \ $(certsdir)/dsa-key-pkcs1-aes128.pem \ $(certsdir)/dsa-key-pkcs8.pem $(certsdir)/dsa-key-pkcs8.der \ $(certsdir)/dsa-key-pkcs8-pbes2-sha1.pem $(certsdir)/dsa-key-pkcs8-pbes2-sha1.der \ $(certsdir)/dsa-key-aes256-cbc-sha256.p12 SWTPM_KEYS = $(certsdir)/ec-key-swtpm.pem $(certsdir)/swtpm-rsa-key-tpm.pem \ $(certsdir)/swtpm-ec-key-tpm.pem $(certsdir)/swtpm-ec-p384-key-tpm.pem SWTPM_CERTS = $(certsdir)/swtpm-ec-cert.pem $(certsdir)/swtpm-rsa-cert.pem \ $(certsdir)/swtpm-ec-p384-cert.pem HWTPM_KEYS = $(am__append_3) $(am__append_4) HWTPM_CERTS = $(am__append_5) USER_CERTS = $(certsdir)/user-cert.pem $(certsdir)/dsa-cert.pem $(certsdir)/ec-cert.pem EXTRA_DIST = certs/ca.pem certs/ca-key.pem certs/user-cert.pem $(USER_KEYS) $(USER_CERTS) \ $(OSSL_KEYS) $(DSA_KEYS) $(certsdir)/user-key-nonascii-password.p12 \ pass-UTF-8 pass-ISO8859-2 $(SWTPM_KEYS) $(SWTPM_CERTS) swtpm-perm.state \ certs/server-cert.pem certs/server-key.pem configs/test1.passwd \ common.sh configs/test-user-cert.config.in \ configs/test-user-pass.config.in \ configs/test-obsolete-server-crypto.config \ configs/user-cert.prm configs/server-cert.prm \ softhsm2.conf.in softhsm ns.sh configs/test-dtls-psk.config \ scripts/vpnc-script scripts/vpnc-script-detect-disconnect \ suppressions.lsan fake-fortinet-server.py fake-f5-server.py fake-juniper-server.py \ fake-juniper-sso-server.py fake-tncc.py fake-gp-server.py dist_check_SCRIPTS = autocompletion dtls-psk sigterm ppp-over-tls \ ppp-over-tls-sync auth-username-pass auth-certificate \ auth-nonascii cert-fingerprint id-test obsolete-server-crypto \ pfs auth-swtpm auth-hwtpm fortinet-auth-and-config \ f5-auth-and-config juniper-auth juniper-sso-auth \ gp-auth-and-config auth-pkcs11 @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@PKCS11_TOKENS = openconnect-test \ @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@ openconnect-test1 \ @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@ $(am__append_13) \ @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@ $(am__append_14) # Neither GnuTLS or libp11 support this #PKCS11_KEYS += object=DSA id=%02 @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@PKCS11_KEYS = object=RSA id=%01 \ @HAVE_CWRAP_TRUE@@TEST_PKCS11_TRUE@ object=EC id=%03 TESTS_ENVIRONMENT = srcdir="$(srcdir)" top_builddir="$(top_builddir)" \ key_list="$(USER_KEYS)" swtpm_list="$(SWTPM_KEYS)" \ hwtpm_list="$(HWTPM_KEYS)" SWTPM="$(SWTPM)" \ SWTPM_IOCTL="$(SWTPM_IOCTL)" pkcs11_keys="$(PKCS11_KEYS)" \ pkcs11_tokens="$(PKCS11_TOKENS)" EXEEXT=$(EXEEXT) \ LSAN_OPTIONS=$(srcdir)/suppressions=suppressions.lsan \ $(am__append_17) $(am__append_18) C_TESTS = lzstest seqtest buftest $(am__append_15) $(am__append_16) @CHECK_DTLS_TRUE@bad_dtls_test_SOURCES = bad_dtls_test.c @CHECK_DTLS_TRUE@bad_dtls_test_CFLAGS = $(OPENSSL_CFLAGS) @CHECK_DTLS_TRUE@bad_dtls_test_LDADD = $(OPENSSL_LIBS) serverhash_SOURCES = serverhash.c serverhash_LDADD = ../libopenconnect.la $(SSL_LIBS) OPENSSL = openssl OSSLARGS = -in $< -out $@ -passout pass:password OSSLARGSP12 = -inkey $< -out $@ -in $${KEYFILE%-key-pkcs8.pem}-cert.pem -passout pass:$${PASSWORD%-password} # Like most of the rules to generate keys/certs, the swtpm rules are # dormant for most builds; they were used once to generate the state # which is committed to git and used thereafter (just like the cert # files and the SoftHSM state). The rules here are to ensure that # what gets committed was reproducible, and to document how it was # created. So for swtpm, we need to: # # • Start a new swtpm # • Import/create the keys # • Generate CSRs from the created keys # • Extract the swtpm state to 'swtpm-perm.state' # • Shut down the swtpm # # These rules attempt to do that, keeping variants of the existing # CSR/cert generation rules for the middle parts. SWTPM_TMPDIR := $(shell echo swtpm.$$$$.tmp) SWTPM_PRELOAD := LD_PRELOAD=libsocket_wrapper.so SOCKET_WRAPPER_DIR=$(SWTPM_TMPDIR) \ TPM_INTERFACE_TYPE=socsim TPM2TSSENGINE_TCTI=swtpm SWTPM_IOCTL_RUN = $(SWTPM_PRELOAD) $(SWTPM_IOCTL) --tcp 127.0.0.1:2322 # This isn't safe for parallel builds, as it is invoked in mulltiple # places and has an obvious race condition. However, this is only for # the one-time setup of the persistent swtpm state, and I can remember # not to use 'make -j' that one time. Fixing it to be a proper # separate 'tpm-started' phony rule without *always* having that rule # executed even when the certs/keys already exist is beyond me today. START_SWTPM := \ mkdir -p $(SWTPM_TMPDIR); \ if ! $(SWTPM_IOCTL_RUN) -g; then \ if [ -r $(srcdir)/swtpm-perm.state ]; then \ $(SWTPM_PRELOAD) $(SWTPM) socket --tpm2 \ --server type=tcp,port=2321 --ctrl type=tcp,port=2322 \ --tpmstate dir=`pwd`/$(SWTPM_TMPDIR) -d; \ sleep 0.5; \ $(SWTPM_IOCTL_RUN) --load permanent $(srcdir)/swtpm-perm.state; \ $(SWTPM_IOCTL_RUN) -i; \ $(SWTPM_IOCTL_RUN) -s; \ fi; \ $(SWTPM_PRELOAD) $(SWTPM) socket --tpm2 --server type=tcp,port=2321 --ctrl type=tcp,port=2322 \ --tpmstate dir=`pwd`/$(SWTPM_TMPDIR) --flags not-need-init,startup-clear -d; \ fi SHM2_UTIL = SOFTHSM2_CONF=softhsm2.conf softhsm2-util P11TOOL = SOFTHSM2_CONF=softhsm2.conf p11tool all: all-am .SUFFIXES: .SUFFIXES: .c .lo .log .o .obj .test .test$(EXEEXT) .trs $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign tests/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign tests/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): softhsm2.conf: $(top_builddir)/config.status $(srcdir)/softhsm2.conf.in cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ clean-noinstPROGRAMS: @list='$(noinst_PROGRAMS)'; test -n "$$list" || exit 0; \ echo " rm -f" $$list; \ rm -f $$list || exit $$?; \ test -n "$(EXEEXT)" || exit 0; \ list=`for p in $$list; do echo "$$p"; done | sed 's/$(EXEEXT)$$//'`; \ echo " rm -f" $$list; \ rm -f $$list bad_dtls_test$(EXEEXT): $(bad_dtls_test_OBJECTS) $(bad_dtls_test_DEPENDENCIES) $(EXTRA_bad_dtls_test_DEPENDENCIES) @rm -f bad_dtls_test$(EXEEXT) $(AM_V_CCLD)$(bad_dtls_test_LINK) $(bad_dtls_test_OBJECTS) $(bad_dtls_test_LDADD) $(LIBS) buftest$(EXEEXT): $(buftest_OBJECTS) $(buftest_DEPENDENCIES) $(EXTRA_buftest_DEPENDENCIES) @rm -f buftest$(EXEEXT) $(AM_V_CCLD)$(LINK) $(buftest_OBJECTS) $(buftest_LDADD) $(LIBS) list-taps$(EXEEXT): $(list_taps_OBJECTS) $(list_taps_DEPENDENCIES) $(EXTRA_list_taps_DEPENDENCIES) @rm -f list-taps$(EXEEXT) $(AM_V_CCLD)$(LINK) $(list_taps_OBJECTS) $(list_taps_LDADD) $(LIBS) lzstest$(EXEEXT): $(lzstest_OBJECTS) $(lzstest_DEPENDENCIES) $(EXTRA_lzstest_DEPENDENCIES) @rm -f lzstest$(EXEEXT) $(AM_V_CCLD)$(LINK) $(lzstest_OBJECTS) $(lzstest_LDADD) $(LIBS) seqtest$(EXEEXT): $(seqtest_OBJECTS) $(seqtest_DEPENDENCIES) $(EXTRA_seqtest_DEPENDENCIES) @rm -f seqtest$(EXEEXT) $(AM_V_CCLD)$(LINK) $(seqtest_OBJECTS) $(seqtest_LDADD) $(LIBS) serverhash$(EXEEXT): $(serverhash_OBJECTS) $(serverhash_DEPENDENCIES) $(EXTRA_serverhash_DEPENDENCIES) @rm -f serverhash$(EXEEXT) $(AM_V_CCLD)$(LINK) $(serverhash_OBJECTS) $(serverhash_LDADD) $(LIBS) mostlyclean-compile: -rm -f *.$(OBJEXT) distclean-compile: -rm -f *.tab.c @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/buftest.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/list-taps.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/lzstest.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/seqtest.Po@am__quote@ # am--include-marker @AMDEP_TRUE@@am__include@ @am__quote@./$(DEPDIR)/serverhash.Po@am__quote@ # am--include-marker $(am__depfiles_remade): @$(MKDIR_P) $(@D) @echo '# dummy' >$@-t && $(am__mv) $@-t $@ am--depfiles: $(am__depfiles_remade) .c.o: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.o$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ $< &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ $< .c.obj: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.obj$$||'`;\ @am__fastdepCC_TRUE@ $(COMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ `$(CYGPATH_W) '$<'` &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(COMPILE) -c -o $@ `$(CYGPATH_W) '$<'` .c.lo: @am__fastdepCC_TRUE@ $(AM_V_CC)depbase=`echo $@ | sed 's|[^/]*$$|$(DEPDIR)/&|;s|\.lo$$||'`;\ @am__fastdepCC_TRUE@ $(LTCOMPILE) -MT $@ -MD -MP -MF $$depbase.Tpo -c -o $@ $< &&\ @am__fastdepCC_TRUE@ $(am__mv) $$depbase.Tpo $$depbase.Plo @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='$<' object='$@' libtool=yes @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(LTCOMPILE) -c -o $@ $< bad_dtls_test-bad_dtls_test.o: bad_dtls_test.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -MT bad_dtls_test-bad_dtls_test.o -MD -MP -MF $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo -c -o bad_dtls_test-bad_dtls_test.o `test -f 'bad_dtls_test.c' || echo '$(srcdir)/'`bad_dtls_test.c @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo $(DEPDIR)/bad_dtls_test-bad_dtls_test.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='bad_dtls_test.c' object='bad_dtls_test-bad_dtls_test.o' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -c -o bad_dtls_test-bad_dtls_test.o `test -f 'bad_dtls_test.c' || echo '$(srcdir)/'`bad_dtls_test.c bad_dtls_test-bad_dtls_test.obj: bad_dtls_test.c @am__fastdepCC_TRUE@ $(AM_V_CC)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -MT bad_dtls_test-bad_dtls_test.obj -MD -MP -MF $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo -c -o bad_dtls_test-bad_dtls_test.obj `if test -f 'bad_dtls_test.c'; then $(CYGPATH_W) 'bad_dtls_test.c'; else $(CYGPATH_W) '$(srcdir)/bad_dtls_test.c'; fi` @am__fastdepCC_TRUE@ $(AM_V_at)$(am__mv) $(DEPDIR)/bad_dtls_test-bad_dtls_test.Tpo $(DEPDIR)/bad_dtls_test-bad_dtls_test.Po @AMDEP_TRUE@@am__fastdepCC_FALSE@ $(AM_V_CC)source='bad_dtls_test.c' object='bad_dtls_test-bad_dtls_test.obj' libtool=no @AMDEPBACKSLASH@ @AMDEP_TRUE@@am__fastdepCC_FALSE@ DEPDIR=$(DEPDIR) $(CCDEPMODE) $(depcomp) @AMDEPBACKSLASH@ @am__fastdepCC_FALSE@ $(AM_V_CC@am__nodep@)$(CC) $(DEFS) $(DEFAULT_INCLUDES) $(INCLUDES) $(AM_CPPFLAGS) $(CPPFLAGS) $(bad_dtls_test_CFLAGS) $(CFLAGS) -c -o bad_dtls_test-bad_dtls_test.obj `if test -f 'bad_dtls_test.c'; then $(CYGPATH_W) 'bad_dtls_test.c'; else $(CYGPATH_W) '$(srcdir)/bad_dtls_test.c'; fi` mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-am TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-am CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-am cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags # Recover from deleted '.trs' file; this should ensure that # "rm -f foo.log; make foo.trs" re-run 'foo.test', and re-create # both 'foo.log' and 'foo.trs'. Break the recipe in two subshells # to avoid problems with "make -n". .log.trs: rm -f $< $@ $(MAKE) $(AM_MAKEFLAGS) $< # Leading 'am--fnord' is there to ensure the list of targets does not # expand to empty, as could happen e.g. with make check TESTS=''. am--fnord $(TEST_LOGS) $(TEST_LOGS:.log=.trs): $(am__force_recheck) am--force-recheck: @: $(TEST_SUITE_LOG): $(TEST_LOGS) @$(am__set_TESTS_bases); \ am__f_ok () { test -f "$$1" && test -r "$$1"; }; \ redo_bases=`for i in $$bases; do \ am__f_ok $$i.trs && am__f_ok $$i.log || echo $$i; \ done`; \ if test -n "$$redo_bases"; then \ redo_logs=`for i in $$redo_bases; do echo $$i.log; done`; \ redo_results=`for i in $$redo_bases; do echo $$i.trs; done`; \ if $(am__make_dryrun); then :; else \ rm -f $$redo_logs && rm -f $$redo_results || exit 1; \ fi; \ fi; \ if test -n "$$am__remaking_logs"; then \ echo "fatal: making $(TEST_SUITE_LOG): possible infinite" \ "recursion detected" >&2; \ elif test -n "$$redo_logs"; then \ am__remaking_logs=yes $(MAKE) $(AM_MAKEFLAGS) $$redo_logs; \ fi; \ if $(am__make_dryrun); then :; else \ st=0; \ errmsg="fatal: making $(TEST_SUITE_LOG): failed to create"; \ for i in $$redo_bases; do \ test -f $$i.trs && test -r $$i.trs \ || { echo "$$errmsg $$i.trs" >&2; st=1; }; \ test -f $$i.log && test -r $$i.log \ || { echo "$$errmsg $$i.log" >&2; st=1; }; \ done; \ test $$st -eq 0 || exit 1; \ fi @$(am__sh_e_setup); $(am__tty_colors); $(am__set_TESTS_bases); \ ws='[ ]'; \ results=`for b in $$bases; do echo $$b.trs; done`; \ test -n "$$results" || results=/dev/null; \ all=` grep "^$$ws*:test-result:" $$results | wc -l`; \ pass=` grep "^$$ws*:test-result:$$ws*PASS" $$results | wc -l`; \ fail=` grep "^$$ws*:test-result:$$ws*FAIL" $$results | wc -l`; \ skip=` grep "^$$ws*:test-result:$$ws*SKIP" $$results | wc -l`; \ xfail=`grep "^$$ws*:test-result:$$ws*XFAIL" $$results | wc -l`; \ xpass=`grep "^$$ws*:test-result:$$ws*XPASS" $$results | wc -l`; \ error=`grep "^$$ws*:test-result:$$ws*ERROR" $$results | wc -l`; \ if test `expr $$fail + $$xpass + $$error` -eq 0; then \ success=true; \ else \ success=false; \ fi; \ br='==================='; br=$$br$$br$$br$$br; \ result_count () \ { \ if test x"$$1" = x"--maybe-color"; then \ maybe_colorize=yes; \ elif test x"$$1" = x"--no-color"; then \ maybe_colorize=no; \ else \ echo "$@: invalid 'result_count' usage" >&2; exit 4; \ fi; \ shift; \ desc=$$1 count=$$2; \ if test $$maybe_colorize = yes && test $$count -gt 0; then \ color_start=$$3 color_end=$$std; \ else \ color_start= color_end=; \ fi; \ echo "$${color_start}# $$desc $$count$${color_end}"; \ }; \ create_testsuite_report () \ { \ result_count $$1 "TOTAL:" $$all "$$brg"; \ result_count $$1 "PASS: " $$pass "$$grn"; \ result_count $$1 "SKIP: " $$skip "$$blu"; \ result_count $$1 "XFAIL:" $$xfail "$$lgn"; \ result_count $$1 "FAIL: " $$fail "$$red"; \ result_count $$1 "XPASS:" $$xpass "$$red"; \ result_count $$1 "ERROR:" $$error "$$mgn"; \ }; \ { \ echo "$(PACKAGE_STRING): $(subdir)/$(TEST_SUITE_LOG)" | \ $(am__rst_title); \ create_testsuite_report --no-color; \ echo; \ echo ".. contents:: :depth: 2"; \ echo; \ for b in $$bases; do echo $$b; done \ | $(am__create_global_log); \ } >$(TEST_SUITE_LOG).tmp || exit 1; \ mv $(TEST_SUITE_LOG).tmp $(TEST_SUITE_LOG); \ if $$success; then \ col="$$grn"; \ else \ col="$$red"; \ test x"$$VERBOSE" = x || cat $(TEST_SUITE_LOG); \ fi; \ echo "$${col}$$br$${std}"; \ echo "$${col}Testsuite summary for $(PACKAGE_STRING)$${std}"; \ echo "$${col}$$br$${std}"; \ create_testsuite_report --maybe-color; \ echo "$$col$$br$$std"; \ if $$success; then :; else \ echo "$${col}See $(subdir)/$(TEST_SUITE_LOG)$${std}"; \ if test -n "$(PACKAGE_BUGREPORT)"; then \ echo "$${col}Please report to $(PACKAGE_BUGREPORT)$${std}"; \ fi; \ echo "$$col$$br$$std"; \ fi; \ $$success || exit 1 check-TESTS: $(dist_check_SCRIPTS) @list='$(RECHECK_LOGS)'; test -z "$$list" || rm -f $$list @list='$(RECHECK_LOGS:.log=.trs)'; test -z "$$list" || rm -f $$list @test -z "$(TEST_SUITE_LOG)" || rm -f $(TEST_SUITE_LOG) @set +e; $(am__set_TESTS_bases); \ log_list=`for i in $$bases; do echo $$i.log; done`; \ trs_list=`for i in $$bases; do echo $$i.trs; done`; \ log_list=`echo $$log_list`; trs_list=`echo $$trs_list`; \ $(MAKE) $(AM_MAKEFLAGS) $(TEST_SUITE_LOG) TEST_LOGS="$$log_list"; \ exit $$?; recheck: all $(dist_check_SCRIPTS) @test -z "$(TEST_SUITE_LOG)" || rm -f $(TEST_SUITE_LOG) @set +e; $(am__set_TESTS_bases); \ bases=`for i in $$bases; do echo $$i; done \ | $(am__list_recheck_tests)` || exit 1; \ log_list=`for i in $$bases; do echo $$i.log; done`; \ log_list=`echo $$log_list`; \ $(MAKE) $(AM_MAKEFLAGS) $(TEST_SUITE_LOG) \ am__force_recheck=am--force-recheck \ TEST_LOGS="$$log_list"; \ exit $$? autocompletion.log: autocompletion @p='autocompletion'; \ b='autocompletion'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) dtls-psk.log: dtls-psk @p='dtls-psk'; \ b='dtls-psk'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) sigterm.log: sigterm @p='sigterm'; \ b='sigterm'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) ppp-over-tls.log: ppp-over-tls @p='ppp-over-tls'; \ b='ppp-over-tls'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) ppp-over-tls-sync.log: ppp-over-tls-sync @p='ppp-over-tls-sync'; \ b='ppp-over-tls-sync'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-username-pass.log: auth-username-pass @p='auth-username-pass'; \ b='auth-username-pass'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-certificate.log: auth-certificate @p='auth-certificate'; \ b='auth-certificate'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-nonascii.log: auth-nonascii @p='auth-nonascii'; \ b='auth-nonascii'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) cert-fingerprint.log: cert-fingerprint @p='cert-fingerprint'; \ b='cert-fingerprint'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) id-test.log: id-test @p='id-test'; \ b='id-test'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) obsolete-server-crypto.log: obsolete-server-crypto @p='obsolete-server-crypto'; \ b='obsolete-server-crypto'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) pfs.log: pfs @p='pfs'; \ b='pfs'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-swtpm.log: auth-swtpm @p='auth-swtpm'; \ b='auth-swtpm'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-hwtpm.log: auth-hwtpm @p='auth-hwtpm'; \ b='auth-hwtpm'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) fortinet-auth-and-config.log: fortinet-auth-and-config @p='fortinet-auth-and-config'; \ b='fortinet-auth-and-config'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) f5-auth-and-config.log: f5-auth-and-config @p='f5-auth-and-config'; \ b='f5-auth-and-config'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) juniper-auth.log: juniper-auth @p='juniper-auth'; \ b='juniper-auth'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) juniper-sso-auth.log: juniper-sso-auth @p='juniper-sso-auth'; \ b='juniper-sso-auth'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) gp-auth-and-config.log: gp-auth-and-config @p='gp-auth-and-config'; \ b='gp-auth-and-config'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) auth-pkcs11.log: auth-pkcs11 @p='auth-pkcs11'; \ b='auth-pkcs11'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) lzstest.log: lzstest$(EXEEXT) @p='lzstest$(EXEEXT)'; \ b='lzstest'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) seqtest.log: seqtest$(EXEEXT) @p='seqtest$(EXEEXT)'; \ b='seqtest'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) buftest.log: buftest$(EXEEXT) @p='buftest$(EXEEXT)'; \ b='buftest'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) list-taps.log: list-taps$(EXEEXT) @p='list-taps$(EXEEXT)'; \ b='list-taps'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) bad_dtls_test.log: bad_dtls_test$(EXEEXT) @p='bad_dtls_test$(EXEEXT)'; \ b='bad_dtls_test'; \ $(am__check_pre) $(LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_LOG_DRIVER_FLAGS) $(LOG_DRIVER_FLAGS) -- $(LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) .test.log: @p='$<'; \ $(am__set_b); \ $(am__check_pre) $(TEST_LOG_DRIVER) --test-name "$$f" \ --log-file $$b.log --trs-file $$b.trs \ $(am__common_driver_flags) $(AM_TEST_LOG_DRIVER_FLAGS) $(TEST_LOG_DRIVER_FLAGS) -- $(TEST_LOG_COMPILE) \ "$$tst" $(AM_TESTS_FD_REDIRECT) @am__EXEEXT_TRUE@.test$(EXEEXT).log: @am__EXEEXT_TRUE@ @p='$<'; \ @am__EXEEXT_TRUE@ $(am__set_b); \ @am__EXEEXT_TRUE@ $(am__check_pre) $(TEST_LOG_DRIVER) --test-name "$$f" \ @am__EXEEXT_TRUE@ --log-file $$b.log --trs-file $$b.trs \ @am__EXEEXT_TRUE@ $(am__common_driver_flags) $(AM_TEST_LOG_DRIVER_FLAGS) $(TEST_LOG_DRIVER_FLAGS) -- $(TEST_LOG_COMPILE) \ @am__EXEEXT_TRUE@ "$$tst" $(AM_TESTS_FD_REDIRECT) distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am $(MAKE) $(AM_MAKEFLAGS) $(dist_check_SCRIPTS) $(MAKE) $(AM_MAKEFLAGS) check-TESTS check: check-am all-am: Makefile $(PROGRAMS) installdirs: install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: -test -z "$(TEST_LOGS)" || rm -f $(TEST_LOGS) -test -z "$(TEST_LOGS:.log=.trs)" || rm -f $(TEST_LOGS:.log=.trs) -test -z "$(TEST_SUITE_LOG)" || rm -f $(TEST_SUITE_LOG) clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool clean-noinstPROGRAMS \ mostlyclean-am distclean: distclean-am -rm -f ./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po -rm -f ./$(DEPDIR)/buftest.Po -rm -f ./$(DEPDIR)/list-taps.Po -rm -f ./$(DEPDIR)/lzstest.Po -rm -f ./$(DEPDIR)/seqtest.Po -rm -f ./$(DEPDIR)/serverhash.Po -rm -f Makefile distclean-am: clean-am distclean-compile distclean-generic \ distclean-tags dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f ./$(DEPDIR)/bad_dtls_test-bad_dtls_test.Po -rm -f ./$(DEPDIR)/buftest.Po -rm -f ./$(DEPDIR)/list-taps.Po -rm -f ./$(DEPDIR)/lzstest.Po -rm -f ./$(DEPDIR)/seqtest.Po -rm -f ./$(DEPDIR)/serverhash.Po -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-compile mostlyclean-generic \ mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: .MAKE: check-am install-am install-strip .PHONY: CTAGS GTAGS TAGS all all-am am--depfiles check check-TESTS \ check-am clean clean-generic clean-libtool \ clean-noinstPROGRAMS cscopelist-am ctags ctags-am distclean \ distclean-compile distclean-generic distclean-libtool \ distclean-tags distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am install-dvi \ install-dvi-am install-exec install-exec-am install-html \ install-html-am install-info install-info-am install-man \ install-pdf install-pdf-am install-ps install-ps-am \ install-strip installcheck installcheck-am installdirs \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-compile mostlyclean-generic mostlyclean-libtool \ pdf pdf-am ps ps-am recheck tags tags-am uninstall \ uninstall-am .PRECIOUS: Makefile # The rules for swtpm-perm.state are not invoked during normal builds since # the files are already present in git. @HAVE_CWRAP_TRUE@@TEST_SWTPM_TRUE@auth-swtpm: swtpm-perm.state # These files are generated locally against the real TPM. @HAVE_CWRAP_TRUE@@TEST_HWTPM_TRUE@auth-hwtpm: $(HWTPM_CERTS) $(HWTPM_KEYS) # Nothing actually *depends* on the cert files; they are created manually # and considered part of the sources, committed to the git tree. But for # reference, the commands used to generate them are here... keyfiles: $(USER_KEYS) $(USER_CERTS) $(certsdir)/server-cert.pem # Strictly speaking this is only PKCS#1 for RSA. For EC it's probably # best described as RFC5915§4, and no idea what defines it for DSA. $(certsdir)/user-key-pkcs1.pem: $(OPENSSL) genrsa -out $@ 2432 $(certsdir)/dsa-key-pkcs1.pem: $(OPENSSL) dsaparam -genkey 1024 -out $@ $(certsdir)/ec-key-pkcs1.pem: $(OPENSSL) ecparam -genkey -out $@ -name prime256v1 # Even in OpenSSL 1.1, this creates the old encrypted PEM format. $(certsdir)/user-key-pkcs1-aes128.pem: | certs/user-key-pkcs1.pem $(OPENSSL) rsa $(OSSLARGS) -aes128 $(certsdir)/dsa-key-pkcs1-aes128.pem: | certs/dsa-key-pkcs1.pem $(OPENSSL) dsa $(OSSLARGS) -aes128 $(certsdir)/ec-key-pkcs1-aes128.pem: | certs/ec-key-pkcs1.pem $(OPENSSL) ec $(OSSLARGS) -aes128 # Plain unencrypted PKCS#8 %-key-pkcs8.pem: | %-key-pkcs1.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -nocrypt %-key-pkcs8-pbes1-sha1-3des.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithSHA1And3-KeyTripleDES-CBC # This is the default created by OpenSSL 1.0.2 with -topk8 %-key-pkcs8-pbes1-md5-des.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v1 pbeWithMD5AndDES-CBC %-key-pkcs8-pbes2-sha1.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA1 # This is the default created by OpenSSL 1.1 with -topk8 %-key-pkcs8-pbes2-sha256.pem: | %-key-pkcs8.pem $(OPENSSL) pkcs8 $(OSSLARGS) -topk8 -v2 aes256 -v2prf hmacWithSHA256 %-key-sha1-3des-sha1.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-sha1-3des-sha256.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe pbeWithSHA1And3-KeyTripleDES-CBC -keypbe pbeWithSHA1And3-KeyTripleDES-CBC %-key-md5-des-sha1.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA1 \ -certpbe pbeWithMD5AndDES-CBC -keypbe pbeWithMD5AndDES-CBC %-key-aes256-cbc-sha256.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # NB: Needs OpenSSL 1.1 or newer %-key-nonascii-password.p12: | %-key-pkcs8.pem %-cert.pem LC_ALL=en_GB.UTF-8 PASSWORD="$$(cat $(srcdir)/pass-UTF-8)" KEYFILE="$<" ; \ $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe AES-256-CBC # This one makes GnuTLS behave strangely... %-key-aes256-cbc-md5-des-sha256.p12: | %-key-pkcs8.pem %-cert.pem KEYFILE="$<"; $(OPENSSL) pkcs12 $(OSSLARGSP12) -export -macalg SHA256 \ -certpbe AES-256-CBC -keypbe pbeWithMD5AndDES-CBC %.der: | %.pem sed -e '0,/^-----BEGIN.*KEY-----/d' -e '/^-----END.*KEY-----/,$$d' $< | base64 -d > $@ $(certsdir)/server-cert.pem: $(OPENSSL) req -new -config $(srcdir)/configs/server-cert.prm -key $(certsdir)/server-key.pem -out $@.csr $(OPENSSL) x509 -days 3650 -CA $(certsdir)/ca.pem -CAkey $(certsdir)/ca-key.pem \ -extfile $(srcdir)/configs/server-cert.prm -extensions req_EXT \ -set_serial $(shell date +%s) -req -out $@ -in $@.csr swtpm-perm.state: | $(SWTPM_KEYS) $(SWTPM_CERTS) $(SWTPM_IOCTL_RUN) --save permanent $@ $(SWTPM_IOCTL_RUN) -s rm -rf $(SWTPM_TMPDIR) # This is an *import* of the normal ec key, hence having same prefix 'ec-'. # Separate fileames for swtpm (which is shipped with OpenConnect sources) # vs local real TPM. Like many of the key/cert rules here, the swtpm rule # is dormant and should never really be invoked for normal users once the # files are committed to git. Which is why it doesn't matter that it needs # the swtpm to have been started manually. $(certsdir)/ec-key-swtpm.pem: | certs/ec-key-pkcs8.pem $(START_SWTPM) $(SWTPM_PRELOAD) $(CREATE_TPM2_KEY) -w $< $@ ec-key-hwtpm.pem: | certs/ec-key-pkcs8.pem TPM_INTERFACE_TYPE=dev $(CREATE_TPM2_KEY) -w $< $@ # These are *different* keys generated inside the TPM, hence a different prefix. $(certsdir)/swtpm-ec-key-tpm.pem: $(START_SWTPM) $(SWTPM_PRELOAD) $(TPM2TSS_GENKEY) -t swtpm -a ecdsa $@ $(certsdir)/swtpm-ec-p384-key-tpm.pem: $(START_SWTPM) $(SWTPM_PRELOAD) $(TPM2TSS_GENKEY) -t swtpm -c nist_p384 -a ecdsa $@ hwtpm-ec-key-tpm.pem: $(TPM2TSS_GENKEY) -t device -a ecdsa $@ $(certsdir)/swtpm-rsa-key-tpm.pem: $(START_SWTPM) $(SWTPM_PRELOAD) $(TPM2TSS_GENKEY) -t swtpm -a rsa -s 2048 $@ hwtpm-rsa-key-tpm.pem: $(TPM2TSS_GENKEY) -t device -a rsa -s 2048 $@ $(certsdir)/swtpm-%-cert.csr: | $(certsdir)/swtpm-%-key-tpm.pem $(SWTPM_PRELOAD) $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -engine tpm2tss -keyform ENGINE -key $< -out $@ hwtpm-%-cert.csr: | hwtpm-%-key-tpm.pem TPM2TSSENGINE_TCTI=device $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -engine tpm2tss -keyform ENGINE -key $< -out $@ %-cert.csr: | %-key-hwtpm.pem TPM2TSSENGINE_TCTI=device $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -engine tpm2tss -keyform ENGINE -key $< -out $@ %-cert.csr: | %-key-pkcs8.pem $(OPENSSL) req -new -config $(srcdir)/configs/user-cert.prm -key $< -out $@ %.pem: | %.csr $(OPENSSL) x509 -days 3650 -CA $(certsdir)/ca.pem -CAkey $(certsdir)/ca-key.pem \ -set_serial $(shell date +%s) -req -out $@ -in $< # Nice and simple: Certs visible without login, public keys present in token softhsm-setup0: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test \ --so-pin 12345678 --pin 1234 $(SHM2_UTIL) --token openconnect-test --pin 1234 --import $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --label RSA --id 01 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --token openconnect-test --pin 1234 --import $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --label DSA --id 02 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" $(SHM2_UTIL) --token openconnect-test --pin 1234 --import $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --label EC --id 03 --set-pin 1234 --login \ --write "pkcs11:token=openconnect-test;pin-value=1234" # Second test: Import keys with GnuTLS so public key is absent softhsm-setup1: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test1 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem --no-mark-private \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem --no-mark-private \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem --no-mark-private \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test1;pin-value=1234" # Third test: CKA_PRIVATE on certificates softhsm-setup2: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test2 \ --so-pin 12345678 --pin 1234 $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test2;pin-value=1234" # Fourth test: token lacks CKF_LOGIN_REQUIRED (#123) softhsm-setup3: $(SHM2_UTIL) --show-slots $(SHM2_UTIL) --init-token --free --label openconnect-test3 \ --so-pin 12345678 --pin 1234 # Remove the CKF_LOGIN_REQUIRED flag TOKOBJ=$$(grep -l openconnect-test3 $(srcdir)/softhsm/*/token.object); \ if [ -n "$$TOKOBJ" ] && od -t x1 $$TOKOBJ | grep -q '^0000160.* 04 2d$$'; then \ echo -en \\x29 | dd bs=1 count=1 conv=notrunc seek=127 of=$$TOKOBJ; \ else \ echo "Token file not understood"; \ exit 1; \ fi $(P11TOOL) --load-certificate $(certsdir)/user-cert.pem \ --load-privkey $(certsdir)/user-key-pkcs8.pem \ --label RSA --id 01 --login \ --write "pkcs11:token=openconnect-test3;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/dsa-cert.pem \ --load-privkey $(certsdir)/dsa-key-pkcs8.pem \ --label DSA --id 02 --login \ --write "pkcs11:token=openconnect-test3;pin-value=1234" $(P11TOOL) --load-certificate $(certsdir)/ec-cert.pem \ --load-privkey $(certsdir)/ec-key-pkcs8.pem \ --label EC --id 03 --login \ --write "pkcs11:token=openconnect-test3;pin-value=1234" # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.20/tests/pfs0000755000076400007640000000425614171606260017422 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2020 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh ######################################## # Verify that we cannot connect to a server offering only RSA key exchange # IF --pfs is specified to require perfect forward secrecy, but that we # CAN connect if it is not specified. ######################################## echo "Testing against server without PFS..." # Need to disable TLS 1.3 here because GnuTLS v3.6.13 is allowing non-RSA KX with TLS 1.3, even with -KX-ALL # But can't use -VERS-TLS1.3 here, because it's not known to earlier versions of GnuTLS. PORT=4569 TLS_PRIORITIES="LEGACY:%SERVER_PRECEDENCE:%COMPAT:-VERS-TLS-ALL:+VERS-TLS1.0:+VERS-TLS1.1:+VERS-TLS1.2:-KX-ALL:+RSA" update_config test-obsolete-server-crypto.config launch_simple_sr_server -d 1 -f -c $CONFIG PID=$! wait_server $PID echo -n "Connecting with --pfs... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:$PORT -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --pfs --cookieonly >/dev/null 2>&1) && fail $PID "Connected successfully when we shouldn't" echo ok echo -n "Connecting without --pfs... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:$PORT -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) || fail $PID "Could not connect and obtain cookie without --pfs" echo ok cleanup exit 0 openconnect-8.20/tests/fortinet-auth-and-config0000755000076400007640000000722414171606260023424 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh FINGERPRINT="--servercert=d66b507ae074d03b02eafca40d35f87dd81049d3" CERT=$certdir/server-cert.pem KEY=$certdir/server-key.pem echo "Testing Fortinet auth against fake server ..." OCSERV=${srcdir}/fake-fortinet-server.py launch_simple_sr_server $ADDRESS 443 $CERT $KEY > /dev/null 2>&1 PID=$! wait_server $PID 1 echo -n "Authenticating with username/password and DEFAULT realm... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=fortinet -q $ADDRESS:443 -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Fortinet server" echo ok echo -n "Authenticating with username/password and NON-DEFAULT path... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=fortinet -q $ADDRESS:443/fakeRealm -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Fortinet server" echo ok echo -n "Authenticating with username/password/tokeninfo-2FA and DEFAULT path... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=fortinet -q $ADDRESS:443/?want_2fa=1 -u test --token-mode=totp --token-secret=FAKE $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Fortinet server" echo ok echo -n "Authenticating with username/password/HTML-2FA and DEFAULT path... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=fortinet -q "$ADDRESS:443/?want_2fa=1&type_2fa=html" -u test --token-mode=totp --token-secret=FAKE $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Fortinet server" echo ok echo -n "Authenticating with username/password/(2 rounds of tokeninfo-2FA) and DEFAULT path... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=fortinet -q $ADDRESS:443/?want_2fa=2 -u test --token-mode=totp --token-secret=FAKE $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Fortinet server" echo ok echo -n "Authenticating with username/password/tokeninfo-2FA and NON-DEFAULT path... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=fortinet -q $ADDRESS:443/fake+Realm?want_2fa=1 -u test --token-mode=totp --token-secret=FAKE $FINGERPRINT --pfs --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake Fortinet server" echo ok echo -n "Authenticating with username/password, then proceeding to tunnel stage... " echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=fortinet -q $ADDRESS:443 -u test $FINGERPRINT >/dev/null 2>&1 test $? = 2 || # what OpenConnect returns when server rejects cookie upon tunnel connection, as the fake server does fail $PID "Something went wrong in fake Fortinet server (other than the expected rejection of cookie)" echo ok cleanup exit 0 openconnect-8.20/tests/auth-certificate0000755000076400007640000000313014171606260022041 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh key_list=${key_list:-`echo ${certdir}/*-key-*.{pem,der,p12}`} echo "Testing certificate auth..." launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID for KEY in ${key_list}; do echo -n "Connecting to obtain cookie (with key ${KEY##*/})... " if [ "${KEY%%.p12}" != "${KEY}" ]; then CERTARGS="-c ${KEY} --key-password password" else CERTARGS="--sslkey ${KEY} --key-password password -c ${KEY%-key-*}-cert.pem" fi ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test $CERTARGS --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly --passwd-on-stdin ) || fail $PID "Could not connect with key ${KEY##*/}!" done echo ok cleanup exit 0 openconnect-8.20/tests/auth-hwtpm0000755000076400007640000000330414171606260020721 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh hwtpm_list=${hwtpm_list:-`echo ${certdir}/swtpm*-key-tpm.pem`} echo "Testing TPMv2 auth with hwtpm..." launch_simple_sr_server -d 1 -f -c configs/test-user-cert.config PID=$! wait_server $PID export TPM_INTERFACE_TYPE=dev for KEY in ${hwtpm_list}; do echo -n "Connecting to obtain cookie (with key ${KEY##*/})... " if [ "${KEY%%.p12}" != "${KEY}" ]; then CERTARGS="-c ${KEY} --key-password password" else CERT="${KEY%-key-*.pem}-cert.pem" if [ ! -r "$CERT" ]; then CERT="${certdir}/$CERT"; fi CERTARGS="--sslkey ${KEY} -c ${CERT}" fi if ! echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test $CERTARGS --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly -vvvvv --passwd-on-stdin; then fail $PID "Could not connect with key ${KEY##*/}!" fi done echo ok cleanup exit 0 openconnect-8.20/tests/certs/0000755000076400007640000000000014204510554020012 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/tests/certs/dsa-key-pkcs8.der0000644000076400007640000000051614040533771023077 0ustar00dwoodhoudwoodhou000000000000000J0+*H80z -ť A-"u y05m(q,H˦k]/rfC2WX[X4<ӺUcYlIE4++o9kA´Xx\ќug?E,bUvEz%K|O5[ɤl3N.z }Fľ،0଴CAʛt6tu c LQbz漣DzQ o*-uh):3 cO trmXYo]ćʼnIv2aopenconnect-8.20/tests/certs/ec-key-swtpm.pem0000644000076400007640000000061214062600131023032 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN TSS2 PRIVATE KEY----- MIHwBgZngQUKAQOgAwEBAQIEQAAAAQRYAFYAIwALAAYEQAAAABAAEAADABAAIE9y KoT7BbaJWUAVNwFMWirti5lwdNXhIB3GfBJjMWJjACAXccQXp5uGkTzg9kHgHE3g iqjmg5iCRKUbnSxLhsGlVASBgAB+ACBDbqTReH27klFD/gporN7JWZZi4ykoyGP8 peloe3h60QAQFLD7X7y6Bl+njwjNYaAMje1tnAsnxe5fyeZaVnbn1nda+l9IjqdH vbXnnsc/R2GyKGVt7YDueE+5VbLm2LSrlcCzR2Ufdhg4Z/7YISZxsWOgWH5cEwwc n2Dz -----END TSS2 PRIVATE KEY----- openconnect-8.20/tests/certs/user-key-pkcs1.pem0000644000076400007640000000366414040533771023315 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN RSA PRIVATE KEY----- MIIFfAIBAAKCATEAq1SY/KnGFZWdpsGUhJSReR542y1IUZllAQLAQFJJXetwvCbv aDkeBJHi28tvk0BFHiKOcVpYiSh5XhoyJT6LnTs0fxn40C83t2Iyt1OlQyzFXeys +TX6FCs0ZvHWp6HQg5pW9BmDvL8RdDAtqChboqt6xs2cXPhR6akMSNtxu7E0d/fu 3l14wEgKNw1lHjsrFAOJcvJS7V8AxQZg6oAg0EPsZrzSJtvwKT5q+WIgvlgmRLrX jG92pgUg5Ji3xHJ6Xd9PDSPsLpxx7DD5FF/IdQurZ/Z9+012ZEql1fq0CFCdE8eP wnmwtD4vidMzJ02fi9NgJAersnI9KaXESuw8BNJJPiYb7HoQPcpFWoCLTSqWY08t YygPO0dHynwsFUEy1eDJvqVVLLNrRipWsRvtKQIDAQABAoIBMF2XINskgqhXyn7F UDP8VFstYieYXOD2Qk6DCjIYwSsk6bheLHlqehNU/e/C+Xgeq6MCjX0uNR73lRTq imn9+JYzOUIVFe3jXTQ32Cx87NH9KvNbzkF0Ut+hmkaB5Rg9NIIvVUCSj3wTg51M lCQ/p478zVy8BKZkn5pcVfGWrlIxQtAmB75AoS2oLKxWDN6uw6FzLSo1ZUd0sJtw uditEnRQswD7hnLVAOgCstHj1Yc/zLbzJv4lwbVZveDJ+tm6R/hD6q/PTZKu250R SexQMyq2RECsBsf2ZC5CJYEg1fZ2ebn7vdLFXfcoFp3ME83ZVePKx9I48ZIy1rrb c7bctl9mieNMnta40gHuqNJpZN1cGn5M5B1bN5QpPJM9Q7szjxAjFBKwMyRYw66X TD3FwYECgZkAwZwNTqobLsQU5njtC3aQr9o9XhVvfZyXTXGjHWpHlCUgnZj00DvW vr4SOefXgj1UPfd2BuKsXeYfNP28nZyL9U+DiY956p5epVzptHGuWUP/7AP2VzzW Mwu6TTk/kGKyT6/gIXpaD5P0/F+6KbmvZxg/DiM93tm8R63eVhHR48B+KbtnrBtq r1owGQwUSa/bGoIQYOHRmN0CgZkA4oqdgLUpMwZE0uN3vTQ+wN+YzKvzunM8GVzY 7cgivLmPTxrYDQji4sroPBOqIxs9ddR84k7NytD8t3dwV1ThHCKiPg+nWcBaT7Ho YlWFB30DpI+C6y0h/MvVtzx3pZ1npquVXR7To0l4m3UsB+m9ug9maX4uUC92X+ko +OHJzndKSO6S0dXcKS8/KXoSsNb5jWjkgkXsOr0CgZh4jty2dDQy/cRp8zjgH3df GU2HTV+8XwrUHYPNqEVkGW5i1ED1fZ1t7ttYlWZb4iaX44TqKrHcUpRyIeIWXsnD +jxVJzNqhi03WVDpnLRNP4uYAqudjPNwm8fpmFFdbifMeR7emdqEwsQVduJsYwS2 9KEnA4jeQMT9+WVuQPBqmo21HM4knHnlMQqsPhpP/CI6Mm1SdqtWPQKBmQCbdFtY cvhulyKrRIRqRWu6lrUX3fdGPsVC8j+6C9gqgXsh4V3Ys/xdfLeYYjYiGRM3xDRe Z404W+jPTRq+EvTWhb2nsL46DJDslzzMHbtHxDW3uvMvxqzH+GgTcV75OuZhrOS2 He1E46nro6AvXepfvymbwoatZ6RndGw1PVtqXtmO6oe9jm+ho1ZIdAhXaW2d6BjG fIz6UQKBmQCC0uQ746qemXUNc+TpOPVec+TCOiRVTupY9yryD/9C1+LvSdIljYYC pyvJRR7uoBxgWD5Mu0CZQiD/xz9OaIyL9OhB/vR5AKR+ZGeVjr/DRSjc2le5qiCs ZrDIEbKawmCsJDJ/F+Rs3CRDViJQhimnOPtOjOGayEKkWatJMr0LZTA3BpUpY4gJ EQsK8zSC9lRozHHp6p9IDw== -----END RSA PRIVATE KEY----- openconnect-8.20/tests/certs/user-key-nonascii-password.p120000644000076400007640000000526314043307244025552 0ustar00dwoodhoudwoodhou000000000000000 0 e *H  V R0 N0 *H 00 *H 0W *H  0J0) *H  0mb@[0 *H  0 `He*@ 1y,nLY)p-/.*l7М{n+yʿO?.w@Q+2'P2ѩ(yuz˾.8똯TKNGqK -;asq#T]w\X~ TjmzlN/$DmgZB TV5n+ew_({kBKGDz\i( L VMw}TUӘ|O%mjd55}UM,gKʦ΁>M= blp2ؑJmפ,}f,!Nԍgt04!?tX<+g;j@Dz#rRdZN[%EKqgxT0*@22XK +5X^=\D: Iv~0J{-ǂ//)٫MzKh|]iqr1%K7ţ~I gg6`2"En~kj)l/nm u:_<17US<^WwoV|5!3{q66%L &=5AL镥aPY yOT^pCY:=Vň9Q=^C_SݒFm6ldbOTOz۠dOH͏{(^[H_:ixkz ;NJguDœMz7:B̆@i>i00Em:ZzXNw\nOi|ppDU \ڑaI]%؜q"4%Az=vϢet",@0T *H EA0=09 *H  00W *H  0J0) *H  0ؠ 0 *H  0 `He*c*li.7/I}mOm;Pʡc#_ );`+m%l\3G[KsKтD$kE.ndG 5DS@dN\vs*P23>"k.\)(R@H3UAZb"%]Y蘂4OZ0jXVq#uPPC^OFÀ᭰MgõdR6!qt|GB8]Y廃' ;f+EeToo6Uj7.e2Fh3ؕ4ȴڛU׈3&gC 9" FJ:wa7&[{E$R+w09I :DɃ9^\}Qዏ#tFXh5kI- -@{|^wS2EI"c7N+uk/Vz3rUsB[ V A~XvUtNa ŗFV@hy]Vf:x:EL51%0# *H  1RLLQm0A010  `He P,X,k>j[@x蕢dRw7openconnect-8.20/tests/certs/ec-cert.pem0000644000076400007640000000140614043307244022041 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIICDzCByAIEV8cIlTANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJDQTAeFw0x NjA4MzExNjQwNTNaFw0yNjA4MjkxNjQwNTNaMCcxDzANBgNVBAMMBkEgdXNlcjEU MBIGCgmSJomT8ixkAQEMBHRlc3QwWTATBgcqhkjOPQIBBggqhkjOPQMBBwNCAARP ciqE+wW2iVlAFTcBTFoq7YuZcHTV4SAdxnwSYzFiYxdxxBenm4aRPOD2QeAcTeCK qOaDmIJEpRudLEuGwaVUMA0GCSqGSIb3DQEBCwUAA4IBMQAJ2U2xLOexUCllJcGm GUp2JA9Nmy4BNrU2dhh/8s8DXZfR0yBmg+rTyqHAqdt8R3twSfn94uMM7aZxW1jP q5sYfr+Z/j20hy4cXvWoYLZeinFMk4VT0F8NNs9G1Box6ottV3s8gd0WFTmIf4n/ QsPxrO3TVm70jotffZjXgIRx0e/Jf1v2L+4FnK3BCYXmJe26AxXDIoknteTOUV99 xAVmB1ylzct6974vzKUNfZDMeR5RAHo0RquKJrqqBrh7HAEH/fPBCHzwlNZJDDHK G7Fox/ADi6zj7sBlnsYePVYjZODqUq+ZBg0f1epvWfyyX8RzbwMWuCy8Ourf02ak 29isNJu6pi5ojgHcw+Zy9axb1nwu8y9R50gNhk9boqO0UYsyUR6Svnt6B+FYdaIp jpZi -----END CERTIFICATE----- openconnect-8.20/tests/certs/user-key-sha1-3des-sha1.p120000644000076400007640000000525514043307244024432 0ustar00dwoodhoudwoodhou000000000000000 0 o *H  ` \0 X07 *H (0$0 *H 0 *H  0 } bK.bpʏO*֧!*AV?s $%M+E3\eϊE!۾MVʟ] mKF4S"yQ0Ԏ+hk։)$z[>LZ݋vykjΟO4zF캌;㦽9C .:'J6nf[˒>f[lU*M~S>X9P q27 M5Կ;9\/VXqt*uBg4V}n;!f,~\Wf)3<ӽ=)EeB}V/Wc`>Rc48uf̋UhLYeR&[1W낲A4}?%$sd3Ff~d!hi+qlWJ&T YgAɲ/tѧ4ټ'T1H^q~AZL殱]w(eIR9w!L>9l\NS寧]B>Mp`<~yʖaguŢ-ko6j(bPL2Y*!6>A=Zc$)OP0 *H  00 *H  00 *H  058rHzѶ7"YBd@{!8CCspe#'Tڲ@G)̙~H]EX'!)@ :$t=f@Cڀ`h}oecҎ eҞ%Nx++%5epŲ4lShq:.p7&AX-}'I` CZHӷ{TV/#]a{*]> 60t<|zl"uϤ+zujڸO<>دT=t|X ҟS\hT-֑ /n)ci' y 1ŌI3dMV GeN0/;߹p1pv[lzFЗ4nְQ*t(ׯ 4zcH5&1 :]A\%1Ëlਸ਼ ਆ> }\LoH >{ z [[krI=l:7t0AZ(%]oТޱ; ԯZ фcr2!-ﵶ{&1RS*'>*eC ؝+6C:ѝAv ,3vtbEN{jpIkC[.URs@T/58I#D^ZͿm!'-t_+>܇tHRG,FgĎkgXA TL^TQ/佞Q ؠwG 7a4cDe݁xȆo&Ŝr7]]W[K{йY"*+RAթJһ0cM>uɶw4԰_dO㇚j 1%0# *H  1jJʟإOt*ꄀQ010!0 +a-=Z3aߖs2-lopenconnect-8.20/tests/certs/user-key-aes256-cbc-sha256.p120000644000076400007640000000542714043307244024651 0ustar00dwoodhoudwoodhou000000000000000 0  *H   0 0d *H U0Q0J *H 0I *H  0<0 *H  0Lb0 `He*˱5 ߜ1!O\(7Hb=b|0cD\Fki'+5'4&^PN&#ͶdNW_Ar;%O"!xhDC1CRߴe5Aޓ>Rtx@ZG X'$*di魘;h/}yO$6t)i YB%K`!Ҭ/:/+ۿO0īC`[o*[W |X3̨xpZ1,F̈ea| Bi} 0kmj37 ʃ}Htk֤* 9mF3דetI2]l*fuVޠK8ZSȧR6.{dNcm)zUJ0{ $_JLUۋX ؽˁ[v^&%]`  n2Nd׫oVjfPձnAȕ9& KI;9*:}9,yv溥r" -^rO&cA8Odl6'J΅vץdC#P5~eL̜/hE}%lz=}ʍ~ ﵾtio44H#c $GhO1x-^T B8nQ%Y$Sn8h;5j*_F88 KS0]zѫxPv2e*\ġ2'Ʒ<(FX|ĉHX6xc hJUpFhfREzCWGP o%yvpwe?"_|Ru2e q5#2HUݣZM+\ン) WXby"kNJWS>Au:o8 QJG1A O4c h-1Y76U ?r\;IH5︉G?1j0F *H 730/0+ *H  00I *H  0<0 *H  0Sl0 `He*r͐"TR-qU8sssm +Pzh>@L ]_^ V"Ee(2NLT?P$Q+$O$37?G(' qV,Edч}/r]ibmHF4~✱9li 1[GH`V;V ؑ9?EĩKi#4>}D#ERnfX z6AYn/ʦ=cBT٬¾J_}8 ]hIZQM 3? &@H cHA74fdJ )h(}"F44C.Kjn8n%!e+' &K#_.Ӧ,u+FgqnvxNwS`X`pTH8TOgh450̚rc_VG ƶ!tEpM#i sZvϾia`؟_*if8w33 [ŰZv9F6h9:5Y.A9=Qw(0a=BSc1cFF#irl3\99iwhh~4~Z`:a io~u:2G{PwsUUUjT*E\!P3vS|0-4ҵqQzF D3M$>GTE 4]{ f(?/{>-g,(…ݘ16t}w鄨 Sb释&7D'v6϶5% @fD=#N}`H%Na USخޑM^b4b{,i;p'kK @TcHFÒ^IW*3GC?&*bA\` N`+|6}q]^*iiÕE실,|D_|C\ғ3ʚ>B0%xP32qZЯ3}K?V>}4v1[5AWe nL7mN;Y2hG+c~¿ݪHM+6BE~ ٵa+*9 bZl.aG簞tG3f2GYö~ 5͊Cb As NGc  f y43J-*S.`a]|8m\i?Xnv)F1%0# *H  1jJʟإOt*ꄀQ0A010  `He BPpKk3o,Iqa+k,; f f8_Ea`openconnect-8.20/tests/certs/dsa-key-pkcs1-aes128.pem0000644000076400007640000000135714040533771024104 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN DSA PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: AES-128-CBC,B5E2E3C0512B0453408F3A8861A02AC9 0yXMkniOOlMsqGmIui1NYCQ/BDrGvN+1WFNdocoyWtR/XJi7Efln5C3ZZRn4i39q iN50QLbTeLlofmrzbXQwV2PW5enkUZuArVawsxQBLG7ojumfkFCaDlXz2AN1iqWR fjiuOWirvMX3hGa+R8obCfHGdnYIesx8PZ3etsHC39dyD8H2SU4Unz7kNh1iRaaB Fprmu3uy4xa4EdDHILtpsp0eVQULD1VQOT/2Ezq8jtayUJTpuOyz1lFgt9iacl2P Hg638Tpx+iOVV3esLDdfArwzAES1Hc4vnXKXA24KFtLtHidKSE8A1bcXdpARB/UW dWo/F1iAm+kjuvIaxz6g5cM+CsRO8E6HRWeI4v3jsFcsfmzkyuWoVHm6GXCLk30c lPgLIjW8zjDyGhvtT7aV+T11gzL/3SUw2ww+ue7zghpZ3+QJNQlJP0Ym6xP3d7+E UdUZdyclOU0kzNDGvPcUcEs7WfcxUtqNTvQm7lRJ3y0dHuRJ4SINrESe5c79ch/R 0ISpQC/XbCjY8o0wXFBcl/RsFpGdSdmv50u3R+8vV+Rr5S0TavFhkh7EnNWgSqip fb1j8aRVvYGpJywo5IyhxQ== -----END DSA PRIVATE KEY----- openconnect-8.20/tests/certs/dsa-cert.pem0000644000076400007640000000234514040533771022227 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDbzCCAicCBFff3f4wDQYJKoZIhvcNAQELBQAwDTELMAkGA1UEAxMCQ0EwHhcN MTYwOTE5MTI0NTUwWhcNMjYwOTE3MTI0NTUwWjAnMQ8wDQYDVQQDDAZBIHVzZXIx FDASBgoJkiaJk/IsZAEBDAR0ZXN0MIIBtjCCASsGByqGSM44BAEwggEeAoGBALZ6 DbjeLf24xaULlkEtInXlvAnG9PgPmZX1eTA1bd8o1XEs9Ejdy6YbEWtdL3JmQzLm 0VcV1lhbWDQY/9M807pVY1mBbKpJ6EXINLwrnCun/ZRv7jlrA0GpwrTTWHhc0ZyC dWcCs6k/7gBF2CyCnGKJVdvI4/520vAO50WReiVLAhUAmL74s54WuR187bweT4Y1 s1vJpJUCgYBsMxuyAJ7TEa1OLnrqDX1G2OTsxL6M2IynMKTgrLRD1DzyVDxyZGqG wB4k6jtEkDAIaz6c1BEWk6ZBmMqbAqHwGnQ22HSVsNbldQljIEwSlR4QUWLjG3rv ppIEzUR6uqu0Uf2B5gL6ywtvKi11aP0RKaE6MyBjD75P3gmjlp108QOBhAACgYBp ChsNXENm9wRnRXuxmG+8SXrCsYBGiaovav+u8hGQkLYzzqKfEtFzjg8+vdQF0Fw0 FT4GpC7AtyYQyHM0A1NZbVOtxlw0iBspMaDtrPvWiBAeR/oSmkazu4aPOLeINjQ6 yJfAFAab/LzBvRKf2Nh7PJesux4XzLrlXignSV1HuzANBgkqhkiG9w0BAQsFAAOC ATEAMmawHHaxCbvVeDZxlbSk/KLSd4E0f/FRylSfge7U043LO4B5pTrzPLupp8q2 Y9nB54xtFu1q091uD+Nehl2exEHU7Tp0ISOR7sGfS30tWoOhh7btrjrCrPFwrbnx 5UHDKuxusc+y387wq2E9zeJ4zG9UEx8lrL3oH196DkeO+JDR8oX7yNhJ1qHEHDhF Xc2velMC4b4LLoh4aL6yyREFwRdIH2g2ZEZbY6Nd5jVJYyBwm/q2w4QS0cBxGjtj zY3oVqv9ED4W3u8xw1IKzOSMtUdSroWuMrYSdGSqQBVQcGxZqZN0NlSsmGbjljRB TaaQt2C5kA64RHOpN/udRn30HR405MCmy/PB3dOVt0s2dXrFhIPIX9GU7m6rBnYq Rg4RDIip9UGHSZL9TMoTogwJlg== -----END CERTIFICATE----- openconnect-8.20/tests/certs/user-key-md5-des-sha1.p120000644000076400007640000000525314043307244024176 0ustar00dwoodhoudwoodhou000000000000000 0 m *H  ^ Z0 V06 *H '0#0 *H 0 *H 02k݀zaT(JD]6~:A}RI IݬGǢdl jn!fxMH'Z`o !Kg'xmU,bK^"Nb g#i+gAuσ"kgG%dWx/dPy ΝfZ9s,DXё&REz lpv- 6Z'Pl_A=F^.^|:U7<2ow:_XXW`\r=w F$@|4|kLOs2āĻyN [;/$B-_Ku ޞٌg^7eɅwΏ]}R1P $40M?ԲtUY|l\4'k<!,gwaws23r_98Ԩ2'>Se31 MH9I #a-55#X?0(aG޹O.7r~_M~`y{>eꩋAnVR:H:: d)aP01]i?2ZT9Mi?Nw^|W3§0Xx-XVf;.{nQA%Axq 3 E4H3QDͼ:_eYq86MlYC7Ą$ź)Z˪8_f}<4G؏shUGa;E0|aP ̔iț3H$?T*8ئ'ݘK.D mlHhTy 9U_)ӘԄU(~B2+uMd64 XGLSQ]Q)}?c$L_(^FIU&DB۲`#տG|]H.KS4Vr<NF8Z\1&iDKCK_8T#-sʿ\0Lmwe "ɀ'!BnfwRs+qB UIY>(f+R6>o2E^\1FB<66+]@NB1T$|0Nߍt@ sDe=ˀj*HB)etlo"b&S4Zމ׳ŀ5)wqx,/ԡ}1fm25 1%0# *H  1jJʟإOt*ꄀQ010!0 +h1bj l\ixopenconnect-8.20/tests/certs/dsa-key-pkcs8.pem0000644000076400007640000000077514040533771023115 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN PRIVATE KEY----- MIIBSgIBADCCASsGByqGSM44BAEwggEeAoGBALZ6DbjeLf24xaULlkEtInXlvAnG 9PgPmZX1eTA1bd8o1XEs9Ejdy6YbEWtdL3JmQzLm0VcV1lhbWDQY/9M807pVY1mB bKpJ6EXINLwrnCun/ZRv7jlrA0GpwrTTWHhc0ZyCdWcCs6k/7gBF2CyCnGKJVdvI 4/520vAO50WReiVLAhUAmL74s54WuR187bweT4Y1s1vJpJUCgYBsMxuyAJ7TEa1O LnrqDX1G2OTsxL6M2IynMKTgrLRD1DzyVDxyZGqGwB4k6jtEkDAIaz6c1BEWk6ZB mMqbAqHwGnQ22HSVsNbldQljIEwSlR4QUWLjG3rvppIEzUR6uqu0Uf2B5gL6ywtv Ki11aP0RKaE6MyBjD75P3gmjlp108QQWAhRynY/qbQJYWdtv5l3Eh8WJSXYyYQ== -----END PRIVATE KEY----- openconnect-8.20/tests/certs/user-key-pkcs8-pbes2-sha256.der0000644000076400007640000000300114043307247025315 0ustar00dwoodhoudwoodhou0000000000000000W *H  0J0) *H  0h in'0 *H  0 `He*QJ :;J{lE`[A7H_т:q d'_w͵ yB k~V&ѝᘴ t[/z;S0q /]ѿs`_ d,ލRK4D 6 H=c9hݨDmeū trF"wpz1w[hȖoǎyy~NX kuC{ЕQ!>A F-3Kj[б$ U۽Թ@|UţκX^qۡ }hײgTkeRPpv`ͽ]m=aT "^0EGfpJ T$ljB0DYX٪sK<1](>dRz/x1鏎~!26ajCbONt?o&Lbcq>p:Yʍ|by"|錩\j hODBz* ^.AȀ{6ILF[‘O'IPާk(wnЩ+kr)WA YEK[Y(e^P NFY1)zc`@/5%"XwHgZȰ$q3cc5C V?5H!z82JLw> %jtzqӸrBζBXuhIח+Fek"e;k`Z֯R)cQz?F!b}ì7_mX8SF˵eyi%zN 8kxˎLYvpyf^҈!fDdKiK߮lSaA4.apG36k0ai:~%D rRaCW3R ?5>r$Gvw21P qNSm%ť>z^ǫ4 mUa=)f[yE3Z Wya廉V]CŻLm?P{;5>6nS5B9Byzg-OOϼ ?H/y2 $!;ҁBN ~ߴJf ҃=ֳ!'҃A/mwSz/rJ15DTQi+C+;Op Y$ %_f; jr_ F>eՔ˛/Ͱ6openconnect-8.20/tests/certs/user-key-pkcs1.der0000644000076400007640000000260014040533771023273 0ustar00dwoodhoudwoodhou000000000000000|1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)0] $W~P3T[-b'\BN 2+$^,yjzTx}.5i39B]47,|*[AtRߡF=4/U@|L$?\d\UR1B&@-,V ޮás-*5eGtpحtPrՇ?̶&%YٺGCM۝IP3*D@d.B% vy](U82ֺsܶ_fLָid\~L[7)<=C3#3$XîL= N.x v=^o}MqjG% ;־9ׂ=T=v]4Oy^\qYCW<3 M9?bO!zZ_)g?#=ټGV~)gjZ0 I`ј⊝)3Dw4>ߘ̫s<\"O <#=u|NwpWT">YZObU}-!շO":2mRvV=t[Xrn"DjEkF>B? *{!]س]|b6"74^g8[Mօ: <G5/Ƭhq^:aD룠/]_)†ggtl5=[j^َꇽoVHtWim|Q;㪞u s8^s:$UNX*BI%+E`X>L@B ?NhAy~dgE(W f`$2l$CV"P)8NBYI2 e07)c  4ThqHopenconnect-8.20/tests/certs/user-key-pkcs8-pbes1-md5-des.der0000644000076400007640000000270514043307247025554 0ustar00dwoodhoudwoodhou0000000000000000 *H 0LbBJWk񤝮QK0vD|DizR0Wi #,Oaeu⵴_jp\rس]@$s3_}b-h˽_R8`vxޛCkpUeҥHdGob 3Xm$>Vr wE CKڭO|nQ#L͖Sle.\PA7;Zh%neyS~B)&,"YAEu*P̀z\gqL m9z~T=.hp&Z郿eF.MQNn%_`]ʣ }!9d ƍ%V#嬜Z( s}oDFZC{I.Q;jbn`,N!#z =ᇏ,R\˵fiZi, *z-eYc5v175[gzliu_Mff4k*Y7 Fik\Bd:m^&ORi5W7[2&gҪuj曹n]`26w/̯1 I>(tLz);USˋe/VD6םn~O raff~T@)ujUA#zɥA6=mƮkK0ڦ- V>(ioA$ X>F`&Sk|qFz6k9V^'K{T21׽* PMEFIOm*g>RqR}-t&[C(`t q)wUEx\^X Bz)I> Byy/d<&?XiJWx@\P MOџ9@3a^:kL$Gr惵'g&Iy偃:7Ux`jRHG8MZGԌ\S}4M.&yUFs,S M Ko qhи C{ۆ|ACGL.G_ ތ߀<ާ*0WH)ɬۘ)Xe)i2]-FGW*yJ6/`!Y$GT\c+Ӊ9v4,C' &%CC6v {9ڂ;hrֈ)@ru;|4j q;k(l 6GLLlJ(;,a?^B1N"GPxY>)4&~\][XL9Kopenconnect-8.20/tests/certs/ec-key-pkcs8-pbes2-sha1.pem0000644000076400007640000000057314043307244024571 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIHeMEkGCSqGSIb3DQEFDTA8MBsGCSqGSIb3DQEFDDAOBAiebBrnqPv4owICCAAw HQYJYIZIAWUDBAEqBBBykFR6i1My/DYFBYrz1lmABIGQ3XGpp3+v/ENC1S+X7Ay6 JoquYKuMw6yUmWoGFvPIPA9UWqMve2Uj4l2l96Sywd6iNFP63ow6pIq4wUP6REuY ZhCgoAOQomeFqhAhkw6QJCygp5vw2rh9OZ5tiP/Ko6IDTA2rSas91nepHpQOb247 zta5XzXb5TRkBsVU8tAPADP+wS/vBCS05ne1wmhdD6c6 -----END ENCRYPTED PRIVATE KEY----- openconnect-8.20/tests/certs/swtpm-ec-p384-key-tpm.pem0000644000076400007640000000071714062600131024332 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN TSS2 PRIVATE KEY----- MIIBIAYGZ4EFCgEDoAMBAQECBEAAAAEEeAB2ACMACwAEBHIAAAAQABAABAAQADAw ygu/Wc3eiVpY5OGITRvMx+rwWyZzvTrZPSOKbt5LvcrMbKs4t1C+8x/GZbSGihoA MMUWnZfMpGKmHxKusSKIuH3MzQSIu4J7cMwQYZTju2aD6YTddvW+WA85KhJjrFoH VASBkACOACADwmRtOwnzKFEbShzG2qvEkrUDotPBWIUWMbU1sPgLPAAQqsD0aD/s Y+2PDxMeUyuL22JCvhAPSRK5FeMIbkQS4cjPcR6OiuhxoM2QVI5Cs5nSeR9OEdOv 4zX2qAeqYc1peFDj2r3NHaxsCXw5y5K6+A/a3XvftQVfIQTr1Di0hr0XuZmgE4e4 1o0Ulw== -----END TSS2 PRIVATE KEY----- openconnect-8.20/tests/certs/user-key-pkcs8-pbes1-md5-des.pem0000644000076400007640000000403514043307244025556 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFwTAbBgkqhkiG9w0BBQMwDgQIj0zLYsYVnewCAggABIIFoNbtBreeQp6iStj1 h6NXjxaaa+zxpJ2ujFGlkUuYMHYHRHyBRBLPEIBpFK8TeoGz5PtS0TDdV6fNwGmw qv4aDSMFLMNPvdhh85mEZXW54rW0h8YOy/dfaueHcAYBlANccpnYs11AJHOul8sz X32Q5cDOE2KUqC0DaMu9X1I4YHa2AMrX6Z7/pLx4FN6bAbGNgENrm6j7+53xf7Nw +rdV9WXm0qXlSJ/yZNnawEdvYgzUM4YC91iIDoFthiQ+VtRy7oTQC3dFCsjT80NL 2q0X555PfPpuUSOgTKznzZbkUwMWhmzUZZwEly4YXFBBNztaaL2nJeZu+QOZZXlT 7H7UQvcpgiYszh4WIlm0vEG6CEXm4X/Rdf2q4LMqs4BQGKfMgJbZeq9cF2cIcf5M CrKxyW3qOXp+kFQ9LsURxcrgiWhwJlrpg7+NxWVGLstNUU4R5W4lAF9g3/xdo7P9 w8qjxwp9kcMhOWT62AaTwtLkIMaNJarwViMCluWsnIdaKL4Etb+iC7VzyucAHA59 5KjHb0S8RlpDe5roSS6GxdxRiztqYn+riW5gA7v8HiyyTiHnF8AjehwNuck94YeP lMosUqXYG/BcDsu1ZtFpWmmRqNgss5eQ6bogKqKI0wN6vC1lqVljho0123ae9Jkx NzX05s1b4mcBemxpdV9N0tNmZh3gmYn7+7vN7xzzNGsSKtwZWTcM4/ZGlK/uyGmb a1xCvRr+5v+fZDpt2l4myfZPUp8UuPRpNVc3FaTl8Btb6jKHJtZnmdKqunVqzOab uf6cgLHBbl2Ah+Dd4tv3YMUy6zZ3Bge0HL4vzK+B1svDBOIRMQvI0N7usUndPp2q KK100tdMtNF6KTv5VVOApIuu7MuLwN9lqRXKwbyaL1ZEx/Xj5jbXnQJu935/Twpy YWZm4Rd/uay1flQXQMjhKXUC32rNAvQUVcFBBoUjGw96yaW1QTaiPYq2bcauH4K3 rAZrSzDapi0gVoYACD4oqh30aW+aQaKxkRn9ziQLWDyaTU836EYnS071BPq9evth iFi2uGnnYmVtF1j1RDDaiC6ip2DxznDuvmM+sz6k6cUIvazqx0bp4ZXcAGAmU4lr fHEbw0YZ4NvvejYAApRrqzlWvf9e4icR5UvMe/lUkjIxkde9n/PZKhYLUJxNReUQ 8ZtGSU8cbYcqr2eZhj71vFJ/cedSrLnLfd8tFXQmkKlb9EOFAYgo02CBdKMNcSl3 FlVFeFywXljSGwmZv8rr2u7vEUIGlXrEKZnLST76DQpC/Xl5phTrL2Q8JqsHP/OH olisadfSEUoB5PEGV3iqQKOvxVxQIE1P0Z85DuBAguOAM2Gfg/FeOmuvTCQY3uDe ALZH8KW5cuaDtePXJ2fRJkl5rxrlgYMcxzr2EtQ3VZJ/eGBqUtjewZrAu9POSO74 7oMTp60ZRxXi3jiUrJZNWtRH//6ezNSMyhWsl6dcyFN96TTzik0uJnlVBEZzF60s Uw1NIBdLom8Lccxo0LjKIIxDvLb7e+MG9tuGrXwSyUFDR4pMzC7nR18JE96M34DG 2/k83qcq74swV+K5xEicsBkpyazbmLYpFpZY8pfI1mUb+ilp3+veMtdduS1GR/RX KgXqeUr5toY2L2AIIRasm6j0t9ZZ7vbe+q+dluIkBKaTR1Rc+txjK8jxkdOJGDmz f3am49sFNAIstvDzQ+wnxCAmG6mY+pAlQ0P8NnYMu57dxAEQe6PvFjnP2f3aghs7 m2jXct/WiNQG6aopxEDb9XL8daI7fOHKNGodqRMBC3GsO2sEvii2/Gy5DL4Kiro2 5UfWTPOCFotMbJYTSp/KKJbk4fMC1xI7lKosYYXbHhg/oV5Cr5zp8DFO+SL4lB7v R/VQqKJ4AJpZiz4pNCbwfqNchr3bXe4AosATW1igTDkZf6u6Sw== -----END ENCRYPTED PRIVATE KEY----- openconnect-8.20/tests/certs/swtpm-ec-p384-cert.pem0000644000076400007640000000145614062600131023702 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIICLDCB5QIEYJ04HTANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJDQTAeFw0y MTA1MTMxNDMwNTNaFw0zMTA1MTExNDMwNTNaMCcxDzANBgNVBAMMBkEgdXNlcjEU MBIGCgmSJomT8ixkAQEMBHRlc3QwdjAQBgcqhkjOPQIBBgUrgQQAIgNiAAQwygu/ Wc3eiVpY5OGITRvMx+rwWyZzvTrZPSOKbt5LvcrMbKs4t1C+8x/GZbSGihrFFp2X zKRiph8SrrEiiLh9zM0EiLuCe3DMEGGU47tmg+mE3Xb1vlgPOSoSY6xaB1QwDQYJ KoZIhvcNAQELBQADggExACPKs75AQhlseYN2qvdKtFJl/3RYcj4xgyzJS2mgybOg 1lp2GkRv6dIGRr4M/Hf3yCBbKEo9MNVLkQ9ULQ5xgk24ziWkrksT2T4cn26dDyEt 84sD1lJUuyqQltb262NxTb7z6iVo9taeW8rqj1h3RSpLtbUxI+5mjZjqYfXTdOFW 0iGwV47G4MmOLNxDBuZ4N+FLfjAAEoMaBdUsucSTIXfbEYThfCUrSUrDzqH4LEoA b4klqxSxZqtkGMYse2kepe1XTgy0eOCtvSvBO4MUBoTrQs2OydJ+pdBFTqnk7arD KZoSx9xSnJr3+ItMungPoPqcFhCvVJ2YSWv6RKCzrsRfIaPH0g3f8TjNXAuGhKnS m/FxqiIYBAOXZX+DtlsJGC76/VE1+oMmEMSi8Sw0q1k= -----END CERTIFICATE----- openconnect-8.20/tests/certs/swtpm-rsa-cert.pem0000644000076400007640000000203214062600131023373 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIC2zCCAZMCBGCc7a4wDQYJKoZIhvcNAQELBQAwDTELMAkGA1UEAxMCQ0EwHhcN MjEwNTEzMDkxMzE4WhcNMzEwNTExMDkxMzE4WjAnMQ8wDQYDVQQDDAZBIHVzZXIx FDASBgoJkiaJk/IsZAEBDAR0ZXN0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEApUmzK/M0T5YwryIcmAT4ImqdCc4e1Pa8nViGPaT47VakpAqryCYawQrz mDXMsHeKP8+4mRCfNaAGdl6xdZcWVZLhTuDtJepk8p8WsHl4BwXqMH9gzLoKmSr+ JvSvi7gUnOsG2DBPFAfbfNiBrpMbkplz09VSjq/goyLOm/qV9KFPQ7+eJXixkDyA 0EndVULujOK/a+EaemXNiH+Ya99ezVg4OBRTFy/z1afhJqRU+XL4kTlHJ8CTmSET gT+b/IP1PU7kj58+InL8YUEdE9Ec6zIiuAUTfmQtQFKuFUGmalnXJ+/h17oc3QOx /5P3lFmzIOCZyG6jCCYuanl/q/XFiwIDAQABMA0GCSqGSIb3DQEBCwUAA4IBMQA+ ocITQqinZT4txBGfoV88jwyuwC6+w/FaKB15XxiJPLn85HG31ImRiTxAyCHFr6fh p8nHHQ/gj3Sj2WNaY1aQGRGYpj662Vpmyu+zvfOVh+4WpwGssRE7dvW9xmlWbZac JS9PMUoArD4J3wOTomREzpKmeUBOwhUjuXGbhYGEGnU7Y5L3Q3p0d2aUTDD0ivQF JpxQ5WRhthTg0MG7W8alPrSStMEfDqY1Zqc2gFmTmJMwCtT26PeSvrLOQ7LanZyH k6Zwrjl2niSXLQLDCxRlKvGnJbeIxQgjt7MWmVS/uFjPdxBqrfd/meHDWLQ034xP xYODVB65GR124mnmXSAQ1ZDbtmdiGCAPknxZMEEJOIG4MZMWHv8s+GhjIEL0sdls yT6FGwsnS86mEKqWSakQ -----END CERTIFICATE----- openconnect-8.20/tests/certs/user-key-pkcs8.der0000644000076400007640000000263214043307233023302 0ustar00dwoodhoudwoodhou0000000000000000  *H 0|1Tyx-HQe@RI]p&h9o@E"qZX(y^2%>;4/7b2SC,]5+4f֧ЃVt0-([z͜\Q Hq4w]xH 7 e;+rR_` Cf&)>jb X&D׌ov 䘷rz]O #.q0_u g}MvdJPǏy>/3'M`$r=)J<I>&z=EZM*cO-c(;GG|,A2ɾU,kF*V)0] $W~P3T[-b'\BN 2+$^,yjzTx}.5i39B]47,|*[AtRߡF=4/U@|L$?\d\UR1B&@-,V ޮás-*5eGtpحtPrՇ?̶&%YٺGCM۝IP3*D@d.B% vy](U82ֺsܶ_fLָid\~L[7)<=C3#3$XîL= N.x v=^o}MqjG% ;־9ׂ=T=v]4Oy^\qYCW<3 M9?bO!zZ_)g?#=ټGV~)gjZ0 I`ј⊝)3Dw4>ߘ̫s<\"O <#=u|NwpWT">YZObU}-!շO":2mRvV=t[Xrn"DjEkF>B? *{!]س]|b6"74^g8[Mօ: <G5/Ƭhq^:aD룠/]_)†ggtl5=[j^َꇽoVHtWim|Q;㪞u s8^s:$UNX*BI%+E`X>L@B ?NhAy~dgE(W f`$2l$CV"P)8NBYI2 e07)c  4ThqHopenconnect-8.20/tests/certs/ec-key-pkcs1-aes128.pem0000644000076400007640000000047214040533771023721 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN EC PRIVATE KEY----- Proc-Type: 4,ENCRYPTED DEK-Info: AES-128-CBC,927CAE0CE3B772EB2C054434B4BAAEFB q+NRTd0tcrm8yZxMX98F3aFBmuW+4dSqZUKpcNbAPcAVI3YChesLJ7gSpwtlIJkR WHDain7tM5jsioNxYCBBi9RZ8k7yzl1XGY8ipVQbHFh9tS38Fku17DL8lSpyRR+f EhleTvJEvHFFENFQtx56zGQ0T7ePdV3UvO9jDcyMAXQ= -----END EC PRIVATE KEY----- openconnect-8.20/tests/certs/user-cert.pem0000644000076400007640000000241114043307244022425 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDjDCCAkSgAwIBAgIEUdgvFDANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJD QTAiGA8yMDEzMDcwNjE0NTIwNVoYDzIwMjMwNTE1MTQ1MjA1WjAnMQ8wDQYDVQQD EwZBIHVzZXIxFDASBgoJkiaJk/IsZAEBEwR0ZXN0MIIBUjANBgkqhkiG9w0BAQEF AAOCAT8AMIIBOgKCATEAq1SY/KnGFZWdpsGUhJSReR542y1IUZllAQLAQFJJXetw vCbvaDkeBJHi28tvk0BFHiKOcVpYiSh5XhoyJT6LnTs0fxn40C83t2Iyt1OlQyzF Xeys+TX6FCs0ZvHWp6HQg5pW9BmDvL8RdDAtqChboqt6xs2cXPhR6akMSNtxu7E0 d/fu3l14wEgKNw1lHjsrFAOJcvJS7V8AxQZg6oAg0EPsZrzSJtvwKT5q+WIgvlgm RLrXjG92pgUg5Ji3xHJ6Xd9PDSPsLpxx7DD5FF/IdQurZ/Z9+012ZEql1fq0CFCd E8ePwnmwtD4vidMzJ02fi9NgJAersnI9KaXESuw8BNJJPiYb7HoQPcpFWoCLTSqW Y08tYygPO0dHynwsFUEy1eDJvqVVLLNrRipWsRvtKQIDAQABo3YwdDAMBgNVHRMB Af8EAjAAMBMGA1UdJQQMMAoGCCsGAQUFBwMCMA8GA1UdDwEB/wQFAwMHoAAwHQYD VR0OBBYEFIsBCUs7kezjIbkd7I1rTF2eQIBeMB8GA1UdIwQYMBaAFEgjNFMKiTE4 SlrqyrbSpt7OHSsYMA0GCSqGSIb3DQEBCwUAA4IBMQBrveOQ1xHPbA3jvfRhzVeD Qb4qkkbd+kRsYBzvPh4v4eJbRYhqHlAtjZbEx4B1WXtUa/uGsPFtRQnbSN4gCodg MF418FLEVUTB/+F8PdZtWMoc/b8EmpsQNQX80QE8r7tkMV5Zj+9vDTXlwAd3DjEg juMu8aZN8b6FW98ESJ2MycnBuOPi0ktVg+nYe3Evjon8TafxsL9Hm5fEhd3DPTgV NghzEIcI9uYcTimopfUkuA3p2bgZJx1zNf57gR9KgWqTzaJx12AOCO7qyCtEG+RF bP5EaNaGrYlPfp/5GiqXD2vrXW44s1sTueNKEDJb3Km0oU6z+U+R3rzMNpFEuuA0 dPdotHsO207sKAMBzwpjxCN1C0tBneBos8u/tVw9UpMguuq48Iz3puzNo6pPKv8g -----END CERTIFICATE----- openconnect-8.20/tests/certs/user-key-pkcs8-pbes1-sha1-3des.pem0000644000076400007640000000403514043307244026010 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIFwjAcBgoqhkiG9w0BDAEDMA4ECGT7vziFqXEkAgIIAASCBaBZVTKtQqnE5MuC AgjsFQc8GGYU28y0J5Pmo1BDc4VgvkFF6ey7MVhr5le9dH8xmI8I4ejslr4diF5I O3l+o/cBWEH0UeeEXiMn6sliOW1WX9mw4ZPYs8YsECxBenn6u8yEmfWbRr7O8pMZ Kfw4agKcE7UFNKllhau/OMH6xb8DOXLx+67RvOKZpIbuZTnL0p7yU1d1hldDlLeM rOXoEcxkzY9JqNzvsrbrXf/MynnSIyQJqI2e31Pqn2MX/hUX4MqF7QnsUh6nYUlX O/srKG4Uk55kO5zpcNBfyPLwBejnsRHnCMaClajvdnw3odo/oWnzzm61sgroyBcI 05NsOEk7CxrL/iAuBZeLv6wTVMSS6Eo0tgTN42tlumfjta0NIagaub6tnchLyf4i LvZnn23ua5OxI+yZ6oOoX3xJR3XxaX9Ii5pPZBny/QXZ+xL2uJNU6FUNhRlF8ywA Tc+FJnk/4AAXPtB4Hg/g5MhOXpD+oleOlPmxkLZHENGabiDi6ysEZv/gtdPK090i FDPJQJrIDttc6/Jbs1ECVGexViHaF5WBBdW6Ukgh6JII+fGcbL65AXKCFTeZfoum G4LUSndP34oLB4Xsoigz0sEfbfsSz7fD2AKfFOX0RiFfL4mL2GkVIbYVzA7Olav8 bwGV7uRj8Q+pAc4JbWxP/4YlReNHNwRGVzo/vptjadNS1vMvU6bc9hYZhhdGpZiA S1KYV5BLiFx2skmKSI9h6AF3zjYk30LObNk7G/80x8Dw4J5KjjXp2ZGtb8kwYrSJ WiwhUX5rn9LMWbLhvzUdV/adUI/f6deA5Bu4H/DjU1ApSo8gdf1tnmuRiHOuA8Wg pudUv3evn1g8WlvD7DDg9RbgXNp82A+b5MGODbB8M2pOSErnPcypIffc+LSAjK+m 32txpWlMO6M6nI/1shkrb0pvJZnr/MriVDLV6AsB/s3Cs1w8TV0rkZvnuZOPfLZP G3GDjZrJ5YMDElFh2xPN0WzneJOi7lOA/LMIJp7P4Eg8PlghbPmBejx586pfzfsQ TJ8WEQstPRWWdjDmQqofHgPLh5B6cP1I9UPiYD+ldUu2rhl/US/red2kWOY8COfz J/1Hnx6jQcQYBU9la6Cu3oaNwUU7VU158rz1Mc6hl28q/yZ5/3zaVruYSyQjNoG2 CHKthdQLq25FkAIcU38K9T8Qb8dLdqKGnl4sizIRzAoVlrJInV03aufIAW0hlv3X EVKqv80WPuTo0gMdDPqU31c8cMsBHvp+zq63CmUN+8jXZF9ARfWUaA6iSIRHMDox g47DPZKjvkRsWgo349QPW1o4qmZ2joxJLXuDcJEFAMHzByxipi5JcwaZBuYGBHmB e/Vhl5OTVb/aDzW2PRBMvrz7Cwo9K2usSQlUO5IR4Lrs9TAafbREE8T47uXz/+Y8 K/P14JtHwJAagxLNsYyZzOXp80FJUoIbHyQDUSDsQu5eiAlPBFlWD9lEoQzeOUqy yt5UUD8hnpPydYvMwlU9qWgY9fuBNIcYr3OsseRHalq8AOrIV6PuoDB/uKltBt0i jzBMjj6JjgjUnki1u/drbi6g16dC1b7xM5So2ZR9ihQVgp1uOEivesM+9xMu4KJp ljnMbgUi4xIsLoqDziP8zGXljnG3WnpZYRXoy6fOOW+RuwSPeLZN6l/AkTzPvB6U jq1r5XOMq7tBy0BIPvki8lk/vgjWWox1XGpcTZ4F38Hv1ghReHO/mMW0iRs9YNoO fVD5pR6VAaiAa0/1jaZA2Dcg66a+mAYrc9BmYG3klbF30I5eJyxjKGqey6TESj1u xYBf+X4pbmCZgFSz3JDdFD5guaVBK+JtiP1MLJaNj2+GDXqu8bbOZlEK1RLsxQBE FqKQqAXSf3W3YJK8kPR8PSyiokROwvzSE7I9k9loptu92wqNYyo= -----END ENCRYPTED PRIVATE KEY----- openconnect-8.20/tests/certs/user-key-pkcs8.pem0000644000076400007640000000371414040533771023320 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN PRIVATE KEY----- MIIFlgIBADANBgkqhkiG9w0BAQEFAASCBYAwggV8AgEAAoIBMQCrVJj8qcYVlZ2m wZSElJF5HnjbLUhRmWUBAsBAUkld63C8Ju9oOR4EkeLby2+TQEUeIo5xWliJKHle GjIlPoudOzR/GfjQLze3YjK3U6VDLMVd7Kz5NfoUKzRm8danodCDmlb0GYO8vxF0 MC2oKFuiq3rGzZxc+FHpqQxI23G7sTR39+7eXXjASAo3DWUeOysUA4ly8lLtXwDF BmDqgCDQQ+xmvNIm2/ApPmr5YiC+WCZEuteMb3amBSDkmLfEcnpd308NI+wunHHs MPkUX8h1C6tn9n37TXZkSqXV+rQIUJ0Tx4/CebC0Pi+J0zMnTZ+L02AkB6uycj0p pcRK7DwE0kk+JhvsehA9ykVagItNKpZjTy1jKA87R0fKfCwVQTLV4Mm+pVUss2tG KlaxG+0pAgMBAAECggEwXZcg2ySCqFfKfsVQM/xUWy1iJ5hc4PZCToMKMhjBKyTp uF4seWp6E1T978L5eB6rowKNfS41HveVFOqKaf34ljM5QhUV7eNdNDfYLHzs0f0q 81vOQXRS36GaRoHlGD00gi9VQJKPfBODnUyUJD+njvzNXLwEpmSfmlxV8ZauUjFC 0CYHvkChLagsrFYM3q7DoXMtKjVlR3Swm3C52K0SdFCzAPuGctUA6AKy0ePVhz/M tvMm/iXBtVm94Mn62bpH+EPqr89Nkq7bnRFJ7FAzKrZEQKwGx/ZkLkIlgSDV9nZ5 ufu90sVd9ygWncwTzdlV48rH0jjxkjLWuttztty2X2aJ40ye1rjSAe6o0mlk3Vwa fkzkHVs3lCk8kz1DuzOPECMUErAzJFjDrpdMPcXBgQKBmQDBnA1OqhsuxBTmeO0L dpCv2j1eFW99nJdNcaMdakeUJSCdmPTQO9a+vhI559eCPVQ993YG4qxd5h80/byd nIv1T4OJj3nqnl6lXOm0ca5ZQ//sA/ZXPNYzC7pNOT+QYrJPr+AheloPk/T8X7op ua9nGD8OIz3e2bxHrd5WEdHjwH4pu2esG2qvWjAZDBRJr9saghBg4dGY3QKBmQDi ip2AtSkzBkTS43e9ND7A35jMq/O6czwZXNjtyCK8uY9PGtgNCOLiyug8E6ojGz11 1HziTs3K0Py3d3BXVOEcIqI+D6dZwFpPsehiVYUHfQOkj4LrLSH8y9W3PHelnWem q5VdHtOjSXibdSwH6b26D2Zpfi5QL3Zf6Sj44cnOd0pI7pLR1dwpLz8pehKw1vmN aOSCRew6vQKBmHiO3LZ0NDL9xGnzOOAfd18ZTYdNX7xfCtQdg82oRWQZbmLUQPV9 nW3u21iVZlviJpfjhOoqsdxSlHIh4hZeycP6PFUnM2qGLTdZUOmctE0/i5gCq52M 83Cbx+mYUV1uJ8x5Ht6Z2oTCxBV24mxjBLb0oScDiN5AxP35ZW5A8GqajbUcziSc eeUxCqw+Gk/8IjoybVJ2q1Y9AoGZAJt0W1hy+G6XIqtEhGpFa7qWtRfd90Y+xULy P7oL2CqBeyHhXdiz/F18t5hiNiIZEzfENF5njThb6M9NGr4S9NaFvaewvjoMkOyX PMwdu0fENbe68y/GrMf4aBNxXvk65mGs5LYd7UTjqeujoC9d6l+/KZvChq1npGd0 bDU9W2pe2Y7qh72Ob6GjVkh0CFdpbZ3oGMZ8jPpRAoGZAILS5Dvjqp6ZdQ1z5Ok4 9V5z5MI6JFVO6lj3KvIP/0LX4u9J0iWNhgKnK8lFHu6gHGBYPky7QJlCIP/HP05o jIv06EH+9HkApH5kZ5WOv8NFKNzaV7mqIKxmsMgRsprCYKwkMn8X5GzcJENWIlCG Kac4+06M4ZrIQqRZq0kyvQtlMDcGlSljiAkRCwrzNIL2VGjMcenqn0gP -----END PRIVATE KEY----- openconnect-8.20/tests/certs/user-key-pkcs8-pbes2-sha256.pem0000644000076400007640000000415714043307244025336 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIF/TBXBgkqhkiG9w0BBQ0wSjApBgkqhkiG9w0BBQwwHAQI1NhoCmm0bicCAggA MAwGCCqGSIb3DQIJBQAwHQYJYIZIAWUDBAEqBBDk8ZQX5/5RSgw6O5zfStl7BIIF oBFsReLKYFvjQeo3SPCU4JSlXwjtHdGCCBI6q3+mtMhxk8QJ1GQnGl93zbUNuXlC Cthr/X5WJtGdkOGYtAt0pO1bLwL6euvTO7rkU/IwubGF6HH/84gNGNjkL/zJXdDR v+FzYIpfmgpkLOEIvN6NvplSS6U0RAb/DOg2tAlI0D3FY7Y5rGiw3aioRG1lg8Wr CXRyRiK58XfqcHrkMXdb5f6QGKtoyJZvzAfHjnkVeX5OFeYB0sPHWAtrHQMX+tna ddHDQ/p7GPuw0JVR4q75IRs+QQ1GqRTT0PC2LaYzn0uxatPH/Z3nW9CxAa7E5SQK VePbvdS5QHwEAITG0VXFowTOuhNYAvacqYaYXpd/gHEa26H3gBMKxfrOfWjXsmcS VO72oZCAa2VS8RRQ6AhwmqZ2vmDNvenBPGK/3R+aGX4fFgmN+Uv2CxAu8ZYN1WHt BJOdI1hTFrtLCfuU398CPdk8Xc0Y45N29Ao+XW0W8z1hqACpVAy89YYilF4wRRpH ZnBKrwvxhfQcqVSuJOOfxmxqQrylzzCF4O6ug+lE+RlZpO5Yvtmqc/i4SzzxAu8x XentKLEIPmQaUpWElHriL/YYeDHpj46PAPbyfh2vgxLFGvsf6CHT1PkyNmHGwR6Y FmoEQ75i3f9PTnQ/byYODkyiYmNxPnCEOpNZp8qNnAZ8YnkifOmMqYJcaglohdlP REIAehmXKgyzDpe1Xi6OQfwDyIB7Dw+oNqajSUyLHqOtRv6ziLxbwpEc1gMETyeP yUlQuenAy96n6WvQKPF3boMH0KkrjaPyvBDsawIPBXKlKRPL0d9XQQn7m1mqRUtb nVkog2XKXuDAyVDQC07dRhJZ4u/AMX+4KaJ6Y2DhQLYDuKgvHqI1JSJYd6OeSGce WsiwkiTS2nEz5WPgHWM1sEPsFwlWnxubou2DPzWugh1IIed68TgyShgTG0yxdz4E ICVqdBN6HHHTuMdyQgasxc62QhHo0FgdE3XWaNFJ15edK0aMZbfZaxv5Ab0iZYUI lDtrhrenYFr+/davowWJ645S95+bKagSkmPmz1G/orjh86XE93rswhw/0EbxyRSK CO4hkOVifdrAw6z6pTfx9OJf7hFtWBQ4wxZTRrzLtWV5qKP2GBDiaewl7R6/eoWs TsUNEjhry3jLjqzmTOtZz3ZwvHkCZhNekdKIHSEWEH/uZkQaHIVk20tpqqdL365s U2FBNC7/rJXzYbtwRzOhNmswYaKxBmnxOhoWfsCcJZVElB6qDHIQkBFSyQBhQ1ec M+hSsAo/3TWM7z63PJNOCPnOr/KspMHCuh6iDy4yd1FN1rGZ0DNbL8QE/9pS8zIw fBYi1/7oWIDeAvw5h8CW3p6o4XMCNl+WtWQBaRVkd7LDtRoLczrwRz3eR6vlvPvd 7gEeqi5O9RIgRkLA6q+j1EwnBdIdcV+OZtmCFMk8CcTQONAFyynLqpq2zGjB/xCH yyORpPEHZiJJhcEmWf1eu3BJPnLL9RW8wCTlRwF2nKeYf3fRMjFQDQ5xTuuy1RxT uG0l9cWl970+BHoAEohewKcTBYz8s9fHqxm65eI0DW2WVWE99ilm4bhbsnkHRTNa uwwH6IxXeZyWH5Bh76aiulbT4qFdQ+4SxbuuGZzRTG0/UPrYe5n9/TuhNT6b6BKv Nutu6P3j4oPAuVObNUL7OUKMB7eDzBC4eXpnD6WuHdEAh9EtT0+/7Nzoz7yiwhS3 v/msCT9IANXsL3kyneKOCyQhyDu90oGxu65CwutOIPZ+lt+0vgYfSpmmZgnSg5a4 vT3a1rMQvSEntPHSg39BL6xtd7FTrnovckrp74QxNdwRlkTXVLRRaYErBEPhK7+S vKuEkoGfO+dPDqMVioxwEQtZJAuhJZRfZjsMorrIanK/XyBGPmXVlMubLwLNsDaq 1w== -----END ENCRYPTED PRIVATE KEY----- openconnect-8.20/tests/certs/server-cert.pem0000644000076400007640000000242214040533771022762 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDkTCCAkmgAwIBAgIEUdgu8DANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJD QTAiGA8yMDEzMDcwNjE0NTEyOVoYDzIwMjMwNTE1MTQ1MTI5WjAUMRIwEAYDVQQD Ewlsb2NhbGhvc3QwggFSMA0GCSqGSIb3DQEBAQUAA4IBPwAwggE6AoIBMQCnOivs PxSwLBn28W6QHb+OqfbpcIQJh/NQ81/DlFD6LGTWV4BY4Zb87tC9BBV+X3+lM/j8 u5HvN3nDWtv4Ge0DryLW6Tcs6FPCt4srEfCkh5l54LrMmWbhFgkVlN5fTqoY0lnd YJx2X8WWldRjeL+8E7nFUcFStWrgi9AzgMFrjsL4pql97YAZRXcMoQXVjbRmzVLZ IVumQy7c+tl7Eqz8lx/xS/5Fx9tIRunqNS5jEUs8Nn5E6FvraAcy+eI0gXTGk759 KNPYisSqAuFAmmt/XDTTvvOo6dpAseXqtR2/LjZJWOlXdiZ/yjHg5+RKQ5dt3dk5 7lAIWER9egIOo/+GAkyek0ZJ5GWU6VxTsFcIl6oy3S7EtB0NCIM7hvhy32QrJ5ZU yNncTSf6qMVoedgdAgMBAAGjgY0wgYowDAYDVR0TAQH/BAIwADAUBgNVHREEDTAL gglsb2NhbGhvc3QwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDwYDVR0PAQH/BAUDAweg ADAdBgNVHQ4EFgQUqCVH9o9E1jUb72ys0de5boT536MwHwYDVR0jBBgwFoAUSCM0 UwqJMThKWurKttKm3s4dKxgwDQYJKoZIhvcNAQELBQADggExAK7dBCSwM/OJw+6s 9MJAb7Ygi9xhHSq30Hg3M7DaPC7J9rZB6+IAVb3poOZAtDDtyTqvXH7qY5UMjJC9 GsFmHPI/OSk2xuJJpG+ZJaP54b7kzTtUD6UCHETsgBk2aNuqNhjXR2fYnR9QME0C zZWIDV+5DFEBI97ln30N6PcXvIxp7Rsac3qwzvwt3zL+23kTwgM+DoRPoPO0PHr/ eQ9hvRU5wA2Vc47zhUXIFy1Jmx7Sf//pw0/wq46VUAjDZ5B09EoCpzBNvOD7P+cF FQQ7SId8h8OQ2uOWxT2baeJX0pVbVv+qwOOB1F0q3sjx0dZa/2rxOUZ3wnHG9j8j LZSUkZxGpPQffCSpSPma5RhYff8/BncdA8soT0dyEfXIX5V91IXnrlI8XZrADvJM zzJKdNg= -----END CERTIFICATE----- openconnect-8.20/tests/certs/dsa-key-aes256-cbc-sha256.p120000644000076400007640000000324714040533771024443 0ustar00dwoodhoudwoodhou0000000000000000Y *H JF0B0D *H 5010* *H 0I *H  0<0 *H  0bg0 `He*SxCv2vN0KҀAp:;p|` F*\7\ ox2cw6w3 BpW^׈f̷WX%7eX8~K88fl1W?wˎ;Bc:^R - p 6m]dOq- T*bKOc b@iJ%51. - Qyܻ9f 0vtVe iM/98|_֭|V(} jO@Mp;imjCǽU͹P{װg ޟ,K@<bNFߑ 8Lw+V ͤ<7=>MQED\dXtj^LS88^+Gq9.N((7MtljX ^ 7В}B%CV.ߚ]6GXЗ0^aVbc}22ѻ޹=<)СK>2ݚMj0ǶM& qũ׼dp<3q%C\(k!{endD)%ϗkspBԖrcfxk۔QT4HAஐc6"AI.TʞRso@Y}%ƿDY|0=5.>z N~w#LPMmPh*Y6/Nx<(+cKE qg0J|e:Qٍ<E҅uEes?bRt,FtT;A}3.&o <i{oI$X:ϧz>lMLkp融e6͛]ՙUs0 *H 00 *H  00I *H  0<0 *H  0Ďw0 `He*I/O" P\mLjYOUP 'SdT<2} Uz~ǫ/?u&a%ec"RzR Ҡ! x0+whsG}_xQqIËědgc(ŘGm!hCx9!]V+Ǣv7x^/2%7: 枡e[)X KjHo 'yxn)b<:T  r,6 PT~YuOg$MOIS?EyeB\zݨ`Ie 0,7|]=lKrדlkB V3l/y1%0# *H  1[swIzv9'w/>Q *H=DBOr*Y@7LZ*틙pt |c1bcqxN^WGњn +f"3@\[QTgV!պRH!lr7~JwOߊ (3mϷF!_/i!Εoc mlO%EG7FW:?ciR/SFKRWK\vIHaw6$Bl;4J5ّo0bZ,!Q~kY5WP׀SP)J umksŠTwXX!lz WԞHkn.קBվ3ٔ}n8Hz>.i9n",.#eqZzYa˧9oxM_<ϼksA@H>"Y?Zu\j\MQxsŴ=`}PkO@7 릾+sf`m䕱wЎ^',c(jˤJ=nŀ_~)n`Tܐ>`A+mL,o zfQ Du`|=,DN=h۽ c*openconnect-8.20/tests/certs/dsa-key-pkcs1.pem0000644000076400007640000000214314040533771023075 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN DSA PARAMETERS----- MIIBHgKBgQC2eg243i39uMWlC5ZBLSJ15bwJxvT4D5mV9XkwNW3fKNVxLPRI3cum GxFrXS9yZkMy5tFXFdZYW1g0GP/TPNO6VWNZgWyqSehFyDS8K5wrp/2Ub+45awNB qcK001h4XNGcgnVnArOpP+4ARdgsgpxiiVXbyOP+dtLwDudFkXolSwIVAJi++LOe FrkdfO28Hk+GNbNbyaSVAoGAbDMbsgCe0xGtTi566g19Rtjk7MS+jNiMpzCk4Ky0 Q9Q88lQ8cmRqhsAeJOo7RJAwCGs+nNQRFpOmQZjKmwKh8Bp0Nth0lbDW5XUJYyBM EpUeEFFi4xt676aSBM1EerqrtFH9geYC+ssLbyotdWj9ESmhOjMgYw++T94Jo5ad dPE= -----END DSA PARAMETERS----- -----BEGIN DSA PRIVATE KEY----- MIIBugIBAAKBgQC2eg243i39uMWlC5ZBLSJ15bwJxvT4D5mV9XkwNW3fKNVxLPRI 3cumGxFrXS9yZkMy5tFXFdZYW1g0GP/TPNO6VWNZgWyqSehFyDS8K5wrp/2Ub+45 awNBqcK001h4XNGcgnVnArOpP+4ARdgsgpxiiVXbyOP+dtLwDudFkXolSwIVAJi+ +LOeFrkdfO28Hk+GNbNbyaSVAoGAbDMbsgCe0xGtTi566g19Rtjk7MS+jNiMpzCk 4Ky0Q9Q88lQ8cmRqhsAeJOo7RJAwCGs+nNQRFpOmQZjKmwKh8Bp0Nth0lbDW5XUJ YyBMEpUeEFFi4xt676aSBM1EerqrtFH9geYC+ssLbyotdWj9ESmhOjMgYw++T94J o5addPECgYBpChsNXENm9wRnRXuxmG+8SXrCsYBGiaovav+u8hGQkLYzzqKfEtFz jg8+vdQF0Fw0FT4GpC7AtyYQyHM0A1NZbVOtxlw0iBspMaDtrPvWiBAeR/oSmkaz u4aPOLeINjQ6yJfAFAab/LzBvRKf2Nh7PJesux4XzLrlXignSV1HuwIUcp2P6m0C WFnbb+ZdxIfFiUl2MmE= -----END DSA PRIVATE KEY----- openconnect-8.20/tests/certs/dsa-key-pkcs1.der0000644000076400007640000000067614040533771023077 0ustar00dwoodhoudwoodhou000000000000000z -ť A-"u y05m(q,H˦k]/rfC2WX[X4<ӺUcYlIE4++o9kA´Xx\ќug?E,bUvEz%K|O5[ɤl3N.z }Fľ،0଴CAʛt6tu c LQbz漣DzQ o*-uh):3 cO ti  \CfgE{oIz±F/j3΢s>\4>.&s4SYmS\4)1ֈGF864:ȗ{<̺^('I]GrmXYo]ćʼnIv2aopenconnect-8.20/tests/certs/ca.pem0000644000076400007640000000224414040533771021106 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN CERTIFICATE----- MIIDPzCCAfegAwIBAgIEUdguzDANBgkqhkiG9w0BAQsFADANMQswCQYDVQQDEwJD QTAiGA8yMDEzMDcwNjE0NTA1MloYDzIwMjMwNTE1MTQ1MDUyWjANMQswCQYDVQQD EwJDQTCCAVIwDQYJKoZIhvcNAQEBBQADggE/ADCCAToCggExALRrJ5glr8H/Hsqw fvTYvO1DhmdUXdq0HsKQX4M8AhH8E3KFsoikZUELdl8jvoqf/nlLczsux0s8vxbJ l1U1F/OhckswwuAnlBLzVgDmzoJLEV2kHpv6+rkbKk0Ytbql5gzHqKihbaqIhNyW DrJsHDWq58eUPfnVx8KiDUuzbnr3CF/FCc0Vkxr3mN8qTGaJJO0f0BZjgWWlWDuh zSVim5mBVAgXGOx8LwiiOyhXMp0XRwqG+2KxQZnm+96o6iB+8xvuuuqaIWQpkvKt c+UZBZ03U+IRnxhfIrriiw0AjJ4vp4c9QL5KoqWSCAwuYcBYfJqZ4dasgzklzz4b 7eujbZ3LxTjewcdumzQUvjA+gpAeuUqaduTvMwxGojFy9sNhC/iqZ4n0peV2N6Ep n4B5qnUCAwEAAaNDMEEwDwYDVR0TAQH/BAUwAwEB/zAPBgNVHQ8BAf8EBQMDBwQA MB0GA1UdDgQWBBRIIzRTCokxOEpa6sq20qbezh0rGDANBgkqhkiG9w0BAQsFAAOC ATEAa1kdd8E1PkM06Isw0S/thEll0rAYsNHwSX17IDUWocTTQlmVXBXcvLqM04QT z7WNG4eushLhRpSn8LJQkf4RgvAxOMIjHM9troDbPVoec6k8fZrJ8jfXurOgoOVP g+hScT3VDvxgiOVwgXSe2XBryGDaviRuSOHlfy5GPVirLJLZwpcX6RpsHMX9rrZX ghvf8dwm4To9H5wT0Le2FnZRoLOTMmpr49bfKJqy/U7AUHaf4saSdkdEIaGOxkPk x+SFlr9TjavnJvL0TApkvfNZ1aOVHRHINgaFYHQJ4U0jQ/g7lPmD+UtZWnvSMNXH yct5cKOyP4j7Kla1sKPs+oamOQ7pR1Z/GwBxe48FvO7VDi7EkugLwlzoXC2G+4Jg fJbi9Ui2FmXEeKkX34f1ONNj9Q== -----END CERTIFICATE----- openconnect-8.20/tests/certs/dsa-key-pkcs8-pbes2-sha1.pem0000644000076400007640000000120314040533771024743 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN ENCRYPTED PRIVATE KEY----- MIIBnzBJBgkqhkiG9w0BBQ0wPDAbBgkqhkiG9w0BBQwwDgQIooK903OtgzACAggA MB0GCWCGSAFlAwQBKgQQbMWAZkjuU6y8WEp20tn1hQSCAVBwhirHpLN0C7K5cCp4 AgsnHelzTShsU2MIS51sFtUDyoQBcF9oHw67+hwO8lvTlIJgF/OqsSSbMjQ2DsV2 eKmBehm9LdERiwnQYYxLdSX+mmXyvrRUpMTtNDgEpLK0J45K/j3smVZ8ibDWsjRE 23fe/SYrKFTNAEm+rU7XoTENLzsgPOWmmYpyBVwNNFrqqWxlXfrVSW/fZ/pWlAhh ErOAVAdogrjilWEOYMkB8mmKsFcCGx7kGVxvG6X77AhM6ke8qj4kUbHZkwR8tf08 /RbmrX/MxC3aMLhcldGEupSH5oI201L6qYP4DDbJNIndMk+xCMZQwBPvJB8nO6kA laxW1WMZX9W6m9XdWD2RkzFdHeGPC2jEQyQE7DuHIfT7cvq4MSBSI+iHHrh6KKam aaJU7IH5W7L7r/4DYtGG/j+Nu0eJbwzf2ep9zZjVXUNkCRM= -----END ENCRYPTED PRIVATE KEY----- openconnect-8.20/tests/certs/ec-key-pkcs8.der0000644000076400007640000000021214043307233022703 0ustar00dwoodhoudwoodhou0000000000000000*H=*H=m0k bnQyͼ:ϟ>wIzv9'w/>QDBOr*Y@7LZ*틙pt |c1bcq-s/*+D3m[4q w6mO+=J#5j'rzi;-ҙeҮbVsLvb*XkX n ĤTܩ?!HQ\: >!l90j[?_êpY1.]Y "蚂Hrs"3K`$0/Ir(SV' S:(᯲]5aP$`pIt;p뀁R K:}$] x+;l/ݷʏ(Dۮ#I_X;0,rRX-mZ\t|ŠD8魦A4̶˹ag5 9K0VMW>Rb>'shH$MϚgtPZ._pbv[IdV|oFetTjhGE|H-ĵX>zt`P?;4>;!`4U=0F]/~c4+fm NNj]zds;քHʪ (;) *~$82U{㝅S(>8؜*/o' 53i_O1I$pb"}>PX!" b1?;*XH#w 苄/|\\E3ݑӛpM*8+|ulNGwyz=W;/3ԤyZVHay$wƢdŴ@Jᮉ+'&vHiW! ѐ%h13,te_;:L8Y /؜G%ͥ}pE_-~JT>UECW7[>!o'T s dt&š߂/ )jzs Bm0 *H  00 *H  00 *H 0tGbUn̡PNA6*h5nzc:)7Ǐ]{S uMÙdj3.1 F<\+eכ_-L#Aǡ8s22LV}<<7%බ*:ɐ^=-'zA-m2g(.}Y|(`|z4ƓG(?9dee&,"64Z:u`i7) i`FS}Rp}62dDl눣PY1vX1xS>uV>/M&m1v r"2{{izW5GrAJf[JjtPy ;~(g[7ʧ[,d; <:d]^hv%~) VcID9DߡKG %7ks(Y/9'"0'^/r(-Pρ݊s40bLk5obbi:uaY6C$?FeĘ}|vȮ9f7B@gV`5SƇ[2vEBk#^MJxz2q PϢ``Z8̙dh4q62T Y*o#Y4Tv/Z4f^>=B:W| ;FE|^m>У$ɫ^;[p@ %3i<L&o"LW/̞"#}Q+*+?v5)dɣT+wwlyy^MD=Ǔg([0MV$aQK [@`nW3md2)qV$ׄP'<,QbP.jGø[0,m!I40pl@R_LlSֶ^CyV?1%0# *H  1jJʟإOt*ꄀQ0A010  `He kSaPg٥``?o-gPcʂnBopenconnect-8.20/tests/certs/ec-key-aes256-cbc-sha256.p120000644000076400007640000000220414043307244024250 0ustar00dwoodhoudwoodhou00000000000000006 *H '#00 *H 00 *H 0I *H  0<0 *H  0P&])0 `He*'{&\O! $;pXQrܖ]vaJ{EIycvtGR)a1]x \|mILps 7dIf@|+wi* Bҏ$[;Fh: `oO_t@?+ڷa-uKy>Yam'2R8ZćyAΟUVK/qʇW٨>+770& F"mV_z[R/FѻM0eռDKS'o oYnA~vȡ7.=wtr;0K+HoS bL~j;s>̞ݬܵY }AT2WYά  VGRbK(4ST< 'l-.#is2Sn'/>$]Tmw6$Qٓ|<-0\ф6R 642OP$';Vc_պX=1] hC$;!r1 R#z(iT[bц?Go }͘]Cd openconnect-8.20/tests/certs/user-key-pkcs8-pbes2-sha1.der0000644000076400007640000000276314043307244025154 0ustar00dwoodhoudwoodhou0000000000000000I *H  0<0 *H  0I#JM0 `He*&c&D,in g,bQ(ͧޏb,ICjYOlEtBκ縈Q"ZkŢCS γTץi)a7ElhLؤ; 4*`ݞxVuhGׁzT;^r C we\B5{ZsBфŽ='ta 2`#}_ zRk^ "9 {?揶{7l=\%~3KK7< (jx(0QۋwO#+=[QEoU>עr }W+H¾HλhK: ^;.k&(J= F}BQv$,SQ8#FƧLsUm#D?:KX΂IUkw{Nbњp|'d-0n }818bh̏^XedmJ BGL=R>`׶'H> 3BH;ܤ}8w,VgK, y@L-~۬Ul5BWa"8GȀ嘹\kF$*4s/VԪIT^}`5۶2:ރ9"}7弙QL7K-h+b.塱0n> ً2ctА^ Z}3F|IMh`/4k<zvIz곿 iJCSE+>\"UL[YRN wJ|@R3b-Z;8gmgTF$UlXSr0^<  X2U ,34]~5\:8e3T4-2H&_Ìk jopenconnect-8.20/tests/certs/server-key.pem0000644000076400007640000000366014040533771022622 0ustar00dwoodhoudwoodhou00000000000000-----BEGIN RSA PRIVATE KEY----- MIIFegIBAAKCATEApzor7D8UsCwZ9vFukB2/jqn26XCECYfzUPNfw5RQ+ixk1leA WOGW/O7QvQQVfl9/pTP4/LuR7zd5w1rb+BntA68i1uk3LOhTwreLKxHwpIeZeeC6 zJlm4RYJFZTeX06qGNJZ3WCcdl/FlpXUY3i/vBO5xVHBUrVq4IvQM4DBa47C+Kap fe2AGUV3DKEF1Y20Zs1S2SFbpkMu3PrZexKs/Jcf8Uv+RcfbSEbp6jUuYxFLPDZ+ ROhb62gHMvniNIF0xpO+fSjT2IrEqgLhQJprf1w0077zqOnaQLHl6rUdvy42SVjp V3Ymf8ox4OfkSkOXbd3ZOe5QCFhEfXoCDqP/hgJMnpNGSeRllOlcU7BXCJeqMt0u xLQdDQiDO4b4ct9kKyeWVMjZ3E0n+qjFaHnYHQIDAQABAoIBMHkrhm39W0E4A2xS jllwpL972kRV2eaKEr0iS86MZoyPpFVHO+GrPFtzs95x2h0il3weB5khVGHwYZMy /9Zq+rlDqsvsWqV4hlC96+I+co7VDlkohFICCXCpJdX0c5i9iDTKHoFxIo4HYUV2 tVmKQevGo0IdtiX2/EVOKYNYFU6ZOB8xq/hqIfqtwdBt0KtnrUMcHZ7lM+Jo+eL6 2JrnNuAgjCVN6ReVS3E43xhxzeCgf7JY/ovAHNKWShcUvxw76LVUK41HUKd3VmGo 43ndcIhfiaH4eA1H7zKYwUeI2DPtlRCQf/FXyysYyVih3u8ccFpYPIY9lhetnP0L 69gzpF9/25fAeLSUVlYKg7PTAsZvCNwNIo8qSyV6NJeOY0mKOdHBHpuTQcWctlCe /3o35MECgZkAyxNKo4+tXGOJMPM76yWF2WytbVD4AwDTHuOurVR6myEachimVOQy WI1mN2WM9483Zez47y6pwXi7BJCq/gryfICCMsfb77wQxv/g1C65Og7MKSiBuEF4 N4BpOV6XRDbWzTmvFMLf82e31KdJ2vTT7hQQ5Fw/SmJSgTTQjvN+1EIKNOL5p7wD +cBI6Jt/2gjs24L9oqoPXXECgZkA0s8tgQAoQ3azdhA/BFdjlPq7CGqifZlLD612 EdpcKiszCgUN+FGaTbNAS1NjyMGWRcdCNc8Fz4riqr3clsD9yMTcTAsfQ3QEzxP1 +uq2DYKSjAO96Xux8tDf/cUbbma3zvYSZTTIFQHaNl752K03hlIr6p/1dWuRswFv UunpBxbbumXiScxPcBE5XPrS2tQMJBfEaG/Uf20CgZh2ztSOGJLuSHWNI+DcU9mZ ONHF8OcIqsTZf49EbPZGJ/nW4sD9TXx+/krdAhaVBz777MY++Ofr/vw7UYAYnML9 QBnsJ61u9nJCWpVozeUkKGAdfEtYR0VUA1aMb+DD0emdq6/Yz6JCP133ld/JsA8F bMvtLmMA28E1Qnb6C08aU4CxLFGvZnpU9cAyBjeokiwwyNQnBKN0oQKBmBgHQVqI 2A4Ig6AbbfNiupkKkzL8ZJUIWgPpc6HJT+QGlIS52sPJGVtt6RAs6xzA5A4EDknv 1Ou5Guj3RyNvz/2IYsvQILohiULJNapqAmI71dRbwNPSI5BXupBEXUISNzVB2wrq Hzw1v9eer7/AzqliyFqv7Nx7bFoI+dVrkAIc2uK+JjLfNNbDP9SXSl1i+hdLFjoJ NSFpAoGYO5byBpYiFKL+JwkvQ7AipvSuM8L4vtUDln1K0et7nVG9dx0/ee9iHcPp wppT3+wzmzI29udA6GwbFj1OlJeUAl3MI0VrU424fA4k+Vww5ON2W/YfdD3K5++g HtPIolTS2wZLDbC5ZMrdaERR1gfFrFvnEUt2sHi6qrGvBmQNJxqFLahawdfBLvbv /vYN1vEY/AsUsdd2URs= -----END RSA PRIVATE KEY----- openconnect-8.20/tests/certs/user-key-sha1-3des-sha256.p120000644000076400007640000000527514043307244024610 0ustar00dwoodhoudwoodhou000000000000000 0 o *H  ` \0 X07 *H (0$0 *H 0 *H  0ĭ£meq`ITt^e p'o{ń3v ]:Ō cG+":raܩy"xF4w7 iZ*H6\BTgZ&WE {QM}k۲+7QFc(f\e{VyueN9OӲ\|K^NPlN6t٪1cD@s|)8%G/ݎpڷS%x3V#mP"ήLv7hF¹F@ 0.s5%X4 u5S/FQ5Ӕ9dr8Ec*٪46MиqGko8|Alƽe 5ᩗiUנmAqܞM2a, ds7k*n8Sk^]f*|8 Wi[3ZSwi__+,g=@+sfBy-= #ڱaXE |6Js Q-qo^zOe ʝL~ KR˷3N.z?[*R#3FoB?MQj} h$9H.m0 *H  00 *H  00 *H  0=oy?&6麝Du9hTz=*:D]}x!̃ouj:)5._9]yfFi]V7 ZYOfZ*6Hzz/_ CTG6݅ Ks0!>'$~Yq7aQ !7#W29P}H}-U6q&NnUB OI|]H"$|_kC.+G0%V}f3IzgMI_']8KO2\3jhrJ3R] {P_&Yq-ӈĹTm)l:Օ@^q:o& L^Rj_9~Lh\5㈍NJGxa!|MaF{D-*5_#畜#=cE#F$BCX'v-T!9 4(D7E|0$O(a % /V&0kԾ0Fu $jLdQa拣eFMpZIv=#)TtǿCvݡAXWgYLZ5"NtUQ+b eQyeѤO$U!l=@CB 0O_ SmzgE~`f^_Bu_WjK-+8)@/3ϵ@ 9K`* a뤍ںD1bKxC5mu:%چ+zsLb]aߢȦ2.h]WR لӖmgȻ9:'3Q;[+3 hnVRIhF@ fG5#<-3X3m`Zg<%IkE6z(̎qϽ&s5gi;S>Ln_2J|2%Պ1uFUލm,};H]v `b~fZ`, dOs8wr^}D~ke88=W tकhˁ_9d 0R9)S9NPJɭpKwz!fwropOURs%G#Mq٪r(Mo(pҴJF Q5"tJG&vd$?yy]^iH7![m{6 6sH(( I w$)1 }mS{p2Bp_R]t^O/\nN[˯5Z{w DkV M +~8v8~-V4<|ܛ`xMҹ0z}?){OYςgutSHo=$ʬR{t~h'.Wee21%0# *H  1jJʟإOt*ꄀQ0A010  `He CgtX< * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include #include #define __OPENCONNECT_INTERNAL_H__ #define vpn_progress(v, d, ...) printf(__VA_ARGS__) #define _(x) x struct openconnect_info { char *ifname; }; #define OPEN_TUN_SOFTFAIL 0 #define OPEN_TUN_HARDFAIL -1 #define __LIST_TAPS__ #include "../tun-win32.c" static intptr_t print_tun(struct openconnect_info *vpninfo, int type, char *guid, wchar_t *wname) { printf("Found %s device '%S' guid %s\n", type ? "Wintun" : "Tap", wname, guid); return 0; } int main(void) { search_taps(NULL, print_tun); return 0; } openconnect-8.20/tests/id-test0000755000076400007640000000454014171606260020177 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright © 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh echo "Testing certificate auth..." launch_simple_sr_server -d 1 -f -c configs/test-user-pass.config >/dev/null 2>&1 PID=$! wait_server $PID echo -n "Connecting with legacy hash... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with SHA1 ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha1:a82547f68f44d6351bef6cacd1d7b96e84f9dfa3 --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with SHA256 ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha256:c69dec71fcf2deb390b2ff4d70ebdeffc61556ffa91ebe2a3425c45eb365e6cf --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with SHA256 partial ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha256:c69dec --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting with wrong SHA256 ID... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=sha256:c69ded --cookieonly >/dev/null 2>&1) && fail $PID "Did connect to the server with wrong ID" echo ok cleanup exit 0 openconnect-8.20/tests/gp-auth-and-config0000755000076400007640000001273314171606260022201 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh FINGERPRINT="--servercert=d66b507ae074d03b02eafca40d35f87dd81049d3" CERT=$certdir/server-cert.pem KEY=$certdir/server-key.pem echo "Testing GlobalProtect auth against fake server ..." OCSERV=${srcdir}/fake-gp-server.py launch_simple_sr_server $ADDRESS 443 $CERT $KEY >/dev/null 2>&1 PID=$! wait_server $PID 1 echo -n "Authenticating with username/password via portal... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp -q $ADDRESS:443/portal -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake GlobalProtect server" echo ok echo -n "Authenticating with username/password, and selecting gateway, via portal... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp -q "$ADDRESS:443/global-protect/testconfig.esp?gateways=foo,bar,baz" --authgroup=bar -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake GlobalProtect server" echo ok echo -n "Authenticating with username/password via gateway... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp -q $ADDRESS:443/gateway -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake GlobalProtect server" echo ok echo -n "Authenticating with username/password/token via portal, then using portal-userauthcookie to continue through gateway... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp -q "$ADDRESS:443/global-protect/testconfig.esp?portal_2fa=1&gateway_2fa=1&portal_cookie=portal-userauthcookie" -u test --token-mode=totp --token-secret=FAKE $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake GlobalProtect server" echo ok echo -n "Simulating completed SAML to portal, then using portal-userauthcookie to continue through SAML-requiring gateway... " ( echo "prelogin-cookie" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp --disable-ipv6 -q "$ADDRESS:443/global-protect/testconfig.esp?portal_cookie=portal-userauthcookie&portal_saml=prelogin-cookie&gateway_saml=prelogin-cookie:prelogin-cookie" -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || test $? = 2 || # what OpenConnect returns when server rejects cookie upon tunnel connection, as the fake server does fail $PID "Something went wrong in fake GlobalProtect server (other than the expected rejection of cookie)" echo ok echo -n "Simulating completed SAML to gateway... " ( echo "prelogin-cookie" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp --disable-ipv6 -q "$ADDRESS:443/ssl-vpn/testconfig.esp?gateway_saml=prelogin-cookie:prelogin-cookie" -u test $FINGERPRINT --cookieonly >/dev/null 2>&1) || test $? = 2 || # what OpenConnect returns when server rejects cookie upon tunnel connection, as the fake server does fail $PID "Something went wrong in fake GlobalProtect server (other than the expected rejection of cookie)" echo ok echo -n "Authenticating with username/password via portal, then +token via gateway... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp -q "$ADDRESS:443/global-protect/testconfig.esp?gw_2fa=1" -u test --token-mode=totp --token-secret=FAKE $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake GlobalProtect server" echo ok echo -n "Authenticating with username/password/token via gateway... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp -q "$ADDRESS:443/ssl-vpn/testconfig.esp?gw_2fa=1" -u test --token-mode=totp --token-secret=FAKE $FINGERPRINT --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from fake GlobalProtect server" echo ok echo -n "Authenticating with username/password via portal, then proceeding to tunnel stage... " echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp -q $ADDRESS:443/portal -u test $FINGERPRINT >/dev/null 2>&1 test $? = 2 || # what OpenConnect returns when server rejects cookie upon tunnel connection, as the fake server does fail $PID "Something went wrong in fake GlobalProtect server (other than the expected rejection of cookie)" echo ok echo -n "Authenticating with username/password via portal, then proceeding to tunnel stage (with IPv6 disabled)... " echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT --protocol=gp --disable-ipv6 -q $ADDRESS:443/portal -u test $FINGERPRINT >/dev/null 2>&1 test $? = 2 || # what OpenConnect returns when server rejects cookie upon tunnel connection, as the fake server does fail $PID "Something went wrong in fake GlobalProtect server (other than the expected rejection of cookie)" echo ok cleanup exit 0 openconnect-8.20/tests/swtpm-perm.state0000644000076400007640000000225114047225437022057 0ustar00dwoodhoudwoodhou00000000000000 6G#d1X ~@ x@@ @ @!4C@,u|Gixڀ1Tdk9 -_ mHVJӳ_lS@56o;MAlƃit=Fk#aJHpyAsU>L U}@{5pR1U_~҆$/61 Dqe҉ Ɲ<4YԛK{媷D6Rw@nϔjEbЂ Ly!6`ɲA~$% ni0 ɖ"X"K(aX`@&Ra'xtVQt Y?W6ag PsÀW24`@iL7Fl>PDeR8GBRD0Haxj@}fLP3;niiO.LwWNSF O"6G#openconnect-8.20/tests/auth-username-pass0000755000076400007640000000422714171606260022352 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # # Copyright (C) 2016 Red Hat, Inc. # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see # This test uses LD_PRELOAD PRELOAD=1 SERV="${SERV:-../src/ocserv}" srcdir=${srcdir:-.} top_builddir=${top_builddir:-..} . `dirname $0`/common.sh echo "Testing certificate auth..." launch_simple_sr_server -d 1 -f -c configs/test-user-pass.config PID=$! wait_server $PID echo -n "Connecting to obtain cookie... " ( echo "test" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting to obtain cookie with wrong password... " ( echo "tost" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u test --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1) && fail $PID "Received cookie when we shouldn't" echo ok #test special characters echo -n "Connecting to obtain cookie... " ( echo "!@#$%^&*()<>" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u "sp@c/al" --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1 ) || fail $PID "Could not receive cookie from server" echo ok echo -n "Connecting to obtain cookie with empty password... " ( echo "" | LD_PRELOAD=libsocket_wrapper.so $OPENCONNECT -q $ADDRESS:443 -u "empty" --servercert=d66b507ae074d03b02eafca40d35f87dd81049d3 --cookieonly >/dev/null 2>&1 ) || fail $PID "Could not receive cookie from server" echo ok cleanup exit 0 openconnect-8.20/tests/fake-fortinet-server.py0000755000076400007640000002540414204454432023320 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Copyright © 2021 Daniel Lenski # # This file is part of openconnect. # # This is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # as published by the Free Software Foundation; either version 2.1 of # the License, or (at your option) any later version. # # This library is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. # # You should have received a copy of the GNU Lesser General Public License # along with this program. If not, see ######################################## # This program emulates the authentication-phase behavior of a Fortinet # server enough to test OpenConnect's authentication behavior against it. # Specifically, it emulates the following requests: # # GET /[$REALM] # GET /remote/login[?realm=$REALM] # POST /remote/logincheck (with username and credential fields) # No 2FA) Completes the login # With 2FA) Returns a 2FA challenge # POST /remote/logincheck (with username and 2FA response fields) # # It does not actually validate the credentials in any way, but attempts to # verify their consistency from one request to the next, by saving their # values via a (cookie-based) session. # # In order to test with 2FA, the initial 'GET /' request should include # the query string '?want_2fa=1&type_2fa={tokeninfo,html}'. If want_2fa>1, # multiple rounds of 2FA token entry will be required. If type_2fa is not, # specified tokeninfo-type 2FA is the default. ######################################## import sys import ssl import random import base64 from json import dumps from functools import wraps from flask import Flask, request, abort, redirect, url_for, make_response, session host, port, *cert_and_maybe_keyfile = sys.argv[1:] context = ssl.SSLContext() context.load_cert_chain(*cert_and_maybe_keyfile) app = Flask(__name__) app.config.update(SECRET_KEY=b'fake', DEBUG=True, HOST=host, PORT=int(port), SESSION_COOKIE_NAME='fake') ######################################## def cookify(jsonable): return base64.urlsafe_b64encode(dumps(jsonable).encode()) def require_SVPNCOOKIE(fn): @wraps(fn) def wrapped(*args, **kwargs): if not request.cookies.get('SVPNCOOKIE'): session.clear() return redirect(url_for('login')) return fn(*args, **kwargs) return wrapped def check_form_against_session(*fields): def inner(fn): @wraps(fn) def wrapped(*args, **kwargs): for f in fields: assert session.get(f) == request.form.get(f), \ f'at step {session.get("step")}: form {f!r} {request.form.get(f)!r} != session {f!r} {session.get(f)!r}' return fn(*args, **kwargs) return wrapped return inner ######################################## # Respond to initial 'GET /' with a login form # Respond to initial 'GET /' with a redirect to '/remote/login?realm=' # [Save want_2fa and type_2fa query parameters in the session for use later] @app.route('/') @app.route('/') def realm(realm=None): session.update(step='GET-realm', want_2fa=int(request.args.get('want_2fa', 0)), type_2fa=request.args.get('type_2fa', 'tokeninfo')) # print(session) if realm: return redirect(url_for('login', realm=realm, lang='en')) else: return login() # Respond to 'GET /remote/login?realm=' with a placeholder stub (since OpenConnect doesn't even try to parse the form) # [Save realm in the session for verification of client state later] @app.route('/remote/login') def login(): realm = request.args.get('realm') session.update(step='GET-login-form', realm=realm or '') return f'login page for realm {realm!r}' # Respond to 'POST /remote/logincheck' @app.route('/remote/logincheck', methods=['POST']) def logincheck(): want_2fa = session.get('want_2fa') type_2fa = session.get('type_2fa') if want_2fa: if ( (type_2fa == 'tokeninfo' and request.form.get('username') and request.form.get('code')) or (type_2fa == 'html' and request.form.get('username') and request.form.get('magic'))): # we've received (at least one round of) 2FA login if want_2fa == 1: return complete_2fa() else: session.update(want_2fa=want_2fa - 1) return send_2fa_tokeninfo() if type_2fa == 'tokeninfo' else send_2fa_html() elif request.form.get('username') and request.form.get('credential'): # we've just received the initial non-2FA login return send_2fa_tokeninfo() if type_2fa == 'tokeninfo' else send_2fa_html() elif (request.form.get('username') and request.form.get('credential')): return complete_non_2fa() abort(405) # 2FA completion: ensure that client has parroted back the same values # for username, reqid, polid, grp/grpid, portal, magic # [Save code in the session for potential use later] @check_form_against_session('username', 'reqid', 'polid', 'grp', 'grpid', 'portal', 'magic') def complete_2fa(): session.update(step='complete-2FA', code=request.form.get('code')) # print(session) resp = make_response('ret=1,redir=/remote/fortisslvpn_xml') resp.set_cookie('SVPNCOOKIE', cookify(dict(session))) return resp # Tokeninfo-based 2FA initial login: ensure that client has sent the right realm value, and # reply with a tokeninfo challenge containing all known fields. # [Save username, credential, and challenge fields in the session for verification of client state later] @check_form_against_session('realm') def send_2fa_tokeninfo(): session.update(step='send-2FA-tokeninfo', username=request.form.get('username'), credential=request.form.get('credential'), reqid=str(random.randint(10_000_000, 99_000_000)), polid='1-1-'+str(random.randint(10_000_000, 99_000_000)), magic='1-'+str(random.randint(10_000_000, 99_000_000)), portal=random.choice('ABCD'), grp=random.choice('EFGH')) # print(session) return ('ret=2,reqid={reqid},polid={polid},grp={grp},portal={portal},magic={magic},' 'tokeninfo=,chal_msg=Please enter your tokeninfo code ({want_2fa} remaining)'.format(**session), {'content-type': 'text/plain'}) # HTML-based 2FA initial login: ensure that client has sent the right realm value, and # reply with an HTML challenge containing all known fields. # [Save username, credential, and challenge fields in the session for verification of client state later] @check_form_against_session('realm') def send_2fa_html(): session.update(step='send-2FA-html', username=request.form.get('username'), credential=request.form.get('credential'), reqid=str(random.randint(10_000_000, 99_000_000)), grpid='0,'+str(random.randint(1_000, 9_999))+',1', magic='1-'+str(random.randint(10_000_000, 99_000_000))) # print(session) return ('''
    Please enter your HTML 2FA code ({want_2fa} remaining)
    '''.format(logincheck=url_for('logincheck'), **session), 401, {'content-type': 'text/html'}) # Non-2FA login: ensure that client has sent the right realm value @check_form_against_session('realm') def complete_non_2fa(): session.update(step='complete-non-2FA', username=request.form.get('username'), credential=request.form.get('credential')) # print(session) resp = make_response('ret=1,redir=/remote/fortisslvpn_xml', {'content-type': 'text/plain'}) resp.set_cookie('SVPNCOOKIE', cookify(dict(session))) return resp # Respond to 'GET /fortisslvpn with a placeholder stub (since OpenConnect doesn't even try to parse this) @app.route('/remote/fortisslvpn') @require_SVPNCOOKIE def html_config(): return 'VPN config in HTML format' # Respond to 'GET /fortisslvpn_xml with a fake config @app.route('/remote/fortisslvpn_xml') @require_SVPNCOOKIE def xml_config(): return (''' ''', {'content-type': 'application/xml'}) # Respond to faux-CONNECT 'GET /remote/sslvpn-tunnel' with 403 Forbidden # (what the real Fortinet server sends when it doesn't like the parameters, # intended to trigger "cookie rejected" error in OpenConnect) @app.route('/remote/sslvpn-tunnel') @require_SVPNCOOKIE def tunnel(): abort(403) # Respond to 'GET /remote/logout' by clearing session and SVPNCOOKIE @app.route('/remote/logout') @require_SVPNCOOKIE def logout(): session.clear() resp = make_response('successful logout') resp.set_cookie('SVPNCOOKIE', '') return resp app.run(host=app.config['HOST'], port=app.config['PORT'], debug=app.config['DEBUG'], ssl_context=context, use_debugger=False) openconnect-8.20/trojans/0000755000076400007640000000000014204510554017210 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/trojans/hipreport-android.sh0000755000076400007640000000367214062600131023202 0ustar00dwoodhoudwoodhou00000000000000#!/system/bin/sh # These values may need to be extracted from the official HIP report, if made-up values are not accepted. PLATFORM_VERSION="4.3" PLATFORM_NAME="Android-x86" HOSTID="deadbeef-dead-beef-dead-beefdeadbeef" # Read command line arguments into variables COOKIE= IP= IPV6= MD5= while [ "$1" ]; do if [ "$1" = "--cookie" ]; then shift; COOKIE="$1"; fi if [ "$1" = "--client-ip" ]; then shift; IP="$1"; fi if [ "$1" = "--client-ipv6" ]; then shift; IPV6="$1"; fi if [ "$1" = "--md5" ]; then shift; MD5="$1"; fi shift done if [ -z "$COOKIE" -o -z "$MD5" -o -z "$IP$IPV6" ]; then echo "Parameters --cookie, --md5, and --client-ip and/or --client-ipv6 are required" >&2 exit 1; fi # Extract username and domain and computer from cookie USER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)user=([^&]+)(&.+|$)/\2/p') DOMAIN=$(echo "$COOKIE" | sed -rn 's/(.+&|^)domain=([^&]+)(&.+|$)/\2/p') COMPUTER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)computer=([^&]+)(&.+|$)/\2/p') # Timestamp in the format expected by GlobalProtect server NOW=$(date +'%m/%d/%Y %H:%M:%S') # WARNING: Replacing this with a here-doc (cat <' echo " $MD5" echo " $USER" echo " $DOMAIN" echo " $COMPUTER" echo " $HOSTID" echo " $IP" echo " $IPV6" echo " $NOW" echo ' ' echo ' ' echo ' 4.0.2-19' echo " $PLATFORM_NAME $PLATFORM_VERSION" echo ' Google' echo " $DOMAIN.internal" echo " $COMPUTER" echo " $HOSTID" echo ' ' echo ' ' echo '' openconnect-8.20/trojans/hipreport.sh0000755000076400007640000002072314062600131021560 0ustar00dwoodhoudwoodhou00000000000000#!/bin/sh # openconnect will call this script with the follow command-line # arguments, which are needed to populate the contents of the # HIP report: # # --cookie: a URL-encoded string, as output by openconnect # --authenticate --protocol=gp, which includes parameters # from the /ssl-vpn/login.esp response # # --client-ip{,v6}: IPv4/6 addresses allocated by the GlobalProtect # VPN for this client (included in # /ssl-vpn/getconfig.esp response) # # --md5: The md5 digest to encode into this HIP report. I'm not sure # exactly what this is the md5 digest *of*, but all that # really matters is that the value in the HIP report # submission should match the value in the HIP report check. # # --client-os: The platform name in GlobalProtect's format (known # values are 'Linux', 'Mac' or 'Windows' ). Defaults to # 'Windows'. # # This hipreport.sh does not work as-is on Android. The large here-doc # (cat <&2 exit 1; fi # Extract username and domain and computer from cookie USER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)user=([^&]+)(&.+|$)/\2/p') DOMAIN=$(echo "$COOKIE" | sed -rn 's/(.+&|^)domain=([^&]+)(&.+|$)/\2/p') COMPUTER=$(echo "$COOKIE" | sed -rn 's/(.+&|^)computer=([^&]+)(&.+|$)/\2/p') # This value may need to be extracted from the official HIP report, if a made-up value is not accepted. HOSTID="deadbeef-dead-beef-dead-beefdeadbeef" case $CLIENTOS in Linux) CLIENT_VERSION="5.1.5-8" OS="Linux Fedora 32" OS_VENDOR="Linux" NETWORK_INTERFACE_NAME="virbr0" NETWORK_INTERFACE_DESCRIPTION="virbr0" # Not currently used for Linux ENCDRIVE='/' ;; *) CLIENT_VERSION="5.1.5-8" OS="Microsoft Windows 10 Pro , 64-bit" OS_VENDOR="Microsoft" NETWORK_INTERFACE_NAME="{DEADBEEF-DEAD-BEEF-DEAD-BEEFDEADBEEF}" NETWORK_INTERFACE_DESCRIPTION="PANGP Virtual Ethernet Adapter #2" # Many VPNs seem to require trailing backslash, others don't accept it ENCDRIVE='C:\\' ;; esac # Timestamp in the format expected by GlobalProtect server NOW=$(date +'%m/%d/%Y %H:%M:%S') DAY=$(date +'%d') MONTH=$(date +'%m') YEAR=$(date +'%Y') cat < $MD5 $USER $DOMAIN $COMPUTER $HOSTID $IP $IPV6 $NOW 4 $CLIENT_VERSION $OS $OS_VENDOR $DOMAIN.internal $COMPUTER $HOSTID $NETWORK_INTERFACE_DESCRIPTION 01-02-03-00-00-01 EOF case $CLIENTOS in Linux) ;; *) cat < yes $NOW no n/a EOF ;; esac case $CLIENTOS in Linux) cat < EOF ;; *) cat < yes $NOW no n/a EOF ;; esac case $CLIENTOS in Linux) cat < EOF ;; *) cat < n/a EOF ;; esac case $CLIENTOS in Linux) cat < / encrypted EOF ;; *) cat < $ENCDRIVE full EOF ;; esac case $CLIENTOS in Linux) cat < no n/a EOF ;; *) cat < yes EOF ;; esac case $CLIENTOS in Linux) cat < yes EOF ;; *) cat < yes yes EOF ;; esac cat < EOF openconnect-8.20/trojans/csd-wrapper.sh0000755000076400007640000001026714171606260022007 0ustar00dwoodhoudwoodhou00000000000000#!/bin/bash # Cisco Anyconnect CSD wrapper for OpenConnect # # [05 May 2015] Written by Nikolay Panin : # - source: https://gist.github.com/l0ki000/56845c00fd2a0e76d688 # [27 Oct 2017] Updated by Daniel Lenski : # - use -url argument # - kill cstub after timeout # - fix small typos: # [31 May 2018] Updated by Daniel Lenski : # - use curl with --pinnedpubkey to rely on sha256 hash of peer cert passed by openconnect TIMEOUT=30 URL="https://${CSD_HOSTNAME}/CACHE" HOSTSCAN_DIR="$HOME/.cisco/hostscan" LIB_DIR="$HOSTSCAN_DIR/lib" BIN_DIR="$HOSTSCAN_DIR/bin" # cURL 7.39 (https://bugzilla.redhat.com/show_bug.cgi?id=1195771) # is required to support pin-based certificate validation. Must set this # to false if using an older version of cURL. INSECURE=false if [[ "$INSECURE" == "true" ]]; then echo "*********************************************************************" >&2 echo "WARNING: running insecurely; will not validate CSD server certificate" >&2 echo "*********************************************************************" >&2 PINNEDPUBKEY="-k" else PINNEDPUBKEY="${CSD_SHA256:+"-k --pinnedpubkey sha256//$CSD_SHA256"}" fi BINS=("cscan" "cstub" "cnotify") # parsing command line shift URL= TICKET= STUB= GROUP= CERTHASH= LANGSELEN= while [ "$1" ]; do if [ "$1" == "-ticket" ]; then shift; TICKET=$1; fi if [ "$1" == "-stub" ]; then shift; STUB=$1; fi if [ "$1" == "-group" ]; then shift; GROUP=$1; fi if [ "$1" == "-certhash" ]; then shift; CERTHASH=$1; fi if [ "$1" == "-url" ]; then shift; URL=$(echo $1|tr -d '"'); fi # strip quotes if [ "$1" == "-langselen" ];then shift; LANGSELEN=$1; fi shift done ARCH=$(uname -m) if [[ "$ARCH" == "x86_64" ]] then ARCH="linux_x64" else ARCH="linux_i386" fi # creating dirs for dir in $HOSTSCAN_DIR $LIB_DIR $BIN_DIR ; do if [[ ! -f $dir ]] then mkdir -p $dir fi done # getting manifest, and checking binaries curl $PINNEDPUBKEY -s "${URL}/sdesktop/hostscan/$ARCH/manifest" -o "$HOSTSCAN_DIR/manifest" # generating md5.sum with full paths from manifest export HOSTSCAN_DIR=$HOSTSCAN_DIR while read HASHTYPE FILE EQU HASHVAL; do FILE="${FILE%*)}" FILE="${FILE#(}" if grep --extended-regexp --quiet --invert-match ".so|tables.dat" <<< "$FILE"; then PATHNAME="${BIN_DIR}/$FILE" IS_BIN=yes else PATHNAME="${LIB_DIR}/$FILE" IS_BIN=no fi DOWNLOAD=yes case $HASHTYPE in MD5) if [ -r "$PATHNAME" ] && md5sum --status -c <<< "$HASHVAL $PATHNAME"; then DOWNLOAD=no fi ;; SHA1) if [ -r "$PATHNAME" ] && sha1sum --status -c <<< "$HASHVAL $PATHNAME"; then DOWNLOAD=no fi ;; SHA256) if [ -r "$PATHNAME" ] && sha256sum --status -c <<< "$HASHVAL $PATHNAME"; then DOWNLOAD=no fi ;; *) echo "Unsupported hash type $HASHTYPE" ;; esac if [ "$DOWNLOAD" = "yes" ]; then echo "Downloading: $FILE" TMPFILE="${PATHNAME}.tmp" curl $PINNEDPUBKEY -s "${URL}/sdesktop/hostscan/$ARCH/$FILE" -o "${TMPFILE}" # some files are in gz (don't understand logic here) if [[ ! -f "${TMPFILE}" || ! -s "${TMPFILE}" ]] then # remove 0 size files if [[ ! -s ${TMPFILE} ]]; then rm ${TMPFILE} fi echo "Failure on $FILE, trying gz" FILE_GZ="${FILE}.gz" curl $PINNEDPUBKEY -s "${URL}/sdesktop/hostscan/$ARCH/$FILE_GZ" -o "${TMPFILE}.gz" && gunzip --verbose --decompress "${TMPFILE}.gz" fi if [ -r "${TMPFILE}" ]; then if [ "$IS_BIN" = "yes" ]; then chmod +x "${TMPFILE}" fi mv "${TMPFILE}" "${PATHNAME}" fi fi done < $HOSTSCAN_DIR/manifest # cstub doesn't care about logging options, sic! #ARGS="-log debug -ticket $TICKET -stub $STUB -group $GROUP -host "$URL" -certhash $CERTHASH" ARGS="-log error -ticket $TICKET -stub $STUB -group $GROUP -host \"$URL\" -certhash $CERTHASH" echo "Launching: $BIN_DIR/cstub $ARGS" $BIN_DIR/cstub $ARGS & CSTUB_PID=$! sleep $TIMEOUT if kill -0 $CSTUB_PID 2> /dev/null; then echo "Killing cstub process after $TIMEOUT seconds" kill $CSTUB_PID 2> /dev/null || kill -9 $CSTUB_PID 2> /dev/null fi openconnect-8.20/trojans/tncc-wrapper.py0000755000076400007640000001033114171606260022173 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/python3 # Lifted from Russ Dill's juniper-vpn-wrap.py, thus: # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program; if not, write to the Free Software # Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA import subprocess import sys import os import zipfile import urllib.request import ssl # In order to run this, you will need to build tncc_preload.so (from # https://github.com/russdill/ncsvc-socks-wrapper) and place it in this # directory. # # Very old versions of the TNCC Java binary expect to find files in # ~/.juniper_networks instead of ~/.pulse_secure TNCC_DIRECTORY = "~/.pulse_secure" ssl._create_default_https_context = ssl._create_unverified_context class Tncc: def __init__(self, vpn_host): self.vpn_host = vpn_host self.plugin_jar = '/usr/share/icedtea-web/plugin.jar' if not os.path.isfile(self.plugin_jar): print('WARNING: no IcedTea Java web plugin JAR found at %s' % self.plugin_jar, file=sys.stderr) self.plugin_jar = None self.user_agent = 'Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.9.0.1) Gecko/2008071615 Fedora/3.0.1-1.fc9 Firefox/3.0.1' def tncc_init(self): class_names = ('net.juniper.tnc.NARPlatform.linux.LinuxHttpNAR', 'net.juniper.tnc.HttpNAR.HttpNAR') self.class_name = None self.tncc_jar = os.path.expanduser(os.path.join(TNCC_DIRECTORY, 'tncc.jar')) try: if zipfile.ZipFile(self.tncc_jar, 'r').testzip() is not None: raise Exception() except Exception: print('Downloading tncc.jar...') os.makedirs(os.path.expanduser(TNCC_DIRECTORY), exist_ok=True) urllib.request.urlretrieve('https://' + self.vpn_host + '/dana-cached/hc/tncc.jar', self.tncc_jar) with zipfile.ZipFile(self.tncc_jar, 'r') as jar: for name in class_names: try: jar.getinfo(name.replace('.', '/') + '.class') self.class_name = name break except Exception: pass else: raise Exception('Could not find class name for', self.tncc_jar) self.tncc_preload = \ os.path.expanduser(os.path.join(TNCC_DIRECTORY, 'tncc_preload.so')) if not os.path.isfile(self.tncc_preload): print('WARNING: no tncc_preload found at %s' % self.tncc_preload, file=sys.stderr) self.tncc_preload = None def tncc_start(self): # tncc is the host checker app. It can check different # security policies of the host and report back. We have # to send it a preauth key (from the DSPREAUTH cookie) # and it sends back a new cookie value we submit. # After logging in, we send back another cookie to tncc. # Subsequently, it contacts https:// /dev/null 2>&1; then echo "************************************************************************" >&2 echo "WARNING: xmlstarlet not found in path; CSD token extraction may not work" >&2 echo "************************************************************************" >&2 unset XMLSTARLET else XMLSTARLET=true fi # cURL 7.39 (https://bugzilla.redhat.com/show_bug.cgi?id=1195771) # is required to support pin-based certificate validation. Must set this # to false if using an older version of cURL. INSECURE=false if [[ "$INSECURE" == "true" ]]; then echo "*********************************************************************" >&2 echo "WARNING: running insecurely; will not validate CSD server certificate" >&2 echo "*********************************************************************" >&2 fi export RESPONSE=$(mktemp /tmp/csdresponseXXXXXXX) export RESULT=$(mktemp /tmp/csdresultXXXXXXX) trap 'rm $RESPONSE $RESULT' EXIT cat >> $RESPONSE </s^.*\(.*\)^\1^p' ) fi if [ -n "$XMLSTARLET" ]; then URL="https://$CSD_HOSTNAME/CACHE/sdesktop/data.xml" curl $PINNEDPUBKEY -s "$URL" | xmlstarlet sel -t -v '/data/hostscan/field/@value' | while read -r ENTRY; do # XX: How are ' and , characters escaped in this? TYPE="$(sed "s/^'\(.*\)','\(.*\)','\(.*\)'$/\1/" <<< "$ENTRY")" NAME="$(sed "s/^'\(.*\)','\(.*\)','\(.*\)'$/\2/" <<< "$ENTRY")" VALUE="$(sed "s/^'\(.*\)','\(.*\)','\(.*\)'$/\3/" <<< "$ENTRY")" if [ "$TYPE" != "$ENTRY" ]; then case "$TYPE" in File) BASENAME="$(basename "$VALUE")" cat >> $RESPONSE </dev/null) if [ "$TS" = "" ]; then cat >> $RESPONSE <> $RESPONSE <> $RESPONSE < /dev/null; then EXISTS=true else EXISTS=false fi cat >> $RESPONSE < $RESULT cat $RESULT || : exit 0 openconnect-8.20/trojans/tncc-emulate.py0000755000076400007640000006317214171606260022162 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/python3 # -*- coding: utf-8 -*- # Juniper/Pulse TNCC emulator # # Copyright © 2015-2018 Russ Dill # # Author: Russ Dill # # This program is free software; you can redistribute it and/or # modify it under the terms of the GNU Lesser General Public License # version 2.1, as published by the Free Software Foundation. # # This program is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # Lesser General Public License for more details. ######################################## # # Required modules: # - Mechanize (https://pypi.org/project/mechanize). Tested with v0.4.5 # - For client certificate support and server certificate validation, asn1crypto # is required (https://github.com/wbond/asn1crypto). Tested with v0.24.0 and v1.3.0 # - For autodetection of network interfaces' hardware/MAC addresses, # netifaces is required (https://pypi.org/project/netifaces). Tested with v0.10.9 # # OpenConnect will automatically set the TNCC_HOSTNAME variable when calling this # script, and will set TNCC_SHA256 to the pin-sha256 hash of the server certificates # public key (currently not verified). # # Environment variables that may need customization (excerpted from # https://github.com/russdill/juniper-vpn-py/blame/master/README.host_checker): # # TNCC_DEVICE_ID: May need to be overridden to match a known value from a computer # running the official client software (on Windows, obtained from the registry key # \HKEY_CURRENT_USER\Software\Juniper Networks\Device Id) # # TNCC_USER_AGENT: May need to be overridden to match a known value from a computer # running the official Windows client software. For historical reasons, the default # value is 'Neoteris NC Http'; the value 'DSClient; PulseLinux' is known to be sent # by the official Pulse Linux client. # # TNCC_FUNK: Set TNCC_FUNK=1 to force the use of client machine identification # (known as "funk" to Juniper). This identification will include host platform, # a list of network hardware/MAC addresses, and client certificates requested # by the server. # # TNCC_PLATFORM: override system value (e.g. "Windows 7"). # TNCC_HOSTNAME: override system value (e.g. "laptop1234.bigcorp.com"). # TNCC_HWADDR: override with a comma-separated list of network hardware/MAC # addresses to report to the server (e.g. "aa:bb:cc:dd:00:21,ee:ff:12:34:45:78"). # The default behavior is to include the all the MAC addresses returned by the # netifaces module, or to leave blank if this module is not available. # TNCC_CERTS: a comma-separated list of absolute paths to PEM-formatted client # certificates to offer to the server # ######################################## import sys import os import logging from http.cookiejar import Cookie, CookieJar import struct import ssl import base64 import collections import zlib import html.parser as HTMLParser import socket import platform import datetime import hashlib import xml.etree.ElementTree import mechanize try: import asn1crypto.pem import asn1crypto.x509 except ImportError: asn1crypto = None try: import netifaces except ImportError: netifaces = None ssl._create_default_https_context = ssl._create_unverified_context debug = False logging.basicConfig(stream=sys.stderr, level=logging.DEBUG if debug else logging.INFO) MSG_POLICY = 0x58316 MSG_FUNK_PLATFORM = 0x58301 MSG_FUNK = 0xa4c01 # 0013 - Message def decode_0013(buf, indent): logging.debug('%scmd 0013 (Message) %d bytes', indent, len(buf)) ret = collections.defaultdict(list) while (len(buf) >= 12): length, cmd, out = decode_packet(buf, indent + " ") buf = buf[length:] ret[cmd].append(out) return ret # 0012 - u32 def decode_0012(buf, indent): logging.debug('%scmd 0012 (u32) %d bytes', indent, len(buf)) return struct.unpack(">I", buf) # 0016 - zlib compressed message def decode_0016(buf, indent): logging.debug('%scmd 0016 (compressed message) %d bytes', indent, len(buf)) _, compressed = struct.unpack(">I" + str(len(buf) - 4) + "s", buf) buf = zlib.decompress(compressed) ret = collections.defaultdict(list) while (len(buf) >= 12): length, cmd, out = decode_packet(buf, indent + " ") buf = buf[length:] ret[cmd].append(out) return ret # 0ce4 - encapsulation def decode_0ce4(buf, indent): logging.debug('%scmd 0ce4 (encapsulation) %d bytes', indent, len(buf)) ret = collections.defaultdict(list) while (len(buf) >= 12): length, cmd, out = decode_packet(buf, indent + " ") buf = buf[length:] ret[cmd].append(out) return ret # 0ce5 - string without hex prefixer def decode_0ce5(buf, indent): s = struct.unpack(str(len(buf)) + "s", buf)[0] logging.debug('%scmd 0ce5 (string) %d bytes', indent, len(buf)) s = s.rstrip(b'\0') logging.debug('%s', s) return s # 0ce7 - string with hex prefixer def decode_0ce7(buf, indent): id, s = struct.unpack(">I" + str(len(buf) - 4) + "s", buf) logging.debug('%scmd 0ce7 (id %08x string) %d bytes', indent, id, len(buf)) if s.startswith(b'COMPRESSED:'): typ, length, data = s.split(b':', 2) s = zlib.decompress(data) s = s.rstrip(b'\0') logging.debug('%s', s) return (id, s) # 0cf0 - encapsulation def decode_0cf0(buf, indent): logging.debug('%scmd 0cf0 (encapsulation) %d bytes', indent, len(buf)) ret = dict() cmd, _, out = decode_packet(buf, indent + " ") ret[cmd] = out return ret # 0cf1 - string without hex prefixer def decode_0cf1(buf, indent): s = struct.unpack(str(len(buf)) + "s", buf)[0] logging.debug('%scmd 0cf1 (string) %d bytes', indent, len(buf)) s = s.rstrip(b'\0') logging.debug('%s', s) return s # 0cf3 - u32 def decode_0cf3(buf, indent): ret = struct.unpack(">I", buf) logging.debug('%scmd 0cf3 (u32) %d bytes - %d', indent, len(buf), ret[0]) return ret def decode_packet(buf, indent=""): cmd, _1, _2, length, _3 = struct.unpack(">IBBHI", buf[:12]) if length < 12: raise Exception("Invalid packet, cmd %04x, _1 %02x, _2 %02x, length %d" % (cmd, _1, _2, length)) data = buf[12:length] if length % 4: length += 4 - (length % 4) if cmd == 0x0013: data = decode_0013(data, indent) elif cmd == 0x0012: data = decode_0012(data, indent) elif cmd == 0x0016: data = decode_0016(data, indent) elif cmd == 0x0ce4: data = decode_0ce4(data, indent) elif cmd == 0x0ce5: data = decode_0ce5(data, indent) elif cmd == 0x0ce7: data = decode_0ce7(data, indent) elif cmd == 0x0cf0: data = decode_0cf0(data, indent) elif cmd == 0x0cf1: data = decode_0cf1(data, indent) elif cmd == 0x0cf3: data = decode_0cf3(data, indent) else: logging.debug('%scmd %04x(%02x:%02x) is unknown, length %d', indent, cmd, _1, _2, length) data = None return length, cmd, data def encode_packet(cmd, align, buf): align = 4 orig_len = len(buf) if align > 1 and (len(buf) + 12) % align: buf += struct.pack(str(align - len(buf) % align) + "x") return struct.pack(">IBBHI", cmd, 0xc0, 0x00, orig_len + 12, 0x0000583) + buf # 0013 - Message def encode_0013(buf): return encode_packet(0x0013, 4, buf) # 0012 - u32 def encode_0012(i): return encode_packet(0x0012, 1, struct.pack("I" + str(len(s)) + "sx", prefix, s)) # 0cf0 - encapsulation def encode_0cf0(buf): return encode_packet(0x0cf0, 4, buf) # 0cf1 - string without hex prefixer def encode_0cf1(s): s += b'\0' return encode_packet(0x0ce5, 1, struct.pack(str(len(s)) + "s", s)) # 0cf3 - u32 def encode_0cf3(i): return encode_packet(0x0013, 1, struct.pack(" 0 self.br.set_handle_refresh(mechanize._http.HTTPRefreshProcessor(), max_time=1) # Want debugging messages? if debug: self.br.set_debug_http(True) self.br.set_debug_redirects(True) self.br.set_debug_responses(True) self.user_agent = user_agent self.br.addheaders = [('User-agent', self.user_agent)] def find_cookie(self, name): for cookie in self.cj: if cookie.name == name: return cookie return None def set_cookie(self, name, value): cookie = Cookie(version=0, name=name, value=value, port=None, port_specified=False, domain=self.vpn_host, domain_specified=True, domain_initial_dot=False, path=self.path, path_specified=True, secure=True, expires=None, discard=True, comment=None, comment_url=None, rest=None, rfc2109=False) self.cj.set_cookie(cookie) def parse_response(self): # Read in key/token fields in HTTP response response = dict() last_key = '' for line in self.r.readlines(): line = line.strip().decode() # Note that msg is too long and gets wrapped, handle it special if last_key == 'msg' and line: response['msg'] += line else: key = '' try: key, val = line.split('=', 1) response[key] = val except ValueError: pass last_key = key logging.debug('Parsed response:\n\t%s', '\n\t'.join('%r: %r,' % pair for pair in response.items())) return response @staticmethod def parse_policy_response(msg_data): # The decompressed data is HTMLish, decode it. The value="" of each # tag is the data we want. objs = [] class ParamHTMLParser(HTMLParser.HTMLParser): def handle_starttag(self, tag, attrs): if tag.lower() == 'param': for key, value in attrs: if key.lower() == 'value': # It's made up of a bunch of key=value pairs separated # by semicolons d = dict() for field in value.split(';'): field = field.strip() try: key, value = field.split('=', 1) d[key] = value except ValueError: pass objs.append(d) p = ParamHTMLParser() p.feed(msg_data) p.close() return objs @staticmethod def parse_funk_response(msg_data): e = xml.etree.ElementTree.fromstring(msg_data) req_certs = {} for cert in e.find('AttributeRequest').findall('CertData'): dns = {} cert_id = cert.attrib['Id'] for attr in cert.findall('Attribute'): name = attr.attrib['Name'] value = attr.attrib['Value'] attr_type = attr.attrib['Type'] if attr_type == 'DN': dns[name] = dict(n.strip().split('=') for n in value.split(',')) else: # Unknown attribute type pass req_certs[cert_id] = dns return req_certs def gen_funk_platform(self): # We don't know if the xml parser on the other end is fully complaint, # just format a string like it expects. msg = " " % self.platform msg += " " def add_attr(key, val): return "" % (key, val) msg += add_attr('Platform', self.platform) if self.hostname: msg += add_attr(self.hostname, 'NETBIOSName') # Reversed for mac in self.mac_addrs: msg += add_attr(mac, 'MACAddress') # Reversed msg += " " return encode_0ce7(msg.encode(), MSG_FUNK_PLATFORM) def gen_funk_present(self): msg = " " % self.platform msg += " " return encode_0ce7(msg.encode(), MSG_FUNK) def gen_funk_response(self, certs): msg = " " % self.platform msg += " " msg += "" % self.platform for name, value in certs.items(): msg += "" % (name, value.data.strip()) msg += "" % (name, value.data.strip()) msg += " " return encode_0ce7(msg.encode(), MSG_FUNK) @staticmethod def gen_policy_request(): policy_blocks = collections.OrderedDict({ 'policy_request': { 'message_version': '3' }, 'esap': { 'esap_version': 'NOT_AVAILABLE', 'fileinfo': 'NOT_AVAILABLE', 'has_file_versions': 'YES', 'needs_exact_sdk': 'YES', 'opswat_sdk_version': '3' }, 'system_info': { 'os_version': '2.6.2', 'sp_version': '0', 'hc_mode': 'userMode' } }) msg = '' for policy_key, policy_val in policy_blocks.items(): v = ''.join(['%s=%s;' % (k, v) for k, v in policy_val.items()]) msg += '' % (policy_key, v) return encode_0ce7(msg.encode(), 0xa4c18) @staticmethod def gen_policy_response(policy_objs): # Make a set of policies policies = set() for entry in policy_objs: if 'policy' in entry: policies.add(entry['policy']) # Try to determine on policy name whether the response should be OK # or NOTOK. Default to OK if we don't know, this may need updating. msg = '' for policy in policies: msg += '\npolicy:%s\nstatus:' % policy if 'Unsupported' in policy or 'Deny' in policy: msg += 'NOTOK\nerror:Unknown error' elif 'Required' in policy: msg += 'OK\n' else: # Default action msg += 'OK\n' return encode_0ce7(msg.encode(), MSG_POLICY) def get_cookie(self, dspreauth=None, dssignin=None): if dspreauth is None or dssignin is None: self.r = self.br.open('https://' + self.vpn_host) else: try: self.cj.set_cookie(dspreauth) except Exception: self.set_cookie('DSPREAUTH', dspreauth) try: self.cj.set_cookie(dssignin) except Exception: self.set_cookie('DSSIGNIN', dssignin) inner = self.gen_policy_request() inner += encode_0ce7(b'policy request\x00v4', MSG_POLICY) if self.funk: inner += self.gen_funk_platform() inner += self.gen_funk_present() msg_raw = encode_0013(encode_0ce4(inner) + encode_0ce5(b'Accept-Language: en') + encode_0cf3(1)) logging.debug('Sending packet -') decode_packet(msg_raw) post_attrs = { 'connID': '0', 'timestamp': '0', 'msg': base64.b64encode(msg_raw).decode(), 'firsttime': '1' } if self.deviceid: post_attrs['deviceid'] = self.deviceid post_data = ''.join(['%s=%s;' % (k, v) for k, v in post_attrs.items()]) self.r = self.br.open('https://' + self.vpn_host + self.path + 'hc/tnchcupdate.cgi', post_data) # Parse the data returned into a key/value dict response = self.parse_response() if 'interval' in response: m = int(response['interval']) logging.debug('Got interval of %d minutes', m) if self.interval is None or self.interval > m * 60: self.interval = m * 60 # msg has the stuff we want, it's base64 encoded logging.debug('Receiving packet -') msg_raw = base64.b64decode(response['msg']) _1, _2, msg_decoded = decode_packet(msg_raw) # Within msg, there is a field of data sub_strings = msg_decoded[0x0ce4][0][0x0ce7] # Pull the data out of the 'value' key in the htmlish stuff returned policy_objs = [] req_certs = {} for str_id, sub_str in sub_strings: if str_id == MSG_POLICY: policy_objs += self.parse_policy_response(sub_str.decode()) elif str_id == MSG_FUNK: req_certs = self.parse_funk_response(sub_str.decode()) if debug: for obj in policy_objs: if 'policy' in obj: logging.debug('policy %s', obj['policy']) for key, val in obj.items(): if key != 'policy': logging.debug('\t%s %s', key, val) # Try to locate the required certificates certs = {} for cert_id, req_dns in req_certs.items(): for cert in self.avail_certs: fail = False for dn_name, dn_vals in req_dns.items(): for name, val in dn_vals.items(): try: if dn_name == 'IssuerDN': assert val in cert.issuer[name] else: logging.warning('Unknown DN type %s', str(dn_name)) raise Exception() except Exception: fail = True break if fail: break if not fail: certs[cert_id] = cert break if cert_id not in certs: logging.warning('Could not find certificate for %s', str(req_dns)) inner = b'' if certs: inner += self.gen_funk_response(certs) inner += self.gen_policy_response(policy_objs) msg_raw = encode_0013(encode_0ce4(inner) + encode_0ce5(b'Accept-Language: en')) logging.debug('Sending packet -') decode_packet(msg_raw) post_attrs = { 'connID': '1', 'msg': base64.b64encode(msg_raw).decode(), 'firsttime': '1' } post_data = ''.join(['%s=%s;' % (k, v) for k, v in post_attrs.items()]) self.r = self.br.open('https://' + self.vpn_host + self.path + 'hc/tnchcupdate.cgi', post_data) # We have a new DSPREAUTH cookie return self.find_cookie('DSPREAUTH') class tncc_server: def __init__(self, s, t): self.sock = s self.tncc = t def process_cmd(self): buf = self.sock.recv(1024).decode('ascii') if not buf: sys.exit(0) cmd, buf = buf.split('\n', 1) cmd = cmd.strip() args = {} for n in buf.split('\n'): n = n.strip() if n: key, val = n.strip().split('=', 1) args[key] = val if cmd == 'start': cookie = self.tncc.get_cookie(args['Cookie'], args['DSSIGNIN']) resp = ['200', '3', cookie.value] if self.tncc.interval is not None: resp.append(str(self.tncc.interval)) self.sock.send(('\n'.join(resp) + '\n\n').encode('ascii')) elif cmd == 'setcookie': self.tncc.get_cookie(args['Cookie'], self.tncc.find_cookie('DSSIGNIN')) else: logging.warning('Unknown command %r', cmd) def fingerprint_checking_SSLSocket(_fingerprint): class SSLSocket(ssl.SSLSocket): fingerprint = _fingerprint def do_handshake(self, *args, **kw): res = super().do_handshake(*args, **kw) der_bytes = self.getpeercert(True) cert = asn1crypto.x509.Certificate.load(der_bytes) pubkey = cert.public_key.dump() pin_sha256 = base64.b64encode(hashlib.sha256(pubkey).digest()).decode() if pin_sha256 != self.fingerprint: raise Exception("Server fingerprint %s does not match expected pin-sha256:%s" % (pin_sha256, self.fingerprint)) return res return SSLSocket if __name__ == "__main__": vpn_host = sys.argv[1] funk = 'TNCC_FUNK' in os.environ and os.environ['TNCC_FUNK'] != '0' interval = int(os.environ.get('TNCC_INTERVAL', 0)) or None platform = os.environ.get('TNCC_PLATFORM', platform.system() + ' ' + platform.release()) user_agent = os.environ.get('TNCC_USER_AGENT', 'Neoteris HC Http') if 'TNCC_HWADDR' in os.environ: mac_addrs = [n.strip() for n in os.environ['TNCC_HWADDR'].split(',')] else: mac_addrs = [] if netifaces is None: logging.warning("No netifaces module; mac_addrs will be empty.") else: for iface in netifaces.interfaces(): try: mac = netifaces.ifaddresses(iface)[netifaces.AF_LINK][0]['addr'] assert mac != '00:00:00:00:00:00' mac_addrs.append(mac) except Exception: pass hostname = os.environ.get('TNCC_HOSTNAME', socket.gethostname()) fingerprint = os.environ.get('TNCC_SHA256') if not fingerprint: logging.warning("TNCC_SHA256 not set, will not validate server certificate") elif not asn1crypto: logging.warning("asn1crypto module not available, will not validate server certificate") else: # For Python <3.7, we monkey-patch ssl.SSLSocket directly, because ssl.SSLContext.sslsocket_class # isn't available until Python 3.7. For Python 3.7+, we set ssl.SSLContext.sslsocket_class # to our modified version (which is sort of monkey-patching too). # (see https://gist.github.com/dlenski/fc42156c00a615f4aa18a6d19d67e208) if sys.version_info >= (3, 7): ssl.SSLContext.sslsocket_class = fingerprint_checking_SSLSocket(fingerprint) else: ssl.SSLSocket = fingerprint_checking_SSLSocket(fingerprint) certs = [] if 'TNCC_CERTS' in os.environ: if asn1crypto: now = datetime.datetime.utcnow() for f in os.environ['TNCC_CERTS'].split(','): cert = x509cert(f.strip()) if now < cert.not_before: logging.warning('WARNING: %s is not yet valid', f) if now > cert.not_after: logging.warning('WARNING: %s is expired', f) certs.append(cert) else: raise Exception('TNCC_CERTS environment variable set, but asn1crypto module is not available') # \HKEY_CURRENT_USER\Software\Juniper Networks\Device Id device_id = os.environ.get('TNCC_DEVICE_ID') t = tncc(vpn_host, device_id, funk, platform, hostname, mac_addrs, certs, interval, user_agent) sock = socket.fromfd(0, socket.AF_UNIX, socket.SOCK_SEQPACKET) server = tncc_server(sock, t) while True: server.process_cmd() openconnect-8.20/f5.c0000644000076400007640000005354714171606260016227 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020-2021 David Woodhouse, Daniel Lenski * * Author: David Woodhouse , Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "ppp.h" #include #include #include #include #include #include #include #include #include #include #include #include #define XCAST(x) ((const xmlChar *)(x)) /* XX: some F5 VPNs simply do not have a static HTML form to parse, but * only a mess of JavaScript which creates a dynamic form that's * functionally equivalent to the following: * *
    * * *
    */ static struct oc_auth_form *plain_auth_form(void) { struct oc_auth_form *form; struct oc_form_opt *opt, *opt2; form = calloc(1, sizeof(*form)); if (!form) { nomem: free_auth_form(form); return NULL; } if ((form->auth_id = strdup("auth_form")) == NULL) goto nomem; opt = form->opts = calloc(1, sizeof(*opt)); if (!opt) goto nomem; opt->label = strdup("username:"); opt->name = strdup("username"); opt->type = OC_FORM_OPT_TEXT; opt2 = opt->next = calloc(1, sizeof(*opt2)); if (!opt2) goto nomem; opt2->label = strdup("password:"); opt2->name = strdup("password"); opt2->type = OC_FORM_OPT_PASSWORD; return form; } static int check_cookie_success(struct openconnect_info *vpninfo) { struct oc_vpn_option *cookie; const char *session = NULL, *f5_st = NULL; /* XX: The MRHSession cookie is often set repeatedly to new values prior * to the completion of authentication, so it is not a sufficient * indicator of successfully completed authentication by itself. * * The combination of the MRHSession and F5_ST cookies appears to be * reliable indicator. F5_ST is a "session timeout" cookie (see * https://support.f5.com/csp/article/K15387). */ for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "MRHSession")) session = cookie->value; else if (!strcmp(cookie->option, "F5_ST")) f5_st = cookie->value; } if (session && f5_st) { free(vpninfo->cookie); if (asprintf(&vpninfo->cookie, "MRHSession=%s; F5_ST=%s", session, f5_st) <= 0) return -ENOMEM; return 0; } return -ENOENT; } int f5_obtain_cookie(struct openconnect_info *vpninfo) { int ret, form_order=0; xmlDocPtr doc = NULL; xmlNode *node; struct oc_text_buf *req_buf = NULL; struct oc_auth_form *form = NULL; char *form_id = NULL; req_buf = buf_alloc(); if ((ret = buf_error(req_buf))) goto out; while (++form_order) { char *resp_buf = NULL; char *url; if (req_buf && req_buf->pos) ret = do_https_request(vpninfo, "POST", "application/x-www-form-urlencoded", req_buf, &resp_buf, NULL, HTTP_REDIRECT_TO_GET); else ret = do_https_request(vpninfo, "GET", NULL, NULL, &resp_buf, NULL, HTTP_REDIRECT_TO_GET); if (!check_cookie_success(vpninfo)) { free(resp_buf); ret = 0; break; } if (ret < 0) break; url = internal_get_url(vpninfo); if (!url) { free(resp_buf); nomem: ret = -ENOMEM; break; } doc = htmlReadMemory(resp_buf, ret, url, NULL, HTML_PARSE_RECOVER|HTML_PARSE_NOERROR|HTML_PARSE_NOWARNING|HTML_PARSE_NONET); free(url); free(resp_buf); if (!doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse HTML document\n")); ret = -EINVAL; break; } buf_truncate(req_buf); node = find_form_node(doc); if (!node && form_order==1) { /* XX: some F5 VPNs simply do not have a static HTML form to parse */ vpn_progress(vpninfo, PRG_ERR, _("WARNING: no HTML login form found; assuming username and password fields\n")); if ((form = plain_auth_form()) == NULL) goto nomem; } else { form = parse_form_node(vpninfo, node, NULL, NULL); if (form_order==1 && (xmlnode_get_prop(node, "id", &form_id) || strcmp(form_id, "auth_form"))) { vpn_progress(vpninfo, PRG_ERR, _("Unknown form ID '%s' (expected 'auth_form')\n"), form_id); fprintf(stderr, _("Dumping unknown HTML form:\n")); htmlNodeDumpFileFormat(stderr, node->doc, node, NULL, 1); ret = -EINVAL; break; } } if (!form) { ret = -EINVAL; break; } /* XX: do_gen_tokencode would go here, if we knew of any * token-based 2FA options for F5. */ do { ret = process_auth_form(vpninfo, form); } while (ret == OC_FORM_RESULT_NEWGROUP); if (ret) goto out; append_form_opts(vpninfo, form, req_buf); if ((ret = buf_error(req_buf))) goto out; if (form->action) { vpninfo->redirect_url = form->action; form->action = NULL; } free_auth_form(form); form = NULL; if (vpninfo->redirect_url) handle_redirect(vpninfo); xmlFreeDoc(doc); doc = NULL; } out: if (doc) xmlFreeDoc(doc); free(form_id); if (form) free_auth_form(form); if (req_buf) buf_free(req_buf); return ret; } /* * Parse the 'favorites' profile information from * /vdesk/vpn/index.php3?outform=xml&client_version=2.0 * which looks something like this: * * * * * demo_vpn_resource * /Common/demo_vpn_resource * resourcename=/Common/demo_vpn_resource * * * * Extract the content of the "params" node which is needed for the * next request. */ static int parse_profile(struct openconnect_info *vpninfo, char *buf, int len, char **params) { xmlDocPtr xml_doc; xmlNode *xml_node, *xml_node2, *xml_node3; char *type = NULL; int ret; if (!buf || !len) return -EINVAL; xml_doc = xmlReadMemory(buf, len, "noname.xml", NULL, XML_PARSE_NOERROR|XML_PARSE_RECOVER); if (!xml_doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse F5 profile response\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), buf); return -EINVAL; } xml_node = xmlDocGetRootElement(xml_doc); for (; xml_node; xml_node = xml_node->next) { if (xml_node->type != XML_ELEMENT_NODE) continue; if (!xmlnode_is_named(xml_node, "favorites")) continue; type = (char *)xmlGetProp(xml_node, XCAST("type")); if (!type) continue; if (strcmp(type, "VPN")) { free(type); continue; } free(type); for (xml_node2 = xmlFirstElementChild(xml_node); xml_node2; xml_node2 = xmlNextElementSibling(xml_node2)) { if (!xmlnode_is_named(xml_node2, "favorite")) continue; for (xml_node3 = xmlFirstElementChild(xml_node2); xml_node3; xml_node3 = xmlNextElementSibling(xml_node3)) { if (!xmlnode_is_named(xml_node3, "params")) continue; *params = (char *)xmlNodeGetContent(xml_node3); ret = 0; goto out; } } } vpn_progress(vpninfo, PRG_ERR, _("Failed to find VPN profile parameters\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), buf); ret = -EINVAL; out: xmlFreeDoc(xml_doc); return ret; } static int xmlnode_bool_or_int_value(struct openconnect_info *vpninfo, xmlNode *node) { int ret = -1; char *content = (char *)xmlNodeGetContent(node); if (!content) return -1; if (isdigit(content[0])) ret = atoi(content); if (!strcasecmp(content, "yes") || !strcasecmp(content, "on")) ret = 1; if (!strcasecmp(content, "no") || !strcasecmp(content, "off")) ret = 0; free(content); return ret; } static int parse_options(struct openconnect_info *vpninfo, char *buf, int len, char **session_id, char **ur_z, int *ipv4, int *ipv6, int *hdlc) { xmlNode *fav_node, *obj_node, *xml_node; xmlDocPtr xml_doc; int ret = 0, n_dns = 0, n_nbns = 0, default_route = 0, dtls = 0, dtls_port = 0; char *s = NULL; struct oc_text_buf *domains = NULL; if (!buf || !len) return -EINVAL; xml_doc = xmlReadMemory(buf, len, "noname.xml", NULL, XML_PARSE_NOERROR|XML_PARSE_RECOVER); if (!xml_doc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse F5 options response\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), buf); return -EINVAL; } fav_node = xmlDocGetRootElement(xml_doc); if (!xmlnode_is_named(fav_node, "favorite")) goto err; obj_node = xmlFirstElementChild(fav_node); if (!xmlnode_is_named(obj_node, "object")) goto err; struct oc_vpn_option *new_opts = NULL; struct oc_ip_info new_ip_info = {}; domains = buf_alloc(); for (xml_node = xmlFirstElementChild(obj_node); xml_node; xml_node = xmlNextElementSibling(xml_node)) { if (xmlnode_is_named(xml_node, "ur_Z")) *ur_z = (char *)xmlNodeGetContent(xml_node); else if (xmlnode_is_named(xml_node, "Session_ID")) *session_id = (char *)xmlNodeGetContent(xml_node); else if (xmlnode_is_named(xml_node, "IPV4_0")) *ipv4 = xmlnode_bool_or_int_value(vpninfo, xml_node); else if (xmlnode_is_named(xml_node, "IPV6_0")) { if (!vpninfo->disable_ipv6) *ipv6 = xmlnode_bool_or_int_value(vpninfo, xml_node); } else if (xmlnode_is_named(xml_node, "hdlc_framing")) *hdlc = xmlnode_bool_or_int_value(vpninfo, xml_node); else if (xmlnode_is_named(xml_node, "idle_session_timeout")) { int sec = vpninfo->idle_timeout = xmlnode_bool_or_int_value(vpninfo, xml_node); vpn_progress(vpninfo, PRG_INFO, _("Idle timeout is %d minutes\n"), sec/60); } else if (xmlnode_is_named(xml_node, "tunnel_dtls")) dtls = xmlnode_bool_or_int_value(vpninfo, xml_node); else if (xmlnode_is_named(xml_node, "tunnel_port_dtls")) dtls_port = xmlnode_bool_or_int_value(vpninfo, xml_node); else if (xmlnode_is_named(xml_node, "dtls_v1_2_supported")) vpninfo->dtls12 = xmlnode_bool_or_int_value(vpninfo, xml_node); else if (xmlnode_is_named(xml_node, "UseDefaultGateway0")) { default_route = xmlnode_bool_or_int_value(vpninfo, xml_node); if (default_route) vpn_progress(vpninfo, PRG_INFO, _("Got default routes\n")); } else if (xmlnode_is_named(xml_node, "SplitTunneling0")) { int st = xmlnode_bool_or_int_value(vpninfo, xml_node); vpn_progress(vpninfo, PRG_INFO, _("Got SplitTunneling0 value of %d\n"), st); /* XX: Should we ignore split-{in,ex}cludes if this is zero? */ } /* XX: This is an objectively stupid way to use XML, a hierarchical data format. */ else if ( (!strncmp((char *)xml_node->name, "DNS", 3) && isdigit(xml_node->name[3])) || (!strncmp((char *)xml_node->name, "DNS6_", 5) && isdigit(xml_node->name[5])) ) { free(s); s = (char *)xmlNodeGetContent(xml_node); if (s && *s) { vpn_progress(vpninfo, PRG_INFO, _("Got DNS server %s\n"), s); if (n_dns < 3) new_ip_info.dns[n_dns++] = add_option_steal(&new_opts, "DNS", &s); } } else if (!strncmp((char *)xml_node->name, "WINS", 4) && isdigit(xml_node->name[4])) { free(s); s = (char *)xmlNodeGetContent(xml_node); if (s && *s) { vpn_progress(vpninfo, PRG_INFO, _("Got WINS/NBNS server %s\n"), s); if (n_nbns < 3) new_ip_info.dns[n_nbns++] = add_option_steal(&new_opts, "WINS", &s); } } else if (!strncmp((char *)xml_node->name, "DNSSuffix", 9) && isdigit(xml_node->name[9])) { free(s); s = (char *)xmlNodeGetContent(xml_node); if (s && *s) { vpn_progress(vpninfo, PRG_INFO, _("Got search domain %s\n"), s); buf_append(domains, "%s ", s); } } /* XX: Like the above, but even stupider because one tag can contain multiple space-separated values. */ else if ( (!strncmp((char *)xml_node->name, "LAN", 3) && isdigit((char)xml_node->name[3])) || (!strncmp((char *)xml_node->name, "LAN6_", 5) && isdigit((char)xml_node->name[5])) || (!strncmp((char *)xml_node->name, "ExcludeSubnets", 14) && isdigit((char)xml_node->name[14])) || (!strncmp((char *)xml_node->name, "ExcludeSubnets6_", 16) && isdigit((char)xml_node->name[16]))) { free(s); s = (char *)xmlNodeGetContent(xml_node); if (s && *s) { char *word, *next; int is_exclude = (xml_node->name[0] == 'E'); const char *option = is_exclude ? "split-exclude" : "split-include"; for (word = s; *word; word = next) { for (next = word; *next && !isspace(*next); next++); if (*next) *next++ = 0; if (next == word + 1) continue; struct oc_split_include *inc = malloc(sizeof(*inc)); if (!inc) continue; inc->route = add_option_dup(&new_opts, option, word, -1); if (is_exclude) { inc->next = new_ip_info.split_excludes; new_ip_info.split_excludes = inc; vpn_progress(vpninfo, PRG_INFO, _("Got split exclude route %s\n"), word); } else { inc->next = new_ip_info.split_includes; new_ip_info.split_includes = inc; vpn_progress(vpninfo, PRG_INFO, _("Got split include route %s\n"), word); } } } } } if (dtls && dtls_port && vpninfo->dtls_state == DTLS_NOSECRET) { vpn_progress(vpninfo, PRG_INFO, _("DTLS is enabled on port %d\n"), dtls_port); if (!*hdlc) { udp_sockaddr(vpninfo, dtls_port); vpninfo->dtls_state = DTLS_SECRET; } else { /* XX: HDLC-like framing (RFC1662) means that tunneled packets may double in size as part of * their on-the-wire encapsulation, while efficient datagram transport requires calculation * of a predictable maximum transfer unit. * * We hope no servers expect us to combine them. If they do, we should reject DTLS. */ vpn_progress(vpninfo, PRG_ERR, _("WARNING: Server enables DTLS, but also requires HDLC. Disabling DTLS,\n" " because HDLC prevents determination of efficient and consistent MTU.\n")); } } if (default_route && *ipv4) new_ip_info.netmask = add_option_dup(&new_opts, "netmask", "0.0.0.0", -1); if (default_route && *ipv6) new_ip_info.netmask6 = add_option_dup(&new_opts, "netmask6", "::/0", -1); if (buf_error(domains) == 0 && domains->pos > 0) { domains->data[domains->pos-1] = '\0'; new_ip_info.domain = add_option_steal(&new_opts, "search", &domains->data); } buf_free(domains); ret = install_vpn_opts(vpninfo, new_opts, &new_ip_info); if (ret || (*ipv4 < 1 && *ipv6 < 1) || !*ur_z || !*session_id) { free_optlist(new_opts); free_split_routes(&new_ip_info); err: vpn_progress(vpninfo, PRG_ERR, _("Failed to find VPN options\n")); vpn_progress(vpninfo, PRG_DEBUG, _("Response was:%s\n"), buf); ret = -EINVAL; } xmlFreeDoc(xml_doc); free(s); return ret; } static int get_ip_address(struct openconnect_info *vpninfo, char *header, char *val) { struct oc_ppp *ppp = vpninfo->ppp; if (!ppp || ppp->ppp_state != PPPS_DEAD) return 0; /* If the addresses were already negotiated once in PPP and this * is a reconnect, they'll be in vpninfo->ip_info.addr*. In that * case don't overwrite them, and let it correctly abort if the * server rejects the same addresses this time round. */ if (!strcasecmp(header, "X-VPN-client-IP")) { vpn_progress(vpninfo, PRG_INFO, _("Got Legacy IP address %s\n"), val); if (!vpninfo->ip_info.addr) ppp->out_ipv4_addr.s_addr = inet_addr(val); } else if (!strcasecmp(header, "X-VPN-client-IPv6")) { vpn_progress(vpninfo, PRG_INFO, _("Got IPv6 address %s\n"), val); if (!vpninfo->ip_info.addr6 && !vpninfo->ip_info.netmask6) inet_pton(AF_INET6, val, &ppp->out_ipv6_addr); } /* XX: The server's IP address(es) X-VPN-server-{IP,IPv6} are also * sent, but the utility of these is unclear. As remarked in oncp.c, * "this is a tunnel; having a gateway is meaningless." */ return 0; } static int f5_configure(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *reqbuf = NULL; struct oc_vpn_option *cookie; char *profile_params = NULL; char *sid = NULL, *ur_z = NULL; int ipv4 = -1, ipv6 = -1, hdlc = 0; char *res_buf = NULL; if (!vpninfo->cookies) { /* XX: This will happen if authentication was separate/external */ ret = internal_split_cookies(vpninfo, 1, "MRHSession"); if (ret) return ret; } /* XX: parse "session timeout" cookie to get auth expiration */ for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strcmp(cookie->option, "F5_ST")) { int junk, start, dur; char c = 0; if (sscanf(cookie->value, "%dz%dz%dz%dz%d%c", &junk, &junk, &junk, &start, &dur, &c) >= 5 && (c == 0 || c == 'z')) vpninfo->auth_expiration = start + dur; break; } } free(vpninfo->urlpath); vpninfo->urlpath = strdup("vdesk/vpn/index.php3?outform=xml&client_version=2.0"); ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); if (ret < 0) goto out; ret = parse_profile(vpninfo, res_buf, ret, &profile_params); if (ret) goto out; vpn_progress(vpninfo, PRG_DEBUG, _("Got profile parameters '%s'\n"), profile_params); free(res_buf); res_buf = NULL; free(vpninfo->urlpath); if (asprintf(&vpninfo->urlpath, "vdesk/vpn/connect.php3?%s&outform=xml&client_version=2.0", profile_params) == -1) { ret = -ENOMEM; goto out; } ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); if (ret < 0) goto out; ret = parse_options(vpninfo, res_buf, ret, &sid, &ur_z, &ipv4, &ipv6, &hdlc); if (ret) goto out; vpn_progress(vpninfo, PRG_DEBUG, _("Got ipv4 %d ipv6 %d hdlc %d ur_Z '%s'\n"), ipv4, ipv6, hdlc, ur_z); if (ipv4 == -1) ipv4 = 0; if (ipv6 == -1) ipv6 = 0; /* XX: This buffer is used to initiate the connection over either TLS or DTLS. * Cookies are not needed for it to succeed, and can potentially grow without bound, * which would make it too big to fit in a single DTLS packet (ick, HTTP over DTLS). * * Don't blame me. I didn't design this. */ reqbuf = vpninfo->ppp_dtls_connect_req; if (!reqbuf) reqbuf = buf_alloc(); buf_truncate(reqbuf); buf_append(reqbuf, "GET /myvpn?sess=%s&hdlc_framing=%s&ipv4=%s&ipv6=%s&Z=%s&hostname=", sid, hdlc?"yes":"no", ipv4?"yes":"no", ipv6?"yes":"no", ur_z); buf_append_base64(reqbuf, vpninfo->localname, strlen(vpninfo->localname), 0); buf_append(reqbuf, " HTTP/1.1\r\n"); struct oc_vpn_option *saved_cookies = vpninfo->cookies; vpninfo->cookies = NULL; /* hide cookies */ http_common_headers(vpninfo, reqbuf); vpninfo->cookies = saved_cookies; /* restore cookies */ buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error establishing F5 connection\n")); ret = buf_error(reqbuf); goto out; } vpninfo->ppp_dtls_connect_req = reqbuf; reqbuf = NULL; ret = openconnect_ppp_new(vpninfo, hdlc ? PPP_ENCAP_F5_HDLC : PPP_ENCAP_F5, ipv4, ipv6); out: free(res_buf); free(profile_params); free(sid); free(ur_z); buf_free(reqbuf); return ret; } int f5_connect(struct openconnect_info *vpninfo) { int ret = 0; if (!vpninfo->ppp) { /* Initial connection */ ret = f5_configure(vpninfo); } else if (vpninfo->ppp->ppp_state != PPPS_DEAD) { /* TLS/DTLS reconnection with already-established PPP session * (PPP session will persist past reconnect.) */ ret = ppp_reset(vpninfo); } if (ret) { err: openconnect_close_https(vpninfo, 0); return ret; } ret = ppp_tcp_should_connect(vpninfo); if (ret <= 0) goto err; ret = openconnect_open_https(vpninfo); if (ret) goto err; if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', vpninfo->ppp_dtls_connect_req->data); ret = vpninfo->ssl_write(vpninfo, vpninfo->ppp_dtls_connect_req->data, vpninfo->ppp_dtls_connect_req->pos); if (ret < 0) goto err; struct oc_text_buf *resp_buf = buf_alloc(); if (buf_error(resp_buf)) { ret = buf_free(resp_buf); goto err; } ret = process_http_response(vpninfo, 1, get_ip_address, resp_buf); buf_free(resp_buf); if (ret < 0) goto err; if (ret != 201 && ret != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = (ret == 504) ? -EPERM : -EINVAL; goto err; } /* Trigger the first PPP negotiations and ensure the PPP state * is PPPS_ESTABLISH so that our mainloop knows we've started. */ ppp_start_tcp_mainloop(vpninfo); monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); return 0; } int f5_bye(struct openconnect_info *vpninfo, const char *reason) { char *orig_path; char *res_buf = NULL; int ret; /* We need to close and reopen the HTTPS connection (to kill * the f5 tunnel) and submit a new HTTPS request to logout. */ openconnect_close_https(vpninfo, 0); orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("vdesk/hangup.php3?hangup_error=1"); /* redirect segfaults without strdup */ ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (ret < 0) vpn_progress(vpninfo, PRG_ERR, _("Logout failed.\n")); else vpn_progress(vpninfo, PRG_INFO, _("Logout successful.\n")); free(res_buf); return ret; } int f5_dtls_catch_probe(struct openconnect_info *vpninfo, struct pkt *pkt) { char *line = (void *)pkt->data, *cr, *colon; int first = 1, status = -1; pkt->data[pkt->len] = 0; while (line && *line) { if (*line == '\n') { line++; continue; } cr = strchr(line, '\r'); if (!cr) break; *cr = 0; if (first) { char junk, c = 0; if (sscanf(line, "HTTP/%c.%c %d%c", &junk, &junk, &status, &c) >= 3 && (c == 0 || isspace(c)) && status == 200) { first = 0; } else return (status >= 400 && status <= 499) ? -EPERM : -EINVAL; } else { colon = strchr(line, ':'); if (colon) { *colon = 0; colon++; while (isspace(*colon)) colon++; get_ip_address(vpninfo, line, colon); } } line = cr + 1; } return 1; } openconnect-8.20/array.c0000644000076400007640000011012014171606260017010 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020 David Woodhouse * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "json.h" #include #include #include #ifdef _WIN32 #include "win32-ipicmp.h" #else /* The BSDs require the first two headers before netinet/ip.h * (Linux and macOS already #include them within netinet/ip.h) */ #include #include #include #include #include #include #endif #include #include #include #include #include #include #include static struct oc_auth_form *plain_auth_form(void) { struct oc_auth_form *form; struct oc_form_opt *opt, *opt2, *opt3; form = calloc(1, sizeof(*form)); if (!form) { nomem: free_auth_form(form); return NULL; } form->auth_id = strdup("form"); opt = form->opts = calloc(1, sizeof(*opt)); if (!opt) goto nomem; opt->label = strdup("authgroup:"); opt->name = strdup("method"); opt->type = OC_FORM_OPT_TEXT; opt2 = opt->next = calloc(1, sizeof(*opt2)); if (!opt2) goto nomem; opt2->label = strdup("username:"); opt2->name = strdup("uname"); opt2->type = OC_FORM_OPT_TEXT; opt3 = opt2->next = calloc(1, sizeof(*opt3)); if (!opt3) goto nomem; opt3->label = strdup("password:"); opt3->name = strdup("pwd"); opt3->type = OC_FORM_OPT_PASSWORD; return form; } int array_obtain_cookie(struct openconnect_info *vpninfo) { struct oc_auth_form *form = plain_auth_form(); if (!form) return -ENOMEM; struct oc_text_buf *req_buf = buf_alloc(); int ret; if ((ret = buf_error(req_buf))) goto out; do { ret = process_auth_form(vpninfo, form); } while (ret == OC_FORM_RESULT_NEWGROUP); if (ret) goto out; append_form_opts(vpninfo, form, req_buf); if ((ret = buf_error(req_buf))) goto out; free(vpninfo->urlpath); vpninfo->urlpath = strdup("prx/000/http/localhost/login"); if (!vpninfo->urlpath) { ret = -ENOMEM; goto out; } char *resp_buf = NULL; ret = do_https_request(vpninfo, "POST", "application/x-www-form-urlencoded", req_buf, &resp_buf, NULL, HTTP_REDIRECT_TO_GET); free(resp_buf); if (ret <= 0) goto out; struct oc_vpn_option *cookie; for (cookie = vpninfo->cookies; cookie; cookie = cookie->next) { if (!strncmp(cookie->option, "ANsession", 9)) { free(vpninfo->cookie); if (asprintf(&vpninfo->cookie, "%s=%s", cookie->option, cookie->value) <= 0) return -ENOMEM; ret = 0; goto out; } } vpn_progress(vpninfo, PRG_INFO, _("No ANsession cookie found\n")); ret = -EPERM; out: if (form) free_auth_form(form); if (req_buf) buf_free(req_buf); printf("obtain return %d\n", ret); return ret; } /* XXX: Lifted from oncp.c. Share it. */ static int parse_cookie(struct openconnect_info *vpninfo) { char *p = vpninfo->cookie; /* We currently expect the "cookie" to contain multiple cookies: * DSSignInUrl=/; DSID=xxx; DSFirstAccess=xxx; DSLastAccess=xxx * Process those into vpninfo->cookies unless we already had them * (in which case they may be newer). */ while (p && *p) { char *semicolon = strchr(p, ';'); char *equals; if (semicolon) *semicolon = 0; equals = strchr(p, '='); if (!equals) { vpn_progress(vpninfo, PRG_ERR, _("Invalid cookie '%s'\n"), p); return -EINVAL; } *equals = 0; http_add_cookie(vpninfo, p, equals+1, 0); *equals = '='; p = semicolon; if (p) { *p = ';'; p++; while (*p && isspace((int)(unsigned char)*p)) p++; } } return 0; } /* No idea what these structures are yet... */ static const unsigned char conf50[] = { 0x50, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const unsigned char conf54[] = { 0x54, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x20, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x0a, 0x00, 0x02, 0x0f, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x52, 0x54, 0x00, 0xde, 0xa2, 0xa6, 0x00, 0x00 }; static const unsigned char ipff[] = { 0x45, 0x00, 0x00, 0x14, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff, 0x00, 0x00, 0x00, 0x06, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }; static const struct pkt dpd_pkt = { .next = NULL, .data = { 0x45, 0x00, 0x00, 0x14, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff, 0x00, 0x00, 0x00, 0x01, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, .len = 20, }; static const struct pkt nodtls_pkt = { .next = NULL, .data = { 0x45, 0x00, 0x00, 0x14, 0x00, 0x00, 0x00, 0x00, 0x00, 0xff, 0x00, 0x00, 0x00, 0x05, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 }, .len = 20, }; static int parse_one_inc_exc(struct openconnect_info *vpninfo, struct oc_vpn_option **opts, struct oc_ip_info *ip_info, int incl, int ipv6, json_value *val) { if (val->type != json_object) { vpn_progress(vpninfo, PRG_ERR, "Include not object\n"); return -EINVAL; } /* We have no idea how they expose IPv6 yet. Hopefully not as wrong-endian integers like Legacy IP! */ if (ipv6) return 0; uint32_t route_ip = 0, route_mask = 0; int route_ip_found = 0, route_mask_found = 0; for (int i = 0; i < val->u.object.length; i++) { json_char *child_name = val->u.object.values[i].name; json_value *child_val = val->u.object.values[i].value; if (child_val->type != json_integer) continue; if (!strcmp(child_name, "ip")) { store_le32(&route_ip, child_val->u.integer); route_ip_found = 1; } else if (!strcmp(child_name, "mask")) { store_le32(&route_mask, child_val->u.integer); route_mask_found = 1; } } if (route_ip_found && route_mask_found) { char buf[64]; if (!inet_ntop(AF_INET, &route_ip, buf, sizeof(buf)/2)) return -errno; char *p = buf + strlen(buf); *(p++) = '/'; if (!inet_ntop(AF_INET, &route_mask, p, sizeof(buf) - (p - buf))) return -errno; vpn_progress(vpninfo, PRG_INFO, "Found split route %s\n", buf); struct oc_split_include *inc = malloc(sizeof (*inc)); if (!inc) return -ENOMEM; struct oc_split_include **list; if (incl) list = &ip_info->split_includes; else list = &ip_info->split_excludes; inc->route = add_option_dup(opts, "split-include", buf, -1); inc->next = *list; *list = inc; } return 0; } static int parse_network_inc_exc(struct openconnect_info *vpninfo, struct oc_vpn_option **opts, struct oc_ip_info *ip_info, int incl, json_value *val) { int ret = 0; if (val->type != json_object) { vpn_progress(vpninfo, PRG_ERR, "Includes not object\n"); return -EINVAL; } for (int i = 0; i < val->u.object.length; i++) { json_char *child_name = val->u.object.values[i].name; json_value *child_val = val->u.object.values[i].value; int is_ipv6; if (child_val->type != json_array) continue; if (!strcmp(child_name, "ipv6")) is_ipv6 = 1; else if (!strcmp(child_name, "ipv4")) is_ipv6 = 0; else continue; for (int j = 0; j < child_val->u.array.length; j++) { ret = parse_one_inc_exc(vpninfo, opts, ip_info, incl, is_ipv6, child_val->u.array.values[j]); if (ret) goto out; } } out: return ret; } static int parse_proxy_script(struct openconnect_info *vpninfo, struct oc_vpn_option **opts, struct oc_ip_info *ip_info, json_value *val) { return 0; } static int parse_dns_servers(struct openconnect_info *vpninfo, struct oc_vpn_option **opts, struct oc_ip_info *ip_info, json_value *val) { int servers_found = 0; if (val->type != json_array) return -EINVAL; /* * The 'dns_servers' object is an array, containing object[s] with * children named 'ipv4' and, presumably, 'ipv6'. Each of those is * *itself* an array. It isn't clear why we need an array of arrays. * Nor why IPv6 and Legacy IP need to be separate at all. * * "dns_servers": [{ * "ipv4": [67373064, 134744072] * }], */ for (int i = 0; i < val->u.array.length; i++) { json_value *elem1 = val->u.array.values[i]; if (elem1->type != json_object) continue; for (int j = 0; j < elem1->u.object.length; j++) { json_char *child_name = elem1->u.object.values[j].name; json_value *child_val = elem1->u.object.values[j].value; if (child_val->type != json_array) continue; int legacyip; if (!strcmp(child_name, "ipv4")) legacyip = 1; else if (!strcmp(child_name, "ipv6")) legacyip = 0; else continue; for (int k = 0; k < child_val->u.array.length; k++) { json_value *elem2 = child_val->u.array.values[k]; char buf[32]; const char *server = buf; if (legacyip && elem2->type == json_integer) { uint32_t addr; store_le32(&addr, elem2->u.integer); if (!inet_ntop(AF_INET, &addr, buf, sizeof(buf))) return -errno; } else if (!legacyip && elem2->type == json_string) { server = elem2->u.string.ptr; } else continue; vpn_progress(vpninfo, PRG_INFO, _("Found DNS server %s\n"), server); if (servers_found < 3 && (ip_info->dns[servers_found] = add_option_dup(opts, "DNS", server, -1))) servers_found++; } } } return 0; } static int parse_search_domains(struct openconnect_info *vpninfo, struct oc_vpn_option **opts, struct oc_ip_info *ip_info, json_value *val) { if (val->type != json_array) return -EINVAL; struct oc_text_buf *domains = buf_alloc(); for (int i = 0; i < val->u.array.length; i++) { json_value *elem = val->u.array.values[i]; if (elem->type != json_string) continue; vpn_progress(vpninfo, PRG_INFO, _("Got search domain '%s'\n"), elem->u.string.ptr); buf_append(domains, "%s ", elem->u.string.ptr); } if (buf_error(domains)) return buf_free(domains); if (domains->pos) { domains->data[domains->pos - 1] = '\0'; ip_info->domain = add_option_steal(opts, "search", &domains->data); } buf_free(domains); return 0; } static int parse_interface_info(struct openconnect_info *vpninfo, json_value *val) { struct oc_vpn_option *new_opts = NULL; struct oc_ip_info new_ip_info = {}; int i, ret = 0; if (val->type != json_object) return -EINVAL; for (i = 0; i < val->u.object.length; i++) { json_char *child_name = val->u.object.values[i].name; json_value *child_val = val->u.object.values[i].value; if (child_val->type == json_integer) { json_int_t ival = child_val->u.integer; /* The Array server gives us Legacy IP addresses as * decimal integers, in wrong-endian form. So an IP * address of e.g. 1.2.3.4 is presented as 0x04030201 * or "client_ipv4: 67305985" in the JSON response. * Obviously, integers represented as decimal strings * don't have an endianness on the wire per se; this * is only "wrong" endian. So... since the address in * struct in_addr is supposed to be stored in network * (big) endian form, we need to store the * wrong-endian integer as *little* endian in order * end up with the correct result. */ if (!strcmp(child_name, "client_ipv4")) { uint32_t ip; store_le32(&ip, ival); new_ip_info.addr = add_option_ipaddr(&new_opts, "client_ipv4", AF_INET, &ip); printf("Found Legacy IP address %s\n", new_ip_info.addr); } else if (!strcmp(child_name, "client_ipv4_mask")) { uint32_t mask; store_le32(&mask, ival); new_ip_info.netmask = add_option_ipaddr(&new_opts, "client_ipv4_mask", AF_INET, &mask); printf("Found Legacy IP netmask %s\n", new_ip_info.netmask); } else goto unknown; } else if (child_val->type == json_object) { if (!strcmp(child_name, "include_network_resource")) { ret = parse_network_inc_exc(vpninfo, &new_opts, &new_ip_info, 1, child_val); } else if (!strcmp(child_name, "exclude_network_resource")) { ret = parse_network_inc_exc(vpninfo, &new_opts, &new_ip_info, 0, child_val); } else if (!strcmp(child_name, "proxy_script")) { ret = parse_proxy_script(vpninfo, &new_opts, &new_ip_info, child_val); } else goto unknown; } else if (child_val->type == json_array) { if (!strcmp(child_name, "dns_servers")) { ret = parse_dns_servers(vpninfo, &new_opts, &new_ip_info, child_val); } else if (!strcmp(child_name, "search_domains")) { ret = parse_search_domains(vpninfo, &new_opts, &new_ip_info, child_val); } else goto unknown; } else { unknown: vpn_progress(vpninfo, PRG_DEBUG, _("Unknown Array config element '%s'\n"), child_name); } if (ret) goto out; } if (!ret) ret = install_vpn_opts(vpninfo, new_opts, &new_ip_info); out: if (ret) { free_optlist(new_opts); free_split_routes(&new_ip_info); } return ret; } static int parse_speed_tunnel(struct openconnect_info *vpninfo, json_value *val) { int speed_tunnel = 0, speed_tunnel_enc = 0, dpd = 0; int i; for (i = 0; i < val->u.object.length; i++) { json_char *child_name = val->u.object.values[i].name; json_value *child_val = val->u.object.values[i].value; if (child_val->type == json_integer) { json_int_t ival = child_val->u.integer; if (!strcmp(child_name, "allow_speed_tunnel")) speed_tunnel = ival; else if (!strcmp(child_name, "speed_tunnel_encryption")) speed_tunnel_enc = ival; else if (!strcmp(child_name, "keepalive_interval")) dpd = ival; } } vpn_progress(vpninfo, PRG_INFO, _("Initial config: Speed tunnel %d, enc %d, DPD %d\n"), speed_tunnel, speed_tunnel_enc, dpd); if (!speed_tunnel) vpninfo->dtls_state = DTLS_DISABLED; /* We don't support DPD yet...*/ if (dpd) { if (!vpninfo->ssl_times.dpd) vpninfo->ssl_times.dpd = dpd; if (!vpninfo->dtls_times.dpd) vpninfo->dtls_times.dpd = dpd; } return 0; } static int do_json_request(struct openconnect_info *vpninfo, void *req, int reqlen, int (*rq_parser)(struct openconnect_info *vpninfo, json_value *val)) { unsigned char bytes[16384]; int ret; if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '>', req, reqlen); ret = vpninfo->ssl_write(vpninfo, req, reqlen); if (ret != reqlen) { if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in Array JSON negotiation\n")); return -EIO; } return ret; } ret = vpninfo->ssl_read(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read Array JSON response\n")); return ret; } if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '<', bytes, ret); if (ret <= 16 || bytes[16] != '{') { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response to Array JSON request\n")); return -EINVAL; } dump_buf(vpninfo, '<', (char *)bytes + 16); json_settings settings = { 0 }; char json_err[json_error_max]; json_value *val = json_parse_ex(&settings, (json_char *)bytes + 16, ret - 16, json_err); if (!val) { eparse: vpn_progress(vpninfo, PRG_ERR, _("Failed to parse Array JSON response\n")); return -EINVAL; } if (vpninfo->verbose >= PRG_DEBUG) dump_json(vpninfo, PRG_DEBUG, val); if (val->type != json_object) { json_value_free(val); goto eparse; } ret = rq_parser(vpninfo, val); json_value_free(val); return ret; } int array_connect(struct openconnect_info *vpninfo) { int ret; struct oc_text_buf *reqbuf; unsigned char bytes[65536]; if (!vpninfo->cookies) { ret = parse_cookie(vpninfo); if (ret) return ret; } /* We abuse ppp_tls_connect_req for the random client-id */ if (!vpninfo->ppp_tls_connect_req) { unsigned char bin[16]; ret = openconnect_random(bin, sizeof(bin)); if (ret) return ret; struct oc_text_buf *buf = buf_alloc(); buf_append(buf, "%02X%02X%02X%02X-%02X%02X-%02X%02X-%02X%02X-%02X%02X%02X%02X%02X%02X", bin[0], bin[1], bin[2], bin[3], bin[4], bin[5], bin[6], bin[7], bin[8], bin[9], bin[10], bin[11], bin[12], bin[13], bin[14], bin[15]); if (buf_error(buf)) return buf_free(buf); vpninfo->ppp_tls_connect_req = buf; /* Now build the request we actually send over DTLS, which * must have "13" following the client-id. Without that at * the end, we can send over DTLS but the worker process * seems to crash as soon as it needs to send us anything * more than a keepalive response. */ buf = buf_alloc(); buf_append(buf, "%s13", vpninfo->ppp_tls_connect_req->data); if (buf_error(buf)) return buf_free(buf); vpninfo->ppp_dtls_connect_req = buf; } ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "GET /vpntunnel HTTP/1.1\r\n"); http_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "appid: SSPVPN\r\n"); buf_append(reqbuf, "clientid: %s\r\n", vpninfo->ppp_tls_connect_req->data); buf_append(reqbuf, "cpuid: %s\r\n", vpninfo->ppp_tls_connect_req->data); buf_append(reqbuf, "hostname: %s\r\n", vpninfo->localname); buf_append(reqbuf, "payload-ip-version: 6\r\n"); buf_append(reqbuf, "x-devtype: 6\r\n"); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating array negotiation request\n")); ret = buf_error(reqbuf); goto out; } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret < 0) goto out; ret = process_http_response(vpninfo, 1, NULL, reqbuf); if (ret < 0) goto out; if (ret != 201 && ret != 200) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = -EINVAL; goto out; } ret = do_json_request(vpninfo, (void *)conf50, sizeof(conf50), parse_speed_tunnel); if (ret) goto out; ret = do_json_request(vpninfo, (void *)conf54, sizeof(conf54), parse_interface_info); if (ret) goto out; if (vpninfo->dtls_state != DTLS_DISABLED) { struct oc_text_buf *dtlsbuf = buf_alloc(); buf_append_bytes(dtlsbuf, (void *)ipff, 16); buf_append(dtlsbuf, "%s", vpninfo->ppp_tls_connect_req->data); if (buf_error(dtlsbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error building Array DTLS negotiation packet\n")); vpninfo->dtls_state = DTLS_DISABLED; ret = buf_free(dtlsbuf); goto out; } store_be16(dtlsbuf->data + 12, 4); store_be16(dtlsbuf->data + 2, dtlsbuf->pos); if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)dtlsbuf->data, dtlsbuf->pos); ret = vpninfo->ssl_write(vpninfo, (void *)dtlsbuf->data, dtlsbuf->pos); if (ret != dtlsbuf->pos) { buf_free(dtlsbuf); if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in array negotiation\n")); ret = -EIO; } goto out; } buf_free(dtlsbuf); ret = vpninfo->ssl_read(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read UDP negotiation response\n")); ret = -EIO; goto out; } /* Parse it, learn what we need from it */ if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '<', bytes, ret); if (ret == 0x25 && !memcmp(bytes + 0x14, "DTLS SPEED TUNNEL", 0x11)) { int udp_port = load_be16(bytes + 0x12); vpn_progress(vpninfo, PRG_INFO, _("DTLS enabled on port %d\n"), udp_port); udp_sockaddr(vpninfo, udp_port); if (vpninfo->dtls_state == DTLS_NOSECRET) vpninfo->dtls_state = DTLS_SECRET; } else { /* The 'encrypted' UDP tunnel without DTLS looks like it's using * the same key repeatedly without IV or replay protection. I'm * not touching it with a bargepole, or the unencrypted one. */ vpn_progress(vpninfo, PRG_INFO, _("Refusing non-DTLS UDP tunnel\n")); vpninfo->dtls_state = DTLS_DISABLED; } } #if 0 /* Send third request 'ipff' */ dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)ipff, sizeof(ipff)); ret = vpninfo->ssl_write(vpninfo, (void *)ipff, sizeof(ipff)); if (ret != sizeof(ipff)) { shortwrite: if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write in array negotiation\n")); ret = -EIO; } goto out; } ret = vpninfo->ssl_read(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read ipff response\n")); goto out; } /* Parse it, learn what we need from it */ dump_buf_hex(vpninfo, PRG_DEBUG, '<', bytes, ret); #endif vpninfo->tcp_blocked_for_udp = 0; ret = 0; /* success */ out: if (ret) openconnect_close_https(vpninfo, 0); else { monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); vpninfo->ssl_times.last_rx = vpninfo->ssl_times.last_tx = time(NULL); } buf_free(reqbuf); free_pkt(vpninfo, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; vpninfo->ip_info.mtu = 1400; return ret; } int array_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->deflate_pkt_size ? : vpninfo->ip_info.mtu); int len; if (!vpninfo->cstp_pkt) { vpninfo->cstp_pkt = alloc_pkt(vpninfo, receive_mtu); if (!vpninfo->cstp_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } len = ssl_nonblock_read(vpninfo, 0, vpninfo->cstp_pkt->data, receive_mtu); if (!len) break; if (len < 0) goto do_reconnect; if (len < 8) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } /* Check it looks like a valid IP packet, and then check for the special * IP protocol 255 that is used for control stuff. Maybe also look at length * and be prepared to *split* IP packets received in the same read() call. */ vpninfo->ssl_times.last_rx = time(NULL); unsigned char *buf = vpninfo->cstp_pkt->data; if (len >= sizeof(struct ip) && buf[0] == 0x45 && load_be16(buf + 2) == len && buf[9] == 0xff) { uint16_t ctrl_type = load_be16(buf + 12); vpn_progress(vpninfo, PRG_DEBUG, _("Receive control packet of type %x:\n"), ctrl_type); dump_buf_hex(vpninfo, PRG_DEBUG, '<', buf, len); continue; } vpn_progress(vpninfo, PRG_TRACE, _("Received data packet of %d bytes\n"), len); vpninfo->cstp_pkt->len = len; queue_packet(&vpninfo->incoming_queue, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; work_done = 1; continue; } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); ret = ssl_nonblock_write(vpninfo, 0, vpninfo->current_ssl_pkt->data, vpninfo->current_ssl_pkt->len); if (ret < 0) goto do_reconnect; else if (!ret) { /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ break; } } if (ret != vpninfo->current_ssl_pkt->len) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 8, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt != &dpd_pkt && vpninfo->current_ssl_pkt != &nodtls_pkt) free_pkt(vpninfo, vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("TCP Dead Peer Detection detected dead peer!\n")); do_reconnect: ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("TCP reconnect failed\n")); vpninfo->quit_reason = "TCP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send TCP DPD\n")); /* last_dpd will just have been set */ vpninfo->dtls_times.last_tx = vpninfo->dtls_times.last_dpd; work_done = 1; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; break; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_ESTABLISHED && vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send TCP Keepalive\n")); //vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; //goto handle_outgoing; break; case KA_NONE: ; } if (vpninfo->dtls_state != DTLS_ESTABLISHED && vpninfo->tcp_blocked_for_udp) { vpninfo->current_ssl_pkt = (struct pkt *)&nodtls_pkt; vpninfo->tcp_blocked_for_udp = 0; vpn_progress(vpninfo, PRG_TRACE, _("Sending DTLS off packet\n")); goto handle_outgoing; } /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_ESTABLISHED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; vpn_progress(vpninfo, PRG_TRACE, _("Sending uncompressed data packet of %d bytes\n"), this->len); vpninfo->current_ssl_pkt = this; goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int array_dtls_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int work_done = 0; time_t now = time(NULL); int first_connected = 0; if (vpninfo->dtls_need_reconnect) { vpninfo->dtls_need_reconnect = 0; dtls_reconnect(vpninfo, timeout); return 1; } if (vpninfo->dtls_state == DTLS_CONNECTING) { dtls_try_handshake(vpninfo, timeout); if (vpninfo->dtls_state == DTLS_CONNECTED) { first_connected = 1; goto newly_connected; } vpninfo->delay_tunnel_reason = "DTLS establishing"; return 0; } if (vpninfo->dtls_state == DTLS_SLEEPING) { int when = vpninfo->new_dtls_started + vpninfo->dtls_attempt_period - time(NULL); if (when <= 0) { vpn_progress(vpninfo, PRG_DEBUG, _("Attempt new DTLS connection\n")); if (dtls_reconnect(vpninfo, timeout) < 0) *timeout = 1000; } else if ((when * 1000) < *timeout) { *timeout = when * 1000; } return 0; } /* Nothing to do here for Cisco DTLS as it is preauthenticated */ if (vpninfo->dtls_state == DTLS_CONNECTED) { /* First, see if there's a response for us. */ while(readable) { int receive_mtu = MAX(16384, vpninfo->ip_info.mtu); int len; /* cstp_pkt is used by PPP over either transport, and TCP * may be in active use while we attempt to connect DTLS. * So use vpninfo->dtls_pkt for this. */ if (!vpninfo->dtls_pkt) vpninfo->dtls_pkt = alloc_pkt(vpninfo, receive_mtu); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_DISABLED; return 1; } struct pkt *this = vpninfo->dtls_pkt; len = ssl_nonblock_read(vpninfo, 1, this->data, receive_mtu); if (!len) break; if (len < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive authentication response from DTLS\n")); dtls_close(vpninfo); return 1; } this->len = len; if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '<', this->data, len); if (len >= 6 && !memcmp(this->data, "200 OK", 6)) { vpn_progress(vpninfo, PRG_TRACE, _("DTLS session established\n")); vpninfo->dtls_state = DTLS_ESTABLISHED; vpninfo->tcp_blocked_for_udp = 1; goto established; } /* The '200 OK' packet might get dropped; we *assume* the server * won't resend it even if we send the clientip again, so let's * take IP traffic as 'success' too. */ if (len >= sizeof(struct ip) && (this->data[0] >> 4) == 4 && load_be16(this->data + 2) == len) { /* Looks like a Legacy IP packet; the '200 OK' was * probably dropped. */ vpn_progress(vpninfo, PRG_TRACE, _("Received Legacy IP over DTLS; assuming established\n")); vpninfo->dtls_state = DTLS_ESTABLISHED; vpninfo->tcp_blocked_for_udp = 1; goto got_pkt; } if (len >= sizeof(struct ip6_hdr) && (this->data[0] >> 4) == 6 && len == load_be16(this->data + 4) + sizeof(struct ip6_hdr)) { vpn_progress(vpninfo, PRG_TRACE, _("Received IPv6 over DTLS; assuming established\n")); vpninfo->dtls_state = DTLS_ESTABLISHED; vpninfo->tcp_blocked_for_udp = 1; goto got_pkt; } vpn_progress(vpninfo, PRG_TRACE, _("Received unknown DTLS packet\n")); } /* Resend the connect request every second */ if (ka_check_deadline(timeout, now, vpninfo->dtls_times.last_tx + 1)) { newly_connected: if (buf_error(vpninfo->ppp_dtls_connect_req)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating connect request for DTLS session\n")); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_DISABLED; return 1; } if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)vpninfo->ppp_dtls_connect_req->data, vpninfo->ppp_dtls_connect_req->pos); int ret = ssl_nonblock_write(vpninfo, 1, vpninfo->ppp_dtls_connect_req->data, vpninfo->ppp_dtls_connect_req->pos); if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to write connect request to DTLS session\n")); dtls_close(vpninfo); vpninfo->dtls_state = DTLS_DISABLED; return 1; } /* On the second and subsequent attempt, send a keepalive packet * too. The server will *ignore* the clientid packet on a resend * so we have to send this too to elicit a response. Sadly, if * this ends up being the *first* packet it receives, it cuts * us off. */ if (!first_connected) { if (vpninfo->dump_http_traffic) dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)dpd_pkt.data, dpd_pkt.len); ssl_nonblock_write(vpninfo, 1, (void *)dpd_pkt.data, dpd_pkt.len); } vpninfo->dtls_times.last_tx = now; } return 0; } if (vpninfo->dtls_state != DTLS_ESTABLISHED) return 0; established: while (readable) { int len = MAX(16384, vpninfo->ip_info.mtu); unsigned char *buf; if (!vpninfo->dtls_pkt) { vpninfo->dtls_pkt = alloc_pkt(vpninfo, len); if (!vpninfo->dtls_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } buf = vpninfo->dtls_pkt->data; len = ssl_nonblock_read(vpninfo, 1, buf, len); if (len <= 0) break; vpninfo->dtls_pkt->len = len; if (0) { got_pkt: len = vpninfo->dtls_pkt->len; buf = vpninfo->dtls_pkt->data; } vpn_progress(vpninfo, PRG_TRACE, _("Received DTLS packet 0x%02x of %d bytes\n"), buf[0], len); vpninfo->dtls_times.last_rx = time(NULL); if (len >= sizeof(struct ip) && buf[0] == 0x45 && load_be16(buf + 2) == len && buf[9] == 0xff) { uint16_t ctrl_type = load_be16(buf + 12); vpn_progress(vpninfo, PRG_DEBUG, _("Receive control packet of type %x:\n"), ctrl_type); dump_buf_hex(vpninfo, PRG_DEBUG, '<', buf, len); continue; } queue_packet(&vpninfo->incoming_queue, vpninfo->dtls_pkt); vpninfo->dtls_pkt = NULL; work_done = 1; } switch (keepalive_action(&vpninfo->dtls_times, timeout)) { case KA_REKEY: { int ret; vpn_progress(vpninfo, PRG_INFO, _("DTLS rekey due\n")); if (vpninfo->dtls_times.rekey_method == REKEY_SSL) { time(&vpninfo->new_dtls_started); vpninfo->dtls_state = DTLS_CONNECTING; ret = dtls_try_handshake(vpninfo, timeout); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("DTLS Rehandshake failed; reconnecting.\n")); return dtls_reconnect(vpninfo, timeout); } } return 1; } case KA_DPD_DEAD: vpn_progress(vpninfo, PRG_ERR, _("DTLS Dead Peer Detection detected dead peer!\n")); /* Fall back to SSL, and start a new DTLS connection */ dtls_reconnect(vpninfo, timeout); return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send DTLS DPD\n")); if (ssl_nonblock_write(vpninfo, 1, (void *)dpd_pkt.data, dpd_pkt.len) != dpd_pkt.len) vpn_progress(vpninfo, PRG_ERR, _("Failed to send DPD request. Expect disconnect\n")); /* last_dpd will just have been set */ vpninfo->dtls_times.last_tx = vpninfo->dtls_times.last_dpd; work_done = 1; break; case KA_KEEPALIVE: /* We don't do keepalive; only DPD */ case KA_NONE: ; } /* Service outgoing packet queue */ unmonitor_write_fd(vpninfo, dtls); while (vpninfo->outgoing_queue.head) { struct pkt *this = dequeue_packet(&vpninfo->outgoing_queue); struct pkt *send_pkt = this; int ret; /* If TOS optname is set, we want to copy the TOS/TCLASS header to the outer UDP packet */ if (vpninfo->dtls_tos_optname) udp_tos_update(vpninfo, this); ret = ssl_nonblock_write(vpninfo, 1, send_pkt->data, send_pkt->len); if (ret <= 0) { /* Zero is -EAGAIN; just requeue. dtls_nonblock_write() * will have added the socket to the poll wfd list. */ requeue_packet(&vpninfo->outgoing_queue, this); if (ret < 0) { /* If it's a real error, kill the DTLS connection so the requeued packet will be sent over SSL */ dtls_reconnect(vpninfo, timeout); work_done = 1; } return work_done; } time(&vpninfo->dtls_times.last_tx); vpn_progress(vpninfo, PRG_TRACE, _("Sent DTLS packet of %d bytes; DTLS send returned %d\n"), this->len, ret); free_pkt(vpninfo, this); } return work_done; } int array_bye(struct openconnect_info *vpninfo, const char *reason) { char *orig_path; char *res_buf=NULL; int ret; /* We need to close and reopen the HTTPS connection (to kill * the array tunnel) and submit a new HTTPS request to logout. */ openconnect_close_https(vpninfo, 0); orig_path = vpninfo->urlpath; vpninfo->urlpath = strdup("prx/000/http/localhost/logout"); /* redirect segfaults without strdup */ ret = do_https_request(vpninfo, "GET", NULL, NULL, &res_buf, NULL, HTTP_NO_FLAGS); free(vpninfo->urlpath); vpninfo->urlpath = orig_path; if (ret < 0) vpn_progress(vpninfo, PRG_ERR, _("Logout failed.\n")); else vpn_progress(vpninfo, PRG_INFO, _("Logout successful.\n")); free(res_buf); return ret; } openconnect-8.20/jsondump.c0000644000076400007640000001064414100007334017530 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2020 David Woodhouse * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "json.h" #include #include #include /* * Copyright (C) 2015 Mirko Pasqualetti All rights reserved. * https://github.com/udp/json-parser * * Redistribution and use in source and binary forms, with or without * modification, are permitted provided that the following conditions * are met: * * 1. Redistributions of source code must retain the above copyright * notice, this list of conditions and the following disclaimer. * * 2. Redistributions in binary form must reproduce the above copyright * notice, this list of conditions and the following disclaimer in the * documentation and/or other materials provided with the distribution. * * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF * SUCH DAMAGE. */ static void print_buf(struct openconnect_info *vpninfo, int lvl, struct oc_text_buf *buf) { if (!buf_error(buf)) vpn_progress(vpninfo, lvl, "%s", buf->data); buf_truncate(buf); } static void print_depth_shift(struct oc_text_buf *buf, int depth) { int j; for (j=0; j < depth; j++) { buf_append(buf, " "); } } static void dump_json_value(struct openconnect_info *vpninfo, int lvl, struct oc_text_buf *buf, json_value *value, int depth); static void dump_json_object(struct openconnect_info *vpninfo, int lvl, struct oc_text_buf *buf, json_value* value, int depth) { int length, x; if (value == NULL) { return; } length = value->u.object.length; for (x = 0; x < length; x++) { print_depth_shift(buf, depth); buf_append(buf, "object[%d].name = %s\n", x, value->u.object.values[x].name); print_buf(vpninfo, lvl, buf); dump_json_value(vpninfo, lvl, buf, value->u.object.values[x].value, depth+1); } } static void dump_json_array(struct openconnect_info *vpninfo, int lvl, struct oc_text_buf *buf, json_value* value, int depth) { int length, x; if (value == NULL) { return; } length = value->u.array.length; buf_append(buf, "array\n"); print_buf(vpninfo, lvl, buf); for (x = 0; x < length; x++) { dump_json_value(vpninfo, lvl, buf, value->u.array.values[x], depth); } } static void dump_json_value(struct openconnect_info *vpninfo, int lvl, struct oc_text_buf *buf, json_value *value, int depth) { if (!value) return; if (value->type != json_object) { print_depth_shift(buf, depth); } switch (value->type) { case json_none: default: buf_append(buf, "none\n"); break; case json_object: dump_json_object(vpninfo, lvl, buf, value, depth+1); return; case json_array: dump_json_array(vpninfo, lvl, buf, value, depth+1); return; case json_integer: buf_append(buf, "int: %10" PRId64 "\n", value->u.integer); break; case json_double: buf_append(buf, "double: %f\n", value->u.dbl); break; case json_string: buf_append(buf, "string: %s\n", value->u.string.ptr); break; case json_boolean: buf_append(buf, "bool: %d\n", value->u.boolean); break; } print_buf(vpninfo, lvl, buf); } void dump_json(struct openconnect_info *vpninfo, int lvl, json_value *value) { struct oc_text_buf *buf = buf_alloc(); if (!buf) return; dump_json_value(vpninfo, lvl, buf, value, 0); buf_free(buf); } openconnect-8.20/auth-html.c0000644000076400007640000002123114171606260017601 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2015-2021 David Woodhouse, Daniel Lenski * * Author: David Woodhouse , Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include xmlNodePtr htmlnode_next(xmlNodePtr top, xmlNodePtr node) { while (!node->next) { node = node->parent; if (!node || node == top) return NULL; } return node->next; } xmlNodePtr htmlnode_dive(xmlNodePtr top, xmlNodePtr node) { if (node->children) return node->children; return htmlnode_next(top, node); } xmlNodePtr find_form_node(xmlDocPtr doc) { xmlNodePtr root, node; for (root = node = xmlDocGetRootElement(doc); node; node = htmlnode_dive(root, node)) { if (node->name && !strcasecmp((char *)node->name, "form")) return node; } return NULL; } int parse_input_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node, const char *submit_button, int (*can_gen_tokencode)(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt)) { char *type = (char *)xmlGetProp(node, (unsigned char *)"type"), *style = (char *)xmlGetProp(node, (unsigned char *)"style"); struct oc_form_opt **p = &form->opts; struct oc_form_opt *opt; int ret = 0; int nodisplay = style && !strcmp(style, "display: none;"); /* XX: Fortinet-specific */ if (!type) return -EINVAL; opt = calloc(1, sizeof(*opt)); if (!opt) { ret = -ENOMEM; goto out; } if (nodisplay || !strcasecmp(type, "hidden")) { opt->type = OC_FORM_OPT_HIDDEN; xmlnode_get_prop(node, "name", &opt->name); xmlnode_get_prop(node, "value", &opt->_value); /* XXX: Handle tz_offset / tz */ } else if (!strcasecmp(type, "password")) { opt->type = OC_FORM_OPT_PASSWORD; xmlnode_get_prop(node, "name", &opt->name); if (asprintf(&opt->label, "%s:", opt->name) == -1) { ret = -ENOMEM; goto out; } if (can_gen_tokencode && !can_gen_tokencode(vpninfo, form, opt)) opt->type = OC_FORM_OPT_TOKEN; } else if (!strcasecmp(type, "text") || !strcasecmp(type, "username") || !strcasecmp(type, "email")) { opt->type = OC_FORM_OPT_TEXT; xmlnode_get_prop(node, "name", &opt->name); if (asprintf(&opt->label, "%s:", opt->name) == -1) { ret = -ENOMEM; goto out; } if (vpninfo->proto->proto == PROTO_NC && !strcmp(form->auth_id, "loginForm") && !strcmp(opt->name, "VerificationCode") && can_gen_tokencode && !can_gen_tokencode(vpninfo, form, opt)) opt->type = OC_FORM_OPT_TOKEN; } else if (!strcasecmp(type, "submit")) { /* XX: can be ignored except for Juniper */ if (vpninfo->proto->proto != PROTO_NC) goto free_out; xmlnode_get_prop(node, "name", &opt->name); if (opt->name && submit_button && (!strcmp(opt->name, submit_button) || !strcmp(opt->name, "sn-postauth-proceed") || !strcmp(opt->name, "sn-preauth-proceed") || !strcmp(opt->name, "secidactionEnter"))) { /* Use this as the 'Submit' action for the form, by implicitly adding it as a hidden option. */ xmlnode_get_prop(node, "value", &opt->_value); opt->type = OC_FORM_OPT_HIDDEN; } else { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring unknown form submit item '%s'\n"), opt->name); ret = -EINVAL; goto out; } } else if (!strcasecmp(type, "checkbox")) { opt->type = OC_FORM_OPT_HIDDEN; xmlnode_get_prop(node, "name", &opt->name); xmlnode_get_prop(node, "value", &opt->_value); } else { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring unknown form input type '%s'\n"), type); ret = -EINVAL; goto out; } /* Append to the existing list */ while (*p) { if (!strcmp((*p)->name, opt->name)) { vpn_progress(vpninfo, PRG_DEBUG, _("Discarding duplicate option '%s'\n"), opt->name); free_opt(opt); goto out; } p = &(*p)->next; } *p = opt; out: if (ret) free_out: free_opt(opt); free(type); free(style); return ret; } int parse_select_node(struct openconnect_info *vpninfo, struct oc_auth_form *form, xmlNodePtr node) { xmlNodePtr child; struct oc_form_opt_select *opt; struct oc_choice *choice; opt = calloc(1, sizeof(*opt)); if (!opt) return -ENOMEM; xmlnode_get_prop(node, "name", &opt->form.name); opt->form.label = strdup(opt->form.name); opt->form.type = OC_FORM_OPT_SELECT; if ((vpninfo->proto->proto == PROTO_NC && !strcmp(opt->form.name, "realm")) || (vpninfo->proto->proto == PROTO_F5 && !strcmp(opt->form.name, "domain"))) form->authgroup_opt = opt; for (child = node->children; child; child = child->next) { struct oc_choice **new_choices; if (!child->name || strcasecmp((const char *)child->name, "option")) continue; choice = calloc(1, sizeof(*choice)); if (!choice) { free_opt((void *)opt); return -ENOMEM; } xmlnode_get_prop(child, "value", &choice->name); choice->label = (char *)xmlNodeGetContent(child); new_choices = realloc(opt->choices, sizeof(opt->choices[0]) * (opt->nr_choices+1)); if (!new_choices) { free_opt((void *)opt); free(choice); return -ENOMEM; } opt->choices = new_choices; opt->choices[opt->nr_choices++] = choice; } /* Prepend to the existing list */ opt->form.next = form->opts; form->opts = &opt->form; return 0; } struct oc_auth_form *parse_form_node(struct openconnect_info *vpninfo, xmlNodePtr node, const char *submit_button, int (*can_gen_tokencode)(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt)) { struct oc_auth_form *form = calloc(1, sizeof(*form)); xmlNodePtr child; if (!form) return NULL; xmlnode_get_prop(node, "method", &form->method); xmlnode_get_prop(node, "action", &form->action); if (!form->method || strcasecmp(form->method, "POST")) { vpn_progress(vpninfo, PRG_ERR, _("Cannot handle form method='%s', action='%s'\n"), form->method, form->action); free(form); return NULL; } if (vpninfo->proto->proto == PROTO_NC) { /* XX: some forms have 'id', but no 'name' */ if (!xmlnode_get_prop(node, "name", &form->auth_id) || !xmlnode_get_prop(node, "id", &form->auth_id)) form->banner = strdup(form->auth_id); } else if (vpninfo->proto->proto == PROTO_F5) xmlnode_get_prop(node, "id", &form->auth_id); /* XX: fallback auth_id (since other functions expect it to exist) */ if (!form->auth_id) form->auth_id = strdup("unknown"); for (child = htmlnode_dive(node, node); child && child != node; child = htmlnode_dive(node, child)) { if (!child->name) continue; if (!strcasecmp((char *)child->name, "input")) parse_input_node(vpninfo, form, child, submit_button, can_gen_tokencode); else if (!strcasecmp((char *)child->name, "select")) { parse_select_node(vpninfo, form, child); /* Skip its children */ while (child->children) child = child->last; } else if (vpninfo->proto->proto == PROTO_F5 && !strcasecmp((char *)child->name, "td")) { char *id = (char *)xmlGetProp(child, (unsigned char *)"id"); if (id && !strcmp(id, "credentials_table_header")) { char *msg = (char *)xmlNodeGetContent(child); if (msg) { free(form->banner); form->banner = msg; } } else if (id && !strcmp(id, "credentials_table_postheader")) { char *msg = (char *)xmlNodeGetContent(child); if (msg) { free(form->message); form->message = msg; } } free(id); } else if (vpninfo->proto->proto == PROTO_NC && !strcasecmp((char *)child->name, "textarea")) { /* display the post sign-in message, if any */ char *fieldname = (char *)xmlGetProp(child, (unsigned char *)"name"); if (fieldname && (!strcasecmp(fieldname, "sn-postauth-text") || /* XX: Juniper-specific */ !strcasecmp(fieldname, "sn-preauth-text"))) { char *postauth_msg = (char *)xmlNodeGetContent(child); if (postauth_msg) { free(form->banner); form->banner = postauth_msg; } } else { vpn_progress(vpninfo, PRG_ERR, _("Unknown textarea field: '%s'\n"), fieldname); } free(fieldname); } else if (vpninfo->proto->proto == PROTO_FORTINET && !strcasecmp((char *)child->name, "b")) { char *msg = (char *)xmlNodeGetContent(child); if (msg) { free(form->message); form->message = msg; } } } return form; } openconnect-8.20/mainloop.c0000644000076400007640000003311214067550365017525 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #ifndef _WIN32 /* for setgroups() */ # include # include #endif #include #include #include #include int queue_new_packet(struct openconnect_info *vpninfo, struct pkt_q *q, void *buf, int len) { struct pkt *new = alloc_pkt(vpninfo, len); if (!new) return -ENOMEM; new->len = len; new->next = NULL; memcpy(new->data, buf, len); queue_packet(q, new); return 0; } /* This is here because it's generic and hence can't live in either of the tun*.c files for specific platforms */ int tun_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable, int did_work) { struct pkt *this; int work_done = 0; if (readable && read_fd_monitored(vpninfo, tun)) { struct pkt *out_pkt = vpninfo->tun_pkt; while (1) { int len = vpninfo->ip_info.mtu; if (!out_pkt) { out_pkt = alloc_pkt(vpninfo, len + vpninfo->pkt_trailer); if (!out_pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } out_pkt->len = len; } if (os_read_tun(vpninfo, out_pkt)) break; vpninfo->stats.tx_pkts++; vpninfo->stats.tx_bytes += out_pkt->len; work_done = 1; if (queue_packet(&vpninfo->outgoing_queue, out_pkt) + vpninfo->tcp_control_queue.count >= vpninfo->max_qlen) { out_pkt = NULL; unmonitor_read_fd(vpninfo, tun); break; } out_pkt = NULL; } vpninfo->tun_pkt = out_pkt; } else if (vpninfo->outgoing_queue.count + vpninfo->tcp_control_queue.count < vpninfo->max_qlen) { monitor_read_fd(vpninfo, tun); } while ((this = dequeue_packet(&vpninfo->incoming_queue))) { unmonitor_write_fd(vpninfo, tun); if (os_write_tun(vpninfo, this)) { requeue_packet(&vpninfo->incoming_queue, this); break; } vpninfo->stats.rx_pkts++; vpninfo->stats.rx_bytes += this->len; free_pkt(vpninfo, this); } /* Work is not done if we just got rid of packets off the queue */ return work_done; } static int setup_tun_device(struct openconnect_info *vpninfo) { int ret; if (vpninfo->setup_tun) { vpninfo->setup_tun(vpninfo->cbdata); if (tun_is_up(vpninfo)) return 0; } #ifndef _WIN32 if (vpninfo->use_tun_script) { ret = openconnect_setup_tun_script(vpninfo, vpninfo->vpnc_script); if (ret) { fprintf(stderr, _("Set up tun script failed\n")); return ret; } } else #endif ret = openconnect_setup_tun_device(vpninfo, vpninfo->vpnc_script, vpninfo->ifname); if (ret) { fprintf(stderr, _("Set up tun device failed\n")); if (!vpninfo->quit_reason) vpninfo->quit_reason = "Set up tun device failed"; return ret; } #if !defined(_WIN32) && !defined(__native_client__) if (vpninfo->uid != getuid()) { int e; if (setgid(vpninfo->gid)) { e = errno; fprintf(stderr, _("Failed to set gid %ld: %s\n"), (long)vpninfo->gid, strerror(e)); return -EPERM; } if (setgroups(1, &vpninfo->gid)) { e = errno; fprintf(stderr, _("Failed to set groups to %ld: %s\n"), (long)vpninfo->gid, strerror(e)); return -EPERM; } if (setuid(vpninfo->uid)) { e = errno; fprintf(stderr, _("Failed to set uid %ld: %s\n"), (long)vpninfo->uid, strerror(e)); return -EPERM; } } #endif return 0; } /* Return value: * = 0, when successfully paused (may call again) * = -EINTR, if aborted locally via OC_CMD_CANCEL * = -ECONNABORTED, if aborted locally via OC_CMD_DETACH * = -EPIPE, if the remote end explicitly terminated the session * = -EPERM, if the gateway sent 401 Unauthorized (cookie expired) * < 0, for any other error */ int openconnect_mainloop(struct openconnect_info *vpninfo, int reconnect_timeout, int reconnect_interval) { int ret = 0; int tun_r = 1, udp_r = 1, tcp_r = 1; #ifdef HAVE_VHOST int vhost_r = 0; #endif vpninfo->reconnect_timeout = reconnect_timeout; vpninfo->reconnect_interval = reconnect_interval; if (vpninfo->cmd_fd != -1) { monitor_fd_new(vpninfo, cmd); monitor_read_fd(vpninfo, cmd); } while (!vpninfo->quit_reason) { int did_work = 0; int timeout; #ifdef _WIN32 HANDLE events[4]; int nr_events = 0; #else struct timeval tv; fd_set rfds, wfds, efds; #endif /* If tun is not up, loop more often to detect * a DTLS timeout (due to a firewall block) as soon. */ if (tun_is_up(vpninfo)) timeout = INT_MAX; else timeout = 1000; if (!tun_is_up(vpninfo)) { if (vpninfo->delay_tunnel_reason) { vpn_progress(vpninfo, PRG_TRACE, _("Delaying tunnel with reason: %s\n"), vpninfo->delay_tunnel_reason); /* XX: don't let this spin forever */ vpninfo->delay_tunnel_reason = NULL; } else { /* No DTLS, or DTLS failed; setup TUN device unconditionally */ ret = setup_tun_device(vpninfo); if (ret) break; } } if (vpninfo->dtls_state > DTLS_DISABLED) { ret = vpninfo->proto->udp_mainloop(vpninfo, &timeout, udp_r); if (vpninfo->quit_reason) break; did_work += ret; } ret = vpninfo->proto->tcp_mainloop(vpninfo, &timeout, tcp_r); if (vpninfo->quit_reason) break; did_work += ret; /* Tun must be last because it will set/clear its bit in the select_rfds according to the queue length */ if (!tun_is_up(vpninfo)) { struct pkt *this; /* no tun yet; clear any queued packets */ while ((this = dequeue_packet(&vpninfo->incoming_queue))) free_pkt(vpninfo, this); #ifdef HAVE_VHOST } else if (vpninfo->vhost_fd != -1) { did_work += vhost_tun_mainloop(vpninfo, &timeout, vhost_r, did_work); /* If it returns zero *then* it will have read the eventfd * and there's no need to do so again until we poll again. */ if (!did_work) vhost_r = 0; #endif } else { did_work += tun_mainloop(vpninfo, &timeout, tun_r, did_work); } if (vpninfo->quit_reason) break; if (vpninfo->need_poll_cmd_fd) poll_cmd_fd(vpninfo, 0); if (vpninfo->got_cancel_cmd) { if (vpninfo->delay_close != NO_DELAY_CLOSE) { if (vpninfo->delay_close == DELAY_CLOSE_IMMEDIATE_CALLBACK) { vpn_progress(vpninfo, PRG_TRACE, _("Delaying cancel (immediate callback).\n")); did_work++; } else vpn_progress(vpninfo, PRG_TRACE, _("Delaying cancel.\n")); /* XX: don't let this spin forever */ vpninfo->delay_close = NO_DELAY_CLOSE; } else if (vpninfo->cancel_type == OC_CMD_CANCEL) { vpninfo->quit_reason = "Aborted by caller"; vpninfo->got_cancel_cmd = 0; ret = -EINTR; break; } else { vpninfo->got_cancel_cmd = 0; ret = -ECONNABORTED; break; } } if (vpninfo->got_pause_cmd) { if (vpninfo->delay_close != NO_DELAY_CLOSE) { /* XX: don't let this spin forever */ if (vpninfo->delay_close == DELAY_CLOSE_IMMEDIATE_CALLBACK) { vpn_progress(vpninfo, PRG_TRACE, _("Delaying pause (immediate callback).\n")); did_work++; } else vpn_progress(vpninfo, PRG_TRACE, _("Delaying pause.\n")); /* XX: don't let this spin forever */ vpninfo->delay_close = NO_DELAY_CLOSE; } else { /* close all connections and wait for the user to call openconnect_mainloop() again */ openconnect_close_https(vpninfo, 0); if (vpninfo->dtls_state > DTLS_DISABLED) { vpninfo->proto->udp_close(vpninfo); vpninfo->new_dtls_started = 0; } vpninfo->got_pause_cmd = 0; vpn_progress(vpninfo, PRG_INFO, _("Caller paused the connection\n")); if (vpninfo->cmd_fd >= 0) unmonitor_fd(vpninfo, cmd); return 0; } } if (did_work) continue; vpn_progress(vpninfo, PRG_TRACE, _("No work to do; sleeping for %d ms...\n"), timeout); #ifdef _WIN32 if (vpninfo->dtls_monitored) { WSAEventSelect(vpninfo->dtls_fd, vpninfo->dtls_event, vpninfo->dtls_monitored); events[nr_events++] = vpninfo->dtls_event; } if (vpninfo->ssl_monitored) { WSAEventSelect(vpninfo->ssl_fd, vpninfo->ssl_event, vpninfo->ssl_monitored); events[nr_events++] = vpninfo->ssl_event; } if (vpninfo->cmd_monitored) { WSAEventSelect(vpninfo->cmd_fd, vpninfo->cmd_event, vpninfo->cmd_monitored); events[nr_events++] = vpninfo->cmd_event; } if (vpninfo->tun_monitored) { events[nr_events++] = vpninfo->tun_rd_overlap.hEvent; } if (WaitForMultipleObjects(nr_events, events, FALSE, timeout) == WAIT_FAILED) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("WaitForMultipleObjects failed: %s\n"), errstr); free(errstr); } #else #ifdef HAVE_EPOLL if (vpninfo->epoll_fd >= 0) { struct epoll_event evs[5]; /* During busy periods, monitor_read_fd() and unmonitor_read_fd() * may get called multiple times as we go round and round the * loop and queues get full then have space again. In the past * with the select() loop, that was only a bitflip in the fd_set * and didn't cost much. With epoll() it's actually a system * call, so don't do it every time. Wait until we're about to * sleep, and *then* ensure that we call epoll_ctl() to sync the * set of events that we care about, if it's changed. */ if (vpninfo->epoll_update) { update_epoll_fd(vpninfo, tun); update_epoll_fd(vpninfo, ssl); update_epoll_fd(vpninfo, cmd); update_epoll_fd(vpninfo, dtls); #ifdef HAVE_VHOST update_epoll_fd(vpninfo, vhost_call); #endif } tun_r = udp_r = tcp_r = 0; #ifdef HAVE_VHOST vhost_r = 0; #endif int nfds = epoll_wait(vpninfo->epoll_fd, evs, 5, timeout); if (nfds < 0) { if (errno != EINTR) { ret = -errno; vpn_perror(vpninfo, _("Failed epoll_wait() in mainloop")); break; } nfds = 0; } while (nfds--) { if (evs[nfds].events & EPOLLIN) { if (evs[nfds].data.fd == vpninfo->tun_fd) tun_r = 1; else if (evs[nfds].data.fd == vpninfo->ssl_fd) tcp_r = 1; else if (evs[nfds].data.fd == vpninfo->dtls_fd) udp_r = 1; #ifdef HAVE_VHOST else if (evs[nfds].data.fd == vpninfo->vhost_call_fd) vhost_r = 1; #endif } } continue; } #endif memcpy(&rfds, &vpninfo->_select_rfds, sizeof(rfds)); memcpy(&wfds, &vpninfo->_select_wfds, sizeof(wfds)); memcpy(&efds, &vpninfo->_select_efds, sizeof(efds)); tv.tv_sec = timeout / 1000; tv.tv_usec = (timeout % 1000) * 1000; if (select(vpninfo->_select_nfds, &rfds, &wfds, &efds, &tv) < 0 && errno != EINTR) { ret = -errno; vpn_perror(vpninfo, _("Failed select() in mainloop")); break; } #ifdef HAVE_VHOST if (vpninfo->vhost_call_fd >= 0) vhost_r = FD_ISSET(vpninfo->vhost_call_fd, &rfds); #endif if (vpninfo->tun_fd >= 0) tun_r = FD_ISSET(vpninfo->tun_fd, &rfds); if (vpninfo->dtls_fd >= 0) udp_r = FD_ISSET(vpninfo->dtls_fd, &rfds); if (vpninfo->ssl_fd >= 0) tcp_r = FD_ISSET(vpninfo->ssl_fd, &rfds); #endif } if (vpninfo->quit_reason && vpninfo->proto->vpn_close_session) vpninfo->proto->vpn_close_session(vpninfo, vpninfo->quit_reason); if (tun_is_up(vpninfo)) os_shutdown_tun(vpninfo); if (vpninfo->cmd_fd >= 0) unmonitor_fd(vpninfo, cmd); return ret < 0 ? ret : -EIO; } int ka_check_deadline(int *timeout, time_t now, time_t due) { if (now >= due) return 1; if (*timeout > (due - now) * 1000) *timeout = (due - now) * 1000; return 0; } /* Called when the socket is unwritable, to get the deadline for DPD. Returns 1 if DPD deadline has already arrived. */ int ka_stalled_action(struct keepalive_info *ka, int *timeout) { time_t now = time(NULL); /* We only support the new-tunnel rekey method for now. */ if (ka->rekey_method != REKEY_NONE && ka_check_deadline(timeout, now, ka->last_rekey + ka->rekey)) { ka->last_rekey = now; return KA_REKEY; } if (ka->dpd && ka_check_deadline(timeout, now, ka->last_rx + (2 * ka->dpd))) return KA_DPD_DEAD; return KA_NONE; } int keepalive_action(struct keepalive_info *ka, int *timeout) { time_t now = time(NULL); if (ka->rekey_method != REKEY_NONE && ka_check_deadline(timeout, now, ka->last_rekey + ka->rekey)) { ka->last_rekey = now; return KA_REKEY; } /* DPD is bidirectional -- PKT 3 out, PKT 4 back */ if (ka->dpd) { time_t due = ka->last_rx + ka->dpd; time_t overdue = ka->last_rx + (2 * ka->dpd); /* Peer didn't respond */ if (now > overdue) return KA_DPD_DEAD; /* If we already have DPD outstanding, don't flood. Repeat by all means, but only after half the DPD period. */ if (ka->last_dpd > ka->last_rx) due = ka->last_dpd + ka->dpd / 2; /* We haven't seen a packet from this host for $DPD seconds. Prod it to see if it's still alive */ if (ka_check_deadline(timeout, now, due)) { ka->last_dpd = now; return KA_DPD; } } /* Keepalive is just client -> server. If we haven't sent anything for $KEEPALIVE seconds, send a dummy packet (which the server will discard) */ if (ka->keepalive && ka_check_deadline(timeout, now, ka->last_tx + ka->keepalive)) return KA_KEEPALIVE; return KA_NONE; } int trojan_check_deadline(struct openconnect_info *vpninfo, int *timeout) { time_t now = time(NULL); if (vpninfo->trojan_interval && ka_check_deadline(timeout, now, vpninfo->last_trojan + vpninfo->trojan_interval)) { vpninfo->last_trojan = now; return 1; } else { return 0; } } openconnect-8.20/www/0000755000076400007640000000000014204510554016354 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/www/menu2-protocols.xml0000644000076400007640000000112214062600131022133 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/www/menu2-features.xml0000644000076400007640000000162614040533771021751 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/www/packages.xml0000644000076400007640000000677614176202121020670 0ustar00dwoodhoudwoodhou00000000000000

    Distribution Status

    Updates to the information below are welcomed, especially for distributions (including *BSD etc.) which aren't yet mentioned.

    • Fedora

      Both openconnect and NetworkManager-openconnect packages are included in Fedora and generally kept up to date with the latest release.

      In addition, the latest git master branch is built automatically in the dwmw2/openconnect COPR for current versions of Fedora as well as RHEL/EPEL and also a mingw-openconnect package cross-compiled for Windows.

    • Debian / OpenSUSE / Gentoo

      The openconnect and NetworkManager-openconnect (or network-manager-openconnect) packages are included in most Linux distributions.

    • Ubuntu

      The openconnect and network-manager-openconnect packages are included in Ubuntu but bug fixes are sometimes very slow.

      OpenConnect releases for Ubuntu LTS distributions can be found in the dwmw2/openconnect PPA.

    • NetBSD, DragonFly BSD, Solaris, etc. (pkgsrc)

      There is an OpenConnect package in the NetBSD pkgsrc repository, which covers many UNIX-like systems.

    • FreeBSD

      An openconnect port is available for FreeBSD.

    • OpenBSD

      The OpenBSD ports collection contains an OpenConnect package.

    • Mac OS X

      The Homebrew project contains an OpenConnect package.

    • Windows

      NSIS-based installers for OpenConnect are automatically built with each commit pushed to GitLab CI. Download the most recent build from the master branch for 32-bit Windows or for 64-bit Windows. Note that this is the OpenConnect command-line application; see GUI Tools for other possibilities.

      The Fedora dwmw2/openconnect COPR mentioned above contains mingw-openconnect packages built for 32-bit and 64-bit Windows.

    openconnect-8.20/www/globalprotect.xml0000644000076400007640000001231214062600131021727 0ustar00dwoodhoudwoodhou00000000000000

    PAN GlobalProtect

    How the VPN works

    This VPN is based on HTTPS and ESP, with routing and configuration information distributed in XML format.

    GlobalProtect mode is requested by adding --protocol=gp to the command line: 

      openconnect --protocol=gp vpn.example.com

    GlobalProtect portals and gateways

    GlobalProtect VPNs actually contain two different server interfaces: portals and gateways. Most VPNs have one portal server and one or more gateway servers; the server hosting the portal interface often hosts a gateway interface as well, but not always. The portal interface mostly sends centrally-imposed security/lockdown settings for the official client software to follow. The only information sent by the portal that's clearly useful to a VPN client like OpenConnect (which tries to give full control to the end user) is the list of gateways.

    Some GlobalProtect VPNs are configured in such a way that the client must authenticate to the portal before it can access the gateway, while with other VPNs no interaction with the portal is necessary. In order to replicate the behavior of the official clients, OpenConnect first attempts to connect to the portal interface of the specified server.

    • If --usergroup=gateway is specified (or, equivalently, /gateway is appended to the server URL, e.g. https://vpn.company.com/gateway), then OpenConnect will attempt to skip the portal interface and connect immediately to the gateway interface. This is useful if the GlobalProtect VPN portal is misconfigured, such as by not offering the desired gateway server in the list it provides.
    • If connecting to the portal interface yields a choice of multiple gateways, --authgroup=GatewayName tells OpenConnect which one to choose.

    Authentication

    To authenticate, you connect to the secure web server (POST /ssl-vpn/login.esp), provide a username, password, and (optionally) a certificate, and receive an authcookie. The username, authcookie, and a couple other bits of information obtained at login are combined into the OpenConnect cookie.

    Tunnel configuration

    To connect to the secure tunnel, the cookie is used to read routing and tunnel configuration information (POST /ssl-vpn/getconfig.esp).

    Next, a HIP report (security scanner report) is generated by the client and submitted to the server, if required.

    Finally, either an HTTPS-based or ESP-based tunnel is setup:

    1. The cookie is used in a non-standard HTTP request (GET /ssl-tunnel-connect.sslvpn, which acts more like a CONNECT). Arbitrary IP packets can be passed over the resulting tunnel.
    2. The ESP keys provided by the configuration request are used to set up a UDP-encapsulated ESP tunnel.

    Since TCP over TCP is very suboptimal, OpenConnect tries to always use ESP-over-UDP, and will only fall over to the HTTPS tunnel if that fails, or if disabled via the --no-dtls argument.

    Quirks and issues

    There appears to be no reasonable mechanism to negotiate the MTU for the link, or discover the MTU of the accessed network. The configuration always shows . OpenConnect attempts to calculate the MTU by starting from the base MTU with the overhead of encapsulating each packets within ESP, UDP, and IP.

    IPv6 support was added in GlobalProtect 4.0 in 2017. OpenConnect has experimental support for GlobalProtect IPv6 as of 9.0. If you have access to a GlobalProtect VPN that supports IPv6, please send feedback to the mailing list.

    The ESP and HTTPS tunnels cannot be connected simultaneously. The ESP tunnel becomes unresponsive as soon as the HTTPS tunnel is started, and remains so unless/until the tunnel is closed and the configuration is re-fetched.

    Compared to the AnyConnect or Juniper protocols, the GlobalProtect protocol appears to have very little in the way of in-band signaling. The HTTPS tunnel can only send or receive IP packets and a simple DPD/keepalive packet (always sent by the client and echoed by the server). The ESP tunnel does not have any special DPD/keepalive packet, but uses an ICMP ("ping") request to the server with a magic payload for this purpose

     openconnect-8.20/www/contribute.xml0000644000076400007640000002321014204454432021254 0ustar00dwoodhoudwoodhou00000000000000

    Contributing to OpenConnect

    Contributions to OpenConnect are very welcome. You don't need to be able to write code. Testing, documentation improvements and especially translations are all extremely useful. Some specific suggestions and requests for help can be found below.

    Submitting Patches

    Patches can be sent to the mailing list or directly to the author in private email. We are also experimenting with using GitLab, so please feel free to file issues and submit merge requests at https://gitlab.com/openconnect/openconnect.

    When submitting patches to be included in OpenConnect, please certify that your patch meets the criteria below by including include a sign-off line in your email which looks like this:

    Signed-off-by: Random J Developer &lt;random@developer.example.org&gt;

    This confirms that you are permitted to submit the patch for inclusion in OpenConnect under the LGPLv2.1 licence. The full text of the certificate is as follows:

    • Developer's Certificate of Origin 1.1

      By making a contribution to this project, I certify that:

      1. The contribution was created in whole or in part by me and I have the right to submit it under the open source license indicated in the file; or
      2. The contribution is based upon previous work that, to the best of my knowledge, is covered under an appropriate open source license and I have the right under that license to submit that work with modifications, whether created in whole or in part by me, under the same open source license (unless I am permitted to submit under a different license), as indicated in the file; or
      3. The contribution was provided directly to me by some other person who certified (1), (2) or (3) and I have not modified it.

      and also that:

      • I understand and agree that this project and the contribution are public and that a record of the contribution (including all personal information I submit with it, including my sign-off) is maintained indefinitely and may be redistributed consistent with this project or the open source license(s) involved.

    What needs doing?

    Translations

    One of the main things needed at the present time is translations into languages other than English. All contributions will be gratefully received.

    Translations for OpenConnect are maintained in the GNOME NetworkManager-openconnect module. Translations can be contributed by joining the GNOME team as described on their TranslationProject wiki page, or simply by editing one of the language files in the po/ directory and sending the resulting patch (or file) to the mailing list.

    If there are questions about the messages because the intent is not clear, or if the messages could be improved to make translation easier or better, please also feel free to ask or make suggestions on the mailing list.

    Documentation / Web Site

    OpenConnect is designed with the principle that "if it needs documenting, fix it instead". That isn't to say that we don't have documentation. But if a user finds something non-obvious and has to look it up in the documentation, then that in itself is a little bit of a usability failure. Software should Just Work™.

    So if you find something that is more complex than it needs to be, and you think it should Just Work™ then please don't hesitate to tell us bout it.

    Any improvements to the documentation are most welcome. In particular:

    • Update web site to be mobile-friendly
      The current template is definitely showing its age, and could very much do with an overhaul.

    Testing

    All testing is valuable, and please do let us know if anything doesn't work when you think it should. There are some things which the regular developers don't have easy access to test, some help with testing these would be particularly welcome:

    • Various authentication methods for Pulse Secure.
      Although it looked sane at first, the Pulse protocol has a lot of horrid special cases. Aside from the Host Checker most should be working, but please test and let us know if anything is missing or wrong.

    New Protocols

    There are some other protocols which would be good to add to OpenConnect. Getting a new protocol to the point where it basically works to send and receive traffic is only a few hours of work, and can be very rewarding.

    For some protocols we already know how they work on the wire and it's mostly just a matter of writing the code. For others we might have to observe the existing clients to learn how they work.

    These would be great projects for someone to take on as a learning exercise, or perhaps even Google Summer of Code projects.

    • CheckPoint VPN
      This is an IPSec-based VPN with fallback to using the SSL transport. Some discussion of OpenConnect support in this GitLab ticket, and working code contributed in MR !207.
    • Cisco / Nortel IPSec VPN
      These IPSec-based protocols are already supported by vpnc to differing extents, but vpnc is no longer actively maintained. Since OpenConnect now has ESP support, and since some of these protocols also fall back to operating over TCP when UDP and native ESP aren't available, it may make sense to implement them in OpenConnect now.
    • External authentication support for multiple protocols.
      Many VPNs now use SAML or other technologies to hand off the login/authentication process to a single sign-on (SSO) provider. Okta and Microsoft Azure are well known cloud-based SSO providers. We have numerous issues and merge requests labeled External Auth/SAML/SSO. This is an area where there is a large amount of commonal functionality across protocols, but also a large amount of variation in the details, and where we need careful help designing suitable interfaces for the interactions between OpenConnect's core code, VPN protocol-specific authentication code, and external interfaces for authentication (e.g. web browsers or graphical pop-up interfaces).

    Suggestions for other protocols which OpenConnect could usefully implement are also welcome.

    Other enhancements

    One of the main other improvements that would be welcome, is implementing a full WebView in the graphical clients. Currently for protocols like Juniper, OpenConnect screen-scrapes the HTML pages used for login, and attempts to make sense of them. This is The main thing that would be Other items on the TODO list include:
    • WebView support in graphical clients.
      OpenConnect currently screen-scrapes the HTML login pages for protocols like Juniper, which is fragile and error-prone. It would be great if the graphical interfaces like NetworkManager could use a real WebView to show the pages, which would work with JavaScript and various other customisations that the admins often make. This might make an excellent Google Summer of Code project, or would also suit someone just trying to contribute in their spare time.
    • Better support for running or emulating the 'Cisco Secure Desktop' trojan.
      The Cisco hostscan tool seems to download and interpret a manifest file from the server and send back results based on the "questions" therein. A native implementation of this would be useful.
    • GUI for OS X, perhaps based on Tunnelblick.
    • Full Android keystore support.
      OpenConnect's support for the Android keystore predates the Android keystore actually doing anything useful. We assume we can just ask for the private key and be given it. A real keystore would only allow us to perform signature operations using the key, and wouldn't just give it to us. Modern versions of Android can support this, and we should add support for it.
    • Mac OS X keychain support.
      Likewise, using keys stored in the OS X keychain would be extremely useful.

     openconnect-8.20/www/licence.xml0000644000076400007640000010125014171606260020502 0ustar00dwoodhoudwoodhou00000000000000

    Licence

    OpenConnect is published under the GNU Lesser Public License, v2.1. The full text of the licence is as follows:

    GNU LESSER GENERAL PUBLIC LICENSE

    Version 2.1, February 1999 

    Copyright (C) 1991, 1999 Free Software Foundation, Inc.
51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA
Everyone is permitted to copy and distribute verbatim copies
of this license document, but changing it is not allowed.

[This is the first released version of the Lesser GPL.  It also counts
 as the successor of the GNU Library Public License, version 2, hence
 the version number 2.1.]

    Preamble

    The licenses for most software are designed to take away your freedom to share and change it. By contrast, the GNU General Public Licenses are intended to guarantee your freedom to share and change free software--to make sure the software is free for all its users.

    This license, the Lesser General Public License, applies to some specially designated software packages--typically libraries--of the Free Software Foundation and other authors who decide to use it. You can use it too, but we suggest you first think carefully about whether this license or the ordinary General Public License is the better strategy to use in any particular case, based on the explanations below.

    When we speak of free software, we are referring to freedom of use, not price. Our General Public Licenses are designed to make sure that you have the freedom to distribute copies of free software (and charge for this service if you wish); that you receive source code or can get it if you want it; that you can change the software and use pieces of it in new free programs; and that you are informed that you can do these things.

    To protect your rights, we need to make restrictions that forbid distributors to deny you these rights or to ask you to surrender these rights. These restrictions translate to certain responsibilities for you if you distribute copies of the library or if you modify it.

    For example, if you distribute copies of the library, whether gratis or for a fee, you must give the recipients all the rights that we gave you. You must make sure that they, too, receive or can get the source code. If you link other code with the library, you must provide complete object files to the recipients, so that they can relink them with the library after making changes to the library and recompiling it. And you must show them these terms so they know their rights.

    We protect your rights with a two-step method: (1) we copyright the library, and (2) we offer you this license, which gives you legal permission to copy, distribute and/or modify the library.

    To protect each distributor, we want to make it very clear that there is no warranty for the free library. Also, if the library is modified by someone else and passed on, the recipients should know that what they have is not the original version, so that the original author's reputation will not be affected by problems that might be introduced by others.

    Finally, software patents pose a constant threat to the existence of any free program. We wish to make sure that a company cannot effectively restrict the users of a free program by obtaining a restrictive license from a patent holder. Therefore, we insist that any patent license obtained for a version of the library must be consistent with the full freedom of use specified in this license.

    Most GNU software, including some libraries, is covered by the ordinary GNU General Public License. This license, the GNU Lesser General Public License, applies to certain designated libraries, and is quite different from the ordinary General Public License. We use this license for certain libraries in order to permit linking those libraries into non-free programs.

    When a program is linked with a library, whether statically or using a shared library, the combination of the two is legally speaking a combined work, a derivative of the original library. The ordinary General Public License therefore permits such linking only if the entire combination fits its criteria of freedom. The Lesser General Public License permits more lax criteria for linking other code with the library.

    We call this license the "Lesser" General Public License because it does Less to protect the user's freedom than the ordinary General Public License. It also provides other free software developers Less of an advantage over competing non-free programs. These disadvantages are the reason we use the ordinary General Public License for many libraries. However, the Lesser license provides advantages in certain special circumstances.

    For example, on rare occasions, there may be a special need to encourage the widest possible use of a certain library, so that it becomes a de-facto standard. To achieve this, non-free programs must be allowed to use the library. A more frequent case is that a free library does the same job as widely used non-free libraries. In this case, there is little to gain by limiting the free library to free software only, so we use the Lesser General Public License.

    In other cases, permission to use a particular library in non-free programs enables a greater number of people to use a large body of free software. For example, permission to use the GNU C Library in non-free programs enables many more people to use the whole GNU operating system, as well as its variant, the GNU/Linux operating system.

    Although the Lesser General Public License is Less protective of the users' freedom, it does ensure that the user of a program that is linked with the Library has the freedom and the wherewithal to run that program using a modified version of the Library.

    The precise terms and conditions for copying, distribution and modification follow. Pay close attention to the difference between a "work based on the library" and a "work that uses the library". The former contains code derived from the library, whereas the latter must be combined with the library in order to run.

    TERMS AND CONDITIONS FOR COPYING, DISTRIBUTION AND MODIFICATION

    0. This License Agreement applies to any software library or other program which contains a notice placed by the copyright holder or other authorized party saying it may be distributed under the terms of this Lesser General Public License (also called "this License"). Each licensee is addressed as "you".

    A "library" means a collection of software functions and/or data prepared so as to be conveniently linked with application programs (which use some of those functions and data) to form executables.

    The "Library", below, refers to any such software library or work which has been distributed under these terms. A "work based on the Library" means either the Library or any derivative work under copyright law: that is to say, a work containing the Library or a portion of it, either verbatim or with modifications and/or translated straightforwardly into another language. (Hereinafter, translation is included without limitation in the term "modification".)

    "Source code" for a work means the preferred form of the work for making modifications to it. For a library, complete source code means all the source code for all modules it contains, plus any associated interface definition files, plus the scripts used to control compilation and installation of the library.

    Activities other than copying, distribution and modification are not covered by this License; they are outside its scope. The act of running a program using the Library is not restricted, and output from such a program is covered only if its contents constitute a work based on the Library (independent of the use of the Library in a tool for writing it). Whether that is true depends on what the Library does and what the program that uses the Library does.

    1. You may copy and distribute verbatim copies of the Library's complete source code as you receive it, in any medium, provided that you conspicuously and appropriately publish on each copy an appropriate copyright notice and disclaimer of warranty; keep intact all the notices that refer to this License and to the absence of any warranty; and distribute a copy of this License along with the Library.

    You may charge a fee for the physical act of transferring a copy, and you may at your option offer warranty protection in exchange for a fee.

    2. You may modify your copy or copies of the Library or any portion of it, thus forming a work based on the Library, and copy and distribute such modifications or work under the terms of Section 1 above, provided that you also meet all of these conditions:

    • a) The modified work must itself be a software library.
    • b) You must cause the files modified to carry prominent notices stating that you changed the files and the date of any change.
    • c) You must cause the whole of the work to be licensed at no charge to all third parties under the terms of this License.
    • d) If a facility in the modified Library refers to a function or a table of data to be supplied by an application program that uses the facility, other than as an argument passed when the facility is invoked, then you must make a good faith effort to ensure that, in the event an application does not supply such function or table, the facility still operates, and performs whatever part of its purpose remains meaningful.

      (For example, a function in a library to compute square roots has a purpose that is entirely well-defined independent of the application. Therefore, Subsection 2d requires that any application-supplied function or table used by this function must be optional: if the application does not supply it, the square root function must still compute square roots.)

    These requirements apply to the modified work as a whole. If identifiable sections of that work are not derived from the Library, and can be reasonably considered independent and separate works in themselves, then this License, and its terms, do not apply to those sections when you distribute them as separate works. But when you distribute the same sections as part of a whole which is a work based on the Library, the distribution of the whole must be on the terms of this License, whose permissions for other licensees extend to the entire whole, and thus to each and every part regardless of who wrote it.

    Thus, it is not the intent of this section to claim rights or contest your rights to work written entirely by you; rather, the intent is to exercise the right to control the distribution of derivative or collective works based on the Library.

    In addition, mere aggregation of another work not based on the Library with the Library (or with a work based on the Library) on a volume of a storage or distribution medium does not bring the other work under the scope of this License.

    3. You may opt to apply the terms of the ordinary GNU General Public License instead of this License to a given copy of the Library. To do this, you must alter all the notices that refer to this License, so that they refer to the ordinary GNU General Public License, version 2, instead of to this License. (If a newer version than version 2 of the ordinary GNU General Public License has appeared, then you can specify that version instead if you wish.) Do not make any other change in these notices.

    Once this change is made in a given copy, it is irreversible for that copy, so the ordinary GNU General Public License applies to all subsequent copies and derivative works made from that copy.

    This option is useful when you wish to copy part of the code of the Library into a program that is not a library.

    4. You may copy and distribute the Library (or a portion or derivative of it, under Section 2) in object code or executable form under the terms of Sections 1 and 2 above provided that you accompany it with the complete corresponding machine-readable source code, which must be distributed under the terms of Sections 1 and 2 above on a medium customarily used for software interchange.

    If distribution of object code is made by offering access to copy from a designated place, then offering equivalent access to copy the source code from the same place satisfies the requirement to distribute the source code, even though third parties are not compelled to copy the source along with the object code.

    5. A program that contains no derivative of any portion of the Library, but is designed to work with the Library by being compiled or linked with it, is called a "work that uses the Library". Such a work, in isolation, is not a derivative work of the Library, and therefore falls outside the scope of this License.

    However, linking a "work that uses the Library" with the Library creates an executable that is a derivative of the Library (because it contains portions of the Library), rather than a "work that uses the library". The executable is therefore covered by this License. Section 6 states terms for distribution of such executables.

    When a "work that uses the Library" uses material from a header file that is part of the Library, the object code for the work may be a derivative work of the Library even though the source code is not. Whether this is true is especially significant if the work can be linked without the Library, or if the work is itself a library. The threshold for this to be true is not precisely defined by law.

    If such an object file uses only numerical parameters, data structure layouts and accessors, and small macros and small inline functions (ten lines or less in length), then the use of the object file is unrestricted, regardless of whether it is legally a derivative work. (Executables containing this object code plus portions of the Library will still fall under Section 6.)

    Otherwise, if the work is a derivative of the Library, you may distribute the object code for the work under the terms of Section 6. Any executables containing that work also fall under Section 6, whether or not they are linked directly with the Library itself.

    6. As an exception to the Sections above, you may also combine or link a "work that uses the Library" with the Library to produce a work containing portions of the Library, and distribute that work under terms of your choice, provided that the terms permit modification of the work for the customer's own use and reverse engineering for debugging such modifications.

    You must give prominent notice with each copy of the work that the Library is used in it and that the Library and its use are covered by this License. You must supply a copy of this License. If the work during execution displays copyright notices, you must include the copyright notice for the Library among them, as well as a reference directing the user to the copy of this License. Also, you must do one of these things:

    • a) Accompany the work with the complete corresponding machine-readable source code for the Library including whatever changes were used in the work (which must be distributed under Sections 1 and 2 above); and, if the work is an executable linked with the Library, with the complete machine-readable "work that uses the Library", as object code and/or source code, so that the user can modify the Library and then relink to produce a modified executable containing the modified Library. (It is understood that the user who changes the contents of definitions files in the Library will not necessarily be able to recompile the application to use the modified definitions.)
    • b) Use a suitable shared library mechanism for linking with the Library. A suitable mechanism is one that (1) uses at run time a copy of the library already present on the user's computer system, rather than copying library functions into the executable, and (2) will operate properly with a modified version of the library, if the user installs one, as long as the modified version is interface-compatible with the version that the work was made with.
    • c) Accompany the work with a written offer, valid for at least three years, to give the same user the materials specified in Subsection 6a, above, for a charge no more than the cost of performing this distribution.
    • d) If distribution of the work is made by offering access to copy from a designated place, offer equivalent access to copy the above specified materials from the same place.
    • e) Verify that the user has already received a copy of these materials or that you have already sent this user a copy.

    For an executable, the required form of the "work that uses the Library" must include any data and utility programs needed for reproducing the executable from it. However, as a special exception, the materials to be distributed need not include anything that is normally distributed (in either source or binary form) with the major components (compiler, kernel, and so on) of the operating system on which the executable runs, unless that component itself accompanies the executable.

    It may happen that this requirement contradicts the license restrictions of other proprietary libraries that do not normally accompany the operating system. Such a contradiction means you cannot use both them and the Library together in an executable that you distribute.

    7. You may place library facilities that are a work based on the Library side-by-side in a single library together with other library facilities not covered by this License, and distribute such a combined library, provided that the separate distribution of the work based on the Library and of the other library facilities is otherwise permitted, and provided that you do these two things:

    • a) Accompany the combined library with a copy of the same work based on the Library, uncombined with any other library facilities. This must be distributed under the terms of the Sections above.
    • b) Give prominent notice with the combined library of the fact that part of it is a work based on the Library, and explaining where to find the accompanying uncombined form of the same work.

    8. You may not copy, modify, sublicense, link with, or distribute the Library except as expressly provided under this License. Any attempt otherwise to copy, modify, sublicense, link with, or distribute the Library is void, and will automatically terminate your rights under this License. However, parties who have received copies, or rights, from you under this License will not have their licenses terminated so long as such parties remain in full compliance.

    9. You are not required to accept this License, since you have not signed it. However, nothing else grants you permission to modify or distribute the Library or its derivative works. These actions are prohibited by law if you do not accept this License. Therefore, by modifying or distributing the Library (or any work based on the Library), you indicate your acceptance of this License to do so, and all its terms and conditions for copying, distributing or modifying the Library or works based on it.

    10. Each time you redistribute the Library (or any work based on the Library), the recipient automatically receives a license from the original licensor to copy, distribute, link with or modify the Library subject to these terms and conditions. You may not impose any further restrictions on the recipients' exercise of the rights granted herein. You are not responsible for enforcing compliance by third parties with this License.

    11. If, as a consequence of a court judgment or allegation of patent infringement or for any other reason (not limited to patent issues), conditions are imposed on you (whether by court order, agreement or otherwise) that contradict the conditions of this License, they do not excuse you from the conditions of this License. If you cannot distribute so as to satisfy simultaneously your obligations under this License and any other pertinent obligations, then as a consequence you may not distribute the Library at all. For example, if a patent license would not permit royalty-free redistribution of the Library by all those who receive copies directly or indirectly through you, then the only way you could satisfy both it and this License would be to refrain entirely from distribution of the Library.

    If any portion of this section is held invalid or unenforceable under any particular circumstance, the balance of the section is intended to apply, and the section as a whole is intended to apply in other circumstances.

    It is not the purpose of this section to induce you to infringe any patents or other property right claims or to contest validity of any such claims; this section has the sole purpose of protecting the integrity of the free software distribution system which is implemented by public license practices. Many people have made generous contributions to the wide range of software distributed through that system in reliance on consistent application of that system; it is up to the author/donor to decide if he or she is willing to distribute software through any other system and a licensee cannot impose that choice.

    This section is intended to make thoroughly clear what is believed to be a consequence of the rest of this License.

    12. If the distribution and/or use of the Library is restricted in certain countries either by patents or by copyrighted interfaces, the original copyright holder who places the Library under this License may add an explicit geographical distribution limitation excluding those countries, so that distribution is permitted only in or among countries not thus excluded. In such case, this License incorporates the limitation as if written in the body of this License.

    13. The Free Software Foundation may publish revised and/or new versions of the Lesser General Public License from time to time. Such new versions will be similar in spirit to the present version, but may differ in detail to address new problems or concerns.

    Each version is given a distinguishing version number. If the Library specifies a version number of this License which applies to it and "any later version", you have the option of following the terms and conditions either of that version or of any later version published by the Free Software Foundation. If the Library does not specify a license version number, you may choose any version ever published by the Free Software Foundation.

    14. If you wish to incorporate parts of the Library into other free programs whose distribution conditions are incompatible with these, write to the author to ask for permission. For software which is copyrighted by the Free Software Foundation, write to the Free Software Foundation; we sometimes make exceptions for this. Our decision will be guided by the two goals of preserving the free status of all derivatives of our free software and of promoting the sharing and reuse of software generally.

    NO WARRANTY

    15. BECAUSE THE LIBRARY IS LICENSED FREE OF CHARGE, THERE IS NO WARRANTY FOR THE LIBRARY, TO THE EXTENT PERMITTED BY APPLICABLE LAW. EXCEPT WHEN OTHERWISE STATED IN WRITING THE COPYRIGHT HOLDERS AND/OR OTHER PARTIES PROVIDE THE LIBRARY "AS IS" WITHOUT WARRANTY OF ANY KIND, EITHER EXPRESSED OR IMPLIED, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. THE ENTIRE RISK AS TO THE QUALITY AND PERFORMANCE OF THE LIBRARY IS WITH YOU. SHOULD THE LIBRARY PROVE DEFECTIVE, YOU ASSUME THE COST OF ALL NECESSARY SERVICING, REPAIR OR CORRECTION.

    16. IN NO EVENT UNLESS REQUIRED BY APPLICABLE LAW OR AGREED TO IN WRITING WILL ANY COPYRIGHT HOLDER, OR ANY OTHER PARTY WHO MAY MODIFY AND/OR REDISTRIBUTE THE LIBRARY AS PERMITTED ABOVE, BE LIABLE TO YOU FOR DAMAGES, INCLUDING ANY GENERAL, SPECIAL, INCIDENTAL OR CONSEQUENTIAL DAMAGES ARISING OUT OF THE USE OR INABILITY TO USE THE LIBRARY (INCLUDING BUT NOT LIMITED TO LOSS OF DATA OR DATA BEING RENDERED INACCURATE OR LOSSES SUSTAINED BY YOU OR THIRD PARTIES OR A FAILURE OF THE LIBRARY TO OPERATE WITH ANY OTHER SOFTWARE), EVEN IF SUCH HOLDER OR OTHER PARTY HAS BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES.

    END OF TERMS AND CONDITIONS

    How to Apply These Terms to Your New Libraries

    If you develop a new library, and you want it to be of the greatest possible use to the public, we recommend making it free software that everyone can redistribute and change. You can do so by permitting redistribution under these terms (or, alternatively, under the terms of the ordinary General Public License).

    To apply these terms, attach the following notices to the library. It is safest to attach them to the start of each source file to most effectively convey the exclusion of warranty; and each file should have at least the "copyright" line and a pointer to where the full notice is found. 

    one line to give the library's name and an idea of what it does.
Copyright (C) year  name of author

This library is free software; you can redistribute it and/or
modify it under the terms of the GNU Lesser General Public
License as published by the Free Software Foundation; either
version 2.1 of the License, or (at your option) any later version.

This library is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
Lesser General Public License for more details.

You should have received a copy of the GNU Lesser General Public
License along with this library; if not, write to the Free Software
Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301  USA

    Also add information on how to contact you by electronic and paper mail.

    You should also get your employer (if you work as a programmer) or your school, if any, to sign a "copyright disclaimer" for the library, if necessary. Here is a sample; alter the names: 

    Yoyodyne, Inc., hereby disclaims all copyright interest in
the library `Frob' (a library for tweaking knobs) written
by James Random Hacker.

signature of Ty Coon, 1 April 1990
Ty Coon, President of Vice

    That's all there is to it!

    Additional licences

    In addition to the bulk of OpenConnect being under the LGPLv2.1, some sections were incorporated from other works making use of the 3-clause BSD licence, which requires the following information to be available as part of the documentation:

    Windows socketpair implementation

    The socketpair implementation used for communication with the OpenConnect library under Windows, used with permission from https://github.com/ncm/selectable-socketpair:

    Copyright 2007, 2010 by Nathan C. Myers <ncm@cantrip.org>
Redistribution and use in source and binary forms, with or without modification,
are permitted provided that the following conditions are met:

    Redistributions of source code must retain the above copyright notice, this
    list of conditions and the following disclaimer.

    Redistributions in binary form must reproduce the above copyright notice,
    this list of conditions and the following disclaimer in the documentation
    and/or other materials provided with the distribution.

    The name of the author must not be used to endorse or promote products derived
    from this software without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS" AND ANY
EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT
SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT,
INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR
BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY
WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

    GnuTLS TPMv2.0 support

    Sections of TPMv2.0 support used with permission from tpm2-tss-engine:

    Copyright 2017-2018, Fraunhofer SIT sponsored by Infineon Technologies AG
All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions are met:

1. Redistributions of source code must retain the above copyright notice,
this list of conditions and the following disclaimer.

2. Redistributions in binary form must reproduce the above copyright notice,
this list of conditions and the following disclaimer in the documentation
and/or other materials provided with the distribution.

3. Neither the name of tpm2-tss-engine nor the names of its contributors
may be used to endorse or promote products derived from this software
without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT HOLDER OR CONTRIBUTORS BE
LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR
CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF
THE POSSIBILITY OF SUCH DAMAGE.

    json-parser

    JSON parsing is handled by James McLaughlin's json-parser library.

    Copyright (C) 2012, 2013 James McLaughlin et al.  All rights reserved.

Redistribution and use in source and binary forms, with or without
modification, are permitted provided that the following conditions
are met:

1. Redistributions of source code must retain the above copyright
   notice, this list of conditions and the following disclaimer.

2. Redistributions in binary form must reproduce the above copyright
   notice, this list of conditions and the following disclaimer in the
   documentation and/or other materials provided with the distribution.

THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
ARE DISCLAIMED.  IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
SUCH DAMAGE.
    openconnect-8.20/www/html.py0000755000076400007640000001346114204454432017704 0ustar00dwoodhoudwoodhou00000000000000#!/usr/bin/env python3 # # Simple XML to HTML converter. # # (C) 2005 Thomas Gleixner # # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License version 2 as # published by the Free Software Foundation. # import sys import getopt import xml.sax import codecs if sys.version_info >= (3, 0): sys.stdout = codecs.getwriter("utf-8")(sys.stdout.detach()) else: # reload() always needed because of https://docs.python.org/2.7/library/sys.html#sys.setdefaultencoding reload(sys) sys.setdefaultencoding('utf-8') sys.stdout = codecs.getwriter("utf-8")(sys.stdout) lookupdir = '' # Print the usage information def usage(): print("USAGE:") print("html.py <-f -h file.xml>") print(" -d DIR use DIR as base directory for opening files") print(" -f write output to file.html (default is stdout)") print(" -h help") # Headerfields header = [ "Mime-Version: 1.0\r\n", "Content-Type: text/plain; charset=utf-8\r\n", "Content-Transfer-Encoding: 8bit\r\n", "Content-Disposition: inline\r\n", ] html = [] replace = [] fdout = sys.stdout def replaceVars(line): cnt = 0 while cnt < len(replace): # FIXME: this will match partial variable names, e.g. if XYZ and XYZ_ABC # are both in the replacement list, and XYZ appears first, it will # match and (partially) replace occurrences of XYZ_ABC. if line.find(replace[cnt]) >= 0: line = line.replace(replace[cnt], replace[cnt+1]) cnt += 2 return line def writeHtml(line): fdout.write(replaceVars(line)) def startMenu(level): writeHtml("
    \n" % (level)) def placeMenu(topic, link, mode): topic = replaceVars(topic) mode = replaceVars(mode) if mode == 'text': writeHtml("

    %s

    \n" % (topic)) return if mode == 'selected': writeHtml("\n") else: writeHtml("\n") writeHtml("%s\n" % (link, topic)) writeHtml("\n") # configuration parser class docHandler(xml.sax.ContentHandler): def __init__(self): super().__init__() self.content = "" def startElement(self, name, attrs): self.element = name if len(self.content) > 0: writeHtml(self.content) self.content = "" if name == "PAGE": return elif name == "INCLUDE": try: fd = codecs.open(attrs.get('file'), 'r', 'utf-8') except OSError: fd = codecs.open(lookupdir + attrs.get('file'), 'r', 'utf-8') lines = fd.readlines() fd.close() for line in lines: writeHtml(line) elif name == "PARSE": parseConfig(attrs.get('file')) elif name == 'STARTMENU': startMenu(attrs.get('level')) elif name == 'MENU': placeMenu(attrs.get('topic'), attrs.get('link'), attrs.get('mode')) elif name == 'ENDMENU': writeHtml("
    \n") elif name == 'VAR': match = attrs.get('match') repl = attrs.get('replace') idx = len(replace) replace[idx:] = [match] idx = len(replace) replace[idx:] = [repl] else: writeHtml("<" + name) if attrs.getLength() > 0: names = attrs.getNames() for name in names: writeHtml(" " + name + "=\"" + attrs.get(name) + "\"") writeHtml(" />" if name == "br" else ">") def characters(self, ch): self.content += ch def endElement(self, name): if name == "PAGE": return elif name == 'INCLUDE': return elif name == 'PARSE': return elif name == 'PAGE': return elif name == 'STARTMENU': return elif name == 'ENDMENU': return elif name == 'MENU': return elif name == 'VAR': return elif name == 'br': return if len(self.content) > 0: writeHtml(self.content) self.content = "" writeHtml("") # error handler class errHandler(xml.sax.ErrorHandler): def error(self, exception): sys.stderr.write("%s\n" % exception) def fatalError(self, exception): sys.stderr.write("Fatal error while parsing configuration\n") sys.stderr.write("%s\n" % exception) sys.exit(1) # parse the configuration file def parseConfig(file): # handlers dh = docHandler() eh = errHandler() # Create an XML parser parser = xml.sax.make_parser() # Set the handlers parser.setContentHandler(dh) parser.setErrorHandler(eh) try: fd = codecs.open(file, 'r', 'utf-8') except OSError: fd = codecs.open(lookupdir + file, 'r', 'utf-8') # Parse the file parser.parse(fd) fd.close() # Here we go # Parse the commandline writefile = 0 try: (options, arguments) = getopt.getopt(sys.argv[1:], 'fhd:') except getopt.GetoptError as ex: print("ERROR:") print(ex.msg) usage() sys.exit(1) for option, value in options: if option == '-d': lookupdir = value + '/' if option == '-f': writefile = 1 elif option == '-h': usage() sys.exit(0) # Handle special case VAR_ORIGIN idx = len(replace) replace[idx:] = ['VAR_ORIGIN'] idx = len(replace) replace[idx:] = [lookupdir] if not arguments: print("No source file specified") usage() sys.exit(1) if writefile > 0: fname = arguments[0].split('.')[0] fname += ".html" fdout = codecs.open(fname, 'w', 'utf-8') parseConfig(arguments[0]) if writefile > 0: fdout.close() openconnect-8.20/www/building.xml0000644000076400007640000001550314176202121020673 0ustar00dwoodhoudwoodhou00000000000000

    Building OpenConnect

    Unless you need to test the very latest version, you should not need to build OpenConnect for yourself. See the packages page for information about your operating system or distribution. If there is none, then you can file a bug or enhancement request asking for one.

    Requirements

    To build OpenConnect from its source code, you will need the following libraries and tools installed:

    • libxml2
    • zlib
    • Either OpenSSL or GnuTLS (v3.2.10+)
    • pkg-config
    And optionally also:

    OpenConnect supports the use of HTTP and SOCKS proxies to connect to the AnyConnect service, even without using libproxy. You may wish to use libproxy if you want OpenConnect to automatically use the appropriate proxies for your environment, without having to manually give it the --proxy argument on the command line.

    Install vpnc-script

    OpenConnect should be given a default vpnc-script for network configuration (routing and DNS) at compile-time. This can be overridden at runtime (with --script).

    The configure script will check whether either /etc/vpnc/vpnc-script or /usr/share/vpnc-scripts/vpnc-script exists and can be executed, and will fail if not. If you don't already have a copy then you should install one. It might be in a separate vpnc-script package for your operating system, it might be part of their vpnc package, and there's one linked from the vpnc-script page, if you need to download it manually. Install it as /etc/vpnc/vpnc-script.

    If you do not want to OpenConnect to use a vpnc-script from one of these standard locations, you can configure OpenConnect to use a different location by default. When running the ./configure script in the instructions below, you can append an argument such as --with-vpnc-script=/where/I/put/vpnc-script to its command line. Note that the path you give will not be checked; the script doesn't have to be present when you build OpenConnect. But of course OpenConnect won't work very well without it, so you'll still have to install it later.

    Building OpenConnect

    If you checked the source code out from git rather from a release tarball then run this command first to prepare the build system:

    • ./autogen.sh

    Then to build it, run the following commands:

    • ./configure
    • make
    • make install (If you want to install it)

    Note that OpenConnect will attempt to use the GnuTLS library by default. If you want it to use OpenSSL instead, then add --without-gnutls to the ./configure command above.

    If compilation fails, please make sure you have a working compiler and the development packages for all the required libraries mentioned above. If it still doesn't build, please send the full output in a plain-text mail to the mailing list.

    Test suite

    The included test suite can be run as make check.

    It depends on the following programs and libraries being available:

    Test suite

    The included test suite can be run as make check.

    It depends on the following programs and libraries being available:

    TUN/TAP driver

    Mac OS

    Mac OS X users with OS X 10.6 or older, or using OpenConnect 6.00 or older, will also need to install the Mac OS X tun/tap driver. Newer versions of OpenConnect will use the utun device on OS X which does not require additional kernel modules to be installed.

    Solaris/OpenIndiana users will need the Solaris TAP driver. Note that for IPv6 support, the Solaris tun/tap driver from 16th Nov 2009 or newer is required.

    Windows

    On Windows, OpenConnect uses the TAP-Windows driver from OpenVPN (version 9.9 or later; requires Windows 2003 or newer). This driver is only available for the 32-bit and 64-bit x86 architectures.

    OpenConnect v9.00 also contains experimental support for the Wintun layer-3 driver from Wireguard (requires Windows 7 or newer). This is a more modern driver, and supports 32-bit and 64-bit ARM architectures as well, however it does not yet appear to be fully stable (see issue #338). OpenConnect v9.00 will only attempt to use Wintun if TAP-Windows is unavailable.

     openconnect-8.20/www/anyconnect.xml0000644000076400007640000000667514176202121021251 0ustar00dwoodhoudwoodhou00000000000000

    Cisco AnyConnect

    How the VPN works

    The VPN is extremely simple, based almost entirely on the standard HTTPS and DTLS protocols. You connect to the secure web server, authenticate using certificates and/or arbitrary web forms, and you are rewarded with a standard HTTP cookie named webvpn.

    Some Cisco servers require you to execute a 'Cisco Secure Desktop' trojan binary (intended for security scanning of the client system) before authentication can complete; see the CSD page for information on how to comply with this requirement, or spoof it, with OpenConnect.

    After authentication, you use the webvpn cookie in an HTTP CONNECT request, and can then pass traffic over that connection. IP addresses and routing information are passed back and forth in the headers of that CONNECT request.

    Since TCP over TCP is very suboptimal, the VPN also attempts to use UDP datagrams, and will only actually pass traffic over the HTTPS connection if that fails. The UDP connectivity is done using Datagram TLS, which is supported by OpenSSL.

    DTLS compatibility

    Note: DTLS is optional and not required for basic connectivity, as explained above.

    Unfortunately, Cisco used an old version of OpenSSL for their server, which predates the official RFC and has a few differences in the implementation of DTLS.

    OpenSSL

    Compatibility support for their "speshul" version of the protocol is in the 0.9.8m and later releases of OpenSSL (and 1.0.0-beta2 and later).

    NOTE: OpenSSL 1.0.0k, 1.0.1d and 1.0.1e have introduced bugs which break this compatibility. See the thread on the mailing list, which has patches for each.

    If you are using an older version of OpenSSL which predates the compatibility, you will need to apply this patch from OpenSSL CVS:

    For versions older than 0.9.8j, some generic DTLS bug fixes are also required: The username/password for OpenSSL RT is 'guest/guest'

    GnuTLS

    Support for Cisco's version of DTLS was included in GnuTLS from 3.0.21 onwards (committed in fd5ca1af).

     openconnect-8.20/www/platforms.xml0000644000076400007640000000373314067426206021122 0ustar00dwoodhoudwoodhou00000000000000

    Supported Platforms

    OpenConnect is known to work, with both IPv6 and Legacy IP, on Linux (including Android), OpenBSD, FreeBSD (including Debian GNU/kFreeBSD), NetBSD, DragonFly BSD, OpenIndiana/OpenSolaris, Solaris 10/11, Windows and Mac OS X platforms, and should be trivially portable to any other platform supporting TUN/TAP devices and on which GnuTLS or OpenSSL runs.

    For Solaris support, and for IPv6 on any platform, the vpnc-script shipped with vpnc itself (as of v0.5.3) is not sufficient. It is necessary to use the script from the vpnc-scripts repository instead. That repository also contains an updated version of vpnc-script-win.js which is required for correct IPv6 configuration under Windows.

    OpenConnect is known to work on at least i386, x86_64, PowerPC and MIPS processors, and should not have issues with portability to other CPUs.

    Note that 'Cisco Secure Desktop' support may require the ability to run Linux/i386 binaries; see the CSD page. CSD is not yet supported under Windows.

    New Ports

    Platform support for new UNIX systems is relatively simple to add — most of the difference is in the TUN/TAP device handling, and the major variants of that are already supported.

    OpenConnect builds for Windows using MinGW in 32-bit and 64-bit mode, and works with the TAP-Windows driver shipped with OpenVPN (driver version 9.9 or later).

     openconnect-8.20/www/vpnc-script.xml0000644000076400007640000000577414171606260021366 0ustar00dwoodhoudwoodhou00000000000000

    Install a vpnc-script.

    OpenConnect just handles the communication with the VPN server; it does not know how to configure the network routing and name service on all the various operating systems that it runs on.

    To set the routing and name service up, it uses an external script which is usually called vpnc-script. It's exactly the same script that vpnc uses. You may already have a vpnc-script installed on your system, perhaps in a location such as /etc/vpnc/vpnc-script.

    If you don't already have it, you can get a current version from here. Even if you already have a copy from vpnc, you may wish to install this updated version which has support for IPv6, and for running on Solaris and on newer Linux kernels amongst other bug fixes.

    Note that the script needs to be executable, and stored somewhere where SELinux or similar security systems won't prevent the root user from accessing it.

    Current versions of OpenConnect (since version 3.17) are configured with the location of the script at build time, and will use the script automatically. If you are using a packaged build of OpenConnect rather than building it yourself, then the OpenConnect package should have a dependency on a suitable version of vpnc-script and should be built to look in the right place for it. Hopefully your distributions gets that right.

    If you're using an older version of OpenConnect, or if you want to use a script other than the one that OpenConnect was configured to use, you can use the --script argument on the command line. For example:

    • openconnect --script /etc/vpnc/vpnc-script https://vpn.example.com/

    If OpenConnect is invoked without a suitable script, it will not be able to configure the routing or name service for the VPN.

    Windows

    On Windows, the default configuration of OpenConnect will look for a script named vpnc-script-win.js in the same directory as the openconnect.exe executable, and will execute it with the command-based script host (CScript.exe).

    The current version of this script can be found here.

    Note that although the script is basically functional for configuring both IPv6 and Legacy IP, it does not fully tear down the configuration on exit so stale IP address might be left around on the interface.

     openconnect-8.20/www/mitm.xml0000644000076400007640000002466614176202121020056 0ustar00dwoodhoudwoodhou00000000000000

    Observing VPN clients

    Most of the VPN protocols supported by OpenConnect are proprietary, undocumented, and in many cases overly-complex, perhaps intentionally obfuscated.

    In order to add support for new protocols, and sometimes even to improve or update support for existing ones, it is often necessary to observe existing clients and servers in order to understand how they work.

    Observing TLS/SSL connections

    Modern VPN protocols almost always support a UDP-based transport for tunneled packets, e.g. DTLS for the Cisco AnyConnect protocol, or ESP for the GlobalProtect protocol. This is because TCP over TCP is very suboptimal in terms of performance. However, most VPN protocols also support TLS/SSL for connection initiation and as a fallback, due to its universal availability even in highly filtered or firewalled network environments. It is typically more straightforward and productive to start out by observing the TLS/SSL side of a new VPN protocol, and saving the UDP-based transport for later (See this discussion thread from the mailing list during the initial work on the GlobalProtect protocol.)

    The content of a TLS/SSL connection is end-to-end encrypted and authenticated, and the session keys are normally kept only in memory by the applications using these connections. Therefore, special techniques are needed to decrypt traffic and observe the plaintext bytes-on-the-wire of any TLS-based communications protocol.

    There are more-or-less 3 possible techniques for decrypting TLS-based communications and observing the plaintext. The first two shown here are quite simply, but not universally usable; the third is more complex but should be applicable to any TLS-based VPN protocol.

    (1) Using SSLKEYLOGFILE

    If your VPN client is based on a standard TLS library and does not disable this mechanism, it is likely the most straightforward way to decrypt TLS traffic.

    Most TLS libraries (including OpenSSL, GnuTLS, and LibNSS) support an environment variable called SSLKEYLOGFILE, which will cause applications using those libraries to write "premaster secrets" for their TLS/DTLS sessions to a file. This makes it straightforward to automatically decrypt the traffic using the Wireshark network protocol analyzer. Basically, you should run the VPN client that you're observing with this environment variable set, run Wireshark on the same computer, and configure Wireshark to use the resulting log file; see Wireshark's TLS decryption documentation for details.

    Note that some proprietary VPN clients disable the SSLKEYLOGFILE mechanism to prevent decryption of their traffic, but many developers overlook this especially in early releases of their client software.

    (2) Using server's RSA private key

    If you have access to the RSA private key of a VPN server supporting the protocol you're observing (likely because you administer such a VPN), and can use RSA key exchange, then you can provide this RSA private key to Wireshark and automatically decrypt TLS traffic to and from this server using Wireshark; again, see Wireshark's TLS decryption documentation for details and limitations.

    This works because the RSA key exchange supported by TLS (re)uses the server's private key for encryption of the ephemeral session keys, unlike Diffie-Helman or Elliptic Curve Diffie-Helman exchanges which do not. (More detailed explanation on StackExchange.)

    This lack of forward secrecy of session keys is indeed why RSA key exchange has been deprecated in TLS 1.2 and removed in TLS 1.3. However, most VPN servers and clients continue to support TLS 1.2 or older with RSA key exchange for backwards compatibility, so this is still a viable option for decrypting traffic as of 2022.

    (3) MITM

    If you cannot use either of the above mechanisms, then you will need to use the MITM technique to decrypt traffic to/from the VPN client you are observing.

    The basic idea is to convince the two peers of the TLS connection (VPN client and server) that they are communicating directly with each other via an end-to-end encrypted TLS session, when in fact each of them is in fact communicating with an intermediary (the "man-in-the-middle"). The intermediary creates two separate TLS sessions: one between the real client and the intermediary, and one between the intermediary and the real server. The intermediary can inspect and modify traffic before relaying it between the the peers, who continue to believe that they are communicating directly with each other.

    In order to MITM-capture the traffic from a typical proprietary VPN client:

    1. Use mitmproxy, running on Linux. (There are other similar tools available, but the rest of this document will assume you are running mitmproxy on Linux.)
    2. Set up a virtual machine and install the required operating and VPN client. (It is possible to do this using a physical system as well, but this will make transparent routing more complex.) We recommend:

    3. Run mitmproxy on the host system, and route traffic from the VM through it transparently, that is without setting an explicit proxy.

      With KVM/QEMU and user-mode networking, this consists of setting the guest system's IPv4 gateway to 10.0.2.2 and setting up iptables rules on the Linux host to redirect traffic. (Described in more detail in mitmproxy's guide to transparently proxying virtual machines).

    4. Browse to the URL https://mitm.it on the VM; this is a special domain intercepted by mitmproxy itself.

      The web page shown will help you verify that (a) the VM's traffic is really passing through MITMproxy and (b) the VM's operating system trusts mitmproxy's certificates.

    5. Run the VPN client on the VM, and capture and study its traffic using mitmproxy (or mitmdump) on the host.

    6. The client and/or server may employ various mechanisms to detect MITM and shut down the MITM'ed connection. Trick, bludgeon, or confuse the client and server into ignoring this; see below for specific examples.

      This usually works by sending a copy or hash/fingerprint of the server's TLS certificate as part of the in-band protocol data, and checking for differences from the certificate exchanged in the TLS handshake.

    7. Repeat these steps iteratively to understand how the VPN client's interaction with the VPN server works.

    In cases where your VPN client/server detect MITM'ed connections and stop communicating (6), it's typically necessary to write a script which will detect and rewrite in-band protocol data containing the server's TLS certificate (or a hash/fingerprint of it). This requires a recent version of mitmproxy containing pull request #1935 which was contributed by OpenConnect developers for this purpose.

    An example of such a script may be useful: gp_ssl_log.py. This script works with mitmproxy or mitmdump to modify traffic to/from with a GlobalProtect server; specifically it mangles the <root-ca> XML tag sent by GlobalProtect portal servers, which GlobalProtect's official client software uses to verify that certificates of servers it connects to. It can be used with mitmdump as follows:

      ./mitmdump -vvv --tcp $YOUR_GP_SERVER_IP -s /path/to/gp_ssl_log.py --ssl-version-server all --insecure

    Documenting VPN protocols

    Sometimes it's most satisfying and productive to simply start coding up support for a new protocol or feature in OpenConnect itself. However, if you don't understand the structure of the OpenConnect codebase well, this may make it difficult to explain and discuss the code with more experienced developers.

    Often it is very useful to take a step back and explain how the VPN protocol works in more human-readable terms before implementing it in OpenConnect's codebase. Preparing a document that intersperses prose explanations with captured traffic can aid in communication. See PAN_GlobalProtect_protocol_doc.md, (prepared during the implementation of the GlobalProtect protocol in OpenConnect, and subsequently updated) for a complete example.

    Ask for help

    Ask on the mailing list for help with new protocol implementations, or show us your code via Merge Requests on GitLab.

     openconnect-8.20/www/f5.xml0000644000076400007640000000363514204454432017421 0ustar00dwoodhoudwoodhou00000000000000

    F5 SSL VPN

    Experimental support for F5 SSL VPN was added to OpenConnect in March 2021. It is also known as BIG-IP in some documentation. It is a PPP-based protocol using the native PPP support which was merged into the 9.00 release.

    F5 mode is requested by adding --protocol=f5 to the command line: 

      openconnect --protocol=f5 big-ip.example.com

    Since TCP over TCP is very suboptimal, OpenConnect tries to always use PPP-over-DTLS, and will only fall over to the PPP-over-TLS tunnel if that fails, or if disabled via the --no-dtls argument.

    Quirks and Issues

    Currently, OpenConnect only supports basic username/password authentication for F5, along with an optional TLS client certificate and the "domain" dropdown used by some F5 VPNs. The domain form field can be automatically populated with the --authgroup command-line option. If you have access to an F5 VPN which uses other types of authentication (e.g. RSA or OATH tokens), please send information to the mailing list so that we add support to OpenConnect.

    Connectivity over DTLS is supported. On BIG-IP server v16, it is possible to use either DTLSv1.0 or DTLSv1.2, if configured correctly. On BIG-IP server v15, it is limited to DTLSv1.0 because experiments show that BIG-IP server v15 cannot negotiate correctly down to DTLSv1.0 when a newer version of DTLS is attempted.

     openconnect-8.20/www/csd.xml0000644000076400007640000000722214171606260017655 0ustar00dwoodhoudwoodhou00000000000000

    Cisco Secure Desktop

    The CSD ('Cisco Secure Desktop') mechanism is a security scanner for the Cisco AnyConnect VPNs, in the same vein as Juniper's Host Checker (tncc.jar) and GlobalProtect's HIP.

    Background

    The 'Cisco Secure Desktop' is a bit of a misnomer — it works by downloading a trojan binary from the server and running it on your client machine to perform some kind of 'verification' and post its approval back to the server. This seems anything but secure to me, especially given their history of trivially-exploitable bugs.

    It's also fairly easy to subvert, by running your own modified binary instead of the one you download from the server. Or by running their binary but poking at it with gdb.

    We support this idiocy, but because of the security concerns the trojan will be executed only if a userid is specified on the command line using the --csd-user= option, or the --csd-wrapper= option is used to handle the script in a 'safe' manner.

    This support currently only works when the server has a Linux binary installed, and only when that Linux binary runs on the client machine.

    CSD support in OpenConnect

    OpenConnect supports running the CSD binary, or spoofing its behaviour, by passing the --csd-wrapper=SCRIPT argument with a shell script.

    The OpenConnect distribution includes two alternative scripts to support the execution or spoofing of the CSD behaviour, in the trojans/ subdirectory:

    • csd-post.sh: This script does not actually run the CSD trojan binary. Instead, it emulates the behaviour of the CSD trojan, creating a plaintext report similar to the one that the CSD trojans build, and uploading it to the server sent by the VPN gateway. The report may need to be customized in order to be accepted by some servers; the hostscan-bypass tool may help with this. Because this script does not actually execute a trojan binary, and because its complete output is easily visible in the script, the security concerns are greatly alleviated.

      If it doesn't work for your VPN, please add set -x to the top of the script to make it generate copious logging output, and contact the developers so that we can figure out what needs to be modified in order for it to work with more Cisco VPNs.

    • csd-wrapper.sh: This script accepts the same options as some versions of the CSD trojan binary, (-ticket, -stub, -group, -certhash, -url, -langselen), downloads the files required by the binary, and then wraps the execution of the cstub binary. That binary is often buggy, and may be untested or may not even exist. Because of the security dangers of executing a server-provided trojan binary, this script should be executed with the permissions of a low-privilege user (e.g. --csd-user=nobody --csd-wrapper=trojans/csd-wrapper.sh). Don't use this unless you know what you're doing.
    openconnect-8.20/www/menu2-started.xml0000644000076400007640000000055214040533771021576 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/www/token.xml0000644000076400007640000002423614171606260020230 0ustar00dwoodhoudwoodhou00000000000000

    One Time Password support

    OpenConnect supports three types of software tokens for automatically generating one-time passwords:

    OATH HOTP/TOTP tokens are also supported in hardware by:

    On the command line, the token mode is specified with the --token-mode argument, which can be one of rsa, totp, hotp or yubioath.

    The token secret is provided with the --token-secret argument, and the precise form it takes is dependent on the type of token as described below.

    For the openconnect command line program, if the first character of the --token-secret value is / or @, the argument is interpreted as a filename. The secret data will be loaded from (and potentially saved back to, in the case of HOTP tokens) the specified file.

    In each case, the automatic token generation will be tried twice before it is automatically disabled and the user asked to enter tokencodes manually.

    SecurID token codes will automatically fill in the primary password field in the authentication form presented by the server, while OATH token codes will fill in the secondary password field. This behaviour is empirically determined by the requirements of the servers that we have tested with; if you find a configuration in which it is not appropriate, please let us know.

    SecurID

    If no --token-secret argument is provided in SecurID mode, the default .stokenrc file from the user's home directory will be used. For the NetworkManager integration, this is a separate choice for the token type — the UI has separate choices for "RSA SecurID - read from ~/.stokenrc" vs. "RSA SecurID - manually entered".

    If a token is provided — either directly on the command line, as the contents of a referenced file, or entered into the NetworkManager configuration dialog — it may take one of the many forms accepted by the stoken import command:

    • 286510182209303756117707012447003320623006...
    • 29658-21098-45467-64675-65731-01441-11337...
      Pure numeric (81-digit) "ctf" (compressed token format) strings, with or without dashes. These may have been furnished as-is, or they could have been derived from an sdtid file by the RSA TokenConverter program.
    • com.rsa.securid.iphone://ctf?ctfData=229639330774927764401...
      iPhone-compatible token strings.
    • http://127.0.0.1/securid/ctf?ctfData=250494932146245277466...
    • http://127.0.0.1/securid/ctf?ctfData=AwAAfBc3QSopPxxjLGnxf...
      Android-compatible token strings.
    • &lt;?xml version=...
      RSA sdtid-formatted XML files. These should be generally be imported from a file: '--token-secret @FILE.SDTID'

    Additionally, a filename (prefixed by the @ or / characters) may refer to a stoken rcfile. The default behaviour if no --token-secret file is provided is therefore equivalent to:

    • @${HOME}/.stokenrc

    SecurID two-factor authentication is based on something you have (a hardware or software token) and something you know (a 4-8 digit PIN code). SecurID administrators can provision software tokens in three different ways:

    • PIN included in tokencode computation
      In most deployments, the software token application will prompt the user for a PIN, and then use the PIN to help calculate an 8-digit tokencode by summing each of the lower digits (modulo 10). The tokencode displayed by the app is then entered verbatim into the password field.
    • PIN manually prepended to tokencode
      In other cases, the software token application will not prompt for a PIN; it will simply display a "bare" tokencode, often 6 digits long, similar to a SecurID hardware token (SID700 or equivalent). In response to the Password: prompt, the user concatenates his PIN and the tokencode: PIN & Tokencode = Passcode.
    • No PIN
      In rare cases, the server is configured such that a PIN is not required at all. In this case, the software token application does not prompt for a PIN and the user simply enters the tokencode into the password field.

    For the first case, OpenConnect will prompt for a PIN if the PIN has not been saved in ~/.stokenrc using the stoken setpin command. Otherwise the saved PIN will automatically be used, permitting unattended operation. This works with all versions of libstoken.

    For the second and third cases, OpenConnect will unconditionally prompt for a PIN and concatenate the PIN with the generated tokencode. If appropriate, an empty PIN may be entered. This requires libstoken v0.8 or higher.

    TOTP (Time-Based One-Time Password)

    As with SecurID tokens, OATH TOTP tokens may be provided either directly on the command line, as the contents of a referenced file, or entered into the NetworkManager configuration dialog. They may be specified in one of the following forms:

    • SecretSecret!
    • sha256:SecretSecret!
    • sha512:SecretSecret!
      For secrets which are actually UTF-8 strings instead of entirely randomly generated data, they may be specified directly in this form.
    • 0x53656372657453656372657421
    • sha256:0x53656372657453656372657421
    • sha512:0x53656372657453656372657421
      This is the hexadecimal form which (without the leading 0x) is accepted by default by the oathtool program.
    • base32:KNSWG4TFORJWKY3SMV2CC===
    • sha256:base32:KNSWG4TFORJWKY3SMV2CC===
    • sha512:base32:KNSWG4TFORJWKY3SMV2CC===
      This is the base32 form which is accepted by the oathtool program with its -b option..
    • &lt;?xml version=...
      PSKC XML files conforming to RFC6030. These should be generally be imported from a file: '--token-secret @FILE.PSKC'

    The default HMAC algorithm for TOTP tokens is SHA-1. SHA-256 and SHA-512 are also supported; to use them prefix "sha256:" or "sha512:" when explicitly providing a key on the command line. Algorithms other than SHA-1 are not yet supported with PSKC files until the relevant standards have been updated to indicate how they shall be indicated in the PSKC file. See this erratum to RFC6238 for current status.

    HOTP (HMAC-Based One-Time Password)

    HOTP tokens are very similar to TOTP tokens except that they are event-based, and contain an additional counter which is incremented each time a token is generated.

    For HOTP tokens, the secret and counter may be provided in one of the following forms:

    • SecretSecret!,99
    • 0x53656372657453656372657421,99
    • base32:KNSWG4TFORJWKY3SMV2CC===,99
      These correspond to the raw forms of the TOTP tokens given above, with the counter value appended in decimal form after a comma.
    • &lt;?xml version=...
      PSKC XML files conforming to RFC6030 will contain the counter value.

    Although it is possible to specify HOTP tokens in their raw form on the command line, that's not very useful because any updates to the counter field will be discarded. Therefore it is advisable to use the @filename form of the --token-secret argument, and the updated secret with incremented counter value will be stored back to the file each time a token is generated.

    The token will be stored back to the file in the same form that it was originally provided.

    Although NetworkManager-openconnect only supports direct token entry (you can't enter @filename into its GUI configuration and expect that to work), versions which are new enough to support HOTP will also have support for reading the updated counter values back from libopenconnect and storing them to the NetworkManager VPN configuration. So if you configure a VPN connection with a HOTP token secret of "0x1234,1" and authenticate once, you should be able to go back into the configuration and see that the token secret has been updated to "0x1234,2".

    HOTP tokens also support SHA-256 and SHA-512 in precisely the same fashion as TOTP tokens, as described above.

    Yubikey HOTP/TOTP

    The ykneo-oath applet implements secure HOTP/TOTP support by storing the private key within the hardware device so that it cannot be recovered.

    The applet can store multiple credentials. If a --token-secret argument is provided, it specifies the name of the credential which is to be used. Otherwise OpenConnect will use the first credential found on the device.

    Yubikey support is not yet implemented in NetworkManager.

     openconnect-8.20/www/menu1.xml0000644000076400007640000000120514062600131020112 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/www/juniper.xml0000644000076400007640000001034214176202121020546 0ustar00dwoodhoudwoodhou00000000000000

    Juniper SSL VPN / Pulse Connect Secure

    Support for Juniper's Network Connect protocol was added to OpenConnect in early 2015, for the 7.05 release. It is still experimental, and is quite likely to be deprecated in favour of the newer Junos Pulse protocol.

    Juniper mode is requested by adding --protocol=nc to the command line: 

      openconnect --protocol=nc vpn.example.com

    Network Connect works very similarly to AnyConnect — initial authentication is made over HTTP, resulting in an HTTP cookie which is used to make the actual VPN connection. That connection is also made over HTTP, and the IP address and routing information are provided by the VPN server. The client then attempts to bring up a UDP transport, which in the case of Juniper is ESP.

    Authentication

    The authentication stage with Juniper is what is expected to cause most problems. Unlike AnyConnect which has a relatively simple XML schema for interacting with the user, the Juniper VPN expects a full web browser environment and uses HTML forms with JavaScript and even full-blown Java support.

    The common case is relatively simple, and OpenConnect supports the common forms defined by the Juniper-provided templates. However, administrators have the facility to put arbitrary HTML pages into the login sequence and full compatibility may require actually using a web browser to log in — ironically, since much of the reason users have been asking for OpenConnect to support Juniper is because they didn't want to have to use a web browser.

    For NetworkManager we may end up putting a full HTML renderer into the GUI authentication dialog, while the command line client continues to parse the common login forms and make a best attempt at handling anything non-standard.

    External authentication

    There are a number of perl and python scripts which handle authentication to Juniper servers to bypass the web browser. One such script has been ported to invoke OpenConnect instead of Juniper's own ncsvc client and can be found here.

    Any of these scripts which authenticate and obtain a DSID cookie representing a VPN session can be used with OpenConnect. Just pass the cookie to OpenConnect with its -C option, for example: 

      openconnect --juniper -C "DSID=foobar12345" vpn.example.com

    Host Checker (tncc.jar)

    Many sites require a Java applet to run certain tests as a precondition of authentication (similar to CSD for AnyConnect VPNs and HIP for GlobalProtect VPNs). See the Host Checker / TNCC page for how to configure OpenConnect to wrap and run this applet.

    Connectivity

    Once authentication is complete, the VPN connection can be established. At the time of writing much of the configuration for Legacy IP addressing and routes is understood and implemented. IPv6 is not yet implemented, and test reports from someone with an IPv6-capable server would be greatly appreciated.

    The data transport is functional both over the HTTPS session and also over ESP. Servers with compression enabled should also be supported, as LZO decompression is working and although we lack compression support it appears acceptable to simply send packets uncompressed.

    At the time of writing, keepalive for the ESP connection has been implemented and extremely lightly tested, while it isn't yet known if the VPN supports keepalive on the HTTPS connection. Reconnection of both the HTTPS and ESP links is implemented. The current implementation is basically usable and is definitely ready for some more widespread testing.

     openconnect-8.20/www/tncc.xml0000644000076400007640000000627314171606260020040 0ustar00dwoodhoudwoodhou00000000000000

    Juniper Host Checker (tncc.jar)

    The Host Checker mechanism is a security scanner for the Juniper VPNs, in the same vein as Cisco's CSD and GlobalProtect's HIP. It is also used by the Pulse Secure protocol but support for running it with the Pulse protocol is not included in OpenConnect yet.

    Background

    Many sites require a Java applet to run certain tests as a precondition of authentication. This works by sending a DSPREAUTH cookie to the client which is attempting to authenticate, and the Java code in tncc.jar then runs and communicates with the server, handing back a new value for the DSPREAUTH cookie to be used when autnentication continues.

    This Java applet is a black-box binary provided by a server outside of the client's control, and therefore has similar security concerns to Cisco's CSD trojan.

    TNCC support in OpenConnect

    OpenConnect supports running the Java binary, or emulating its behaviour, by passing the --csd-wrapper=SCRIPT argument with a shell script.

    The OpenConnect distribution includes two alternative scripts to support the execution or emulation of Host Checker, in the trojans/ subdirectory:

    • tncc-wrapper.py: This Python 3.x wrapper script runs the actual tncc.jar binary, with a little assistance. Running this wrapper requires you to build tncc-preload.so from russdill/ncsvs-socks-wrapper on GitHub. Because of the security dangers of executing a server-provided trojan binary, this script should ideally be executed with the permissions of a low-privilege user (e.g. --csd-user=nobody).

    • tncc-emulate.py: This Python 3.x script does not actually run the tncc.jar binary. Instead, it emulates the behaviour of the tncc.jar binary, rather than actually executing it. Because this script does not actually execute a server-provided binary, security concerns are greatly alleviated.

      It may require configuration or customization to work with VPNs that have modified the behaviour of their Host Checker binaries in some way; consult its source code for details, starting with the list of environment variables that may be set to overridden some of the data that it sends to the server.

      This script is based entirely on tncc.py from russdill/juniper-vpn-py on GitHub.)

    With either of these scripts, it may also be necessary to pass a Mozilla-compatible user agent string:

      ./openconnect --protocol=nc --useragent 'Mozilla/5.0 (Linux) Firefox' --csd-wrapper=trojans/tncc-wrapper.py vpn.example.com
    openconnect-8.20/www/fortinet.xml0000644000076400007640000000541714204454432020741 0ustar00dwoodhoudwoodhou00000000000000

    Fortinet SSL VPN

    Experimental support for Fortinet SSL VPN was added to OpenConnect in March 2021. It is also known as FortiGate in some documentation. It is a PPP-based protocol using the native PPP support which was merged into the 9.00 release.

    Fortinet mode is requested by adding --protocol=fortinet to the command line: 

      openconnect --protocol=fortinet fortigate.example.com

    Since TCP over TCP is very suboptimal, OpenConnect tries to always use PPP-over-DTLS, and will only fall over to the PPP-over-TLS tunnel if that fails, or if disabled via the --no-dtls argument.

    Authentication

    OpenConnect currently supports basic username/password, optional TLS client certificate, and optional multifactor authentication token entry via the two known challenge/response mechanisms: plaintext/"tokeninfo" (issue #225) and HTML forms (issue #332).

    If you have access to a Fortinet VPN which uses other types of authentication, please send information to the mailing list so that we can add support to OpenConnect.

    Quirks and Issues

    FortiGate server versions prior to v6.2.1 do not allow the post-authentication cookie (as output by --authenticate) to be used to reestablish a dropped connection. This means that if the client loses its connection to the gateway (for example, due to a network outage, or after roaming to a different physical adapter) a new authentication will always be required. This is a substantial design flaw which is not present in any of the other protocols supported by OpenConnect.

    Starting with FortiOS 6.2.1, an optional server-side setting (tun-connect-without-reauth) appears intended to support reconnection, but still doesn't work very well (see discussion on issue #297). Please send reports on success and failure with Fortinet reconnection to the mailing list so we can understand it better.

     openconnect-8.20/www/pulse.xml0000644000076400007640000000405114204454432020230 0ustar00dwoodhoudwoodhou00000000000000

    Pulse Connect Secure

    Support for Pulse Connect Secure was added to OpenConnect in June 2019, for the 8.04 release. In most cases it supersedes the older Juniper Network Connect support. It is a much saner protocol.

    Pulse mode is requested by adding --protocol=pulse to the command line: 

      openconnect --protocol=pulse vpn.example.com

    The TCP transport for Pulse Connect Secure works over IF-T/TLS, first using EAP (and EAP-TTLS if certificates are being used) for authentication and then passing traffic over IF-T messages over the same transport. Just as with the older Juniper protocol, the UDP transport is ESP.

    Authentication

    The authentication cookies are compatible with the Juniper mode, which means that external tools like juniper-vpn-py should be usable with OpenConnect in Pulse mode too.

    Host Checker

    Support for Host Checker, also known as TNCC, has not yet been investigated and implemented for Pulse mode. The Juniper support may suffice for some users.

    Connectivity

    Once authentication is complete, the VPN connection can be established. Both Legacy IP and IPv6 should be working. However, some Pulse VPNs will not provide full IPv6 connectivity unless a recent version of the official Pulse client for Windows is spoofed (see comment on GitLab issue #254. For example:

      ./openconnect --protocol=pulse --useragent "Pulse-Secure/9.1.11.6725" --os=win
    openconnect-8.20/www/download.xml0000644000076400007640000002437414204505630020716 0ustar00dwoodhoudwoodhou00000000000000

    Download

    Released versions of OpenConnect are available from the FTP site, and also over HTTP:

    Release tarballs (since 3.13) are signed with the PGP key with fingerprint BE07 D9FD 5480 9AB2 C4B0 FF5F 6376 2CDA 67E2 F359.

    The latest release is OpenConnect v8.20 (PGP signature), released on 2022-02-20 with the following changelog:

    • When the queue length (-Q option) is 16 or more, try using vhost-net to accelerate tun device access.
    • Use epoll() where available.
    • Support non-AEAD ciphersuites in DTLSv1.2 with AnyConnect. (#249)
    • Make tncc-emulate.py work with Python 3.7+. (#152, !120)
    • Emulated a newer version of GlobalProtect official clients, 5.1.5-8; was 4.0.2-19 (!131)
    • Support Juniper login forms containing both password and 2FA token (!121)
    • Explicitly disable 3DES and RC4, unless enabled with --allow-insecure-crypto (!114)
    • Add obsolete-server-crypto test (!114)
    • Allow protocols to delay tunnel setup and shutdown (!117)
    • Support for GlobalProtect IPv6 (!155 and !188; previous work in d6db0ec)
    • SIGUSR1 causes OpenConnect to log detailed connection information and statistics (!154)
    • Allow --servercert to be specified multiple times in order to accept server certificates matching more than one possible fingerprint (!162, #25)
    • Add insecure debugging build mode for developers (!112)
    • Demangle default routes sent as split routes by GlobalProtect (!118)
    • Improve GlobalProtect login argument decoding (!143)
    • Add detection of authentication expiration date, intended to allow front-ends to cache and reuse authentication cookies/sessions (!156)
    • Small bug fixes and clarification of many logging messages.
    • Support more Juniper login forms, including some SSO forms (!171)
    • Automatically build Windows installers for OpenConnect command-line interface (!176)
    • Restore compatibility with newer Cisco servers, by no longer sending them the X-AnyConnect-Platform header (#101, !175)
    • Add support for PPP-based protocols, currently over TLS only (!165).
    • Add support for two PPP-based protocols, F5 with --protocol=f5 and Fortinet with --protocol=fortinet (!169).
    • Add experimental support for Wintun Layer 3 TUN driver under Windows (#231, !178).
    • Clean up and improve Windows routing/DNS configuration script (vpnc-scripts!26, vpnc-scripts!41, vpnc-scripts!44).
    • On Windows, reclaim needed IP addresses from down network interfaces so that configuration script can succeed (!178).
    • Fix output redirection under Windows (#229)
    • More gracefully handle idle timeouts and other fatal errors for Juniper and Pulse (!187)
    • Ignore failures to fetch the Juniper/oNCP landing page if the authentication was successful (3e779436).
    • Add support for Array Networks SSL VPN (#102)
    • Support TLSv1.3 with TPMv2 EC and RSA keys, add test cases for swtpm and hardware TPM. (ed80bfac...ee1cd782)
    • Add openconnect_get_connect_url() to simplify passing correct server information to the connecting openconnect process. (NetworkManager-openconnect #46, #53)
    • Disable brittle "system policy" enforcement where it cannot be gracefully overridden at user request. (RH#1960763).
    • Pass "portal cookie" fields from GlobalProtect portal to gateway to avoid repetition of password- or SAML-based login (!199)
    • With --user, enter username supplied via command-line into all authentication forms, not just the first. (#267, !220).
    • Fix a subtle bug which has prevented ESP rekey and ESP-to-TLS fallback from working reliably with the Juniper/oNCP protocol since v8.04. (#322, !293).
    • Fix a bug in csd-wrapper.sh which has prevented it from correctly downloading compressed Trojan binaries since at least v8.00. (!305)
    • Make Windows socketpair emulation more robust in the face of Windows's ability to break its localhost routes. (#228, #361, !320)
    • Perform proper disconnect and routes cleanup on Windows when receiving Ctrl+C or Ctrl+Break. (#362, !323)
    • Improve logging in routing/DNS configuration scripts. (!328, vpnc-scripts!45)
    • Support modified configuration packet from Pulse 9.1R14 servers (#379, !331)

    For older releases and change logs, see the changelog page.

    Latest sources

    The latest source code is available from the git repository at:

     openconnect-8.20/www/inc/0000755000076400007640000000000014204510554017125 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/www/inc/footer.tmpl0000644000076400007640000000005114040533771021321 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/www/inc/content.tmpl0000644000076400007640000000006714040533771021504 0ustar00dwoodhoudwoodhou00000000000000
    openconnect-8.20/www/inc/Makefile.am0000644000076400007640000000010314176202121021147 0ustar00dwoodhoudwoodhou00000000000000tmpldatadir = $(htmldir)/inc dist_tmpldata_DATA = $(srcdir)/*.tmpl openconnect-8.20/www/inc/Makefile.in0000644000076400007640000004214514204505636021205 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.2 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2020 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/inc ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(dist_tmpldata_DATA) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(tmpldatadir)" DATA = $(dist_tmpldata_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CREATE_TPM2_KEY = @CREATE_TPM2_KEY@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ JSON_CFLAGS = @JSON_CFLAGS@ JSON_LIBS = @JSON_LIBS@ JSON_PC = @JSON_PC@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAKENSIS = @MAKENSIS@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PPPD = @PPPD@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SOCAT = @SOCAT@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SWTPM = @SWTPM@ SWTPM_IOCTL = @SWTPM_IOCTL@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_SETENV = @SYMVER_WIN32_SETENV@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2TSS_GENKEY = @TPM2TSS_GENKEY@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TPM2_STARTUP = @TPM2_STARTUP@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSSTARTUP = @TSSTARTUP@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ WINTUN_ARCH = @WINTUN_ARCH@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ have_curl = @have_curl@ have_unzip = @have_unzip@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ runstatedir = @runstatedir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ tmpldatadir = $(htmldir)/inc dist_tmpldata_DATA = $(srcdir)/*.tmpl all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/inc/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/inc/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_tmpldataDATA: $(dist_tmpldata_DATA) @$(NORMAL_INSTALL) @list='$(dist_tmpldata_DATA)'; test -n "$(tmpldatadir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(tmpldatadir)'"; \ $(MKDIR_P) "$(DESTDIR)$(tmpldatadir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(tmpldatadir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(tmpldatadir)" || exit $$?; \ done uninstall-dist_tmpldataDATA: @$(NORMAL_UNINSTALL) @list='$(dist_tmpldata_DATA)'; test -n "$(tmpldatadir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(tmpldatadir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(tmpldatadir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_tmpldataDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_tmpldataDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_tmpldataDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_tmpldataDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.20/www/inc/header.tmpl0000644000076400007640000000152114176202121021246 0ustar00dwoodhoudwoodhou00000000000000 OpenConnect VPN client.
    openconnect-8.20/www/index.xml0000644000076400007640000001002214067426206020207 0ustar00dwoodhoudwoodhou00000000000000

    OpenConnect

    OpenConnect is a cross-platform multi-protocol SSL VPN client which supports a number of VPN protocols:

    OpenConnect is not officially supported by, or associated in any way with Cisco Systems, Juniper Networks, Pulse Secure, Palo Alto Networks, F5, or Fortinet, or any of the companies whose protocols we may support in the future. It just happens to interoperate with their equipment. Trademarks belong to their owners in a rather tautological and obvious fashion.

    An openconnect VPN server (ocserv), which implements an improved version of the Cisco AnyConnect protocol, has also been written.

    OpenConnect is released under the GNU Lesser Public License, version 2.1.

    Motivation

    Development of OpenConnect was started after a trial of the Cisco AnyConnect client under Linux found it to have many deficiencies:

    • Inability to use SSL certificates from a TPM or PKCS#11 smartcard, or even use a passphrase.
    • Lack of support for Linux platforms other than i386.
    • Lack of integration with NetworkManager on the Linux desktop.
    • Lack of proper (RPM/DEB) packaging for Linux distributions.
    • "Stealth" use of libraries with dlopen(), even using the development-only symlinks such as libz.so — making it hard to properly discover the dependencies which proper packaging would have expressed
    • Tempfile races allowing unprivileged users to trick it into overwriting arbitrary files, as root.
    • Unable to run as an unprivileged user, which would have reduced the severity of the above bug.
    • Inability to audit the source code for further such "Security 101" bugs.

    Naturally, OpenConnect addresses all of the above issues, and more.

    New protocols

    Adding new protocols to OpenConnect is relatively simple, and additional protocols have been added over the years since using OpenConnect allows a developer to concentrate on the protocol itself and most of the boring details about platform-specific tunnel management and IP configuration, and handling of client SSL certificates, are already resolved.

    If you have a protocol which you think it makes sense to support in OpenConnect, especially if you are able to help with interoperability testing, please file an issue in GitLab.

    Consistent multi-protocol support

    Wherever possible, OpenConnect presents a uniform API and command-line interface to each of these VPNs. For example, openconnect --force-dpd=10 will attempt dead peer detection every 10 seconds on every VPN that supports it, even though the actual mechanism used may be protocol-specific. Protocol-specific features and deficiencies are described on the individual protocol pages.

     openconnect-8.20/www/connecting.xml0000644000076400007640000000460014062600131021216 0ustar00dwoodhoudwoodhou00000000000000

    Connecting to the VPN

    Once you have installed OpenConnect and checked that you have a vpnc-script which will set up the routing and DNS for it, using OpenConnect is very simple. As root, run the following command for an AnyConnect/ocserv VPN:

    • openconnect https://vpn.mycompany.com/
    For one of the other supported protocols, you'll need to add --protocol. For example, for a PAN GlobalProtect VPN:
    • openconnect --protocol=gp https://vpn.mycompany.com/

    That should be it, if you have a password-based login. If your VPN uses TLS/SSL client certificates for authentication, you'll need to tell OpenConnect where to find the certificate with the -c option.

    You can provide the certificate either as the file name of a PKCS#12 or PEM file, or if OpenConnect is built against a suitable version of GnuTLS you can provide the certificate in the form of a PKCS#11 URL. If the private key is in a separate file from the certificate, this must be specified with -k:

    • openconnect -c cert_and_private_key.pem https://vpn.mycompany.com/
    • openconnect -c certificate.pem -k private_key.pem https://vpn.mycompany.com/
    • openconnect -c pkcs11:id=X_%b04%c3%85%d4u%e7%0b%10v%08%c9%0dA%8f%3bl%df https://vpn.mycompany.com/

    See the manual for additional options which can be used to tune OpenConnect's connections, and automate various aspects of the authentication process (e.g. populating multi-factor authentication codes using RSA- or OATH-based soft tokens).

    Extracting certificates from Windows

    If your certificate is stored on a Windows system, and marked as "non-exportable", you might need to steal the certificate from your Windows certificate store using a tool like Jailbreak.

     openconnect-8.20/www/array.xml0000644000076400007640000000251114062600131020204 0ustar00dwoodhoudwoodhou00000000000000

    Array Networks AG SSL VPN

    Experimental support for Array AG SSL VPN was added to OpenConnect in May 2021 for the 9.00 release. It is used for access to IBM Cloud private networks.

    Array mode is requested by adding --protocol=array to the command line: 

      openconnect --protocol=array vpn.lon.softlayer.com

    Quirks and Issues

    Currently, OpenConnect only supports basic username/password authentication. If you have access to an Array VPN which uses other types of authentication (e.g. RSA or OATH tokens), please send information to the mailing list so that we add support to OpenConnect.

    Connectivity over DTLS is supported, but currently limited to DTLSv1.0 because no known version of the server supports DTLSv1.2. Some operating systems might ban DTLSv1.0 in their default security settings.

     openconnect-8.20/www/changelog.xml0000644000076400007640000016644114204505630021040 0ustar00dwoodhoudwoodhou00000000000000

    Changelog

    For full changelog entries including the latest development, see gitweb.

    • OpenConnect HEAD
      • No changelog entries yet

    • OpenConnect v8.20 (PGP signature) — 2022-02-20
      • When the queue length (-Q option) is 16 or more, try using vhost-net to accelerate tun device access.
      • Use epoll() where available.
      • Support non-AEAD ciphersuites in DTLSv1.2 with AnyConnect. (#249)
      • Make tncc-emulate.py work with Python 3.7+. (#152, !120)
      • Emulated a newer version of GlobalProtect official clients, 5.1.5-8; was 4.0.2-19 (!131)
      • Support Juniper login forms containing both password and 2FA token (!121)
      • Explicitly disable 3DES and RC4, unless enabled with --allow-insecure-crypto (!114)
      • Add obsolete-server-crypto test (!114)
      • Allow protocols to delay tunnel setup and shutdown (!117)
      • Support for GlobalProtect IPv6 (!155 and !188; previous work in d6db0ec)
      • SIGUSR1 causes OpenConnect to log detailed connection information and statistics (!154)
      • Allow --servercert to be specified multiple times in order to accept server certificates matching more than one possible fingerprint (!162, #25)
      • Add insecure debugging build mode for developers (!112)
      • Demangle default routes sent as split routes by GlobalProtect (!118)
      • Improve GlobalProtect login argument decoding (!143)
      • Add detection of authentication expiration date, intended to allow front-ends to cache and reuse authentication cookies/sessions (!156)
      • Small bug fixes and clarification of many logging messages.
      • Support more Juniper login forms, including some SSO forms (!171)
      • Automatically build Windows installers for OpenConnect command-line interface (!176)
      • Restore compatibility with newer Cisco servers, by no longer sending them the X-AnyConnect-Platform header (#101, !175)
      • Add support for PPP-based protocols, currently over TLS only (!165).
      • Add support for two PPP-based protocols, F5 with --protocol=f5 and Fortinet with --protocol=fortinet (!169).
      • Add experimental support for Wintun Layer 3 TUN driver under Windows (#231, !178).
      • Clean up and improve Windows routing/DNS configuration script (vpnc-scripts!26, vpnc-scripts!41, vpnc-scripts!44).
      • On Windows, reclaim needed IP addresses from down network interfaces so that configuration script can succeed (!178).
      • Fix output redirection under Windows (#229)
      • More gracefully handle idle timeouts and other fatal errors for Juniper and Pulse (!187)
      • Ignore failures to fetch the Juniper/oNCP landing page if the authentication was successful (3e779436).
      • Add support for Array Networks SSL VPN (#102)
      • Support TLSv1.3 with TPMv2 EC and RSA keys, add test cases for swtpm and hardware TPM. (ed80bfac...ee1cd782)
      • Add openconnect_get_connect_url() to simplify passing correct server information to the connecting openconnect process. (NetworkManager-openconnect #46, #53)
      • Disable brittle "system policy" enforcement where it cannot be gracefully overridden at user request. (RH#1960763).
      • Pass "portal cookie" fields from GlobalProtect portal to gateway to avoid repetition of password- or SAML-based login (!199)
      • With --user, enter username supplied via command-line into all authentication forms, not just the first. (#267, !220).
      • Fix a subtle bug which has prevented ESP rekey and ESP-to-TLS fallback from working reliably with the Juniper/oNCP protocol since v8.04. (#322, !293).
      • Fix a bug in csd-wrapper.sh which has prevented it from correctly downloading compressed Trojan binaries since at least v8.00. (!305)
      • Make Windows socketpair emulation more robust in the face of Windows's ability to break its localhost routes. (#228, #361, !320)
      • Perform proper disconnect and routes cleanup on Windows when receiving Ctrl+C or Ctrl+Break. (#362, !323)
      • Improve logging in routing/DNS configuration scripts. (!328, vpnc-scripts!45)
      • Support modified configuration packet from Pulse 9.1R14 servers (#379, !331)

    • OpenConnect v8.10 (PGP signature) — 2020-05-14
      • Install bash completion script to ${datadir}/bash-completion/completions/openconnect.
      • Improve compatibility of csd-post.sh trojan.
      • Update Android build dependencies and bump API level to support Android 10.
      • Fix potential buffer overflow with GnuTLS describing local certs (CVE-2020-12823).

    • OpenConnect v8.09 (PGP signature) — 2020-04-29
      • Add bash completion support.
      • Give more helpful error in case of Pulse servers asking for TNCC.
      • Sanitize non-canonical Legacy IP network addresses (!97)
      • Fix OpenSSL validation for trusted but invalid certificates (CVE-2020-12105).
      • Convert tncc-wrapper.py to Python 3, and include modernized tncc-emulate.py as well. (!91)
      • Disable Nagle's algorithm for TLS sockets, to improve interactivity when tunnel runs over TCP rather than UDP. (!89
      • GlobalProtect: more resilient handling of periodic HIP check and login arguments, and predictable naming of challenge forms (!95, !93, !90)
      • Work around PKCS#11 tokens which forget to set CKF_LOGIN_REQUIRED (#123).

    • OpenConnect v8.08 (PGP signature) — 2020-04-06
      • Fix check of pin-sha256: public key hashes to be case sensitive (#116).
      • Don't give non-functioning stderr to CSD trojan scripts.
      • Fix crash with uninitialised OIDC token.

    • OpenConnect v8.07 (PGP signature) — 2020-04-04
      • Don't abort Pulse connection when server-provided certificate MD5 doesn't match.
      • Fix off-by-one in check for bad GnuTLS versions, and add build and run time checks.
      • Don't abort connection if CSD wrapper script returns non-zero (for now).
      • Make --passtos work for protocols that use ESP, in addition to DTLS.
      • Convert tncc-wrapper.py to Python 3, and include modernized tncc-emulate.py as well.

    • OpenConnect v8.06 (PGP signature) — 2020-03-31
      • Implement EAP-TTLS fragmentation.
      • Fix Windows build with MSYS2 (#74).
      • Allow custom stoken rcfile to be specified (#71).
      • Periodic HIP checking for GlobalProtect, and cross-protocol API (!56).
      • Ciphersuite priority override options (!71).
      • Clearer GlobalProtect debugging/SAML output (!66, !69).
      • Explain experimental Pulse support for servers where Juniper oNCP is disabled (!48).
      • Ignore missing Cisco CSD stub and simply CSD subprocess invocation (!77, !74).
      • Pass IDLE_TIMEOUT to vpnc-script (!67).
      • Windows line-ending flexibility for standard input (!78).
      • Disable DTLS for GnuTLS versions between 3.6.3 and 3.6.13 inclusive due to GnuTLS #960.
      • Add RFC6750 Bearer token support (!70).

    • OpenConnect v8.05 (PGP signature) — 2019-09-12
      • Fix GlobalProtect ESP stall (!55).
      • Fix HTTP chunked encoding buffer overflow (CVE-2019-16239).

    • OpenConnect v8.04 (PGP signature) — 2019-08-09
      • Rework DTLS MTU detection. (#10)
      • Add Pulse Connect Secure support.
      • OpenSSL build fixes (!51).
      • Add HMAC-SHA256-128 (RFC4868) support for ESP.
      • Support IPv6 in ESP.
      • Translate user-visible strings from openconnect_get_supported_protocols().
      • Fix proxy username/password handling to allow special characters and escaping.

    • OpenConnect v8.03 (PGP signature) — 2019-05-18
      • Fix detection of utun support on OS X (#18).
      • Fix Cisco DTLSv1.2 support for AES256-GCM-SHA384.
      • Fix Solaris 11.4 build by properly detecting memset_s().
      • Fix recognition of OTP password fields (#24).

    • OpenConnect v8.02 (PGP signature) — 2019-01-16
      • Fix GNU/Hurd build.
      • Discover vpnc-script in default packaged location on FreeBSD/OpenBSD.
      • Support split-exclude routes for GlobalProtect.
      • Fix GnuTLS builds without libtasn1.
      • Fix DTLS support with OpenSSL 1.1.1+.
      • Add Cisco-compatible DTLSv1.2 support.
      • Invoke script with reason=attempt-reconnect before doing so.

    • OpenConnect v8.01 (PGP signature) — 2019-01-05
      • Fix memset_s() arguments.
      • Fix OpenBSD build.

    • OpenConnect v8.00 (PGP signature) — 2019-01-05
      • Clear form submissions (which may include passwords) before freeing (CVE-2018-20319).
      • Allow form responses to be provided on command line.
      • Add support for SSL keys stored in TPM2.
      • Fix ESP rekey when replay protection is disabled.
      • Drop support for GnuTLS older than 3.2.10.
      • Fix --passwd-on-stdin for Windows to not forcibly open console.
      • Fix portability of shell scripts in test suite.
      • Add Google Authenticator TOTP support for Juniper.
      • Add RFC7469 key PIN support for cert hashes.
      • Add protocol method to securely log out the Juniper session.
      • Relax requirements for Juniper hostname packet response to support old gateways.
      • Add API functions to query the supported protocols.
      • Verify ESP sequence numbers and warn even if replay protection is disabled.
      • Add support for PAN GlobalProtect VPN protocol (--protocol=gp).
      • Reorganize listing of command-line options, and include information on supported protocols.
      • SIGTERM cleans up the session similarly to SIGINT.

    • OpenConnect v7.08 (PGP signature) — 2016-12-13
      • Add SHA256 support for server cert hashes.
      • Enable DHE ciphers for Cisco DTLS.
      • Increase initial oNCP configuration buffer size.
      • Reopen CONIN$ when stdin is redirected on Windows.
      • Improve support for point-to-point routing on Windows.
      • Check for non-resumed DTLS sessions which may indicate a MiTM attack.
      • Add TUNIDX environment variable on Windows.
      • Fix compatibility with Pulse Secure 8.2R5.
      • Fix IPv6 support in Solaris.
      • Support DTLS automatic negotiation.
      • Support --key-password for GnuTLS PKCS#11 PIN.
      • Support automatic DTLS MTU detection with OpenSSL.
      • Drop support for combined GnuTLS/OpenSSL build.
      • Update OpenSSL to allow TLSv1.2, improve compatibility options.
      • Remove --no-cert-check option. It was being (mis)used.
      • Fix OpenSSL support for PKCS#11 EC keys without public key.
      • Support for final OpenSSL 1.1 release.
      • Fix polling/retry on "tun" socket when buffers full.
      • Fix AnyConnect server-side MTU setting.
      • Fix ESP replay detection.
      • Allow build with LibreSSL (for fetishists only; do not use this as DTLS is broken).
      • Add certificate torture test suite.
      • Support PKCS#11 PIN via pin-value= and --key-password for OpenSSL.
      • Fix integer overflow issues with ESP packet replay detection.
      • Add --pass-tos option as in OpenVPN.
      • Support rôle selection form in Juniper VPN.
      • Support DER-format certificates, add certificate format torture tests.
      • For OpenSSL >= 1.0.2, fix certificate validation when only an intermediate CA is specified with the --cafile option.
      • Support Juniper "Pre Sign-in Message".

    • OpenConnect v7.07 (PGP signature) — 2016-07-11
      • More fixes for OpenSSL 1.1 build.
      • Support Juniper "Post Sign-in Message".
      • Add --protocol option.
      • Fix ChaCha20-Poly1305 cipher suite to reflect final standard.
      • Add ability to disable IPv6 support via library API.
      • Set groups appropriately when using setuid().
      • Automatic DTLS MTU detection.
      • Support SSL client certificate authentication with Juniper servers.
      • Revamp SSL certificate validation for OpenSSL and stop supporting OpenSSL older than 0.9.8.
      • Fix handling of multiple DNS search domains with Network Connect.
      • Fix handling of large configuration packets for Network Connect.
      • Enable SNI when built with OpenSSL (1.0.1g or later).
      • Add --resolve and --local-hostname options to command line.

    • OpenConnect v7.06 (PGP signature) — 2015-03-17
      • Fix openconnect.pc breakage after liboath removal.
      • Refactor Juniper Network Connect receive loop.
      • Fix some memory leaks.
      • Add Bosnian translation.

    • OpenConnect v7.05 (PGP signature) — 2015-03-10
      • Fix alignment issue which broke LZS compression on ARM etc.
      • Support HTTP authentication to servers, not just proxies.
      • Work around Yubikey issue with non-ASCII passphrase set on pre-KitKat Android.
      • Add SHA256/SHA512 support for OATH.
      • Remove liboath dependency.
      • Support DTLS v1.2 and AES-GCM with OpenSSL 1.0.2.
      • Add OpenSSL 1.0.2 to known-broken releases (RT#3703, RT#3711).
      • Fix build with OpenSSL HEAD (OpenSSL 1.1.x).
      • Preliminary support for Juniper SSL VPN.

    • OpenConnect v7.04 (PGP signature) — 2015-01-25
      • Change default behaviour to enable only stateless compression.
      • Add --compression argument and openconnect_set_compression_mode().
      • Add support for LZS compression (compatible with latest Cisco ASA and ocserv).
      • Add support for LZ4 compression (compatible with ocserv).

    • OpenConnect v7.03 (PGP signature) — 2015-01-09
      • Android build infrastructure updates, including 64-bit support.
      • Clean up handling of incoming packets.
      • Fix issue with two-stage (i.e. NetworkManager) connection to servers with trick DNS (RH#1179681).
      • Stop using static variables for received packets.

    • OpenConnect v7.02 (PGP signature) — 2014-12-19
      • Add PKCS#11 support for OpenSSL.
      • Fix handling of select options in openconnect_set_option_value().

    • OpenConnect v7.01 (PGP signature) — 2014-12-07
      • Try harder to find a PKCS#11 key to match a given certificate.
      • Handle 'Connection: close' from proxies correctly.
      • Warn when MTU is set too low (<1280) to permit IPv6 connectivity.
      • Add support for X-CSTP-DynDNS, to trigger DNS lookup on each reconnect.

    • OpenConnect v7.00 (PGP signature) — 2014-11-27
      • Add support for GnuTLS 3.4 system: keys including Windows certificate store.
      • Add support for HOTP/TOTP keys from Yubikey NEO devices.
      • Add ---no-system-trust option to disable default certificate authorities.
      • Improve libiconv and libintl detection.
      • Stop calling setenv() from library functions.
      • Support utun driver on OS X.
      • Change library API so string ownership is never transferred.
      • Support new NDIS6 TAP-Windows driver shipped with OpenVPN 2.3.4.
      • Support using PSKC (RFC6030) token files for HOTP/TOTP tokens.
      • Support for updating HOTP token storage when token is used.
      • Support for reading OTP token data from a file.
      • Add full character set handling for legacy non-UTF8 systems (including Windows).
      • Fix legacy (i.e. not XML POST) submission of non-ASCII form entries (even in UTF-8 locales).
      • Add support for 32-bit Windows XP.
      • Avoid retrying without XML POST, when we failed to even reach the server.
      • Fix off-by-one in parameter substitution in error messages.
      • Improve reporting when GSSAPI auth requested but not compiled in.
      • Fix parsing of split include routes on Windows.
      • Fix crash on invocation with --token-mode but no --token-secret.

    • OpenConnect v6.00 (PGP signature) — 2014-07-08
      • Support SOCKS proxy authentication (password, GSSAPI).
      • Support HTTP proxy authentication (Basic, Digest, NTLM and GSSAPI).
      • Download XML profile in XML POST mode.
      • Fix a couple of bugs involving DTLS rekeying.
      • Fix problems seen when building or connecting without DTLS enabled.
      • Fix tun error handling on Windows hosts.
      • Skip password prompts when using PKCS#8 and PKCS#12 certificates with empty passwords.
      • Fix several minor memory leaks and error paths.
      • Update several Android dependencies, and make the download process more robust.

    • OpenConnect v5.99 (PGP signature) — 2014-03-05
      • Add RFC4226 HOTP token support.
      • Tolerate servers closing connection uncleanly after HTTP/1.0 response (Ubuntu #1225276).
      • Add support for IPv6 split tunnel configuration.
      • Add Windows support with MinGW (tested with both IPv6 and Legacy IP with latest vpnc-script-win.js)
      • Change library API to support updating the auth form when the authgroup is changed (Ubuntu #1229195).
      • Change --os mac to --os mac-intel, to match the identifier used by Cisco clients.
      • Add new API functions to support invoking the VPN mainloop directly from an application.
      • Add JNI interface and sample Java application.
      • Fix junk in --cookieonly output when CSD is enabled.
      • Enable TOTP, stoken, and JNI support in the Android builds.
      • Add --pfs option to enforce perfect forward secrecy.
      • Enable elliptic curves with GnuTLS 3.2.9+, where there is a workaround for certain firewalls that fail with client hellos between 256 and 512 bytes.
      • Add padding when sending password, to avoid leakage of password and username length.
      • Add support for DTLS 1.2 and AES-GCM when connecting to ocserv.
      • Add support for server name indication when compiled with GnuTLS 3.2.9+.

    • OpenConnect v5.03 (PGP signature) — 2014-02-03
      • Fix crash on --authenticate due to freeing --cafile option in argv.

    • OpenConnect v5.02 (PGP signature) — 2014-01-01
      • Fix XML POST issues with authgroups by falling back to old style login.
      • Fix --cookie-on-stdin with cookies from ocserv.
      • Fix reconnection to wrong host after redirect.
      • Reduce limit of queued packets on DTLS socket, to fix VoIP latency.
      • Fix Solaris build breakage due to missing &lt;string.h&gt; includes.
      • Include path in &lt;group-access&gt; node.
      • Include supporting CA certificates from PKCS#11 tokens (with GnuTLS 3.2.7+).
      • Fix possible heap overflow if MTU is increased on reconnection (CVE-2013-7098).

    • OpenConnect v5.01 (PGP signature) — 2013-06-01
      • Attempt to handle &lt;client-cert-request&gt; in aggregate auth mode.
      • Don't include X-Aggregate-Auth: header in fallback mode.
      • Enable AES256 mode for DTLS with GnuTLS (RH#955710).
      • Add --dump-http-traffic option for debugging.
      • Be more permissive in parsing XML forms.
      • Use original URL when falling back to non-XML POST mode.
      • Add --no-xmlpost option to revert to older, compatible behaviour.
      • Close connection before falling back to non-xmlpost mode (RH#964650).
      • Improve error handling when server closes connection (Debian #708928).

    • OpenConnect v5.00 (PGP signature) — 2013-05-15
      • Use GnuTLS by default instead of OpenSSL.
      • Avoid using deprecated gnutls_pubkey_verify_data() function.
      • Fix compatibility issues with XML POST authentication.
      • Fix memory leaks on realloc() failure.
      • Fix certificate validation problem caused by hostname canonicalisation.
      • Add RFC6238 TOTP token support using liboath.
      • Replace --stoken option with more generic --token-mode and --token-secret options.

    • OpenConnect v4.99 (PGP signature) — 2013-02-07
      • Add --os switch to report a different OS type to the gateway.
      • Support new XML POST format.
      • Add SecurID token support using libstoken.

    • OpenConnect v4.08 (PGP signature) — 2013-02-13
      • Fix overflow on HTTP request buffers (CVE-2012-6128)
      • Fix connection to servers with round-robin DNS with two-stage auth/connect.
      • Impose minimum MTU of 1280 bytes.
      • Fix some harmless issues reported by Coverity.
      • Improve "Attempting to connect..." message to be explicit when it's connecting to a proxy.

    • OpenConnect v4.07 (PGP signature) — 2012-08-31
      • Fix segmentation fault when invoked with -p argument.
      • Fix handling of write stalls on CSTP (TCP) socket.

    • OpenConnect v4.06 (PGP signature) — 2012-07-23
      • Fix default CA location for non-Fedora systems with old GnuTLS.
      • Improve error handing when vpnc-script exits with error.
      • Handle PKCS#11 tokens which won't list keys without login.

    • OpenConnect v4.05 (PGP signature) — 2012-07-12
      • Use correct CSD script for Mac OS X.
      • Fix endless loop in PIN cache handling with multiple PKCS#11 tokens.
      • Fix PKCS#11 URI handling to preserve all attributes.
      • Don't forget key password on GUI reconnect.
      • Fix GnuTLS v3 build on OpenBSD.

    • OpenConnect v4.04 (PGP signature) — 2012-07-05
      • Fix GnuTLS password handling for PKCS#8 files.

    • OpenConnect v4.03 (PGP signature) — 2012-07-02
      • Fix --no-proxy option.
      • Fix handling of requested vs. received MTU settings.
      • Fix DTLS MTU for GnuTLS 3.0.21 and newer.
      • Support more ciphers for OpenSSL encrypted PEM keys, with GnuTLS.
      • Fix GnuTLS compatibility issue with servers that insist on TLSv1.0 or non-AES ciphers (RH#836558).

    • OpenConnect v4.02 (PGP signature) — 2012-06-28
      • Fix build failure due to unconditional inclusion of &lt;gnutls/dtls.h&gt;.

    • OpenConnect v4.01 (PGP signature) — 2012-06-28
      • Fix DTLS MTU issue with GnuTLS.
      • Fix reconnect crash when compression is disabled.
      • Fix build on systems like FreeBSD 8 without O_CLOEXEC.
      • Add --dtls-local-port option.
      • Print correct error when /dev/net/tun cannot be opened.
      • Fix openconnect.pc pkg-config file not to require zlib.pc on systems which lack it (like RHEL5).

    • OpenConnect v4.00 (PGP signature) — 2012-06-20
      • Add support for OpenSSL's odd encrypted PKCS#1 files, for GnuTLS.
      • Fix repeated passphrase retry for OpenSSL.
      • Add keystore support for Android.
      • Support TPM, and also additional checks on PKCS#11 certs, even with GnuTLS 2.12.
      • Fix library references to OpenSSL's ERR_print_errors_cb() when built against GnuTLS v2.12.

    • OpenConnect v3.99 (PGP signature) — 2012-06-13
      • Enable native TPM support when built with GnuTLS.
      • Enable PKCS#11 token support when built with GnuTLS.
      • Eliminate all SSL library exposure through libopenconnect.
      • Parse split DNS information, provide $CISCO_SPLIT_DNS environment variable to vpnc-script.
      • Attempt to provide new-style MTU information to server (on Linux only, unless specified on command line).
      • Allow building against GnuTLS, including DTLS support.
      • Add --with-pkgconfigdir= option to configure for FreeBSD's benefit (fd#48743).

    • OpenConnect v3.20 (PGP signature) — 2012-05-18
      • Cope with non-keepalive HTTP response on authentication success.
      • Fix progress callback with incorrect cbdata which caused KDE crash.

    • OpenConnect v3.19 (PGP signature) — 2012-05-17
      • Add --config option for reading options from file.
      • Improve OpenSSL DTLS compatibility to work on Ubuntu 10.04.
      • Flush progress logging output promptly after each message.
      • Add symbol versioning for shared library (on sane platforms).
      • Add openconnect_set_cancel_fd() function to allow clean cancellation.
      • Fix corruption of URL in openconnect_parse_url() if it specifies a port number.
      • Fix inappropriate exit() calls from library code.
      • Library namespace cleanup — all symbols now have the prefix openconnect_ on platforms where symbol versioning works.
      • Fix --non-inter option so it still uses login information from command line.

    • OpenConnect v3.18 (PGP signature) — 2012-04-25
      • Fix autohate breakage with --disable-nls... hopefully.
      • Fix buffer overflow in banner handling.

    • OpenConnect v3.17 (PGP signature) — 2012-04-20
      • Work around time() brokenness on Solaris.
      • Fix interface plumbing on Solaris 10.
      • Provide asprintf() function for (unpatched) Solaris 10.
      • Make vpnc-script mandatory, like it is for vpnc
      • Don't set Legacy IP address on tun device; let vpnc-script do it.
      • Detect OpenSSL even without pkg-config.
      • Stop building static library by default.
      • Invoke vpnc-script with "pre-init" reason to load tun module if necessary.

    • OpenConnect v3.16 (PGP signature) — 2012-04-08
      • Fix build failure on Debian/kFreeBSD and Hurd.
      • Fix memory leak of deflated packets.
      • Fix memory leak of zlib state on CSTP reconnect.
      • Eliminate memcpy() calls on packets from DTLS and tunnel device.
      • Use I_LINK instead of I_PLINK on Solaris to plumb interface for Legacy IP.
      • Plumb interface for IPv6 on Solaris, instead of expecting vpnc-script to do it.
      • Refer to vpnc-script and help web pages in openconnect output.
      • Fix potential crash when processing libproxy results.
      • Be more conservative in detecting libproxy without pkg-config.

    • OpenConnect v3.15 (PGP signature) — 2011-11-25
      • Fix for reading multiple packets from Solaris tun device.
      • Call bindtextdomain() to ensure that translations are found in install path.

    • OpenConnect v3.14 (PGP signature) — 2011-11-08
      • Move executable to $prefix/sbin.
      • Fix build issues on OSX, OpenIndiana, DragonFlyBSD, OpenBSD, FreeBSD &amp; NetBSD.
      • Fix non-portable (void *) arithmetic.
      • Make more messages translatable.
      • Attempt to make NLS support more portable (with fewer dependencies).

    • OpenConnect v3.13 (PGP signature) — 2011-09-30
      • Add --cert-expire-warning option.
      • Give visible warning when server dislikes client SSL certificate.
      • Add localisation support.
      • Fix build on Debian systems where dtls1_stop_timer() is not available.
      • Fix libproxy detection.
      • Enable a useful set of compiler warnings by default.
      • Fix various minor compiler warnings.

    • OpenConnect v3.12 — 2011-09-12
      • Fix DTLS compatibility with ASA firmware 8.4.1(11) and above.
      • Fix build failures on GNU Hurd, on systems with ancient OpenSSL, and on Debian.
      • Add --pid-file option.
      • Print SHA1 fingerprint with server certificate details.

    • OpenConnect v3.11 — 2011-07-20
      • Add Android.mk file for Android build support
      • Add logging support for Android, in place of standard syslog().
      • Switch back to using TLSv1, but without extensions.
      • Make TPM support optional, dependent on OpenSSL ENGINE support.

    • OpenConnect v3.10 — 2011-06-30
      • Switch to using GNU autoconf/automake/libtool.
      • Produce shared library for authentication.
      • Improve library API to make life easier for C++ users.
      • Be more explicit about requiring pkg-config.
      • Invoke script with reason=reconnect on CSTP reconnect.
      • Add --non-inter option to avoid all user input.

    • OpenConnect v3.02 — 2011-04-19
      • Install man page in make install target.
      • Add openconnect_vpninfo_free() to libopenconnect.
      • Clear cached peer_addr to avoid reconnecting to wrong host.

    • OpenConnect v3.01 — 2011-03-09
      • Add libxml2 to pkg-config requirements.

    • OpenConnect v3.00 — 2011-03-09
      • Create libopenconnect.a for GUI authentication dialog to use.
      • Remove auth-dialog, which now lives in the network-manager-openconnect package.
      • Cope with more entries in authentication forms.
      • Add --csd-wrapper option to wrap CSD trojan.
      • Report error and abort if CA file cannot be opened.

    • OpenConnect v2.26 — 2010-09-22
      • Fix potential crash on relative HTTP redirect.
      • Use correct TUN/TAP device node on Android.
      • Check client certificate expiry date.
      • Implement CSTP and DTLS rekeying (both by reconnecting CSTP).
      • Add --force-dpd option to set minimum DPD interval.
      • Don't print webvpn cookie in debug output.
      • Fix host selection in NetworkManager auth dialog.
      • Use SSLv3 instead of TLSv1; some servers (or their firewalls) don't accept any ClientHello options.
      • Never include address family prefix on script-tun connections.

    • OpenConnect v2.25 — 2010-05-15
      • Always validate server certificate, even when no extra --cafile is provided.
      • Add --no-cert-check option to avoid certificate validation.
      • Check server hostname against its certificate.
      • Provide text-mode function for reviewing and accepting "invalid" certificates.
      • Fix libproxy detection on NetBSD.

    • OpenConnect v2.24 — 2010-05-07
      • Forget preconfigured password after a single attempt; don't retry infinitely if it's failing.
      • Set $CISCO_BANNER environment variable when running script.
      • Better handling of passphrase failure on certificate files.
      • Fix NetBSD build (thanks to Pouya D. Tafti).
      • Fix DragonFly BSD build.

    • OpenConnect v2.23 — 2010-04-09
      • Support "Cisco Secure Desktop" trojan in NetworkManager auth-dialog.
      • Support proxy in NetworkManager auth-dialog.
      • Add --no-http-keepalive option to work around Cisco's incompetence.
      • Fix build on Debian/kFreeBSD.
      • Fix crash on receiving HTTP 404 error.
      • Improve workaround for server certificates lacking SSL_SERVER purpose, so that it also works with OpenSSL older than 0.9.8k.

    • OpenConnect v2.22 — 2010-03-07
      • Fix bug handling port numbers above 9999.
      • Ignore "Connection: Keep-Alive" in HTTP/1.0 to work around server bug with certificate authentication.
      • Handle non-standard port (and full URLs) when used with NetworkManager.
      • Cope with relative redirect and form URLs.
      • Allocate HTTP receive buffer dynamically, to cope with arbitrary size of content.
      • Fix server cert SHA1 comparison to be case-insensitive.
      • Fix build on Solaris and OSX (strndup(), AI_NUMERICSERV).
      • Fix exit code with --background option.

    • OpenConnect v2.21 — 2010-01-10
      • Fix handling of HTTP 1.0 responses with keepalive (RH#553817).
      • Fix case sensitivity in HTTP headers and hostname comparison on redirect.

    • OpenConnect v2.20 — 2010-01-04
      • Fix use-after-free bug in NetworkManager authentication dialog (RH#551665).
      • Allow server to be specified with https:// URL, including port and pathname (which Cisco calls 'UserGroup')
      • Support connection through HTTP and SOCKS proxies.
      • Handle HTTP redirection with port numbers.
      • Handle HTTP redirection with IPv6 literal addresses.

    • OpenConnect v2.12 — 2009-12-07
      • Fix buffer overflow when generating useragent string.
      • Cope with idiotic schizoDNS configurations by not repeating DNS lookup for VPN server on reconnects.
      • Support DragonFlyBSD. Probably.

    • OpenConnect v2.11 — 2009-11-17
      • Add IPv6 support for FreeBSD.
      • Support "split tunnel" mode for IPv6 routing.
      • Fix bug where client certificate's MD5 was only given to the CSD trojan if a PKCS#12 certificate was used.

    • OpenConnect v2.10 — 2009-11-04
      • OpenSolaris support.
      • Preliminary support for IPv6 connectivity.
      • Fix session shutdown on exit.
      • Fix reconnection when TCP connection is closed.
      • Support for "Cisco Secure Desktop" idiocy.
      • Allow User-Agent: to be specified on command line.
      • Fix session termination on disconnect.
      • Fix recognition of certificates from OpenSSL 1.0.0.

    • OpenConnect v2.01 — 2009-06-24
      • Fix bug causing loss of DTLS (and lots of syslog spam about it) after a CSTP reconnection.
      • Don't apply OpenSSL certificate chain workaround if we already have "extra" certificates loaded (e.g. from a PKCS#12 file).
      • Load "extra" certificates from .pem files too.
      • Fix SEGV caused by freeing certificates after processing cert chain.

    • OpenConnect v2.00 — 2009-06-03
      • Add OpenBSD and FreeBSD support.
      • Build with OpenSSL-0.9.7 (Mac OS X, OpenBSD, etc.)
      • Support PKCS#12 certificates.
      • Automatic detection of certificate type (PKCS#12, PEM, TPM).
      • Work around OpenSSL trust chain issues (RT#1942).
      • Allow PEM passphrase to be specified on command line.
      • Allow PEM passphrase automatically generated from the fsid of the file system on which the certificate is stored.
      • Fix certificate comparisons (in NM auth-dialog and --servercert option) to use SHA1 fingerprint, not signature.
      • Fix segfault in NM auth-dialog when changing hosts.

    • OpenConnect v1.40 — 2009-05-27
      • Fix validation of server's SSL certificate when NetworkManager runs openconnect as an unprivileged user (which can't read the real user's trust chain file).
      • Fix double-free of DTLS Cipher option on reconnect.
      • Reconnect on SSL write errors
      • Fix reporting of SSL errors through syslog/UI.

    • OpenConnect v1.30 — 2009-05-13
      • NetworkManager auth-dialog will now cache authentication form options.

    • OpenConnect v1.20 — 2009-05-08
      • DTLS cipher choice fixes.
      • Improve handling of authentication group selection.
      • Export more information to connection script.
      • Add --background option to dæmonize after connection.
      • Detect TCP connection closure.

    • OpenConnect v1.10 — 2009-04-01
      • NetworkManager UI rewrite with many improvements.
      • Support for "UserGroups" where a single server offers multiple configurations according to the URL used to connect.

    • OpenConnect v1.00 — 2009-03-18
      • First non-beta release.
     openconnect-8.20/www/menu2.xml0000644000076400007640000000100414040533771020123 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/www/manual.xml0000644000076400007640000000051514176202121020350 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/www/styles/0000755000076400007640000000000014204510554017677 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/www/styles/main.css0000644000076400007640000000560614176202121021340 0ustar00dwoodhoudwoodhou00000000000000body { background: white; font-family: 'Raleway', Sans, Arial, Helvetica, Geneva, Swiss, SunSans-Regular; font-size: 12px; } #logo { text-align: right; margin: 0; } #main { margin: 0; border-left-style: double; border-bottom-style: double; border-color: #1414a6; border-left-width: 5px; border-bottom-width: 5px; min-width: 70em; } #menu1 { margin: 0; padding-left: 20px; background: #1414a6; height: 2.2em; } #menu1 p { color: white; font-size: 14px; text-align: right; vertical-align: middle; padding-right: 10px; padding-top: 0.2em; } #menu1 .nonsel a { color: black; float: left; background: url(../images/left.png) top left no-repeat #b3b3b3; margin-top: 0.2em; margin-left: 5px; padding-top: 0.2em; height: 1.8em; text-decoration: none; } #menu1 .nonsel a span { background: url(../images/right.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu1 .nonsel a:hover { background: url(../images/leftsel.png) top left no-repeat #e6e6e6; } #menu1 .nonsel a:hover span { color: Black; text-decoration: underline; background: url(../images/rightsel.png) top right no-repeat transparent; } #menu1 .sel a { color: black; float: left; padding-top: 0.2em; background: url(../images/leftsel.png) top left no-repeat #e6e6e6; margin-top: 0.2em; margin-left: 5px; height: 2em; text-decoration: none; } #menu1 .sel a span { background: url(../images/rightsel.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu2 { background: #e6e6e6; height: 2.3em; border-bottom-style: solid; border-color: #1414a6; border-bottom-width: 1px; } #menu2 .nonsel a { color: black; float: left; background: url(../images/left2.png) top left no-repeat #b3b3b3; margin-top: 0.2em; margin-left: 5px; padding-top: 0.2em; height: 1.8em; text-decoration: none; } #menu2 .nonsel a span { background: url(../images/right2.png) top right no-repeat transparent; padding: 0.2em 1em 0 1em; } #menu2 .nonsel a:hover { background: url(../images/leftsel2.png) top left no-repeat #e6e6e6; } #menu2 .nonsel a:hover span { color: Black; text-decoration: underline; background: url(../images/rightsel2.png) top right no-repeat transparent; } #menu2 .sel a { color: black; float: left; padding: 0.2em 1em 0 1em; margin-top: 0.2em; margin-left: 0px; height: 2em; text-decoration: none; } #textbox { margin-left: 20px; margin-bottom: 20px; margin-right: 20px; margin-top: 20px; padding-top: 20px; padding-left: 20px; padding-right: 120px; padding-bottom: 20px; font-size: 14px; } #text { margin: 0; border-color: #e6e6e6; font-size: 14px; background: #ffffff; } #text a { color: blue; text-decoration: none; } #text a:hover { text-decoration: underline; } openconnect-8.20/www/styles/Makefile.am0000644000076400007640000000010214176202121021720 0ustar00dwoodhoudwoodhou00000000000000stylesdatadir = $(htmldir)/styles dist_stylesdata_DATA = main.css openconnect-8.20/www/styles/Makefile.in0000644000076400007640000004222514204505636021756 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.2 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2020 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/styles ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(dist_stylesdata_DATA) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(stylesdatadir)" DATA = $(dist_stylesdata_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CREATE_TPM2_KEY = @CREATE_TPM2_KEY@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ JSON_CFLAGS = @JSON_CFLAGS@ JSON_LIBS = @JSON_LIBS@ JSON_PC = @JSON_PC@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAKENSIS = @MAKENSIS@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PPPD = @PPPD@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SOCAT = @SOCAT@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SWTPM = @SWTPM@ SWTPM_IOCTL = @SWTPM_IOCTL@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_SETENV = @SYMVER_WIN32_SETENV@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2TSS_GENKEY = @TPM2TSS_GENKEY@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TPM2_STARTUP = @TPM2_STARTUP@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSSTARTUP = @TSSTARTUP@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ WINTUN_ARCH = @WINTUN_ARCH@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ have_curl = @have_curl@ have_unzip = @have_unzip@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ runstatedir = @runstatedir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ stylesdatadir = $(htmldir)/styles dist_stylesdata_DATA = main.css all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/styles/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/styles/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_stylesdataDATA: $(dist_stylesdata_DATA) @$(NORMAL_INSTALL) @list='$(dist_stylesdata_DATA)'; test -n "$(stylesdatadir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(stylesdatadir)'"; \ $(MKDIR_P) "$(DESTDIR)$(stylesdatadir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(stylesdatadir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(stylesdatadir)" || exit $$?; \ done uninstall-dist_stylesdataDATA: @$(NORMAL_UNINSTALL) @list='$(dist_stylesdata_DATA)'; test -n "$(stylesdatadir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(stylesdatadir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(stylesdatadir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_stylesdataDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_stylesdataDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_stylesdataDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_stylesdataDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.20/www/gui.xml0000644000076400007640000000237114067426206017674 0ustar00dwoodhoudwoodhou00000000000000

    GUI Tools for OpenConnect

    NetworkManager

    Support for OpenConnect in NetworkManager has been integrated into GNOME git and is released alongside NetworkManager's other VPN modules: https://download.gnome.org/sources/NetworkManager-openconnect/.

    OpenConnect is also supported in KDE Plasma NM as well as the older widget-based NetworkManagement applet.

    ConnMan

    ConnMan has core OpenConnect functionality as from version 0.48, and the corresponding support is also in the meego-panel-networks user interface. Other ConnMan UI front ends may lack VPN support.

    OpenConnect-gui

    OpenConnect-gui is a graphical (Windows and MacOSX) port of OpenConnect.

     openconnect-8.20/www/Makefile.am0000644000076400007640000000302714176202121020406 0ustar00dwoodhoudwoodhou00000000000000# SUBDIRS = styles inc images CONV = "$(srcdir)/html.py" FTR_PAGES = csd.html charset.html token.html pkcs11.html tpm.html features.html gui.html nonroot.html hip.html tncc.html START_PAGES = building.html connecting.html manual.html vpnc-script.html INDEX_PAGES = changelog.html download.html index.html packages.html platforms.html licence.html PROTO_PAGES = protocols.html anyconnect.html array.html fortinet.html f5.html globalprotect.html juniper.html pulse.html CONTR_PAGES = contribute.html mitm.html TOPLEVEL_PAGES = mail.html ALL_PAGES = $(FTR_PAGES) $(START_PAGES) $(INDEX_PAGES) $(TOPLEVEL_PAGES) $(PROTO_PAGES) $(CONTR_PAGES) html_DATA = $(ALL_PAGES) .xml.html: $(PYTHON) $(CONV) -d $(srcdir) $< > $@ || (rm $@; exit 1) clean-local: rm -f $(ALL_PAGES) openconnect.8.inc $(ALL_PAGES): menu1.xml $(srcdir)/inc/*.tmpl $(FTR_PAGES): menu2-features.xml $(START_PAGES): menu2-started.xml $(PROTO_PAGES): menu2-protocols.xml $(CONTR_PAGES): menu2-contribute.xml $(MAIN_PAGES): menu2.xml manual.html: openconnect.8.inc $(top_builddir)/openconnect.8: $(top_srcdir)/openconnect.8.in $(top_builddir)/config.status cd $(top_builddir) && $(SHELL) ./config.status openconnect.8 # If this command line ever changes significantly, so should the # corresponding autoconf check. openconnect.8.inc: $(top_builddir)/openconnect.8 $(GROFF) -t -K UTF-8 -mandoc -Txhtml $? | \ sed -e 's/−/-/g' -e '1,//d' -e '/<\/body>/,$$d' > $@ EXTRA_DIST = $(patsubst %.html,%.xml,$(ALL_PAGES)) $(srcdir)/menu1.xml $(srcdir)/menu2*.xml $(srcdir)/html.py openconnect-8.20/www/hip.xml0000644000076400007640000001023714062600131017652 0ustar00dwoodhoudwoodhou00000000000000

    PAN GlobalProtect HIP

    The HIP ('Host Integrity Protection') mechanism is a security scanner for the PAN GlobalProtect VPNs, in the same vein as Cisco's CSD and Juniper's Host Checker (tncc.jar).

    How it works

    It is somewhat less intrusive than CSD or TNCC, because it does not appear to work by downloading a trojan binary from the VPN server. Instead, it runs a HIP report generator (built-in as part of the official GlobalProtect VPN client software), which generates an "HIP report" XML file.

    HIP flow used in the official clients:

    1. Client authenticates and fetches the tunnel configuration from the GlobalProtect gateway.
    2. Client runs HIP report generator and computes MD5 digest of report.
    3. Client checks whether a HIP report is required (/ssl-vpn/hipreportcheck.esp), including its MD5 digest and gateway-assigned IP address in the report.
    4. Gateway responds whether or not a HIP report is required (normally, it doesn't require a new one if a report with the same MD5 digest and same IP address have been submitted recently).
    5. Client uploads the complete HIP report to (/ssl-vpn/hipreport.esp).
    6. Server confirms acceptance of HIP report with a success message.

    If all goes well, the client should have the expected level of access to resources on the network after these steps are complete. However, two things can go wrong:

    • Many GlobalProtect servers report that they require HIP reports (#3 above), but don't actually enforce this requirement. (For this reason, OpenConnect does not currently fail if a HIP report is required but no HIP report script is provided.)
    • Many GlobalProtect servers will claim that the HIP report was accepted successfully (#6 above) but silently fail to enable the expected network access, presumably because some aspect of the HIP report contents were not approved.

    HIP support in OpenConnect

    OpenConnect supports HIP report generation and submission by passing the --csd-wrapper=SCRIPT argument with a shell script to generate a HIP report in the format expected by the server. This shell script must output the HIP report to standard output and exit successfully (status code 0). The HIP script is called with the following command-line arguments:

       --cookie: a URL-encoded string, as output by openconnect
             --authenticate --protocol=gp, which includes parameters
             --from the /ssl-vpn/login.esp response

   --client-ip{,v6}: IPv4/6 addresses allocated by the GlobalProtect
                     VPN for this client (included in
                     /ssl-vpn/getconfig.esp response)

   --md5: The md5 digest to encode into this HIP report. All that
          really matters is that the value in the HIP report
          submission should match the value in the HIP report check.

    Generating/spoofing a HIP report

    Two example scripts are included in the OpenConnect distribution, in the trojans/ subdirectory: hipreport.sh (which reproduces the behavior of a GlobalProtect Windows client) and hipreport-android.sh (a report with minimal contents suitable for use on an Android device).

    Depending on how picky your GlobalProtect VPN is, it may be necessary to spoof or alter some of the parameters of the HIP report to match the output of one of the official clients. In order to capture the contents of the official Windows client's HIP reports, enable the highest logging level for the "PanGPS Service", and then sift through the giant PanGPS.log file (which should be in the same directory as the executables, normally c:\Program Files\PaloAlto Networks\GlobalProtect) to find the HIP report submission.

     openconnect-8.20/www/pkcs11.xml0000644000076400007640000002632714176202121020206 0ustar00dwoodhoudwoodhou00000000000000

    Smart Card / PKCS#11 support

    OpenConnect supports the use of X.509 certificates and keys from smart cards (as well as software storage such as GNOME Keyring and SoftHSM) by means of the PKCS#11 standard. Objects from PKCS#11 tokens are specified by a PKCS#11 URI according to RFC 7512.

    In order to use a certificate or key with OpenConnect, you must provide a PKCS#11 URI which identifies it sufficiently. That can be as simple as the following example:

    • openconnect -c pkcs11:id=%01 vpn.example.com
    However, if you're now looking blankly at a USB crypto device and wondering what PKCS#11 URI to use, the following documentation should hopefully assist you in working it out.

    Identifying the token

    In order to use a PKCS#11 token with OpenConnect, first it must be installed appropriately in the system's p11-kit configuration. You shouldn't need to worry about this; it should automatically be the case for properly packaged software on any modern operating system.

    Typically, the smart card support is likely to be provided by OpenSC and a distribution's packaging of OpenSC should automatically have registered the OpenSC module with p11-kit by creating a file such as /usr/share/p11-kit/modules/opensc.module.

    In order to query the available PKCS#11 modules, and the certificates stored therein, the best tool to use is the p11tool distributed with GnuTLS. In Fedora it's in the gnutls-utils package.

    First identify the PKCS#11 modules which are available by using the --list-tokens option:

    • p11tool --list-tokens
    This should produce output including something like the following: 
    Token 7:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29
	Label: PIV_II (PIV Card Holder pin)
	Type: Hardware token
	Manufacturer: piv_II
	Model: PKCS#15 emulated
	Serial: 108421384210c3f5

    This example shows the relatively common PIV SmartCard, in this case in a Yubikey NEO device.

    Locating the certificate

    Having established that the token is present and registered correctly with p11-kit, the next step is to identify the URI of the certificate you wish to use. You will note that the above output of p11tool --list-tokens gave a PKCS#11 URI for each token. With that, we can now query the objects available within a specific token, using the --list-all-certs option. We can cut and paste the PKCS#11 URI for the token, but be careful to put it within quotes because it contains semicolons:

    • p11tool --list-all-certs 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29'

    Note that the PKCS#11 URI specifies a list of attributes which must match. Some of these match criteria may be redundant — in this case we've asked it to list the certificates in a token which has a model of "PKCS#15 emulated" and a manufacturer of "piv_II" and serial number 108421384210c3f5 and token label "PIV_II (PIV Card Holder pin)". Since any one of those criteria would probably be sufficient to uniquely identify this token from the other configured tokens in our system, a simpler command line would also work. For example:

    • p11tool --list-all-certs pkcs11:manufacturer=piv_II
    The output of either such command should look something like this: 
    Object 0:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for PIV Authentication
	ID: 01

Object 1:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%02;object=Certificate%20for%20Digital%20Signature;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Digital Signature
	ID: 02

Object 2:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%03;object=Certificate%20for%20Key%20Management;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Key Management
	ID: 03

Object 3:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%04;object=Certificate%20for%20Card%20Authentication;object-type=cert
	Type: X.509 Certificate
	Label: Certificate for Card Authentication
	ID: 04

    This device has four certificates installed; the URL for each one is given in the output. (Choosing between the certificates on a given device, if there is more than one, is left as an exercise for the user. You may need to try each one.)

    Some devices may not even permit you to list the certificates without logging in. In that case add --login to the p11tool command line above, and provide the PIN when requested

    For OpenConnect 7.01 we should be able to use the URI seen here in its entirety, and the software will be cunning enough to find the corresponding key:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert' vpn.example.com
    Older versions, however, may require a little help...

    Helping OpenConnect find the key

    If no explicit -k argument is given to specify the key, OpenConnect will use the contents of the -c argument as the basis for finding both certificate and key.

    It will sensibly add object-type=cert or object-type=private for itself, according to which object it is trying to locate each time. But in version 7.00 and earlier, it would not do that if the URI you provide already contained any object-type= element. So the first thing you need to do with older versions of OpenConnect is trim that part of the URI. So the above example might now be:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication' vpn.example.com

    Additionally, it can sometimes be the case that although the ID (id=) for a certificate should match the ID of its matching key, the label (object=) might not match. Newer versions of OpenConnect (7.01+), on failing to find a key, will strip the label from the search URI and add the ID of the certificate that was found (even if no ID was part of the original search terms provided with the -c option). But older versions don't.

    So it can be useful also to remove the object= part of the URI and leave only the id= attribute to specify the individual object, so that you're giving search criteria which are true for both the certificate and the key:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01' vpn.example.com

    And while we're at it, that's still a massively redundant way of specifying which token to look in, so we can cut that down as we did before just to make it less unwieldy:

    • openconnect -c 'pkcs11:manufacturer=piv_II;id=%01' vpn.example.com

    Searching for the key manually

    If the heuristics for finding the key don't work, you can always provide an explicit PKCS#11 URI for the key with the -k option. You can look for them by using the --list-privkeys option to p11tool. You will almost certainly want to use the --login option too:

    • p11tool --list-privkeys --login pkcs11:manufacturer=piv_II
    Token 'PIV_II (PIV Card Holder pin)' with URL 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29' requires user PIN
Enter PIN:
Object 0:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=PIV%20AUTH%20key;object-type=private
	Type: Private key
	Label: PIV AUTH key
	Flags: CKA_WRAP/UNWRAP; CKA_PRIVATE; CKA_SENSITIVE;
	ID: 01

Object 1:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%02;object=SIGN%20key;object-type=private
	Type: Private key
	Label: SIGN key
	Flags: CKA_PRIVATE; CKA_SENSITIVE;
	ID: 02

Object 2:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%03;object=KEY%20MAN%20key;object-type=private
	Type: Private key
	Label: KEY MAN key
	Flags: CKA_WRAP/UNWRAP; CKA_PRIVATE; CKA_SENSITIVE;
	ID: 03

Object 3:
	URL: pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%04;object=CARD%20AUTH%20key;object-type=private
	Type: Private key
	Label: CARD AUTH key
	Flags: CKA_SENSITIVE;
	ID: 04

    Here's the full longhand specification of both certificate and key:

    • openconnect -c 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=Certificate%20for%20PIV%20Authentication;object-type=cert' -k 'pkcs11:model=PKCS%2315%20emulated;manufacturer=piv_II;serial=108421384210c3f5;token=PIV_II%20%28PIV%20Card%20Holder%20pin%29;id=%01;object=PIV%20AUTH%20key;object-type=private' vpn.example.com
    OpenConnect doesn't care; you can use certificate and key from entirely different hardware tokens if you want to. Or one from a file. Or a key from a TPM and a certificate from a PKCS#11 hardware token. Or all kinds of bizarre combinations. But if it's a sensible combination on a sanely configured PKCS#11 token, and OpenConnect can't infer the key location from the certificate, then please send us an email and we'll try to fix it.

     openconnect-8.20/www/protocols.xml0000644000076400007640000000414414067426206021134 0ustar00dwoodhoudwoodhou00000000000000

    Protocols

    OpenConnect was initially created to support Cisco's AnyConnect SSL VPN. This remains the default protocol used by the client, if not otherwise specified. See the --protocol option for how to use a different protocol with the command-line client.

    The following pages document protocol-specific features and deficiencies:

     openconnect-8.20/www/Makefile.in0000644000076400007640000006126714204505636020442 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.2 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2020 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ # VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = RECURSIVE_TARGETS = all-recursive check-recursive cscopelist-recursive \ ctags-recursive dvi-recursive html-recursive info-recursive \ install-data-recursive install-dvi-recursive \ install-exec-recursive install-html-recursive \ install-info-recursive install-pdf-recursive \ install-ps-recursive install-recursive installcheck-recursive \ installdirs-recursive pdf-recursive ps-recursive \ tags-recursive uninstall-recursive am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(htmldir)" DATA = $(html_DATA) RECURSIVE_CLEAN_TARGETS = mostlyclean-recursive clean-recursive \ distclean-recursive maintainer-clean-recursive am__recursive_targets = \ $(RECURSIVE_TARGETS) \ $(RECURSIVE_CLEAN_TARGETS) \ $(am__extra_recursive_targets) AM_RECURSIVE_TARGETS = $(am__recursive_targets:-recursive=) TAGS CTAGS \ distdir distdir-am am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) # Read a list of newline-separated strings from the standard input, # and print each of them once, without duplicates. Input order is # *not* preserved. am__uniquify_input = $(AWK) '\ BEGIN { nonempty = 0; } \ { items[$$0] = 1; nonempty = 1; } \ END { if (nonempty) { for (i in items) print i; }; } \ ' # Make sure the list of sources is unique. This is necessary because, # e.g., the same source file might be shared among _SOURCES variables # for different programs/libraries. am__define_uniq_tagged_files = \ list='$(am__tagged_files)'; \ unique=`for i in $$list; do \ if test -f "$$i"; then echo $$i; else echo $(srcdir)/$$i; fi; \ done | $(am__uniquify_input)` ETAGS = etags CTAGS = ctags DIST_SUBDIRS = $(SUBDIRS) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) am__relativize = \ dir0=`pwd`; \ sed_first='s,^\([^/]*\)/.*$$,\1,'; \ sed_rest='s,^[^/]*/*,,'; \ sed_last='s,^.*/\([^/]*\)$$,\1,'; \ sed_butlast='s,/*[^/]*$$,,'; \ while test -n "$$dir1"; do \ first=`echo "$$dir1" | sed -e "$$sed_first"`; \ if test "$$first" != "."; then \ if test "$$first" = ".."; then \ dir2=`echo "$$dir0" | sed -e "$$sed_last"`/"$$dir2"; \ dir0=`echo "$$dir0" | sed -e "$$sed_butlast"`; \ else \ first2=`echo "$$dir2" | sed -e "$$sed_first"`; \ if test "$$first2" = "$$first"; then \ dir2=`echo "$$dir2" | sed -e "$$sed_rest"`; \ else \ dir2="../$$dir2"; \ fi; \ dir0="$$dir0"/"$$first"; \ fi; \ fi; \ dir1=`echo "$$dir1" | sed -e "$$sed_rest"`; \ done; \ reldir="$$dir2" ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CREATE_TPM2_KEY = @CREATE_TPM2_KEY@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ JSON_CFLAGS = @JSON_CFLAGS@ JSON_LIBS = @JSON_LIBS@ JSON_PC = @JSON_PC@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAKENSIS = @MAKENSIS@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PPPD = @PPPD@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SOCAT = @SOCAT@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SWTPM = @SWTPM@ SWTPM_IOCTL = @SWTPM_IOCTL@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_SETENV = @SYMVER_WIN32_SETENV@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2TSS_GENKEY = @TPM2TSS_GENKEY@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TPM2_STARTUP = @TPM2_STARTUP@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSSTARTUP = @TSSTARTUP@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ WINTUN_ARCH = @WINTUN_ARCH@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ have_curl = @have_curl@ have_unzip = @have_unzip@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ runstatedir = @runstatedir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ SUBDIRS = styles inc images CONV = "$(srcdir)/html.py" FTR_PAGES = csd.html charset.html token.html pkcs11.html tpm.html features.html gui.html nonroot.html hip.html tncc.html START_PAGES = building.html connecting.html manual.html vpnc-script.html INDEX_PAGES = changelog.html download.html index.html packages.html platforms.html licence.html PROTO_PAGES = protocols.html anyconnect.html array.html fortinet.html f5.html globalprotect.html juniper.html pulse.html CONTR_PAGES = contribute.html mitm.html TOPLEVEL_PAGES = mail.html ALL_PAGES = $(FTR_PAGES) $(START_PAGES) $(INDEX_PAGES) $(TOPLEVEL_PAGES) $(PROTO_PAGES) $(CONTR_PAGES) html_DATA = $(ALL_PAGES) EXTRA_DIST = $(patsubst %.html,%.xml,$(ALL_PAGES)) $(srcdir)/menu1.xml $(srcdir)/menu2*.xml $(srcdir)/html.py all: all-recursive .SUFFIXES: .SUFFIXES: .html .xml $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-htmlDATA: $(html_DATA) @$(NORMAL_INSTALL) @list='$(html_DATA)'; test -n "$(htmldir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(htmldir)'"; \ $(MKDIR_P) "$(DESTDIR)$(htmldir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(htmldir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(htmldir)" || exit $$?; \ done uninstall-htmlDATA: @$(NORMAL_UNINSTALL) @list='$(html_DATA)'; test -n "$(htmldir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(htmldir)'; $(am__uninstall_files_from_dir) # This directory's subdirectories are mostly independent; you can cd # into them and run 'make' without going through this Makefile. # To change the values of 'make' variables: instead of editing Makefiles, # (1) if the variable is set in 'config.status', edit 'config.status' # (which will cause the Makefiles to be regenerated when you run 'make'); # (2) otherwise, pass the desired values on the 'make' command line. $(am__recursive_targets): @fail=; \ if $(am__make_keepgoing); then \ failcom='fail=yes'; \ else \ failcom='exit 1'; \ fi; \ dot_seen=no; \ target=`echo $@ | sed s/-recursive//`; \ case "$@" in \ distclean-* | maintainer-clean-*) list='$(DIST_SUBDIRS)' ;; \ *) list='$(SUBDIRS)' ;; \ esac; \ for subdir in $$list; do \ echo "Making $$target in $$subdir"; \ if test "$$subdir" = "."; then \ dot_seen=yes; \ local_target="$$target-am"; \ else \ local_target="$$target"; \ fi; \ ($(am__cd) $$subdir && $(MAKE) $(AM_MAKEFLAGS) $$local_target) \ || eval $$failcom; \ done; \ if test "$$dot_seen" = "no"; then \ $(MAKE) $(AM_MAKEFLAGS) "$$target-am" || exit 1; \ fi; test -z "$$fail" ID: $(am__tagged_files) $(am__define_uniq_tagged_files); mkid -fID $$unique tags: tags-recursive TAGS: tags tags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) set x; \ here=`pwd`; \ if ($(ETAGS) --etags-include --version) >/dev/null 2>&1; then \ include_option=--etags-include; \ empty_fix=.; \ else \ include_option=--include; \ empty_fix=; \ fi; \ list='$(SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ test ! -f $$subdir/TAGS || \ set "$$@" "$$include_option=$$here/$$subdir/TAGS"; \ fi; \ done; \ $(am__define_uniq_tagged_files); \ shift; \ if test -z "$(ETAGS_ARGS)$$*$$unique"; then :; else \ test -n "$$unique" || unique=$$empty_fix; \ if test $$# -gt 0; then \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ "$$@" $$unique; \ else \ $(ETAGS) $(ETAGSFLAGS) $(AM_ETAGSFLAGS) $(ETAGS_ARGS) \ $$unique; \ fi; \ fi ctags: ctags-recursive CTAGS: ctags ctags-am: $(TAGS_DEPENDENCIES) $(am__tagged_files) $(am__define_uniq_tagged_files); \ test -z "$(CTAGS_ARGS)$$unique" \ || $(CTAGS) $(CTAGSFLAGS) $(AM_CTAGSFLAGS) $(CTAGS_ARGS) \ $$unique GTAGS: here=`$(am__cd) $(top_builddir) && pwd` \ && $(am__cd) $(top_srcdir) \ && gtags -i $(GTAGS_ARGS) "$$here" cscopelist: cscopelist-recursive cscopelist-am: $(am__tagged_files) list='$(am__tagged_files)'; \ case "$(srcdir)" in \ [\\/]* | ?:[\\/]*) sdir="$(srcdir)" ;; \ *) sdir=$(subdir)/$(srcdir) ;; \ esac; \ for i in $$list; do \ if test -f "$$i"; then \ echo "$(subdir)/$$i"; \ else \ echo "$$sdir/$$i"; \ fi; \ done >> $(top_builddir)/cscope.files distclean-tags: -rm -f TAGS ID GTAGS GRTAGS GSYMS GPATH tags distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done @list='$(DIST_SUBDIRS)'; for subdir in $$list; do \ if test "$$subdir" = .; then :; else \ $(am__make_dryrun) \ || test -d "$(distdir)/$$subdir" \ || $(MKDIR_P) "$(distdir)/$$subdir" \ || exit 1; \ dir1=$$subdir; dir2="$(distdir)/$$subdir"; \ $(am__relativize); \ new_distdir=$$reldir; \ dir1=$$subdir; dir2="$(top_distdir)"; \ $(am__relativize); \ new_top_distdir=$$reldir; \ echo " (cd $$subdir && $(MAKE) $(AM_MAKEFLAGS) top_distdir="$$new_top_distdir" distdir="$$new_distdir" \\"; \ echo " am__remove_distdir=: am__skip_length_check=: am__skip_mode_fix=: distdir)"; \ ($(am__cd) $$subdir && \ $(MAKE) $(AM_MAKEFLAGS) \ top_distdir="$$new_top_distdir" \ distdir="$$new_distdir" \ am__remove_distdir=: \ am__skip_length_check=: \ am__skip_mode_fix=: \ distdir) \ || exit 1; \ fi; \ done check-am: all-am check: check-recursive all-am: Makefile $(DATA) installdirs: installdirs-recursive installdirs-am: for dir in "$(DESTDIR)$(htmldir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-recursive install-exec: install-exec-recursive install-data: install-data-recursive uninstall: uninstall-recursive install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-recursive install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-recursive clean-am: clean-generic clean-libtool clean-local mostlyclean-am distclean: distclean-recursive -rm -f Makefile distclean-am: clean-am distclean-generic distclean-tags dvi: dvi-recursive dvi-am: html: html-recursive html-am: info: info-recursive info-am: install-data-am: install-htmlDATA install-dvi: install-dvi-recursive install-dvi-am: install-exec-am: install-html: install-html-recursive install-html-am: install-info: install-info-recursive install-info-am: install-man: install-pdf: install-pdf-recursive install-pdf-am: install-ps: install-ps-recursive install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-recursive -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-recursive mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-recursive pdf-am: ps: ps-recursive ps-am: uninstall-am: uninstall-htmlDATA .MAKE: $(am__recursive_targets) install-am install-strip .PHONY: $(am__recursive_targets) CTAGS GTAGS TAGS all all-am check \ check-am clean clean-generic clean-libtool clean-local \ cscopelist-am ctags ctags-am distclean distclean-generic \ distclean-libtool distclean-tags distdir dvi dvi-am html \ html-am info info-am install install-am install-data \ install-data-am install-dvi install-dvi-am install-exec \ install-exec-am install-html install-html-am install-htmlDATA \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs installdirs-am \ maintainer-clean maintainer-clean-generic mostlyclean \ mostlyclean-generic mostlyclean-libtool pdf pdf-am ps ps-am \ tags tags-am uninstall uninstall-am uninstall-htmlDATA .PRECIOUS: Makefile .xml.html: $(PYTHON) $(CONV) -d $(srcdir) $< > $@ || (rm $@; exit 1) clean-local: rm -f $(ALL_PAGES) openconnect.8.inc $(ALL_PAGES): menu1.xml $(srcdir)/inc/*.tmpl $(FTR_PAGES): menu2-features.xml $(START_PAGES): menu2-started.xml $(PROTO_PAGES): menu2-protocols.xml $(CONTR_PAGES): menu2-contribute.xml $(MAIN_PAGES): menu2.xml manual.html: openconnect.8.inc $(top_builddir)/openconnect.8: $(top_srcdir)/openconnect.8.in $(top_builddir)/config.status cd $(top_builddir) && $(SHELL) ./config.status openconnect.8 # If this command line ever changes significantly, so should the # corresponding autoconf check. openconnect.8.inc: $(top_builddir)/openconnect.8 $(GROFF) -t -K UTF-8 -mandoc -Txhtml $? | \ sed -e 's/−/-/g' -e '1,//d' -e '/<\/body>/,$$d' > $@ # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.20/www/mail.xml0000644000076400007640000001012214176202121020010 0ustar00dwoodhoudwoodhou00000000000000

    Getting help

    If you have problems building or using OpenConnect, or other questions or comments, please send email to the mailing list described below. You don't need to be subscribed to the list; you only need to click on the email address below, and send a plain text (not HTML) mail.

    A lot of people seem to post questions about OpenConnect on random web forums, where they are unlikely to get a quick or knowledgeable response. It's almost as if they don't want a coherent response, which is strange. Please, don't do that.

    GitLab

    We have created an OpenConnect project on GitLab.

    You can file issues there, which may be more effective than sending them in email. You can also submit merge requests.

    In addition to allowing discussion of issues and code changes, OpenConnect is now also using GitLab CI for continuous integration, testing, and building of the software. For example, GitLab CI builds the the Windows installers for OpenConnect with each new commit.

    Mailing list

    There is a mailing list at openconnect-devel@lists.infradead.org. The list does not accept HTML email, so please make sure you post as plain text only.

    As mentioned above, you do not have to be subscribed to the list in order to post a question.

    It's usually best to read the recent messages in the archive before posting a question that is likely to have been asked before.

    If you do want to subscribe to the mailing list, you can do so from the Mailman admin page.

    SECURITY WARNING:
    If you are posting debugging output from openconnect to the mailing list, do not include a line which looks like this:
    Set-Cookie: webvpn=835278264@921600@1221512527@6B9EC24DEB2F59E242F75B424D42F223D0912984;PATH=/
    That HTTP cookie is all that's needed to grant access to the VPN session you just logged in to — it's almost as bad as giving your password away. Version 2.26 or later of OpenConnect will automatically filter this out of the debugging output for you.

    For Juniper VPN, the equivalent is a DSID cookie, which is not yet filtered out of any output (the authentication support in Juniper is still very new). For PAN GlobalConnect, the equivalent is a URL-encoded authcookie parameter, which is also not filtered out of any output.

    Internet Relay Chat (IRC)

    There is also an IRC channel #openconnect on the OFTC network. You can access it via the OFTC webchat if you don't have an IRC client.

    Please note that the people who can help you may be busy, and may be in a different time zone to you, and often indeed in a different time zone from one day to the next. If nobody is answering you immediately, please be patient — state your problem or question concisely and completely, and remain on the channel. You may well find that by the time you look back again, even if it's the next day, you have an answer or a fix has been made.

    If you simply look in, say "hello?" a few times in the middle of the night, and then disappear again, that's not a lot more useful than posting to a randomly-chosen web forum as discussed above.

     openconnect-8.20/www/images/0000755000076400007640000000000014204510554017621 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/www/images/openconnect.svg0000644000076400007640000044413214067426206022674 0ustar00dwoodhoudwoodhou00000000000000 image/svg+xml OpenConnect openconnect-8.20/www/images/right.png0000644000076400007640000000022614040533771021450 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR PX pHYs  tIME "#5IDATcܼy3 $&~f@LȜy) WOYvi tC @7ai IENDB`openconnect-8.20/www/images/left.png0000644000076400007640000000022314040533771021262 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR 2Ͻ pHYs  tIME F& 2IDATcY ?BH 0E!>EpaXW!1f" AgkIENDB`openconnect-8.20/www/images/left2.png0000644000076400007640000000022314040533771021344 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR 2Ͻ pHYs  tIME 7s2IDATc|,ٳ(|B `E( )+$j 14-$1wFIENDB`openconnect-8.20/www/images/rightsel.png0000644000076400007640000000022414040533771022152 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR \'. PLTEcw, pHYs  tIME "IDATcXjU x 89IENDB`openconnect-8.20/www/images/Makefile.am0000644000076400007640000000012114176202121021643 0ustar00dwoodhoudwoodhou00000000000000imagesdir = $(htmldir)/images dist_images_DATA = $(srcdir)/*.png $(srcdir)/*.svg openconnect-8.20/www/images/Makefile.in0000644000076400007640000004212414204505636021676 0ustar00dwoodhoudwoodhou00000000000000# Makefile.in generated by automake 1.16.2 from Makefile.am. # @configure_input@ # Copyright (C) 1994-2020 Free Software Foundation, Inc. # This Makefile.in is free software; the Free Software Foundation # gives unlimited permission to copy and/or distribute it, # with or without modifications, as long as this notice is preserved. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY, to the extent permitted by law; without # even the implied warranty of MERCHANTABILITY or FITNESS FOR A # PARTICULAR PURPOSE. @SET_MAKE@ VPATH = @srcdir@ am__is_gnu_make = { \ if test -z '$(MAKELEVEL)'; then \ false; \ elif test -n '$(MAKE_HOST)'; then \ true; \ elif test -n '$(MAKE_VERSION)' && test -n '$(CURDIR)'; then \ true; \ else \ false; \ fi; \ } am__make_running_with_option = \ case $${target_option-} in \ ?) ;; \ *) echo "am__make_running_with_option: internal error: invalid" \ "target option '$${target_option-}' specified" >&2; \ exit 1;; \ esac; \ has_opt=no; \ sane_makeflags=$$MAKEFLAGS; \ if $(am__is_gnu_make); then \ sane_makeflags=$$MFLAGS; \ else \ case $$MAKEFLAGS in \ *\\[\ \ ]*) \ bs=\\; \ sane_makeflags=`printf '%s\n' "$$MAKEFLAGS" \ | sed "s/$$bs$$bs[$$bs $$bs ]*//g"`;; \ esac; \ fi; \ skip_next=no; \ strip_trailopt () \ { \ flg=`printf '%s\n' "$$flg" | sed "s/$$1.*$$//"`; \ }; \ for flg in $$sane_makeflags; do \ test $$skip_next = yes && { skip_next=no; continue; }; \ case $$flg in \ *=*|--*) continue;; \ -*I) strip_trailopt 'I'; skip_next=yes;; \ -*I?*) strip_trailopt 'I';; \ -*O) strip_trailopt 'O'; skip_next=yes;; \ -*O?*) strip_trailopt 'O';; \ -*l) strip_trailopt 'l'; skip_next=yes;; \ -*l?*) strip_trailopt 'l';; \ -[dEDm]) skip_next=yes;; \ -[JT]) skip_next=yes;; \ esac; \ case $$flg in \ *$$target_option*) has_opt=yes; break;; \ esac; \ done; \ test $$has_opt = yes am__make_dryrun = (target_option=n; $(am__make_running_with_option)) am__make_keepgoing = (target_option=k; $(am__make_running_with_option)) pkgdatadir = $(datadir)/@PACKAGE@ pkgincludedir = $(includedir)/@PACKAGE@ pkglibdir = $(libdir)/@PACKAGE@ pkglibexecdir = $(libexecdir)/@PACKAGE@ am__cd = CDPATH="$${ZSH_VERSION+.}$(PATH_SEPARATOR)" && cd install_sh_DATA = $(install_sh) -c -m 644 install_sh_PROGRAM = $(install_sh) -c install_sh_SCRIPT = $(install_sh) -c INSTALL_HEADER = $(INSTALL_DATA) transform = $(program_transform_name) NORMAL_INSTALL = : PRE_INSTALL = : POST_INSTALL = : NORMAL_UNINSTALL = : PRE_UNINSTALL = : POST_UNINSTALL = : build_triplet = @build@ host_triplet = @host@ subdir = www/images ACLOCAL_M4 = $(top_srcdir)/aclocal.m4 am__aclocal_m4_deps = $(top_srcdir)/m4/ax_check_vscript.m4 \ $(top_srcdir)/m4/iconv.m4 $(top_srcdir)/m4/lib-ld.m4 \ $(top_srcdir)/m4/lib-link.m4 $(top_srcdir)/m4/lib-prefix.m4 \ $(top_srcdir)/m4/libtool.m4 $(top_srcdir)/m4/ltoptions.m4 \ $(top_srcdir)/m4/ltsugar.m4 $(top_srcdir)/m4/ltversion.m4 \ $(top_srcdir)/m4/lt~obsolete.m4 $(top_srcdir)/acinclude.m4 \ $(top_srcdir)/configure.ac am__configure_deps = $(am__aclocal_m4_deps) $(CONFIGURE_DEPENDENCIES) \ $(ACLOCAL_M4) DIST_COMMON = $(srcdir)/Makefile.am $(dist_images_DATA) \ $(am__DIST_COMMON) mkinstalldirs = $(install_sh) -d CONFIG_HEADER = $(top_builddir)/config.h CONFIG_CLEAN_FILES = CONFIG_CLEAN_VPATH_FILES = AM_V_P = $(am__v_P_@AM_V@) am__v_P_ = $(am__v_P_@AM_DEFAULT_V@) am__v_P_0 = false am__v_P_1 = : AM_V_GEN = $(am__v_GEN_@AM_V@) am__v_GEN_ = $(am__v_GEN_@AM_DEFAULT_V@) am__v_GEN_0 = @echo " GEN " $@; am__v_GEN_1 = AM_V_at = $(am__v_at_@AM_V@) am__v_at_ = $(am__v_at_@AM_DEFAULT_V@) am__v_at_0 = @ am__v_at_1 = SOURCES = DIST_SOURCES = am__can_run_installinfo = \ case $$AM_UPDATE_INFO_DIR in \ n|no|NO) false;; \ *) (install-info --version) >/dev/null 2>&1;; \ esac am__vpath_adj_setup = srcdirstrip=`echo "$(srcdir)" | sed 's|.|.|g'`; am__vpath_adj = case $$p in \ $(srcdir)/*) f=`echo "$$p" | sed "s|^$$srcdirstrip/||"`;; \ *) f=$$p;; \ esac; am__strip_dir = f=`echo $$p | sed -e 's|^.*/||'`; am__install_max = 40 am__nobase_strip_setup = \ srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*|]/\\\\&/g'` am__nobase_strip = \ for p in $$list; do echo "$$p"; done | sed -e "s|$$srcdirstrip/||" am__nobase_list = $(am__nobase_strip_setup); \ for p in $$list; do echo "$$p $$p"; done | \ sed "s| $$srcdirstrip/| |;"' / .*\//!s/ .*/ ./; s,\( .*\)/[^/]*$$,\1,' | \ $(AWK) 'BEGIN { files["."] = "" } { files[$$2] = files[$$2] " " $$1; \ if (++n[$$2] == $(am__install_max)) \ { print $$2, files[$$2]; n[$$2] = 0; files[$$2] = "" } } \ END { for (dir in files) print dir, files[dir] }' am__base_list = \ sed '$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;$$!N;s/\n/ /g' | \ sed '$$!N;$$!N;$$!N;$$!N;s/\n/ /g' am__uninstall_files_from_dir = { \ test -z "$$files" \ || { test ! -d "$$dir" && test ! -f "$$dir" && test ! -r "$$dir"; } \ || { echo " ( cd '$$dir' && rm -f" $$files ")"; \ $(am__cd) "$$dir" && rm -f $$files; }; \ } am__installdirs = "$(DESTDIR)$(imagesdir)" DATA = $(dist_images_DATA) am__tagged_files = $(HEADERS) $(SOURCES) $(TAGS_FILES) $(LISP) am__DIST_COMMON = $(srcdir)/Makefile.in DISTFILES = $(DIST_COMMON) $(DIST_SOURCES) $(TEXINFOS) $(EXTRA_DIST) ACLOCAL = @ACLOCAL@ AMTAR = @AMTAR@ AM_DEFAULT_VERBOSITY = @AM_DEFAULT_VERBOSITY@ APIMAJOR = @APIMAJOR@ APIMINOR = @APIMINOR@ AR = @AR@ AUTOCONF = @AUTOCONF@ AUTOHEADER = @AUTOHEADER@ AUTOMAKE = @AUTOMAKE@ AWK = @AWK@ CC = @CC@ CCDEPMODE = @CCDEPMODE@ CFLAGS = @CFLAGS@ CONFIG_STATUS_DEPENDENCIES = @CONFIG_STATUS_DEPENDENCIES@ CPP = @CPP@ CPPFLAGS = @CPPFLAGS@ CREATE_TPM2_KEY = @CREATE_TPM2_KEY@ CWRAP_CFLAGS = @CWRAP_CFLAGS@ CWRAP_LIBS = @CWRAP_LIBS@ CYGPATH_W = @CYGPATH_W@ DEFAULT_VPNCSCRIPT = @DEFAULT_VPNCSCRIPT@ DEFS = @DEFS@ DEPDIR = @DEPDIR@ DLLTOOL = @DLLTOOL@ DSYMUTIL = @DSYMUTIL@ DUMPBIN = @DUMPBIN@ ECHO_C = @ECHO_C@ ECHO_N = @ECHO_N@ ECHO_T = @ECHO_T@ EGREP = @EGREP@ EXEEXT = @EXEEXT@ FGREP = @FGREP@ GITVERSIONDEPS = @GITVERSIONDEPS@ GNUTLS_CFLAGS = @GNUTLS_CFLAGS@ GNUTLS_LIBS = @GNUTLS_LIBS@ GREP = @GREP@ GROFF = @GROFF@ GSSAPI_CFLAGS = @GSSAPI_CFLAGS@ GSSAPI_LIBS = @GSSAPI_LIBS@ ICONV_CFLAGS = @ICONV_CFLAGS@ ICONV_LIBS = @ICONV_LIBS@ INSTALL = @INSTALL@ INSTALL_DATA = @INSTALL_DATA@ INSTALL_PROGRAM = @INSTALL_PROGRAM@ INSTALL_SCRIPT = @INSTALL_SCRIPT@ INSTALL_STRIP_PROGRAM = @INSTALL_STRIP_PROGRAM@ INTL_CFLAGS = @INTL_CFLAGS@ INTL_LIBS = @INTL_LIBS@ IP = @IP@ JNI_CFLAGS = @JNI_CFLAGS@ JSON_CFLAGS = @JSON_CFLAGS@ JSON_LIBS = @JSON_LIBS@ JSON_PC = @JSON_PC@ KRB5_CONFIG = @KRB5_CONFIG@ LD = @LD@ LDFLAGS = @LDFLAGS@ LIBICONV = @LIBICONV@ LIBLZ4_CFLAGS = @LIBLZ4_CFLAGS@ LIBLZ4_LIBS = @LIBLZ4_LIBS@ LIBLZ4_PC = @LIBLZ4_PC@ LIBOBJS = @LIBOBJS@ LIBP11_CFLAGS = @LIBP11_CFLAGS@ LIBP11_LIBS = @LIBP11_LIBS@ LIBPCSCLITE_CFLAGS = @LIBPCSCLITE_CFLAGS@ LIBPCSCLITE_LIBS = @LIBPCSCLITE_LIBS@ LIBPCSCLITE_PC = @LIBPCSCLITE_PC@ LIBPROXY_CFLAGS = @LIBPROXY_CFLAGS@ LIBPROXY_LIBS = @LIBPROXY_LIBS@ LIBPROXY_PC = @LIBPROXY_PC@ LIBPSKC_CFLAGS = @LIBPSKC_CFLAGS@ LIBPSKC_LIBS = @LIBPSKC_LIBS@ LIBPSKC_PC = @LIBPSKC_PC@ LIBS = @LIBS@ LIBSTOKEN_CFLAGS = @LIBSTOKEN_CFLAGS@ LIBSTOKEN_LIBS = @LIBSTOKEN_LIBS@ LIBSTOKEN_PC = @LIBSTOKEN_PC@ LIBTOOL = @LIBTOOL@ LIBXML2_CFLAGS = @LIBXML2_CFLAGS@ LIBXML2_LIBS = @LIBXML2_LIBS@ LINGUAS = @LINGUAS@ LIPO = @LIPO@ LN_S = @LN_S@ LTLIBICONV = @LTLIBICONV@ LTLIBOBJS = @LTLIBOBJS@ LT_SYS_LIBRARY_PATH = @LT_SYS_LIBRARY_PATH@ MAINT = @MAINT@ MAKEINFO = @MAKEINFO@ MAKENSIS = @MAKENSIS@ MANIFEST_TOOL = @MANIFEST_TOOL@ MKDIR_P = @MKDIR_P@ MSGFMT = @MSGFMT@ NM = @NM@ NMEDIT = @NMEDIT@ NUTTCP = @NUTTCP@ OBJDUMP = @OBJDUMP@ OBJEXT = @OBJEXT@ OCSERV_GROUP = @OCSERV_GROUP@ OCSERV_USER = @OCSERV_USER@ OPENSSL_CFLAGS = @OPENSSL_CFLAGS@ OPENSSL_LIBS = @OPENSSL_LIBS@ OTOOL = @OTOOL@ OTOOL64 = @OTOOL64@ P11KIT_CFLAGS = @P11KIT_CFLAGS@ P11KIT_LIBS = @P11KIT_LIBS@ P11KIT_PC = @P11KIT_PC@ PACKAGE = @PACKAGE@ PACKAGE_BUGREPORT = @PACKAGE_BUGREPORT@ PACKAGE_NAME = @PACKAGE_NAME@ PACKAGE_STRING = @PACKAGE_STRING@ PACKAGE_TARNAME = @PACKAGE_TARNAME@ PACKAGE_URL = @PACKAGE_URL@ PACKAGE_VERSION = @PACKAGE_VERSION@ PATH_SEPARATOR = @PATH_SEPARATOR@ PKG_CONFIG = @PKG_CONFIG@ PKG_CONFIG_LIBDIR = @PKG_CONFIG_LIBDIR@ PKG_CONFIG_PATH = @PKG_CONFIG_PATH@ PPPD = @PPPD@ PYTHON = @PYTHON@ RANLIB = @RANLIB@ SED = @SED@ SET_MAKE = @SET_MAKE@ SHELL = @SHELL@ SOCAT = @SOCAT@ SSL_CFLAGS = @SSL_CFLAGS@ SSL_LIBS = @SSL_LIBS@ SSL_PC = @SSL_PC@ STRIP = @STRIP@ SWTPM = @SWTPM@ SWTPM_IOCTL = @SWTPM_IOCTL@ SYMVER_ASPRINTF = @SYMVER_ASPRINTF@ SYMVER_GETLINE = @SYMVER_GETLINE@ SYMVER_JAVA = @SYMVER_JAVA@ SYMVER_TIME = @SYMVER_TIME@ SYMVER_VASPRINTF = @SYMVER_VASPRINTF@ SYMVER_WIN32_SETENV = @SYMVER_WIN32_SETENV@ SYMVER_WIN32_STRERROR = @SYMVER_WIN32_STRERROR@ TASN1_CFLAGS = @TASN1_CFLAGS@ TASN1_LIBS = @TASN1_LIBS@ TPM2TSS_GENKEY = @TPM2TSS_GENKEY@ TPM2_CFLAGS = @TPM2_CFLAGS@ TPM2_LIBS = @TPM2_LIBS@ TPM2_STARTUP = @TPM2_STARTUP@ TSS2_ESYS_CFLAGS = @TSS2_ESYS_CFLAGS@ TSS2_ESYS_LIBS = @TSS2_ESYS_LIBS@ TSS2_LIBS = @TSS2_LIBS@ TSSTARTUP = @TSSTARTUP@ TSS_CFLAGS = @TSS_CFLAGS@ TSS_LIBS = @TSS_LIBS@ VERSION = @VERSION@ VSCRIPT_LDFLAGS = @VSCRIPT_LDFLAGS@ WFLAGS = @WFLAGS@ WINDRES = @WINDRES@ WINTUN_ARCH = @WINTUN_ARCH@ ZLIB_CFLAGS = @ZLIB_CFLAGS@ ZLIB_LIBS = @ZLIB_LIBS@ ZLIB_PC = @ZLIB_PC@ _ACJNI_JAVAC = @_ACJNI_JAVAC@ abs_builddir = @abs_builddir@ abs_srcdir = @abs_srcdir@ abs_top_builddir = @abs_top_builddir@ abs_top_srcdir = @abs_top_srcdir@ ac_ct_AR = @ac_ct_AR@ ac_ct_CC = @ac_ct_CC@ ac_ct_DUMPBIN = @ac_ct_DUMPBIN@ am__include = @am__include@ am__leading_dot = @am__leading_dot@ am__quote = @am__quote@ am__tar = @am__tar@ am__untar = @am__untar@ bindir = @bindir@ build = @build@ build_alias = @build_alias@ build_cpu = @build_cpu@ build_os = @build_os@ build_vendor = @build_vendor@ builddir = @builddir@ datadir = @datadir@ datarootdir = @datarootdir@ docdir = @docdir@ dvidir = @dvidir@ exec_prefix = @exec_prefix@ have_curl = @have_curl@ have_unzip = @have_unzip@ host = @host@ host_alias = @host_alias@ host_cpu = @host_cpu@ host_os = @host_os@ host_vendor = @host_vendor@ htmldir = @htmldir@ includedir = @includedir@ infodir = @infodir@ install_sh = @install_sh@ libdir = @libdir@ libexecdir = @libexecdir@ localedir = @localedir@ localstatedir = @localstatedir@ mandir = @mandir@ mkdir_p = @mkdir_p@ oldincludedir = @oldincludedir@ openssl_pc_libs = @openssl_pc_libs@ pdfdir = @pdfdir@ pkgconfigdir = @pkgconfigdir@ prefix = @prefix@ program_transform_name = @program_transform_name@ psdir = @psdir@ runstatedir = @runstatedir@ sbindir = @sbindir@ sharedstatedir = @sharedstatedir@ srcdir = @srcdir@ sysconfdir = @sysconfdir@ system_pcsc_libs = @system_pcsc_libs@ target_alias = @target_alias@ test_pkcs11 = @test_pkcs11@ top_build_prefix = @top_build_prefix@ top_builddir = @top_builddir@ top_srcdir = @top_srcdir@ imagesdir = $(htmldir)/images dist_images_DATA = $(srcdir)/*.png $(srcdir)/*.svg all: all-am .SUFFIXES: $(srcdir)/Makefile.in: @MAINTAINER_MODE_TRUE@ $(srcdir)/Makefile.am $(am__configure_deps) @for dep in $?; do \ case '$(am__configure_deps)' in \ *$$dep*) \ ( cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh ) \ && { if test -f $@; then exit 0; else break; fi; }; \ exit 1;; \ esac; \ done; \ echo ' cd $(top_srcdir) && $(AUTOMAKE) --foreign www/images/Makefile'; \ $(am__cd) $(top_srcdir) && \ $(AUTOMAKE) --foreign www/images/Makefile Makefile: $(srcdir)/Makefile.in $(top_builddir)/config.status @case '$?' in \ *config.status*) \ cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh;; \ *) \ echo ' cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles)'; \ cd $(top_builddir) && $(SHELL) ./config.status $(subdir)/$@ $(am__maybe_remake_depfiles);; \ esac; $(top_builddir)/config.status: $(top_srcdir)/configure $(CONFIG_STATUS_DEPENDENCIES) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(top_srcdir)/configure: @MAINTAINER_MODE_TRUE@ $(am__configure_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(ACLOCAL_M4): @MAINTAINER_MODE_TRUE@ $(am__aclocal_m4_deps) cd $(top_builddir) && $(MAKE) $(AM_MAKEFLAGS) am--refresh $(am__aclocal_m4_deps): mostlyclean-libtool: -rm -f *.lo clean-libtool: -rm -rf .libs _libs install-dist_imagesDATA: $(dist_images_DATA) @$(NORMAL_INSTALL) @list='$(dist_images_DATA)'; test -n "$(imagesdir)" || list=; \ if test -n "$$list"; then \ echo " $(MKDIR_P) '$(DESTDIR)$(imagesdir)'"; \ $(MKDIR_P) "$(DESTDIR)$(imagesdir)" || exit 1; \ fi; \ for p in $$list; do \ if test -f "$$p"; then d=; else d="$(srcdir)/"; fi; \ echo "$$d$$p"; \ done | $(am__base_list) | \ while read files; do \ echo " $(INSTALL_DATA) $$files '$(DESTDIR)$(imagesdir)'"; \ $(INSTALL_DATA) $$files "$(DESTDIR)$(imagesdir)" || exit $$?; \ done uninstall-dist_imagesDATA: @$(NORMAL_UNINSTALL) @list='$(dist_images_DATA)'; test -n "$(imagesdir)" || list=; \ files=`for p in $$list; do echo $$p; done | sed -e 's|^.*/||'`; \ dir='$(DESTDIR)$(imagesdir)'; $(am__uninstall_files_from_dir) tags TAGS: ctags CTAGS: cscope cscopelist: distdir: $(BUILT_SOURCES) $(MAKE) $(AM_MAKEFLAGS) distdir-am distdir-am: $(DISTFILES) @srcdirstrip=`echo "$(srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ topsrcdirstrip=`echo "$(top_srcdir)" | sed 's/[].[^$$\\*]/\\\\&/g'`; \ list='$(DISTFILES)'; \ dist_files=`for file in $$list; do echo $$file; done | \ sed -e "s|^$$srcdirstrip/||;t" \ -e "s|^$$topsrcdirstrip/|$(top_builddir)/|;t"`; \ case $$dist_files in \ */*) $(MKDIR_P) `echo "$$dist_files" | \ sed '/\//!d;s|^|$(distdir)/|;s,/[^/]*$$,,' | \ sort -u` ;; \ esac; \ for file in $$dist_files; do \ if test -f $$file || test -d $$file; then d=.; else d=$(srcdir); fi; \ if test -d $$d/$$file; then \ dir=`echo "/$$file" | sed -e 's,/[^/]*$$,,'`; \ if test -d "$(distdir)/$$file"; then \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ if test -d $(srcdir)/$$file && test $$d != $(srcdir); then \ cp -fpR $(srcdir)/$$file "$(distdir)$$dir" || exit 1; \ find "$(distdir)/$$file" -type d ! -perm -700 -exec chmod u+rwx {} \;; \ fi; \ cp -fpR $$d/$$file "$(distdir)$$dir" || exit 1; \ else \ test -f "$(distdir)/$$file" \ || cp -p $$d/$$file "$(distdir)/$$file" \ || exit 1; \ fi; \ done check-am: all-am check: check-am all-am: Makefile $(DATA) installdirs: for dir in "$(DESTDIR)$(imagesdir)"; do \ test -z "$$dir" || $(MKDIR_P) "$$dir"; \ done install: install-am install-exec: install-exec-am install-data: install-data-am uninstall: uninstall-am install-am: all-am @$(MAKE) $(AM_MAKEFLAGS) install-exec-am install-data-am installcheck: installcheck-am install-strip: if test -z '$(STRIP)'; then \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ install; \ else \ $(MAKE) $(AM_MAKEFLAGS) INSTALL_PROGRAM="$(INSTALL_STRIP_PROGRAM)" \ install_sh_PROGRAM="$(INSTALL_STRIP_PROGRAM)" INSTALL_STRIP_FLAG=-s \ "INSTALL_PROGRAM_ENV=STRIPPROG='$(STRIP)'" install; \ fi mostlyclean-generic: clean-generic: distclean-generic: -test -z "$(CONFIG_CLEAN_FILES)" || rm -f $(CONFIG_CLEAN_FILES) -test . = "$(srcdir)" || test -z "$(CONFIG_CLEAN_VPATH_FILES)" || rm -f $(CONFIG_CLEAN_VPATH_FILES) maintainer-clean-generic: @echo "This command is intended for maintainers to use" @echo "it deletes files that may require special tools to rebuild." clean: clean-am clean-am: clean-generic clean-libtool mostlyclean-am distclean: distclean-am -rm -f Makefile distclean-am: clean-am distclean-generic dvi: dvi-am dvi-am: html: html-am html-am: info: info-am info-am: install-data-am: install-dist_imagesDATA install-dvi: install-dvi-am install-dvi-am: install-exec-am: install-html: install-html-am install-html-am: install-info: install-info-am install-info-am: install-man: install-pdf: install-pdf-am install-pdf-am: install-ps: install-ps-am install-ps-am: installcheck-am: maintainer-clean: maintainer-clean-am -rm -f Makefile maintainer-clean-am: distclean-am maintainer-clean-generic mostlyclean: mostlyclean-am mostlyclean-am: mostlyclean-generic mostlyclean-libtool pdf: pdf-am pdf-am: ps: ps-am ps-am: uninstall-am: uninstall-dist_imagesDATA .MAKE: install-am install-strip .PHONY: all all-am check check-am clean clean-generic clean-libtool \ cscopelist-am ctags-am distclean distclean-generic \ distclean-libtool distdir dvi dvi-am html html-am info info-am \ install install-am install-data install-data-am \ install-dist_imagesDATA install-dvi install-dvi-am \ install-exec install-exec-am install-html install-html-am \ install-info install-info-am install-man install-pdf \ install-pdf-am install-ps install-ps-am install-strip \ installcheck installcheck-am installdirs maintainer-clean \ maintainer-clean-generic mostlyclean mostlyclean-generic \ mostlyclean-libtool pdf pdf-am ps ps-am tags-am uninstall \ uninstall-am uninstall-dist_imagesDATA .PRECIOUS: Makefile # Tell versions [3.59,3.63) of GNU make to not export all variables. # Otherwise a system limit (for SysV at least) may be exceeded. .NOEXPORT: openconnect-8.20/www/images/openconnect.png0000644000076400007640000015521314040533771022655 0ustar00dwoodhoudwoodhou00000000000000PNG  IHDR:88DsBIT|d pHYstEXtSoftwarewww.inkscape.org< IDATxyp]};@ (A4EQ-YQ,^xlS*oũ,]qO''\Ig$])Tb%Jlɖ Ӣ$ @oYsu{Dx?U}|o9B@BBBBB+? !!!!asHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBMHBBBBM? !!!^- [' u+u $$)XE,_K4QH$!!hGu_bYx]BI$!O"(vm=z,!Ji=|]"1MVl):D&.&`1$b5I$!u$&ݶGH J)`Y8diiI,$DŽ!5M )*O[P1٢$aiD U,P!B ,$x]~O4 --- @ "`R"(+$O" DkhUXDx9!J,1ላH4HmB#p WEEu i"tyf$bII$!pÜs1 !>,@ea!2 HA}hh\(X5eYPs^Ka]!D\׽$X}zjj4~Z cq1 q**1F '02I-@" Մѣ^h0p.rs44M 9rY``M]m|߷(a0 L@B0ƀ9x1@p9T0ƄiLӴk晦yj̜yRX|g8k:4Md2J:$C" 1 8<9(|A@heuhFvac`6ܸqB!WǙVONOO=|nSB 9#iF$$*"II$!5D¡s)$Ja-$ɐ|;B{(l6kea`&Rz1{!L4fY4MfY/ <IDOI$!UM/ǁ^"ŭRݤEb6Z-)ۄj77ihZuR)I\Z}H" 7AUAl6K|LԤ?wuR\,dH8 È\T\R-H8ke>PJ#lµk ,:vш4Ml6F ;2FD@^!ݬm QJɟ?xqK7骒eZb!RP{synj\pca߻~>裧l=ϣaV,ˢJldEV""?$$VsY9C tZ]uƘV.Rz|>]d*PcmߊkN {mCV qhV~|;߹>uڶM àB?IHX'ģ^ Z:ւ Фx|c{i;*R d2HQP\ͤz5ze5^Y-%8DM\ׅv ϟ)h4²z},..}ߧmе?IHXy$hkAJ%ˆa<~X,BX04Uk:]҅޳|ώ/H&,A8077Pڄ/;v쯟{ ˲R"DD^IHXu]-uu]uJ|s߿\.CT|>T*ʨ/?=6ONޫ ".!DT=w3t[.j5x駡nCfiիW__VU4mHHB but:Z'>bСCFTb\Lӌʌnղ#uMtxLMMARBSSSQc->lmp]t]r G~qpjhbt]|> _"E8q87naxƍ~O?ED(D@6D@V!f}`HӚyO~ aJ|lG`|-wQv|LOO!Rd2(X`Br)alۆYJh6wrΣB NGhs@yp5z @)s7}''&&j(1hz""K" =%28!-O_foX,B*>{?tԢjZPVsuFc: y#0!D !X !taGi`fbr\v 00:: Xm[u/;0.LOOB.^F Xp3Nz򩧞Z4M3p'yH%n=(iZ&\5M3 0>O}u``Q200JwjVG7kCt}߇f Nr!jo!Giyrc<9^[ZZr٫'NXl~sl6u]f65JRj۶mH0A]׷ !?jvEaR)( J JEkX: ʕ+Hxa#QtZZ-p]@ d28vY۶cbbg}vnL&C$ׅD@^%W+$k %ccclFA1 0>OGGGJ%HRQFUYk~ې ϝ;Md|l Ji#;9wwM޸qC]H*n;:-t:d2[{&4;8 r9d2f!EBh4`ii !F$YUMp%FfJ?_xS=B*6r4TO!W*mj#jϭO\'w]۶Z*5M3|7~W~p4(x8lۆcǎHZ:ޕ+Wʼn BhEw@ W.jtU<W6JJ|[v]jA޹s'&Kc ]krHՊDE-"MӠ^ÓO> B^ 㜫j /t뺾eY4N06D@֠`csGu_%vnSwulw{\PD>lj{R)u]C4cO[_>c۶m]-z~*4 ii@Zee]J]oC.zjfcii |ߟmZwwBp`l 189 'kZk N<$sy=)RJL$|z'<(4}Rl6 ˵b"Se\^åKܹsm|jjɓ'ffft:$YYm-  0>>3n&?hH&$P-x0T>Wף:JAIĤ̺R\W'>X7 d۶mP,5첒GO>$@VׯL>|ROCK}hߪ_JE^}݃ L${Çs=R}`2?v̄ypΡjP՞~o8q+Wjd2Rĕ1hkd뱆p ](RTQX i}r8P4eY(\ #nև18@,4H<BB4.ߪض- ccc?@|䱹/:4>>jfa9޿Rr lLٯC̥^!zXVw~wu=`Q0m۔s82 CHD+G*X)0<fp˲ bE B'ud2 7v[]l۶O<9~N8<)za--M,(088SSS ‘KKKvh1qK$6QWrUѐ)1ƘsN#B`1  !i5 !0 R,t:mi4- ;Vv8}A XPJXV%66ED!#PZPꮆmu1( pug?+u!X.c"\(/Uv9OF DQr9j 1JǏ9N&(eWu}cu2  طox{:~b617eU8T4 SJIL4R8HX4:VJ%s׮]]v=<<|eY{l!3ư Ň1&c!u]gBBcbܸq˗_k4@(!0 !=ci|̂ e117 #.B6زH}%$(ز,ZoG/`Y+j``u ~qRAW)Uߎ=ScjhrrRHk$H!$M |ԩS|>wu{Mӄ|>JΝ;g```|۶m'''=i4PqfRm&h Du1&s&1F2vС;8#t>6!D0 R.L&CdR5eqUj%UVݟJ~j``=C BRZ=vϞ=;j\ ECɔP&PJeYjq g*[b\ x}CoJi BA]W1j0??_'l6r',kv"$"t!Qm鴳ַ&>Z^x"޽{U.nX\kwΝ;?qcm[J@zYGEzÙLKc0 MiB cL#4ɑ#G:xϤRc˲+N*wܫ-Y'V3vp3Y2+ @}jjuoru"7&&&NϷ( !DÛ.3MNU!1l]kydq xxxHVzONN=C) 2[XX⡢MMM(n`ii [w\̙3ahhh]u1XLJLMMݹ}kn=[F@z:8V}L&C( !hc"Bhhij cccsLӤ"1˿˯=PZlZ011wr57{*۷7 ~jy2ѣ2xSʦ^.q,I6%u#"M4=U*1Ct@ֆ uP.l֋P Jiư,hܢ竢"ej[yPT`ddٳgGmo{7aM!R)djZsz6 uժ! ƒu|sNl6 ZMx?!iR-(w̍'衦iBul6i c̞~;|[333,,,!G+Ȗa@pί$r ؔ-qQ,]V\.G<|@ csu14M3>}4Nkppm68]%]Tk굴, /.9K㜃eYN!B>XZZB'O7'x.^&`qeYԶm$]ZDD"`BqV sh4_x{7 ! !W}m"&''Ν;\Њ1>|js=?0Z-tiعs'd+ PJSl6_ptE51M3ꖦ zE[VZWC9mҒbR*`nn&&&M#nJ@@x.+MH8vQٟJݻWQ5(W2w nGBHTN0 <Ӹn{>uԗ|+23}$UDRD By^QN$@!H)ch4inMXVu_Na׮]/(er0;; jl6"밈h41Ƣ M% Bt]u0HnB J|t bbԿ9P*F.^q8̘{UU[:|I!wp4ȑ#Gw{gۺ#r9h6P׷%"gt}ʵ=qj9 xTZfi ۶E^Ajx \.Çʕ+{={@VpwBT],[ĦnxXiF:!@c#Ng>l{R " ٌ$ecUd:̎?I%g^Պ+UaQ߫fkIщT*b.\\ghh ǎ#'n&`(JyF|ZtΝ;1Bn _~;Z! }rl6w6M)"¶x=zT QcjGj "۷ch$9l6z. \i\v apXXX\Y!y:9}/ 9}=ϋt]Uc?sb:\V3߹b_ܥE)---AрZMӠjAPڵkѺ YQ~*0Ipn&y۾}{;B@)ׯΝ;att4[@ 4h4n#wiQ F۶m,..Ǐ'fLOO?K}!-Br^!P**I,qq+fò,Q;e2s{]`zz._ ###011B!hZi[>S\.#mxR<>яLox́T*NWU ̪<ի0009W8G9!OiMX4iu! ۶]K/US޾}{z```T* 4$@1}9;@)a\)/SSB*}0R\^hrna~~&B N89gΜA޷o߾O3ɓ'4 ̓X7Dt(_S"c q{\i-KDNMYd(9,\&c0 vΝzvZ΄[C_ HH< iR !$-(*| J%d2NÔHKCǁsAXqc ׮]f)(t:=My] <*lnG-EPBi+ vJ>|xב#GB7{oܸǶ}+ ]\WQC 1FxH6ÇH!?8Q|nCVf |bԏZt]gϞѱ ccu]6"Aպڠ&vwq0pmTjSM(֩Pyu5JxKf}j54PJ54M+w]_8p@RtXUpPJu]r GhW{mBc1!J8X(_'T*?B$P(w; [ {77C.Jxevr B! D-!DAT(^R*dsjcVqJ)m9{+$B('j0 pι l!x1GA>Ŏfї !{y` tr r9 tAV ;pu J7/ʵkl!7 mF,T*%0ƲTEGfǖewr 2+{v;850PJiرcO?›u>}жmΝ;ȵoQ'MӌܹZh} B|{ڶms΃v1>>7b@Vk6QK z mVkiqs2&W,8Hw>\EGmh |ׄ!DÕJl:^㰴\ŋ'}ߧс.k4Y MӢeuc3=^PJ8b|> 19g>7W~wZ8qxضmpΣ縻OnYeAT1!سgi4V^z6n YqrAMa^4JZ@ lԹ=!qH> ˶m'XH HȊGBBcϞ=s!\.G+墸^ՓSfXK`TUr d2kkiZrO!iF(j }3GO=\EqJ)}m|A `{|mϿo3gpZwy' @..^g]ׁR c8O,eׯclaa,eq4EXBͨ,?/zqn19 lMN~z{qq?moAV{N?r!X,vǰvPuaϞ=ڵ륹Fu]g`d6V_Vfˆs뙭'.BAavۻy+Y5@X;vJrT*]^\\tlcu] ]R2snU+ Tb~~91۹o/8)ZzeN'|OMHw?K䚑0s B~G]&S-/_ p XXX=3׾Ar.,,aL&CKbax+Ҏx*q1O>ͧX:fi24۶ao6~u}'`nn.*(^@2 ,EسgY,~ǎ-19hllLCatW["-[ez=cBH"]兺Y2`FӖ SJ [sNDw|> dܶm5/^G}tZ|`YMRljj&J0b 1'''իWY*baPq0 fi_|?y,=PV!u͸,P+ >`Y9DžB1dGRFa^Xh?*ZQT$7FX܅@cM<=/ lҷ<9GbQuhFַA)-:P}?j._:kB\<4bR4:VU255RuIK}j۶׿\VO>$4ȗE0 JA>ݱcG>JaJ)fa媷!$"~ -DVy/?nŏq|%4qam }# >">8o|GFGGjE)j5d2 "ScrrWpq4RJ۶k׮5_Fַq?t\?bYd2;pD~^ *τXP*+񎁄.$eқ>t"XF@Bd@-!!,b5 JJR l6ZRuʕ+-)Ƙ7M:x,[4QJvMf*;;; b?m,Tc IR044drtZclxs ],hmX iQQ̈́pλ HmpGA/[",hug%zAm6h6`̟~ c8u[e׈LNNr08!k,cL_zT*v 000=,--An,%{k@*ʌ:tѾ "a-WP^'"ZbIu1(Z^P;|bEXQ@O2Z"XsXڱzW/xf0kBl-DdUi&t]fcyXU9CzꩯfYpwñcʕ+jCZuܹ3NQ {BzTz l6BSJYqOc'EZCAo!pKKrC%Zd-%mۆjj?S\u@X٭IcAy(ǏOZl0>>pQhpI *ȕlW*9wD6xZ8+NW1fu+ t­/VǦ.p#0BB"kJ3w׮]pUJy; )kqVΚ- .--msՂpZ_`rR†Oґ lȍ6hh"@ : 8??cjn_'&X#DјyB%GFF̙3pupwm099 f[]PJ5-)߈o?A7ܪBI*xI@:G8 0ɰmT&VF7k^0my-go#rQ?Y)<ur̙("l :t .@{nfK/AV,(l: Y-ͤs6:/gWdׇb 70 dl߾=k۶!SF{>f)?(ux(ēb*rQ!<ٳoOZCCCsN8sL2x+Jf5cɺu vW+|^x ;Ɂv9Di IDAT)E2p ,!r9`A8nmJϿ!$ ](ρiPT{K.A044###~BHl6fZ]Ց^ΐy@!"1ـ׊l^-Zp->3LA)mߓ^i}!u ",,, \|YD7eC}kE}$>V+ղ1p]w}L_ @G'2M3Z=/fD d df؝RB mML&{( B:r5oKC>XY)o"XY+q!9L Hu݌/^S5C\TV@%.NR):Pf066022/ VH/VVMƳt;(^[ #|4M˪jZ&'$$N21]cP u - U V;-)5!rj5?u;aE]]BwJGѵ|J) cyy 6#USTF]ӱR۷oΙfF,;}]m@K)AtU\r{%ZY*$LZ7J)<ϋgb%gaBlpJ%hb-}q_NBz^'Hl3\#|ljw ~:[a{5t!Xu7, Lfjz<6|S\c7>^mNoA$YXHߞܥRi>Z~-A d/om|y9B4M^>S>pSp0VFzW;u3ɬ zCǾn$ez[X13FBL z5_uB\!̛fR[b v7M) L`X)wjnՒ:x,nb3[z͌QO6f۶~Φ6`V4lɠZjo=+*(olVM%W6.mZZ܎QJZL`s͊7`v. sVW5%.uy== ظ_пiDEu`e+'& s+NnۅB"_)&H.^ښnN͔@ֵ[<e `~ynk{lȊ뙥YahP [u+c8o|5Y?Xo}?I9&n.i1?86ҍbALVU`o`UJ|%o=h'm"]"fīBdFDksHӪ[19̦@4aBXkCYa] *=8K 5zu--pf *O}_X6 :y-8ܿ)F´nueuW'{d""+HkD<6$ {EjF^.> Oą՛{ s!EV}-0UT{ N H#bRAdxqA$VD,;JWdkYbYRL7• ~c!6mW4mBis,o=]X*e)0X9.t!7M% qz]̽^X ɉmV,3u aiͰP{U,"ˇ*;3*[ruZb(Bҷ |@?!iG8wy,: W(+ p]w,CcεSi8܈V!bD[$Wtp' "Q 1I_iQnұgs{=9ǜsSsjWP^{=k9o<~Ckeh4JV1rO.)[5J?&Xdefve+'+Y)ce_9 Z0ph.\`xF⥂S{D~'4`oZ NSfRXBRB)%ݮȲLw}n;h߿hZieY3 jt$IbǤsF@5gۉLv̷RCb<WﵸiRݖiV%69N`HĴm,u#fS S (Be)ERJE-R&ƘTH:ly|\@$IJ)%ʲZk%B@n֪aЈ<7O12-2B$d<Ʋg@$I$)iYv$QRJЎȐVVVɓ''"W2qt 4`0 F~_yZ,Sz _X*HQX]]$I>UNyGIDy.>Mj#x, YEEQ$(4MS 6Xj-F <'lYr<VQiY2UJB^Լ\NFV-"ʲl ! !$"]&fCauuUw:N#1e)LHen]<*MD`)]cěIӔ(ZatQphr+N+`0H;WlZ ($I$$,yAK֩{SȴnYx.]RDBhAs+  "ba"LZK!=`Վ$IZJ1F!dQBEQ&I"*I1N#677Ê5A.0 "IY̲LmP)&I? /~wu$AQxGq!t]3O7Їȑ#ӧODQdls.-4bqu+x !)em)v-uB$^[[i*|qID.!;@1gdYyi:W"eYr#%)4Toׅ΅P&"1&Z}5k1FQZ yk"RJ#B%ԣHu]ni}}] 'Oƃ{V#;@*.QQeY$Ih@c~'i7=Xc,zI52-6T=fQm~pF}c׆_ƸFc/wF%<`qsC h g|w^Ły~ohVVVL45 VsssxGNQIY:nM;Q5bߜ(+ݟ۞?3 n y?~?\}31I>b;)e+˲4I?~ W?Klj@&l0)Ew}`@Lwch9}Va'إY2sq# "oP}urA{}7$ր xcG/ܿ)׋\)as@"ґſsO=~/yϼuQW2n)WN:q8IMq+I]E:B|םw7N/P {I}6+oiVB$ւ!aI/BqxeA~n ?# Xyp=@(Qx3>@ثP|D!̻ʊc`[B{o=10x玁;GG#\ #xF#vhԒRco~p~ΣǐmAy#_ u=xolkM})`$>V_3. 48f}3ƥ:Fh{]? Z副}ӵYYyGQ177W߿_=C.ƚuaTF`)iI)Tk%_K7]zsMP :I  aOc CCm @ AA@9N = $"ϯBJF:Ǔ} ᕋn%ʽ HH2l!{!dV0F* EcWG^3kEFAh]}Ӌ疵0ٟa |+*2*˒/cYEQN#,{{WyOQn|!3 䞁+cFH"? ϏxƱbɆV=–P|]yFV0xc(:ގk0ڝX0(Q`Ϡøߗǣ[=7Kh]Bkk.0$?~#v,KDZS rMH=x B%$cBVrA0אÌ>28[+lmӤ+YVEcu7Ri=tBNJOxsR4&P(0BQnGQh: IDATȞ"S.O4ɼ8IkMJJߥ d9`=`4(V5A7ž/RH_86?9ޢq}[ʜlE HȆѰ?F80v @UDs)!'=w;ߣL d ^:uR>tDQ\}j+vRe赝J3%Q\ ]G r "ܹQ0b@a6zҢs)ZHm6ZA"v-r\dβ̟ Dm@b )E:~68ނtJ? @ RÅIDviKuԍB@Ė- ҿ&8#(\8QAhMZ`%+fݓ-dHZSףx,P$dؙ96GvV`2206#NC "/{myv;^Ks.~ !ܵEI\`*5-`Er.+r.. Dz!S Lk D+h@q:( 8u)h]9Q 0eN] EV>0}(3I̴nW@!!3h&oK(RJUwwVa\i](@ ZFByi?1% iPd8F&1c[0XکQ9<4FmٓKȎ!X2$@ k&u?䚚=ֶքNv$21+sEXvW0pn pTsF ?5kp;(Z8Qe ^xu֦$k NJn9e`l*h*B@k7`A+V AaT]g@"m4mB_V4ͤhߜ#"aB#$R)!ѨyWUd3:0_;t"%)5ѓ XPW>!j '~mBw_#4b8"FȡG`C 2 Q=Nx 5*H6 ^Ce`K./"x}XC-Atx6:o:V}BZQHe8DÓ=&nt3NLh 0P@ikӍڋ]GCv0>gD3b(`De+"?Mxs.Ӑ^ 2m]hD d2돵F5rkxW Vk=/%TBtª8{G)qF(b*x9W;4& Ratn]esi 3 e #caQ%@ pp$HkD) C\,5Ve]SG?oUΪb)'{jIn .jQ koRDIUv~]nXs!Y]]5RJn:y&"$?cdHQjd"va '[" tĔ}p/7dO*%uǏ v`0hV3T)c=y˧O0t:TJΝۗub߾}%)zVL)gQ?!|3D%aD3"XCbBxAgEY"yj<5GJMlAsɻ9}'tեup)YUS2+YXut]G]Ϯց>vQ) 35 f.U8~xr…ZWo|>,,,ܕ,C J绲@Cqj DƬH걕&JhaQOD'dDk>j"NeHD-d2+f%/FC%jv^l1;54., Ps6U.Y-? (cy0|VnEŀL5{2; WRՁp} whB͵sc*B^[xի^5{w8p๷v[Z( (~(e+ÇO}/}̙3~}OcǎN:UJdHu/M~뛅`$4A10Jz 5f;5(=P>qVY9&>@TΪ=t LkZ ?s cXkDF|sssXŠD,gPhtv/~/,//{_yceeeHW 7waY7-ktTN&qs)*wc519v߅i'HjrS՟T&p﫽`o=./ -Ռq (]Vs+űp_vrTp?\`L),Wm:2ņ,, }Kya5kjFc Wh sOۨ Vc *0ζ8[!^lUv{z84jƆ5eYSl\a*ٍ<@%ȍ3f1QB6Equ^ƩM +h+QA @ĭ\Z~ W9FzhB0c_?߫:_刈LiUz8FdHDZʈg'BDT Q}ոe( M2ŭZ(׃*,Q1j@d)^}@G+\]]mI)_җBq,a)ۿ_+ηO|:=QRfYm(''|.//ϵ>lܮJ{^@-eRO}SO(`&RvPJa8jA<+ieYV҅{X ϔܿpRMT_e`S0J}pJɖ J٥ j-me!BFw)( Cq5-7vp%:\z?'[KQhlnmW!ごG6=宻/{˾6MV4M}"2/;8P>|8t:̙3R$w,],KHQ(׊pHNL/v߿~_EX/ӎΔi]ADiD Mٺ ڴ8hj-(гWa|&:°Do;P1Hn9>SG'}W ֗cZ%QJSZn3" `TKwM  AiR`BFRݭ4+͊t":Vs/WES>(7r1Ǜ硵mP*l/gP8J`B\SxB ^1Ѣ3ALJ4`r"I (Q޸Rx#CzzΈ3YX+Ρ(di8pٽ^/|<=)~}o~y^~w}NQ<6Rܿ/"YXkC'I@(Ck%S#lB{鬘ZB3!%XB*fBP j,+Q *Mb2ܻAd' ϓ ]4(u5/ $"Iōul*sW,#ԫᐬq)q\rt[Mc7TlѼ`!V3+o4@; "NO~bӹgPJ4Rv;߾/Zk-vj8{,!*sssHB I0IOH3IYhoVNDvzWZr &hmP*['D "STzc[:Xd`|B[cRFELo 5< vO sa rűBFu ҵ-`f"\%g߈]sUFXHcOh 3nVa轎 .Yj1ց:+ 8qΜ9#|-2"Z-he]c,RJc}lll`߾}X__G<2<> sזRJJD);# 0:+f Nגvy%Eֲt^?y`?^BtR՘"ޫE >FPή+M@wu R?gWds O&d1c0XƧfPuay7\s\幍Wy$TkRn;\U1Q"'~ϲ ^BAJV$IpY,--!MSZ- C۷p@( aE.0hZriiΝ;wu2S $&S 8Ͷjj |AoCPش` ه|֦|3&Z0b+2ؓqxqr=CKDX| sayN7'D:='|].opSGԔQօm2$F̻º7T  6^{LG@[Jϲ,n+6b*^b*#ϲ\%ܽtWW﫣 ?뚍[(W{1o$k]v1"`$.pȴ^ t:H)1 vؿ?xꅅnߎ>XfJ܌b6Akp] ]v \MhjLj8C' XTuPm@MBVL;G_H:a3O&()+z@M ,5{jh38.BTM4^&1>^8甏Vˉp JЈѫ}Mc]s\X3:Ǝvq#d.@Lblnn`pC\>dDk8F־HpuupA> ؀1sss(@JŠYY: )AQomo˷U;n E%&[s,k)Bش@|V]4޺KC\8ՠ&N_l vb Mv ҈7U IDATWi(U'׻nB?\iU%$z0k9666XwTncss^!15JvB}S{˲B3@x1!QWr 46ޛɅVʂ0;>!5[Tj[7;*cEDKy14p+7`ћ]XUQwNfߣVf ԁuB)|&!vuC Qy*w蓋X#4; .~tBsta]in1D[~bMc#Xp ={z*. dvȃ NR)Ui3@dOvSDי۔wik= %ŋY^^~q FQlӭ3e{GYX__( \p "lnn"IO֨4bɲ ?Zܑ7 xu$˱\`E^3ej.z80j)A؊ ˪[ @rƧNjA_สU|[=ٓ=ݮ*2;{짎9E$(Szxccssn׳e镅o@(htǚO~Te~iL)^9U%vLWXDVSVp5BF]< { pHE_ҧN 1p6̴߃\ ZW] LS#'ׅjjIkUj5+)UNב!KTUTEAA:d +GUGݕזe)IUG"^,~)%:>OP1p0qeY@dCR Wʂ`+k͹Z6YA,!0=q&8-.\zȣJOȢ:O"D i+VChkFz[iחLQ+Ձ"iOL.!^;. jpy?yG c!1^ccH¦їL>u-mǫv]UsC`L3߻2 YK^O,,,+qT3&Jqb|lQ^Y_'>$Iֵv}̈vR 3=I-\[L(LP@Qjvv Ol<-i"7}\vE0++\?=ͪsyLgWnaRVwʹ `Ri{W[:>UwMk6xDbR?QCMBkTk8tK 4rg5#Xi.YKky}-m+sssSv TIL-b޸0溊q…ϼ}NǎOP fŮKu-Å4mB߁hm8;%8QqV'vQ+QQvIz}!|wc2H ¿K!j9H<|K7"v'a6Sxw&=*ݼ!:Ѷ5+rG-˿'~?$^]];7$I^^^Ι S915I\m8FrEO}~~c>讠`F@6G64R p qB $ni냕":j c}Mt":-ж֢y!\=a'nu ʌ 7 #LDg3 PO/+bˌ004ϥb [ @g#.6XnPK t\XDsShsg6`` ;<;L27׹ߝȱc6{~k^_R޶zv9uep8#,'Gp>Oo}u:չܹsj70# $h/ ҜƻU ٪-Z`(WZub'.E)V\\#R'] 5|OhN̓xϗ吅c6ω A^t"C$sN켟bWT&&bX!h q NJoh*:6r"_J\@+&Bq̀ZC\\C*YrQǧ4 Rq}ԩ'СCZ%n  9bS0/|o|CD$܇G v ~‚Yv&Lb[]>?|Zm#FauB@M/)"FpܺǼ!-?o;q(ܢ,,84b[j@ b78vgh̋;&܅k`&A|s2^MǓG$#bff 3\-ѷ;݅U;<ެ`ꎌk08?=;y#ȧw9W,//W:q9"r]`Dŋc}䵯}ۈ|>Åݮl(0u4(a97QKJ ]=AlJn@v/A؅%@h!wî.ua _)VKloxk8im8ipO[0\0KRޘc&M8{ ve1 od\;$x#G__~镯|7Yzֿ?;'vPy^hBeF̕?S?S(1f/9P[ߺ )V'+`ᘈCN|k_@u{?{Ӟvbii vX[[sm B^ej҂Jn2^yF\6h WW'؍z(P?gWDe{zGVK}pG'GH@wxgߺSC-ꆈ?WVVs΍oŻx<>|7絪,˞x׻4Mv4>}:%n#Q Ka;T&ՅƧ}%D:dP-1%u8 eGUIGDŽy;йէC}*KsT*ʃ)lR`S[pIcB(:{b~Q b`bk~yc(i(b#I`3>/|Ξ={,ˍ'x" XfG\Ci s u,,a΢1.fhp ~`х왊}#Ί@TCbp}B%8\`EQ,o e P ,-m xL"^6x3N6ХOIIۺ@;-ȽD+dDGxgaZ,+S Fiݟ] u 5ge8gciynn1%<βb+,ξU!ơC'xb0# s퉴JW!L`uvYrNJp+sZٱ!t8eJ%ІϒifU|ѭ-\=~jLb"O&{ИUUw68qxϫu 0FʹDKT#W]C0Fc] ;DK$f0H]| F'O9̈avSt rai8TZ-@PW'Є8Q,B'tˋd[]N p8$ƈKƑ] `m-0wcsYnLPe7LoBB* h "OzՐ7"3؝ -QU_[7+j.ԦJ~76XvoZ4,ξ] O>]5B;zy4Ҭ7V%"OPKe&S v:+Ea.VέU&!Ubč:y6] ݮ"ܒ M7?[W[ETx<; H{F]KC' %`Ux:!R!ǜkU-Eq̅u&pF !Q>pًƘ1vYJdVMI%(܄;X!QwS%S]Xg%FU힐8n=0a Ŷ1(T8>w\/v}8I@ď`0νc)Ⱥ]7F-iB 5B 5'mUo] vM~ri9M8Tp~̶ҮB^+DdRŠ%$Iy8 -@+./XBQBk> ŰZ H=Qq5OZ <l}+U&NW\P/uzH}M~ фlYK!(y :pwN-"Zq\X۩D vgOM;V]C`ݩk+svokra1Ϻ8}՚=y6n6e&NyBi{"˰2xE솺pV\X6~-`L/̑aK!Ԯj>$]6J x0Ʌ1bq%q0/:=ƋmKWңؘwyxwW퉮مcu`1vg0RnRdVi(/|?JAD3ƚb b[˔SA=ђ[[@XNv}mUՁ4*=E،I>nգ<|HtLZaB{J]DDaxb8crFnB9r;A Yx]ԽK-Rkv1c2Z[ Z@ ۓW>og] o"ls4;7:Edb Wx}f[[O]XiJE/zG?m(=#3@RZ \_j.I>.,p=Oh{* : 9e[ uk]Rv9a1bC/LG MY:nbQEux)";!)gaq[&Rv#G q®e&~$]3[{r.xr@!W/fb;k/s0"Sӳ[W7BNK *O񚫠sc`,K u ӊ eCČ3@v/'&N'mJ֤@Fj(u5W4sG[SC AXL#?4tP dB9(T't-a*aha[ag FAyv2 jި ?Os_PRM{Dzp YEBa.`l){r%r=?,5bRG Y=?o0zK BCy 6F|1al^qg+DI] * * [@7 YXKAG(粣tRLfZJ@tepMfaqWW đ}g,/bdY Q-)ࢍ!8TV[#LdRXX8X^;4NI\0n\-?8-H n_a,Dvi4*<@J@N)@;7WuGۖl@k__t:(@+aظzkT!Xy6+9eXhEz$B`ssWgI ̑Z sl 4l$I;dB2pR8Ą1XgD\M ce 3k 0(ZSՊMXA{[YYZZ0 OV{m)N Bc\t;B n" 2 .xb/Mzc\w='YXej\3)"`~j:^H\LH? 4YMW~89?/Xجe∾ĄE:8(QR/phJAϴwLI Ss_NK6"u$Œ dJ a1+U647Int A=uPf?c3&{Bq =h Ԫj<2G $63e]>kEdgThџh Zt  $kHi 0}K&5D@R {G?T#}^?q/}g?m۶WlݺsΩ*,5 r3Dxж&, ; iH@(^DI^slvxq%XXEQ1QP)0^x6 璆evU}El3a=wfҀIݫV$mDXFCP)+Yb;t,y9{kh{-B~&z>ţAc7Q獈ȦJ G7߼3"(Ӕ0~Z51EC\!Ԋ/U‹6fRwGJ6 *S9Z($$VQ$Q6)FظL1מ :ԉL‰0 +6PmtL Vn]+үVJ82,&2g*$qHLX|!$?7qwN bop;|+_G !h}g60;$3n\@ҒCͣ~MozӧWVV:;w:GT0wGˆ`:@hFuGbNlDp&@g3q\m5^m9޳l}': ՙg1J,. VHfoW,tw(1k>I+<@3Yo> ݐN+K @6XM%6&&Ҵ~jh$vT?,,"2W^y廚}|L qvjER' el3=%{Qv0g@w}FOcִQI9E+Vk:isC`4aSLklŠ<-7aE1ʚ`iF5?G6$D,ٳ犋.:cM742)RfthNj5<o6:iMaxIKi)"!IK\pw:C'pBk߾}S}hJ/N!j*?[0M";gt|N("j/7뮻ݻ]є0b ؆ 4LD?37AMαDkep(1@˾i{e_5Us?ZZ dF!MveH1j|~vl޼9ؽ{QJaڴia v' ?6 vٟc@;Jqvl)\ 2$Vq:7m4ش k DO %pSNwe$cҁֲ1PB2S!NezNbNLtٳbVjsP H$q =QQքk?_|]veZ͛wi"S@ cࢮaٕv6n[Da+%vi <YF99‡k76jl:8q1hYGYI*=tTcpIj b1D7q U&9o 5`M=} ,vı cHx9P*ѢHVU~ zo:sz(m耣t՚U\fFQ܋1^N7>E/zr&əx CPLtBQ&rtG?K.+JʴV% 5ԡ؀Ȥ/p\&,JX$u}{KYSݬ *s 9cd,3Gqyc; *&QX1mkΜirL\w' ^ڢ;s.ŝ7l\䀁1aBO=yDZe &dL|~@1 XܵkWk,DS@zL+1br{[#kH#^E0H38wR &_"̘S=L ^n:gsHkʓkI*ɦdhwn_Qy*k`Q'ڶw3AIOԾpZ蕜E)QEsDjdEaeWNٰaʊY\\f0{{:ABCf;i7ruPگ6w&:Y) wbk[.1CqU8΢)ծ]2lYq>C!kΒۥHa ց_a@ϸîR NP\qE̜i߾ lfAߟ @* +HNzPT0X 9]&,Yjn(G&>gF+OJL_䙹∳8fz I'sv+ŕ]?!FDIi.8#d5d8xBHڄCi&qg$ᛞ\8G8uY*NЬbM ,Y) ?6]9ܨ` 3D1)";Ӕ%x38)W'O1VU{᙭50N<3TȞK&:nE9-#a.h}H։k׮mh Z"B<~hLyR^MQt0WԄ5&l5=ʚaxnZtISL^Ρ|'M!Y\/aLh%dA:R]זJƓC:) c Ga)x>"qĉWGK k@rwexxNk2"\uUwc۷o: !e4]cM4f8 VɟB䃾c4EN}f3Dg]-Ԟjر"N+b@h*1>PdJ2ɂ&ָd>Vj 's\ u@i:X}?G"t|$\O(pϋ0TyF$dޝ˵28<j#%؍}.oRrgm.ԾZlycd t^}Nԫ9`M#y@ai1 d3V"r䋕!OI=zK3GE) 26YC1HA J0(G)*DҤmOMQ1.V߇sO@3RZd5=e {kY&0jw(,@X8weבaŎ5.EΆB 8-"L1ka6$Wu'9o慝'4&KF΄mZc̝Fciݝi<ҸGafLE 'lªvE,Yz' BUjDF-6D઀@6{i :]&vnF}sGN\/u#bӖX}O;@x/8x_I~F J)6 Z̕J%+X)Ӧi8Dφk{Fuu`,TP &"l&k7IrZΝ hhNHk 67WKZ<+;M ݞ=HLins<*wݻJr䦛nhb>mc7H)Ъj)c`ӄH^~L`"^-^[o ;LZl5H{&x y tj~C?bMjAF'LX{- i/21qy0ƛ5-BW/0AJpPV}fXE{Z J֯RZ5 u;vE𪫮 ݻ P_57{l dزe -//A2Au1<ܪͭ|$l~VK4^RvԙX2%kf<$繶/Zr{bavS.7vb†BeUpg|@(rW΄9:3n,,95cMpo雌BłPypk=*TS4z8@F YkM+++&2DA( b9jž@1 &"%U͙o'2dӞ- ,5 ,1 zg9s3꽱ܢ{EA*tPؔdfee͍+p֬Y4 8cǎm^xuJ#gqFk޽y#f vM؇Y(wOO|Y܄#퇗8Հ9l#ڝ$/$Q&5JR{y%UkheR Zig~6 "wi 4||Z Ǧi͔؇rQXN/BCAl69i4fg7]8ƮƇ>ӂ`nnl6JtjAԢ(AP3T Y_pVq̑rIN[÷w~i_x:$nxq3"^^^HөjJE(*j50j=1c bNC~0EӉ vX:Z-*Xu?p| oy f^ywx=5cU m`5Qz/eq9nj/~xtѨ~O3!οׂt,_rM9@Bi@8;suO >f:X)~LG72λ1(^l$#zx* ^Ó${| iH!YK%t3=%xϯ5`I~i'hN !3w<6#7¿o8#i uWa_gް} `{ X3\r [}`F5.ϫKQ,!kvAI¾M?b|\b\l`mr18ʬo= cz*1mncN}RLk$ 8O7I>c03:<ύ7"`\G4 ϭӄR`8߷s^\cݛ\$ԋ DEa":Xm$ſD)z4xY/.A Ró2FK.Os6RzTTǧLYRJJJ%ۯNa[\Jݤt\%[UygxR`mm(b09~אҭDDž F89tg.{]GLgPJ{Z!,U.CM=g<0SzTpT86;-sR#+;CF pgAzvn*9`?voj\ /9]%'N,(R5H)}l: 8̄ ^2}3s!y/Ei{n?{#u@4mgc~ 8+96o}s,1{pV}, y`DL*mzD~IËw`LK>ß!'dzjq}9o>Z0PQ?% 0G>O:<&DxJxw? 6. qI`G>$^-}$}<}8>}qG_}+CC{->o}w}סkzo,s] -[D4(8b~QT] <(eImLt Ro'[ccݨ7 6/Ia!}}ƴ\D?/> ̀?gx@%D^ﻂ6kP)DDۅc4 OlOШa4"lw] Yyz||0$J? x$ E"? ]bE~*l72RJU!~ EҏmKH{#)G-Y q$")kq^pDT0kms[IDK!&s:1U G?_~dtCw{r.k!Hx,p LaZIDH,N<(xbt6dBQD9Cy$?%zȢADVyyuFI%)h37P>ҭ$Lڑd#5I"*+PI*l<[h>ep䞄$'%5g60QyDݲ$yN?);5=M,/.^rSv452&Ϧ%slD$q2i"jjH) 25h{ ޥ$p/8EBdWmD D&&ki^ԃ4 a>IӗK\kGHGIR~Rd/y_XtI9^:믅nt[џx9.zk)914C;]9 31CukzeEc}0pf ]`eI[剂"e\^`g(>&:м'r -}kkȢxwp/,a?' %1iOCP Op4*hf AOaU5|j>ƒ/ yptFQQ%Q^ޏָmY#}!|{?MXpS 28-`\B?`<21vͼ=kGu=~^(%~{]5JO][N 8 lnpL0֮?, 뾸W_v("?pN<95X~҃M(sQ% `2J5M&|\\IU;fr?߿k?fH)uWtƫfƇSpLLl0',wX@Y~xb=l8 Z{^{?C8

    Running as non-root user

    Under normal circumstances OpenConnect needs to be run as the root user. If it cannot create the local tun network interface, you will see an error such as: 

      Failed to bind (TUNSETIFF) tun device: Operation not permitted
    or in older versions, "TUNSETIFF failed: Operation not permitted". The simple fix for this problem is, of course, to run OpenConnect as root.

    For security reasons, it is better if network-facing code can run without root privileges — and there are a few options which allow OpenConnect to run as an unprivileged user instead.

    Pre-configured tun device

    On Linux, it's possible to create its tun device in advance. For example:

    # ip tuntap add vpn0 mode tun user dwmw2

    This creates a device vpn0 which can be opened by user dwmw2 who can pass traffic to/from it without needing any elevated privileges. You can now tell OpenConnect to use that device by adding "-i vpn0" to its command-line arguments. Note that the /dev/net/tun device node should be readable and writeable by everyone. (Some distributions misconfigure that, so if it isn't world-writeable then please file a bug against your distribution.)

    Of course, something does also need to configure the IP addresses and routing. You could either add "-s /bin/true" to OpenConnect's command line to stop it trying to run vpnc-script for itself, and manually configure the network as root too. Or you could use "-s 'sudo -E /etc/vpnc/vpnc-script'" so that OpenConnect itself runs without elevated privileges but can still invoke vpnc-script as root. Note the -E part which ensures the environment variables with the configuration are actually passed through to vpnc-script.

    NetworkManager usually has a dedicated unprivileged user nm-openconnect and runs OpenConnect as that user, having pre-created the tun device for it. OpenConnect then invokes a "vpnc-script" provided by NetworkManager which just passes all the configuration back to NetworkManager over DBus.

    SOCKS / port-forwarding proxy

    An alternative option which doesn't require any root access at all, is simply not to create the tun device and modify the system's network configuration. Instead, OpenConnect can spawn a user-supplied program, passing all data traffic through a UNIX socket to that program.

    This option can be used in conjunction with a userspace TCP stack such as lwip to provide SOCKS access to the VPN, without requiring root privileges at all.

    SOCKS proxy implementions suitable for being used from OpenConnect include:

    openconnect-8.20/www/features.xml0000644000076400007640000000355414067426206020732 0ustar00dwoodhoudwoodhou00000000000000

    Features

    • Connection through HTTP proxy, including libproxy support for automatic proxy configuration.
    • Connection through SOCKS5 proxy.
    • Automatic detection of IPv4 and IPv6 address, routes.
    • Authentication via HTTP forms.
    • Authentication using SSL certificates — from local file, Trusted Platform Module and PKCS#11 smartcards.
    • Authentication using SecurID software tokens (when built with libstoken)
    • Authentication using OATH TOTP or HOTP software tokens.
    • Authentication using Yubikey OATH tokens (when built with libpcsclite)
    • UserGroup support for selecting between multiple configurations on a single VPN server.
    • Data transport over TCP (HTTPS) or UDP (DTLS or ESP).
    • Keepalive and Dead Peer Detection on both HTTPS and DTLS.
    • Automatic update of VPN server list / configuration.
    • Roaming support, allowing reconnection when the local IP address changes.
    • Run without root privileges (see here).
    • Support for "Cisco Secure Desktop" (see here), Juniper TNCC (see here), and "GlobalProtect HIP report" (see here).
    • Graphical connection tools for various environments (see here).
     openconnect-8.20/www/tpm.xml0000644000076400007640000000677414067426206017723 0ustar00dwoodhoudwoodhou00000000000000

    Trusted Platform Module (TPM) support

    OpenConnect supports the use of private keys secured or "wrapped" by a TPM. Instead of being stored inside the trusted hardware as with typical PKCS#11 keys, the key is encrypted by the TPM and handed back to the user to be saved in a PEM file. Only the same TPM can decrypt the file, and use the private key.

    Use of TPM-wrapped keys is intended to be entirely transparent. OpenConnect will automatically use the TPM when presented with an appropriate PEM file with a TPM-wrapped key.

    When OpenConnect is built with OpenSSL, the appropriate TPM ENGINE must be installed correctly on the system, and OpenConnect will load and use it automatically when appropriate.

    For GnuTLS builds of OpenConnect, it needs to have been built with the appropriate TPM (v1 or v2) support built-in.

    TPM v1

    TPM v1 wrapped keys appear in the form of a PEM file marked with the tag: 

    -----BEGIN TSS KEY BLOB-----
    These files can be created by the create_tpm_key tool which is part of the OpenSSL TPM ENGINE or the tpmtool which is part of the GnuTLS distribution.

    TPM v2

    As from the 8.0 release, OpenConnect supports TPM v2 wrapped keys. These have the PEM tag: 

    -----BEGIN TSS2 PRIVATE KEY-----
    There are two ENGINE implementations for TPM v2 with OpenSSL, based on different TSS libraries.

    openssl_tpm2_engine is based on IBM's TPM 2.0 TSS, while tpm2-tss-engine uses the Intel/TCG stack. OpenConnect can use either ENGINE.

    The GnuTLS build of OpenConnect can use either TSS library, with TPMv2 support implemented natively in OpenConnect. GnuTLS does not have its own TPMv2 support yet (GnuTLS issue #594).

    Creating / importing keys

    Each of the above-referenced OpenSSL ENGINE implementations comes with a tool to create keys in the appropriate format.

    The create_tpm2_key tool from the IBM version can be used to 'wrap' existing keys, using its -w option. To take an existing key file and encrypt it for use by the TPM, for example:

    • create_tpm_key -w key_file.pem tpm_key.pem
    Presumably you would then delete the original key file, since having the private key protected by the TPM is a bit pointless if you just leave it lying around on disk anyway.

    The Intel version does not support importing existing keys; this is tpm2-tss-engine issue #39.

    Legacy TPMv2 key format

    Older keys from openssl_tpm2_engine may have the tag: 

    -----BEGIN TSS2 KEY BLOB-----

    This format is also supported by the GnuTLS builds of OpenConnect.     openconnect-8.20/www/charset.xml0000644000076400007640000000360514040533771020537 0ustar00dwoodhoudwoodhou00000000000000

    Character set handling

    OpenConnect development started in 2008 on a modern Linux box, and as such the character set handling was extremely simplistic. It boiled down to the simple but reasonable assumption that "everything is UTF-8, all of the time". This was the case up to and including the OpenConnect 6.00 release in July 2014.

    Since its inception, however, OpenConnect has been ported to various less progressive POSIX-based systems and also to Windows, which has its own particular style of charset insanity. It was therefore necessary to implement some explicit handling for character set conversion.

    The design of this character set handling is that the internal libopenconnect library still handles every string as UTF-8. All input and output of the library remains UTF-8, and all callers of the library are expected to handle them appropriately. For the GNOME and KDE GUI tools, this should come naturally as all strings are expected to be UTF-8 there. For the command-line tool openconnect itself, implemented in main.c, this means that character set conversion is done on all terminal input and output, and all arguments provided on the command line.

    Where it is necessary to open files or interact with the system in other ways using the legacy character set, libopenconnect will do the required conversion transparently. On POSIX systems with legacy non-UTF-8 character sets, it will use iconv to convert, while on Windows it will convert to UTF-16 and use the wide character (so-called "Unicode") APIs instead.

     openconnect-8.20/www/menu2-contribute.xml0000644000076400007640000000033314176202121022273 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/ntlm.c0000644000076400007640000007742614067426206016675 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #ifdef HAVE_ALLOCA_H #include #endif #ifndef _WIN32 #include #endif #include #include #include #include #include #include #include #define NTLM_SSO_REQ 2 /* SSO type1 packet sent */ #define NTLM_MANUAL 3 /* SSO challenge/response sent or skipped; manual next */ #define NTLM_MANUAL_REQ 4 /* manual type1 packet sent */ #ifdef _WIN32 static int ntlm_sspi(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf, const char *challenge) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; if (challenge) { int token_len = -EINVAL; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; in_token.pvBuffer = openconnect_base64_decode(&token_len, challenge); if (!in_token.pvBuffer) return token_len; in_token.cbBuffer = token_len; } output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; status = InitializeSecurityContextW(&auth_state->ntlm_sspi_cred, challenge ? &auth_state->ntlm_sspi_ctx : NULL, (SEC_WCHAR *)L"", ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, challenge ? &input_desc : NULL, 0, &auth_state->ntlm_sspi_ctx, &output_desc, &ret_flags, NULL); if (status != SEC_E_OK && status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); return -EIO; } buf_append(buf, "%sAuthorization: NTLM ", proxy ? "Proxy-" : ""); buf_append_base64(buf, out_token.pvBuffer, out_token.cbBuffer, 0); buf_append(buf, "\r\n"); FreeContextBuffer(out_token.pvBuffer); return 0; } static int ntlm_helper_spawn(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { SECURITY_STATUS status; int ret; status = AcquireCredentialsHandleW(NULL, (SEC_WCHAR *)L"NTLM", SECPKG_CRED_OUTBOUND, NULL, NULL, NULL, NULL, &auth_state->ntlm_sspi_cred, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("AcquireCredentialsHandle() failed: %lx\n"), status); return -EIO; } ret = ntlm_sspi(vpninfo, proxy, auth_state, buf, NULL); if (ret) FreeCredentialsHandle(&auth_state->ntlm_sspi_cred); return ret; } static int ntlm_helper_challenge(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { return ntlm_sspi(vpninfo, proxy, auth_state, buf, auth_state->challenge); } void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state == NTLM_SSO_REQ) { FreeCredentialsHandle(&auth_state->ntlm_sspi_cred); DeleteSecurityContext(&auth_state->ntlm_sspi_ctx); } } #else /* !_WIN32 */ static int ntlm_helper_spawn(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { char *username; int pipefd[2]; pid_t pid; char helperbuf[4096]; int len; if (access("/usr/bin/ntlm_auth", X_OK)) return -errno; username = vpninfo->proxy_user; if (!username) username = getenv("NTLMUSER"); if (!username) username = getenv("USER"); if (!username) return -EINVAL; #ifdef SOCK_CLOEXEC if (socketpair(AF_UNIX, SOCK_STREAM | SOCK_CLOEXEC, 0, pipefd)) #endif { if (socketpair(AF_UNIX, SOCK_STREAM, 0, pipefd)) return -errno; set_fd_cloexec(pipefd[0]); set_fd_cloexec(pipefd[1]); } pid = fork(); if (pid == -1) return -errno; if (!pid) { int i; char *p; const char *argv[9]; /* Fork again to detach grandchild */ if (fork()) exit(1); close(pipefd[1]); /* The duplicated fd does not have O_CLOEXEC */ dup2(pipefd[0], 0); dup2(pipefd[0], 1); /* Should we leave stderr open? */ for (i = 3; i < 1024 ; i++) close(i); i = 0; argv[i++] = "/usr/bin/ntlm_auth"; argv[i++] = "--helper-protocol"; argv[i++] = "ntlmssp-client-1"; argv[i++] = "--use-cached-creds"; argv[i++] = "--username"; p = strchr(username, '\\'); if (p) { argv[i++] = p+1; argv[i++] = "--domain"; argv[i++] = strndup(username, p - username); } else argv[i++] = username; argv[i++] = NULL; execv(argv[0], (char **)argv); exit(1); } waitpid(pid, NULL, 0); close(pipefd[0]); if (write(pipefd[1], "YR\n", 3) != 3) { close(pipefd[1]); return -EIO; } len = read(pipefd[1], helperbuf, sizeof(helperbuf)); if (len < 4 || helperbuf[0] != 'Y' || helperbuf[1] != 'R' || helperbuf[2] != ' ' || helperbuf[len - 1] != '\n') { close(pipefd[1]); return -EIO; } helperbuf[len - 1] = 0; buf_append(buf, "%sAuthorization: NTLM %s\r\n", proxy ? "Proxy-" : "", helperbuf + 3); auth_state->ntlm_helper_fd = pipefd[1]; return 0; } static int ntlm_helper_challenge(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { char helperbuf[4096]; int len; if (!auth_state->challenge || write(auth_state->ntlm_helper_fd, "TT ", 3) != 3 || write(auth_state->ntlm_helper_fd, auth_state->challenge, strlen(auth_state->challenge)) != strlen(auth_state->challenge) || write(auth_state->ntlm_helper_fd, "\n", 1) != 1) { err: vpn_progress(vpninfo, PRG_ERR, _("Error communicating with ntlm_auth helper\n")); close(auth_state->ntlm_helper_fd); auth_state->ntlm_helper_fd = -1; return -EAGAIN; } len = read(auth_state->ntlm_helper_fd, helperbuf, sizeof(helperbuf)); /* Accept both 'KK' and 'AF'. It should be the latter but see https://bugzilla.samba.org/show_bug.cgi?id=10691 */ if (len < 4 || (!(helperbuf[0] == 'K' && helperbuf[1] == 'K') && !(helperbuf[0] == 'A' && helperbuf[1] == 'F')) || helperbuf[2] != ' ' || helperbuf[len - 1] != '\n') { goto err; } helperbuf[len - 1] = 0; buf_append(buf, "%sAuthorization: NTLM %s\r\n", proxy ? "Proxy-" : "", helperbuf + 3); if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLM authentication to proxy (single-sign-on)\n")); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLM authentication to server '%s' (single-sign-on)\n"), vpninfo->hostname); return 0; } void cleanup_ntlm_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state == NTLM_SSO_REQ) { close(auth_state->ntlm_helper_fd); auth_state->ntlm_helper_fd = -1; } } #endif /* !_WIN32 */ /* * NTLM implementation taken from libsoup / Evolution Data Server * Copyright (C) 2007 Red Hat, Inc. * Copyright (C) 1999-2008 Novell, Inc. (www.novell.com) */ /* DES */ typedef uint32_t DES_KS[16][2]; /* Single-key DES key schedule */ /* * MD4 encoder. (The one everyone else uses is not GPL-compatible; * this is a reimplementation from spec.) This doesn't need to be * efficient for our purposes, although it would be nice to fix * it to not malloc()... */ #define F(X,Y,Z) ( ((X)&(Y)) | ((~(X))&(Z)) ) #define G(X,Y,Z) ( ((X)&(Y)) | ((X)&(Z)) | ((Y)&(Z)) ) #define H(X,Y,Z) ( (X)^(Y)^(Z) ) #define ROT(val, n) ( ((val) << (n)) | ((val) >> (32 - (n))) ) static int md4sum (struct oc_text_buf *buf, unsigned char digest[16]) { int nbytes = buf->pos; unsigned char *M; uint32_t A, B, C, D, AA, BB, CC, DD, X[16]; int pbytes, nbits = nbytes * 8, i, j; /* There is *always* padding of at least one bit. */ pbytes = ((119 - (nbytes % 64)) % 64) + 1; if (buf_ensure_space (buf, pbytes + 8)) return -ENOMEM; M = (void *)buf->data; memset (M + nbytes, 0, pbytes + 8); M[nbytes] = 0x80; store_le32(&M[nbytes + pbytes], nbits); A = 0x67452301; B = 0xEFCDAB89; C = 0x98BADCFE; D = 0x10325476; for (i = 0; i < nbytes + pbytes + 8; i += 64) { for (j = 0; j < 16; j++) X[j] = load_le32(&M[i + j * 4]); AA = A; BB = B; CC = C; DD = D; A = ROT (A + F (B, C, D) + X[0], 3); D = ROT (D + F (A, B, C) + X[1], 7); C = ROT (C + F (D, A, B) + X[2], 11); B = ROT (B + F (C, D, A) + X[3], 19); A = ROT (A + F (B, C, D) + X[4], 3); D = ROT (D + F (A, B, C) + X[5], 7); C = ROT (C + F (D, A, B) + X[6], 11); B = ROT (B + F (C, D, A) + X[7], 19); A = ROT (A + F (B, C, D) + X[8], 3); D = ROT (D + F (A, B, C) + X[9], 7); C = ROT (C + F (D, A, B) + X[10], 11); B = ROT (B + F (C, D, A) + X[11], 19); A = ROT (A + F (B, C, D) + X[12], 3); D = ROT (D + F (A, B, C) + X[13], 7); C = ROT (C + F (D, A, B) + X[14], 11); B = ROT (B + F (C, D, A) + X[15], 19); A = ROT (A + G (B, C, D) + X[0] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[4] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[8] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[12] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[1] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[5] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[9] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[13] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[2] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[6] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[10] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[14] + 0x5A827999, 13); A = ROT (A + G (B, C, D) + X[3] + 0x5A827999, 3); D = ROT (D + G (A, B, C) + X[7] + 0x5A827999, 5); C = ROT (C + G (D, A, B) + X[11] + 0x5A827999, 9); B = ROT (B + G (C, D, A) + X[15] + 0x5A827999, 13); A = ROT (A + H (B, C, D) + X[0] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[8] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[4] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[12] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[2] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[10] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[6] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[14] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[1] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[9] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[5] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[13] + 0x6ED9EBA1, 15); A = ROT (A + H (B, C, D) + X[3] + 0x6ED9EBA1, 3); D = ROT (D + H (A, B, C) + X[11] + 0x6ED9EBA1, 9); C = ROT (C + H (D, A, B) + X[7] + 0x6ED9EBA1, 11); B = ROT (B + H (C, D, A) + X[15] + 0x6ED9EBA1, 15); A += AA; B += BB; C += CC; D += DD; } store_le32(digest, A); store_le32(digest + 4, B); store_le32(digest + 8, C); store_le32(digest + 12, D); return 0; } /* Public domain DES implementation from Phil Karn */ static const uint32_t Spbox[8][64] = { { 0x01010400, 0x00000000, 0x00010000, 0x01010404, 0x01010004, 0x00010404, 0x00000004, 0x00010000, 0x00000400, 0x01010400, 0x01010404, 0x00000400, 0x01000404, 0x01010004, 0x01000000, 0x00000004, 0x00000404, 0x01000400, 0x01000400, 0x00010400, 0x00010400, 0x01010000, 0x01010000, 0x01000404, 0x00010004, 0x01000004, 0x01000004, 0x00010004, 0x00000000, 0x00000404, 0x00010404, 0x01000000, 0x00010000, 0x01010404, 0x00000004, 0x01010000, 0x01010400, 0x01000000, 0x01000000, 0x00000400, 0x01010004, 0x00010000, 0x00010400, 0x01000004, 0x00000400, 0x00000004, 0x01000404, 0x00010404, 0x01010404, 0x00010004, 0x01010000, 0x01000404, 0x01000004, 0x00000404, 0x00010404, 0x01010400, 0x00000404, 0x01000400, 0x01000400, 0x00000000, 0x00010004, 0x00010400, 0x00000000, 0x01010004 }, { 0x80108020, 0x80008000, 0x00008000, 0x00108020, 0x00100000, 0x00000020, 0x80100020, 0x80008020, 0x80000020, 0x80108020, 0x80108000, 0x80000000, 0x80008000, 0x00100000, 0x00000020, 0x80100020, 0x00108000, 0x00100020, 0x80008020, 0x00000000, 0x80000000, 0x00008000, 0x00108020, 0x80100000, 0x00100020, 0x80000020, 0x00000000, 0x00108000, 0x00008020, 0x80108000, 0x80100000, 0x00008020, 0x00000000, 0x00108020, 0x80100020, 0x00100000, 0x80008020, 0x80100000, 0x80108000, 0x00008000, 0x80100000, 0x80008000, 0x00000020, 0x80108020, 0x00108020, 0x00000020, 0x00008000, 0x80000000, 0x00008020, 0x80108000, 0x00100000, 0x80000020, 0x00100020, 0x80008020, 0x80000020, 0x00100020, 0x00108000, 0x00000000, 0x80008000, 0x00008020, 0x80000000, 0x80100020, 0x80108020, 0x00108000 }, { 0x00000208, 0x08020200, 0x00000000, 0x08020008, 0x08000200, 0x00000000, 0x00020208, 0x08000200, 0x00020008, 0x08000008, 0x08000008, 0x00020000, 0x08020208, 0x00020008, 0x08020000, 0x00000208, 0x08000000, 0x00000008, 0x08020200, 0x00000200, 0x00020200, 0x08020000, 0x08020008, 0x00020208, 0x08000208, 0x00020200, 0x00020000, 0x08000208, 0x00000008, 0x08020208, 0x00000200, 0x08000000, 0x08020200, 0x08000000, 0x00020008, 0x00000208, 0x00020000, 0x08020200, 0x08000200, 0x00000000, 0x00000200, 0x00020008, 0x08020208, 0x08000200, 0x08000008, 0x00000200, 0x00000000, 0x08020008, 0x08000208, 0x00020000, 0x08000000, 0x08020208, 0x00000008, 0x00020208, 0x00020200, 0x08000008, 0x08020000, 0x08000208, 0x00000208, 0x08020000, 0x00020208, 0x00000008, 0x08020008, 0x00020200 }, { 0x00802001, 0x00002081, 0x00002081, 0x00000080, 0x00802080, 0x00800081, 0x00800001, 0x00002001, 0x00000000, 0x00802000, 0x00802000, 0x00802081, 0x00000081, 0x00000000, 0x00800080, 0x00800001, 0x00000001, 0x00002000, 0x00800000, 0x00802001, 0x00000080, 0x00800000, 0x00002001, 0x00002080, 0x00800081, 0x00000001, 0x00002080, 0x00800080, 0x00002000, 0x00802080, 0x00802081, 0x00000081, 0x00800080, 0x00800001, 0x00802000, 0x00802081, 0x00000081, 0x00000000, 0x00000000, 0x00802000, 0x00002080, 0x00800080, 0x00800081, 0x00000001, 0x00802001, 0x00002081, 0x00002081, 0x00000080, 0x00802081, 0x00000081, 0x00000001, 0x00002000, 0x00800001, 0x00002001, 0x00802080, 0x00800081, 0x00002001, 0x00002080, 0x00800000, 0x00802001, 0x00000080, 0x00800000, 0x00002000, 0x00802080 }, { 0x00000100, 0x02080100, 0x02080000, 0x42000100, 0x00080000, 0x00000100, 0x40000000, 0x02080000, 0x40080100, 0x00080000, 0x02000100, 0x40080100, 0x42000100, 0x42080000, 0x00080100, 0x40000000, 0x02000000, 0x40080000, 0x40080000, 0x00000000, 0x40000100, 0x42080100, 0x42080100, 0x02000100, 0x42080000, 0x40000100, 0x00000000, 0x42000000, 0x02080100, 0x02000000, 0x42000000, 0x00080100, 0x00080000, 0x42000100, 0x00000100, 0x02000000, 0x40000000, 0x02080000, 0x42000100, 0x40080100, 0x02000100, 0x40000000, 0x42080000, 0x02080100, 0x40080100, 0x00000100, 0x02000000, 0x42080000, 0x42080100, 0x00080100, 0x42000000, 0x42080100, 0x02080000, 0x00000000, 0x40080000, 0x42000000, 0x00080100, 0x02000100, 0x40000100, 0x00080000, 0x00000000, 0x40080000, 0x02080100, 0x40000100 }, { 0x20000010, 0x20400000, 0x00004000, 0x20404010, 0x20400000, 0x00000010, 0x20404010, 0x00400000, 0x20004000, 0x00404010, 0x00400000, 0x20000010, 0x00400010, 0x20004000, 0x20000000, 0x00004010, 0x00000000, 0x00400010, 0x20004010, 0x00004000, 0x00404000, 0x20004010, 0x00000010, 0x20400010, 0x20400010, 0x00000000, 0x00404010, 0x20404000, 0x00004010, 0x00404000, 0x20404000, 0x20000000, 0x20004000, 0x00000010, 0x20400010, 0x00404000, 0x20404010, 0x00400000, 0x00004010, 0x20000010, 0x00400000, 0x20004000, 0x20000000, 0x00004010, 0x20000010, 0x20404010, 0x00404000, 0x20400000, 0x00404010, 0x20404000, 0x00000000, 0x20400010, 0x00000010, 0x00004000, 0x20400000, 0x00404010, 0x00004000, 0x00400010, 0x20004010, 0x00000000, 0x20404000, 0x20000000, 0x00400010, 0x20004010 }, { 0x00200000, 0x04200002, 0x04000802, 0x00000000, 0x00000800, 0x04000802, 0x00200802, 0x04200800, 0x04200802, 0x00200000, 0x00000000, 0x04000002, 0x00000002, 0x04000000, 0x04200002, 0x00000802, 0x04000800, 0x00200802, 0x00200002, 0x04000800, 0x04000002, 0x04200000, 0x04200800, 0x00200002, 0x04200000, 0x00000800, 0x00000802, 0x04200802, 0x00200800, 0x00000002, 0x04000000, 0x00200800, 0x04000000, 0x00200800, 0x00200000, 0x04000802, 0x04000802, 0x04200002, 0x04200002, 0x00000002, 0x00200002, 0x04000000, 0x04000800, 0x00200000, 0x04200800, 0x00000802, 0x00200802, 0x04200800, 0x00000802, 0x04000002, 0x04200802, 0x04200000, 0x00200800, 0x00000000, 0x00000002, 0x04200802, 0x00000000, 0x00200802, 0x04200000, 0x00000800, 0x04000002, 0x04000800, 0x00000800, 0x00200002 }, { 0x10001040, 0x00001000, 0x00040000, 0x10041040, 0x10000000, 0x10001040, 0x00000040, 0x10000000, 0x00040040, 0x10040000, 0x10041040, 0x00041000, 0x10041000, 0x00041040, 0x00001000, 0x00000040, 0x10040000, 0x10000040, 0x10001000, 0x00001040, 0x00041000, 0x00040040, 0x10040040, 0x10041000, 0x00001040, 0x00000000, 0x00000000, 0x10040040, 0x10000040, 0x10001000, 0x00041040, 0x00040000, 0x00041040, 0x00040000, 0x10041000, 0x00001000, 0x00000040, 0x10040040, 0x00001000, 0x00041040, 0x10001000, 0x00000040, 0x10000040, 0x10040000, 0x10040040, 0x10000000, 0x00040000, 0x10001040, 0x00000000, 0x10041040, 0x00040040, 0x10000040, 0x10040000, 0x10001000, 0x10001040, 0x00000000, 0x10041040, 0x00041000, 0x00041000, 0x00001040, 0x00001040, 0x00040040, 0x10000000, 0x10041000 } }; #undef F #define F(l,r,key){\ work = ((r >> 4) | (r << 28)) ^ key[0];\ l ^= Spbox[6][work & 0x3f];\ l ^= Spbox[4][(work >> 8) & 0x3f];\ l ^= Spbox[2][(work >> 16) & 0x3f];\ l ^= Spbox[0][(work >> 24) & 0x3f];\ work = r ^ key[1];\ l ^= Spbox[7][work & 0x3f];\ l ^= Spbox[5][(work >> 8) & 0x3f];\ l ^= Spbox[3][(work >> 16) & 0x3f];\ l ^= Spbox[1][(work >> 24) & 0x3f];\ } /* Encrypt or decrypt a block of data in ECB mode */ static void des (uint32_t ks[16][2], unsigned char block[8]) { uint32_t left, right, work; /* Read input block and place in left/right in big-endian order */ left = load_be32(block); right = load_be32(block + 4); /* Hoey's clever initial permutation algorithm, from Outerbridge * (see Schneier p 478) * * The convention here is the same as Outerbridge: rotate each * register left by 1 bit, i.e., so that "left" contains permuted * input bits 2, 3, 4, ... 1 and "right" contains 33, 34, 35, ... 32 * (using origin-1 numbering as in the FIPS). This allows us to avoid * one of the two rotates that would otherwise be required in each of * the 16 rounds. */ work = ((left >> 4) ^ right) & 0x0f0f0f0f; right ^= work; left ^= work << 4; work = ((left >> 16) ^ right) & 0xffff; right ^= work; left ^= work << 16; work = ((right >> 2) ^ left) & 0x33333333; left ^= work; right ^= (work << 2); work = ((right >> 8) ^ left) & 0xff00ff; left ^= work; right ^= (work << 8); right = (right << 1) | (right >> 31); work = (left ^ right) & 0xaaaaaaaa; left ^= work; right ^= work; left = (left << 1) | (left >> 31); /* Now do the 16 rounds */ F (left,right,ks[0]); F (right,left,ks[1]); F (left,right,ks[2]); F (right,left,ks[3]); F (left,right,ks[4]); F (right,left,ks[5]); F (left,right,ks[6]); F (right,left,ks[7]); F (left,right,ks[8]); F (right,left,ks[9]); F (left,right,ks[10]); F (right,left,ks[11]); F (left,right,ks[12]); F (right,left,ks[13]); F (left,right,ks[14]); F (right,left,ks[15]); /* Inverse permutation, also from Hoey via Outerbridge and Schneier */ right = (right << 31) | (right >> 1); work = (left ^ right) & 0xaaaaaaaa; left ^= work; right ^= work; left = (left >> 1) | (left << 31); work = ((left >> 8) ^ right) & 0xff00ff; right ^= work; left ^= work << 8; work = ((left >> 2) ^ right) & 0x33333333; right ^= work; left ^= work << 2; work = ((right >> 16) ^ left) & 0xffff; left ^= work; right ^= work << 16; work = ((right >> 4) ^ left) & 0x0f0f0f0f; left ^= work; right ^= work << 4; /* Put the block back into the user's buffer with final swap */ store_be32(block, right); store_be32(block + 4, left); } /* Key schedule-related tables from FIPS-46 */ /* permuted choice table (key) */ static const unsigned char pc1[] = { 57, 49, 41, 33, 25, 17, 9, 1, 58, 50, 42, 34, 26, 18, 10, 2, 59, 51, 43, 35, 27, 19, 11, 3, 60, 52, 44, 36, 63, 55, 47, 39, 31, 23, 15, 7, 62, 54, 46, 38, 30, 22, 14, 6, 61, 53, 45, 37, 29, 21, 13, 5, 28, 20, 12, 4 }; /* number left rotations of pc1 */ static const unsigned char totrot[] = { 1,2,4,6,8,10,12,14,15,17,19,21,23,25,27,28 }; /* permuted choice key (table) */ static const unsigned char pc2[] = { 14, 17, 11, 24, 1, 5, 3, 28, 15, 6, 21, 10, 23, 19, 12, 4, 26, 8, 16, 7, 27, 20, 13, 2, 41, 52, 31, 37, 47, 55, 30, 40, 51, 45, 33, 48, 44, 49, 39, 56, 34, 53, 46, 42, 50, 36, 29, 32 }; /* End of DES-defined tables */ /* bit 0 is left-most in byte */ static const int bytebit[] = { 0200,0100,040,020,010,04,02,01 }; /* Generate key schedule for encryption or decryption * depending on the value of "decrypt" */ static void deskey (DES_KS k, unsigned char *key, int decrypt) { unsigned char pc1m[56]; /* place to modify pc1 into */ unsigned char pcr[56]; /* place to rotate pc1 into */ register int i,j,l; int m; unsigned char ks[8]; for (j=0; j<56; j++) { /* convert pc1 to bits of key */ l=pc1[j]-1; /* integer bit location */ m = l & 07; /* find bit */ pc1m[j]=(key[l>>3] & /* find which key byte l is in */ bytebit[m]) /* and which bit of that byte */ ? 1 : 0; /* and store 1-bit result */ } for (i=0; i<16; i++) { /* key chunk for each iteration */ memset (ks,0,sizeof (ks)); /* Clear key schedule */ for (j=0; j<56; j++) /* rotate pc1 the right amount */ pcr[j] = pc1m[(l = j + totrot[decrypt? 15 - i : i]) < (j < 28? 28 : 56) ? l: l - 28]; /* rotate left and right halves independently */ for (j=0; j<48; j++){ /* select bits individually */ /* check bit that goes to ks[j] */ if (pcr[pc2[j]-1]) { /* mask it in if it's there */ l= j % 6; ks[j / 6] |= bytebit[l] >> 2; } } /* Now convert to packed odd/even interleaved form */ k[i][0] = ((uint32_t) ks[0] << 24) | ((uint32_t) ks[2] << 16) | ((uint32_t) ks[4] << 8) | ((uint32_t) ks[6]); k[i][1] = ((uint32_t) ks[1] << 24) | ((uint32_t) ks[3] << 16) | ((uint32_t) ks[5] << 8) | ((uint32_t) ks[7]); } } #define HIKEYBITS(k,s) ((k[(s) / 8] << ((s) % 8)) & 0xFF) #define LOKEYBITS(k,s) (k[(s) / 8 + 1] >> (8 - (s) % 8)) /* DES utils */ /* Set up a key schedule based on a 56bit key */ static void setup_schedule (const unsigned char *key_56, DES_KS ks) { unsigned char key[8]; int i, c, bit; for (i = 0; i < 8; i++) { key[i] = HIKEYBITS (key_56, i * 7); /* Mask in the low bits only if they're used. It doesn't * matter if we get an unwanted bit 0; it's going to be * overwritten with parity anyway. */ if (i && i < 7) key[i] |= LOKEYBITS(key_56, i * 7); /* Fix parity */ for (c = bit = 0; bit < 8; bit++) if (key[i] & (1 << bit)) c++; if (!(c & 1)) key[i] ^= 0x01; } deskey (ks, key, 0); } #define LM_PASSWORD_MAGIC "\x4B\x47\x53\x21\x40\x23\x24\x25" \ "\x4B\x47\x53\x21\x40\x23\x24\x25" \ "\x00\x00\x00\x00\x00" static void ntlm_lanmanager_hash (const char *password, char hash[21]) { unsigned char lm_password[15]; DES_KS ks; int i; for (i = 0; i < 14 && password[i]; i++) lm_password[i] = toupper ((unsigned char) password[i]); for (; i < 15; i++) lm_password[i] = '\0'; memcpy (hash, LM_PASSWORD_MAGIC, 21); setup_schedule (lm_password, ks); des (ks, (unsigned char *) hash); setup_schedule (lm_password + 7, ks); des (ks, (unsigned char *) hash + 8); memset(lm_password, 0, sizeof(lm_password)); } static int ntlm_nt_hash (const char *pass, char hash[21]) { struct oc_text_buf *utf16pass = buf_alloc(); int ret; /* Preallocate just to ensure md4sum() doesn't have to realloc, which would leave a copy of the password lying around. There is always at least one byte of padding, then 8 bytes of length, and round up to the next multiple of 64. */ ret = buf_ensure_space(utf16pass, ((strlen(pass) * 2) + 1 + 8 + 63) & ~63); if (ret) goto out; ret = buf_append_utf16le(utf16pass, pass); if (ret < 0) goto wipe; ret = buf_error(utf16pass); if (ret) goto wipe; ret = md4sum(utf16pass, (unsigned char *) hash); if (ret) goto wipe; memset(hash + 16, 0, 5); wipe: memset(utf16pass->data, 0, utf16pass->pos); out: buf_free(utf16pass); return 0; } static void ntlm_calc_response (const unsigned char key[21], const unsigned char plaintext[8], unsigned char results[24]) { DES_KS ks; memcpy (results, plaintext, 8); memcpy (results + 8, plaintext, 8); memcpy (results + 16, plaintext, 8); setup_schedule (key, ks); des (ks, results); setup_schedule (key + 7, ks); des (ks, results + 8); setup_schedule (key + 14, ks); des (ks, results + 16); } #define NTLM_CHALLENGE_DOMAIN_OFFSET 12 #define NTLM_CHALLENGE_FLAGS_OFFSET 20 #define NTLM_CHALLENGE_NONCE_OFFSET 24 #define NTLM_RESPONSE_BASE_SIZE 64 #define NTLM_RESPONSE_LM_RESP_OFFSET 12 #define NTLM_RESPONSE_NT_RESP_OFFSET 20 #define NTLM_RESPONSE_DOMAIN_OFFSET 28 #define NTLM_RESPONSE_USER_OFFSET 36 #define NTLM_RESPONSE_HOST_OFFSET 44 #define NTLM_RESPONSE_FLAGS_OFFSET 60 static const char ntlm_response_base[NTLM_RESPONSE_BASE_SIZE] = { 'N', 'T', 'L', 'M', 'S', 'S', 'P', 0x00, 0x03, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x82, 0x01, 0x00, 0x00 }; static void ntlm_set_string_utf8(struct oc_text_buf *buf, int offset, const char *data) { int oldpos = buf->pos; int len = buf_append_utf16le(buf, data); /* Fill in the SecurityBuffer pointing to the string */ store_le16(buf->data + offset, len); /* len */ store_le16(buf->data + offset + 2, len); /* allocated */ store_le32(buf->data + offset + 4, oldpos); /* offset */ } static void ntlm_set_string_binary(struct oc_text_buf *buf, int offset, const void *data, int len) { /* Fill in the SecurityBuffer pointing to the string */ store_le16(buf->data + offset, len); /* len */ store_le16(buf->data + offset + 2, len); /* allocated */ store_le32(buf->data + offset + 4, buf->pos); /* offset */ buf_append_bytes(buf, data, len); } static int ntlm_manual_challenge(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf, const char *domuser, const char *pass) { struct oc_text_buf *resp; char *user; unsigned char nonce[8], hash[21], lm_resp[24], nt_resp[24]; unsigned char *token; int token_len = -EINVAL; int ntlmver; memset(hash, 0, sizeof(hash)); if (!auth_state->challenge) return -EINVAL; if (ntlm_nt_hash (pass, (char *) hash)) return -EINVAL; token = openconnect_base64_decode(&token_len, auth_state->challenge); if (!token) return token_len; if (token_len < NTLM_CHALLENGE_NONCE_OFFSET + 8 || token[0] != 'N' || token[1] != 'T' || token[2] != 'L' || token[3] != 'M' || token[4] != 'S' || token[5] != 'S' || token[6] != 'P' || token[7] || token[8] != 2 || token[9] || token[10] || token[11]) { free(token); return -EINVAL; } /* 0x00080000: Negotiate NTLM2 Key */ if (token[NTLM_CHALLENGE_FLAGS_OFFSET + 2] & 8) { /* NTLM2 session response */ struct { uint32_t srv[2]; uint32_t clnt[2]; } sess_nonce; unsigned char digest[16]; ntlmver = 2; if (openconnect_random(sess_nonce.clnt, sizeof(sess_nonce.clnt))) { free(token); return -EIO; } /* LM response is 8-byte client nonce, NUL-padded to 24 */ memcpy (lm_resp, sess_nonce.clnt, 8); memset (lm_resp + 8, 0, 16); /* Session nonce is client nonce + server nonce */ memcpy (sess_nonce.srv, token + NTLM_CHALLENGE_NONCE_OFFSET, 8); /* Take MD5 of session nonce */ if (openconnect_md5(digest, &sess_nonce, sizeof(sess_nonce))) { free(token); return -EIO; } ntlm_calc_response (hash, digest, nt_resp); } else { /* NTLM1 */ ntlmver = 1; memcpy (nonce, token + NTLM_CHALLENGE_NONCE_OFFSET, 8); ntlm_calc_response (hash, nonce, nt_resp); ntlm_lanmanager_hash (pass, (char *) hash); ntlm_calc_response (hash, nonce, lm_resp); } resp = buf_alloc(); buf_append_bytes(resp, ntlm_response_base, sizeof(ntlm_response_base)); if (buf_error(resp)) { free(token); return buf_free(resp); } /* Mask in the NTLM2SESSION flag */ resp->data[NTLM_RESPONSE_FLAGS_OFFSET + 2] = token[NTLM_CHALLENGE_FLAGS_OFFSET + 2] & 8; user = strchr(domuser, '\\'); if (user) { *user = 0; ntlm_set_string_utf8(resp, NTLM_RESPONSE_DOMAIN_OFFSET, domuser); *user = '\\'; user++; } else { int offset = load_le32(token + NTLM_CHALLENGE_DOMAIN_OFFSET + 4); int len = load_le16(token + NTLM_CHALLENGE_DOMAIN_OFFSET); if (!len || offset + len >= token_len) { free(token); buf_free(resp); return -EINVAL; } ntlm_set_string_binary(resp, NTLM_RESPONSE_DOMAIN_OFFSET, token + offset, len); user = (char *)domuser; } ntlm_set_string_utf8(resp, NTLM_RESPONSE_USER_OFFSET, user); ntlm_set_string_utf8(resp, NTLM_RESPONSE_HOST_OFFSET, "UNKNOWN"); ntlm_set_string_binary(resp, NTLM_RESPONSE_LM_RESP_OFFSET, lm_resp, sizeof(lm_resp)); ntlm_set_string_binary(resp, NTLM_RESPONSE_NT_RESP_OFFSET, nt_resp, sizeof(nt_resp)); free(token); if (buf_error(resp)) return buf_free(resp); buf_append(hdrbuf, "%sAuthorization: NTLM ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, resp->data, resp->pos, 0); buf_append(hdrbuf, "\r\n"); buf_free(resp); if (proxy) vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLMv%d authentication to proxy\n"), ntlmver); else vpn_progress(vpninfo, PRG_INFO, _("Attempting HTTP NTLMv%d authentication to server '%s'\n"), ntlmver, vpninfo->hostname); return 0; } int ntlm_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *buf) { const char *user, *pass; if (proxy) { user = vpninfo->proxy_user; pass = vpninfo->proxy_pass; } else { user = pass = NULL; } if (auth_state->state == AUTH_AVAILABLE) { auth_state->state = NTLM_MANUAL; /* Don't attempt automatic NTLM auth if we were given a password */ if (!pass && !ntlm_helper_spawn(vpninfo, proxy, auth_state, buf)) { auth_state->state = NTLM_SSO_REQ; return 0; } } if (auth_state->state == NTLM_SSO_REQ) { int ret; ret = ntlm_helper_challenge(vpninfo, proxy, auth_state, buf); /* Clean up after it. We're done here, whether it worked or not */ cleanup_ntlm_auth(vpninfo, auth_state); auth_state->state = NTLM_MANUAL; if (ret == -EAGAIN) { /* Don't let it reset our state when it reconnects */ if (proxy) vpninfo->proxy_close_during_auth = 1; return ret; } if (!ret) return ret; } if (auth_state->state == NTLM_MANUAL && user && pass) { buf_append(buf, "%sAuthorization: NTLM %s\r\n", proxy ? "Proxy-" : "", "TlRMTVNTUAABAAAABYIIAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAAAAAAAAAAwAAAA"); auth_state->state = NTLM_MANUAL_REQ; return 0; } if (auth_state->state == NTLM_MANUAL_REQ && user && pass && !ntlm_manual_challenge(vpninfo, proxy, auth_state, buf, user, pass)) { /* Leave the state as it is. If we come back there'll be no challenge string and we'll fail then. */ return 0; } auth_state->state = AUTH_FAILED; return -EAGAIN; } openconnect-8.20/tun-win32.c0000644000076400007640000004707114171606260017456 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #define WIN32_LEAN_AND_MEAN #include #include /* must precede iphlpapi.h, per https://docs.microsoft.com/en-us/windows/win32/api/iptypes/ns-iptypes-ip_adapter_addresses_lh */ #include #include #include #include #include #include /* * TAP-Windows support inspired by http://i3.cs.berkeley.edu/ (v0.2) with * permission. */ #define _TAP_IOCTL(nr) CTL_CODE(FILE_DEVICE_UNKNOWN, nr, METHOD_BUFFERED, \ FILE_ANY_ACCESS) #define TAP_IOCTL_GET_MAC _TAP_IOCTL(1) #define TAP_IOCTL_GET_VERSION _TAP_IOCTL(2) #define TAP_IOCTL_GET_MTU _TAP_IOCTL(3) #define TAP_IOCTL_GET_INFO _TAP_IOCTL(4) #define TAP_IOCTL_CONFIG_POINT_TO_POINT _TAP_IOCTL(5) #define TAP_IOCTL_SET_MEDIA_STATUS _TAP_IOCTL(6) #define TAP_IOCTL_CONFIG_DHCP_MASQ _TAP_IOCTL(7) #define TAP_IOCTL_GET_LOG_LINE _TAP_IOCTL(8) #define TAP_IOCTL_CONFIG_DHCP_SET_OPT _TAP_IOCTL(9) #define TAP_IOCTL_CONFIG_TUN _TAP_IOCTL(10) #define TAP_COMPONENT_ID "tap0901" #define DEVTEMPLATE "\\\\.\\Global\\%s.tap" #define NETDEV_GUID "{4D36E972-E325-11CE-BFC1-08002BE10318}" #define CONTROL_KEY "SYSTEM\\CurrentControlSet\\Control\\" #define ADAPTERS_KEY CONTROL_KEY "Class\\" NETDEV_GUID #define CONNECTIONS_KEY CONTROL_KEY "Network\\" NETDEV_GUID #define ADAPTER_TUNTAP 0 #define ADAPTER_WINTUN 1 typedef intptr_t (tap_callback)(struct openconnect_info *vpninfo, int type, char *idx, wchar_t *name); #define SEARCH_CONTINUE 0 #define SEARCH_DONE 1 static intptr_t search_taps(struct openconnect_info *vpninfo, tap_callback *cb) { LONG status; HKEY adapters_key, hkey; DWORD len, type; int adapter_type; char buf[40]; wchar_t name[40]; char keyname[strlen(CONNECTIONS_KEY) + sizeof(buf) + 1 + strlen("\\Connection")]; int i = 0; intptr_t ret = OPEN_TUN_SOFTFAIL; status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, ADAPTERS_KEY, 0, KEY_READ, &adapters_key); if (status) { vpn_progress(vpninfo, PRG_ERR, _("Error accessing registry key for network adapters\n")); return -EIO; } while (ret == OPEN_TUN_SOFTFAIL) { len = sizeof(buf); status = RegEnumKeyExA(adapters_key, i++, buf, &len, NULL, NULL, NULL, NULL); if (status) { if (status != ERROR_NO_MORE_ITEMS) ret = OPEN_TUN_HARDFAIL; break; } snprintf(keyname, sizeof(keyname), "%s\\%s", ADAPTERS_KEY, buf); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keyname, 0, KEY_QUERY_VALUE, &hkey); if (status) continue; len = sizeof(buf); status = RegQueryValueExA(hkey, "ComponentId", NULL, &type, (unsigned char *)buf, &len); if (status || type != REG_SZ) { vpn_progress(vpninfo, PRG_TRACE, _("Cannot read %s\\%s or is not string\n"), keyname, "ComponentId"); RegCloseKey(hkey); continue; } if (!strcmp(buf, TAP_COMPONENT_ID) || !strcmp(buf, "root\\" TAP_COMPONENT_ID)) adapter_type = ADAPTER_TUNTAP; else if (!strcmp(buf, "wintun")) adapter_type = ADAPTER_WINTUN; else { vpn_progress(vpninfo, PRG_TRACE, _("%s\\ComponentId is unknown '%s'\n"), keyname, buf); RegCloseKey(hkey); continue; } vpn_progress(vpninfo, PRG_TRACE, _("Found %s at %s\n"), buf, keyname); len = sizeof(buf); status = RegQueryValueExA(hkey, "NetCfgInstanceId", NULL, &type, (unsigned char *)buf, &len); RegCloseKey(hkey); if (status || type != REG_SZ) continue; snprintf(keyname, sizeof(keyname), "%s\\%s\\Connection", CONNECTIONS_KEY, buf); status = RegOpenKeyExA(HKEY_LOCAL_MACHINE, keyname, 0, KEY_QUERY_VALUE, &hkey); if (status) { vpn_progress(vpninfo, PRG_DEBUG, _("Cannot open registry key %s\n"), keyname); continue; } len = sizeof(name); status = RegQueryValueExW(hkey, L"Name", NULL, &type, (unsigned char *)name, &len); RegCloseKey(hkey); if (status || type != REG_SZ) { vpn_progress(vpninfo, PRG_INFO, _("Cannot read registry key %s\\%s or is not string\n"), keyname, "Name"); continue; } ret = cb(vpninfo, adapter_type, buf, name); } RegCloseKey(adapters_key); return ret; } #ifndef __LIST_TAPS__ static int get_adapter_index(struct openconnect_info *vpninfo, char *guid) { struct oc_text_buf *buf = buf_alloc(); IP_ADAPTER_INFO *adapter; void *adapters_buf; ULONG idx; DWORD status; int ret = -EINVAL; vpninfo->tun_idx = -1; buf_append_utf16le(buf, "\\device\\tcpip_"); buf_append_utf16le(buf, guid); if (buf_error(buf)) { /* If we didn't manage to malloc for this, we're never * going to manage for GetAdaptersInfo(). Give up. */ return buf_free(buf); } status = GetAdapterIndex((void *)buf->data, &idx); buf_free(buf); if (status == NO_ERROR) { vpninfo->tun_idx = idx; return 0; } else { char *errstr = openconnect__win32_strerror(status); vpn_progress(vpninfo, PRG_INFO, _("GetAdapterIndex() failed: %s\nFalling back to GetAdaptersInfo()\n"), errstr); free(errstr); } idx = 0; status = GetAdaptersInfo(NULL, &idx); if (status != ERROR_BUFFER_OVERFLOW) return -EIO; adapters_buf = malloc(idx); if (!adapters_buf) return -ENOMEM; status = GetAdaptersInfo(adapters_buf, &idx); if (status != NO_ERROR) { char *errstr = openconnect__win32_strerror(status); vpn_progress(vpninfo, PRG_ERR, _("GetAdaptersInfo() failed: %s\n"), errstr); free(errstr); free(adapters_buf); return -EIO; } for (adapter = adapters_buf; adapter; adapter = adapter->Next) { if (!strcmp(adapter->AdapterName, guid)) { vpninfo->tun_idx = adapter->Index; ret = 0; break; } } free(adapters_buf); return ret; } static int check_address_conflicts(struct openconnect_info *vpninfo) { ULONG bufSize = 15000; PIP_ADAPTER_ADDRESSES addresses = NULL; DWORD LastError; int ret = 0; struct in_addr our_ipv4_addr; struct in6_addr our_ipv6_addr; if (vpninfo->ip_info.addr && !inet_aton(vpninfo->ip_info.addr, &our_ipv4_addr)) return -EINVAL; if (vpninfo->ip_info.addr6 && !inet_pton(AF_INET6, vpninfo->ip_info.addr6, &our_ipv6_addr)) return -EINVAL; /* XX: repeat twice, because it may tell us we need a bigger buffer */ for (int tries=0; tries<2; tries++) { free(addresses); addresses = malloc(bufSize); if (!addresses) return -ENOMEM; /* AF_UNSPEC means both Legacy IP and IPv6 */ LastError = GetAdaptersAddresses(AF_UNSPEC, GAA_FLAG_SKIP_ANYCAST | GAA_FLAG_SKIP_MULTICAST, NULL, addresses, &bufSize); if (LastError != ERROR_BUFFER_OVERFLOW) break; } if (LastError != ERROR_SUCCESS) { char *errstr = openconnect__win32_strerror(LastError); vpn_progress(vpninfo, PRG_ERR, _("GetAdaptersAddresses() failed: %s\n"), errstr); ret = -EIO; goto out; } for (; addresses; addresses=addresses->Next) { /* XX: skip "our own" adapter */ if (addresses->IfIndex == vpninfo->tun_idx) continue; for (PIP_ADAPTER_UNICAST_ADDRESS ua = addresses->FirstUnicastAddress; ua; ua=ua->Next) { struct sockaddr *a = ua->Address.lpSockaddr; union { struct sockaddr_in s4; struct sockaddr_in6 s6; } *sa = (void *)a; int needs_reclaim = 0; if (a->sa_family == AF_INET) { if (vpninfo->ip_info.addr && our_ipv4_addr.s_addr == sa->s4.sin_addr.s_addr) needs_reclaim = 1; } else if (a->sa_family == AF_INET6) { if (vpninfo->ip_info.addr6 && !memcmp(&our_ipv6_addr, &sa->s6.sin6_addr, sizeof(sa->s6.sin6_addr))) needs_reclaim = 1; } if (needs_reclaim) { if (addresses->OperStatus == IfOperStatusUp) { /* XX: Interface is up. We shouldn't steal its address */ vpn_progress(vpninfo, PRG_ERR, _("Adapter \"%S\" / %ld is UP and using our IPv%d address. Cannot resolve.\n"), addresses->FriendlyName, addresses->IfIndex, a->sa_family == AF_INET ? 4 : 6); ret = -ENOENT; goto out; } else { /* XX: Interface is down */ vpn_progress(vpninfo, PRG_ERR, _("Adapter \"%S\" / %ld is DOWN and using our IPv%d address. We will reclaim the address from it.\n"), addresses->FriendlyName, addresses->IfIndex, a->sa_family == AF_INET ? 4 : 6); /* XX: In order to use DeleteUnicastIpAddressEntry(), we bizarrely have to iterate through a * whole different table of IP addresses to find the right row. I previously tried * faking/synthesizing the requisite MIB_UNICASTIPADDRESS_TABLE rows, and it did not * work. */ int found = 0; PMIB_UNICASTIPADDRESS_TABLE pipTable = NULL; LastError = GetUnicastIpAddressTable(AF_UNSPEC, &pipTable); if (LastError != ERROR_SUCCESS) { char *errstr = openconnect__win32_strerror(LastError); vpn_progress(vpninfo, PRG_ERR, _("GetUnicastIpAddressTable() failed: %s\n"), errstr); ret = -EIO; goto out; } for (int i = 0; i < pipTable->NumEntries; i++) { if (pipTable->Table[i].Address.si_family == AF_INET && a->sa_family == AF_INET) { if (sa->s4.sin_addr.s_addr == pipTable->Table[i].Address.Ipv4.sin_addr.s_addr) found = 1; } else if (pipTable->Table[i].Address.si_family == AF_INET6 && a->sa_family == AF_INET6) { if (!memcmp(&sa->s6.sin6_addr, &pipTable->Table[i].Address.Ipv6, sizeof(sa->s6.sin6_addr))) found = 1; } if (found) { LastError = DeleteUnicastIpAddressEntry(&pipTable->Table[i]); break; } } FreeMibTable(pipTable); if (LastError != NO_ERROR) { char *errstr = openconnect__win32_strerror(LastError); vpn_progress(vpninfo, PRG_ERR, _("DeleteUnicastIpAddressEntry() failed: %s\n"), errstr); ret = -EIO; goto out; } if (!found) { vpn_progress(vpninfo, PRG_ERR, _("GetUnicastIpAddressTable() did not find matching address to reclaim\n")); /* ret = -EIO; goto out; */ } } } } } out: free(addresses); return ret; } static intptr_t open_tuntap(struct openconnect_info *vpninfo, char *guid, wchar_t *wname) { char devname[80]; HANDLE tun_fh; ULONG data[3]; DWORD len; snprintf(devname, sizeof(devname), DEVTEMPLATE, guid); tun_fh = CreateFileA(devname, GENERIC_WRITE|GENERIC_READ, 0, 0, OPEN_EXISTING, FILE_ATTRIBUTE_SYSTEM | FILE_FLAG_OVERLAPPED, 0); if (tun_fh == INVALID_HANDLE_VALUE) { vpn_progress(vpninfo, PRG_ERR, _("Failed to open %s\n"), devname); return OPEN_TUN_SOFTFAIL; } vpn_progress(vpninfo, PRG_DEBUG, _("Opened tun device %S\n"), wname); if (!DeviceIoControl(tun_fh, TAP_IOCTL_GET_VERSION, data, sizeof(data), data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain TAP driver version: %s\n"), errstr); free(errstr); return OPEN_TUN_HARDFAIL; } if (data[0] < 9 || (data[0] == 9 && data[1] < 9)) { vpn_progress(vpninfo, PRG_ERR, _("Error: TAP-Windows driver v9.9 or greater is required (found %ld.%ld)\n"), data[0], data[1]); return -1; } vpn_progress(vpninfo, PRG_DEBUG, "TAP-Windows driver v%ld.%ld (%ld)\n", data[0], data[1], data[2]); data[0] = inet_addr(vpninfo->ip_info.addr); /* Set network and mask both to 0.0.0.0. It's not about routing; * it just ensures that the TAP driver fakes ARP responses for * *everything* we throw at it, and we can just configure them * as on-link routes. */ data[1] = 0; data[2] = 0; if (!DeviceIoControl(tun_fh, TAP_IOCTL_CONFIG_TUN, data, sizeof(data), data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP IP addresses: %s\n"), errstr); free(errstr); return OPEN_TUN_HARDFAIL; } data[0] = 1; if (!DeviceIoControl(tun_fh, TAP_IOCTL_SET_MEDIA_STATUS, data, sizeof(data[0]), data, sizeof(data[0]), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP media status: %s\n"), errstr); free(errstr); return OPEN_TUN_HARDFAIL; } return (intptr_t)tun_fh; } static intptr_t open_tun(struct openconnect_info *vpninfo, int adapter_type, char *guid, wchar_t *wname) { intptr_t ret = -1; if (vpninfo->ifname_w && wcscmp(wname, vpninfo->ifname_w)) { vpn_progress(vpninfo, PRG_DEBUG, _("Ignoring non-matching interface \"%S\"\n"), wname); return 0; } if (adapter_type == ADAPTER_TUNTAP) ret = open_tuntap(vpninfo, guid, wname); else ret = open_wintun(vpninfo, guid, wname); if (ret == OPEN_TUN_SOFTFAIL || ret == OPEN_TUN_HARDFAIL) return ret; /* * We have found the adapter and opened it successfully. Now set * vpninfo->ifname accordingly, if necessary, and find $TUNIDX * for the script to use to configure it. */ if (!vpninfo->ifname) { struct oc_text_buf *namebuf = buf_alloc(); buf_append_from_utf16le(namebuf, wname); if (buf_error(namebuf)) { vpn_progress(vpninfo, PRG_ERR, _("Could not convert interface name to UTF-8\n")); os_shutdown_tun(vpninfo); buf_free(namebuf); return OPEN_TUN_HARDFAIL; } vpninfo->ifname = namebuf->data; namebuf->data = NULL; buf_free(namebuf); } get_adapter_index(vpninfo, guid); vpn_progress(vpninfo, adapter_type ? PRG_ERR : PRG_INFO, _("Using %s device '%s', index %d\n"), adapter_type ? "Wintun" : "TAP-Windows", vpninfo->ifname, vpninfo->tun_idx); if (adapter_type == ADAPTER_WINTUN) vpn_progress(vpninfo, PRG_ERR, _("WARNING: Support for Wintun is experimental and may be unstable. If you\n" " encounter problems, install the TAP-Windows driver instead. See\n" " https://www.infradead.org/openconnect/building.html\n")); return ret; } static intptr_t create_ifname_w(struct openconnect_info *vpninfo, const char *ifname) { struct oc_text_buf *ifname_buf = buf_alloc(); buf_append_utf16le(ifname_buf, vpninfo->ifname); if (buf_error(ifname_buf)) { vpn_progress(vpninfo, PRG_ERR, _("Could not construct interface name\n")); return buf_free(ifname_buf); } free(vpninfo->ifname_w); vpninfo->ifname_w = (wchar_t *)ifname_buf->data; ifname_buf->data = NULL; buf_free(ifname_buf); return 0; } intptr_t os_setup_tun(struct openconnect_info *vpninfo) { intptr_t ret; if (vpninfo->ifname) { ret = create_ifname_w(vpninfo, vpninfo->ifname); if (ret) return ret; } ret = search_taps(vpninfo, open_tun); if (ret == OPEN_TUN_SOFTFAIL) { if (!vpninfo->ifname_w) { ret = create_ifname_w(vpninfo, vpninfo->hostname); if (ret) return ret; } /* Try creating a Wintun instead of TAP */ int retw = create_wintun(vpninfo); if (!retw) { ret = search_taps(vpninfo, open_tun); if (ret == OPEN_TUN_SOFTFAIL) ret = OPEN_TUN_HARDFAIL; if (ret == OPEN_TUN_HARDFAIL) os_shutdown_wintun(vpninfo); } else if (retw == -EPERM) { ret = OPEN_TUN_HARDFAIL; vpn_progress(vpninfo, PRG_ERR, _("Access denied creating Wintun adapter. Are you running with Administrator privileges?\n")); } } if (ret == OPEN_TUN_SOFTFAIL) { vpn_progress(vpninfo, PRG_ERR, _("Neither Windows-TAP nor Wintun adapters were found. Is the driver installed?\n")); ret = OPEN_TUN_HARDFAIL; } if (check_address_conflicts(vpninfo) < 0) ret = OPEN_TUN_HARDFAIL; /* already complained about it */ return ret; } int os_read_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { DWORD pkt_size; if (vpninfo->wintun) return os_read_wintun(vpninfo, pkt); reread: if (!vpninfo->tun_rd_pending && !ReadFile(vpninfo->tun_fh, pkt->data, pkt->len, &pkt_size, &vpninfo->tun_rd_overlap)) { DWORD err = GetLastError(); if (err == ERROR_IO_PENDING) vpninfo->tun_rd_pending = 1; else if (err == ERROR_OPERATION_ABORTED) { vpninfo->quit_reason = "TAP device aborted"; vpn_progress(vpninfo, PRG_ERR, _("TAP device aborted connectivity. Disconnecting.\n")); return -1; } else { char *errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Failed to read from TAP device: %s\n"), errstr); free(errstr); } return -1; } else if (!GetOverlappedResult(vpninfo->tun_fh, &vpninfo->tun_rd_overlap, &pkt_size, FALSE)) { DWORD err = GetLastError(); if (err != ERROR_IO_INCOMPLETE) { char *errstr = openconnect__win32_strerror(err); vpninfo->tun_rd_pending = 0; vpn_progress(vpninfo, PRG_ERR, _("Failed to complete read from TAP device: %s\n"), errstr); free(errstr); goto reread; } return -1; } /* Either a straight ReadFile() or a subsequent GetOverlappedResult() succeeded... */ vpninfo->tun_rd_pending = 0; pkt->len = pkt_size; return 0; } int os_write_tun(struct openconnect_info *vpninfo, struct pkt *pkt) { DWORD pkt_size = 0; DWORD err; char *errstr; if (vpninfo->wintun) return os_write_wintun(vpninfo, pkt); if (WriteFile(vpninfo->tun_fh, pkt->data, pkt->len, &pkt_size, &vpninfo->tun_wr_overlap)) { vpn_progress(vpninfo, PRG_TRACE, _("Wrote %ld bytes to tun\n"), pkt_size); return 0; } err = GetLastError(); if (err == ERROR_IO_PENDING) { /* Theoretically we should let the mainloop handle this blocking, but that's non-trivial and it doesn't ever seem to happen in practice anyway. */ vpn_progress(vpninfo, PRG_TRACE, _("Waiting for tun write...\n")); if (GetOverlappedResult(vpninfo->tun_fh, &vpninfo->tun_wr_overlap, &pkt_size, TRUE)) { vpn_progress(vpninfo, PRG_TRACE, _("Wrote %ld bytes to tun after waiting\n"), pkt_size); return 0; } err = GetLastError(); } errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Failed to write to TAP device: %s\n"), errstr); free(errstr); return -1; } void os_shutdown_tun(struct openconnect_info *vpninfo) { script_config_tun(vpninfo, "disconnect"); if (vpninfo->wintun) { os_shutdown_wintun(vpninfo); return; } CloseHandle(vpninfo->tun_fh); vpninfo->tun_fh = NULL; CloseHandle(vpninfo->tun_rd_overlap.hEvent); vpninfo->tun_rd_overlap.hEvent = NULL; } int openconnect_setup_tun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd) { ULONG data; DWORD len; if (vpninfo->wintun) return setup_wintun_fd(vpninfo, tun_fd); /* Toggle media status so that network location awareness picks up all the configuration that occurred and properly assigns the network so the user can adjust firewall settings. */ for (data = 0; data <= 1; data++) { if (!DeviceIoControl((HANDLE)tun_fd, TAP_IOCTL_SET_MEDIA_STATUS, &data, sizeof(data), &data, sizeof(data), &len, NULL)) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to set TAP media status: %s\n"), errstr); free(errstr); return -1; } } vpninfo->tun_fh = (HANDLE)tun_fd; vpninfo->tun_rd_overlap.hEvent = CreateEvent(NULL, FALSE, FALSE, NULL); monitor_read_fd(vpninfo, tun); return 0; } int openconnect_setup_tun_script(struct openconnect_info *vpninfo, const char *tun_script) { vpn_progress(vpninfo, PRG_ERR, _("Spawning tunnel scripts is not yet supported on Windows\n")); return -1; } #endif /* __LIST_TAPS__ */ openconnect-8.20/win32-ipicmp.h0000644000076400007640000001173114171606260020130 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Author: Daniel Lenski * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #ifndef __OPENCONNECT_WIN32_IPICMP_H__ #define __OPENCONNECT_WIN32_IPICMP_H__ #include #include /* IPv4 header and flags used in gpst.c */ #define IP_DF 0x4000 /* don't fragment flag */ #define IP_MF 0x2000 /* more fragments flag */ struct ip { u_char ip_hl:4; /* header length */ u_char ip_v:4; /* version */ u_char ip_tos; /* type of service */ short ip_len; /* total length */ u_short ip_id; /* identification */ short ip_off; /* fragment offset field */ u_char ip_ttl; /* time to live */ u_char ip_p; /* protocol */ u_short ip_sum; /* checksum */ struct in_addr ip_src,ip_dst; /* source and dest address */ }; /* IPv6 header used in gpst.c */ struct ip6_hdr { union { struct ip6_hdrctl { uint32_t ip6_un1_flow; /* 4 bits version, 8 bits TC, 20 bits flow-ID */ uint16_t ip6_un1_plen; /* payload length */ uint8_t ip6_un1_nxt; /* next header */ uint8_t ip6_un1_hlim; /* hop limit */ } ip6_un1; uint8_t ip6_un2_vfc; /* 4 bits version, top 4 bits tclass */ } ip6_ctlun; struct in6_addr ip6_src; /* source address */ struct in6_addr ip6_dst; /* destination address */ }; #define ip6_vfc ip6_ctlun.ip6_un2_vfc #define ip6_flow ip6_ctlun.ip6_un1.ip6_un1_flow #define ip6_plen ip6_ctlun.ip6_un1.ip6_un1_plen #define ip6_nxt ip6_ctlun.ip6_un1.ip6_un1_nxt #define ip6_hlim ip6_ctlun.ip6_un1.ip6_un1_hlim #define ip6_hops ip6_ctlun.ip6_un1.ip6_un1_hlim /* ICMP header and flags used in gpst.c */ #define IPPROTO_ICMP 1 #define ICMP_MINLEN 8 /* abs minimum */ #define ICMP_ECHO 8 /* Echo Request */ #define ICMP_ECHOREPLY 0 /* Echo Reply */ #define icmp_pptr icmp_hun.ih_pptr #define icmp_gwaddr icmp_hun.ih_gwaddr #define icmp_id icmp_hun.ih_idseq.icd_id #define icmp_seq icmp_hun.ih_idseq.icd_seq #define icmp_void icmp_hun.ih_void #define icmp_pmvoid icmp_hun.ih_pmtu.ipm_void #define icmp_nextmtu icmp_hun.ih_pmtu.ipm_nextmtu #define icmp_num_addrs icmp_hun.ih_rtradv.irt_num_addrs #define icmp_wpa icmp_hun.ih_rtradv.irt_wpa #define icmp_lifetime icmp_hun.ih_rtradv.irt_lifetime #define icmp_otime icmp_dun.id_ts.its_otime #define icmp_rtime icmp_dun.id_ts.its_rtime #define icmp_ttime icmp_dun.id_ts.its_ttime #define icmp_ip icmp_dun.id_ip.idi_ip #define icmp_radv icmp_dun.id_radv #define icmp_mask icmp_dun.id_mask #define icmp_data icmp_dun.id_data struct icmp_ra_addr { uint32_t ira_addr; uint32_t ira_preference; }; struct icmp { uint8_t icmp_type; /* type of message, see below */ uint8_t icmp_code; /* type sub code */ uint16_t icmp_cksum; /* ones complement checksum of struct */ union { u_char ih_pptr; /* ICMP_PARAMPROB */ struct in_addr ih_gwaddr; /* gateway address */ struct ih_idseq { /* echo datagram */ uint16_t icd_id; uint16_t icd_seq; } ih_idseq; uint32_t ih_void; /* ICMP_UNREACH_NEEDFRAG -- Path MTU Discovery (RFC1191) */ struct ih_pmtu { uint16_t ipm_void; uint16_t ipm_nextmtu; } ih_pmtu; struct ih_rtradv { uint8_t irt_num_addrs; uint8_t irt_wpa; uint16_t irt_lifetime; } ih_rtradv; } icmp_hun; union { struct { uint32_t its_otime; uint32_t its_rtime; uint32_t its_ttime; } id_ts; struct { struct ip idi_ip; /* options and then 64 bits of data */ } id_ip; struct icmp_ra_addr id_radv; uint32_t id_mask; uint8_t id_data[1]; } icmp_dun; }; /* ICMPv6 header and flags used in gpst.c */ #define IPPROTO_ICMPV6 58 #define ICMP6_ECHO_REQUEST 128 #define ICMP6_ECHO_REPLY 129 struct icmp6_hdr { uint8_t icmp6_type; /* type field */ uint8_t icmp6_code; /* code field */ uint16_t icmp6_cksum; /* checksum field */ union { uint32_t icmp6_un_data32[1]; /* type-specific field */ uint16_t icmp6_un_data16[2]; /* type-specific field */ uint8_t icmp6_un_data8[4]; /* type-specific field */ } icmp6_dataun; }; #define icmp6_data32 icmp6_dataun.icmp6_un_data32 #define icmp6_data16 icmp6_dataun.icmp6_un_data16 #define icmp6_data8 icmp6_dataun.icmp6_un_data8 #define icmp6_pptr icmp6_data32[0] /* parameter prob */ #define icmp6_mtu icmp6_data32[0] /* packet too big */ #define icmp6_id icmp6_data16[0] /* echo request/reply */ #define icmp6_seq icmp6_data16[1] /* echo request/reply */ #define icmp6_maxdelay icmp6_data16[0] /* mcast group membership */ #endif /* __OPENCONNECT_WIN32_IPICMP_H__ */ openconnect-8.20/config.rpath0000755000076400007640000004421614040533771020053 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh # Output a system dependent set of variables, describing how to set the # run time search path of shared libraries in an executable. # # Copyright 1996-2014 Free Software Foundation, Inc. # Taken from GNU libtool, 2001 # Originally by Gordon Matzigkeit , 1996 # # This file is free software; the Free Software Foundation gives # unlimited permission to copy and/or distribute it, with or without # modifications, as long as this notice is preserved. # # The first argument passed to this file is the canonical host specification, # CPU_TYPE-MANUFACTURER-OPERATING_SYSTEM # or # CPU_TYPE-MANUFACTURER-KERNEL-OPERATING_SYSTEM # The environment variables CC, GCC, LDFLAGS, LD, with_gnu_ld # should be set by the caller. # # The set of defined variables is at the end of this script. # Known limitations: # - On IRIX 6.5 with CC="cc", the run time search patch must not be longer # than 256 bytes, otherwise the compiler driver will dump core. The only # known workaround is to choose shorter directory names for the build # directory and/or the installation directory. # All known linkers require a '.a' archive for static linking (except MSVC, # which needs '.lib'). libext=a shrext=.so host="$1" host_cpu=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\1/'` host_vendor=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\2/'` host_os=`echo "$host" | sed 's/^\([^-]*\)-\([^-]*\)-\(.*\)$/\3/'` # Code taken from libtool.m4's _LT_CC_BASENAME. for cc_temp in $CC""; do case $cc_temp in compile | *[\\/]compile | ccache | *[\\/]ccache ) ;; distcc | *[\\/]distcc | purify | *[\\/]purify ) ;; \-*) ;; *) break;; esac done cc_basename=`echo "$cc_temp" | sed -e 's%^.*/%%'` # Code taken from libtool.m4's _LT_COMPILER_PIC. wl= if test "$GCC" = yes; then wl='-Wl,' else case "$host_os" in aix*) wl='-Wl,' ;; mingw* | cygwin* | pw32* | os2* | cegcc*) ;; hpux9* | hpux10* | hpux11*) wl='-Wl,' ;; irix5* | irix6* | nonstopux*) wl='-Wl,' ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) case $cc_basename in ecc*) wl='-Wl,' ;; icc* | ifort*) wl='-Wl,' ;; lf95*) wl='-Wl,' ;; nagfor*) wl='-Wl,-Wl,,' ;; pgcc* | pgf77* | pgf90* | pgf95* | pgfortran*) wl='-Wl,' ;; ccc*) wl='-Wl,' ;; xl* | bgxl* | bgf* | mpixl*) wl='-Wl,' ;; como) wl='-lopt=' ;; *) case `$CC -V 2>&1 | sed 5q` in *Sun\ F* | *Sun*Fortran*) wl= ;; *Sun\ C*) wl='-Wl,' ;; esac ;; esac ;; newsos6) ;; *nto* | *qnx*) ;; osf3* | osf4* | osf5*) wl='-Wl,' ;; rdos*) ;; solaris*) case $cc_basename in f77* | f90* | f95* | sunf77* | sunf90* | sunf95*) wl='-Qoption ld ' ;; *) wl='-Wl,' ;; esac ;; sunos4*) wl='-Qoption ld ' ;; sysv4 | sysv4.2uw2* | sysv4.3*) wl='-Wl,' ;; sysv4*MP*) ;; sysv5* | unixware* | sco3.2v5* | sco5v6* | OpenUNIX*) wl='-Wl,' ;; unicos*) wl='-Wl,' ;; uts4*) ;; esac fi # Code taken from libtool.m4's _LT_LINKER_SHLIBS. hardcode_libdir_flag_spec= hardcode_libdir_separator= hardcode_direct=no hardcode_minus_L=no case "$host_os" in cygwin* | mingw* | pw32* | cegcc*) # FIXME: the MSVC++ port hasn't been tested in a loooong time # When not using gcc, we currently assume that we are using # Microsoft Visual C++. if test "$GCC" != yes; then with_gnu_ld=no fi ;; interix*) # we just hope/assume this is gcc and not c89 (= MSVC++) with_gnu_ld=yes ;; openbsd*) with_gnu_ld=no ;; esac ld_shlibs=yes if test "$with_gnu_ld" = yes; then # Set some defaults for GNU ld with shared library support. These # are reset later if shared libraries are not supported. Putting them # here allows them to be overridden if necessary. # Unlike libtool, we use -rpath here, not --rpath, since the documented # option of GNU ld is called -rpath, not --rpath. hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' case "$host_os" in aix[3-9]*) # On AIX/PPC, the GNU linker is very broken if test "$host_cpu" != ia64; then ld_shlibs=no fi ;; amigaos*) case "$host_cpu" in powerpc) ;; m68k) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; beos*) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; cygwin* | mingw* | pw32* | cegcc*) # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec='-L$libdir' if $LD --help 2>&1 | grep 'auto-import' > /dev/null; then : else ld_shlibs=no fi ;; haiku*) ;; interix[3-9]*) hardcode_direct=no hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; gnu* | linux* | tpf* | k*bsd*-gnu | kopensolaris*-gnu) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; netbsd*) ;; solaris*) if $LD -v 2>&1 | grep 'BFD 2\.8' > /dev/null; then ld_shlibs=no elif $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX*) case `$LD -v 2>&1` in *\ [01].* | *\ 2.[0-9].* | *\ 2.1[0-5].*) ld_shlibs=no ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-rpath,$libdir`' else ld_shlibs=no fi ;; esac ;; sunos4*) hardcode_direct=yes ;; *) if $LD --help 2>&1 | grep ': supported targets:.* elf' > /dev/null; then : else ld_shlibs=no fi ;; esac if test "$ld_shlibs" = no; then hardcode_libdir_flag_spec= fi else case "$host_os" in aix3*) # Note: this linker hardcodes the directories in LIBPATH if there # are no directories specified by -L. hardcode_minus_L=yes if test "$GCC" = yes; then # Neither direct hardcoding nor static linking is supported with a # broken collect2. hardcode_direct=unsupported fi ;; aix[4-9]*) if test "$host_cpu" = ia64; then # On IA64, the linker does run time linking by default, so we don't # have to do anything special. aix_use_runtimelinking=no else aix_use_runtimelinking=no # Test if we are trying to use run time linking or normal # AIX style linking. If -brtl is somewhere in LDFLAGS, we # need to do runtime linking. case $host_os in aix4.[23]|aix4.[23].*|aix[5-9]*) for ld_flag in $LDFLAGS; do if (test $ld_flag = "-brtl" || test $ld_flag = "-Wl,-brtl"); then aix_use_runtimelinking=yes break fi done ;; esac fi hardcode_direct=yes hardcode_libdir_separator=':' if test "$GCC" = yes; then case $host_os in aix4.[012]|aix4.[012].*) collect2name=`${CC} -print-prog-name=collect2` if test -f "$collect2name" && \ strings "$collect2name" | grep resolve_lib_name >/dev/null then # We have reworked collect2 : else # We have old collect2 hardcode_direct=unsupported hardcode_minus_L=yes hardcode_libdir_flag_spec='-L$libdir' hardcode_libdir_separator= fi ;; esac fi # Begin _LT_AC_SYS_LIBPATH_AIX. echo 'int main () { return 0; }' > conftest.c ${CC} ${LDFLAGS} conftest.c -o conftest aix_libpath=`dump -H conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` if test -z "$aix_libpath"; then aix_libpath=`dump -HX64 conftest 2>/dev/null | sed -n -e '/Import File Strings/,/^$/ { /^0/ { s/^0 *\(.*\)$/\1/; p; } }'` fi if test -z "$aix_libpath"; then aix_libpath="/usr/lib:/lib" fi rm -f conftest.c conftest # End _LT_AC_SYS_LIBPATH_AIX. if test "$aix_use_runtimelinking" = yes; then hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" else if test "$host_cpu" = ia64; then hardcode_libdir_flag_spec='${wl}-R $libdir:/usr/lib:/lib' else hardcode_libdir_flag_spec='${wl}-blibpath:$libdir:'"$aix_libpath" fi fi ;; amigaos*) case "$host_cpu" in powerpc) ;; m68k) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; esac ;; bsdi[45]*) ;; cygwin* | mingw* | pw32* | cegcc*) # When not using gcc, we currently assume that we are using # Microsoft Visual C++. # hardcode_libdir_flag_spec is actually meaningless, as there is # no search path for DLLs. hardcode_libdir_flag_spec=' ' libext=lib ;; darwin* | rhapsody*) hardcode_direct=no if { case $cc_basename in ifort*) true;; *) test "$GCC" = yes;; esac; }; then : else ld_shlibs=no fi ;; dgux*) hardcode_libdir_flag_spec='-L$libdir' ;; freebsd2.[01]*) hardcode_direct=yes hardcode_minus_L=yes ;; freebsd* | dragonfly*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; hpux9*) hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; hpux10*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes fi ;; hpux11*) if test "$with_gnu_ld" = no; then hardcode_libdir_flag_spec='${wl}+b ${wl}$libdir' hardcode_libdir_separator=: case $host_cpu in hppa*64*|ia64*) hardcode_direct=no ;; *) hardcode_direct=yes # hardcode_minus_L: Not really in the search PATH, # but as the default location of the library. hardcode_minus_L=yes ;; esac fi ;; irix5* | irix6* | nonstopux*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; netbsd*) hardcode_libdir_flag_spec='-R$libdir' hardcode_direct=yes ;; newsos6) hardcode_direct=yes hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; *nto* | *qnx*) ;; openbsd*) if test -f /usr/libexec/ld.so; then hardcode_direct=yes if test -z "`echo __ELF__ | $CC -E - | grep __ELF__`" || test "$host_os-$host_cpu" = "openbsd2.8-powerpc"; then hardcode_libdir_flag_spec='${wl}-rpath,$libdir' else case "$host_os" in openbsd[01].* | openbsd2.[0-7] | openbsd2.[0-7].*) hardcode_libdir_flag_spec='-R$libdir' ;; *) hardcode_libdir_flag_spec='${wl}-rpath,$libdir' ;; esac fi else ld_shlibs=no fi ;; os2*) hardcode_libdir_flag_spec='-L$libdir' hardcode_minus_L=yes ;; osf3*) hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' hardcode_libdir_separator=: ;; osf4* | osf5*) if test "$GCC" = yes; then hardcode_libdir_flag_spec='${wl}-rpath ${wl}$libdir' else # Both cc and cxx compiler support -rpath directly hardcode_libdir_flag_spec='-rpath $libdir' fi hardcode_libdir_separator=: ;; solaris*) hardcode_libdir_flag_spec='-R$libdir' ;; sunos4*) hardcode_libdir_flag_spec='-L$libdir' hardcode_direct=yes hardcode_minus_L=yes ;; sysv4) case $host_vendor in sni) hardcode_direct=yes # is this really true??? ;; siemens) hardcode_direct=no ;; motorola) hardcode_direct=no #Motorola manual says yes, but my tests say they lie ;; esac ;; sysv4.3*) ;; sysv4*MP*) if test -d /usr/nec; then ld_shlibs=yes fi ;; sysv4*uw2* | sysv5OpenUNIX* | sysv5UnixWare7.[01].[10]* | unixware7* | sco3.2v5.0.[024]*) ;; sysv5* | sco3.2v5* | sco5v6*) hardcode_libdir_flag_spec='`test -z "$SCOABSPATH" && echo ${wl}-R,$libdir`' hardcode_libdir_separator=':' ;; uts4*) hardcode_libdir_flag_spec='-L$libdir' ;; *) ld_shlibs=no ;; esac fi # Check dynamic linker characteristics # Code taken from libtool.m4's _LT_SYS_DYNAMIC_LINKER. # Unlike libtool.m4, here we don't care about _all_ names of the library, but # only about the one the linker finds when passed -lNAME. This is the last # element of library_names_spec in libtool.m4, or possibly two of them if the # linker has special search rules. library_names_spec= # the last element of library_names_spec in libtool.m4 libname_spec='lib$name' case "$host_os" in aix3*) library_names_spec='$libname.a' ;; aix[4-9]*) library_names_spec='$libname$shrext' ;; amigaos*) case "$host_cpu" in powerpc*) library_names_spec='$libname$shrext' ;; m68k) library_names_spec='$libname.a' ;; esac ;; beos*) library_names_spec='$libname$shrext' ;; bsdi[45]*) library_names_spec='$libname$shrext' ;; cygwin* | mingw* | pw32* | cegcc*) shrext=.dll library_names_spec='$libname.dll.a $libname.lib' ;; darwin* | rhapsody*) shrext=.dylib library_names_spec='$libname$shrext' ;; dgux*) library_names_spec='$libname$shrext' ;; freebsd[23].*) library_names_spec='$libname$shrext$versuffix' ;; freebsd* | dragonfly*) library_names_spec='$libname$shrext' ;; gnu*) library_names_spec='$libname$shrext' ;; haiku*) library_names_spec='$libname$shrext' ;; hpux9* | hpux10* | hpux11*) case $host_cpu in ia64*) shrext=.so ;; hppa*64*) shrext=.sl ;; *) shrext=.sl ;; esac library_names_spec='$libname$shrext' ;; interix[3-9]*) library_names_spec='$libname$shrext' ;; irix5* | irix6* | nonstopux*) library_names_spec='$libname$shrext' case "$host_os" in irix5* | nonstopux*) libsuff= shlibsuff= ;; *) case $LD in *-32|*"-32 "|*-melf32bsmip|*"-melf32bsmip ") libsuff= shlibsuff= ;; *-n32|*"-n32 "|*-melf32bmipn32|*"-melf32bmipn32 ") libsuff=32 shlibsuff=N32 ;; *-64|*"-64 "|*-melf64bmip|*"-melf64bmip ") libsuff=64 shlibsuff=64 ;; *) libsuff= shlibsuff= ;; esac ;; esac ;; linux*oldld* | linux*aout* | linux*coff*) ;; linux* | k*bsd*-gnu | kopensolaris*-gnu) library_names_spec='$libname$shrext' ;; knetbsd*-gnu) library_names_spec='$libname$shrext' ;; netbsd*) library_names_spec='$libname$shrext' ;; newsos6) library_names_spec='$libname$shrext' ;; *nto* | *qnx*) library_names_spec='$libname$shrext' ;; openbsd*) library_names_spec='$libname$shrext$versuffix' ;; os2*) libname_spec='$name' shrext=.dll library_names_spec='$libname.a' ;; osf3* | osf4* | osf5*) library_names_spec='$libname$shrext' ;; rdos*) ;; solaris*) library_names_spec='$libname$shrext' ;; sunos4*) library_names_spec='$libname$shrext$versuffix' ;; sysv4 | sysv4.3*) library_names_spec='$libname$shrext' ;; sysv4*MP*) library_names_spec='$libname$shrext' ;; sysv5* | sco3.2v5* | sco5v6* | unixware* | OpenUNIX* | sysv4*uw2*) library_names_spec='$libname$shrext' ;; tpf*) library_names_spec='$libname$shrext' ;; uts4*) library_names_spec='$libname$shrext' ;; esac sed_quote_subst='s/\(["`$\\]\)/\\\1/g' escaped_wl=`echo "X$wl" | sed -e 's/^X//' -e "$sed_quote_subst"` shlibext=`echo "$shrext" | sed -e 's,^\.,,'` escaped_libname_spec=`echo "X$libname_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_library_names_spec=`echo "X$library_names_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` escaped_hardcode_libdir_flag_spec=`echo "X$hardcode_libdir_flag_spec" | sed -e 's/^X//' -e "$sed_quote_subst"` LC_ALL=C sed -e 's/^\([a-zA-Z0-9_]*\)=/acl_cv_\1=/' < * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #define NAME_TAG 0x71 #define NAME_LIST_TAG 0x72 #define KEY_TAG 0x73 #define CHALLENGE_TAG 0x74 #define RESPONSE_TAG 0x75 #define T_RESPONSE_TAG 0x76 #define NO_RESPONSE_TAG 0x77 #define PROPERTY_TAG 0x78 #define VERSION_TAG 0x79 #define IMF_TAG 0x7a #define PUT_INS 0x01 #define DELETE_INS 0x02 #define SET_CODE_INS 0x03 #define RESET_INS 0x04 #define LIST_INS 0xa1 #define CALCULATE_INS 0xa2 #define VALIDATE_INS 0xa3 #define CALCULATE_ALL_INS 0xa4 #define SEND_REMAINING_INS 0xa5 static const unsigned char appselect[] = { 0x00, 0xa4, 0x04, 0x00, 0x07, 0xa0, 0x00, 0x00, 0x05, 0x27, 0x21, 0x01 }; static const unsigned char list_keys[] = { 0x00, LIST_INS, 0x00, 0x00 }; static const unsigned char send_remaining[] = { 0x00, SEND_REMAINING_INS, 0x00, 0x00 }; #ifdef _WIN32 #define scard_error(st) openconnect__win32_strerror(st) #define free_scard_error(str) free(str) #else #define scard_error(st) ((char *)pcsc_stringify_error(st)) #define free_scard_error(str) #endif #ifdef __APPLE__ #include #include #else #include #endif struct oc_pcsc_ctx { SCARDHANDLE pcsc_ctx, pcsc_card; char *yubikey_objname; int yubikey_pw_set; int yubikey_mode; }; static int yubikey_cmd(struct openconnect_info *vpninfo, SCARDHANDLE card, int errlvl, const char *desc, const unsigned char *out, size_t outlen, struct oc_text_buf *buf) { DWORD status; buf_truncate(buf); do { DWORD respsize = 258; if (buf_ensure_space(buf, 258)) return -ENOMEM; status = SCardTransmit (card, SCARD_PCI_T1, out, outlen, NULL, (unsigned char *)&buf->data[buf->pos], &respsize); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, errlvl, _("Failed to send \"%s\" to ykneo-oath applet: %s\n"), desc, pcsc_err); free_scard_error(pcsc_err); return -EIO; } if (respsize < 2) { vpn_progress(vpninfo, errlvl, _("Invalid short response to \"%s\" from ykneo-oath applet\n"), desc); return -EIO; } buf->pos += respsize - 2; /* Continuation */ out = send_remaining; outlen = sizeof(send_remaining); } while (buf->data[buf->pos] == 0x61); status = load_be16(buf->data + buf->pos); if (status == 0x9000) return 0; vpn_progress(vpninfo, errlvl, _("Failure response to \"%s\": %04x\n"), desc, (unsigned)status); switch (status) { case 0x6a80: return -EINVAL; default: return -EIO; } } static int buf_tlv(struct oc_text_buf *buf, int *loc, unsigned char *type) { int len; int left = buf->pos - *loc; if (left < 2) return -EINVAL; *type = (unsigned char)buf->data[(*loc)++]; len = (unsigned char)buf->data[(*loc)++]; left -= 2; if (len > 0x82) return -EINVAL; else if (len == 0x81) { if (left < 1) return -EINVAL; len = (unsigned char)buf->data[(*loc)++]; left--; } else if (len == 0x82) { if (left < 2) return -EINVAL; len = (unsigned char)buf->data[(*loc)++]; len <<= 8; len |= (unsigned char)buf->data[(*loc)++]; left -= 2; } if (left < len) return -EINVAL; return len; } static int select_yubioath_applet(struct openconnect_info *vpninfo, SCARDHANDLE pcsc_card, struct oc_text_buf *buf) { int ret, tlvlen, tlvpos, id_len, chall_len; unsigned char type; unsigned char applet_id[16], challenge[16]; unsigned char *applet_ver; char *pin = NULL; int pin_len = 0; ret = yubikey_cmd(vpninfo, pcsc_card, PRG_DEBUG, _("select applet command"), appselect, sizeof(appselect), buf); if (ret) return ret; tlvpos = 0; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != VERSION_TAG || tlvlen != 3) { bad_applet: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from ykneo-oath applet\n")); return -EIO; } applet_ver = (void *)&buf->data[tlvpos]; tlvpos += tlvlen; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != NAME_TAG || tlvlen > sizeof(applet_id)) goto bad_applet; memcpy(applet_id, &buf->data[tlvpos], tlvlen); id_len = tlvlen; tlvpos += tlvlen; /* Only print this during the first discovery loop */ if (!vpninfo->pcsc) vpn_progress(vpninfo, PRG_INFO, _("Found ykneo-oath applet v%d.%d.%d.\n"), applet_ver[0], applet_ver[1], applet_ver[2]); if (tlvpos != buf->pos) { unsigned char chalresp[7 + SHA1_SIZE + 10]; tlvlen = buf_tlv(buf, &tlvpos, &type); if (tlvlen < 0 || type != CHALLENGE_TAG || tlvlen > sizeof(challenge)) goto bad_applet; memcpy(challenge, &buf->data[tlvpos], tlvlen); chall_len = tlvlen; /* On later invocations, we know there must have been a * successful authentication in the past. So try the same * hash first, and only retry in the loop on failure. */ if (!vpninfo->pcsc) { struct oc_auth_form f; struct oc_form_opt o; retry_pass: memset(&f, 0, sizeof(f)); f.auth_id = (char *)"yubikey_oath_pin"; f.opts = &o; f.message = (char *)_("PIN required for Yubikey OATH applet"); o.next = NULL; o.type = OC_FORM_OPT_PASSWORD; o.name = (char *)"yubikey_pin"; o.label = (char *)_("Yubikey PIN:"); o._value = NULL; ret = process_auth_form(vpninfo, &f); if (ret) goto out; if (!o._value) { ret = -EPERM; goto out; } if (pin) { memset(pin, 0, pin_len); free(pin); } pin = o._value; pin_len = strlen(pin); /* This *should* be UTF-8 but see the workaround below. */ ret = openconnect_hash_yubikey_password(vpninfo, o._value, pin_len, applet_id, id_len); if (ret) goto out; } retry_hash: if (openconnect_yubikey_chalresp(vpninfo, &challenge, chall_len, chalresp + 7)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to calculate Yubikey unlock response\n")); ret = -EIO; goto out; } chalresp[0] = 0; chalresp[1] = VALIDATE_INS; chalresp[2] = 0; chalresp[3] = 0; chalresp[4] = sizeof(chalresp) - 5; chalresp[5] = RESPONSE_TAG; chalresp[6] = SHA1_SIZE; /* Response is already filled in */ chalresp[7 + SHA1_SIZE] = CHALLENGE_TAG; chalresp[8 + SHA1_SIZE] = 8; memset(chalresp + 9 + SHA1_SIZE, 0xff, 8); ret = yubikey_cmd(vpninfo, pcsc_card, PRG_ERR, _("unlock command"), chalresp, sizeof(chalresp), buf); if (ret == -EINVAL) { memset(vpninfo->yubikey_pwhash, 0, sizeof(vpninfo->yubikey_pwhash)); if (pin) { /* Try working around pre-KitKat PBKDF2 bug discussed at * https://forum.yubico.com/viewtopica454-3.html?f=26&t=1601#p6807 and * https://android-developers.googleblog.com/2013/12/changes-to-secretkeyfactory-api-in.html */ const char *in; char *out; /* Convert the UTF-8 PIN to byte-truncated form in-place */ in = out = pin; while (*in) { int c = get_utf8char(&in); if (c < 0) { /* Screw it. Break out of the loop in such a fashion * that we don't try the 'converted' result. */ in = out; break; } *(out++) = c; } /* If out == in then the string only contained ASCII so * there was no conversion to be done (or was invalid * UTF-8 and hit the error case above). So don't try. */ if (out != in && !openconnect_hash_yubikey_password(vpninfo, pin, out - pin, applet_id, id_len)) { /* We'll have printed with PRG_ERR when the proper * encoding failed. So use PRG_ERR here too. */ vpn_progress(vpninfo, PRG_ERR, _("Trying truncated-char PBKBF2 variant of Yubikey PIN\n")); goto retry_hash; } } goto retry_pass; } } out: free_pass(&pin); return ret; } #ifdef _WIN32 #define reader_len wcslen #else #define SCardListReadersW SCardListReaders #define SCardConnectW SCardConnect #define reader_len strlen #endif int set_yubikey_mode(struct openconnect_info *vpninfo, const char *token_str) { SCARDHANDLE pcsc_ctx, pcsc_card; LONG status; #ifdef _WIN32 wchar_t *readers = NULL, *reader; #else char *readers = NULL, *reader; #endif DWORD readers_size, proto; int ret, tlvlen, tlvpos; struct oc_text_buf *buf = NULL; status = SCardEstablishContext(SCARD_SCOPE_USER, NULL, NULL, &pcsc_ctx); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to establish PC/SC context: %s\n"), pcsc_err); free_scard_error(pcsc_err); return -EIO; } vpn_progress(vpninfo, PRG_TRACE, _("Established PC/SC context\n")); ret = -ENOENT; status = SCardListReadersW(pcsc_ctx, NULL, NULL, &readers_size); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to query reader list: %s\n"), pcsc_err); free_scard_error(pcsc_err); goto out_ctx; } readers = calloc(readers_size, sizeof(readers[0])); if (!readers) goto out_ctx; status = SCardListReadersW(pcsc_ctx, NULL, readers, &readers_size); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to query reader list: %s\n"), pcsc_err); free_scard_error(pcsc_err); goto out_ctx; } buf = buf_alloc(); reader = readers; while (reader[0]) { unsigned char type; #ifdef _WIN32 char *reader_utf8; int reader_len; reader_len = WideCharToMultiByte(CP_UTF8, 0, reader, -1, NULL, 0, NULL, NULL); reader_utf8 = malloc(reader_len); if (!reader_utf8) goto next_reader; WideCharToMultiByte(CP_UTF8, 0, reader, -1, reader_utf8, reader_len, NULL, NULL); #else #define reader_utf8 reader #endif status = SCardConnectW(pcsc_ctx, reader, SCARD_SHARE_SHARED, SCARD_PROTOCOL_T1, &pcsc_card, &proto); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to connect to PC/SC reader '%s': %s\n"), reader_utf8, pcsc_err); free_scard_error(pcsc_err); goto free_reader_utf8; } vpn_progress(vpninfo, PRG_TRACE, _("Connected PC/SC reader '%s'\n"), reader_utf8); status = SCardBeginTransaction(pcsc_card); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain exclusive access to reader '%s': %s\n"), reader_utf8, pcsc_err); free_scard_error(pcsc_err); goto disconnect; } ret = select_yubioath_applet(vpninfo, pcsc_card, buf); if (ret) goto end_trans; ret = yubikey_cmd(vpninfo, pcsc_card, PRG_ERR, _("list keys command"), list_keys, sizeof(list_keys), buf); if (ret) goto end_trans; tlvpos = 0; while (tlvpos < buf->pos) { unsigned char mode, hash; tlvlen = buf_tlv(buf, &tlvpos, &type); if (type != NAME_LIST_TAG || tlvlen < 1) { bad_applet: vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from ykneo-oath applet\n")); goto end_trans; } mode = buf->data[tlvpos] & 0xf0; hash = buf->data[tlvpos] & 0x0f; if (mode != 0x10 && mode != 0x20) goto bad_applet; if (hash != 0x01 && hash != 0x02) goto bad_applet; if (!token_str || ((tlvlen - 1 == strlen(token_str)) && !memcmp(token_str, &buf->data[tlvpos+1], tlvlen-1))) { char *objname = strndup(&buf->data[tlvpos+1], tlvlen-1); if (!objname) { ret = -ENOMEM; SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); SCardDisconnect(pcsc_card, SCARD_LEAVE_CARD); goto out_ctx; } /* Translators: This is filled in with mode and hash type, and the key identifier. e.g. "Found HOTP/SHA1 key: 'Work VPN key'\n" */ vpn_progress(vpninfo, PRG_INFO, _("Found %s/%s key '%s' on '%s'\n"), (mode == 0x20) ? "TOTP" : "HOTP", (hash == 0x2) ? "SHA256" : "SHA1", objname, reader_utf8); vpninfo->pcsc = calloc(1, sizeof(*vpninfo->pcsc)); if (!vpninfo->pcsc) { free(objname); goto out_ctx; } vpninfo->pcsc->yubikey_objname = objname; vpninfo->pcsc->yubikey_mode = mode; vpninfo->pcsc->pcsc_ctx = pcsc_ctx; vpninfo->pcsc->pcsc_card = pcsc_card; vpninfo->token_mode = OC_TOKEN_MODE_YUBIOATH; SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); goto success; } tlvpos += tlvlen; } if (token_str) { vpn_progress(vpninfo, PRG_ERR, _("Token '%s' not found on Yubikey '%s'. Searching for another Yubikey...\n"), token_str, reader_utf8); } end_trans: SCardEndTransaction(pcsc_card, SCARD_LEAVE_CARD); disconnect: SCardDisconnect(pcsc_card, SCARD_LEAVE_CARD); free_reader_utf8: #ifdef _WIN32 free(reader_utf8); next_reader: #endif while (*reader) reader++; reader++; } ret = -ENOENT; out_ctx: SCardReleaseContext(pcsc_ctx); success: free(readers); buf_free(buf); return ret; } /* Return value: * < 0, if unable to generate a tokencode * = 0, on success */ int can_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { if (vpninfo->token_bypassed) return -EINVAL; if (vpninfo->token_tries == 0) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate INITIAL tokencode\n")); vpninfo->token_time = 0; } else if (vpninfo->token_tries == 1) { vpn_progress(vpninfo, PRG_DEBUG, _("OK to generate NEXT tokencode\n")); vpninfo->token_time += 30; } else { /* limit the number of retries, to avoid account lockouts */ vpn_progress(vpninfo, PRG_INFO, _("Server is rejecting the Yubikey token; switching to manual entry\n")); return -ENOENT; } return 0; } static int tlvlen_len(int tlvlen) { if (tlvlen < 0x80) return 1; else if (tlvlen < 0x100) return 2; else return 3; } static int append_tlvlen(unsigned char *p, int tlvlen) { if (tlvlen < 0x80) { if (p) p[0] = tlvlen; return 1; } else if (tlvlen < 0x100) { if (p) { p[0] = 0x81; p[1] = tlvlen; } return 2; } else { if (p) { p[0] = 0x82; store_be16(p + 1, tlvlen); } return 3; } } int do_gen_yubikey_code(struct openconnect_info *vpninfo, struct oc_auth_form *form, struct oc_form_opt *opt) { struct oc_text_buf *respbuf = NULL; DWORD status; int name_len = strlen(vpninfo->pcsc->yubikey_objname); int name_tlvlen; int calc_tlvlen; unsigned char *reqbuf = NULL; int tokval; int i = 0; int ret; if (!vpninfo->token_time) vpninfo->token_time = time(NULL); vpn_progress(vpninfo, PRG_INFO, _("Generating Yubikey token code\n")); status = SCardBeginTransaction(vpninfo->pcsc->pcsc_card); if (status != SCARD_S_SUCCESS) { char *pcsc_err = scard_error(status); vpn_progress(vpninfo, PRG_ERR, _("Failed to obtain exclusive access to Yubikey: %s\n"), pcsc_err); free_scard_error(pcsc_err); return -EIO; } respbuf = buf_alloc(); ret = select_yubioath_applet(vpninfo, vpninfo->pcsc->pcsc_card, respbuf); if (ret) goto out; name_tlvlen = tlvlen_len(strlen(vpninfo->pcsc->yubikey_objname)); calc_tlvlen = 1 /* NAME_TAG */ + name_tlvlen + name_len + 1 /* CHALLENGE_TAG */ + 1 /* Challenge TLV len */; if (vpninfo->pcsc->yubikey_mode == 0x20) calc_tlvlen += 8; /* TOTP needs the time as challenge */ reqbuf = malloc(4 + tlvlen_len(calc_tlvlen) + calc_tlvlen); if (!reqbuf) goto out; reqbuf[i++] = 0; reqbuf[i++] = CALCULATE_INS; reqbuf[i++] = 0; reqbuf[i++] = 1; i += append_tlvlen(reqbuf + i, calc_tlvlen); reqbuf[i++] = NAME_TAG; i += append_tlvlen(reqbuf + i, name_len); memcpy(reqbuf + i, vpninfo->pcsc->yubikey_objname, name_len); i += name_len; reqbuf[i++] = CHALLENGE_TAG; if (vpninfo->pcsc->yubikey_mode == 0x20) { long token_steps = vpninfo->token_time / 30; reqbuf[i++] = 8; reqbuf[i++] = 0; reqbuf[i++] = 0; reqbuf[i++] = 0; reqbuf[i++] = 0; store_be32(reqbuf + i, token_steps); i += 4; } else { reqbuf[i++] = 0; /* HOTP mode, zero-length challenge */ } ret = yubikey_cmd(vpninfo, vpninfo->pcsc->pcsc_card, PRG_ERR, _("calculate command"), reqbuf, i, respbuf); if (ret) goto out; if (respbuf->pos != 7 || (unsigned char)respbuf->data[0] != T_RESPONSE_TAG || respbuf->data[1] != 5 || respbuf->data[2] > 8 || respbuf->data[2] < 6) { vpn_progress(vpninfo, PRG_ERR, _("Unrecognised response from Yubikey when generating tokencode\n")); ret = -EIO; goto out; } tokval = load_be32(respbuf->data + 3); opt->_value = malloc(respbuf->data[2] + 1); if (!opt->_value) { ret = -ENOMEM; goto out; } i = respbuf->data[2]; opt->_value[i] = 0; while (i--) { opt->_value[i] = '0' + tokval % 10; tokval /= 10; } vpninfo->token_tries++; out: SCardEndTransaction(vpninfo->pcsc->pcsc_card, SCARD_LEAVE_CARD); buf_free(respbuf); free(reqbuf); return ret; } void release_pcsc_ctx(struct openconnect_info *vpninfo) { if (!vpninfo->pcsc) return; if (vpninfo->token_mode == OC_TOKEN_MODE_YUBIOATH) { SCardDisconnect(vpninfo->pcsc->pcsc_card, SCARD_LEAVE_CARD); SCardReleaseContext(vpninfo->pcsc->pcsc_ctx); } memset(vpninfo->yubikey_pwhash, 0, sizeof(vpninfo->yubikey_pwhash)); free(vpninfo->pcsc->yubikey_objname); free(vpninfo->pcsc); vpninfo->pcsc = NULL; } openconnect-8.20/wintun.c0000644000076400007640000001625214171606260017231 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2021 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #define WIN32_LEAN_AND_MEAN #include #include #include #include #include #include #include #include static WINTUN_CREATE_ADAPTER_FUNC WintunCreateAdapter; static WINTUN_DELETE_ADAPTER_FUNC WintunDeleteAdapter; static WINTUN_DELETE_POOL_DRIVER_FUNC WintunDeletePoolDriver; static WINTUN_ENUM_ADAPTERS_FUNC WintunEnumAdapters; static WINTUN_FREE_ADAPTER_FUNC WintunFreeAdapter; static WINTUN_OPEN_ADAPTER_FUNC WintunOpenAdapter; static WINTUN_GET_ADAPTER_LUID_FUNC WintunGetAdapterLUID; static WINTUN_GET_ADAPTER_NAME_FUNC WintunGetAdapterName; static WINTUN_SET_ADAPTER_NAME_FUNC WintunSetAdapterName; static WINTUN_GET_RUNNING_DRIVER_VERSION_FUNC WintunGetRunningDriverVersion; static WINTUN_SET_LOGGER_FUNC WintunSetLogger; static WINTUN_START_SESSION_FUNC WintunStartSession; static WINTUN_END_SESSION_FUNC WintunEndSession; static WINTUN_GET_READ_WAIT_EVENT_FUNC WintunGetReadWaitEvent; static WINTUN_RECEIVE_PACKET_FUNC WintunReceivePacket; static WINTUN_RELEASE_RECEIVE_PACKET_FUNC WintunReleaseReceivePacket; static WINTUN_ALLOCATE_SEND_PACKET_FUNC WintunAllocateSendPacket; static WINTUN_SEND_PACKET_FUNC WintunSendPacket; static struct openconnect_info *logger_vpninfo; #define WINTUN_POOL_NAME L"OpenConnect" #define WINTUN_RING_CAPACITY 0x400000 /* 4 MiB */ static void CALLBACK wintun_log_fn(WINTUN_LOGGER_LEVEL wlvl, const WCHAR *wmsg) { int lvl = (wlvl == WINTUN_LOG_INFO) ? PRG_INFO : PRG_ERR; /* Sadly, Wintun doesn't provide any context information in the callback */ if (!logger_vpninfo) return; vpn_progress(logger_vpninfo, lvl, "%d: %S\n", wlvl, wmsg); } static int init_wintun(struct openconnect_info *vpninfo) { if (!vpninfo->wintun) { vpninfo->wintun = LoadLibraryExW(L"wintun.dll", NULL, LOAD_LIBRARY_SEARCH_APPLICATION_DIR); if (!vpninfo->wintun) { vpn_progress(vpninfo, PRG_DEBUG, _("Could not load wintun.dll\n")); return -ENOENT; } #define Resolve(Name) ((Name = (void *)GetProcAddress(vpninfo->wintun, #Name)) == NULL) if (Resolve(WintunCreateAdapter) || Resolve(WintunDeleteAdapter) || Resolve(WintunDeletePoolDriver) || Resolve(WintunEnumAdapters) || Resolve(WintunFreeAdapter) || Resolve(WintunOpenAdapter) || Resolve(WintunGetAdapterLUID) || Resolve(WintunGetAdapterName) || Resolve(WintunSetAdapterName) || Resolve(WintunGetRunningDriverVersion) || Resolve(WintunSetLogger) || Resolve(WintunStartSession) || Resolve(WintunEndSession) || Resolve(WintunGetReadWaitEvent) || Resolve(WintunReceivePacket) || Resolve(WintunReleaseReceivePacket) || Resolve(WintunAllocateSendPacket) || Resolve(WintunSendPacket)) { #undef Resolve vpn_progress(vpninfo, PRG_ERR, _("Could not resolve functions from wintun.dll\n")); FreeLibrary(vpninfo->wintun); vpninfo->wintun = NULL; return -EIO; } logger_vpninfo = vpninfo; WintunSetLogger(wintun_log_fn); } return 0; } int create_wintun(struct openconnect_info *vpninfo) { int ret = init_wintun(vpninfo); if (ret < 0) return ret; vpninfo->wintun_adapter = WintunCreateAdapter(WINTUN_POOL_NAME, vpninfo->ifname_w, NULL, NULL); if (vpninfo->wintun_adapter) return 0; ret = GetLastError(); char *errstr = openconnect__win32_strerror(ret); vpn_progress(vpninfo, PRG_ERR, "Could not create Wintun adapter '%S': %s\n", vpninfo->ifname_w, errstr); free(errstr); return (ret == ERROR_ACCESS_DENIED ? -EPERM : -EIO); } intptr_t open_wintun(struct openconnect_info *vpninfo, char *guid, wchar_t *wname) { intptr_t ret; if (init_wintun(vpninfo)) return 0; if (!vpninfo->wintun_adapter) { vpninfo->wintun_adapter = WintunOpenAdapter(WINTUN_POOL_NAME, wname); if (!vpninfo->wintun_adapter) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, "Could not open Wintun adapter '%S': %s\n", wname, errstr); free(errstr); ret = OPEN_TUN_SOFTFAIL; goto out; } } DWORD ver = WintunGetRunningDriverVersion(); vpn_progress(vpninfo, PRG_DEBUG, _("Loaded Wintun v%u.%u\n"), (ver >> 16) & 0xff, ver & 0xff); vpninfo->wintun_session = WintunStartSession(vpninfo->wintun_adapter, WINTUN_RING_CAPACITY); if (!vpninfo->wintun_session) { char *errstr = openconnect__win32_strerror(GetLastError()); vpn_progress(vpninfo, PRG_ERR, _("Failed to create Wintun session: %s\n"), errstr); free(errstr); ret = OPEN_TUN_HARDFAIL; goto out; } return 1; out: os_shutdown_wintun(vpninfo); return ret; } int os_read_wintun(struct openconnect_info *vpninfo, struct pkt *pkt) { DWORD tun_len; BYTE *tun_pkt = WintunReceivePacket(vpninfo->wintun_session, &tun_len); if (!tun_pkt) { DWORD err = GetLastError(); if (err != ERROR_NO_MORE_ITEMS) { const char *errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Could not retrieve packet from Wintun adapter '%S': %s\n"), vpninfo->ifname_w, errstr); free(errstr); } return -1; } int ret = 0; if (tun_len <= pkt->len) { memcpy(pkt->data, tun_pkt, tun_len); pkt->len = tun_len; } else { vpn_progress(vpninfo, PRG_ERR, _("Drop oversized packet retrieved from Wintun adapter '%S' (%ld > %d)\n"), vpninfo->ifname_w, tun_len, pkt->len); ret = -1; } WintunReleaseReceivePacket(vpninfo->wintun_session, tun_pkt); return ret; } int os_write_wintun(struct openconnect_info *vpninfo, struct pkt *pkt) { BYTE *tun_pkt = WintunAllocateSendPacket(vpninfo->wintun_session, pkt->len); if (!tun_pkt) { DWORD err = GetLastError(); const char *errstr = openconnect__win32_strerror(err); vpn_progress(vpninfo, PRG_ERR, _("Could not send packet through Wintun adapter '%S': %s\n"), vpninfo->ifname_w, errstr); free(errstr); return -1; } memcpy(tun_pkt, pkt->data, pkt->len); WintunSendPacket(vpninfo->wintun_session, tun_pkt); return 0; } void os_shutdown_wintun(struct openconnect_info *vpninfo) { if (vpninfo->wintun_session) { WintunEndSession(vpninfo->wintun_session); vpninfo->wintun_session = NULL; } if (vpninfo->wintun_adapter) { WintunDeleteAdapter(vpninfo->wintun_adapter, FALSE, NULL); WintunFreeAdapter(vpninfo->wintun_adapter); vpninfo->wintun_adapter = NULL; } logger_vpninfo = NULL; FreeLibrary(vpninfo->wintun); vpninfo->wintun = NULL; } int setup_wintun_fd(struct openconnect_info *vpninfo, intptr_t tun_fd) { vpninfo->tun_rd_overlap.hEvent = WintunGetReadWaitEvent(vpninfo->wintun_session); monitor_read_fd(vpninfo, tun); vpninfo->tun_fh = (HANDLE)tun_fd; return 0; } openconnect-8.20/java/0000755000076400007640000000000014204510554016451 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/java/README0000644000076400007640000000113214067426206017335 0ustar00dwoodhoudwoodhou00000000000000Description: This directory contains a JNI interface layer for libopenconnect, and a demo program to show how it can be used. Build instructions: From the top level, run: ./configure --with-java make cd java ant sudo java -Djava.library.path=../.libs -jar dist/example.jar [protocol] If ocproxy[1] is installed somewhere in your $PATH, this can be run as a non-root user and it should be pingable from across the VPN. Test/demo code is in src/com/example/ OpenConnect wrapper library is in src/org/infradead/libopenconnect/ [1] https://repo.or.cz/w/ocproxy.git openconnect-8.20/java/build.xml0000644000076400007640000000167114040533771020303 0ustar00dwoodhoudwoodhou00000000000000 openconnect-8.20/java/src/0000755000076400007640000000000014204510553017237 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/java/src/org/0000755000076400007640000000000014204510553020026 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/java/src/org/infradead/0000755000076400007640000000000014204510553021743 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/java/src/org/infradead/libopenconnect/0000755000076400007640000000000014204510554024746 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/java/src/org/infradead/libopenconnect/LibOpenConnect.java0000644000076400007640000002413414062600131030450 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ package org.infradead.libopenconnect; import java.util.ArrayList; import java.util.HashMap; import java.time.Instant; public abstract class LibOpenConnect { /* constants */ public static final int OC_PROTO_PROXY = 1; public static final int OC_PROTO_CSD = 2; public static final int OC_PROTO_AUTH_CERT = 4; public static final int OC_PROTO_AUTH_OTP = 8; public static final int OC_PROTO_AUTH_STOKEN = 16; public static final int OC_FORM_OPT_TEXT = 1; public static final int OC_FORM_OPT_PASSWORD = 2; public static final int OC_FORM_OPT_SELECT = 3; public static final int OC_FORM_OPT_HIDDEN = 4; public static final int OC_FORM_OPT_TOKEN = 5; public static final int OC_FORM_OPT_IGNORE = 0x0001; public static final int OC_FORM_OPT_NUMERIC = 0x0002; public static final int OC_TOKEN_MODE_NONE = 0; public static final int OC_TOKEN_MODE_STOKEN = 1; public static final int OC_TOKEN_MODE_TOTP = 2; public static final int OC_TOKEN_MODE_HOTP = 3; public static final int OC_FORM_RESULT_ERR = -1; public static final int OC_FORM_RESULT_OK = 0; public static final int OC_FORM_RESULT_CANCELLED = 1; public static final int OC_FORM_RESULT_NEWGROUP = 2; public static final int PRG_ERR = 0; public static final int PRG_INFO = 1; public static final int PRG_DEBUG = 2; public static final int PRG_TRACE = 3; public static final int RECONNECT_INTERVAL_MIN = 10; public static final int RECONNECT_INTERVAL_MAX = 100; /* required callbacks */ public abstract int onProcessAuthForm(AuthForm authForm); public abstract void onProgress(int level, String msg); /* optional callbacks */ public int onValidatePeerCert(String msg) { return 0; } public int onWriteNewConfig(byte[] buf) { return 0; } public void onProtectSocket(int fd) { } public void onStatsUpdate(VPNStats stats) { } public int onTokenLock() { return 0; } public int onTokenUnlock(String newToken) { return 0; } public void onSetupTun() { } public void onReconnected() { } /* create/destroy library instances */ public LibOpenConnect() { libctx = init("OpenConnect VPN Agent (Java)"); } public LibOpenConnect(String userAgent) { libctx = init(userAgent); } public synchronized void destroy() { if (libctx != 0) { free(); libctx = 0; } } /* async requests (safe to call from any thread) */ public void cancel() { synchronized (asyncLock) { if (!canceled) { doCancel(); canceled = true; } } } public boolean isCanceled() { synchronized (asyncLock) { return canceled; } } public native void pause(); public native void requestStats(); public native void setLogLevel(int level); /* control operations */ public synchronized native int parseURL(String url); public synchronized native int obtainCookie(); public synchronized native void clearCookie(); public synchronized native void resetSSL(); public synchronized native int makeCSTPConnection(); public synchronized native int setupTunDevice(String vpncScript, String IFName); public synchronized native int setupTunScript(String tunScript); public synchronized native int setupTunFD(int tunFD); public synchronized native int setupDTLS(int attemptPeriod); public synchronized native int mainloop(int reconnectTimeout, int reconnectInterval); /* connection settings */ public synchronized native int passphraseFromFSID(); public synchronized native void setCertExpiryWarning(int seconds); public synchronized native void setDPD(int minSeconds); public synchronized native void setTrojanInterval(int seconds); public synchronized native void setPassTOS(boolean isEnabled); public synchronized native int setProxyAuth(String methods); public synchronized native int setHTTPProxy(String proxy); public synchronized native void setXMLSHA1(String hash); public synchronized native void setHostname(String hostname); public synchronized native void setVersionString(String version); public synchronized native void setUrlpath(String urlpath); public synchronized native void setLocalName(String localName); public synchronized native void setCAFile(String caFile); public synchronized native void setReportedOS(String os); public synchronized native void setMobileInfo(String mobilePlatformVersion, String mobileDeviceType, String mobileDeviceUniqueID); public synchronized native int setTokenMode(int tokenMode, String tokenString); public synchronized native void setCSDWrapper(String wrapper, String TMPDIR, String PATH); public synchronized native void setXMLPost(boolean isEnabled); public synchronized native void setClientCert(String cert, String sslKey); public synchronized native void setReqMTU(int mtu); public synchronized native void setPFS(boolean isEnabled); public synchronized native int setAllowInsecureCrypto(boolean isEnabled); public synchronized native void setSystemTrust(boolean isEnabled); public synchronized native int setProtocol(String protocol); public synchronized native int disableDTLS(); public synchronized native int disableIPv6(); public synchronized native void setCookie(String cookie); /* connection info */ public synchronized native String getConnectUrl(); public synchronized native String getHostname(); public synchronized native String getDNSName(); public synchronized native String getUrlpath(); public synchronized native int getPort(); public synchronized native String getCookie(); public synchronized native String getIFName(); public synchronized native IPInfo getIPInfo(); public synchronized native String getCSTPCipher(); public synchronized native String getDTLSCipher(); public synchronized native String getCSTPCompression(); public synchronized native String getDTLSCompression(); public synchronized native String getProtocol(); public synchronized native int getIdleTimeout(); public synchronized native Instant getAuthExpiration(); /* certificate info */ public synchronized native int checkPeerCertHash(String hash); public synchronized native String getPeerCertHash(); public synchronized native String getPeerCertDetails(); public synchronized native byte[] getPeerCertDER(); public synchronized native byte[][] getPeerCertChain(); /* library info */ public static native String getVersion(); public static native boolean hasPKCS11Support(); public static native boolean hasTSSBlobSupport(); public static native boolean hasTSS2BlobSupport(); public static native boolean hasStokenSupport(); public static native boolean hasOATHSupport(); public static native boolean hasYubiOATHSupport(); public static native VPNProto[] getSupportedProtocols(); /* public data structures */ public static class FormOpt { public int type; public String name; public String label; public long flags; public ArrayList choices = new ArrayList(); public String value; public Object userData; /* FormOpt internals (called from JNI) */ void addChoice(FormChoice fc) { this.choices.add(fc); } }; public static class FormChoice { public String name; public String label; public String authType; public String overrideName; public String overrideLabel; public Object userData; }; public static class AuthForm { public String banner; public String message; public String error; public String authID; public String method; public String action; public ArrayList opts = new ArrayList(); public FormOpt authgroupOpt; public int authgroupSelection; public Object userData; /* AuthForm internals (called from JNI) */ FormOpt addOpt(boolean isAuthgroup) { FormOpt fo = new FormOpt(); opts.add(fo); if (isAuthgroup) { authgroupOpt = fo; } return fo; } String getOptValue(String name) { for (FormOpt fo : opts) { if (fo.name.equals(name)) { return fo.value; } } return null; } } public static class IPInfo { public String addr; public String netmask; public String addr6; public String netmask6; public ArrayList DNS = new ArrayList(); public ArrayList NBNS = new ArrayList(); public String domain; public String proxyPac; public String gatewayAddr; public int MTU; public int idleTimeoutSec; public ArrayList splitDNS = new ArrayList(); public ArrayList splitIncludes = new ArrayList(); public ArrayList splitExcludes = new ArrayList(); public HashMap CSTPOptions = new HashMap(); public HashMap DTLSOptions = new HashMap(); public Object userData; /* IPInfo internals (called from JNI) */ void addDNS(String arg) { DNS.add(arg); } void addNBNS(String arg) { NBNS.add(arg); } void addSplitDNS(String arg) { splitDNS.add(arg); } void addSplitInclude(String arg) { splitIncludes.add(arg); } void addSplitExclude(String arg) { splitExcludes.add(arg); } void addCSTPOption(String key, String value) { CSTPOptions.put(key, value); } void addDTLSOption(String key, String value) { DTLSOptions.put(key, value); } } public static class VPNStats { public long txPkts; public long txBytes; public long rxPkts; public long rxBytes; public Object userData; }; public static class VPNProto { public String name; public String prettyName; public String description; public int flags; }; /* Optional storage for caller's data */ public Object userData; /* LibOpenConnect internals */ long libctx; boolean canceled = false; Object asyncLock = new Object(); static synchronized native void globalInit(); static { globalInit(); } synchronized native long init(String useragent); synchronized native void free(); native void doCancel(); } openconnect-8.20/java/src/com/0000755000076400007640000000000014204510553020015 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/java/src/com/example/0000755000076400007640000000000014204510554021451 5ustar00dwoodhoudwoodhou00000000000000openconnect-8.20/java/src/com/example/LibTest.java0000644000076400007640000002150414062600131023655 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2013 Kevin Cernekee * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ package com.example; import java.io.*; import java.util.*; import java.time.Instant; import org.infradead.libopenconnect.LibOpenConnect; public final class LibTest { private static void die(String msg) { System.out.println(msg); System.exit(1); } private static String getline() { BufferedReader br = new BufferedReader(new InputStreamReader(System.in)); try { String line = br.readLine(); return line; } catch (IOException e) { die("\nI/O error"); } return ""; } private static class TestLib extends LibOpenConnect { @Override public int onValidatePeerCert(String msg) { System.out.println("cert warning: " + msg); System.out.println("cert hash: " + getPeerCertHash()); System.out.println("cert details: " + getPeerCertDetails()); System.out.println("Internal consistency check: " + (checkPeerCertHash(getPeerCertHash()) == 0 ? "OK" : "FAIL")); byte der[] = getPeerCertDER(); System.out.println("DER is " + der.length + " bytes long"); byte chain[][] = getPeerCertChain(); System.out.println("Chain has " + chain.length + " certs"); System.out.print("\nAccept this certificate? [n] "); String s = getline(); if (s != null && (s.startsWith("y") || s.startsWith("Y"))) { return 0; } else { return -1; } } @Override public int onWriteNewConfig(byte[] buf) { System.out.println("NEW_CONFIG: " + buf.length + " bytes"); return 0; } @Override public void onProtectSocket(int fd) { System.out.println("PROTECT_FD: " + fd); } private void printChoices(FormOpt fo) { for (FormChoice fc : fo.choices) { System.out.println("--->FormChoice: "); System.out.println(" +-name: " + fc.name); System.out.println(" +-label: " + fc.label); System.out.println(" +-authType: " + fc.authType); System.out.println(" +-overrideName: " + fc.overrideName); System.out.println(" +-overrideLabel: " + fc.overrideLabel); } } private String authgroup; private boolean lastFormEmpty; @Override public int onProcessAuthForm(LibOpenConnect.AuthForm authForm) { boolean empty = true; System.out.println("\nCSTP Cipher: " + getCSTPCipher()); System.out.println("\nAuthForm:"); System.out.println("+-banner: " + authForm.banner); System.out.println("+-message: " + authForm.message); System.out.println("+-error: " + authForm.error); System.out.println("+-authID: " + authForm.authID); System.out.println("+-method: " + authForm.method); System.out.println("+-action: " + authForm.action); if (authgroup == null && authForm.authgroupOpt != null) { FormOpt fo = authForm.authgroupOpt; printChoices(fo); System.out.print("\n" + fo.label + " "); String value = getline(); fo.value = value; authgroup = value; return OC_FORM_RESULT_NEWGROUP; } for (FormOpt fo : authForm.opts) { System.out.println("->FormOpt: "); System.out.println(" +-type: " + fo.type); System.out.println(" +-name: " + fo.name); System.out.println(" +-label: " + fo.label); System.out.println(" +-flags: " + fo.flags); if ((fo.flags & OC_FORM_OPT_IGNORE) != 0) { continue; } if (fo.type == OC_FORM_OPT_SELECT) { if (fo == authForm.authgroupOpt && authgroup != null) { fo.value = authgroup; continue; } printChoices(fo); } if (fo.type == OC_FORM_OPT_TEXT || fo.type == OC_FORM_OPT_PASSWORD || fo.type == OC_FORM_OPT_SELECT) { System.out.print("\n" + fo.label + " "); String value = getline(); fo.value = value; empty = false; } } System.out.println(""); if (lastFormEmpty && empty) { return OC_FORM_RESULT_CANCELLED; } lastFormEmpty = empty; return OC_FORM_RESULT_OK; } @Override public void onProgress(int level, String msg) { switch (level) { case LibOpenConnect.PRG_TRACE: System.out.print("TRACE: " + msg); break; case LibOpenConnect.PRG_DEBUG: System.out.print("DEBUG: " + msg); break; case LibOpenConnect.PRG_INFO: System.out.print("INFO: " + msg); break; case LibOpenConnect.PRG_ERR: System.out.print("ERROR: " + msg); break; } } @Override public void onSetupTun() { System.out.println("SETUP_TUN"); if (setupTunDevice("/etc/vpnc/vpnc-script", null) != 0 && setupTunScript("ocproxy") != 0) die("Error setting up tunnel"); } } private static void printList(String pfx, List ss) { System.out.print(pfx + ":"); if (ss.size() == 0) { System.out.println(" "); return; } for (String s : ss) { System.out.print(" " + s); } System.out.println(""); } private static void printIPInfo(LibOpenConnect.IPInfo ip) { System.out.println("\nIPInfo:"); System.out.println("+-IPv4: " + ip.addr + " / " + ip.netmask); System.out.println("+-IPv6: " + ip.addr6 + " / " + ip.netmask6); System.out.println("+-Domain: " + ip.domain); System.out.println("+-proxy.pac: " + ip.proxyPac); System.out.println("+-Gateway IP: " + ip.gatewayAddr); System.out.println("+-MTU: " + ip.MTU); printList("+-DNS", ip.DNS); printList("+-NBNS", ip.NBNS); printList("+-Split DNS", ip.splitDNS); printList("+-Split includes", ip.splitIncludes); printList("+-Split excludes", ip.splitExcludes); System.out.println(""); } private static void describeProtocol(LibOpenConnect.VPNProto vp) { ArrayList flags = new ArrayList(); if ((vp.flags & LibOpenConnect.OC_PROTO_PROXY) != 0) flags.add("proxy"); if ((vp.flags & LibOpenConnect.OC_PROTO_CSD) != 0) flags.add("CSD"); if ((vp.flags & LibOpenConnect.OC_PROTO_AUTH_CERT) != 0) flags.add("auth-cert"); if ((vp.flags & LibOpenConnect.OC_PROTO_AUTH_OTP) != 0) flags.add("auth-otp"); if ((vp.flags & LibOpenConnect.OC_PROTO_AUTH_OTP) != 0) flags.add("auth-stoken"); System.out.println(" " + vp.name + ") PRETTY_NAME=" + vp.prettyName + ", DESCRIPTION=" + vp.description + ", FLAGS=" + String.join("+", flags)); } public static void main(String argv[]) { System.loadLibrary("openconnect-wrapper"); LibOpenConnect lib = new TestLib(); String server_name, protocol; if (argv.length != 1 && argv.length != 2) die("usage: LibTest [protocol]"); server_name = argv[0]; protocol = argv.length == 2 ? argv[1] : null; System.out.println("OpenConnect version: " + lib.getVersion()); System.out.println(" PKCS=" + lib.hasPKCS11Support() + ", TSS=" + lib.hasTSSBlobSupport() + ", TSS2=" + lib.hasTSS2BlobSupport() + ", STOKEN=" + lib.hasStokenSupport() + ", OATH=" + lib.hasOATHSupport() + ", YUBIOATH=" + lib.hasYubiOATHSupport()); System.out.println("Supported protocols:"); for (LibOpenConnect.VPNProto vp : lib.getSupportedProtocols()) describeProtocol(vp); if (protocol == null) { System.out.println("Using default VPN protocol of " + lib.getProtocol()); } else { System.out.println("Setting VPN protocol to " + protocol); if (lib.setProtocol(protocol) != 0) die("Error setting VPN protocol"); } lib.setReportedOS("win"); lib.setLogLevel(lib.PRG_DEBUG); lib.setVersionString("2.2.0133"); //lib.setTokenMode(LibOpenConnect.OC_TOKEN_MODE_STOKEN, null); String csd_wrapper = "./csd-" + lib.getProtocol() + ".sh"; if (new File(csd_wrapper).exists()) { System.out.println("Using CSD wrapper script " + csd_wrapper); lib.setCSDWrapper(csd_wrapper, null, null); } else { System.out.println("Skipping CSD wrapper (script " + csd_wrapper + " doesn't exist)"); } lib.parseURL(server_name); lib.setSystemTrust(true); int ret = lib.obtainCookie(); if (ret < 0) die("obtainCookie() returned error"); else if (ret > 0) die("Aborted by user"); String cookie = lib.getCookie(); if (cookie.length() > 40) { System.out.println("Cookie: " + cookie.substring(0, 40) + "..."); } else { System.out.println("Cookie: " + cookie); } if (lib.makeCSTPConnection() != 0) die("Error establishing VPN link"); int idleTimeout = lib.getIdleTimeout(); System.out.println("Idle Timeout: " + idleTimeout + " seconds"); Instant authExpiration = lib.getAuthExpiration(); System.out.println("Auth Expiration: " + authExpiration.toString()); printIPInfo(lib.getIPInfo()); if (lib.setupDTLS(60) != 0) die("Error setting up DTLS"); lib.mainloop(300, LibOpenConnect.RECONNECT_INTERVAL_MIN); } } openconnect-8.20/pulse.c0000644000076400007640000025617114204454452017044 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2019 David Woodhouse. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include #include #include #include #include #include #include #include #include #define VENDOR_JUNIPER 0xa4c #define VENDOR_JUNIPER2 0x583 #define VENDOR_TCG 0x5597 #define IFT_VERSION_REQUEST 1 #define IFT_VERSION_RESPONSE 2 #define IFT_CLIENT_AUTH_REQUEST 3 #define IFT_CLIENT_AUTH_SELECTION 4 #define IFT_CLIENT_AUTH_CHALLENGE 5 #define IFT_CLIENT_AUTH_RESPONSE 6 #define IFT_CLIENT_AUTH_SUCCESS 7 /* IF-T/TLS v1 authentication messages all start * with the Auth Type Vendor (Juniper) + Type (1) */ #define JUNIPER_1 ((VENDOR_JUNIPER << 8) | 1) #define AVP_VENDOR 0x80 #define AVP_MANDATORY 0x40 #define EAP_REQUEST 1 #define EAP_RESPONSE 2 #define EAP_SUCCESS 3 #define EAP_FAILURE 4 #define EAP_TYPE_IDENTITY 1 #define EAP_TYPE_GTC 6 #define EAP_TYPE_TLS 0x0d #define EAP_TYPE_TTLS 0x15 #define EAP_TYPE_EXPANDED 0xfe #define EXPANDED_JUNIPER ((EAP_TYPE_EXPANDED << 24) | VENDOR_JUNIPER) #define AVP_CODE_EAP_MESSAGE 79 #if defined(OPENCONNECT_OPENSSL) #define TTLS_SEND SSL_write #define TTLS_RECV SSL_read #elif defined(OPENCONNECT_GNUTLS) #define TTLS_SEND gnutls_record_send #define TTLS_RECV gnutls_record_recv #endif /* Flags for prompt handling during authentication, based on the contents of the 0xd73 AVP (qv). */ #define PROMPT_PRIMARY 1 #define PROMPT_USERNAME 2 #define PROMPT_PASSWORD 4 #define PROMPT_GTC_NEXT 0x10000 /* Request codes for the Juniper Expanded/2 auth requests. */ #define J2_PASSCHANGE 0x43 #define J2_PASSREQ 0x01 #define J2_PASSRETRY 0x81 #define J2_PASSFAIL 0xc5 /* Limit to TLS record size. */ #define TLS_RECORD_MAX (16384) /* Outbound fragment size limit */ #define TTLS_MAXFRAG (8192) #define TTLS_LENGTH (1<<7) #define TTLS_MOREFRAGS (1<<6) #define TTLS_START (1<<5) static void buf_append_ift_hdr(struct oc_text_buf *buf, uint32_t vendor, uint32_t type) { uint32_t b[4]; store_be32(&b[0], vendor); store_be32(&b[1], type); b[2] = 0; /* Length will be filled in later. */ b[3] = 0; buf_append_bytes(buf, b, 16); } /* Append EAP header, using VENDOR_JUNIPER and the given subtype if * the main type is EAP_TYPE_EXPANDED */ static int buf_append_eap_hdr(struct oc_text_buf *buf, uint8_t code, uint8_t ident, uint8_t type, uint32_t subtype) { unsigned char b[24]; int len_ofs = -1; if (!buf_error(buf)) len_ofs = buf->pos; b[0] = code; b[1] = ident; b[2] = b[3] = 0; /* Length is filled in later. */ if (type == EAP_TYPE_EXPANDED) { store_be32(b + 4, EXPANDED_JUNIPER); store_be32(b + 8, subtype); buf_append_bytes(buf, b, 12); } else { b[4] = type; buf_append_bytes(buf, b, 5); } return len_ofs; } /* For an IF-T/TLS auth frame containing the Juniper/1 Auth Type, * the EAP header is at offset 0x14. Fill in the length field, * based on the current length of the buf */ static void buf_fill_eap_len(struct oc_text_buf *buf, int ofs) { /* EAP length word is always at 0x16, and counts bytes from 0x14 */ if (ofs >= 0 && !buf_error(buf) && buf->pos >= ofs + 4) store_be16(buf->data + ofs + 2, buf->pos - ofs); } static void buf_append_avp(struct oc_text_buf *buf, uint32_t type, const void *bytes, int len) { buf_append_be32(buf, type); buf_append_be16(buf, 0x8000); buf_append_be16(buf, len + 12); buf_append_be32(buf, VENDOR_JUNIPER2); buf_append_bytes(buf, bytes, len); if (len & 3) { uint32_t pad = 0; buf_append_bytes(buf, &pad, 4 - ( len & 3 )); } } static void buf_append_avp_string(struct oc_text_buf *buf, uint32_t type, const char *str) { buf_append_avp(buf, type, str, strlen(str)); } static void buf_append_avp_be32(struct oc_text_buf *buf, uint32_t type, uint32_t val) { uint32_t val_be; store_be32(&val_be, val); buf_append_avp(buf, type, &val_be, sizeof(val_be)); } static int valid_ift_success(unsigned char *bytes, int len) { if (len != 0x18 || (load_be32(bytes) & 0xffffff) != VENDOR_TCG || load_be32(bytes + 4) != IFT_CLIENT_AUTH_SUCCESS || load_be32(bytes + 8) != len || load_be32(bytes + 0x10) != JUNIPER_1 || bytes[0x14] != EAP_SUCCESS || load_be16(bytes + 0x16) != len - 0x14) return 0; return 1; } /* Check for a valid IF-T/TLS auth challenge of the Juniper/1 Auth Type */ static int valid_ift_auth(unsigned char *bytes, int len) { if (len < 0x14 || (load_be32(bytes) & 0xffffff) != VENDOR_TCG || load_be32(bytes + 4) != IFT_CLIENT_AUTH_CHALLENGE || load_be32(bytes + 8) != len || load_be32(bytes + 0x10) != JUNIPER_1) return 0; return 1; } static int valid_ift_auth_eap(unsigned char *bytes, int len) { /* Needs to be a valid IF-T/TLS auth challenge with the * expect Auth Type, *and* the payload has to be a valid * EAP request with correct length field. */ if (!valid_ift_auth(bytes, len) || len < 0x19 || bytes[0x14] != EAP_REQUEST || load_be16(bytes + 0x16) != len - 0x14) return 0; return 1; } static int valid_ift_auth_eap_exj1(unsigned char *bytes, int len) { /* Also needs to be the Expanded Juniper/1 EAP Type */ if (!valid_ift_auth_eap(bytes, len) || len < 0x20 || load_be32(bytes + 0x18) != EXPANDED_JUNIPER || load_be32(bytes + 0x1c) != 1) return 0; return 1; } static int process_attr(struct openconnect_info *vpninfo, struct oc_vpn_option **new_opts, struct oc_ip_info *new_ip_info, uint16_t type, unsigned char *data, int attrlen) { struct oc_split_include *xc; char buf[80]; int i; switch (type) { case 0x0001: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal Legacy IP address %s\n"), buf); new_ip_info->addr = add_option_dup(new_opts, "ipaddr", buf, -1); break; case 0x0002: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received netmask %s\n"), buf); new_ip_info->netmask = add_option_dup(new_opts, "netmask", buf, -1); break; case 0x0003: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!new_ip_info->dns[i]) { new_ip_info->dns[i] = add_option_dup(new_opts, "DNS", buf, -1); break; } } break; case 0x0004: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received WINS server %s\n"), buf); for (i = 0; i < 3; i++) { if (!new_ip_info->nbns[i]) { new_ip_info->nbns[i] = add_option_dup(new_opts, "WINS", buf, -1); break; } } break; case 0x0008: if (attrlen != 17) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } if (!vpninfo->disable_ipv6) { new_ip_info->addr6 = add_option_dup(new_opts, "ip6addr", buf, -1); i = strlen(buf); snprintf(buf + i, sizeof(buf) - i, "/%d", data[16]); new_ip_info->netmask6 = add_option_dup(new_opts, "ip6netmask", buf, -1); } vpn_progress(vpninfo, PRG_DEBUG, _("Received internal IPv6 address %s\n"), buf); break; case 0x000a: if (attrlen != 16) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } for (i = 0; i < 3; i++) { if (!new_ip_info->dns[i]) { new_ip_info->dns[i] = add_option_dup(new_opts, "DNS", buf, -1); break; } } vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS server %s\n"), buf); break; case 0x000f: if (attrlen != 17) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } i = strlen(buf); snprintf(buf + i, sizeof(buf) - i, "/%d", data[16]); xc = malloc(sizeof(*xc)); if (xc) { xc->route = add_option_dup(new_opts, "split-include6", buf, -1); if (xc->route) { xc->next = new_ip_info->split_includes; new_ip_info->split_includes = xc; } else free(xc); } vpn_progress(vpninfo, PRG_DEBUG, _("Received IPv6 split include %s\n"), buf); break; case 0x0010: if (attrlen != 17) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } i = strlen(buf); snprintf(buf + i, sizeof(buf) - i, "/%d", data[16]); xc = malloc(sizeof(*xc)); if (xc) { xc->route = add_option_dup(new_opts, "split-exclude6", buf, -1); if (xc->route) { xc->next = new_ip_info->split_excludes; new_ip_info->split_excludes = xc; } else free(xc); } vpn_progress(vpninfo, PRG_DEBUG, _("Received IPv6 split exclude %s\n"), buf); break; case 0x4005: if (attrlen != 4) { badlen: vpn_progress(vpninfo, PRG_ERR, _("Unexpected length %d for attr 0x%x\n"), attrlen, type); return -EINVAL; } new_ip_info->mtu = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("Received MTU %d from server\n"), new_ip_info->mtu); break; case 0x4006: if (!attrlen) goto badlen; if (!data[attrlen-1]) attrlen--; vpn_progress(vpninfo, PRG_DEBUG, _("Received DNS search domain %.*s\n"), attrlen, (char *)data); new_ip_info->domain = add_option_dup(new_opts, "search", (char *)data, attrlen); if (new_ip_info->domain) { char *p = (char *)new_ip_info->domain; while ((p = strchr(p, ','))) *p = ' '; } break; case 0x400b: if (attrlen != 4) goto badlen; snprintf(buf, sizeof(buf), "%d.%d.%d.%d", data[0], data[1], data[2], data[3]); vpn_progress(vpninfo, PRG_DEBUG, _("Received internal gateway address %s\n"), buf); /* Hm, what are we supposed to do with this? It's a tunnel; having a gateway is meaningless. */ add_option_dup(new_opts, "gateway", buf, -1); break; case 0x4010: { const char *enctype; uint16_t val; if (attrlen != 2) goto badlen; val = load_be16(data); if (val == ENC_AES_128_CBC) { enctype = "AES-128"; vpninfo->enc_key_len = 16; } else if (val == ENC_AES_256_CBC) { enctype = "AES-256"; vpninfo->enc_key_len = 32; } else enctype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP encryption: 0x%04x (%s)\n"), val, enctype); vpninfo->esp_enc = val; break; } case 0x4011: { const char *mactype; uint16_t val; if (attrlen != 2) goto badlen; val = load_be16(data); if (val == HMAC_MD5) { mactype = "MD5"; vpninfo->hmac_key_len = 16; } else if (val == HMAC_SHA1) { mactype = "SHA1"; vpninfo->hmac_key_len = 20; } else if (val == HMAC_SHA256) { mactype = "SHA256"; vpninfo->hmac_key_len = 32; } else mactype = "unknown"; vpn_progress(vpninfo, PRG_DEBUG, _("ESP HMAC: 0x%04x (%s)\n"), val, mactype); vpninfo->esp_hmac = val; break; } case 0x4012: if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_seconds = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u seconds\n"), vpninfo->esp_lifetime_seconds); break; case 0x4013: if (attrlen != 4) goto badlen; vpninfo->esp_lifetime_bytes = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP key lifetime: %u bytes\n"), vpninfo->esp_lifetime_bytes); break; case 0x4014: if (attrlen != 4) goto badlen; vpninfo->esp_replay_protect = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP replay protection: %d\n"), load_be32(data)); break; case 0x4016: if (attrlen != 2) goto badlen; i = load_be16(data); udp_sockaddr(vpninfo, i); vpn_progress(vpninfo, PRG_DEBUG, _("ESP port: %d\n"), i); break; case 0x4017: if (attrlen != 4) goto badlen; vpninfo->esp_ssl_fallback = load_be32(data); vpn_progress(vpninfo, PRG_DEBUG, _("ESP to SSL fallback: %u seconds\n"), vpninfo->esp_ssl_fallback); break; case 0x401a: if (attrlen != 1) goto badlen; /* Amusingly, this isn't enforced. It's client-only */ vpn_progress(vpninfo, PRG_DEBUG, _("ESP only: %d\n"), data[0]); break; case 0x401e: if (attrlen != 16) goto badlen; if (!inet_ntop(AF_INET6, data, buf, sizeof(buf))) { vpn_progress(vpninfo, PRG_ERR, _("Failed to handle IPv6 address\n")); return -EINVAL; } vpn_progress(vpninfo, PRG_DEBUG, _("Received internal gateway IPv6 address %s\n"), buf); /* Hm, what are we supposed to do with this? It's a tunnel; having a gateway is meaningless. */ add_option_dup(new_opts, "gateway6", buf, -1); break; /* 0x4022: disable proxy 0x400a: preserve proxy 0x4008: proxy (string) 0x4000: disconnect when routes changed 0x4015: tos copy 0x4001: tunnel routes take precedence 0x401f: tunnel routes with subnet access (also 4001 set) 0x4020: Enforce IPv4 0x4021: Enforce IPv6 */ default: buf[0] = 0; for (i=0; i < 16 && i < attrlen; i++) sprintf(buf + strlen(buf), " %02x", data[i]); if (attrlen > 16) sprintf(buf + strlen(buf), "..."); vpn_progress(vpninfo, PRG_DEBUG, _("Unknown attr 0x%x len %d:%s\n"), type, attrlen, buf); } return 0; } static int recv_ift_packet(struct openconnect_info *vpninfo, void *buf, int len) { int ret = vpninfo->ssl_read(vpninfo, buf, len); if (ret > 0 && vpninfo->dump_http_traffic) { vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of IF-T/TLS record\n"), ret); dump_buf_hex(vpninfo, PRG_TRACE, '<', buf, ret); } return ret; } static int send_ift_bytes(struct openconnect_info *vpninfo, void *bytes, int len) { int ret; store_be32(((char *)bytes) + 12, vpninfo->ift_seq++); dump_buf_hex(vpninfo, PRG_DEBUG, '>', (void *)bytes, len); ret = vpninfo->ssl_write(vpninfo, bytes, len); if (ret != len) { if (ret >= 0) { vpn_progress(vpninfo, PRG_ERR, _("Short write to IF-T/TLS\n")); ret = -EIO; } return ret; } return 0; } static int send_ift_packet(struct openconnect_info *vpninfo, struct oc_text_buf *buf) { if (buf_error(buf) || buf->pos < 16) { vpn_progress(vpninfo, PRG_ERR, _("Error creating IF-T packet\n")); return buf_error(buf); } /* Fill in the length word in the header with the full length of the buffer. * Also populate the sequence number. */ store_be32(buf->data + 8, buf->pos); return send_ift_bytes(vpninfo, buf->data, buf->pos); } /* We create packets with IF-T/TLS headers prepended because that's the * larger header. In the case where they need to be sent over EAP-TTLS, * convert the header to the EAP-Message AVP instead. */ static int send_eap_packet(struct openconnect_info *vpninfo, void *ttls, struct oc_text_buf *buf) { int ret; if (buf_error(buf) || buf->pos < 16) { vpn_progress(vpninfo, PRG_ERR, _("Error creating EAP packet\n")); return buf_error(buf); } if (!ttls) return send_ift_packet(vpninfo, buf); /* AVP EAP-Message header */ store_be32(buf->data + 0x0c, AVP_CODE_EAP_MESSAGE); store_be32(buf->data + 0x10, buf->pos - 0xc); dump_buf_hex(vpninfo, PRG_DEBUG, '.', (void *)(buf->data + 0x0c), buf->pos - 0x0c); ret = TTLS_SEND(ttls, buf->data + 0x0c, buf->pos - 0x0c); if (ret != buf->pos - 0x0c) return -EIO; return 0; } /* * Using the given buffer, receive and validate an EAP request of the * Expanded Juniper/1 type, either natively over IF-T/TLS or by EAP-TTLS * over IF-T/TLS. Return a pointer to the EAP header, with its length and * type already validated. */ static void *recv_eap_packet(struct openconnect_info *vpninfo, void *ttls, void *buf, int len) { unsigned char *cbuf = buf; int ret; if (!ttls) { ret = recv_ift_packet(vpninfo, buf, len); if (ret < 0) return NULL; if (!valid_ift_auth_eap_exj1(buf, ret)) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected IF-T/TLS authentication challenge:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)buf, ret); return NULL; } return cbuf + 0x14; } else { ret = TTLS_RECV(ttls, buf, len); if (ret <= 8) return NULL; if (/* EAP-Message AVP */ load_be32(cbuf) != AVP_CODE_EAP_MESSAGE || /* Ignore the mandatory bit */ (load_be32(cbuf+0x04) & ~0x40000000) != ret || cbuf[0x08] != EAP_REQUEST || load_be16(cbuf+0x0a) != ret - 8 || load_be32(cbuf+0x0c) != EXPANDED_JUNIPER || load_be32(cbuf+0x10) != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected EAP-TTLS payload:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', buf, ret); return NULL; } return cbuf + 0x08; } } static void dump_avp(struct openconnect_info *vpninfo, uint8_t flags, uint32_t vendor, uint32_t code, void *p, int len) { struct oc_text_buf *buf = buf_alloc(); const char *pretty; int i; for (i = 0; i < len; i++) if (!isprint( ((char *)p)[i] )) break; if (i == len) { buf_append(buf, " '"); buf_append_bytes(buf, p, len); buf_append(buf, "'"); } else { for (i = 0; i < len; i++) buf_append(buf, " %02x", ((unsigned char *)p)[i]); } if (buf_error(buf)) pretty = " "; else pretty = buf->data; if (flags & AVP_VENDOR) vpn_progress(vpninfo, PRG_TRACE, _("AVP 0x%x/0x%x:%s\n"), vendor, code, pretty); else vpn_progress(vpninfo, PRG_TRACE, _("AVP %d:%s\n"), code, pretty); buf_free(buf); } /* RFC5281 §10 */ static int parse_avp(struct openconnect_info *vpninfo, void **pkt, int *pkt_len, void **avp_out, int *avp_len, uint8_t *avp_flags, uint32_t *avp_vendor, uint32_t *avp_code) { unsigned char *p = *pkt; int l = *pkt_len; uint32_t code, len, vendor = 0; uint8_t flags; if (l < 8) return -EINVAL; code = load_be32(p); len = load_be32(p + 4) & 0xffffff; flags = p[4]; if (len > l || len < 8) return -EINVAL; p += 8; l -= 8; len -= 8; /* Vendor field is optional. */ if (flags & AVP_VENDOR) { if (l < 4) return -EINVAL; vendor = load_be32(p); p += 4; l -= 4; len -= 4; } *avp_vendor = vendor; *avp_flags = flags; *avp_code = code; *avp_out = p; *avp_len = len; /* Now set up packet pointer and length for next AVP, * aligned to 4 octets (if they exist in the packet) */ len = (len + 3) & ~3; if (len > l) len = l; *pkt = p + len; *pkt_len = l - len; return 0; } static int pulse_request_realm_entry(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf) { struct oc_auth_form f; struct oc_form_opt o; int ret; memset(&f, 0, sizeof(f)); memset(&o, 0, sizeof(o)); f.auth_id = (char *)"pulse_realm_entry"; f.opts = &o; f.message = _("Enter Pulse user realm:"); o.next = NULL; o.type = OC_FORM_OPT_TEXT; o.name = (char *)"realm"; o.label = (char *)_("Realm:"); ret = process_auth_form(vpninfo, &f); if (ret) return ret; if (o._value) { buf_append_avp_string(reqbuf, 0xd50, o._value); free_pass(&o._value); return 0; } return -EINVAL; } static int pulse_request_realm_choice(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, int realms, unsigned char *eap) { uint8_t avp_flags; uint32_t avp_code; uint32_t avp_vendor; int avp_len; void *avp_p; struct oc_auth_form f; struct oc_form_opt_select o; int i = 0, ret; void *p; int l; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; memset(&f, 0, sizeof(f)); memset(&o, 0, sizeof(o)); f.auth_id = (char *)"pulse_realm_choice"; f.opts = &o.form; f.authgroup_opt = &o; f.authgroup_selection = 1; f.message = _("Choose Pulse user realm:"); o.form.next = NULL; o.form.type = OC_FORM_OPT_SELECT; o.form.name = (char *)"realm_choice"; o.form.label = (char *)_("Realm:"); o.nr_choices = realms; o.choices = calloc(realms, sizeof(*o.choices)); if (!o.choices) return -ENOMEM; while (l) { if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse AVP\n")); ret = -EINVAL; goto out; } if (avp_vendor != VENDOR_JUNIPER2 || avp_code != 0xd4e) continue; o.choices[i] = malloc(sizeof(struct oc_choice)); if (!o.choices[i]) { ret = -ENOMEM; goto out; } o.choices[i]->name = o.choices[i]->label = strndup(avp_p, avp_len); if (!o.choices[i]->name) { ret = -ENOMEM; goto out; } i++; } /* We don't need to do anything on group changes. */ do { ret = process_auth_form(vpninfo, &f); } while (ret == OC_FORM_RESULT_NEWGROUP); if (!ret) buf_append_avp_string(reqbuf, 0xd50, o.form._value); out: if (o.choices) { for (i = 0; i < realms; i++) { if (o.choices[i]) { free(o.choices[i]->name); free(o.choices[i]); } } free(o.choices); } return ret; } static int pulse_request_session_kill(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, int sessions, unsigned char *eap) { uint8_t avp_flags; uint32_t avp_code; uint32_t avp_vendor; int avp_len, avp_len2; void *avp_p, *avp_p2; struct oc_auth_form f; struct oc_form_opt_select o; int i = 0, ret; void *p; int l; struct oc_text_buf *form_msg = buf_alloc(); char tmbuf[80]; struct tm tm; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; memset(&f, 0, sizeof(f)); memset(&o, 0, sizeof(o)); f.auth_id = (char *)"pulse_session_kill"; f.opts = &o.form; buf_append(form_msg, _("Session limit reached. Choose session to kill:\n")); o.form.next = NULL; o.form.type = OC_FORM_OPT_SELECT; o.form.name = (char *)"session_choice"; o.form.label = (char *)_("Session:"); o.nr_choices = sessions; o.choices = calloc(sessions, sizeof(*o.choices)); if (!o.choices) { ret = -ENOMEM; goto out; } while (l) { char *from = NULL; time_t when = 0; char *sessid = NULL; if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { badlist: free(from); free(sessid); vpn_progress(vpninfo, PRG_ERR, _("Failed to parse session list\n")); ret = -EINVAL; goto out; } if (avp_vendor != VENDOR_JUNIPER2 || avp_code != 0xd65) continue; while (avp_len) { if (parse_avp(vpninfo, &avp_p, &avp_len, &avp_p2, &avp_len2, &avp_flags, &avp_vendor, &avp_code)) goto badlist; dump_avp(vpninfo, avp_flags, avp_vendor, avp_code, avp_p2, avp_len2); if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd66) { free(sessid); sessid = strndup(avp_p2, avp_len2); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd67) { free(from); from = strndup(avp_p2, avp_len2); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd68 && avp_len2 == 8) { when = load_be32((char *)avp_p2 + 4); if (sizeof(time_t) > 4) when |= ((uint64_t)load_be32(avp_p2)) << 32; } } if (!from || !sessid || !when) goto badlist; if (0 #ifdef HAVE_LOCALTIME_S || !localtime_s(&tm, &when) #endif #ifdef HAVE_LOCALTIME_R || localtime_r(&when, &tm) #endif ) { strftime(tmbuf, sizeof(tmbuf), "%a, %d %b %Y %H:%M:%S %Z", &tm); } else snprintf(tmbuf, sizeof(tmbuf), "@%lu", (unsigned long)when); buf_append(form_msg, " - %s from %s at %s\n", sessid, from, tmbuf); free(from); from = NULL; o.choices[i] = malloc(sizeof(struct oc_choice)); if (!o.choices[i]) { free(sessid); ret = -ENOMEM; goto out; } o.choices[i]->name = o.choices[i]->label = sessid; i++; } ret = buf_error(form_msg); if (ret) goto out; f.message = form_msg->data; ret = process_auth_form(vpninfo, &f); if (!ret) buf_append_avp_string(reqbuf, 0xd69, o.form._value); out: if (o.choices) { for (i = 0; i < sessions; i++) { if (o.choices[i]) { free(o.choices[i]->name); free(o.choices[i]); } } free(o.choices); } buf_free(form_msg); return ret; } static int pulse_request_user_auth(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, uint8_t eap_ident, int prompt_flags, char *user_prompt, char *pass_prompt) { struct oc_auth_form f; struct oc_form_opt o[2]; unsigned char eap_avp[23]; int l; int ret; memset(&f, 0, sizeof(f)); memset(o, 0, sizeof(o)); f.auth_id = (char *) ((prompt_flags & PROMPT_PRIMARY) ? "pulse_user" : "pulse_secondary"); f.opts = &o[1]; /* Point to password prompt in case that's all we use */ f.message = (prompt_flags & PROMPT_PRIMARY) ? _("Enter user credentials:") : _("Enter secondary credentials:"); if (prompt_flags & PROMPT_USERNAME) { f.opts = &o[0]; o[0].next = NULL; /* Again, for now */ o[0].type = OC_FORM_OPT_TEXT; o[0].name = (char *)"username"; if (user_prompt) o[0].label = user_prompt; else o[0].label = (char *) ((prompt_flags & PROMPT_PRIMARY) ? _("Username:") : _("Secondary username:")); } if (prompt_flags & PROMPT_PASSWORD) { /* Might be referenced from o[0] or directly from f.opts */ o[0].next = &o[1]; o[1].type = OC_FORM_OPT_PASSWORD; o[1].name = (char *)"password"; if (pass_prompt) o[1].label = pass_prompt; else o[1].label = (char *) ((prompt_flags & PROMPT_PRIMARY) ? _("Password:") : _("Secondary password:")); } ret = process_auth_form(vpninfo, &f); if (ret) goto out; if (o[0]._value) { buf_append_avp_string(reqbuf, 0xd6d, o[0]._value); free_pass(&o[0]._value); } if (o[1]._value) { l = strlen(o[1]._value); if (l > 253) { free_pass(&o[1]._value); return -EINVAL; } } else { /* Their client actually resubmits the primary password when * a secondary password is requested. But it doesn't seem to * be necessary; might even just be a bug. */ l = 0; } /* AVP flags+mandatory+length */ store_be32(eap_avp, AVP_CODE_EAP_MESSAGE); store_be32(eap_avp + 4, (AVP_MANDATORY << 24) + sizeof(eap_avp) + l); /* EAP header: code/ident/len */ eap_avp[8] = EAP_RESPONSE; eap_avp[9] = eap_ident; store_be16(eap_avp + 10, l + 15); /* EAP length */ store_be32(eap_avp + 12, EXPANDED_JUNIPER); store_be32(eap_avp + 16, 2); /* EAP Juniper/2 payload: 02 02 */ eap_avp[20] = eap_avp[21] = 0x02; eap_avp[22] = l + 2; /* Why 2? */ buf_append_bytes(reqbuf, eap_avp, sizeof(eap_avp)); if (o[1]._value) { buf_append_bytes(reqbuf, o[1]._value, l); free_pass(&o[1]._value); } /* Padding */ if ((sizeof(eap_avp) + l) & 3) { uint32_t pad = 0; buf_append_bytes(reqbuf, &pad, 4 - ((sizeof(eap_avp) + l) & 3)); } ret = 0; out: return ret; } static int pulse_request_pass_change(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, uint8_t eap_ident, int prompt_flags) { struct oc_auth_form f; struct oc_form_opt o[3]; unsigned char eap_avp[23]; int l1, l2; int ret; memset(&f, 0, sizeof(f)); memset(o, 0, sizeof(o)); f.auth_id = (char *) ((prompt_flags & PROMPT_PRIMARY) ? "pulse_user_change" : "pulse_secondary_change"); f.opts = &o[0]; f.message = _("Password expired. Please change password:"); o[0].type = OC_FORM_OPT_PASSWORD; o[0].name = (char *)"oldpass"; o[0].label = (char *) _("Current password:"); o[0].next = &o[1]; o[1].type = OC_FORM_OPT_PASSWORD; o[1].name = (char *)"newpass1"; o[1].label = (char *) _("New password:"); o[1].next = &o[2]; o[2].type = OC_FORM_OPT_PASSWORD; o[2].name = (char *)"newpass1"; o[2].label = (char *) _("Verify new password:"); retry: free_pass(&o[0]._value); free_pass(&o[1]._value); free_pass(&o[2]._value); ret = process_auth_form(vpninfo, &f); if (ret) goto out; if (!o[0]._value || !o[1]._value || !o[2]._value) { vpn_progress(vpninfo, PRG_DEBUG, _("Passwords not provided.\n")); ret = -EINVAL; goto out; } if (strcmp(o[1]._value, o[2]._value)) { vpn_progress(vpninfo, PRG_ERR, _("Passwords do not match.\n")); goto retry; } l1 = strlen(o[0]._value); if (l1 > 253) { vpn_progress(vpninfo, PRG_ERR, _("Current password too long.\n")); goto retry; } l2 = strlen(o[1]._value); if (l2 > 253) { vpn_progress(vpninfo, PRG_ERR, _("New password too long.\n")); goto retry; } /* AVP flags+mandatory+length */ store_be32(eap_avp, AVP_CODE_EAP_MESSAGE); store_be32(eap_avp + 4, (AVP_MANDATORY << 24) + sizeof(eap_avp) + l1 + 2 + l2); /* EAP header: code/ident/len */ eap_avp[8] = EAP_RESPONSE; eap_avp[9] = eap_ident; store_be16(eap_avp + 10, l1 + l2 + 17); /* EAP length */ store_be32(eap_avp + 12, EXPANDED_JUNIPER); store_be32(eap_avp + 16, 2); /* EAP Juniper/2 payload: 02 02 */ eap_avp[20] = eap_avp[21] = 0x02; eap_avp[22] = l1 + 2; /* Why 2? */ buf_append_bytes(reqbuf, eap_avp, sizeof(eap_avp)); buf_append_bytes(reqbuf, o[0]._value, l1); /* Reuse eap_avp to append the new password */ eap_avp[0] = 0x03; eap_avp[1] = l2 + 2; buf_append_bytes(reqbuf, eap_avp, 2); buf_append_bytes(reqbuf, o[1]._value, l2); /* Padding */ if ((sizeof(eap_avp) + l1 + 2 + l2) & 3) { uint32_t pad = 0; buf_append_bytes(reqbuf, &pad, 4 - ((sizeof(eap_avp) + l1 + 2 + l2) & 3)); } ret = 0; out: free_pass(&o[0]._value); free_pass(&o[1]._value); free_pass(&o[2]._value); return ret; } static int pulse_request_gtc(struct openconnect_info *vpninfo, struct oc_text_buf *reqbuf, uint8_t eap_ident, int prompt_flags, char *user_prompt, char *pass_prompt, char *gtc_prompt) { struct oc_auth_form f; struct oc_form_opt o[2]; int ret; memset(&f, 0, sizeof(f)); memset(o, 0, sizeof(o)); f.auth_id = (char *)"pulse_gtc"; /* The first prompt always seems to be 'Enter SecurID PASSCODE:' and is ignored. */ if (gtc_prompt && (prompt_flags & PROMPT_GTC_NEXT)) f.message = gtc_prompt; else f.message = _("Token code request:"); if (prompt_flags & PROMPT_USERNAME) { f.opts = &o[0]; o[0].next = &o[1]; o[0].type = OC_FORM_OPT_TEXT; o[0].name = (char *)"username"; if (user_prompt) o[0].label = user_prompt; else o[0].label = (char *) ((prompt_flags & PROMPT_PRIMARY) ? _("Username:") : _("Secondary username:")); } else { f.opts = &o[1]; } o[1].type = OC_FORM_OPT_PASSWORD; o[1].name = (char *)"tokencode"; /* * For retries, we have a gtc_prompt and we just say 'Please enter response:'. * Otherwise, use the pass_prompt if it exists, or create our own based * on whether it's primary authentication or not. */ if (prompt_flags & PROMPT_GTC_NEXT) { o[1].label = _("Please enter response:"); } else if (pass_prompt) { o[1].label = pass_prompt; } else if (prompt_flags & PROMPT_PRIMARY) { o[1].label = _("Please enter your passcode:"); } else { o[1].label = _("Please enter your secondary token information:"); } if (!can_gen_tokencode(vpninfo, &f, &o[1])) o[1].type = OC_FORM_OPT_TOKEN; ret = process_auth_form(vpninfo, &f); if (ret) goto out; ret = do_gen_tokencode(vpninfo, &f); if (ret) goto out; if (o[0]._value) { buf_append_avp_string(reqbuf, 0xd6d, o[0]._value); free_pass(&o[0]._value); } if (o[1]._value) { unsigned char eap_avp[13]; int l = strlen(o[1]._value); if (l > 253) { free_pass(&o[1]._value); ret = -EINVAL; goto out; } /* AVP flags+mandatory+length */ store_be32(eap_avp, AVP_CODE_EAP_MESSAGE); store_be32(eap_avp + 4, (AVP_MANDATORY << 24) + sizeof(eap_avp) + l); /* EAP header: code/ident/len */ eap_avp[8] = EAP_RESPONSE; eap_avp[9] = eap_ident; store_be16(eap_avp + 10, l + 5); /* EAP length */ eap_avp[12] = EAP_TYPE_GTC; buf_append_bytes(reqbuf, eap_avp, sizeof(eap_avp)); buf_append_bytes(reqbuf, o[1]._value, l); /* Padding */ if ((sizeof(eap_avp) + l) & 3) { uint32_t pad = 0; buf_append_bytes(reqbuf, &pad, 4 - ((sizeof(eap_avp) + l) & 3)); } free_pass(&o[1]._value); } else { ret = -EINVAL; goto out; } ret = 0; out: return ret; } static int dup_prompt(char **p, uint8_t *avp_p, int avp_len) { char *ret = NULL; free(*p); *p = NULL; if (!avp_len) { return 0; } else if (avp_p[avp_len - 1] == ':') { ret = strndup((char *)avp_p, avp_len); } else { ret = calloc(avp_len + 2, 1); if (ret) { memcpy(ret, avp_p, avp_len); ret[avp_len] = ':'; ret[avp_len + 1] = 0; } } if (ret) { *p = ret; return 0; } else return -ENOMEM; } /* * There is complex client-side logic around when to (re)prompt for a password. * The first prompt always needs it, whether it's a TokenCode request (EAP-06) * or a normal password request (EAP-Expanded-Juniper/2). If a password request * fails (0x81) then we prompt for username again in case that's what was wrong. * * If there's a secondary password request, it might need a *secondary* username. * The first request comes with a 0xd73 AVP which has a single integer: * 1: prompt for both username and password. * 3: Prompt for password only. * 5: Prompt for username only. * */ /* IF-T/TLS session establishment is the same for both pulse_obtain_cookie() and * pulse_connect(). We have to go through the EAP phase of the connection either * way; it's just that we might do it with just the cookie, or we might need to * use the password/cert etc. */ static int pulse_authenticate(struct openconnect_info *vpninfo, int connecting) { int ret; struct oc_text_buf *reqbuf; unsigned char bytes[16384]; int eap_ofs; uint8_t eap_ident, eap2_ident = 0; uint8_t avp_flags; uint32_t avp_code; uint32_t avp_vendor; int avp_len, l; void *avp_p, *p; unsigned char *eap; int cookie_found = 0; int j2_found = 0, realms_found = 0, realm_entry = 0, old_sessions = 0, gtc_found = 0; uint8_t j2_code = 0; void *ttls = NULL; char *user_prompt = NULL, *pass_prompt = NULL, *gtc_prompt = NULL, *signin_prompt = NULL; char *user2_prompt = NULL, *pass2_prompt = NULL; int prompt_flags = PROMPT_PRIMARY | PROMPT_USERNAME | PROMPT_PASSWORD; ret = openconnect_open_https(vpninfo); if (ret) return ret; reqbuf = buf_alloc(); buf_append(reqbuf, "GET /%s HTTP/1.1\r\n", vpninfo->urlpath ?: ""); http_common_headers(vpninfo, reqbuf); buf_append(reqbuf, "Content-Type: EAP\r\n"); buf_append(reqbuf, "Upgrade: IF-T/TLS 1.0\r\n"); buf_append(reqbuf, "Content-Length: 0\r\n"); buf_append(reqbuf, "\r\n"); if (buf_error(reqbuf)) { vpn_progress(vpninfo, PRG_ERR, _("Error creating Pulse connection request\n")); ret = buf_error(reqbuf); goto out; } if (vpninfo->dump_http_traffic) dump_buf(vpninfo, '>', reqbuf->data); ret = vpninfo->ssl_write(vpninfo, reqbuf->data, reqbuf->pos); if (ret < 0) goto out; ret = process_http_response(vpninfo, 1, NULL, reqbuf); if (ret < 0) goto out; if (ret != 101) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected %d result from server\n"), ret); ret = -EINVAL; goto out; } vpninfo->ift_seq = 0; /* IF-T version request. */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_VERSION_REQUEST); /* Min version 1, max 2, preferred 2. Not that we actually do v2; the auth is * still all IF-T/TLS v1. But the server won't offer us HMAC-SHA256 unless we * advertise v2 */ buf_append_be32(reqbuf, 0x00010202); ret = send_ift_packet(vpninfo, reqbuf); if (ret) goto out; ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; if (ret != 0x14 || (load_be32(bytes) & 0xffffff) != VENDOR_TCG || load_be32(bytes + 4) != IFT_VERSION_RESPONSE || load_be32(bytes + 8) != 0x14) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response to IF-T/TLS version negotiation:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } vpn_progress(vpninfo, PRG_TRACE, _("IF-T/TLS version from server: %d\n"), bytes[0x13]); /* Client information packet over IF-T/TLS */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_JUNIPER, 0x88); buf_append(reqbuf, "clientHostName=%s", vpninfo->localname); bytes[0] = 0; if (vpninfo->peer_addr && vpninfo->peer_addr->sa_family == AF_INET6) { struct sockaddr_in6 a; socklen_t l = sizeof(a); if (!getsockname(vpninfo->ssl_fd, (void *)&a, &l)) inet_ntop(AF_INET6, &a.sin6_addr, (void *)bytes, sizeof(bytes)); } else if (vpninfo->peer_addr && vpninfo->peer_addr->sa_family == AF_INET) { struct sockaddr_in a; socklen_t l = sizeof(a); if (!getsockname(vpninfo->ssl_fd, (void *)&a, &l)) inet_ntop(AF_INET, &a.sin_addr, (void *)bytes, sizeof(bytes)); } if (bytes[0]) buf_append(reqbuf, " clientIp=%s", bytes); buf_append(reqbuf, "\n%c", 0); ret = send_ift_packet(vpninfo, reqbuf); if (ret) goto out; /* Await start of auth negotiations */ ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; /* Basically an empty IF-T/TLS auth challenge packet of type Juniper/1, * without even an EAP header in the payload. */ if (!valid_ift_auth(bytes, ret) || ret != 0x14) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected IF-T/TLS authentication challenge:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } /* Start by sending an EAP Identity of 'anonymous'. At this point we * aren't yet very far down the rabbithole... * * -------------------------------------- * | TCP/IP | * |------------------------------------| * | TLS | * |------------------------------------| * | IF-T/TLS | * |------------------------------------| * | EAP (IF-T/TLS Auth Type Juniper/1) | * |------------------------------------| * | EAP-Identity | * -------------------------------------- */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(reqbuf, JUNIPER_1); /* IF-T/TLS Auth Type */ eap_ofs = buf_append_eap_hdr(reqbuf, EAP_RESPONSE, 1, EAP_TYPE_IDENTITY, 0); buf_append(reqbuf, "anonymous"); buf_fill_eap_len(reqbuf, eap_ofs); ret = send_ift_packet(vpninfo, reqbuf); if (ret) goto out; /* * Phase 2 may continue directly with EAP within IF-T/TLS, or if certificate * auth is enabled, the server may use EAP-TTLS. In that case, we end up * with EAP within EAP-Message AVPs within EAP-TTLS within IF-T/TLS. * The send_eap_packet() and recv_eap_packet() functions cope with both * formats. The buffers have 0x14 bytes of header space, to allow for * the IF-T/TLS header which is the larger of the two. * * -------------------------------------- * | TCP/IP | * |------------------------------------| * | TLS | * |------------------------------------| * | IF-T/TLS | * |------------------------------------| * | EAP (IF-T/TLS Auth Type Juniper/1) | * |------------------ | * | EAP-TTLS | | * |-----------------| (or directly) | * | EAP-Message AVP | | * |-----------------|------------------| * | EAP-Juniper-1 | * -------------------------------------- */ ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; /* Check EAP header and length */ if (!valid_ift_auth_eap(bytes, ret)) { bad_ift: vpn_progress(vpninfo, PRG_ERR, _("Unexpected IF-T/TLS authentication challenge:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } /* * We know the packet is valid at least down to the first layer of * EAP in the diagram above, directly within the IF-T/TLS Auth Type * of Juniper/1. Now, disambiguate between the two cases where the * diagram diverges. Is it EAP-TTLS or is it EAP-Juniper-1 directly? */ if (valid_ift_auth_eap_exj1(bytes, ret)) { eap = bytes + 0x14; } else { /* If it isn't that, it'd better be EAP-TTLS... */ if (bytes[0x18] != EAP_TYPE_TTLS) goto bad_ift; vpninfo->ttls_eap_ident = bytes[0x15]; vpninfo->ttls_recvbuf = malloc(TLS_RECORD_MAX); if (!vpninfo->ttls_recvbuf) return -ENOMEM; vpninfo->ttls_recvlen = 0; vpninfo->ttls_recvpos = 0; vpninfo->ttls_msgleft = 0; ttls = establish_eap_ttls(vpninfo); if (!ttls) { vpn_progress(vpninfo, PRG_ERR, _("Failed to establish EAP-TTLS session\n")); ret = -EINVAL; goto out; } /* Resend the EAP Identity 'anonymous' packet within EAP-TTLS */ ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; /* * The recv_eap_packet() function receives and validates the EAP * packet of type Extended Juniper-1, either natively or within * EAP-TTLS according to whether 'ttls' is set. */ eap = recv_eap_packet(vpninfo, ttls, bytes, sizeof(bytes)); if (!eap) { ret = -EIO; goto out; } } /* Now we (hopefully) have the server information packet, in an EAP request * from the server. Either it was received directly in IF-T/TLS, or within * an EAP-Message within EAP-TTLS. Either way, the EAP message we're * interested in will be at offset 0x14 in the packet, its header will * have been checked, and is Expanded Juniper/1, and its payload thus * starts at 0x20. And its length is sufficient that we won't underflow */ eap_ident = eap[1]; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; /* We don't actually use anything we get here. Typically it * contains Juniper/0xd49 and Juniper/0xd4a word AVPs, and * a Juniper/0xd56 AVP with server licensing information. */ while (l) { if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse AVP\n")); bad_eap: dump_buf_hex(vpninfo, PRG_ERR, 'E', eap, load_be16(eap + 2)); ret = -EINVAL; goto out; } dump_avp(vpninfo, avp_flags, avp_vendor, avp_code, avp_p, avp_len); } /* Present the client information and auth cookie */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(reqbuf, JUNIPER_1); /* IF-T/TLS Auth Type */ eap_ofs = buf_append_eap_hdr(reqbuf, EAP_RESPONSE, eap_ident, EAP_TYPE_EXPANDED, 1); #if 0 /* Their client sends a lot of other stuff here, which we don't * understand and which doesn't appear to be mandatory. So leave * it out for now until/unless it becomes necessary. It seems that * sending Pulse-Secure/4.0.0.0 or anything newer makes it do * EAP-TLS *within* the EAP-TTLS session if you don't actually * present a certificate. */ buf_append_avp_be32(reqbuf, 0xd49, 3); buf_append_avp_be32(reqbuf, 0xd61, 0); buf_append_avp_string(reqbuf, 0xd5e, "Windows"); buf_append_avp_string(reqbuf, 0xd70, "Pulse-Secure/9.0.3.1667 (Windows Server 2016) Pulse/9.0.3.1667"); buf_append_avp_string(reqbuf, 0xd63, "\xac\x1e\x8a\x78\x2d\x96\x45\x69\xb7\x7b\x80\x0f\xb7\x39\x2e\x41"); buf_append_avp_string(reqbuf, 0xd64, "\x1a\x3d\x9f\xa4\x07\xd9\xcb\x40\x9d\x61\x6a\x7a\x89\x24\x9b\x15"); buf_append_avp_string(reqbuf, 0xd5f, "en-US"); buf_append_avp_string(reqbuf, 0xd6c, "\x02\xe9\xa7\x51\x92\x4e"); buf_append_avp_be32(reqbuf, 0xd84, 0); #else buf_append_avp_string(reqbuf, 0xd70, vpninfo->useragent); #endif if (vpninfo->cookie) buf_append_avp_string(reqbuf, 0xd53, vpninfo->cookie); buf_fill_eap_len(reqbuf, eap_ofs); ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; /* Await start of auth negotiations */ auth_response: free(signin_prompt); signin_prompt = NULL; /* If there's a follow-on GTC prompt, remember it's not the first */ if (gtc_found) prompt_flags |= PROMPT_GTC_NEXT; else prompt_flags &= ~PROMPT_GTC_NEXT; realm_entry = realms_found = j2_found = old_sessions = 0, gtc_found = 0; eap = recv_eap_packet(vpninfo, ttls, (void *)bytes, sizeof(bytes)); if (!eap) { ret = -EIO; goto out; } eap_ident = eap[1]; l = load_be16(eap + 2) - 0x0c; /* Already validated */ p = eap + 0x0c; while (l) { if (parse_avp(vpninfo, &p, &l, &avp_p, &avp_len, &avp_flags, &avp_vendor, &avp_code)) { vpn_progress(vpninfo, PRG_ERR, _("Failed to parse AVP\n")); goto bad_eap; } dump_avp(vpninfo, avp_flags, avp_vendor, avp_code, avp_p, avp_len); /* It's a bit late for this given that we don't get it until after * we provide the password. */ if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd55) { char md5buf[MD5_SIZE * 2 + 1]; get_cert_md5_fingerprint(vpninfo, vpninfo->peer_cert, md5buf); if (avp_len != MD5_SIZE * 2 || strncasecmp(avp_p, md5buf, MD5_SIZE * 2)) { /* This actually happens in the wild and the official clients don't seem to * care. It's too late because we've already authenticated at this point, * and it's only MD5 anyway. I find it hard to care. Just whine and continue * anyway. */ vpn_progress(vpninfo, PRG_INFO, _("WARNING: Server provided certificate MD5 does not match its actual certificate.\n")); continue; } } if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd65) { old_sessions++; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd60) { uint32_t failcode; if (avp_len != 4) goto auth_unknown; failcode = load_be32(avp_p); if (failcode == 0x0d) { vpn_progress(vpninfo, PRG_ERR, _("Authentication failure: Account locked out\n")); } else if (failcode == 0x0e) { vpn_progress(vpninfo, PRG_ERR, _("Authentication failure: Client certificate required\n")); } else { vpn_progress(vpninfo, PRG_ERR, _("Authentication failure: Code 0x%02x\n"), failcode); } ret = -EPERM; goto out; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd80) { dup_prompt(&user_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd81) { dup_prompt(&pass_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd82) { dup_prompt(&user2_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd83) { dup_prompt(&pass2_prompt, avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd73) { uint32_t val; if (avp_len != 4) goto auth_unknown; val = load_be32(avp_p); switch (val) { case 1: /* Prompt for both username and password. */ prompt_flags = PROMPT_PASSWORD | PROMPT_USERNAME; break; case 3: /* Prompt for password.*/ case 15: prompt_flags = PROMPT_PASSWORD; break; case 5: /* Prompt for username.*/ prompt_flags = PROMPT_USERNAME; break; default: /* It does no harm to submit both, as anything unwanted is ignored. */ vpn_progress(vpninfo, PRG_ERR, _("Unknown D73 prompt value 0x%x. Will prompt for both username and password.\n"), val); vpn_progress(vpninfo, PRG_ERR, _("Please report this value and the behaviour of the official client.\n")); prompt_flags = PROMPT_PASSWORD | PROMPT_USERNAME; break; } } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd7b) { free(signin_prompt); signin_prompt = strndup(avp_p, avp_len); } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd4e) { realms_found++; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd4f) { realm_entry++; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd5c) { if (avp_len != 4) goto auth_unknown; uint32_t val = load_be32(avp_p); if (val) vpninfo->auth_expiration = time(NULL) + val; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd75) { if (avp_len != 4) goto auth_unknown; uint32_t val = load_be32(avp_p); if (val) vpninfo->idle_timeout = val; } else if (avp_vendor == VENDOR_JUNIPER2 && avp_code == 0xd53) { free(vpninfo->cookie); vpninfo->cookie = strndup(avp_p, avp_len); cookie_found = 1; /* DSID cookie may be needed for fallback to oNCP/Juniper logout */ http_add_cookie(vpninfo, "DSID", vpninfo->cookie, 1 /* replace */); } else if (!avp_vendor && avp_code == AVP_CODE_EAP_MESSAGE) { char *avp_c = avp_p; /* EAP within AVP within EAP within IF-T/TLS. Check EAP header. */ if (avp_len < 5 || avp_c[0] != EAP_REQUEST || load_be16(avp_c + 2) != avp_len) goto auth_unknown; eap2_ident = avp_c[1]; if (avp_c[4] == EAP_TYPE_GTC) { gtc_found = 1; free(gtc_prompt); gtc_prompt = strndup(avp_c + 5, avp_len - 5); } else if (avp_len >= 13 && load_be32(avp_c + 4) == EXPANDED_JUNIPER) { switch (load_be32(avp_c + 8)) { case 2: /* Expanded Juniper/2: password */ j2_found = 1; j2_code = avp_c[12]; if (j2_code == J2_PASSREQ || j2_code == J2_PASSRETRY || j2_code == J2_PASSCHANGE) { if (avp_len != 13) goto auth_unknown; /* Precisely one byte, which is j2_code. OK. */ } else if (j2_code == J2_PASSFAIL) { /* < 0000: 00 00 55 97 00 00 00 05 00 00 00 84 00 00 01 fa |..U.............| < 0010: 00 0a 4c 01 01 05 00 70 fe 00 0a 4c 00 00 00 01 |..L....p...L....| < 0020: 00 00 00 4f 40 00 00 62 01 02 00 5a fe 00 0a 4c |...O@..b...Z...L| < 0030: 00 00 00 02 c5 01 4d 43 6f 75 6c 64 20 6e 6f 74 |......MCould not| < 0040: 20 63 68 61 6e 67 65 20 70 61 73 73 77 6f 72 64 | change password| < 0050: 2e 20 4e 65 77 20 70 61 73 73 77 6f 72 64 20 6d |. New password m| < 0060: 75 73 74 20 62 65 20 61 74 20 6c 65 61 73 74 20 |ust be at least | < 0070: 34 20 63 68 61 72 61 63 74 65 72 73 20 6c 6f 6e |4 characters lon| < 0080: 67 2e 00 00 |g...| */ if (avp_len > 15 && avp_c[13] == 0x01 && avp_c[14] == avp_len - 13) { /* Failure message. */ vpn_progress(vpninfo, PRG_ERR, _("Authentication failure: %.*s\n"), avp_len - 15, avp_c + 15); ret = -EIO; goto out; } else goto auth_unknown; } break; case 3: /* TNCC */ vpn_progress(vpninfo, PRG_ERR, _("Pulse server requested Host Checker; not yet supported\n" "Try Juniper mode (--protocol=nc)\n")); goto bad_eap; default: goto auth_unknown; } } else { goto auth_unknown; } } else if (avp_flags & AVP_MANDATORY) goto auth_unknown; } /* We want it to be precisely one type of request, not a mixture. */ if (realm_entry + !!realms_found + j2_found + gtc_found + cookie_found + !!old_sessions != 1 && !signin_prompt) { auth_unknown: vpn_progress(vpninfo, PRG_ERR, _("Unhandled Pulse authentication packet, or authentication failure\n")); goto bad_eap; } /* Prepare next response packet */ buf_truncate(reqbuf); buf_append_ift_hdr(reqbuf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(reqbuf, JUNIPER_1); /* IF-T/TLS Auth Type */ eap_ofs = buf_append_eap_hdr(reqbuf, EAP_RESPONSE, eap_ident, EAP_TYPE_EXPANDED, 1); if (!cookie_found) { /* No user interaction when called from pulse_connect(). * We expect the cookie to work. */ if (connecting) { vpn_progress(vpninfo, PRG_ERR, _("Pulse authentication cookie not accepted\n")); ret = -EPERM; goto out; } if (realm_entry) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse realm entry\n")); ret = pulse_request_realm_entry(vpninfo, reqbuf); if (ret) goto out; } else if (realms_found) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse realm choice\n")); ret = pulse_request_realm_choice(vpninfo, reqbuf, realms_found, eap); if (ret) goto out; } else if (j2_found) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse password auth request, code 0x%02x\n"), j2_code); if (j2_code == J2_PASSCHANGE) { ret = pulse_request_pass_change(vpninfo, reqbuf, eap2_ident, prompt_flags); } else if (j2_code == J2_PASSREQ || j2_code == J2_PASSRETRY) { /* Present user/password form to user */ ret = pulse_request_user_auth(vpninfo, reqbuf, eap2_ident, prompt_flags, (prompt_flags & PROMPT_PRIMARY) ? user_prompt : user2_prompt, (prompt_flags & PROMPT_PRIMARY) ? pass_prompt : pass2_prompt); } else { vpn_progress(vpninfo, PRG_ERR, _("Pulse password request with unknown code 0x%02x. Please report.\n"), j2_code); ret = -EINVAL; } if (ret) goto out; } else if (gtc_found) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse password general token code request\n")); /* Present user/password form to user */ ret = pulse_request_gtc(vpninfo, reqbuf, eap2_ident, prompt_flags, (prompt_flags & PROMPT_PRIMARY) ? user_prompt : user2_prompt, (prompt_flags & PROMPT_PRIMARY) ? pass_prompt : pass2_prompt, gtc_prompt); if (ret) goto out; } else if (old_sessions) { vpn_progress(vpninfo, PRG_TRACE, _("Pulse session limit, %d sessions\n"), old_sessions); ret = pulse_request_session_kill(vpninfo, reqbuf, old_sessions, eap); if (ret) goto out; } else if (signin_prompt) { buf_append_avp_be32(reqbuf, 0xd7c, 1); } else { vpn_progress(vpninfo, PRG_ERR, _("Unhandled Pulse auth request\n")); goto bad_eap; } /* If we get here, something has filled in the next response */ buf_fill_eap_len(reqbuf, eap_ofs); ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; goto auth_response; } /* We're done, but need to send an empty response to the above information * in order that the EAP session can complete with 'success'. Not quite * sure why they didn't send it as payload on the success frame, mind you. */ buf_fill_eap_len(reqbuf, eap_ofs); ret = send_eap_packet(vpninfo, ttls, reqbuf); if (ret) goto out; if (ttls) { /* Normally we don't actually send the EAP-TTLS frame until * we're waiting for a response, which allows us to coalesce. * This time, we need to flush the outbound frames. The empty * EAP response (within EAP-TTLS) causes the server to close * the EAP-TTLS session and the next response is plain IF-T/TLS * IFT_CLIENT_AUTH_SUCCESS just like the non-certificate mode. */ pulse_eap_ttls_recv(vpninfo, NULL, 0); } ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) goto out; if (!valid_ift_success(bytes, ret)) { vpn_progress(vpninfo, PRG_ERR, _("Unexpected response instead of IF-T/TLS auth success:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, ret); ret = -EINVAL; goto out; } ret = 0; out: if (ret) openconnect_close_https(vpninfo, 0); buf_free(reqbuf); if (ttls) destroy_eap_ttls(vpninfo, ttls); buf_free(vpninfo->ttls_pushbuf); vpninfo->ttls_pushbuf = NULL; free(vpninfo->ttls_recvbuf); vpninfo->ttls_recvbuf = NULL; free(user_prompt); free(pass_prompt); free(user2_prompt); free(pass2_prompt); free(gtc_prompt); free(signin_prompt); return ret; } static void buf_append_ttls_headers(struct openconnect_info *vpninfo, struct oc_text_buf *buf, uint8_t flags) { buf_append_ift_hdr(buf, VENDOR_TCG, IFT_CLIENT_AUTH_RESPONSE); buf_append_be32(buf, JUNIPER_1); /* IF-T/TLS Auth Type */ buf_append_eap_hdr(buf, EAP_RESPONSE, 0 /*vpninfo->ttls_eap_ident*/, EAP_TYPE_TTLS, 0); /* Flags byte for EAP-TTLS */ buf_append_bytes(buf, &flags, 1); } int pulse_eap_ttls_send(struct openconnect_info *vpninfo, const void *data, int len) { struct oc_text_buf *buf = vpninfo->ttls_pushbuf; if (!buf) { buf = vpninfo->ttls_pushbuf = buf_alloc(); if (!buf) return -ENOMEM; } /* We concatenate sent data into a single EAP-TTLS frame which is * sent just before we actually need to read something. */ if (!buf->pos) buf_append_ttls_headers(vpninfo, buf, 0); buf_append_bytes(buf, data, len); return len; } int pulse_eap_ttls_recv(struct openconnect_info *vpninfo, void *data, int len) { struct oc_text_buf *pushbuf; int ret; if (!len && (vpninfo->ttls_recvlen || vpninfo->ttls_msgleft)) { vpn_progress(vpninfo, PRG_ERR, _("EAP-TTLS failure: Flushing output with pending input bytes\n")); return -EIO; } if (!vpninfo->ttls_recvlen) { uint8_t flags; if (vpninfo->ttls_msgleft) { /* Fragments left to receive of current message. * Send an Acknowledge frame */ pushbuf = buf_alloc(); buf_append_ttls_headers(vpninfo, pushbuf, 0); } else { /* Send the pending outbound bytes as a single message */ pushbuf = vpninfo->ttls_pushbuf; vpninfo->ttls_pushbuf = NULL; } if (buf_error(pushbuf)) return buf_free(pushbuf); /* This can never happen. We *always* put the header in. */ if (pushbuf->pos < 0x1a) { vpn_progress(vpninfo, PRG_ERR, _("Error creating EAP-TTLS buffer\n")); buf_free(pushbuf); return -EIO; } /* Handle outbound fragmentation if necessary */ if (pushbuf->pos > TTLS_MAXFRAG + 0x1a) { struct oc_text_buf *frag = buf_alloc(); uint8_t flags = TTLS_MOREFRAGS | TTLS_LENGTH; uint32_t remaining; char *msg; if (buf_error(frag)) { buf_free(pushbuf); return buf_free(frag); } remaining = pushbuf->pos - 0x1a; msg = pushbuf->data + 0x1a; do { buf_append_ttls_headers(vpninfo, frag, flags); if (flags & TTLS_LENGTH) { buf_append_be32(frag, remaining); flags &= ~TTLS_LENGTH; } buf_append_bytes(frag, msg, TTLS_MAXFRAG); msg += TTLS_MAXFRAG; remaining -= TTLS_MAXFRAG; if (buf_error(frag)) { buf_free(pushbuf); return buf_free(frag); } frag->data[0x15] = vpninfo->ttls_eap_ident; buf_fill_eap_len(frag, 0x14); ret = send_ift_packet(vpninfo, frag); if (ret) { buf_free(pushbuf); buf_free(frag); return ret; } buf_truncate(frag); ret = vpninfo->ssl_read(vpninfo, (void *)vpninfo->ttls_recvbuf, TLS_RECORD_MAX); if (ret < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to read EAP-TTLS Acknowledge: %s\n"), strerror(-ret)); buf_free(pushbuf); buf_free(frag); return ret; } if (ret > 0 && vpninfo->dump_http_traffic) { vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of IF-T/TLS EAP-TTLS record\n"), ret); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)vpninfo->ttls_recvbuf, ret); } if (!valid_ift_auth_eap(vpninfo->ttls_recvbuf, ret) || ret != 0x1a || vpninfo->ttls_recvbuf[0x18] != EAP_TYPE_TTLS || vpninfo->ttls_recvbuf[0x19] != 0) { vpn_progress(vpninfo, PRG_ERR, _("Bad EAP-TTLS Acknowledge packet\n")); buf_free(pushbuf); buf_free(frag); return -EIO; } vpninfo->ttls_eap_ident = vpninfo->ttls_recvbuf[0x15]; } while (remaining > TTLS_MAXFRAG); buf_free(frag); memmove(pushbuf->data + 0x1a, msg, remaining); pushbuf->pos = remaining + 0x1a; } /* Fill in the EAP header ident and length */ pushbuf->data[0x15] = vpninfo->ttls_eap_ident; buf_fill_eap_len(pushbuf, 0x14); ret = send_ift_packet(vpninfo, pushbuf); buf_free(pushbuf); if (ret) return ret; /* If called just to flush outbound, return now. */ if (!len) return 0; vpninfo->ttls_recvlen = vpninfo->ssl_read(vpninfo, (void *)vpninfo->ttls_recvbuf, TLS_RECORD_MAX); if (vpninfo->ttls_recvlen > 0 && vpninfo->dump_http_traffic) { vpn_progress(vpninfo, PRG_TRACE, _("Read %d bytes of IF-T/TLS EAP-TTLS record\n"), vpninfo->ttls_recvlen); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)vpninfo->ttls_recvbuf, vpninfo->ttls_recvlen); } if (!valid_ift_auth_eap(vpninfo->ttls_recvbuf, vpninfo->ttls_recvlen) || vpninfo->ttls_recvlen < 0x1a || vpninfo->ttls_recvbuf[0x18] != EAP_TYPE_TTLS) { bad_pkt: vpn_progress(vpninfo, PRG_ERR, _("Bad EAP-TTLS packet (len %d, left %d)\n"), vpninfo->ttls_recvlen, vpninfo->ttls_msgleft); return -EIO; } vpninfo->ttls_eap_ident = vpninfo->ttls_recvbuf[0x15]; flags = vpninfo->ttls_recvbuf[0x19]; /* Start, Reserved bits and version (we only support version zero) */ if (flags & 0x3f) goto bad_pkt; if (vpninfo->ttls_msgleft) { /* Second and subsequent fragments MUST NOT have L bit set */ if (flags & TTLS_LENGTH) goto bad_pkt; /* The header doesn't contain a length word. Just IF-T/TLS, EAP, TTLS */ vpninfo->ttls_recvpos = 0x1a; vpninfo->ttls_recvlen -= 0x1a; if (flags & TTLS_MOREFRAGS) { /* If the More Fragments bit is set, this packet * must contain fewer bytes than are left. */ if (vpninfo->ttls_recvlen >= vpninfo->ttls_msgleft) goto bad_pkt; } else { /* If the More Fragments bit is set, this packet must contain precisely the number of bytes left. */ if (vpninfo->ttls_recvlen != vpninfo->ttls_msgleft) goto bad_pkt; } vpninfo->ttls_msgleft -= vpninfo->ttls_recvlen; } else if (flags & TTLS_MOREFRAGS) { /* First fragment MUST have Length */ if (!(flags & TTLS_LENGTH) || vpninfo->ttls_recvlen < 0x1e) goto bad_pkt; vpninfo->ttls_recvpos = 0x1e; vpninfo->ttls_recvlen -= 0x1e; vpninfo->ttls_msgleft = load_be32(vpninfo->ttls_recvbuf + 0x1a); if (vpninfo->ttls_msgleft <= vpninfo->ttls_recvlen || !vpninfo->ttls_recvlen) goto bad_pkt; vpninfo->ttls_msgleft -= vpninfo->ttls_recvlen; } else { /* Unfragmented message */ if (flags & TTLS_LENGTH) { /* Length bit. */ if (vpninfo->ttls_recvlen < 0x1e || load_be32(vpninfo->ttls_recvbuf + 0x1a) != vpninfo->ttls_recvlen - 0x1e) goto bad_pkt; vpninfo->ttls_recvpos = 0x1e; vpninfo->ttls_recvlen -= 0x1e; } else { vpninfo->ttls_recvpos = 0x1a; vpninfo->ttls_recvlen -= 0x1a; } vpninfo->ttls_msgleft = 0; if (!vpninfo->ttls_recvlen) goto bad_pkt; } } if (len > vpninfo->ttls_recvlen) { memcpy(data, vpninfo->ttls_recvbuf + vpninfo->ttls_recvpos, vpninfo->ttls_recvlen); len = vpninfo->ttls_recvlen; vpninfo->ttls_recvlen = 0; return len; } memcpy(data, vpninfo->ttls_recvbuf + vpninfo->ttls_recvpos, len); vpninfo->ttls_recvpos += len; vpninfo->ttls_recvlen -= len; return len; } int pulse_obtain_cookie(struct openconnect_info *vpninfo) { return pulse_authenticate(vpninfo, 0); } /* Handler for config attributes, see handle_main_config_packet */ static int handle_attr_elements(struct openconnect_info *vpninfo, unsigned char *bytes, int len, struct oc_vpn_option **new_opts, struct oc_ip_info *new_ip_info) { unsigned char *p = bytes; int l = len; /* No idea what this is */ if (l < 8 || load_be32(p + 4) != 0x03000000) return -EINVAL; p += 8; l -= 8; while (l) { if (l < 4) return -EINVAL; uint16_t type = load_be16(p); uint16_t attrlen = load_be16(p+2); if (attrlen + 4 > l) return -EINVAL; p += 4; l -= 4; process_attr(vpninfo, new_opts, new_ip_info, type, p, attrlen); p += attrlen; l -= attrlen; } return 0; } /* Example config packet: < 0000: 00 00 0a 4c 00 00 00 01 00 00 01 80 00 00 01 fb |...L............| < 0010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| < 0020: 2c 20 f0 00 00 00 00 00 00 00 01 70 2e 00 00 78 |, .........p...x| < 0030: 07 00 00 00 07 00 00 10 00 00 ff ff 05 05 00 00 |................| < 0040: 05 05 ff ff 07 00 00 10 00 00 ff ff 07 00 00 00 |................| < 0050: 07 00 00 ff 07 00 00 10 00 00 ff ff 08 08 08 08 |................| < 0060: 08 08 08 08 f1 00 00 10 00 00 ff ff 06 06 06 06 |................| < 0070: 06 06 06 07 f1 00 00 10 00 00 ff ff 09 09 09 09 |................| < 0080: 09 09 09 09 f1 00 00 10 00 00 ff ff 0a 0a 0a 0a |................| < 0090: 0a 0a 0a 0a f1 00 00 10 00 00 ff ff 0b 0b 0b 0b |................| < 00a0: 0b 0b 0b 0b 00 00 00 dc 03 00 00 00 40 00 00 01 |............@...| < 00b0: 00 40 01 00 01 00 40 1f 00 01 00 40 20 00 01 00 |.@....@....@ ...| < 00c0: 40 21 00 01 00 40 05 00 04 00 00 05 78 00 03 00 |@!...@......x...| < 00d0: 04 08 08 08 08 00 03 00 04 08 08 04 04 40 06 00 |.............@..| < 00e0: 0c 70 73 65 63 75 72 65 2e 6e 65 74 00 40 07 00 |.psecure.net.@..| < 00f0: 04 00 00 00 00 00 04 00 04 01 01 01 01 40 19 00 |.............@..| < 0100: 01 01 40 1a 00 01 00 40 0f 00 02 00 00 40 10 00 |..@....@.....@..| < 0110: 02 00 05 40 11 00 02 00 02 40 12 00 04 00 00 04 |...@.....@......| < 0120: b0 40 13 00 04 00 00 00 00 40 14 00 04 00 00 00 |.@.......@......| < 0130: 01 40 15 00 04 00 00 00 00 40 16 00 02 11 94 40 |.@.......@.....@| < 0140: 17 00 04 00 00 00 0f 40 18 00 04 00 00 00 3c 00 |.......@......<.| < 0150: 01 00 04 0a 14 03 01 00 02 00 04 ff ff ff ff 40 |...............@| < 0160: 0b 00 04 0a c8 c8 c8 40 0c 00 01 00 40 0d 00 01 |.......@....@...| < 0170: 00 40 0e 00 01 00 40 1b 00 01 00 40 1c 00 01 00 |.@....@....@....| It starts as an IF-T/TLS packet of type Juniper/1. Lots of zeroes at the start, and at 0x20 there is a distinctive 0x2c20f000 signature which appears to be in all config packets. At 0x28 it has the payload length (0x10 less than the full IF-T length). 0x2c is the start of the routing information. The 0x2e byte always seems to be there, and in this example 0x78 is the length of the routing information block. The number of entries is in byte 0x30. In the absence of IPv6 perhaps, the length at 0x2c seems always to be the number of entries (in 0x30) * 0x10 + 8. Routing entries are 0x10 bytes each, starting at 0x34. The ones starting with 0x07 are include, with 0xf1 are exclude. No idea what the following 7 bytes 0f 00 00 10 00 00 ff ff mean; perhaps the 0010 is a length? The IP address range is in bytes 8-11 (starting address) and the highest address of the range (traditionally a broadcast address) is in bytes 12-15. After the routing inforamation (in this example at 0xa4) comes another length field, this time for the information elements which comprise the rest of the packet. Not sure what the 03 00 00 00 at 0xa8 means; it *could* be an element type 0x3000 with payload length zero but if it is, we don't know what it means. Following that, the elements all have two bytes of type followed by two bytes length, then their payload. There follows an attempt to parse the packet based on the above understanding. Having more examples, especially with IPv6 split includes and excludes, would be useful... */ static int handle_main_config_packet(struct openconnect_info *vpninfo, unsigned char *bytes, int len) { int routes_len = 0; int l; unsigned char *p; int offset = 0x2c; struct oc_vpn_option *new_opts = NULL; struct oc_ip_info new_ip_info = {}; if (len < 0x31) { bad_config: vpn_progress(vpninfo, PRG_ERR, _("Unexpected Pulse config packet:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)bytes, len); free_optlist(new_opts); free_split_routes(&new_ip_info); return -EINVAL; } /* On Pulse 9.1R14, we see packet type 0x2e20f0000, whereas earlier * versions had 0x2c20f0000. * With the newer packet type, we seem to have a leading set of * attribute elements. Example: * 2c 00 (fixed) * 00 0d (length 13) * 03 00 00 00 (fixed) * 40 25 00 01 01 (unknown attr 0x4025, length 1, value 0x01) */ if (bytes[0x20] == 0x2e) { /* Length of attributes section */ int attr_len = load_be16(bytes + 0x2e); /* Start of attributes */ if (load_be16(bytes + 0x2c) != 0x2c00 || len < 0x2c + attr_len + 4 || /* Process the attributes */ handle_attr_elements(vpninfo, bytes + 0x2c, attr_len, &new_opts, &new_ip_info) < 0) { goto bad_config; } offset += attr_len; } /* First part of header, similar to ESP, has already been checked */ if (len < offset + 5 || /* Start of routing information */ load_be16(bytes + offset) != 0x2e00 || /* Routing length at offset+2 makes sense */ (routes_len = load_be16(bytes + offset + 2)) != ((int)bytes[offset + 4] * 0x10 + 8) || /* Make sure the next length field (at 0xa4 in the above example) is present */ len < offset + routes_len + 4 || /* Another length field, must match to end of packet */ load_be32(bytes + offset + routes_len) + routes_len + offset != len) { } p = bytes + offset + 8; routes_len -= 8; /* The header including length and number of routes */ /* We know it's a multiple of 0x10 now. We checked. */ while (routes_len) { char buf[80]; /* Probably not a whole be32 but let's see if anything ever changes */ uint32_t type = load_be32(p); uint32_t ffff = load_be32(p+4); if (ffff != 0xffff) goto bad_config; /* Convert the range end into a netmask by xor. Mask out the * bits in the network address, leaving only the low bits set, * then invert what's left so that only the high bits are set * as in a normal netmask. * * e.g. * 10.0.0.0-10.0.63.255 becomes 0.0.63.255 becomes 255.255.192.0 */ snprintf(buf, sizeof(buf), "%d.%d.%d.%d/%d.%d.%d.%d", p[8], p[9], p[10], p[11], 255 ^ (p[8] ^ p[12]), 255 ^ (p[9] ^ p[13]), 255 ^ (p[10] ^ p[14]), 255 ^ (p[11] ^ p[15])); if (type == 0x07000010) { struct oc_split_include *inc; vpn_progress(vpninfo, PRG_DEBUG, _("Received split include route %s\n"), buf); inc = malloc(sizeof(*inc)); if (inc) { inc->route = add_option_dup(&new_opts, "split-include", buf, -1); if (inc->route) { inc->next = new_ip_info.split_includes; new_ip_info.split_includes = inc; } else free(inc); } } else if (type == 0xf1000010) { struct oc_split_include *exc; vpn_progress(vpninfo, PRG_DEBUG, _("Received split exclude route %s\n"), buf); exc = malloc(sizeof(*exc)); if (exc) { exc->route = add_option_dup(&new_opts, "split-exclude", buf, -1); if (exc->route) { exc->next = new_ip_info.split_excludes; new_ip_info.split_excludes = exc; } else free(exc); } } else { vpn_progress(vpninfo, PRG_ERR, _("Receive route of unknown type 0x%08x\n"), type); goto bad_config; } p += 0x10; routes_len -= 0x10; } /* p now points at the length field of the final elements, which was already checked. */ l = load_be32(p); if (handle_attr_elements(vpninfo, p, l, &new_opts, &new_ip_info) < 0) goto bad_config; int ret = install_vpn_opts(vpninfo, new_opts, &new_ip_info); if (ret) { free_optlist(new_opts); free_split_routes(&new_ip_info); } return ret; } /* Example ESP config packet: < 0000: 00 00 0a 4c 00 00 00 01 00 00 00 80 00 00 01 fc |...L............| < 0010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| < 0020: 21 20 24 00 00 00 00 00 00 00 00 70 00 00 00 54 |! $........p...T| < 0030: 01 00 00 00 ec 52 1b 6c 00 40 11 9d c5 f6 85 f3 |.....R.l.@......| < 0040: 26 7d 70 75 44 45 63 eb 64 00 fb ba 89 4f 24 b2 |&}puDEc.d....O$.| < 0050: 81 42 ce 24 b8 0a f8 b6 71 39 78 f8 5e 6f 5f d6 |.B.$....q9x.^o_.| < 0060: 9e 5c 06 47 8d 1e f3 0e 5a 51 ae b2 3d 09 8d 27 |.\.G....ZQ..=..'| < 0070: e0 50 76 6a 22 9a d1 20 86 78 00 00 00 00 00 00 |.Pvj".. .x......| First 0x2c bytes are like the main config packet header. At 0x2c there is another length field, covering the whole of the rest of this packet. Then an unknown 0x01000000 at 0x30, followed by the server->client SPI in little-endian(!) form at 0x34. Then follows the secrets, with a 2-byte length field at 0x38 (which is always 0x40), followed by the secrets themselves. As with Juniper Network Connect, the HMAC secret immediately follows the encryption key, however large the latter is. */ static int handle_esp_config_packet(struct openconnect_info *vpninfo, unsigned char *bytes, int len) { #ifdef HAVE_ESP struct esp *esp; int secretslen; uint32_t spi; int ret; if (len < 0x6a || load_be32(bytes + 0x2c) != len - 0x2c || load_be32(bytes + 0x30) != 0x01000000 || load_be16(bytes + 0x38) != 0x40) { vpn_progress(vpninfo, PRG_ERR, _("Invalid ESP config packet:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, len); return -EINVAL; } /* We insist on this being 0x40 for now. But just in case it later changes... */ secretslen = load_be16(bytes + 0x38); vpn_progress(vpninfo, PRG_DEBUG, _("%d bytes of ESP secrets\n"), secretslen); if (!vpninfo->enc_key_len || !vpninfo->hmac_key_len || vpninfo->enc_key_len + vpninfo->hmac_key_len > secretslen) { vpn_progress(vpninfo, PRG_ERR, _("Invalid ESP setup\n")); return -EINVAL; } /* Yes, bizarrely this is little-endian on the wire. I have no idea * what made them do this. */ spi = load_le32(bytes + 0x34); vpn_progress(vpninfo, PRG_DEBUG, _("ESP SPI (outbound): %x\n"), spi); /* But we store it internally as big-endian because we never do any * calculations on it; it's only set into outbound packets and matched * on incoming ones... and we've NEVER had to see it in little-endian * form ever before because that's insane! */ store_be32(&vpninfo->esp_out.spi, spi); memcpy(vpninfo->esp_out.enc_key, bytes + 0x3a, vpninfo->enc_key_len); memcpy(vpninfo->esp_out.hmac_key, bytes + 0x3a + vpninfo->enc_key_len, vpninfo->hmac_key_len); ret = openconnect_setup_esp_keys(vpninfo, 1); if (ret) return ret; esp = &vpninfo->esp_in[vpninfo->current_esp_in]; /* Now, using the buffer in which we received the original packet (which * we trust our caller made large enough), create an appropriate reply. * A reply packet contains two sets of ESP information, as we are expected * to send our own followed by a copy of what the server sent to us. */ /* Adjust the length in the IF-T/TLS header */ store_be32(bytes + 8, 0x40 + 2 * secretslen); /* Copy the server's own ESP information into place */ memmove(bytes + secretslen + 0x3a, bytes + 0x34, secretslen + 0x06); /* Adjust other length fields. */ store_be32(bytes + 0x28, 0x30 + 2 * secretslen); store_be32(bytes + 0x2c, 0x14 + 2 * secretslen); /* Store the SPI. Bizarrely little-endian again. */ store_le32(bytes + 0x34, load_be32(&esp->spi)); memcpy(bytes + 0x3a, esp->enc_key, vpninfo->enc_key_len); memcpy(bytes + 0x3a + vpninfo->enc_key_len, esp->hmac_key, vpninfo->hmac_key_len); memset(bytes + 0x3a + vpninfo->enc_key_len + vpninfo->hmac_key_len, 0, 0x40 - vpninfo->enc_key_len - vpninfo->hmac_key_len); return 0; #else return -EINVAL; #endif } int pulse_connect(struct openconnect_info *vpninfo) { struct oc_text_buf *reqbuf; unsigned char bytes[TLS_RECORD_MAX]; int ret; /* If we already have a channel open, it's because we have just * successfully authenticated on it from pulse_obtain_cookie(). */ if (vpninfo->ssl_fd == -1) { ret = pulse_authenticate(vpninfo, 1); if (ret) return ret; } while (1) { uint32_t pkt_type; ret = recv_ift_packet(vpninfo, (void *)bytes, sizeof(bytes)); if (ret < 0) return ret; if (ret < 16 || load_be32(bytes + 8) != ret) { vpn_progress(vpninfo, PRG_ERR, _("Bad IF-T/TLS packet when expecting configuration:\n")); dump_buf_hex(vpninfo, PRG_ERR, '<', bytes, ret); return -EINVAL; } if (load_be32(bytes) != VENDOR_JUNIPER) { bad_pkt: vpn_progress(vpninfo, PRG_INFO, _("Unexpected IF-T/TLS packet when expecting configuration.\n")); dump_buf_hex(vpninfo, PRG_DEBUG, '<', bytes, ret); continue; } pkt_type = load_be32(bytes + 4); /* End of configuration? Seems to have a 4-byte payload of zeroes. */ if (pkt_type == 0x8f) break; /* The main and ESP config packets both start like this. The word at * 0x20 is 0x2c20f000 for config and 0x0x21202400 for ESP, and the word * at 0x2c is the length of the payload (0x10 less than the overall * length including (and in) the IF-T/TLS header. e.g 0x170 here: * * < 0000: 00 00 0a 4c 00 00 00 01 00 00 01 80 00 00 01 fb |...L............| * < 0010: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 |................| * < 0020: 2c 20 f0 00 00 00 00 00 00 00 01 70 ... |, .........| */ if (pkt_type != 1 || ret < 0x2c || load_be32(bytes + 0x10) || load_be32(bytes + 0x14) || load_be32(bytes + 0x18) || load_be32(bytes + 0x1c) || load_be32(bytes + 0x24) || load_be32(bytes + 0x28) != ret - 0x10) goto bad_pkt; switch(load_be32(bytes + 0x20)) { case 0x2c20f000: case 0x2e20f000: /* Variant seen on Pulse 9.1R14 */ ret = handle_main_config_packet(vpninfo, bytes, ret); if (ret) return ret; break; case 0x21202400: ret = handle_esp_config_packet(vpninfo, bytes, ret); if (ret) { vpninfo->dtls_state = DTLS_DISABLED; continue; } /* It has created a response packet to send. */ ret = send_ift_bytes(vpninfo, bytes, load_be32(bytes + 8)); if (ret) return ret; /* Tell server to enable ESP handling */ reqbuf = buf_alloc(); buf_append_ift_hdr(reqbuf, VENDOR_JUNIPER, 5); buf_append(reqbuf, "ncmo=1\n%c", 0); ret = send_ift_packet(vpninfo, reqbuf); buf_free(reqbuf); if (ret) return ret; break; default: goto bad_pkt; } } if (!vpninfo->ip_info.mtu || (!vpninfo->ip_info.addr && !vpninfo->ip_info.addr6)) { vpn_progress(vpninfo, PRG_ERR, _("Insufficient configuration found\n")); return -EINVAL; } /* This should never happen, but be defensive and shut Coverity up */ if (vpninfo->ssl_fd == -1) return -EIO; ret = 0; monitor_fd_new(vpninfo, ssl); monitor_read_fd(vpninfo, ssl); monitor_except_fd(vpninfo, ssl); free_pkt(vpninfo, vpninfo->cstp_pkt); vpninfo->cstp_pkt = NULL; return ret; } int pulse_mainloop(struct openconnect_info *vpninfo, int *timeout, int readable) { int ret; int work_done = 0; if (vpninfo->ssl_fd == -1) goto do_reconnect; /* FIXME: The poll() handling here is fairly simplistic. Actually, if the SSL connection stalls it could return a WANT_WRITE error on _either_ of the SSL_read() or SSL_write() calls. In that case, we should probably remove POLLIN from the events we're looking for, and add POLLOUT. As it is, though, it'll just chew CPU time in that fairly unlikely situation, until the write backlog clears. */ while (readable) { /* Some servers send us packets that are larger than negotiated MTU. We reserve some extra space to handle that */ int receive_mtu = MAX(16384, vpninfo->deflate_pkt_size ? : vpninfo->ip_info.mtu); struct pkt *pkt = vpninfo->cstp_pkt; int len, payload_len; if (!pkt) { pkt = vpninfo->cstp_pkt = alloc_pkt(vpninfo, receive_mtu); if (!pkt) { vpn_progress(vpninfo, PRG_ERR, _("Allocation failed\n")); break; } } /* Receive packet header, if there's anything there... */ len = ssl_nonblock_read(vpninfo, 0, &pkt->pulse.vendor, 16); if (!len) break; if (len < 0) goto do_reconnect; if (len < 16) { vpn_progress(vpninfo, PRG_ERR, _("Short packet received (%d bytes)\n"), len); vpninfo->quit_reason = "Short packet received"; return 1; } /* Packets shouldn't cross SSL record boundaries (we hope!), so if there * was a header there, then rest of that packet should be there too. */ if (load_be32(&pkt->pulse.len) > receive_mtu + 0x10) { /* This doesn't look right. Pull the rest of the SSL record * and complain about it (which we will, since the length * won't match the header */ len = receive_mtu; } else len = load_be32(&pkt->pulse.len) - 0x10; payload_len = ssl_nonblock_read(vpninfo, 0, &pkt->data, len); if (payload_len != load_be32(&pkt->pulse.len) - 0x10) { if (payload_len < 0) len = 0x10; else len = payload_len + 0x10; goto unknown_pkt; } if (load_be32(&pkt->pulse.vendor) != VENDOR_JUNIPER) goto unknown_pkt; vpninfo->ssl_times.last_rx = time(NULL); len = payload_len + 0x10; switch(load_be32(&pkt->pulse.type)) { case 4: vpn_progress(vpninfo, PRG_TRACE, _("Received data packet of %d bytes\n"), payload_len); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)&vpninfo->cstp_pkt->pulse.vendor, len); vpninfo->cstp_pkt->len = payload_len; queue_packet(&vpninfo->incoming_queue, pkt); vpninfo->cstp_pkt = pkt = NULL; work_done = 1; continue; case 1: if (payload_len < 0x6a || load_be32(pkt->data + 0x10) != 0x21202400 || load_be32(pkt->data + 0x18) != payload_len || load_be32(pkt->data + 0x1c) != payload_len - 0x1c || load_be32(pkt->data + 0x20) != 0x01000000 || load_be16(pkt->data + 0x28) != 0x40) goto unknown_pkt; dump_buf_hex(vpninfo, PRG_ERR, '<', (void *)&vpninfo->cstp_pkt->pulse.vendor, len); ret = handle_esp_config_packet(vpninfo, (void *)&pkt->pulse.vendor, len); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("ESP rekey failed\n")); vpninfo->proto->udp_close(vpninfo); continue; } vpninfo->cstp_pkt = NULL; pkt->len = load_be32(&pkt->pulse.len) - 16; queue_packet(&vpninfo->tcp_control_queue, pkt); print_esp_keys(vpninfo, _("new incoming"), &vpninfo->esp_in[vpninfo->current_esp_in]); print_esp_keys(vpninfo, _("new outgoing"), &vpninfo->esp_out); continue; case 0x93: { /* Expected contents are "errorType=%d errorString=%s\n". Known values: * 6: "agentd error" (another session started and kicked this one off) * 7: "session has been terminated" (by client) * 8: "session timed out" (idle timeout) */ if (payload_len < 12 || strncmp("errorType=", (const char *)pkt->data, 10)) goto unknown_pkt; pkt->data[payload_len - 1] = '\0'; /* overwrite final '\n' */ char *endp; unsigned long reason = strtol((const char *)pkt->data + 10, &endp, 10); if (strncmp(" errorString=", endp, 13)) goto unknown_pkt; urldecode_inplace(endp+1); vpn_progress(vpninfo, PRG_ERR, _("Pulse fatal error (reason: %ld): %s\n"), reason, endp+13); vpninfo->quit_reason = strdup(endp+13); return -EPIPE; } case 0x96: /* It sends the licence information once the connection is set up. For * now, abuse this to deal with the race condition in ESP setup — it looks * like the server doesn't process the ESP config until after we've sent * the probes, in some cases. */ if (vpninfo->dtls_state == DTLS_SLEEPING) vpninfo->proto->udp_send_probes(vpninfo); break; default: unknown_pkt: vpn_progress(vpninfo, PRG_ERR, _("Unknown Pulse packet\n")); dump_buf_hex(vpninfo, PRG_TRACE, '<', (void *)&vpninfo->cstp_pkt->pulse.vendor, len); continue; } } /* If SSL_write() fails we are expected to try again. With exactly the same data, at exactly the same location. So we keep the packet we had before.... */ if (vpninfo->current_ssl_pkt) { handle_outgoing: vpninfo->ssl_times.last_tx = time(NULL); unmonitor_write_fd(vpninfo, ssl); vpn_progress(vpninfo, PRG_TRACE, _("Packet outgoing:\n")); dump_buf_hex(vpninfo, PRG_TRACE, '>', (void *)&vpninfo->current_ssl_pkt->pulse.vendor, vpninfo->current_ssl_pkt->len + 16); ret = ssl_nonblock_write(vpninfo, 0, &vpninfo->current_ssl_pkt->pulse.vendor, vpninfo->current_ssl_pkt->len + 16); if (ret < 0) { do_reconnect: /* XXX: Do we have to do this or can we leave it open? * Perhaps we could even reconnect asynchronously while * the ESP is still running? */ #ifdef HAVE_ESP esp_shutdown(vpninfo); #endif ret = ssl_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "Pulse reconnect failed"; return ret; } vpninfo->dtls_need_reconnect = 1; return 1; } else if (!ret) { #if 0 /* Not for Pulse yet */ /* -EAGAIN: ssl_nonblock_write() will have added the SSL fd to ->select_wfds if appropriate, so we can just return and wait. Unless it's been stalled for so long that DPD kicks in and we kill the connection. */ switch (ka_stalled_action(&vpninfo->ssl_times, timeout)) { case KA_DPD_DEAD: goto peer_dead; case KA_REKEY: goto do_rekey; case KA_NONE: return work_done; default: /* This should never happen */ break; } #else return work_done; #endif } if (ret != vpninfo->current_ssl_pkt->len + 16) { vpn_progress(vpninfo, PRG_ERR, _("SSL wrote too few bytes! Asked for %d, sent %d\n"), vpninfo->current_ssl_pkt->len + 8, ret); vpninfo->quit_reason = "Internal error"; return 1; } /* Don't free the 'special' packets */ if (vpninfo->current_ssl_pkt == vpninfo->deflate_pkt) { free_pkt(vpninfo, vpninfo->pending_deflated_pkt); vpninfo->pending_deflated_pkt = NULL; } else free_pkt(vpninfo, vpninfo->current_ssl_pkt); vpninfo->current_ssl_pkt = NULL; } #if 0 /* Not understood for Pulse yet */ if (vpninfo->owe_ssl_dpd_response) { vpninfo->owe_ssl_dpd_response = 0; vpninfo->current_ssl_pkt = (struct pkt *)&dpd_resp_pkt; goto handle_outgoing; } switch (keepalive_action(&vpninfo->ssl_times, timeout)) { case KA_REKEY: do_rekey: /* Not that this will ever happen; we don't even process the setting when we're asked for it. */ vpn_progress(vpninfo, PRG_INFO, _("CSTP rekey due\n")); if (vpninfo->ssl_times.rekey_method == REKEY_TUNNEL) goto do_reconnect; else if (vpninfo->ssl_times.rekey_method == REKEY_SSL) { ret = cstp_handshake(vpninfo, 0); if (ret) { /* if we failed rehandshake try establishing a new-tunnel instead of failing */ vpn_progress(vpninfo, PRG_ERR, _("Rehandshake failed; attempting new-tunnel\n")); goto do_reconnect; } goto do_dtls_reconnect; } break; case KA_DPD_DEAD: peer_dead: vpn_progress(vpninfo, PRG_ERR, _("CSTP Dead Peer Detection detected dead peer!\n")); goto do_reconnect; do_reconnect: ret = cstp_reconnect(vpninfo); if (ret) { vpn_progress(vpninfo, PRG_ERR, _("Reconnect failed\n")); vpninfo->quit_reason = "CSTP reconnect failed"; return ret; } do_dtls_reconnect: /* succeeded, let's rekey DTLS, if it is not rekeying * itself. */ if (vpninfo->dtls_state > DTLS_SLEEPING && vpninfo->dtls_times.rekey_method == REKEY_NONE) { vpninfo->dtls_need_reconnect = 1; } return 1; case KA_DPD: vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP DPD\n")); vpninfo->current_ssl_pkt = (struct pkt *)&dpd_pkt; goto handle_outgoing; case KA_KEEPALIVE: /* No need to send an explicit keepalive if we have real data to send */ if (vpninfo->dtls_state != DTLS_ESTABLISHED && vpninfo->outgoing_queue.head) break; vpn_progress(vpninfo, PRG_DEBUG, _("Send CSTP Keepalive\n")); vpninfo->current_ssl_pkt = (struct pkt *)&keepalive_pkt; goto handle_outgoing; case KA_NONE: ; } #endif if (vpninfo->dtls_state == DTLS_CONNECTED) { /* We don't currently do anything to make the server start sending * data packets in ESP instead of over IF-T/TLS. Just go straight * to CONNECTED mode. */ vpninfo->dtls_state = DTLS_ESTABLISHED; work_done = 1; } vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->tcp_control_queue); if (vpninfo->current_ssl_pkt) { /* Anything on the control queue will have the rest of its header filled in already. */ store_be32(&vpninfo->current_ssl_pkt->pulse.ident, vpninfo->ift_seq++); goto handle_outgoing; } /* Service outgoing packet queue, if no DTLS */ while (vpninfo->dtls_state != DTLS_ESTABLISHED && (vpninfo->current_ssl_pkt = dequeue_packet(&vpninfo->outgoing_queue))) { struct pkt *this = vpninfo->current_ssl_pkt; store_be32(&this->pulse.vendor, VENDOR_JUNIPER); store_be32(&this->pulse.type, 4); store_be32(&this->pulse.len, this->len + 16); store_be32(&this->pulse.ident, vpninfo->ift_seq++); vpn_progress(vpninfo, PRG_TRACE, _("Sending IF-T/TLS data packet of %d bytes\n"), this->len); vpninfo->current_ssl_pkt = this; goto handle_outgoing; } /* Work is not done if we just got rid of packets off the queue */ return work_done; } int pulse_bye(struct openconnect_info *vpninfo, const char *reason) { int ret = -1; if (vpninfo->ssl_fd != -1) { struct oc_text_buf *buf = buf_alloc(); buf_append_ift_hdr(buf, VENDOR_JUNIPER, 0x89); if (!buf_error(buf)) ret = send_ift_packet(vpninfo, buf); buf_free(buf); openconnect_close_https(vpninfo, 0); } /* Try Juniper logout if tunnel was already closed */ if (ret < 0) ret = oncp_bye(vpninfo, reason); return ret; } openconnect-8.20/gnutls_tpm2_ibm.c0000644000076400007640000003766114204454673021027 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2018 David Woodhouse. * Copyright © 2017-2018 James Bottomley * * Authors: James Bottomley * David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include "gnutls.h" #include #include #include #define TSSINCLUDE(x) < HAVE_TSS2/x > #include TSSINCLUDE(tss.h) #include TSSINCLUDE(tssresponsecode.h) #include TSSINCLUDE(Unmarshal_fp.h) #include TSSINCLUDE(RSA_Decrypt_fp.h) #include TSSINCLUDE(Sign_fp.h) #define rc_is_key_auth_failed(rc) (((rc) & 0xff) == TPM_RC_BAD_AUTH) #define rc_is_parent_auth_failed(rc) (((rc) & 0xff) == TPM_RC_AUTH_FAIL) struct oc_tpm2_ctx { TPM2B_PUBLIC pub; TPM2B_PRIVATE priv; char *parent_pass, *key_pass; unsigned int need_userauth:1; unsigned int legacy_srk:1; unsigned int parent; }; static void tpm2_error(struct openconnect_info *vpninfo, TPM_RC rc, const char *reason) { const char *msg = NULL, *submsg = NULL, *num = NULL; TSS_ResponseCode_toString(&msg, &submsg, &num, rc); vpn_progress(vpninfo, PRG_ERR, _("TPM2 operation %s failed (%d): %s%s%s\n"), reason, rc, msg, submsg, num); } static TPM_RC tpm2_readpublic(struct openconnect_info *vpninfo, TSS_CONTEXT *tssContext, TPM_HANDLE handle, TPMT_PUBLIC *pub) { ReadPublic_In rin; ReadPublic_Out rout; TPM_RC rc; rin.objectHandle = handle; rc = TSS_Execute (tssContext, (RESPONSE_PARAMETERS *)&rout, (COMMAND_PARAMETERS *)&rin, NULL, TPM_CC_ReadPublic, TPM_RH_NULL, NULL, 0); if (rc) { tpm2_error(vpninfo, rc, "TPM2_ReadPublic"); return rc; } if (pub) *pub = rout.outPublic.publicArea; return rc; } static TPM_RC tpm2_get_session_handle(struct openconnect_info *vpninfo, TSS_CONTEXT *tssContext, TPM_HANDLE *handle, TPM_HANDLE bind, const char *auth, TPM_HANDLE salt_key) { TPM_RC rc; StartAuthSession_In in; StartAuthSession_Out out; StartAuthSession_Extra extra; memset(&in, 0, sizeof(in)); memset(&extra, 0 , sizeof(extra)); in.bind = bind; extra.bindPassword = auth; in.sessionType = TPM_SE_HMAC; in.authHash = TPM_ALG_SHA256; in.tpmKey = TPM_RH_NULL; in.symmetric.algorithm = TPM_ALG_AES; in.symmetric.keyBits.aes = 128; in.symmetric.mode.aes = TPM_ALG_CFB; if (salt_key) { /* For the TSS to use a key as salt, it must have * access to the public part. It does this by keeping * key files, but request the public part just to make * sure*/ tpm2_readpublic(vpninfo, tssContext, salt_key, NULL); /* don't care what rout returns, the purpose of the * operation was to get the public key parameters into * the tss so it can construct the salt */ in.tpmKey = salt_key; } rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, (EXTRA_PARAMETERS *)&extra, TPM_CC_StartAuthSession, TPM_RH_NULL, NULL, 0); if (rc) { tpm2_error(vpninfo, rc, "TPM2_StartAuthSession"); return rc; } *handle = out.sessionHandle; return TPM_RC_SUCCESS; } static void tpm2_flush_handle(TSS_CONTEXT *tssContext, TPM_HANDLE h) { FlushContext_In in; if (!h) return; in.flushHandle = h; TSS_Execute(tssContext, NULL, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_FlushContext, TPM_RH_NULL, NULL, 0); } #define parent_is_generated(parent) ((parent) >> HR_SHIFT == TPM_HT_PERMANENT) #define parent_is_persistent(parent) ((parent) >> HR_SHIFT == TPM_HT_PERSISTENT) static TPM_RC tpm2_load_srk(struct openconnect_info *vpninfo, TSS_CONTEXT *tssContext, TPM_HANDLE *h, const char *auth, TPM_HANDLE hierarchy, int legacy_srk) { TPM_RC rc; CreatePrimary_In in; CreatePrimary_Out out; TPM_HANDLE session; /* SPS owner */ in.primaryHandle = hierarchy; if (auth) { in.inSensitive.sensitive.userAuth.t.size = strlen(auth); memcpy(in.inSensitive.sensitive.userAuth.t.buffer, auth, strlen(auth)); } else { in.inSensitive.sensitive.userAuth.t.size = 0; } /* no sensitive date for storage keys */ in.inSensitive.sensitive.data.t.size = 0; /* no outside info */ in.outsideInfo.t.size = 0; /* no PCR state */ in.creationPCR.count = 0; /* public parameters for an RSA2048 key */ in.inPublic.publicArea.type = TPM_ALG_ECC; in.inPublic.publicArea.nameAlg = TPM_ALG_SHA256; in.inPublic.publicArea.objectAttributes.val = TPMA_OBJECT_NODA | TPMA_OBJECT_SENSITIVEDATAORIGIN | TPMA_OBJECT_USERWITHAUTH | TPMA_OBJECT_DECRYPT | TPMA_OBJECT_RESTRICTED; if (!legacy_srk) in.inPublic.publicArea.objectAttributes.val |= TPMA_OBJECT_FIXEDPARENT | TPMA_OBJECT_FIXEDTPM; in.inPublic.publicArea.parameters.eccDetail.symmetric.algorithm = TPM_ALG_AES; in.inPublic.publicArea.parameters.eccDetail.symmetric.keyBits.aes = 128; in.inPublic.publicArea.parameters.eccDetail.symmetric.mode.aes = TPM_ALG_CFB; in.inPublic.publicArea.parameters.eccDetail.scheme.scheme = TPM_ALG_NULL; in.inPublic.publicArea.parameters.eccDetail.curveID = TPM_ECC_NIST_P256; in.inPublic.publicArea.parameters.eccDetail.kdf.scheme = TPM_ALG_NULL; in.inPublic.publicArea.unique.ecc.x.t.size = 0; in.inPublic.publicArea.unique.ecc.y.t.size = 0; in.inPublic.publicArea.authPolicy.t.size = 0; /* use a bound session here because we have no known key objects * to encrypt a salt to */ rc = tpm2_get_session_handle(vpninfo, tssContext, &session, hierarchy, auth, 0); if (rc) return rc; rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_CreatePrimary, session, auth, TPMA_SESSION_DECRYPT, TPM_RH_NULL, NULL, 0); if (rc) { tpm2_error(vpninfo, rc, "TSS_CreatePrimary"); tpm2_flush_handle(tssContext, session); return rc; } *h = out.objectHandle; return 0; } static TPM_HANDLE tpm2_load_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, TSS_CONTEXT **tsscp) { TSS_CONTEXT *tssContext; Load_In in; Load_Out out; TPM_HANDLE key = 0; TPM_RC rc; TPM_HANDLE session; char *pass = certinfo->tpm2->parent_pass; int need_pw = 0; certinfo->tpm2->parent_pass = NULL; rc = TSS_Create(&tssContext); if (rc) { tpm2_error(vpninfo, rc, "TSS_Create"); return 0; } memset(&in, 0, sizeof(in)); memset(&out, 0, sizeof(out)); if (parent_is_persistent(certinfo->tpm2->parent)) { if (!pass) { TPMT_PUBLIC pub; rc = tpm2_readpublic(vpninfo, tssContext, certinfo->tpm2->parent, &pub); if (rc) goto out; if (!(pub.objectAttributes.val & TPMA_OBJECT_NODA)) need_pw = 1; } in.parentHandle = certinfo->tpm2->parent; } else { reauth_srk: rc = tpm2_load_srk(vpninfo, tssContext, &in.parentHandle, pass, certinfo->tpm2->parent, certinfo->tpm2->legacy_srk); if (rc_is_key_auth_failed(rc)) { free_pass(&pass); if (!request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_tpm2_hierarchy", "openconnect_secondary_tpm2_hierarchy"), &pass, _("Enter TPM2 %s hierarchy password:"), "owner")) { goto reauth_srk; } } if (rc) goto out; } rc = tpm2_get_session_handle(vpninfo, tssContext, &session, 0, NULL, in.parentHandle); if (rc) goto out_flush_srk; memcpy(&in.inPublic, &certinfo->tpm2->pub, sizeof(in.inPublic)); memcpy(&in.inPrivate, &certinfo->tpm2->priv, sizeof(in.inPrivate)); if (need_pw && !pass) { reauth_parent: if (request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_tpm2_parent", "openconnect_secondary_tpm2_parent"), &pass, certinfo_string(certinfo, _("Enter TPM2 parent key password:"), _("Enter secondary TPM2 parent key password:")))) { tpm2_flush_handle(tssContext, session); goto out_flush_srk; } } rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_Load, session, pass, 0, TPM_RH_NULL, NULL, 0); if (rc_is_parent_auth_failed(rc)) { free_pass(&pass); goto reauth_parent; } if (rc) { tpm2_error(vpninfo, rc, "TPM2_Load"); tpm2_flush_handle(tssContext, session); } else key = out.objectHandle; out_flush_srk: if (parent_is_generated(certinfo->tpm2->parent)) tpm2_flush_handle(tssContext, in.parentHandle); out: certinfo->tpm2->parent_pass = pass; if (!key) TSS_Delete(tssContext); else *tsscp = tssContext; return key; } static void tpm2_unload_key(TSS_CONTEXT *tssContext, TPM_HANDLE key) { tpm2_flush_handle(tssContext, key); TSS_Delete(tssContext); } int tpm2_rsa_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_certinfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; TSS_CONTEXT *tssContext = NULL; RSA_Decrypt_In in; RSA_Decrypt_Out out; int ret = GNUTLS_E_PK_SIGN_FAILED; TPM_HANDLE authHandle; TPM_RC rc; char *pass = certinfo->tpm2->key_pass; certinfo->tpm2->key_pass = NULL; memset(&in, 0, sizeof(in)); in.cipherText.t.size = certinfo->tpm2->pub.publicArea.unique.rsa.t.size; if (oc_pad_rsasig(vpninfo, algo, in.cipherText.t.buffer, in.cipherText.t.size, data, certinfo->tpm2->pub.publicArea.parameters.rsaDetail.keyBits)) return GNUTLS_E_PK_SIGN_FAILED; in.inScheme.scheme = TPM_ALG_NULL; in.keyHandle = tpm2_load_key(vpninfo, certinfo, &tssContext); in.label.t.size = 0; if (!in.keyHandle) return GNUTLS_E_PK_SIGN_FAILED; rc = tpm2_get_session_handle(vpninfo, tssContext, &authHandle, 0, NULL, 0); if (rc) goto out; reauth: rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_RSA_Decrypt, authHandle, pass, TPMA_SESSION_DECRYPT, TPM_RH_NULL, NULL, 0); if (rc_is_key_auth_failed(rc)) { free_pass(&pass); if (!request_passphrase(vpninfo, certinfo_string(certinfo, "openconnect_tpm2_key", "openconnect_secondary_tpm2_key"), &pass, certinfo_string(certinfo, _("Enter TPM2 key password:"), _("Enter secondary TPM2 key password:")))) goto reauth; } if (rc) { tpm2_error(vpninfo, rc, "TPM2_RSA_Decrypt"); /* failure means auth handle is not flushed */ tpm2_flush_handle(tssContext, authHandle); goto out; } certinfo->tpm2->key_pass = pass; sig->data = malloc(out.message.t.size); if (!sig->data) goto out; sig->size = out.message.t.size; memcpy(sig->data, out.message.t.buffer, out.message.t.size); ret = 0; out: tpm2_unload_key(tssContext, in.keyHandle); return ret; } int tpm2_ec_sign_hash_fn(gnutls_privkey_t key, gnutls_sign_algorithm_t algo, void *_certinfo, unsigned int flags, const gnutls_datum_t *data, gnutls_datum_t *sig) { struct cert_info *certinfo = _certinfo; struct openconnect_info *vpninfo = certinfo->vpninfo; TSS_CONTEXT *tssContext = NULL; Sign_In in; Sign_Out out; int ret = GNUTLS_E_PK_SIGN_FAILED; TPM_HANDLE authHandle; TPM_RC rc; char *pass = certinfo->tpm2->key_pass; gnutls_datum_t sig_r, sig_s; certinfo->tpm2->key_pass = NULL; vpn_progress(vpninfo, PRG_DEBUG, _("TPM2 EC sign function called for %d bytes.\n"), data->size); memset(&in, 0, sizeof(in)); /* FIPS-186-4 §6.4 says "When the length of the output of the hash * function is greater than the bit length of n, then the leftmost * n bits of the hash function output block shall be used in any * calculation using the hash function output during the generation * or verification of a digital signature." * * So GnuTLS is expected to *truncate* a larger hash to fit the * curve bit length, and then we lie to the TPM about which hash * it was because the TPM only really cares about the size of the * data anyway. */ switch (data->size) { case SHA1_SIZE: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA1; break; case SHA256_SIZE: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA256; break; case SHA384_SIZE: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA384; break; #ifdef TPM_ALG_SHA512 case SHA512_SIZE: in.inScheme.details.ecdsa.hashAlg = TPM_ALG_SHA512; break; #endif default: vpn_progress(vpninfo, PRG_ERR, _("Unknown TPM2 EC digest size %d for algo 0x%x\n"), data->size, algo); return GNUTLS_E_PK_SIGN_FAILED; } in.inScheme.scheme = TPM_ALG_ECDSA; in.digest.t.size = data->size; memcpy(in.digest.t.buffer, data->data, data->size); in.validation.tag = TPM_ST_HASHCHECK; in.validation.hierarchy = TPM_RH_NULL; in.validation.digest.t.size = 0; in.keyHandle = tpm2_load_key(vpninfo, certinfo, &tssContext); if (!in.keyHandle) return GNUTLS_E_PK_SIGN_FAILED; rc = tpm2_get_session_handle(vpninfo, tssContext, &authHandle, 0, NULL, 0); if (rc) goto out; reauth: rc = TSS_Execute(tssContext, (RESPONSE_PARAMETERS *)&out, (COMMAND_PARAMETERS *)&in, NULL, TPM_CC_Sign, authHandle, pass, TPMA_SESSION_DECRYPT, TPM_RH_NULL, NULL, 0); if (rc_is_key_auth_failed(rc)) { free_pass(&pass); if (!request_passphrase(vpninfo, "openconnect_tpm2_key", &pass, _("Enter TPM2 key password:"))) goto reauth; } if (rc) { tpm2_error(vpninfo, rc, "TPM2_Sign"); tpm2_flush_handle(tssContext, authHandle); goto out; } certinfo->tpm2->key_pass = pass; sig_r.data = out.signature.signature.ecdsa.signatureR.t.buffer; sig_r.size = out.signature.signature.ecdsa.signatureR.t.size; sig_s.data = out.signature.signature.ecdsa.signatureS.t.buffer; sig_s.size = out.signature.signature.ecdsa.signatureS.t.size; ret = gnutls_encode_rs_value(sig, &sig_r, &sig_s); out: tpm2_unload_key(tssContext, in.keyHandle); return ret; } int install_tpm2_key(struct openconnect_info *vpninfo, struct cert_info *certinfo, gnutls_privkey_t *pkey, gnutls_datum_t *pkey_sig, unsigned int parent, int emptyauth, int legacy, gnutls_datum_t *privdata, gnutls_datum_t *pubdata) { TPM_RC rc; BYTE *der; INT32 dersize; if (!parent_is_persistent(parent) && parent != TPM_RH_OWNER && parent != TPM_RH_NULL && parent != TPM_RH_ENDORSEMENT && parent != TPM_RH_PLATFORM) { vpn_progress(vpninfo, PRG_ERR, _("Invalid TPM2 parent handle 0x%08x\n"), parent); return -EINVAL; } certinfo->tpm2 = calloc(1, sizeof(*certinfo->tpm2)); if (!certinfo->tpm2) return -ENOMEM; certinfo->tpm2->parent = parent; certinfo->tpm2->need_userauth = !emptyauth; certinfo->tpm2->legacy_srk = legacy; der = privdata->data; dersize = privdata->size; rc = TPM2B_PRIVATE_Unmarshal(&certinfo->tpm2->priv, &der, &dersize); if (rc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 private key data: 0x%x\n"), rc); goto err_out; } der = pubdata->data; dersize = pubdata->size; rc = TPM2B_PUBLIC_Unmarshal(&certinfo->tpm2->pub, &der, &dersize, FALSE); if (rc) { vpn_progress(vpninfo, PRG_ERR, _("Failed to import TPM2 public key data: 0x%x\n"), rc); goto err_out; } switch(certinfo->tpm2->pub.publicArea.type) { case TPM_ALG_RSA: return GNUTLS_PK_RSA; case TPM_ALG_ECC: return GNUTLS_PK_ECC; } vpn_progress(vpninfo, PRG_ERR, _("Unsupported TPM2 key type %d\n"), certinfo->tpm2->pub.publicArea.type); err_out: release_tpm2_ctx(vpninfo, certinfo); return -EINVAL; } uint16_t tpm2_key_curve(struct openconnect_info *vpninfo, struct cert_info *certinfo) { return certinfo->tpm2->pub.publicArea.parameters.eccDetail.curveID; } int tpm2_rsa_key_bits(struct openconnect_info *vpninfo, struct cert_info *certinfo) { return certinfo->tpm2->pub.publicArea.parameters.rsaDetail.keyBits; } void release_tpm2_ctx(struct openconnect_info *vpninfo, struct cert_info *certinfo) { if (certinfo->tpm2) { free_pass(&certinfo->tpm2->parent_pass); free_pass(&certinfo->tpm2->key_pass); free(certinfo->tpm2); certinfo->tpm2 = NULL; } } openconnect-8.20/sspi.c0000644000076400007640000003046414067426206016670 0ustar00dwoodhoudwoodhou00000000000000/* * OpenConnect (SSL + DTLS) VPN client * * Copyright © 2008-2015 Intel Corporation. * * Author: David Woodhouse * * This program is free software; you can redistribute it and/or * modify it under the terms of the GNU Lesser General Public License * version 2.1, as published by the Free Software Foundation. * * This program is distributed in the hope that it will be useful, but * WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU * Lesser General Public License for more details. */ #include #include "openconnect-internal.h" #include #include static int sspi_setup(struct openconnect_info *vpninfo, struct http_auth_state *auth_state, const char *service, int proxy) { SECURITY_STATUS status; struct oc_text_buf *buf = buf_alloc(); buf_append_utf16le(buf, service); buf_append_utf16le(buf, "/"); buf_append_utf16le(buf, proxy ? vpninfo->proxy : vpninfo->hostname); if (buf_error(buf)) return buf_free(buf); auth_state->sspi_target_name = (wchar_t *)buf->data; buf->data = NULL; buf_free(buf); status = AcquireCredentialsHandleW(NULL, (SEC_WCHAR *)L"Negotiate", SECPKG_CRED_OUTBOUND, NULL, NULL, NULL, NULL, &auth_state->sspi_cred, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("AcquireCredentialsHandle() failed: %lx\n"), status); free(auth_state->sspi_target_name); auth_state->sspi_target_name = NULL; return -EIO; } return 0; } int gssapi_authorization(struct openconnect_info *vpninfo, int proxy, struct http_auth_state *auth_state, struct oc_text_buf *hdrbuf) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; int first = 1; if (auth_state->state == AUTH_AVAILABLE && sspi_setup(vpninfo, auth_state, "HTTP", proxy)) { auth_state->state = AUTH_FAILED; return -EIO; } if (auth_state->challenge && *auth_state->challenge) { int token_len = -EINVAL; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; in_token.pvBuffer = openconnect_base64_decode(&token_len, auth_state->challenge); if (!in_token.pvBuffer) return token_len; in_token.cbBuffer = token_len; first = 0; } else if (auth_state->state > AUTH_AVAILABLE) { /* This indicates failure. We were trying, but got an empty 'Proxy-Authorization: Negotiate' header back from the server implying that we should start again... */ goto fail_gssapi; } auth_state->state = AUTH_IN_PROGRESS; output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; status = InitializeSecurityContextW(&auth_state->sspi_cred, first ? NULL : &auth_state->sspi_ctx, auth_state->sspi_target_name, ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, first ? NULL : &input_desc, 0, &auth_state->sspi_ctx, &output_desc, &ret_flags, NULL); if (status != SEC_E_OK && status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); fail_gssapi: cleanup_gssapi_auth(vpninfo, auth_state); auth_state->state = AUTH_FAILED; /* -EAGAIN to first a reconnect if we had been trying. Else -EIO */ return first ? -EIO : -EAGAIN; } buf_append(hdrbuf, "%sAuthorization: Negotiate ", proxy ? "Proxy-" : ""); buf_append_base64(hdrbuf, out_token.pvBuffer, out_token.cbBuffer, 0); buf_append(hdrbuf, "\r\n"); FreeContextBuffer(out_token.pvBuffer); return 0; } void cleanup_gssapi_auth(struct openconnect_info *vpninfo, struct http_auth_state *auth_state) { if (auth_state->state >= AUTH_IN_PROGRESS) { free(auth_state->sspi_target_name); auth_state->sspi_target_name = NULL; FreeCredentialsHandle(&auth_state->sspi_cred); DeleteSecurityContext(&auth_state->sspi_ctx); } } int socks_gssapi_auth(struct openconnect_info *vpninfo) { SECURITY_STATUS status; SecBufferDesc input_desc, output_desc; SecBuffer in_token, out_token; ULONG ret_flags; unsigned char *pktbuf; int first = 1; int i; int ret = -EIO; struct http_auth_state *auth_state = &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]; if (sspi_setup(vpninfo, auth_state, "rcmd", 1)) return -EIO; vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state = AUTH_IN_PROGRESS; pktbuf = malloc(65538); if (!pktbuf) return -ENOMEM; input_desc.cBuffers = 1; input_desc.pBuffers = &in_token; input_desc.ulVersion = SECBUFFER_VERSION; in_token.BufferType = SECBUFFER_TOKEN; output_desc.cBuffers = 1; output_desc.pBuffers = &out_token; output_desc.ulVersion = SECBUFFER_VERSION; out_token.BufferType = SECBUFFER_TOKEN; out_token.cbBuffer = 0; out_token.pvBuffer = NULL; while (1) { status = InitializeSecurityContextW(&auth_state->sspi_cred, first ? NULL : &auth_state->sspi_ctx, auth_state->sspi_target_name, ISC_REQ_ALLOCATE_MEMORY | ISC_REQ_CONFIDENTIALITY | ISC_REQ_REPLAY_DETECT | ISC_REQ_CONNECTION, 0, SECURITY_NETWORK_DREP, first ? NULL : &input_desc, 0, &auth_state->sspi_ctx, &output_desc, &ret_flags, NULL); if (status == SEC_E_OK) { /* If we still have a token to send, send it. */ if (!out_token.cbBuffer) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } } else if (status != SEC_I_CONTINUE_NEEDED) { vpn_progress(vpninfo, PRG_ERR, _("InitializeSecurityContext() failed: %lx\n"), status); break; } if (out_token.cbBuffer > 65535) { vpn_progress(vpninfo, PRG_ERR, _("SSPI token too large (%ld bytes)\n"), out_token.cbBuffer); break; } pktbuf[0] = 1; /* ver */ pktbuf[1] = 1; /* mtyp */ store_be16(pktbuf + 2, out_token.cbBuffer); memcpy(pktbuf + 4, out_token.pvBuffer, out_token.cbBuffer); FreeContextBuffer(out_token.pvBuffer); vpn_progress(vpninfo, PRG_TRACE, _("Sending SSPI token of %lu bytes\n"), out_token.cbBuffer + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, out_token.cbBuffer + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send SSPI authentication token to proxy: %s\n"), strerror(-i)); break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI authentication token from proxy: %s\n"), strerror(-i)); break; } if (pktbuf[1] == 0xff) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS server reported SSPI context failure\n")); break; } else if (pktbuf[1] != 1) { vpn_progress(vpninfo, PRG_ERR, _("Unknown SSPI status response (0x%02x) from SOCKS server\n"), pktbuf[1]); break; } in_token.cbBuffer = load_be16(pktbuf + 2); in_token.pvBuffer = pktbuf; first = 0; if (!in_token.cbBuffer) { vpn_progress(vpninfo, PRG_DEBUG, _("GSSAPI authentication completed\n")); ret = 0; break; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, in_token.cbBuffer); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI authentication token from proxy: %s\n"), strerror(-i)); break; } vpn_progress(vpninfo, PRG_TRACE, _("Got SSPI token of %lu bytes: %02x %02x %02x %02x\n"), in_token.cbBuffer, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); } if (!ret) { SecPkgContext_Sizes sizes; SecBufferDesc enc_desc; SecBuffer enc_bufs[3]; int len; ret = -EIO; status = QueryContextAttributes(&auth_state->sspi_ctx, SECPKG_ATTR_SIZES, &sizes); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("QueryContextAttributes() failed: %lx\n"), status); goto err; } enc_desc.cBuffers = 3; enc_desc.pBuffers = enc_bufs; enc_desc.ulVersion = SECBUFFER_VERSION; enc_bufs[0].BufferType = SECBUFFER_TOKEN; enc_bufs[0].cbBuffer = sizes.cbSecurityTrailer; enc_bufs[0].pvBuffer = malloc(sizes.cbSecurityTrailer); if (!enc_bufs[0].pvBuffer) { ret = -ENOMEM; goto err; } memset(enc_bufs[0].pvBuffer, 0, enc_bufs[0].cbBuffer); enc_bufs[1].BufferType = SECBUFFER_DATA; enc_bufs[1].pvBuffer = pktbuf; enc_bufs[1].cbBuffer = 1; /* All this just to sign this single byte... */ pktbuf[0] = 0; enc_bufs[2].BufferType = SECBUFFER_PADDING; enc_bufs[2].cbBuffer = sizes.cbBlockSize; enc_bufs[2].pvBuffer = malloc(sizes.cbBlockSize); if (!enc_bufs[2].pvBuffer) { free(enc_bufs[0].pvBuffer); ret = -ENOMEM; goto err; } status = EncryptMessage(&auth_state->sspi_ctx, SECQOP_WRAP_NO_ENCRYPT, &enc_desc, 0); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("EncryptMessage() failed: %lx\n"), status); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); goto err; } len = enc_bufs[0].cbBuffer + enc_bufs[1].cbBuffer + enc_bufs[2].cbBuffer; /* Check each one to avoid the (utterly theoretical) overflow when calculated into an 'int' type. */ if (enc_bufs[1].cbBuffer != 1 || enc_bufs[0].cbBuffer > 65535 || enc_bufs[2].cbBuffer > 65535 || len > 65535) { vpn_progress(vpninfo, PRG_ERR, _("EncryptMessage() result too large (%lu + %lu + %lu)\n"), enc_bufs[0].cbBuffer, enc_bufs[1].cbBuffer, enc_bufs[2].cbBuffer); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); goto err; } /* Our single byte of payload was *supposed* to be unencrypted but Windows doesn't always manage to do as it's told... */ pktbuf[4 + enc_bufs[0].cbBuffer] = pktbuf[0]; pktbuf[0] = 1; pktbuf[1] = 2; store_be16(pktbuf + 2, len); if (enc_bufs[0].cbBuffer) memcpy(pktbuf + 4, enc_bufs[0].pvBuffer, enc_bufs[0].cbBuffer); if (enc_bufs[2].cbBuffer) memcpy(pktbuf + 5 + enc_bufs[0].cbBuffer, enc_bufs[2].pvBuffer, enc_bufs[2].cbBuffer); free(enc_bufs[0].pvBuffer); free(enc_bufs[2].pvBuffer); vpn_progress(vpninfo, PRG_TRACE, _("Sending SSPI protection negotiation of %u bytes\n"), len + 4); i = vpninfo->ssl_write(vpninfo, (void *)pktbuf, len + 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to send SSPI protection response to proxy: %s\n"), strerror(-i)); goto err; } i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, 4); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI protection response from proxy: %s\n"), strerror(-i)); goto err; } len = load_be16(pktbuf + 2); i = vpninfo->ssl_read(vpninfo, (void *)pktbuf, len); if (i < 0) { vpn_progress(vpninfo, PRG_ERR, _("Failed to receive SSPI protection response from proxy: %s\n"), strerror(-i)); goto err; } vpn_progress(vpninfo, PRG_TRACE, _("Got SSPI protection response of %d bytes: %02x %02x %02x %02x\n"), len, pktbuf[0], pktbuf[1], pktbuf[2], pktbuf[3]); enc_desc.cBuffers = 2; enc_bufs[0].BufferType = SECBUFFER_STREAM; enc_bufs[0].cbBuffer = len; enc_bufs[0].pvBuffer = pktbuf; enc_bufs[1].BufferType = SECBUFFER_DATA; enc_bufs[1].cbBuffer = 0; enc_bufs[1].pvBuffer = NULL; status = DecryptMessage(&auth_state->sspi_ctx, &enc_desc, 0, NULL); if (status != SEC_E_OK) { vpn_progress(vpninfo, PRG_ERR, _("DecryptMessage failed: %lx\n"), status); goto err; } if (enc_bufs[1].cbBuffer != 1) { vpn_progress(vpninfo, PRG_ERR, _("Invalid SSPI protection response from proxy (%lu bytes)\n"), enc_bufs[1].cbBuffer); FreeContextBuffer(enc_bufs[1].pvBuffer); goto err; } i = *(char *)enc_bufs[1].pvBuffer; if (i == 1) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message integrity, which is not supported\n")); goto err; } else if (i == 2) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands message confidentiality, which is not supported\n")); goto err; } else if (i) { vpn_progress(vpninfo, PRG_ERR, _("SOCKS proxy demands protection unknown type 0x%02x\n"), (unsigned char)i); goto err; } ret = 0; } err: cleanup_gssapi_auth(vpninfo, &vpninfo->proxy_auth[AUTH_TYPE_GSSAPI]); vpninfo->proxy_auth[AUTH_TYPE_GSSAPI].state = AUTH_UNSEEN; free(pktbuf); return ret; } openconnect-8.20/ltmain.sh0000644000076400007640000117106714076314447017377 0ustar00dwoodhoudwoodhou00000000000000#! /bin/sh ## DO NOT EDIT - This file generated from ./build-aux/ltmain.in ## by inline-source v2014-01-03.01 # libtool (GNU libtool) 2.4.6 # Provide generalized library-building support services. # Written by Gordon Matzigkeit , 1996 # Copyright (C) 1996-2015 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # GNU Libtool is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 2 of the License, or # (at your option) any later version. # # As a special exception to the GNU General Public License, # if you distribute this file as part of a program or library that # is built using GNU Libtool, you may include this file under the # same distribution terms that you use for the rest of that program. # # GNU Libtool is distributed in the hope that it will be useful, but # WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # # You should have received a copy of the GNU General Public License # along with this program. If not, see . PROGRAM=libtool PACKAGE=libtool VERSION=2.4.6 package_revision=2.4.6 ## ------ ## ## Usage. ## ## ------ ## # Run './libtool --help' for help with using this script from the # command line. ## ------------------------------- ## ## User overridable command paths. ## ## ------------------------------- ## # After configure completes, it has a better idea of some of the # shell tools we need than the defaults used by the functions shared # with bootstrap, so set those here where they can still be over- # ridden by the user, but otherwise take precedence. : ${AUTOCONF="autoconf"} : ${AUTOMAKE="automake"} ## -------------------------- ## ## Source external libraries. ## ## -------------------------- ## # Much of our low-level functionality needs to be sourced from external # libraries, which are installed to $pkgauxdir. # Set a version string for this script. scriptversion=2015-01-20.17; # UTC # General shell script boiler plate, and helper functions. # Written by Gary V. Vaughan, 2004 # Copyright (C) 2004-2015 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # This program is free software; you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation; either version 3 of the License, or # (at your option) any later version. # As a special exception to the GNU General Public License, if you distribute # this file as part of a program or library that is built using GNU Libtool, # you may include this file under the same distribution terms that you use # for the rest of that program. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNES FOR A PARTICULAR PURPOSE. See the GNU # General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # Please report bugs or propose patches to gary@gnu.org. ## ------ ## ## Usage. ## ## ------ ## # Evaluate this file near the top of your script to gain access to # the functions and variables defined here: # # . `echo "$0" | ${SED-sed} 's|[^/]*$||'`/build-aux/funclib.sh # # If you need to override any of the default environment variable # settings, do that before evaluating this file. ## -------------------- ## ## Shell normalisation. ## ## -------------------- ## # Some shells need a little help to be as Bourne compatible as possible. # Before doing anything else, make sure all that help has been provided! DUALCASE=1; export DUALCASE # for MKS sh if test -n "${ZSH_VERSION+set}" && (emulate sh) >/dev/null 2>&1; then : emulate sh NULLCMD=: # Pre-4.2 versions of Zsh do word splitting on ${1+"$@"}, which # is contrary to our usage. Disable this feature. alias -g '${1+"$@"}'='"$@"' setopt NO_GLOB_SUBST else case `(set -o) 2>/dev/null` in *posix*) set -o posix ;; esac fi # NLS nuisances: We save the old values in case they are required later. _G_user_locale= _G_safe_locale= for _G_var in LANG LANGUAGE LC_ALL LC_CTYPE LC_COLLATE LC_MESSAGES do eval "if test set = \"\${$_G_var+set}\"; then save_$_G_var=\$$_G_var $_G_var=C export $_G_var _G_user_locale=\"$_G_var=\\\$save_\$_G_var; \$_G_user_locale\" _G_safe_locale=\"$_G_var=C; \$_G_safe_locale\" fi" done # CDPATH. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH # Make sure IFS has a sensible default sp=' ' nl=' ' IFS="$sp $nl" # There are apparently some retarded systems that use ';' as a PATH separator! if test "${PATH_SEPARATOR+set}" != set; then PATH_SEPARATOR=: (PATH='/bin;/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 && { (PATH='/bin:/bin'; FPATH=$PATH; sh -c :) >/dev/null 2>&1 || PATH_SEPARATOR=';' } fi ## ------------------------- ## ## Locate command utilities. ## ## ------------------------- ## # func_executable_p FILE # ---------------------- # Check that FILE is an executable regular file. func_executable_p () { test -f "$1" && test -x "$1" } # func_path_progs PROGS_LIST CHECK_FUNC [PATH] # -------------------------------------------- # Search for either a program that responds to --version with output # containing "GNU", or else returned by CHECK_FUNC otherwise, by # trying all the directories in PATH with each of the elements of # PROGS_LIST. # # CHECK_FUNC should accept the path to a candidate program, and # set $func_check_prog_result if it truncates its output less than # $_G_path_prog_max characters. func_path_progs () { _G_progs_list=$1 _G_check_func=$2 _G_PATH=${3-"$PATH"} _G_path_prog_max=0 _G_path_prog_found=false _G_save_IFS=$IFS; IFS=${PATH_SEPARATOR-:} for _G_dir in $_G_PATH; do IFS=$_G_save_IFS test -z "$_G_dir" && _G_dir=. for _G_prog_name in $_G_progs_list; do for _exeext in '' .EXE; do _G_path_prog=$_G_dir/$_G_prog_name$_exeext func_executable_p "$_G_path_prog" || continue case `"$_G_path_prog" --version 2>&1` in *GNU*) func_path_progs_result=$_G_path_prog _G_path_prog_found=: ;; *) $_G_check_func $_G_path_prog func_path_progs_result=$func_check_prog_result ;; esac $_G_path_prog_found && break 3 done done done IFS=$_G_save_IFS test -z "$func_path_progs_result" && { echo "no acceptable sed could be found in \$PATH" >&2 exit 1 } } # We want to be able to use the functions in this file before configure # has figured out where the best binaries are kept, which means we have # to search for them ourselves - except when the results are already set # where we skip the searches. # Unless the user overrides by setting SED, search the path for either GNU # sed, or the sed that truncates its output the least. test -z "$SED" && { _G_sed_script=s/aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/bbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbbb/ for _G_i in 1 2 3 4 5 6 7; do _G_sed_script=$_G_sed_script$nl$_G_sed_script done echo "$_G_sed_script" 2>/dev/null | sed 99q >conftest.sed _G_sed_script= func_check_prog_sed () { _G_path_prog=$1 _G_count=0 printf 0123456789 >conftest.in while : do cat conftest.in conftest.in >conftest.tmp mv conftest.tmp conftest.in cp conftest.in conftest.nl echo '' >> conftest.nl "$_G_path_prog" -f conftest.sed conftest.out 2>/dev/null || break diff conftest.out conftest.nl >/dev/null 2>&1 || break _G_count=`expr $_G_count + 1` if test "$_G_count" -gt "$_G_path_prog_max"; then # Best one so far, save it but keep looking for a better one func_check_prog_result=$_G_path_prog _G_path_prog_max=$_G_count fi # 10*(2^10) chars as input seems more than enough test 10 -lt "$_G_count" && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out } func_path_progs "sed gsed" func_check_prog_sed $PATH:/usr/xpg4/bin rm -f conftest.sed SED=$func_path_progs_result } # Unless the user overrides by setting GREP, search the path for either GNU # grep, or the grep that truncates its output the least. test -z "$GREP" && { func_check_prog_grep () { _G_path_prog=$1 _G_count=0 _G_path_prog_max=0 printf 0123456789 >conftest.in while : do cat conftest.in conftest.in >conftest.tmp mv conftest.tmp conftest.in cp conftest.in conftest.nl echo 'GREP' >> conftest.nl "$_G_path_prog" -e 'GREP$' -e '-(cannot match)-' conftest.out 2>/dev/null || break diff conftest.out conftest.nl >/dev/null 2>&1 || break _G_count=`expr $_G_count + 1` if test "$_G_count" -gt "$_G_path_prog_max"; then # Best one so far, save it but keep looking for a better one func_check_prog_result=$_G_path_prog _G_path_prog_max=$_G_count fi # 10*(2^10) chars as input seems more than enough test 10 -lt "$_G_count" && break done rm -f conftest.in conftest.tmp conftest.nl conftest.out } func_path_progs "grep ggrep" func_check_prog_grep $PATH:/usr/xpg4/bin GREP=$func_path_progs_result } ## ------------------------------- ## ## User overridable command paths. ## ## ------------------------------- ## # All uppercase variable names are used for environment variables. These # variables can be overridden by the user before calling a script that # uses them if a suitable command of that name is not already available # in the command search PATH. : ${CP="cp -f"} : ${ECHO="printf %s\n"} : ${EGREP="$GREP -E"} : ${FGREP="$GREP -F"} : ${LN_S="ln -s"} : ${MAKE="make"} : ${MKDIR="mkdir"} : ${MV="mv -f"} : ${RM="rm -f"} : ${SHELL="${CONFIG_SHELL-/bin/sh}"} ## -------------------- ## ## Useful sed snippets. ## ## -------------------- ## sed_dirname='s|/[^/]*$||' sed_basename='s|^.*/||' # Sed substitution that helps us do robust quoting. It backslashifies # metacharacters that are still active within double-quoted strings. sed_quote_subst='s|\([`"$\\]\)|\\\1|g' # Same as above, but do not quote variable references. sed_double_quote_subst='s/\(["`\\]\)/\\\1/g' # Sed substitution that turns a string into a regex matching for the # string literally. sed_make_literal_regex='s|[].[^$\\*\/]|\\&|g' # Sed substitution that converts a w32 file name or path # that contains forward slashes, into one that contains # (escaped) backslashes. A very naive implementation. sed_naive_backslashify='s|\\\\*|\\|g;s|/|\\|g;s|\\|\\\\|g' # Re-'\' parameter expansions in output of sed_double_quote_subst that # were '\'-ed in input to the same. If an odd number of '\' preceded a # '$' in input to sed_double_quote_subst, that '$' was protected from # expansion. Since each input '\' is now two '\'s, look for any number # of runs of four '\'s followed by two '\'s and then a '$'. '\' that '$'. _G_bs='\\' _G_bs2='\\\\' _G_bs4='\\\\\\\\' _G_dollar='\$' sed_double_backslash="\ s/$_G_bs4/&\\ /g s/^$_G_bs2$_G_dollar/$_G_bs&/ s/\\([^$_G_bs]\\)$_G_bs2$_G_dollar/\\1$_G_bs2$_G_bs$_G_dollar/g s/\n//g" ## ----------------- ## ## Global variables. ## ## ----------------- ## # Except for the global variables explicitly listed below, the following # functions in the '^func_' namespace, and the '^require_' namespace # variables initialised in the 'Resource management' section, sourcing # this file will not pollute your global namespace with anything # else. There's no portable way to scope variables in Bourne shell # though, so actually running these functions will sometimes place # results into a variable named after the function, and often use # temporary variables in the '^_G_' namespace. If you are careful to # avoid using those namespaces casually in your sourcing script, things # should continue to work as you expect. And, of course, you can freely # overwrite any of the functions or variables defined here before # calling anything to customize them. EXIT_SUCCESS=0 EXIT_FAILURE=1 EXIT_MISMATCH=63 # $? = 63 is used to indicate version mismatch to missing. EXIT_SKIP=77 # $? = 77 is used to indicate a skipped test to automake. # Allow overriding, eg assuming that you follow the convention of # putting '$debug_cmd' at the start of all your functions, you can get # bash to show function call trace with: # # debug_cmd='eval echo "${FUNCNAME[0]} $*" >&2' bash your-script-name debug_cmd=${debug_cmd-":"} exit_cmd=: # By convention, finish your script with: # # exit $exit_status # # so that you can set exit_status to non-zero if you want to indicate # something went wrong during execution without actually bailing out at # the point of failure. exit_status=$EXIT_SUCCESS # Work around backward compatibility issue on IRIX 6.5. On IRIX 6.4+, sh # is ksh but when the shell is invoked as "sh" and the current value of # the _XPG environment variable is not equal to 1 (one), the special # positional parameter $0, within a function call, is the name of the # function. progpath=$0 # The name of this program. progname=`$ECHO "$progpath" |$SED "$sed_basename"` # Make sure we have an absolute progpath for reexecution: case $progpath in [\\/]*|[A-Za-z]:\\*) ;; *[\\/]*) progdir=`$ECHO "$progpath" |$SED "$sed_dirname"` progdir=`cd "$progdir" && pwd` progpath=$progdir/$progname ;; *) _G_IFS=$IFS IFS=${PATH_SEPARATOR-:} for progdir in $PATH; do IFS=$_G_IFS test -x "$progdir/$progname" && break done IFS=$_G_IFS test -n "$progdir" || progdir=`pwd` progpath=$progdir/$progname ;; esac ## ----------------- ## ## Standard options. ## ## ----------------- ## # The following options affect the operation of the functions defined # below, and should be set appropriately depending on run-time para- # meters passed on the command line. opt_dry_run=false opt_quiet=false opt_verbose=false # Categories 'all' and 'none' are always available. Append any others # you will pass as the first argument to func_warning from your own # code. warning_categories= # By default, display warnings according to 'opt_warning_types'. Set # 'warning_func' to ':' to elide all warnings, or func_fatal_error to # treat the next displayed warning as a fatal error. warning_func=func_warn_and_continue # Set to 'all' to display all warnings, 'none' to suppress all # warnings, or a space delimited list of some subset of # 'warning_categories' to display only the listed warnings. opt_warning_types=all ## -------------------- ## ## Resource management. ## ## -------------------- ## # This section contains definitions for functions that each ensure a # particular resource (a file, or a non-empty configuration variable for # example) is available, and if appropriate to extract default values # from pertinent package files. Call them using their associated # 'require_*' variable to ensure that they are executed, at most, once. # # It's entirely deliberate that calling these functions can set # variables that don't obey the namespace limitations obeyed by the rest # of this file, in order that that they be as useful as possible to # callers. # require_term_colors # ------------------- # Allow display of bold text on terminals that support it. require_term_colors=func_require_term_colors func_require_term_colors () { $debug_cmd test -t 1 && { # COLORTERM and USE_ANSI_COLORS environment variables take # precedence, because most terminfo databases neglect to describe # whether color sequences are supported. test -n "${COLORTERM+set}" && : ${USE_ANSI_COLORS="1"} if test 1 = "$USE_ANSI_COLORS"; then # Standard ANSI escape sequences tc_reset='' tc_bold=''; tc_standout='' tc_red=''; tc_green='' tc_blue=''; tc_cyan='' else # Otherwise trust the terminfo database after all. test -n "`tput sgr0 2>/dev/null`" && { tc_reset=`tput sgr0` test -n "`tput bold 2>/dev/null`" && tc_bold=`tput bold` tc_standout=$tc_bold test -n "`tput smso 2>/dev/null`" && tc_standout=`tput smso` test -n "`tput setaf 1 2>/dev/null`" && tc_red=`tput setaf 1` test -n "`tput setaf 2 2>/dev/null`" && tc_green=`tput setaf 2` test -n "`tput setaf 4 2>/dev/null`" && tc_blue=`tput setaf 4` test -n "`tput setaf 5 2>/dev/null`" && tc_cyan=`tput setaf 5` } fi } require_term_colors=: } ## ----------------- ## ## Function library. ## ## ----------------- ## # This section contains a variety of useful functions to call in your # scripts. Take note of the portable wrappers for features provided by # some modern shells, which will fall back to slower equivalents on # less featureful shells. # func_append VAR VALUE # --------------------- # Append VALUE onto the existing contents of VAR. # We should try to minimise forks, especially on Windows where they are # unreasonably slow, so skip the feature probes when bash or zsh are # being used: if test set = "${BASH_VERSION+set}${ZSH_VERSION+set}"; then : ${_G_HAVE_ARITH_OP="yes"} : ${_G_HAVE_XSI_OPS="yes"} # The += operator was introduced in bash 3.1 case $BASH_VERSION in [12].* | 3.0 | 3.0*) ;; *) : ${_G_HAVE_PLUSEQ_OP="yes"} ;; esac fi # _G_HAVE_PLUSEQ_OP # Can be empty, in which case the shell is probed, "yes" if += is # useable or anything else if it does not work. test -z "$_G_HAVE_PLUSEQ_OP" \ && (eval 'x=a; x+=" b"; test "a b" = "$x"') 2>/dev/null \ && _G_HAVE_PLUSEQ_OP=yes if test yes = "$_G_HAVE_PLUSEQ_OP" then # This is an XSI compatible shell, allowing a faster implementation... eval 'func_append () { $debug_cmd eval "$1+=\$2" }' else # ...otherwise fall back to using expr, which is often a shell builtin. func_append () { $debug_cmd eval "$1=\$$1\$2" } fi # func_append_quoted VAR VALUE # ---------------------------- # Quote VALUE and append to the end of shell variable VAR, separated # by a space. if test yes = "$_G_HAVE_PLUSEQ_OP"; then eval 'func_append_quoted () { $debug_cmd func_quote_for_eval "$2" eval "$1+=\\ \$func_quote_for_eval_result" }' else func_append_quoted () { $debug_cmd func_quote_for_eval "$2" eval "$1=\$$1\\ \$func_quote_for_eval_result" } fi # func_append_uniq VAR VALUE # -------------------------- # Append unique VALUE onto the existing contents of VAR, assuming # entries are delimited by the first character of VALUE. For example: # # func_append_uniq options " --another-option option-argument" # # will only append to $options if " --another-option option-argument " # is not already present somewhere in $options already (note spaces at # each end implied by leading space in second argument). func_append_uniq () { $debug_cmd eval _G_current_value='`$ECHO $'$1'`' _G_delim=`expr "$2" : '\(.\)'` case $_G_delim$_G_current_value$_G_delim in *"$2$_G_delim"*) ;; *) func_append "$@" ;; esac } # func_arith TERM... # ------------------ # Set func_arith_result to the result of evaluating TERMs. test -z "$_G_HAVE_ARITH_OP" \ && (eval 'test 2 = $(( 1 + 1 ))') 2>/dev/null \ && _G_HAVE_ARITH_OP=yes if test yes = "$_G_HAVE_ARITH_OP"; then eval 'func_arith () { $debug_cmd func_arith_result=$(( $* )) }' else func_arith () { $debug_cmd func_arith_result=`expr "$@"` } fi # func_basename FILE # ------------------ # Set func_basename_result to FILE with everything up to and including # the last / stripped. if test yes = "$_G_HAVE_XSI_OPS"; then # If this shell supports suffix pattern removal, then use it to avoid # forking. Hide the definitions single quotes in case the shell chokes # on unsupported syntax... _b='func_basename_result=${1##*/}' _d='case $1 in */*) func_dirname_result=${1%/*}$2 ;; * ) func_dirname_result=$3 ;; esac' else # ...otherwise fall back to using sed. _b='func_basename_result=`$ECHO "$1" |$SED "$sed_basename"`' _d='func_dirname_result=`$ECHO "$1" |$SED "$sed_dirname"` if test "X$func_dirname_result" = "X$1"; then func_dirname_result=$3 else func_append func_dirname_result "$2" fi' fi eval 'func_basename () { $debug_cmd '"$_b"' }' # func_dirname FILE APPEND NONDIR_REPLACEMENT # ------------------------------------------- # Compute the dirname of FILE. If nonempty, add APPEND to the result, # otherwise set result to NONDIR_REPLACEMENT. eval 'func_dirname () { $debug_cmd '"$_d"' }' # func_dirname_and_basename FILE APPEND NONDIR_REPLACEMENT # -------------------------------------------------------- # Perform func_basename and func_dirname in a single function # call: # dirname: Compute the dirname of FILE. If nonempty, # add APPEND to the result, otherwise set result # to NONDIR_REPLACEMENT. # value returned in "$func_dirname_result" # basename: Compute filename of FILE. # value retuned in "$func_basename_result" # For efficiency, we do not delegate to the functions above but instead # duplicate the functionality here. eval 'func_dirname_and_basename () { $debug_cmd '"$_b"' '"$_d"' }' # func_echo ARG... # ---------------- # Echo program name prefixed message. func_echo () { $debug_cmd _G_message=$* func_echo_IFS=$IFS IFS=$nl for _G_line in $_G_message; do IFS=$func_echo_IFS $ECHO "$progname: $_G_line" done IFS=$func_echo_IFS } # func_echo_all ARG... # -------------------- # Invoke $ECHO with all args, space-separated. func_echo_all () { $ECHO "$*" } # func_echo_infix_1 INFIX ARG... # ------------------------------ # Echo program name, followed by INFIX on the first line, with any # additional lines not showing INFIX. func_echo_infix_1 () { $debug_cmd $require_term_colors _G_infix=$1; shift _G_indent=$_G_infix _G_prefix="$progname: $_G_infix: " _G_message=$* # Strip color escape sequences before counting printable length for _G_tc in "$tc_reset" "$tc_bold" "$tc_standout" "$tc_red" "$tc_green" "$tc_blue" "$tc_cyan" do test -n "$_G_tc" && { _G_esc_tc=`$ECHO "$_G_tc" | $SED "$sed_make_literal_regex"` _G_indent=`$ECHO "$_G_indent" | $SED "s|$_G_esc_tc||g"` } done _G_indent="$progname: "`echo "$_G_indent" | $SED 's|.| |g'`" " ## exclude from sc_prohibit_nested_quotes func_echo_infix_1_IFS=$IFS IFS=$nl for _G_line in $_G_message; do IFS=$func_echo_infix_1_IFS $ECHO "$_G_prefix$tc_bold$_G_line$tc_reset" >&2 _G_prefix=$_G_indent done IFS=$func_echo_infix_1_IFS } # func_error ARG... # ----------------- # Echo program name prefixed message to standard error. func_error () { $debug_cmd $require_term_colors func_echo_infix_1 " $tc_standout${tc_red}error$tc_reset" "$*" >&2 } # func_fatal_error ARG... # ----------------------- # Echo program name prefixed message to standard error, and exit. func_fatal_error () { $debug_cmd func_error "$*" exit $EXIT_FAILURE } # func_grep EXPRESSION FILENAME # ----------------------------- # Check whether EXPRESSION matches any line of FILENAME, without output. func_grep () { $debug_cmd $GREP "$1" "$2" >/dev/null 2>&1 } # func_len STRING # --------------- # Set func_len_result to the length of STRING. STRING may not # start with a hyphen. test -z "$_G_HAVE_XSI_OPS" \ && (eval 'x=a/b/c; test 5aa/bb/cc = "${#x}${x%%/*}${x%/*}${x#*/}${x##*/}"') 2>/dev/null \ && _G_HAVE_XSI_OPS=yes if test yes = "$_G_HAVE_XSI_OPS"; then eval 'func_len () { $debug_cmd func_len_result=${#1} }' else func_len () { $debug_cmd func_len_result=`expr "$1" : ".*" 2>/dev/null || echo $max_cmd_len` } fi # func_mkdir_p DIRECTORY-PATH # --------------------------- # Make sure the entire path to DIRECTORY-PATH is available. func_mkdir_p () { $debug_cmd _G_directory_path=$1 _G_dir_list= if test -n "$_G_directory_path" && test : != "$opt_dry_run"; then # Protect directory names starting with '-' case $_G_directory_path in -*) _G_directory_path=./$_G_directory_path ;; esac # While some portion of DIR does not yet exist... while test ! -d "$_G_directory_path"; do # ...make a list in topmost first order. Use a colon delimited # list incase some portion of path contains whitespace. _G_dir_list=$_G_directory_path:$_G_dir_list # If the last portion added has no slash in it, the list is done case $_G_directory_path in */*) ;; *) break ;; esac # ...otherwise throw away the child directory and loop _G_directory_path=`$ECHO "$_G_directory_path" | $SED -e "$sed_dirname"` done _G_dir_list=`$ECHO "$_G_dir_list" | $SED 's|:*$||'` func_mkdir_p_IFS=$IFS; IFS=: for _G_dir in $_G_dir_list; do IFS=$func_mkdir_p_IFS # mkdir can fail with a 'File exist' error if two processes # try to create one of the directories concurrently. Don't # stop in that case! $MKDIR "$_G_dir" 2>/dev/null || : done IFS=$func_mkdir_p_IFS # Bail out if we (or some other process) failed to create a directory. test -d "$_G_directory_path" || \ func_fatal_error "Failed to create '$1'" fi } # func_mktempdir [BASENAME] # ------------------------- # Make a temporary directory that won't clash with other running # libtool processes, and avoids race conditions if possible. If # given, BASENAME is the basename for that directory. func_mktempdir () { $debug_cmd _G_template=${TMPDIR-/tmp}/${1-$progname} if test : = "$opt_dry_run"; then # Return a directory name, but don't create it in dry-run mode _G_tmpdir=$_G_template-$$ else # If mktemp works, use that first and foremost _G_tmpdir=`mktemp -d "$_G_template-XXXXXXXX" 2>/dev/null` if test ! -d "$_G_tmpdir"; then # Failing that, at least try and use $RANDOM to avoid a race _G_tmpdir=$_G_template-${RANDOM-0}$$ func_mktempdir_umask=`umask` umask 0077 $MKDIR "$_G_tmpdir" umask $func_mktempdir_umask fi # If we're not in dry-run mode, bomb out on failure test -d "$_G_tmpdir" || \ func_fatal_error "cannot create temporary directory '$_G_tmpdir'" fi $ECHO "$_G_tmpdir" } # func_normal_abspath PATH # ------------------------ # Remove doubled-up and trailing slashes, "." path components, # and cancel out any ".." path components in PATH after making # it an absolute path. func_normal_abspath () { $debug_cmd # These SED scripts presuppose an absolute path with a trailing slash. _G_pathcar='s|^/\([^/]*\).*$|\1|' _G_pathcdr='s|^/[^/]*||' _G_removedotparts=':dotsl s|/\./|/|g t dotsl s|/\.$|/|' _G_collapseslashes='s|/\{1,\}|/|g' _G_finalslash='s|/*$|/|' # Start from root dir and reassemble the path. func_normal_abspath_result= func_normal_abspath_tpath=$1 func_normal_abspath_altnamespace= case $func_normal_abspath_tpath in "") # Empty path, that just means $cwd. func_stripname '' '/' "`pwd`" func_normal_abspath_result=$func_stripname_result return ;; # The next three entries are used to spot a run of precisely # two leading slashes without using negated character classes; # we take advantage of case's first-match behaviour. ///*) # Unusual form of absolute path, do nothing. ;; //*) # Not necessarily an ordinary path; POSIX reserves leading '//' # and for example Cygwin uses it to access remote file shares # over CIFS/SMB, so we conserve a leading double slash if found. func_normal_abspath_altnamespace=/ ;; /*) # Absolute path, do nothing. ;; *) # Relative path, prepend $cwd. func_normal_abspath_tpath=`pwd`/$func_normal_abspath_tpath ;; esac # Cancel out all the simple stuff to save iterations. We also want # the path to end with a slash for ease of parsing, so make sure # there is one (and only one) here. func_normal_abspath_tpath=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$_G_removedotparts" -e "$_G_collapseslashes" -e "$_G_finalslash"` while :; do # Processed it all yet? if test / = "$func_normal_abspath_tpath"; then # If we ascended to the root using ".." the result may be empty now. if test -z "$func_normal_abspath_result"; then func_normal_abspath_result=/ fi break fi func_normal_abspath_tcomponent=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$_G_pathcar"` func_normal_abspath_tpath=`$ECHO "$func_normal_abspath_tpath" | $SED \ -e "$_G_pathcdr"` # Figure out what to do with it case $func_normal_abspath_tcomponent in "") # Trailing empty path component, ignore it. ;; ..) # Parent dir; strip last assembled component from result. func_dirname "$func_normal_abspath_result" func_normal_abspath_result=$func_dirname_result ;; *) # Actual path component, append it. func_append func_normal_abspath_result "/$func_normal_abspath_tcomponent" ;; esac done # Restore leading double-slash if one was found on entry. func_normal_abspath_result=$func_normal_abspath_altnamespace$func_normal_abspath_result } # func_notquiet ARG... # -------------------- # Echo program name prefixed message only when not in quiet mode. func_notquiet () { $debug_cmd $opt_quiet || func_echo ${1+"$@"} # A bug in bash halts the script if the last line of a function # fails when set -e is in force, so we need another command to # work around that: : } # func_relative_path SRCDIR DSTDIR # -------------------------------- # Set func_relative_path_result to the relative path from SRCDIR to DSTDIR. func_relative_path () { $debug_cmd func_relative_path_result= func_normal_abspath "$1" func_relative_path_tlibdir=$func_normal_abspath_result func_normal_abspath "$2" func_relative_path_tbindir=$func_normal_abspath_result # Ascend the tree starting from libdir while :; do # check if we have found a prefix of bindir case $func_relative_path_tbindir in $func_relative_path_tlibdir) # found an exact match func_relative_path_tcancelled= break ;; $func_relative_path_tlibdir*) # found a matching prefix func_stripname "$func_relative_path_tlibdir" '' "$func_relative_path_tbindir" func_relative_path_tcancelled=$func_stripname_result if test -z "$func_relative_path_result"; then func_relative_path_result=. fi break ;; *) func_dirname $func_relative_path_tlibdir func_relative_path_tlibdir=$func_dirname_result if test -z "$func_relative_path_tlibdir"; then # Have to descend all the way to the root! func_relative_path_result=../$func_relative_path_result func_relative_path_tcancelled=$func_relative_path_tbindir break fi func_relative_path_result=../$func_relative_path_result ;; esac done # Now calculate path; take care to avoid doubling-up slashes. func_stripname '' '/' "$func_relative_path_result" func_relative_path_result=$func_stripname_result func_stripname '/' '/' "$func_relative_path_tcancelled" if test -n "$func_stripname_result"; then func_append func_relative_path_result "/$func_stripname_result" fi # Normalisation. If bindir is libdir, return '.' else relative path. if test -n "$func_relative_path_result"; then func_stripname './' '' "$func_relative_path_result" func_relative_path_result=$func_stripname_result fi test -n "$func_relative_path_result" || func_relative_path_result=. : } # func_quote_for_eval ARG... # -------------------------- # Aesthetically quote ARGs to be evaled later. # This function returns two values: # i) func_quote_for_eval_result # double-quoted, suitable for a subsequent eval # ii) func_quote_for_eval_unquoted_result # has all characters that are still active within double # quotes backslashified. func_quote_for_eval () { $debug_cmd func_quote_for_eval_unquoted_result= func_quote_for_eval_result= while test 0 -lt $#; do case $1 in *[\\\`\"\$]*) _G_unquoted_arg=`printf '%s\n' "$1" |$SED "$sed_quote_subst"` ;; *) _G_unquoted_arg=$1 ;; esac if test -n "$func_quote_for_eval_unquoted_result"; then func_append func_quote_for_eval_unquoted_result " $_G_unquoted_arg" else func_append func_quote_for_eval_unquoted_result "$_G_unquoted_arg" fi case $_G_unquoted_arg in # Double-quote args containing shell metacharacters to delay # word splitting, command substitution and variable expansion # for a subsequent eval. # Many Bourne shells cannot handle close brackets correctly # in scan sets, so we specify it separately. *[\[\~\#\^\&\*\(\)\{\}\|\;\<\>\?\'\ \ ]*|*]*|"") _G_quoted_arg=\"$_G_unquoted_arg\" ;; *) _G_quoted_arg=$_G_unquoted_arg ;; esac if test -n "$func_quote_for_eval_result"; then func_append func_quote_for_eval_result " $_G_quoted_arg" else func_append func_quote_for_eval_result "$_G_quoted_arg" fi shift done } # func_quote_for_expand ARG # ------------------------- # Aesthetically quote ARG to be evaled later; same as above, # but do not quote variable references. func_quote_for_expand () { $debug_cmd case $1 in *[\\\`\"]*) _G_arg=`$ECHO "$1" | $SED \ -e "$sed_double_quote_subst" -e "$sed_double_backslash"` ;; *) _G_arg=$1 ;; esac case $_G_arg in # Double-quote args containing shell metacharacters to delay # word splitting and command substitution for a subsequent eval. # Many Bourne shells cannot handle close brackets correctly # in scan sets, so we specify it separately. *[\[\~\#\^\&\*\(\)\{\}\|\;\<\>\?\'\ \ ]*|*]*|"") _G_arg=\"$_G_arg\" ;; esac func_quote_for_expand_result=$_G_arg } # func_stripname PREFIX SUFFIX NAME # --------------------------------- # strip PREFIX and SUFFIX from NAME, and store in func_stripname_result. # PREFIX and SUFFIX must not contain globbing or regex special # characters, hashes, percent signs, but SUFFIX may contain a leading # dot (in which case that matches only a dot). if test yes = "$_G_HAVE_XSI_OPS"; then eval 'func_stripname () { $debug_cmd # pdksh 5.2.14 does not do ${X%$Y} correctly if both X and Y are # positional parameters, so assign one to ordinary variable first. func_stripname_result=$3 func_stripname_result=${func_stripname_result#"$1"} func_stripname_result=${func_stripname_result%"$2"} }' else func_stripname () { $debug_cmd case $2 in .*) func_stripname_result=`$ECHO "$3" | $SED -e "s%^$1%%" -e "s%\\\\$2\$%%"`;; *) func_stripname_result=`$ECHO "$3" | $SED -e "s%^$1%%" -e "s%$2\$%%"`;; esac } fi # func_show_eval CMD [FAIL_EXP] # ----------------------------- # Unless opt_quiet is true, then output CMD. Then, if opt_dryrun is # not true, evaluate CMD. If the evaluation of CMD fails, and FAIL_EXP # is given, then evaluate it. func_show_eval () { $debug_cmd _G_cmd=$1 _G_fail_exp=${2-':'} func_quote_for_expand "$_G_cmd" eval "func_notquiet $func_quote_for_expand_result" $opt_dry_run || { eval "$_G_cmd" _G_status=$? if test 0 -ne "$_G_status"; then eval "(exit $_G_status); $_G_fail_exp" fi } } # func_show_eval_locale CMD [FAIL_EXP] # ------------------------------------ # Unless opt_quiet is true, then output CMD. Then, if opt_dryrun is # not true, evaluate CMD. If the evaluation of CMD fails, and FAIL_EXP # is given, then evaluate it. Use the saved locale for evaluation. func_show_eval_locale () { $debug_cmd _G_cmd=$1 _G_fail_exp=${2-':'} $opt_quiet || { func_quote_for_expand "$_G_cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || { eval "$_G_user_locale $_G_cmd" _G_status=$? eval "$_G_safe_locale" if test 0 -ne "$_G_status"; then eval "(exit $_G_status); $_G_fail_exp" fi } } # func_tr_sh # ---------- # Turn $1 into a string suitable for a shell variable name. # Result is stored in $func_tr_sh_result. All characters # not in the set a-zA-Z0-9_ are replaced with '_'. Further, # if $1 begins with a digit, a '_' is prepended as well. func_tr_sh () { $debug_cmd case $1 in [0-9]* | *[!a-zA-Z0-9_]*) func_tr_sh_result=`$ECHO "$1" | $SED -e 's/^\([0-9]\)/_\1/' -e 's/[^a-zA-Z0-9_]/_/g'` ;; * ) func_tr_sh_result=$1 ;; esac } # func_verbose ARG... # ------------------- # Echo program name prefixed message in verbose mode only. func_verbose () { $debug_cmd $opt_verbose && func_echo "$*" : } # func_warn_and_continue ARG... # ----------------------------- # Echo program name prefixed warning message to standard error. func_warn_and_continue () { $debug_cmd $require_term_colors func_echo_infix_1 "${tc_red}warning$tc_reset" "$*" >&2 } # func_warning CATEGORY ARG... # ---------------------------- # Echo program name prefixed warning message to standard error. Warning # messages can be filtered according to CATEGORY, where this function # elides messages where CATEGORY is not listed in the global variable # 'opt_warning_types'. func_warning () { $debug_cmd # CATEGORY must be in the warning_categories list! case " $warning_categories " in *" $1 "*) ;; *) func_internal_error "invalid warning category '$1'" ;; esac _G_category=$1 shift case " $opt_warning_types " in *" $_G_category "*) $warning_func ${1+"$@"} ;; esac } # func_sort_ver VER1 VER2 # ----------------------- # 'sort -V' is not generally available. # Note this deviates from the version comparison in automake # in that it treats 1.5 < 1.5.0, and treats 1.4.4a < 1.4-p3a # but this should suffice as we won't be specifying old # version formats or redundant trailing .0 in bootstrap.conf. # If we did want full compatibility then we should probably # use m4_version_compare from autoconf. func_sort_ver () { $debug_cmd printf '%s\n%s\n' "$1" "$2" \ | sort -t. -k 1,1n -k 2,2n -k 3,3n -k 4,4n -k 5,5n -k 6,6n -k 7,7n -k 8,8n -k 9,9n } # func_lt_ver PREV CURR # --------------------- # Return true if PREV and CURR are in the correct order according to # func_sort_ver, otherwise false. Use it like this: # # func_lt_ver "$prev_ver" "$proposed_ver" || func_fatal_error "..." func_lt_ver () { $debug_cmd test "x$1" = x`func_sort_ver "$1" "$2" | $SED 1q` } # Local variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-pattern: "10/scriptversion=%:y-%02m-%02d.%02H; # UTC" # time-stamp-time-zone: "UTC" # End: #! /bin/sh # Set a version string for this script. scriptversion=2014-01-07.03; # UTC # A portable, pluggable option parser for Bourne shell. # Written by Gary V. Vaughan, 2010 # Copyright (C) 2010-2015 Free Software Foundation, Inc. # This is free software; see the source for copying conditions. There is NO # warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. # This program is free software: you can redistribute it and/or modify # it under the terms of the GNU General Public License as published by # the Free Software Foundation, either version 3 of the License, or # (at your option) any later version. # This program is distributed in the hope that it will be useful, # but WITHOUT ANY WARRANTY; without even the implied warranty of # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the # GNU General Public License for more details. # You should have received a copy of the GNU General Public License # along with this program. If not, see . # Please report bugs or propose patches to gary@gnu.org. ## ------ ## ## Usage. ## ## ------ ## # This file is a library for parsing options in your shell scripts along # with assorted other useful supporting features that you can make use # of too. # # For the simplest scripts you might need only: # # #!/bin/sh # . relative/path/to/funclib.sh # . relative/path/to/options-parser # scriptversion=1.0 # func_options ${1+"$@"} # eval set dummy "$func_options_result"; shift # ...rest of your script... # # In order for the '--version' option to work, you will need to have a # suitably formatted comment like the one at the top of this file # starting with '# Written by ' and ending with '# warranty; '. # # For '-h' and '--help' to work, you will also need a one line # description of your script's purpose in a comment directly above the # '# Written by ' line, like the one at the top of this file. # # The default options also support '--debug', which will turn on shell # execution tracing (see the comment above debug_cmd below for another # use), and '--verbose' and the func_verbose function to allow your script # to display verbose messages only when your user has specified # '--verbose'. # # After sourcing this file, you can plug processing for additional # options by amending the variables from the 'Configuration' section # below, and following the instructions in the 'Option parsing' # section further down. ## -------------- ## ## Configuration. ## ## -------------- ## # You should override these variables in your script after sourcing this # file so that they reflect the customisations you have added to the # option parser. # The usage line for option parsing errors and the start of '-h' and # '--help' output messages. You can embed shell variables for delayed # expansion at the time the message is displayed, but you will need to # quote other shell meta-characters carefully to prevent them being # expanded when the contents are evaled. usage='$progpath [OPTION]...' # Short help message in response to '-h' and '--help'. Add to this or # override it after sourcing this library to reflect the full set of # options your script accepts. usage_message="\ --debug enable verbose shell tracing -W, --warnings=CATEGORY report the warnings falling in CATEGORY [all] -v, --verbose verbosely report processing --version print version information and exit -h, --help print short or long help message and exit " # Additional text appended to 'usage_message' in response to '--help'. long_help_message=" Warning categories include: 'all' show all warnings 'none' turn off all the warnings 'error' warnings are treated as fatal errors" # Help message printed before fatal option parsing errors. fatal_help="Try '\$progname --help' for more information." ## ------------------------- ## ## Hook function management. ## ## ------------------------- ## # This section contains functions for adding, removing, and running hooks # to the main code. A hook is just a named list of of function, that can # be run in order later on. # func_hookable FUNC_NAME # ----------------------- # Declare that FUNC_NAME will run hooks added with # 'func_add_hook FUNC_NAME ...'. func_hookable () { $debug_cmd func_append hookable_fns " $1" } # func_add_hook FUNC_NAME HOOK_FUNC # --------------------------------- # Request that FUNC_NAME call HOOK_FUNC before it returns. FUNC_NAME must # first have been declared "hookable" by a call to 'func_hookable'. func_add_hook () { $debug_cmd case " $hookable_fns " in *" $1 "*) ;; *) func_fatal_error "'$1' does not accept hook functions." ;; esac eval func_append ${1}_hooks '" $2"' } # func_remove_hook FUNC_NAME HOOK_FUNC # ------------------------------------ # Remove HOOK_FUNC from the list of functions called by FUNC_NAME. func_remove_hook () { $debug_cmd eval ${1}_hooks='`$ECHO "\$'$1'_hooks" |$SED "s| '$2'||"`' } # func_run_hooks FUNC_NAME [ARG]... # --------------------------------- # Run all hook functions registered to FUNC_NAME. # It is assumed that the list of hook functions contains nothing more # than a whitespace-delimited list of legal shell function names, and # no effort is wasted trying to catch shell meta-characters or preserve # whitespace. func_run_hooks () { $debug_cmd case " $hookable_fns " in *" $1 "*) ;; *) func_fatal_error "'$1' does not support hook funcions.n" ;; esac eval _G_hook_fns=\$$1_hooks; shift for _G_hook in $_G_hook_fns; do eval $_G_hook '"$@"' # store returned options list back into positional # parameters for next 'cmd' execution. eval _G_hook_result=\$${_G_hook}_result eval set dummy "$_G_hook_result"; shift done func_quote_for_eval ${1+"$@"} func_run_hooks_result=$func_quote_for_eval_result } ## --------------- ## ## Option parsing. ## ## --------------- ## # In order to add your own option parsing hooks, you must accept the # full positional parameter list in your hook function, remove any # options that you action, and then pass back the remaining unprocessed # options in '_result', escaped suitably for # 'eval'. Like this: # # my_options_prep () # { # $debug_cmd # # # Extend the existing usage message. # usage_message=$usage_message' # -s, --silent don'\''t print informational messages # ' # # func_quote_for_eval ${1+"$@"} # my_options_prep_result=$func_quote_for_eval_result # } # func_add_hook func_options_prep my_options_prep # # # my_silent_option () # { # $debug_cmd # # # Note that for efficiency, we parse as many options as we can # # recognise in a loop before passing the remainder back to the # # caller on the first unrecognised argument we encounter. # while test $# -gt 0; do # opt=$1; shift # case $opt in # --silent|-s) opt_silent=: ;; # # Separate non-argument short options: # -s*) func_split_short_opt "$_G_opt" # set dummy "$func_split_short_opt_name" \ # "-$func_split_short_opt_arg" ${1+"$@"} # shift # ;; # *) set dummy "$_G_opt" "$*"; shift; break ;; # esac # done # # func_quote_for_eval ${1+"$@"} # my_silent_option_result=$func_quote_for_eval_result # } # func_add_hook func_parse_options my_silent_option # # # my_option_validation () # { # $debug_cmd # # $opt_silent && $opt_verbose && func_fatal_help "\ # '--silent' and '--verbose' options are mutually exclusive." # # func_quote_for_eval ${1+"$@"} # my_option_validation_result=$func_quote_for_eval_result # } # func_add_hook func_validate_options my_option_validation # # You'll alse need to manually amend $usage_message to reflect the extra # options you parse. It's preferable to append if you can, so that # multiple option parsing hooks can be added safely. # func_options [ARG]... # --------------------- # All the functions called inside func_options are hookable. See the # individual implementations for details. func_hookable func_options func_options () { $debug_cmd func_options_prep ${1+"$@"} eval func_parse_options \ ${func_options_prep_result+"$func_options_prep_result"} eval func_validate_options \ ${func_parse_options_result+"$func_parse_options_result"} eval func_run_hooks func_options \ ${func_validate_options_result+"$func_validate_options_result"} # save modified positional parameters for caller func_options_result=$func_run_hooks_result } # func_options_prep [ARG]... # -------------------------- # All initialisations required before starting the option parse loop. # Note that when calling hook functions, we pass through the list of # positional parameters. If a hook function modifies that list, and # needs to propogate that back to rest of this script, then the complete # modified list must be put in 'func_run_hooks_result' before # returning. func_hookable func_options_prep func_options_prep () { $debug_cmd # Option defaults: opt_verbose=false opt_warning_types= func_run_hooks func_options_prep ${1+"$@"} # save modified positional parameters for caller func_options_prep_result=$func_run_hooks_result } # func_parse_options [ARG]... # --------------------------- # The main option parsing loop. func_hookable func_parse_options func_parse_options () { $debug_cmd func_parse_options_result= # this just eases exit handling while test $# -gt 0; do # Defer to hook functions for initial option parsing, so they # get priority in the event of reusing an option name. func_run_hooks func_parse_options ${1+"$@"} # Adjust func_parse_options positional parameters to match eval set dummy "$func_run_hooks_result"; shift # Break out of the loop if we already parsed every option. test $# -gt 0 || break _G_opt=$1 shift case $_G_opt in --debug|-x) debug_cmd='set -x' func_echo "enabling shell trace mode" $debug_cmd ;; --no-warnings|--no-warning|--no-warn) set dummy --warnings none ${1+"$@"} shift ;; --warnings|--warning|-W) test $# = 0 && func_missing_arg $_G_opt && break case " $warning_categories $1" in *" $1 "*) # trailing space prevents matching last $1 above func_append_uniq opt_warning_types " $1" ;; *all) opt_warning_types=$warning_categories ;; *none) opt_warning_types=none warning_func=: ;; *error) opt_warning_types=$warning_categories warning_func=func_fatal_error ;; *) func_fatal_error \ "unsupported warning category: '$1'" ;; esac shift ;; --verbose|-v) opt_verbose=: ;; --version) func_version ;; -\?|-h) func_usage ;; --help) func_help ;; # Separate optargs to long options (plugins may need this): --*=*) func_split_equals "$_G_opt" set dummy "$func_split_equals_lhs" \ "$func_split_equals_rhs" ${1+"$@"} shift ;; # Separate optargs to short options: -W*) func_split_short_opt "$_G_opt" set dummy "$func_split_short_opt_name" \ "$func_split_short_opt_arg" ${1+"$@"} shift ;; # Separate non-argument short options: -\?*|-h*|-v*|-x*) func_split_short_opt "$_G_opt" set dummy "$func_split_short_opt_name" \ "-$func_split_short_opt_arg" ${1+"$@"} shift ;; --) break ;; -*) func_fatal_help "unrecognised option: '$_G_opt'" ;; *) set dummy "$_G_opt" ${1+"$@"}; shift; break ;; esac done # save modified positional parameters for caller func_quote_for_eval ${1+"$@"} func_parse_options_result=$func_quote_for_eval_result } # func_validate_options [ARG]... # ------------------------------ # Perform any sanity checks on option settings and/or unconsumed # arguments. func_hookable func_validate_options func_validate_options () { $debug_cmd # Display all warnings if -W was not given. test -n "$opt_warning_types" || opt_warning_types=" $warning_categories" func_run_hooks func_validate_options ${1+"$@"} # Bail if the options were screwed! $exit_cmd $EXIT_FAILURE # save modified positional parameters for caller func_validate_options_result=$func_run_hooks_result } ## ----------------- ## ## Helper functions. ## ## ----------------- ## # This section contains the helper functions used by the rest of the # hookable option parser framework in ascii-betical order. # func_fatal_help ARG... # ---------------------- # Echo program name prefixed message to standard error, followed by # a help hint, and exit. func_fatal_help () { $debug_cmd eval \$ECHO \""Usage: $usage"\" eval \$ECHO \""$fatal_help"\" func_error ${1+"$@"} exit $EXIT_FAILURE } # func_help # --------- # Echo long help message to standard output and exit. func_help () { $debug_cmd func_usage_message $ECHO "$long_help_message" exit 0 } # func_missing_arg ARGNAME # ------------------------ # Echo program name prefixed message to standard error and set global # exit_cmd. func_missing_arg () { $debug_cmd func_error "Missing argument for '$1'." exit_cmd=exit } # func_split_equals STRING # ------------------------ # Set func_split_equals_lhs and func_split_equals_rhs shell variables after # splitting STRING at the '=' sign. test -z "$_G_HAVE_XSI_OPS" \ && (eval 'x=a/b/c; test 5aa/bb/cc = "${#x}${x%%/*}${x%/*}${x#*/}${x##*/}"') 2>/dev/null \ && _G_HAVE_XSI_OPS=yes if test yes = "$_G_HAVE_XSI_OPS" then # This is an XSI compatible shell, allowing a faster implementation... eval 'func_split_equals () { $debug_cmd func_split_equals_lhs=${1%%=*} func_split_equals_rhs=${1#*=} test "x$func_split_equals_lhs" = "x$1" \ && func_split_equals_rhs= }' else # ...otherwise fall back to using expr, which is often a shell builtin. func_split_equals () { $debug_cmd func_split_equals_lhs=`expr "x$1" : 'x\([^=]*\)'` func_split_equals_rhs= test "x$func_split_equals_lhs" = "x$1" \ || func_split_equals_rhs=`expr "x$1" : 'x[^=]*=\(.*\)$'` } fi #func_split_equals # func_split_short_opt SHORTOPT # ----------------------------- # Set func_split_short_opt_name and func_split_short_opt_arg shell # variables after splitting SHORTOPT after the 2nd character. if test yes = "$_G_HAVE_XSI_OPS" then # This is an XSI compatible shell, allowing a faster implementation... eval 'func_split_short_opt () { $debug_cmd func_split_short_opt_arg=${1#??} func_split_short_opt_name=${1%"$func_split_short_opt_arg"} }' else # ...otherwise fall back to using expr, which is often a shell builtin. func_split_short_opt () { $debug_cmd func_split_short_opt_name=`expr "x$1" : 'x-\(.\)'` func_split_short_opt_arg=`expr "x$1" : 'x-.\(.*\)$'` } fi #func_split_short_opt # func_usage # ---------- # Echo short help message to standard output and exit. func_usage () { $debug_cmd func_usage_message $ECHO "Run '$progname --help |${PAGER-more}' for full usage" exit 0 } # func_usage_message # ------------------ # Echo short help message to standard output. func_usage_message () { $debug_cmd eval \$ECHO \""Usage: $usage"\" echo $SED -n 's|^# || /^Written by/{ x;p;x } h /^Written by/q' < "$progpath" echo eval \$ECHO \""$usage_message"\" } # func_version # ------------ # Echo version message to standard output and exit. func_version () { $debug_cmd printf '%s\n' "$progname $scriptversion" $SED -n ' /(C)/!b go :more /\./!{ N s|\n# | | b more } :go /^# Written by /,/# warranty; / { s|^# || s|^# *$|| s|\((C)\)[ 0-9,-]*[ ,-]\([1-9][0-9]* \)|\1 \2| p } /^# Written by / { s|^# || p } /^warranty; /q' < "$progpath" exit $? } # Local variables: # mode: shell-script # sh-indentation: 2 # eval: (add-hook 'before-save-hook 'time-stamp) # time-stamp-pattern: "10/scriptversion=%:y-%02m-%02d.%02H; # UTC" # time-stamp-time-zone: "UTC" # End: # Set a version string. scriptversion='(GNU libtool) 2.4.6' # func_echo ARG... # ---------------- # Libtool also displays the current mode in messages, so override # funclib.sh func_echo with this custom definition. func_echo () { $debug_cmd _G_message=$* func_echo_IFS=$IFS IFS=$nl for _G_line in $_G_message; do IFS=$func_echo_IFS $ECHO "$progname${opt_mode+: $opt_mode}: $_G_line" done IFS=$func_echo_IFS } # func_warning ARG... # ------------------- # Libtool warnings are not categorized, so override funclib.sh # func_warning with this simpler definition. func_warning () { $debug_cmd $warning_func ${1+"$@"} } ## ---------------- ## ## Options parsing. ## ## ---------------- ## # Hook in the functions to make sure our own options are parsed during # the option parsing loop. usage='$progpath [OPTION]... [MODE-ARG]...' # Short help message in response to '-h'. usage_message="Options: --config show all configuration variables --debug enable verbose shell tracing -n, --dry-run display commands without modifying any files --features display basic configuration information and exit --mode=MODE use operation mode MODE --no-warnings equivalent to '-Wnone' --preserve-dup-deps don't remove duplicate dependency libraries --quiet, --silent don't print informational messages --tag=TAG use configuration variables from tag TAG -v, --verbose print more informational messages than default --version print version information -W, --warnings=CATEGORY report the warnings falling in CATEGORY [all] -h, --help, --help-all print short, long, or detailed help message " # Additional text appended to 'usage_message' in response to '--help'. func_help () { $debug_cmd func_usage_message $ECHO "$long_help_message MODE must be one of the following: clean remove files from the build directory compile compile a source file into a libtool object execute automatically set library path, then run a program finish complete the installation of libtool libraries install install libraries or executables link create a library or an executable uninstall remove libraries from an installed directory MODE-ARGS vary depending on the MODE. When passed as first option, '--mode=MODE' may be abbreviated as 'MODE' or a unique abbreviation of that. Try '$progname --help --mode=MODE' for a more detailed description of MODE. When reporting a bug, please describe a test case to reproduce it and include the following information: host-triplet: $host shell: $SHELL compiler: $LTCC compiler flags: $LTCFLAGS linker: $LD (gnu? $with_gnu_ld) version: $progname (GNU libtool) 2.4.6 automake: `($AUTOMAKE --version) 2>/dev/null |$SED 1q` autoconf: `($AUTOCONF --version) 2>/dev/null |$SED 1q` Report bugs to . GNU libtool home page: . General help using GNU software: ." exit 0 } # func_lo2o OBJECT-NAME # --------------------- # Transform OBJECT-NAME from a '.lo' suffix to the platform specific # object suffix. lo2o=s/\\.lo\$/.$objext/ o2lo=s/\\.$objext\$/.lo/ if test yes = "$_G_HAVE_XSI_OPS"; then eval 'func_lo2o () { case $1 in *.lo) func_lo2o_result=${1%.lo}.$objext ;; * ) func_lo2o_result=$1 ;; esac }' # func_xform LIBOBJ-OR-SOURCE # --------------------------- # Transform LIBOBJ-OR-SOURCE from a '.o' or '.c' (or otherwise) # suffix to a '.lo' libtool-object suffix. eval 'func_xform () { func_xform_result=${1%.*}.lo }' else # ...otherwise fall back to using sed. func_lo2o () { func_lo2o_result=`$ECHO "$1" | $SED "$lo2o"` } func_xform () { func_xform_result=`$ECHO "$1" | $SED 's|\.[^.]*$|.lo|'` } fi # func_fatal_configuration ARG... # ------------------------------- # Echo program name prefixed message to standard error, followed by # a configuration failure hint, and exit. func_fatal_configuration () { func_fatal_error ${1+"$@"} \ "See the $PACKAGE documentation for more information." \ "Fatal configuration error." } # func_config # ----------- # Display the configuration for all the tags in this script. func_config () { re_begincf='^# ### BEGIN LIBTOOL' re_endcf='^# ### END LIBTOOL' # Default configuration. $SED "1,/$re_begincf CONFIG/d;/$re_endcf CONFIG/,\$d" < "$progpath" # Now print the configurations for the tags. for tagname in $taglist; do $SED -n "/$re_begincf TAG CONFIG: $tagname\$/,/$re_endcf TAG CONFIG: $tagname\$/p" < "$progpath" done exit $? } # func_features # ------------- # Display the features supported by this script. func_features () { echo "host: $host" if test yes = "$build_libtool_libs"; then echo "enable shared libraries" else echo "disable shared libraries" fi if test yes = "$build_old_libs"; then echo "enable static libraries" else echo "disable static libraries" fi exit $? } # func_enable_tag TAGNAME # ----------------------- # Verify that TAGNAME is valid, and either flag an error and exit, or # enable the TAGNAME tag. We also add TAGNAME to the global $taglist # variable here. func_enable_tag () { # Global variable: tagname=$1 re_begincf="^# ### BEGIN LIBTOOL TAG CONFIG: $tagname\$" re_endcf="^# ### END LIBTOOL TAG CONFIG: $tagname\$" sed_extractcf=/$re_begincf/,/$re_endcf/p # Validate tagname. case $tagname in *[!-_A-Za-z0-9,/]*) func_fatal_error "invalid tag name: $tagname" ;; esac # Don't test for the "default" C tag, as we know it's # there but not specially marked. case $tagname in CC) ;; *) if $GREP "$re_begincf" "$progpath" >/dev/null 2>&1; then taglist="$taglist $tagname" # Evaluate the configuration. Be careful to quote the path # and the sed script, to avoid splitting on whitespace, but # also don't use non-portable quotes within backquotes within # quotes we have to do it in 2 steps: extractedcf=`$SED -n -e "$sed_extractcf" < "$progpath"` eval "$extractedcf" else func_error "ignoring unknown tag $tagname" fi ;; esac } # func_check_version_match # ------------------------ # Ensure that we are using m4 macros, and libtool script from the same # release of libtool. func_check_version_match () { if test "$package_revision" != "$macro_revision"; then if test "$VERSION" != "$macro_version"; then if test -z "$macro_version"; then cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, but the $progname: definition of this LT_INIT comes from an older release. $progname: You should recreate aclocal.m4 with macros from $PACKAGE $VERSION $progname: and run autoconf again. _LT_EOF else cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, but the $progname: definition of this LT_INIT comes from $PACKAGE $macro_version. $progname: You should recreate aclocal.m4 with macros from $PACKAGE $VERSION $progname: and run autoconf again. _LT_EOF fi else cat >&2 <<_LT_EOF $progname: Version mismatch error. This is $PACKAGE $VERSION, revision $package_revision, $progname: but the definition of this LT_INIT comes from revision $macro_revision. $progname: You should recreate aclocal.m4 with macros from revision $package_revision $progname: of $PACKAGE $VERSION and run autoconf again. _LT_EOF fi exit $EXIT_MISMATCH fi } # libtool_options_prep [ARG]... # ----------------------------- # Preparation for options parsed by libtool. libtool_options_prep () { $debug_mode # Option defaults: opt_config=false opt_dlopen= opt_dry_run=false opt_help=false opt_mode= opt_preserve_dup_deps=false opt_quiet=false nonopt= preserve_args= # Shorthand for --mode=foo, only valid as the first argument case $1 in clean|clea|cle|cl) shift; set dummy --mode clean ${1+"$@"}; shift ;; compile|compil|compi|comp|com|co|c) shift; set dummy --mode compile ${1+"$@"}; shift ;; execute|execut|execu|exec|exe|ex|e) shift; set dummy --mode execute ${1+"$@"}; shift ;; finish|finis|fini|fin|fi|f) shift; set dummy --mode finish ${1+"$@"}; shift ;; install|instal|insta|inst|ins|in|i) shift; set dummy --mode install ${1+"$@"}; shift ;; link|lin|li|l) shift; set dummy --mode link ${1+"$@"}; shift ;; uninstall|uninstal|uninsta|uninst|unins|unin|uni|un|u) shift; set dummy --mode uninstall ${1+"$@"}; shift ;; esac # Pass back the list of options. func_quote_for_eval ${1+"$@"} libtool_options_prep_result=$func_quote_for_eval_result } func_add_hook func_options_prep libtool_options_prep # libtool_parse_options [ARG]... # --------------------------------- # Provide handling for libtool specific options. libtool_parse_options () { $debug_cmd # Perform our own loop to consume as many options as possible in # each iteration. while test $# -gt 0; do _G_opt=$1 shift case $_G_opt in --dry-run|--dryrun|-n) opt_dry_run=: ;; --config) func_config ;; --dlopen|-dlopen) opt_dlopen="${opt_dlopen+$opt_dlopen }$1" shift ;; --preserve-dup-deps) opt_preserve_dup_deps=: ;; --features) func_features ;; --finish) set dummy --mode finish ${1+"$@"}; shift ;; --help) opt_help=: ;; --help-all) opt_help=': help-all' ;; --mode) test $# = 0 && func_missing_arg $_G_opt && break opt_mode=$1 case $1 in # Valid mode arguments: clean|compile|execute|finish|install|link|relink|uninstall) ;; # Catch anything else as an error *) func_error "invalid argument for $_G_opt" exit_cmd=exit break ;; esac shift ;; --no-silent|--no-quiet) opt_quiet=false func_append preserve_args " $_G_opt" ;; --no-warnings|--no-warning|--no-warn) opt_warning=false func_append preserve_args " $_G_opt" ;; --no-verbose) opt_verbose=false func_append preserve_args " $_G_opt" ;; --silent|--quiet) opt_quiet=: opt_verbose=false func_append preserve_args " $_G_opt" ;; --tag) test $# = 0 && func_missing_arg $_G_opt && break opt_tag=$1 func_append preserve_args " $_G_opt $1" func_enable_tag "$1" shift ;; --verbose|-v) opt_quiet=false opt_verbose=: func_append preserve_args " $_G_opt" ;; # An option not handled by this hook function: *) set dummy "$_G_opt" ${1+"$@"}; shift; break ;; esac done # save modified positional parameters for caller func_quote_for_eval ${1+"$@"} libtool_parse_options_result=$func_quote_for_eval_result } func_add_hook func_parse_options libtool_parse_options # libtool_validate_options [ARG]... # --------------------------------- # Perform any sanity checks on option settings and/or unconsumed # arguments. libtool_validate_options () { # save first non-option argument if test 0 -lt $#; then nonopt=$1 shift fi # preserve --debug test : = "$debug_cmd" || func_append preserve_args " --debug" case $host in # Solaris2 added to fix http://debbugs.gnu.org/cgi/bugreport.cgi?bug=16452 # see also: http://gcc.gnu.org/bugzilla/show_bug.cgi?id=59788 *cygwin* | *mingw* | *pw32* | *cegcc* | *solaris2* | *os2*) # don't eliminate duplications in $postdeps and $predeps opt_duplicate_compiler_generated_deps=: ;; *) opt_duplicate_compiler_generated_deps=$opt_preserve_dup_deps ;; esac $opt_help || { # Sanity checks first: func_check_version_match test yes != "$build_libtool_libs" \ && test yes != "$build_old_libs" \ && func_fatal_configuration "not configured to build any kind of library" # Darwin sucks eval std_shrext=\"$shrext_cmds\" # Only execute mode is allowed to have -dlopen flags. if test -n "$opt_dlopen" && test execute != "$opt_mode"; then func_error "unrecognized option '-dlopen'" $ECHO "$help" 1>&2 exit $EXIT_FAILURE fi # Change the help message to a mode-specific one. generic_help=$help help="Try '$progname --help --mode=$opt_mode' for more information." } # Pass back the unparsed argument list func_quote_for_eval ${1+"$@"} libtool_validate_options_result=$func_quote_for_eval_result } func_add_hook func_validate_options libtool_validate_options # Process options as early as possible so that --help and --version # can return quickly. func_options ${1+"$@"} eval set dummy "$func_options_result"; shift ## ----------- ## ## Main. ## ## ----------- ## magic='%%%MAGIC variable%%%' magic_exe='%%%MAGIC EXE variable%%%' # Global variables. extracted_archives= extracted_serial=0 # If this variable is set in any of the actions, the command in it # will be execed at the end. This prevents here-documents from being # left over by shells. exec_cmd= # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF $1 _LTECHO_EOF' } # func_generated_by_libtool # True iff stdin has been generated by Libtool. This function is only # a basic sanity check; it will hardly flush out determined imposters. func_generated_by_libtool_p () { $GREP "^# Generated by .*$PACKAGE" > /dev/null 2>&1 } # func_lalib_p file # True iff FILE is a libtool '.la' library or '.lo' object file. # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_lalib_p () { test -f "$1" && $SED -e 4q "$1" 2>/dev/null | func_generated_by_libtool_p } # func_lalib_unsafe_p file # True iff FILE is a libtool '.la' library or '.lo' object file. # This function implements the same check as func_lalib_p without # resorting to external programs. To this end, it redirects stdin and # closes it afterwards, without saving the original file descriptor. # As a safety measure, use it only where a negative result would be # fatal anyway. Works if 'file' does not exist. func_lalib_unsafe_p () { lalib_p=no if test -f "$1" && test -r "$1" && exec 5<&0 <"$1"; then for lalib_p_l in 1 2 3 4 do read lalib_p_line case $lalib_p_line in \#\ Generated\ by\ *$PACKAGE* ) lalib_p=yes; break;; esac done exec 0<&5 5<&- fi test yes = "$lalib_p" } # func_ltwrapper_script_p file # True iff FILE is a libtool wrapper script # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_script_p () { test -f "$1" && $lt_truncate_bin < "$1" 2>/dev/null | func_generated_by_libtool_p } # func_ltwrapper_executable_p file # True iff FILE is a libtool wrapper executable # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_executable_p () { func_ltwrapper_exec_suffix= case $1 in *.exe) ;; *) func_ltwrapper_exec_suffix=.exe ;; esac $GREP "$magic_exe" "$1$func_ltwrapper_exec_suffix" >/dev/null 2>&1 } # func_ltwrapper_scriptname file # Assumes file is an ltwrapper_executable # uses $file to determine the appropriate filename for a # temporary ltwrapper_script. func_ltwrapper_scriptname () { func_dirname_and_basename "$1" "" "." func_stripname '' '.exe' "$func_basename_result" func_ltwrapper_scriptname_result=$func_dirname_result/$objdir/${func_stripname_result}_ltshwrapper } # func_ltwrapper_p file # True iff FILE is a libtool wrapper script or wrapper executable # This function is only a basic sanity check; it will hardly flush out # determined imposters. func_ltwrapper_p () { func_ltwrapper_script_p "$1" || func_ltwrapper_executable_p "$1" } # func_execute_cmds commands fail_cmd # Execute tilde-delimited COMMANDS. # If FAIL_CMD is given, eval that upon failure. # FAIL_CMD may read-access the current command in variable CMD! func_execute_cmds () { $debug_cmd save_ifs=$IFS; IFS='~' for cmd in $1; do IFS=$sp$nl eval cmd=\"$cmd\" IFS=$save_ifs func_show_eval "$cmd" "${2-:}" done IFS=$save_ifs } # func_source file # Source FILE, adding directory component if necessary. # Note that it is not necessary on cygwin/mingw to append a dot to # FILE even if both FILE and FILE.exe exist: automatic-append-.exe # behavior happens only for exec(3), not for open(2)! Also, sourcing # 'FILE.' does not work on cygwin managed mounts. func_source () { $debug_cmd case $1 in */* | *\\*) . "$1" ;; *) . "./$1" ;; esac } # func_resolve_sysroot PATH # Replace a leading = in PATH with a sysroot. Store the result into # func_resolve_sysroot_result func_resolve_sysroot () { func_resolve_sysroot_result=$1 case $func_resolve_sysroot_result in =*) func_stripname '=' '' "$func_resolve_sysroot_result" func_resolve_sysroot_result=$lt_sysroot$func_stripname_result ;; esac } # func_replace_sysroot PATH # If PATH begins with the sysroot, replace it with = and # store the result into func_replace_sysroot_result. func_replace_sysroot () { case $lt_sysroot:$1 in ?*:"$lt_sysroot"*) func_stripname "$lt_sysroot" '' "$1" func_replace_sysroot_result='='$func_stripname_result ;; *) # Including no sysroot. func_replace_sysroot_result=$1 ;; esac } # func_infer_tag arg # Infer tagged configuration to use if any are available and # if one wasn't chosen via the "--tag" command line option. # Only attempt this if the compiler in the base compile # command doesn't match the default compiler. # arg is usually of the form 'gcc ...' func_infer_tag () { $debug_cmd if test -n "$available_tags" && test -z "$tagname"; then CC_quoted= for arg in $CC; do func_append_quoted CC_quoted "$arg" done CC_expanded=`func_echo_all $CC` CC_quoted_expanded=`func_echo_all $CC_quoted` case $@ in # Blanks in the command may have been stripped by the calling shell, # but not from the CC environment variable when configure was run. " $CC "* | "$CC "* | " $CC_expanded "* | "$CC_expanded "* | \ " $CC_quoted"* | "$CC_quoted "* | " $CC_quoted_expanded "* | "$CC_quoted_expanded "*) ;; # Blanks at the start of $base_compile will cause this to fail # if we don't check for them as well. *) for z in $available_tags; do if $GREP "^# ### BEGIN LIBTOOL TAG CONFIG: $z$" < "$progpath" > /dev/null; then # Evaluate the configuration. eval "`$SED -n -e '/^# ### BEGIN LIBTOOL TAG CONFIG: '$z'$/,/^# ### END LIBTOOL TAG CONFIG: '$z'$/p' < $progpath`" CC_quoted= for arg in $CC; do # Double-quote args containing other shell metacharacters. func_append_quoted CC_quoted "$arg" done CC_expanded=`func_echo_all $CC` CC_quoted_expanded=`func_echo_all $CC_quoted` case "$@ " in " $CC "* | "$CC "* | " $CC_expanded "* | "$CC_expanded "* | \ " $CC_quoted"* | "$CC_quoted "* | " $CC_quoted_expanded "* | "$CC_quoted_expanded "*) # The compiler in the base compile command matches # the one in the tagged configuration. # Assume this is the tagged configuration we want. tagname=$z break ;; esac fi done # If $tagname still isn't set, then no tagged configuration # was found and let the user know that the "--tag" command # line option must be used. if test -z "$tagname"; then func_echo "unable to infer tagged configuration" func_fatal_error "specify a tag with '--tag'" # else # func_verbose "using $tagname tagged configuration" fi ;; esac fi } # func_write_libtool_object output_name pic_name nonpic_name # Create a libtool object file (analogous to a ".la" file), # but don't create it if we're doing a dry run. func_write_libtool_object () { write_libobj=$1 if test yes = "$build_libtool_libs"; then write_lobj=\'$2\' else write_lobj=none fi if test yes = "$build_old_libs"; then write_oldobj=\'$3\' else write_oldobj=none fi $opt_dry_run || { cat >${write_libobj}T </dev/null` if test "$?" -eq 0 && test -n "$func_convert_core_file_wine_to_w32_tmp"; then func_convert_core_file_wine_to_w32_result=`$ECHO "$func_convert_core_file_wine_to_w32_tmp" | $SED -e "$sed_naive_backslashify"` else func_convert_core_file_wine_to_w32_result= fi fi } # end: func_convert_core_file_wine_to_w32 # func_convert_core_path_wine_to_w32 ARG # Helper function used by path conversion functions when $build is *nix, and # $host is mingw, cygwin, or some other w32 environment. Relies on a correctly # configured wine environment available, with the winepath program in $build's # $PATH. Assumes ARG has no leading or trailing path separator characters. # # ARG is path to be converted from $build format to win32. # Result is available in $func_convert_core_path_wine_to_w32_result. # Unconvertible file (directory) names in ARG are skipped; if no directory names # are convertible, then the result may be empty. func_convert_core_path_wine_to_w32 () { $debug_cmd # unfortunately, winepath doesn't convert paths, only file names func_convert_core_path_wine_to_w32_result= if test -n "$1"; then oldIFS=$IFS IFS=: for func_convert_core_path_wine_to_w32_f in $1; do IFS=$oldIFS func_convert_core_file_wine_to_w32 "$func_convert_core_path_wine_to_w32_f" if test -n "$func_convert_core_file_wine_to_w32_result"; then if test -z "$func_convert_core_path_wine_to_w32_result"; then func_convert_core_path_wine_to_w32_result=$func_convert_core_file_wine_to_w32_result else func_append func_convert_core_path_wine_to_w32_result ";$func_convert_core_file_wine_to_w32_result" fi fi done IFS=$oldIFS fi } # end: func_convert_core_path_wine_to_w32 # func_cygpath ARGS... # Wrapper around calling the cygpath program via LT_CYGPATH. This is used when # when (1) $build is *nix and Cygwin is hosted via a wine environment; or (2) # $build is MSYS and $host is Cygwin, or (3) $build is Cygwin. In case (1) or # (2), returns the Cygwin file name or path in func_cygpath_result (input # file name or path is assumed to be in w32 format, as previously converted # from $build's *nix or MSYS format). In case (3), returns the w32 file name # or path in func_cygpath_result (input file name or path is assumed to be in # Cygwin format). Returns an empty string on error. # # ARGS are passed to cygpath, with the last one being the file name or path to # be converted. # # Specify the absolute *nix (or w32) name to cygpath in the LT_CYGPATH # environment variable; do not put it in $PATH. func_cygpath () { $debug_cmd if test -n "$LT_CYGPATH" && test -f "$LT_CYGPATH"; then func_cygpath_result=`$LT_CYGPATH "$@" 2>/dev/null` if test "$?" -ne 0; then # on failure, ensure result is empty func_cygpath_result= fi else func_cygpath_result= func_error "LT_CYGPATH is empty or specifies non-existent file: '$LT_CYGPATH'" fi } #end: func_cygpath # func_convert_core_msys_to_w32 ARG # Convert file name or path ARG from MSYS format to w32 format. Return # result in func_convert_core_msys_to_w32_result. func_convert_core_msys_to_w32 () { $debug_cmd # awkward: cmd appends spaces to result func_convert_core_msys_to_w32_result=`( cmd //c echo "$1" ) 2>/dev/null | $SED -e 's/[ ]*$//' -e "$sed_naive_backslashify"` } #end: func_convert_core_msys_to_w32 # func_convert_file_check ARG1 ARG2 # Verify that ARG1 (a file name in $build format) was converted to $host # format in ARG2. Otherwise, emit an error message, but continue (resetting # func_to_host_file_result to ARG1). func_convert_file_check () { $debug_cmd if test -z "$2" && test -n "$1"; then func_error "Could not determine host file name corresponding to" func_error " '$1'" func_error "Continuing, but uninstalled executables may not work." # Fallback: func_to_host_file_result=$1 fi } # end func_convert_file_check # func_convert_path_check FROM_PATHSEP TO_PATHSEP FROM_PATH TO_PATH # Verify that FROM_PATH (a path in $build format) was converted to $host # format in TO_PATH. Otherwise, emit an error message, but continue, resetting # func_to_host_file_result to a simplistic fallback value (see below). func_convert_path_check () { $debug_cmd if test -z "$4" && test -n "$3"; then func_error "Could not determine the host path corresponding to" func_error " '$3'" func_error "Continuing, but uninstalled executables may not work." # Fallback. This is a deliberately simplistic "conversion" and # should not be "improved". See libtool.info. if test "x$1" != "x$2"; then lt_replace_pathsep_chars="s|$1|$2|g" func_to_host_path_result=`echo "$3" | $SED -e "$lt_replace_pathsep_chars"` else func_to_host_path_result=$3 fi fi } # end func_convert_path_check # func_convert_path_front_back_pathsep FRONTPAT BACKPAT REPL ORIG # Modifies func_to_host_path_result by prepending REPL if ORIG matches FRONTPAT # and appending REPL if ORIG matches BACKPAT. func_convert_path_front_back_pathsep () { $debug_cmd case $4 in $1 ) func_to_host_path_result=$3$func_to_host_path_result ;; esac case $4 in $2 ) func_append func_to_host_path_result "$3" ;; esac } # end func_convert_path_front_back_pathsep ################################################## # $build to $host FILE NAME CONVERSION FUNCTIONS # ################################################## # invoked via '$to_host_file_cmd ARG' # # In each case, ARG is the path to be converted from $build to $host format. # Result will be available in $func_to_host_file_result. # func_to_host_file ARG # Converts the file name ARG from $build format to $host format. Return result # in func_to_host_file_result. func_to_host_file () { $debug_cmd $to_host_file_cmd "$1" } # end func_to_host_file # func_to_tool_file ARG LAZY # converts the file name ARG from $build format to toolchain format. Return # result in func_to_tool_file_result. If the conversion in use is listed # in (the comma separated) LAZY, no conversion takes place. func_to_tool_file () { $debug_cmd case ,$2, in *,"$to_tool_file_cmd",*) func_to_tool_file_result=$1 ;; *) $to_tool_file_cmd "$1" func_to_tool_file_result=$func_to_host_file_result ;; esac } # end func_to_tool_file # func_convert_file_noop ARG # Copy ARG to func_to_host_file_result. func_convert_file_noop () { func_to_host_file_result=$1 } # end func_convert_file_noop # func_convert_file_msys_to_w32 ARG # Convert file name ARG from (mingw) MSYS to (mingw) w32 format; automatic # conversion to w32 is not available inside the cwrapper. Returns result in # func_to_host_file_result. func_convert_file_msys_to_w32 () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then func_convert_core_msys_to_w32 "$1" func_to_host_file_result=$func_convert_core_msys_to_w32_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_msys_to_w32 # func_convert_file_cygwin_to_w32 ARG # Convert file name ARG from Cygwin to w32 format. Returns result in # func_to_host_file_result. func_convert_file_cygwin_to_w32 () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then # because $build is cygwin, we call "the" cygpath in $PATH; no need to use # LT_CYGPATH in this case. func_to_host_file_result=`cygpath -m "$1"` fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_cygwin_to_w32 # func_convert_file_nix_to_w32 ARG # Convert file name ARG from *nix to w32 format. Requires a wine environment # and a working winepath. Returns result in func_to_host_file_result. func_convert_file_nix_to_w32 () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then func_convert_core_file_wine_to_w32 "$1" func_to_host_file_result=$func_convert_core_file_wine_to_w32_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_nix_to_w32 # func_convert_file_msys_to_cygwin ARG # Convert file name ARG from MSYS to Cygwin format. Requires LT_CYGPATH set. # Returns result in func_to_host_file_result. func_convert_file_msys_to_cygwin () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then func_convert_core_msys_to_w32 "$1" func_cygpath -u "$func_convert_core_msys_to_w32_result" func_to_host_file_result=$func_cygpath_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_msys_to_cygwin # func_convert_file_nix_to_cygwin ARG # Convert file name ARG from *nix to Cygwin format. Requires Cygwin installed # in a wine environment, working winepath, and LT_CYGPATH set. Returns result # in func_to_host_file_result. func_convert_file_nix_to_cygwin () { $debug_cmd func_to_host_file_result=$1 if test -n "$1"; then # convert from *nix to w32, then use cygpath to convert from w32 to cygwin. func_convert_core_file_wine_to_w32 "$1" func_cygpath -u "$func_convert_core_file_wine_to_w32_result" func_to_host_file_result=$func_cygpath_result fi func_convert_file_check "$1" "$func_to_host_file_result" } # end func_convert_file_nix_to_cygwin ############################################# # $build to $host PATH CONVERSION FUNCTIONS # ############################################# # invoked via '$to_host_path_cmd ARG' # # In each case, ARG is the path to be converted from $build to $host format. # The result will be available in $func_to_host_path_result. # # Path separators are also converted from $build format to $host format. If # ARG begins or ends with a path separator character, it is preserved (but # converted to $host format) on output. # # All path conversion functions are named using the following convention: # file name conversion function : func_convert_file_X_to_Y () # path conversion function : func_convert_path_X_to_Y () # where, for any given $build/$host combination the 'X_to_Y' value is the # same. If conversion functions are added for new $build/$host combinations, # the two new functions must follow this pattern, or func_init_to_host_path_cmd # will break. # func_init_to_host_path_cmd # Ensures that function "pointer" variable $to_host_path_cmd is set to the # appropriate value, based on the value of $to_host_file_cmd. to_host_path_cmd= func_init_to_host_path_cmd () { $debug_cmd if test -z "$to_host_path_cmd"; then func_stripname 'func_convert_file_' '' "$to_host_file_cmd" to_host_path_cmd=func_convert_path_$func_stripname_result fi } # func_to_host_path ARG # Converts the path ARG from $build format to $host format. Return result # in func_to_host_path_result. func_to_host_path () { $debug_cmd func_init_to_host_path_cmd $to_host_path_cmd "$1" } # end func_to_host_path # func_convert_path_noop ARG # Copy ARG to func_to_host_path_result. func_convert_path_noop () { func_to_host_path_result=$1 } # end func_convert_path_noop # func_convert_path_msys_to_w32 ARG # Convert path ARG from (mingw) MSYS to (mingw) w32 format; automatic # conversion to w32 is not available inside the cwrapper. Returns result in # func_to_host_path_result. func_convert_path_msys_to_w32 () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # Remove leading and trailing path separator characters from ARG. MSYS # behavior is inconsistent here; cygpath turns them into '.;' and ';.'; # and winepath ignores them completely. func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_msys_to_w32 "$func_to_host_path_tmp1" func_to_host_path_result=$func_convert_core_msys_to_w32_result func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_msys_to_w32 # func_convert_path_cygwin_to_w32 ARG # Convert path ARG from Cygwin to w32 format. Returns result in # func_to_host_file_result. func_convert_path_cygwin_to_w32 () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_to_host_path_result=`cygpath -m -p "$func_to_host_path_tmp1"` func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_cygwin_to_w32 # func_convert_path_nix_to_w32 ARG # Convert path ARG from *nix to w32 format. Requires a wine environment and # a working winepath. Returns result in func_to_host_file_result. func_convert_path_nix_to_w32 () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_path_wine_to_w32 "$func_to_host_path_tmp1" func_to_host_path_result=$func_convert_core_path_wine_to_w32_result func_convert_path_check : ";" \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" ";" "$1" fi } # end func_convert_path_nix_to_w32 # func_convert_path_msys_to_cygwin ARG # Convert path ARG from MSYS to Cygwin format. Requires LT_CYGPATH set. # Returns result in func_to_host_file_result. func_convert_path_msys_to_cygwin () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # See func_convert_path_msys_to_w32: func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_msys_to_w32 "$func_to_host_path_tmp1" func_cygpath -u -p "$func_convert_core_msys_to_w32_result" func_to_host_path_result=$func_cygpath_result func_convert_path_check : : \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" : "$1" fi } # end func_convert_path_msys_to_cygwin # func_convert_path_nix_to_cygwin ARG # Convert path ARG from *nix to Cygwin format. Requires Cygwin installed in a # a wine environment, working winepath, and LT_CYGPATH set. Returns result in # func_to_host_file_result. func_convert_path_nix_to_cygwin () { $debug_cmd func_to_host_path_result=$1 if test -n "$1"; then # Remove leading and trailing path separator characters from # ARG. msys behavior is inconsistent here, cygpath turns them # into '.;' and ';.', and winepath ignores them completely. func_stripname : : "$1" func_to_host_path_tmp1=$func_stripname_result func_convert_core_path_wine_to_w32 "$func_to_host_path_tmp1" func_cygpath -u -p "$func_convert_core_path_wine_to_w32_result" func_to_host_path_result=$func_cygpath_result func_convert_path_check : : \ "$func_to_host_path_tmp1" "$func_to_host_path_result" func_convert_path_front_back_pathsep ":*" "*:" : "$1" fi } # end func_convert_path_nix_to_cygwin # func_dll_def_p FILE # True iff FILE is a Windows DLL '.def' file. # Keep in sync with _LT_DLL_DEF_P in libtool.m4 func_dll_def_p () { $debug_cmd func_dll_def_p_tmp=`$SED -n \ -e 's/^[ ]*//' \ -e '/^\(;.*\)*$/d' \ -e 's/^\(EXPORTS\|LIBRARY\)\([ ].*\)*$/DEF/p' \ -e q \ "$1"` test DEF = "$func_dll_def_p_tmp" } # func_mode_compile arg... func_mode_compile () { $debug_cmd # Get the compilation command and the source file. base_compile= srcfile=$nonopt # always keep a non-empty value in "srcfile" suppress_opt=yes suppress_output= arg_mode=normal libobj= later= pie_flag= for arg do case $arg_mode in arg ) # do not "continue". Instead, add this to base_compile lastarg=$arg arg_mode=normal ;; target ) libobj=$arg arg_mode=normal continue ;; normal ) # Accept any command-line options. case $arg in -o) test -n "$libobj" && \ func_fatal_error "you cannot specify '-o' more than once" arg_mode=target continue ;; -pie | -fpie | -fPIE) func_append pie_flag " $arg" continue ;; -shared | -static | -prefer-pic | -prefer-non-pic) func_append later " $arg" continue ;; -no-suppress) suppress_opt=no continue ;; -Xcompiler) arg_mode=arg # the next one goes into the "base_compile" arg list continue # The current "srcfile" will either be retained or ;; # replaced later. I would guess that would be a bug. -Wc,*) func_stripname '-Wc,' '' "$arg" args=$func_stripname_result lastarg= save_ifs=$IFS; IFS=, for arg in $args; do IFS=$save_ifs func_append_quoted lastarg "$arg" done IFS=$save_ifs func_stripname ' ' '' "$lastarg" lastarg=$func_stripname_result # Add the arguments to base_compile. func_append base_compile " $lastarg" continue ;; *) # Accept the current argument as the source file. # The previous "srcfile" becomes the current argument. # lastarg=$srcfile srcfile=$arg ;; esac # case $arg ;; esac # case $arg_mode # Aesthetically quote the previous argument. func_append_quoted base_compile "$lastarg" done # for arg case $arg_mode in arg) func_fatal_error "you must specify an argument for -Xcompile" ;; target) func_fatal_error "you must specify a target with '-o'" ;; *) # Get the name of the library object. test -z "$libobj" && { func_basename "$srcfile" libobj=$func_basename_result } ;; esac # Recognize several different file suffixes. # If the user specifies -o file.o, it is replaced with file.lo case $libobj in *.[cCFSifmso] | \ *.ada | *.adb | *.ads | *.asm | \ *.c++ | *.cc | *.ii | *.class | *.cpp | *.cxx | \ *.[fF][09]? | *.for | *.java | *.go | *.obj | *.sx | *.cu | *.cup) func_xform "$libobj" libobj=$func_xform_result ;; esac case $libobj in *.lo) func_lo2o "$libobj"; obj=$func_lo2o_result ;; *) func_fatal_error "cannot determine name of library object from '$libobj'" ;; esac func_infer_tag $base_compile for arg in $later; do case $arg in -shared) test yes = "$build_libtool_libs" \ || func_fatal_configuration "cannot build a shared library" build_old_libs=no continue ;; -static) build_libtool_libs=no build_old_libs=yes continue ;; -prefer-pic) pic_mode=yes continue ;; -prefer-non-pic) pic_mode=no continue ;; esac done func_quote_for_eval "$libobj" test "X$libobj" != "X$func_quote_for_eval_result" \ && $ECHO "X$libobj" | $GREP '[]~#^*{};<>?"'"'"' &()|`$[]' \ && func_warning "libobj name '$libobj' may not contain shell special characters." func_dirname_and_basename "$obj" "/" "" objname=$func_basename_result xdir=$func_dirname_result lobj=$xdir$objdir/$objname test -z "$base_compile" && \ func_fatal_help "you must specify a compilation command" # Delete any leftover library objects. if test yes = "$build_old_libs"; then removelist="$obj $lobj $libobj ${libobj}T" else removelist="$lobj $libobj ${libobj}T" fi # On Cygwin there's no "real" PIC flag so we must build both object types case $host_os in cygwin* | mingw* | pw32* | os2* | cegcc*) pic_mode=default ;; esac if test no = "$pic_mode" && test pass_all != "$deplibs_check_method"; then # non-PIC code in shared libraries is not supported pic_mode=default fi # Calculate the filename of the output object if compiler does # not support -o with -c if test no = "$compiler_c_o"; then output_obj=`$ECHO "$srcfile" | $SED 's%^.*/%%; s%\.[^.]*$%%'`.$objext lockfile=$output_obj.lock else output_obj= need_locks=no lockfile= fi # Lock this critical section if it is needed # We use this script file to make the link, it avoids creating a new file if test yes = "$need_locks"; then until $opt_dry_run || ln "$progpath" "$lockfile" 2>/dev/null; do func_echo "Waiting for $lockfile to be removed" sleep 2 done elif test warn = "$need_locks"; then if test -f "$lockfile"; then $ECHO "\ *** ERROR, $lockfile exists and contains: `cat $lockfile 2>/dev/null` This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support '-c' and '-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi func_append removelist " $output_obj" $ECHO "$srcfile" > "$lockfile" fi $opt_dry_run || $RM $removelist func_append removelist " $lockfile" trap '$opt_dry_run || $RM $removelist; exit $EXIT_FAILURE' 1 2 15 func_to_tool_file "$srcfile" func_convert_file_msys_to_w32 srcfile=$func_to_tool_file_result func_quote_for_eval "$srcfile" qsrcfile=$func_quote_for_eval_result # Only build a PIC object if we are building libtool libraries. if test yes = "$build_libtool_libs"; then # Without this assignment, base_compile gets emptied. fbsd_hideous_sh_bug=$base_compile if test no != "$pic_mode"; then command="$base_compile $qsrcfile $pic_flag" else # Don't build PIC code command="$base_compile $qsrcfile" fi func_mkdir_p "$xdir$objdir" if test -z "$output_obj"; then # Place PIC objects in $objdir func_append command " -o $lobj" fi func_show_eval_locale "$command" \ 'test -n "$output_obj" && $RM $removelist; exit $EXIT_FAILURE' if test warn = "$need_locks" && test "X`cat $lockfile 2>/dev/null`" != "X$srcfile"; then $ECHO "\ *** ERROR, $lockfile contains: `cat $lockfile 2>/dev/null` but it should contain: $srcfile This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support '-c' and '-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi # Just move the object if needed, then go on to compile the next one if test -n "$output_obj" && test "X$output_obj" != "X$lobj"; then func_show_eval '$MV "$output_obj" "$lobj"' \ 'error=$?; $opt_dry_run || $RM $removelist; exit $error' fi # Allow error messages only from the first compilation. if test yes = "$suppress_opt"; then suppress_output=' >/dev/null 2>&1' fi fi # Only build a position-dependent object if we build old libraries. if test yes = "$build_old_libs"; then if test yes != "$pic_mode"; then # Don't build PIC code command="$base_compile $qsrcfile$pie_flag" else command="$base_compile $qsrcfile $pic_flag" fi if test yes = "$compiler_c_o"; then func_append command " -o $obj" fi # Suppress compiler output if we already did a PIC compilation. func_append command "$suppress_output" func_show_eval_locale "$command" \ '$opt_dry_run || $RM $removelist; exit $EXIT_FAILURE' if test warn = "$need_locks" && test "X`cat $lockfile 2>/dev/null`" != "X$srcfile"; then $ECHO "\ *** ERROR, $lockfile contains: `cat $lockfile 2>/dev/null` but it should contain: $srcfile This indicates that another process is trying to use the same temporary object file, and libtool could not work around it because your compiler does not support '-c' and '-o' together. If you repeat this compilation, it may succeed, by chance, but you had better avoid parallel builds (make -j) in this platform, or get a better compiler." $opt_dry_run || $RM $removelist exit $EXIT_FAILURE fi # Just move the object if needed if test -n "$output_obj" && test "X$output_obj" != "X$obj"; then func_show_eval '$MV "$output_obj" "$obj"' \ 'error=$?; $opt_dry_run || $RM $removelist; exit $error' fi fi $opt_dry_run || { func_write_libtool_object "$libobj" "$objdir/$objname" "$objname" # Unlock the critical section if it was locked if test no != "$need_locks"; then removelist=$lockfile $RM "$lockfile" fi } exit $EXIT_SUCCESS } $opt_help || { test compile = "$opt_mode" && func_mode_compile ${1+"$@"} } func_mode_help () { # We need to display help for each of the modes. case $opt_mode in "") # Generic help is extracted from the usage comments # at the start of this file. func_help ;; clean) $ECHO \ "Usage: $progname [OPTION]... --mode=clean RM [RM-OPTION]... FILE... Remove files from the build directory. RM is the name of the program to use to delete files associated with each FILE (typically '/bin/rm'). RM-OPTIONS are options (such as '-f') to be passed to RM. If FILE is a libtool library, object or program, all the files associated with it are deleted. Otherwise, only FILE itself is deleted using RM." ;; compile) $ECHO \ "Usage: $progname [OPTION]... --mode=compile COMPILE-COMMAND... SOURCEFILE Compile a source file into a libtool library object. This mode accepts the following additional options: -o OUTPUT-FILE set the output file name to OUTPUT-FILE -no-suppress do not suppress compiler output for multiple passes -prefer-pic try to build PIC objects only -prefer-non-pic try to build non-PIC objects only -shared do not build a '.o' file suitable for static linking -static only build a '.o' file suitable for static linking -Wc,FLAG pass FLAG directly to the compiler COMPILE-COMMAND is a command to be used in creating a 'standard' object file from the given SOURCEFILE. The output file name is determined by removing the directory component from SOURCEFILE, then substituting the C source code suffix '.c' with the library object suffix, '.lo'." ;; execute) $ECHO \ "Usage: $progname [OPTION]... --mode=execute COMMAND [ARGS]... Automatically set library path, then run a program. This mode accepts the following additional options: -dlopen FILE add the directory containing FILE to the library path This mode sets the library path environment variable according to '-dlopen' flags. If any of the ARGS are libtool executable wrappers, then they are translated into their corresponding uninstalled binary, and any of their required library directories are added to the library path. Then, COMMAND is executed, with ARGS as arguments." ;; finish) $ECHO \ "Usage: $progname [OPTION]... --mode=finish [LIBDIR]... Complete the installation of libtool libraries. Each LIBDIR is a directory that contains libtool libraries. The commands that this mode executes may require superuser privileges. Use the '--dry-run' option if you just want to see what would be executed." ;; install) $ECHO \ "Usage: $progname [OPTION]... --mode=install INSTALL-COMMAND... Install executables or libraries. INSTALL-COMMAND is the installation command. The first component should be either the 'install' or 'cp' program. The following components of INSTALL-COMMAND are treated specially: -inst-prefix-dir PREFIX-DIR Use PREFIX-DIR as a staging area for installation The rest of the components are interpreted as arguments to that command (only BSD-compatible install options are recognized)." ;; link) $ECHO \ "Usage: $progname [OPTION]... --mode=link LINK-COMMAND... Link object files or libraries together to form another library, or to create an executable program. LINK-COMMAND is a command using the C compiler that you would use to create a program from several object files. The following components of LINK-COMMAND are treated specially: -all-static do not do any dynamic linking at all -avoid-version do not add a version suffix if possible -bindir BINDIR specify path to binaries directory (for systems where libraries must be found in the PATH setting at runtime) -dlopen FILE '-dlpreopen' FILE if it cannot be dlopened at runtime -dlpreopen FILE link in FILE and add its symbols to lt_preloaded_symbols -export-dynamic allow symbols from OUTPUT-FILE to be resolved with dlsym(3) -export-symbols SYMFILE try to export only the symbols listed in SYMFILE -export-symbols-regex REGEX try to export only the symbols matching REGEX -LLIBDIR search LIBDIR for required installed libraries -lNAME OUTPUT-FILE requires the installed library libNAME -module build a library that can dlopened -no-fast-install disable the fast-install mode -no-install link a not-installable executable -no-undefined declare that a library does not refer to external symbols -o OUTPUT-FILE create OUTPUT-FILE from the specified objects -objectlist FILE use a list of object files found in FILE to specify objects -os2dllname NAME force a short DLL name on OS/2 (no effect on other OSes) -precious-files-regex REGEX don't remove output files matching REGEX -release RELEASE specify package release information -rpath LIBDIR the created library will eventually be installed in LIBDIR -R[ ]LIBDIR add LIBDIR to the runtime path of programs and libraries -shared only do dynamic linking of libtool libraries -shrext SUFFIX override the standard shared library file extension -static do not do any dynamic linking of uninstalled libtool libraries -static-libtool-libs do not do any dynamic linking of libtool libraries -version-info CURRENT[:REVISION[:AGE]] specify library version info [each variable defaults to 0] -weak LIBNAME declare that the target provides the LIBNAME interface -Wc,FLAG -Xcompiler FLAG pass linker-specific FLAG directly to the compiler -Wl,FLAG -Xlinker FLAG pass linker-specific FLAG directly to the linker -XCClinker FLAG pass link-specific FLAG to the compiler driver (CC) All other options (arguments beginning with '-') are ignored. Every other argument is treated as a filename. Files ending in '.la' are treated as uninstalled libtool libraries, other files are standard or library object files. If the OUTPUT-FILE ends in '.la', then a libtool library is created, only library objects ('.lo' files) may be specified, and '-rpath' is required, except when creating a convenience library. If OUTPUT-FILE ends in '.a' or '.lib', then a standard library is created using 'ar' and 'ranlib', or on Windows using 'lib'. If OUTPUT-FILE ends in '.lo' or '.$objext', then a reloadable object file is created, otherwise an executable program is created." ;; uninstall) $ECHO \ "Usage: $progname [OPTION]... --mode=uninstall RM [RM-OPTION]... FILE... Remove libraries from an installation directory. RM is the name of the program to use to delete files associated with each FILE (typically '/bin/rm'). RM-OPTIONS are options (such as '-f') to be passed to RM. If FILE is a libtool library, all the files associated with it are deleted. Otherwise, only FILE itself is deleted using RM." ;; *) func_fatal_help "invalid operation mode '$opt_mode'" ;; esac echo $ECHO "Try '$progname --help' for more information about other modes." } # Now that we've collected a possible --mode arg, show help if necessary if $opt_help; then if test : = "$opt_help"; then func_mode_help else { func_help noexit for opt_mode in compile link execute install finish uninstall clean; do func_mode_help done } | $SED -n '1p; 2,$s/^Usage:/ or: /p' { func_help noexit for opt_mode in compile link execute install finish uninstall clean; do echo func_mode_help done } | $SED '1d /^When reporting/,/^Report/{ H d } $x /information about other modes/d /more detailed .*MODE/d s/^Usage:.*--mode=\([^ ]*\) .*/Description of \1 mode:/' fi exit $? fi # func_mode_execute arg... func_mode_execute () { $debug_cmd # The first argument is the command name. cmd=$nonopt test -z "$cmd" && \ func_fatal_help "you must specify a COMMAND" # Handle -dlopen flags immediately. for file in $opt_dlopen; do test -f "$file" \ || func_fatal_help "'$file' is not a file" dir= case $file in *.la) func_resolve_sysroot "$file" file=$func_resolve_sysroot_result # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$file" \ || func_fatal_help "'$lib' is not a valid libtool archive" # Read the libtool library. dlname= library_names= func_source "$file" # Skip this library if it cannot be dlopened. if test -z "$dlname"; then # Warn if it was a shared library. test -n "$library_names" && \ func_warning "'$file' was not linked with '-export-dynamic'" continue fi func_dirname "$file" "" "." dir=$func_dirname_result if test -f "$dir/$objdir/$dlname"; then func_append dir "/$objdir" else if test ! -f "$dir/$dlname"; then func_fatal_error "cannot find '$dlname' in '$dir' or '$dir/$objdir'" fi fi ;; *.lo) # Just add the directory containing the .lo file. func_dirname "$file" "" "." dir=$func_dirname_result ;; *) func_warning "'-dlopen' is ignored for non-libtool libraries and objects" continue ;; esac # Get the absolute pathname. absdir=`cd "$dir" && pwd` test -n "$absdir" && dir=$absdir # Now add the directory to shlibpath_var. if eval "test -z \"\$$shlibpath_var\""; then eval "$shlibpath_var=\"\$dir\"" else eval "$shlibpath_var=\"\$dir:\$$shlibpath_var\"" fi done # This variable tells wrapper scripts just to set shlibpath_var # rather than running their programs. libtool_execute_magic=$magic # Check if any of the arguments is a wrapper script. args= for file do case $file in -* | *.la | *.lo ) ;; *) # Do a test to see if this is really a libtool program. if func_ltwrapper_script_p "$file"; then func_source "$file" # Transform arg to wrapped name. file=$progdir/$program elif func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" func_source "$func_ltwrapper_scriptname_result" # Transform arg to wrapped name. file=$progdir/$program fi ;; esac # Quote arguments (to preserve shell metacharacters). func_append_quoted args "$file" done if $opt_dry_run; then # Display what would be done. if test -n "$shlibpath_var"; then eval "\$ECHO \"\$shlibpath_var=\$$shlibpath_var\"" echo "export $shlibpath_var" fi $ECHO "$cmd$args" exit $EXIT_SUCCESS else if test -n "$shlibpath_var"; then # Export the shlibpath_var. eval "export $shlibpath_var" fi # Restore saved environment variables for lt_var in LANG LANGUAGE LC_ALL LC_CTYPE LC_COLLATE LC_MESSAGES do eval "if test \"\${save_$lt_var+set}\" = set; then $lt_var=\$save_$lt_var; export $lt_var else $lt_unset $lt_var fi" done # Now prepare to actually exec the command. exec_cmd=\$cmd$args fi } test execute = "$opt_mode" && func_mode_execute ${1+"$@"} # func_mode_finish arg... func_mode_finish () { $debug_cmd libs= libdirs= admincmds= for opt in "$nonopt" ${1+"$@"} do if test -d "$opt"; then func_append libdirs " $opt" elif test -f "$opt"; then if func_lalib_unsafe_p "$opt"; then func_append libs " $opt" else func_warning "'$opt' is not a valid libtool archive" fi else func_fatal_error "invalid argument '$opt'" fi done if test -n "$libs"; then if test -n "$lt_sysroot"; then sysroot_regex=`$ECHO "$lt_sysroot" | $SED "$sed_make_literal_regex"` sysroot_cmd="s/\([ ']\)$sysroot_regex/\1/g;" else sysroot_cmd= fi # Remove sysroot references if $opt_dry_run; then for lib in $libs; do echo "removing references to $lt_sysroot and '=' prefixes from $lib" done else tmpdir=`func_mktempdir` for lib in $libs; do $SED -e "$sysroot_cmd s/\([ ']-[LR]\)=/\1/g; s/\([ ']\)=/\1/g" $lib \ > $tmpdir/tmp-la mv -f $tmpdir/tmp-la $lib done ${RM}r "$tmpdir" fi fi if test -n "$finish_cmds$finish_eval" && test -n "$libdirs"; then for libdir in $libdirs; do if test -n "$finish_cmds"; then # Do each command in the finish commands. func_execute_cmds "$finish_cmds" 'admincmds="$admincmds '"$cmd"'"' fi if test -n "$finish_eval"; then # Do the single finish_eval. eval cmds=\"$finish_eval\" $opt_dry_run || eval "$cmds" || func_append admincmds " $cmds" fi done fi # Exit here if they wanted silent mode. $opt_quiet && exit $EXIT_SUCCESS if test -n "$finish_cmds$finish_eval" && test -n "$libdirs"; then echo "----------------------------------------------------------------------" echo "Libraries have been installed in:" for libdir in $libdirs; do $ECHO " $libdir" done echo echo "If you ever happen to want to link against installed libraries" echo "in a given directory, LIBDIR, you must either use libtool, and" echo "specify the full pathname of the library, or use the '-LLIBDIR'" echo "flag during linking and do at least one of the following:" if test -n "$shlibpath_var"; then echo " - add LIBDIR to the '$shlibpath_var' environment variable" echo " during execution" fi if test -n "$runpath_var"; then echo " - add LIBDIR to the '$runpath_var' environment variable" echo " during linking" fi if test -n "$hardcode_libdir_flag_spec"; then libdir=LIBDIR eval flag=\"$hardcode_libdir_flag_spec\" $ECHO " - use the '$flag' linker flag" fi if test -n "$admincmds"; then $ECHO " - have your system administrator run these commands:$admincmds" fi if test -f /etc/ld.so.conf; then echo " - have your system administrator add LIBDIR to '/etc/ld.so.conf'" fi echo echo "See any operating system documentation about shared libraries for" case $host in solaris2.[6789]|solaris2.1[0-9]) echo "more information, such as the ld(1), crle(1) and ld.so(8) manual" echo "pages." ;; *) echo "more information, such as the ld(1) and ld.so(8) manual pages." ;; esac echo "----------------------------------------------------------------------" fi exit $EXIT_SUCCESS } test finish = "$opt_mode" && func_mode_finish ${1+"$@"} # func_mode_install arg... func_mode_install () { $debug_cmd # There may be an optional sh(1) argument at the beginning of # install_prog (especially on Windows NT). if test "$SHELL" = "$nonopt" || test /bin/sh = "$nonopt" || # Allow the use of GNU shtool's install command. case $nonopt in *shtool*) :;; *) false;; esac then # Aesthetically quote it. func_quote_for_eval "$nonopt" install_prog="$func_quote_for_eval_result " arg=$1 shift else install_prog= arg=$nonopt fi # The real first argument should be the name of the installation program. # Aesthetically quote it. func_quote_for_eval "$arg" func_append install_prog "$func_quote_for_eval_result" install_shared_prog=$install_prog case " $install_prog " in *[\\\ /]cp\ *) install_cp=: ;; *) install_cp=false ;; esac # We need to accept at least all the BSD install flags. dest= files= opts= prev= install_type= isdir=false stripme= no_mode=: for arg do arg2= if test -n "$dest"; then func_append files " $dest" dest=$arg continue fi case $arg in -d) isdir=: ;; -f) if $install_cp; then :; else prev=$arg fi ;; -g | -m | -o) prev=$arg ;; -s) stripme=" -s" continue ;; -*) ;; *) # If the previous option needed an argument, then skip it. if test -n "$prev"; then if test X-m = "X$prev" && test -n "$install_override_mode"; then arg2=$install_override_mode no_mode=false fi prev= else dest=$arg continue fi ;; esac # Aesthetically quote the argument. func_quote_for_eval "$arg" func_append install_prog " $func_quote_for_eval_result" if test -n "$arg2"; then func_quote_for_eval "$arg2" fi func_append install_shared_prog " $func_quote_for_eval_result" done test -z "$install_prog" && \ func_fatal_help "you must specify an install program" test -n "$prev" && \ func_fatal_help "the '$prev' option requires an argument" if test -n "$install_override_mode" && $no_mode; then if $install_cp; then :; else func_quote_for_eval "$install_override_mode" func_append install_shared_prog " -m $func_quote_for_eval_result" fi fi if test -z "$files"; then if test -z "$dest"; then func_fatal_help "no file or destination specified" else func_fatal_help "you must specify a destination" fi fi # Strip any trailing slash from the destination. func_stripname '' '/' "$dest" dest=$func_stripname_result # Check to see that the destination is a directory. test -d "$dest" && isdir=: if $isdir; then destdir=$dest destname= else func_dirname_and_basename "$dest" "" "." destdir=$func_dirname_result destname=$func_basename_result # Not a directory, so check to see that there is only one file specified. set dummy $files; shift test "$#" -gt 1 && \ func_fatal_help "'$dest' is not a directory" fi case $destdir in [\\/]* | [A-Za-z]:[\\/]*) ;; *) for file in $files; do case $file in *.lo) ;; *) func_fatal_help "'$destdir' must be an absolute directory name" ;; esac done ;; esac # This variable tells wrapper scripts just to set variables rather # than running their programs. libtool_install_magic=$magic staticlibs= future_libdirs= current_libdirs= for file in $files; do # Do each installation. case $file in *.$libext) # Do the static libraries later. func_append staticlibs " $file" ;; *.la) func_resolve_sysroot "$file" file=$func_resolve_sysroot_result # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$file" \ || func_fatal_help "'$file' is not a valid libtool archive" library_names= old_library= relink_command= func_source "$file" # Add the libdir to current_libdirs if it is the destination. if test "X$destdir" = "X$libdir"; then case "$current_libdirs " in *" $libdir "*) ;; *) func_append current_libdirs " $libdir" ;; esac else # Note the libdir as a future libdir. case "$future_libdirs " in *" $libdir "*) ;; *) func_append future_libdirs " $libdir" ;; esac fi func_dirname "$file" "/" "" dir=$func_dirname_result func_append dir "$objdir" if test -n "$relink_command"; then # Determine the prefix the user has applied to our future dir. inst_prefix_dir=`$ECHO "$destdir" | $SED -e "s%$libdir\$%%"` # Don't allow the user to place us outside of our expected # location b/c this prevents finding dependent libraries that # are installed to the same prefix. # At present, this check doesn't affect windows .dll's that # are installed into $libdir/../bin (currently, that works fine) # but it's something to keep an eye on. test "$inst_prefix_dir" = "$destdir" && \ func_fatal_error "error: cannot install '$file' to a directory not ending in $libdir" if test -n "$inst_prefix_dir"; then # Stick the inst_prefix_dir data into the link command. relink_command=`$ECHO "$relink_command" | $SED "s%@inst_prefix_dir@%-inst-prefix-dir $inst_prefix_dir%"` else relink_command=`$ECHO "$relink_command" | $SED "s%@inst_prefix_dir@%%"` fi func_warning "relinking '$file'" func_show_eval "$relink_command" \ 'func_fatal_error "error: relink '\''$file'\'' with the above command before installing it"' fi # See the names of the shared library. set dummy $library_names; shift if test -n "$1"; then realname=$1 shift srcname=$realname test -n "$relink_command" && srcname=${realname}T # Install the shared library and build the symlinks. func_show_eval "$install_shared_prog $dir/$srcname $destdir/$realname" \ 'exit $?' tstripme=$stripme case $host_os in cygwin* | mingw* | pw32* | cegcc*) case $realname in *.dll.a) tstripme= ;; esac ;; os2*) case $realname in *_dll.a) tstripme= ;; esac ;; esac if test -n "$tstripme" && test -n "$striplib"; then func_show_eval "$striplib $destdir/$realname" 'exit $?' fi if test "$#" -gt 0; then # Delete the old symlinks, and create new ones. # Try 'ln -sf' first, because the 'ln' binary might depend on # the symlink we replace! Solaris /bin/ln does not understand -f, # so we also need to try rm && ln -s. for linkname do test "$linkname" != "$realname" \ && func_show_eval "(cd $destdir && { $LN_S -f $realname $linkname || { $RM $linkname && $LN_S $realname $linkname; }; })" done fi # Do each command in the postinstall commands. lib=$destdir/$realname func_execute_cmds "$postinstall_cmds" 'exit $?' fi # Install the pseudo-library for information purposes. func_basename "$file" name=$func_basename_result instname=$dir/${name}i func_show_eval "$install_prog $instname $destdir/$name" 'exit $?' # Maybe install the static library, too. test -n "$old_library" && func_append staticlibs " $dir/$old_library" ;; *.lo) # Install (i.e. copy) a libtool object. # Figure out destination file name, if it wasn't already specified. if test -n "$destname"; then destfile=$destdir/$destname else func_basename "$file" destfile=$func_basename_result destfile=$destdir/$destfile fi # Deduce the name of the destination old-style object file. case $destfile in *.lo) func_lo2o "$destfile" staticdest=$func_lo2o_result ;; *.$objext) staticdest=$destfile destfile= ;; *) func_fatal_help "cannot copy a libtool object to '$destfile'" ;; esac # Install the libtool object if requested. test -n "$destfile" && \ func_show_eval "$install_prog $file $destfile" 'exit $?' # Install the old object if enabled. if test yes = "$build_old_libs"; then # Deduce the name of the old-style object file. func_lo2o "$file" staticobj=$func_lo2o_result func_show_eval "$install_prog \$staticobj \$staticdest" 'exit $?' fi exit $EXIT_SUCCESS ;; *) # Figure out destination file name, if it wasn't already specified. if test -n "$destname"; then destfile=$destdir/$destname else func_basename "$file" destfile=$func_basename_result destfile=$destdir/$destfile fi # If the file is missing, and there is a .exe on the end, strip it # because it is most likely a libtool script we actually want to # install stripped_ext= case $file in *.exe) if test ! -f "$file"; then func_stripname '' '.exe' "$file" file=$func_stripname_result stripped_ext=.exe fi ;; esac # Do a test to see if this is really a libtool program. case $host in *cygwin* | *mingw*) if func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" wrapper=$func_ltwrapper_scriptname_result else func_stripname '' '.exe' "$file" wrapper=$func_stripname_result fi ;; *) wrapper=$file ;; esac if func_ltwrapper_script_p "$wrapper"; then notinst_deplibs= relink_command= func_source "$wrapper" # Check the variables that should have been set. test -z "$generated_by_libtool_version" && \ func_fatal_error "invalid libtool wrapper script '$wrapper'" finalize=: for lib in $notinst_deplibs; do # Check to see that each library is installed. libdir= if test -f "$lib"; then func_source "$lib" fi libfile=$libdir/`$ECHO "$lib" | $SED 's%^.*/%%g'` if test -n "$libdir" && test ! -f "$libfile"; then func_warning "'$lib' has not been installed in '$libdir'" finalize=false fi done relink_command= func_source "$wrapper" outputname= if test no = "$fast_install" && test -n "$relink_command"; then $opt_dry_run || { if $finalize; then tmpdir=`func_mktempdir` func_basename "$file$stripped_ext" file=$func_basename_result outputname=$tmpdir/$file # Replace the output file specification. relink_command=`$ECHO "$relink_command" | $SED 's%@OUTPUT@%'"$outputname"'%g'` $opt_quiet || { func_quote_for_expand "$relink_command" eval "func_echo $func_quote_for_expand_result" } if eval "$relink_command"; then : else func_error "error: relink '$file' with the above command before installing it" $opt_dry_run || ${RM}r "$tmpdir" continue fi file=$outputname else func_warning "cannot relink '$file'" fi } else # Install the binary that we compiled earlier. file=`$ECHO "$file$stripped_ext" | $SED "s%\([^/]*\)$%$objdir/\1%"` fi fi # remove .exe since cygwin /usr/bin/install will append another # one anyway case $install_prog,$host in */usr/bin/install*,*cygwin*) case $file:$destfile in *.exe:*.exe) # this is ok ;; *.exe:*) destfile=$destfile.exe ;; *:*.exe) func_stripname '' '.exe' "$destfile" destfile=$func_stripname_result ;; esac ;; esac func_show_eval "$install_prog\$stripme \$file \$destfile" 'exit $?' $opt_dry_run || if test -n "$outputname"; then ${RM}r "$tmpdir" fi ;; esac done for file in $staticlibs; do func_basename "$file" name=$func_basename_result # Set up the ranlib parameters. oldlib=$destdir/$name func_to_tool_file "$oldlib" func_convert_file_msys_to_w32 tool_oldlib=$func_to_tool_file_result func_show_eval "$install_prog \$file \$oldlib" 'exit $?' if test -n "$stripme" && test -n "$old_striplib"; then func_show_eval "$old_striplib $tool_oldlib" 'exit $?' fi # Do each command in the postinstall commands. func_execute_cmds "$old_postinstall_cmds" 'exit $?' done test -n "$future_libdirs" && \ func_warning "remember to run '$progname --finish$future_libdirs'" if test -n "$current_libdirs"; then # Maybe just do a dry run. $opt_dry_run && current_libdirs=" -n$current_libdirs" exec_cmd='$SHELL "$progpath" $preserve_args --finish$current_libdirs' else exit $EXIT_SUCCESS fi } test install = "$opt_mode" && func_mode_install ${1+"$@"} # func_generate_dlsyms outputname originator pic_p # Extract symbols from dlprefiles and create ${outputname}S.o with # a dlpreopen symbol table. func_generate_dlsyms () { $debug_cmd my_outputname=$1 my_originator=$2 my_pic_p=${3-false} my_prefix=`$ECHO "$my_originator" | $SED 's%[^a-zA-Z0-9]%_%g'` my_dlsyms= if test -n "$dlfiles$dlprefiles" || test no != "$dlself"; then if test -n "$NM" && test -n "$global_symbol_pipe"; then my_dlsyms=${my_outputname}S.c else func_error "not configured to extract global symbols from dlpreopened files" fi fi if test -n "$my_dlsyms"; then case $my_dlsyms in "") ;; *.c) # Discover the nlist of each of the dlfiles. nlist=$output_objdir/$my_outputname.nm func_show_eval "$RM $nlist ${nlist}S ${nlist}T" # Parse the name list into a source file. func_verbose "creating $output_objdir/$my_dlsyms" $opt_dry_run || $ECHO > "$output_objdir/$my_dlsyms" "\ /* $my_dlsyms - symbol resolution table for '$my_outputname' dlsym emulation. */ /* Generated by $PROGRAM (GNU $PACKAGE) $VERSION */ #ifdef __cplusplus extern \"C\" { #endif #if defined __GNUC__ && (((__GNUC__ == 4) && (__GNUC_MINOR__ >= 4)) || (__GNUC__ > 4)) #pragma GCC diagnostic ignored \"-Wstrict-prototypes\" #endif /* Keep this code in sync between libtool.m4, ltmain, lt_system.h, and tests. */ #if defined _WIN32 || defined __CYGWIN__ || defined _WIN32_WCE /* DATA imports from DLLs on WIN32 can't be const, because runtime relocations are performed -- see ld's documentation on pseudo-relocs. */ # define LT_DLSYM_CONST #elif defined __osf__ /* This system does not cope well with relocations in const data. */ # define LT_DLSYM_CONST #else # define LT_DLSYM_CONST const #endif #define STREQ(s1, s2) (strcmp ((s1), (s2)) == 0) /* External symbol declarations for the compiler. */\ " if test yes = "$dlself"; then func_verbose "generating symbol list for '$output'" $opt_dry_run || echo ': @PROGRAM@ ' > "$nlist" # Add our own program objects to the symbol list. progfiles=`$ECHO "$objs$old_deplibs" | $SP2NL | $SED "$lo2o" | $NL2SP` for progfile in $progfiles; do func_to_tool_file "$progfile" func_convert_file_msys_to_w32 func_verbose "extracting global C symbols from '$func_to_tool_file_result'" $opt_dry_run || eval "$NM $func_to_tool_file_result | $global_symbol_pipe >> '$nlist'" done if test -n "$exclude_expsyms"; then $opt_dry_run || { eval '$EGREP -v " ($exclude_expsyms)$" "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' } fi if test -n "$export_symbols_regex"; then $opt_dry_run || { eval '$EGREP -e "$export_symbols_regex" "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' } fi # Prepare the list of exported symbols if test -z "$export_symbols"; then export_symbols=$output_objdir/$outputname.exp $opt_dry_run || { $RM $export_symbols eval "$SED -n -e '/^: @PROGRAM@ $/d' -e 's/^.* \(.*\)$/\1/p' "'< "$nlist" > "$export_symbols"' case $host in *cygwin* | *mingw* | *cegcc* ) eval "echo EXPORTS "'> "$output_objdir/$outputname.def"' eval 'cat "$export_symbols" >> "$output_objdir/$outputname.def"' ;; esac } else $opt_dry_run || { eval "$SED -e 's/\([].[*^$]\)/\\\\\1/g' -e 's/^/ /' -e 's/$/$/'"' < "$export_symbols" > "$output_objdir/$outputname.exp"' eval '$GREP -f "$output_objdir/$outputname.exp" < "$nlist" > "$nlist"T' eval '$MV "$nlist"T "$nlist"' case $host in *cygwin* | *mingw* | *cegcc* ) eval "echo EXPORTS "'> "$output_objdir/$outputname.def"' eval 'cat "$nlist" >> "$output_objdir/$outputname.def"' ;; esac } fi fi for dlprefile in $dlprefiles; do func_verbose "extracting global C symbols from '$dlprefile'" func_basename "$dlprefile" name=$func_basename_result case $host in *cygwin* | *mingw* | *cegcc* ) # if an import library, we need to obtain dlname if func_win32_import_lib_p "$dlprefile"; then func_tr_sh "$dlprefile" eval "curr_lafile=\$libfile_$func_tr_sh_result" dlprefile_dlbasename= if test -n "$curr_lafile" && func_lalib_p "$curr_lafile"; then # Use subshell, to avoid clobbering current variable values dlprefile_dlname=`source "$curr_lafile" && echo "$dlname"` if test -n "$dlprefile_dlname"; then func_basename "$dlprefile_dlname" dlprefile_dlbasename=$func_basename_result else # no lafile. user explicitly requested -dlpreopen . $sharedlib_from_linklib_cmd "$dlprefile" dlprefile_dlbasename=$sharedlib_from_linklib_result fi fi $opt_dry_run || { if test -n "$dlprefile_dlbasename"; then eval '$ECHO ": $dlprefile_dlbasename" >> "$nlist"' else func_warning "Could not compute DLL name from $name" eval '$ECHO ": $name " >> "$nlist"' fi func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe | $SED -e '/I __imp/d' -e 's/I __nm_/D /;s/_nm__//' >> '$nlist'" } else # not an import lib $opt_dry_run || { eval '$ECHO ": $name " >> "$nlist"' func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe >> '$nlist'" } fi ;; *) $opt_dry_run || { eval '$ECHO ": $name " >> "$nlist"' func_to_tool_file "$dlprefile" func_convert_file_msys_to_w32 eval "$NM \"$func_to_tool_file_result\" 2>/dev/null | $global_symbol_pipe >> '$nlist'" } ;; esac done $opt_dry_run || { # Make sure we have at least an empty file. test -f "$nlist" || : > "$nlist" if test -n "$exclude_expsyms"; then $EGREP -v " ($exclude_expsyms)$" "$nlist" > "$nlist"T $MV "$nlist"T "$nlist" fi # Try sorting and uniquifying the output. if $GREP -v "^: " < "$nlist" | if sort -k 3 /dev/null 2>&1; then sort -k 3 else sort +2 fi | uniq > "$nlist"S; then : else $GREP -v "^: " < "$nlist" > "$nlist"S fi if test -f "$nlist"S; then eval "$global_symbol_to_cdecl"' < "$nlist"S >> "$output_objdir/$my_dlsyms"' else echo '/* NONE */' >> "$output_objdir/$my_dlsyms" fi func_show_eval '$RM "${nlist}I"' if test -n "$global_symbol_to_import"; then eval "$global_symbol_to_import"' < "$nlist"S > "$nlist"I' fi echo >> "$output_objdir/$my_dlsyms" "\ /* The mapping between symbol names and symbols. */ typedef struct { const char *name; void *address; } lt_dlsymlist; extern LT_DLSYM_CONST lt_dlsymlist lt_${my_prefix}_LTX_preloaded_symbols[];\ " if test -s "$nlist"I; then echo >> "$output_objdir/$my_dlsyms" "\ static void lt_syminit(void) { LT_DLSYM_CONST lt_dlsymlist *symbol = lt_${my_prefix}_LTX_preloaded_symbols; for (; symbol->name; ++symbol) {" $SED 's/.*/ if (STREQ (symbol->name, \"&\")) symbol->address = (void *) \&&;/' < "$nlist"I >> "$output_objdir/$my_dlsyms" echo >> "$output_objdir/$my_dlsyms" "\ } }" fi echo >> "$output_objdir/$my_dlsyms" "\ LT_DLSYM_CONST lt_dlsymlist lt_${my_prefix}_LTX_preloaded_symbols[] = { {\"$my_originator\", (void *) 0}," if test -s "$nlist"I; then echo >> "$output_objdir/$my_dlsyms" "\ {\"@INIT@\", (void *) <_syminit}," fi case $need_lib_prefix in no) eval "$global_symbol_to_c_name_address" < "$nlist" >> "$output_objdir/$my_dlsyms" ;; *) eval "$global_symbol_to_c_name_address_lib_prefix" < "$nlist" >> "$output_objdir/$my_dlsyms" ;; esac echo >> "$output_objdir/$my_dlsyms" "\ {0, (void *) 0} }; /* This works around a problem in FreeBSD linker */ #ifdef FREEBSD_WORKAROUND static const void *lt_preloaded_setup() { return lt_${my_prefix}_LTX_preloaded_symbols; } #endif #ifdef __cplusplus } #endif\ " } # !$opt_dry_run pic_flag_for_symtable= case "$compile_command " in *" -static "*) ;; *) case $host in # compiling the symbol table file with pic_flag works around # a FreeBSD bug that causes programs to crash when -lm is # linked before any other PIC object. But we must not use # pic_flag when linking with -static. The problem exists in # FreeBSD 2.2.6 and is fixed in FreeBSD 3.1. *-*-freebsd2.*|*-*-freebsd3.0*|*-*-freebsdelf3.0*) pic_flag_for_symtable=" $pic_flag -DFREEBSD_WORKAROUND" ;; *-*-hpux*) pic_flag_for_symtable=" $pic_flag" ;; *) $my_pic_p && pic_flag_for_symtable=" $pic_flag" ;; esac ;; esac symtab_cflags= for arg in $LTCFLAGS; do case $arg in -pie | -fpie | -fPIE) ;; *) func_append symtab_cflags " $arg" ;; esac done # Now compile the dynamic symbol file. func_show_eval '(cd $output_objdir && $LTCC$symtab_cflags -c$no_builtin_flag$pic_flag_for_symtable "$my_dlsyms")' 'exit $?' # Clean up the generated files. func_show_eval '$RM "$output_objdir/$my_dlsyms" "$nlist" "${nlist}S" "${nlist}T" "${nlist}I"' # Transform the symbol file into the correct name. symfileobj=$output_objdir/${my_outputname}S.$objext case $host in *cygwin* | *mingw* | *cegcc* ) if test -f "$output_objdir/$my_outputname.def"; then compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$output_objdir/$my_outputname.def $symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$output_objdir/$my_outputname.def $symfileobj%"` else compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$symfileobj%"` fi ;; *) compile_command=`$ECHO "$compile_command" | $SED "s%@SYMFILE@%$symfileobj%"` finalize_command=`$ECHO "$finalize_command" | $SED "s%@SYMFILE@%$symfileobj%"` ;; esac ;; *) func_fatal_error "unknown suffix for '$my_dlsyms'" ;; esac else # We keep going just in case the user didn't refer to # lt_preloaded_symbols. The linker will fail if global_symbol_pipe # really was required. # Nullify the symbol file. compile_command=`$ECHO "$compile_command" | $SED "s% @SYMFILE@%%"` finalize_command=`$ECHO "$finalize_command" | $SED "s% @SYMFILE@%%"` fi } # func_cygming_gnu_implib_p ARG # This predicate returns with zero status (TRUE) if # ARG is a GNU/binutils-style import library. Returns # with nonzero status (FALSE) otherwise. func_cygming_gnu_implib_p () { $debug_cmd func_to_tool_file "$1" func_convert_file_msys_to_w32 func_cygming_gnu_implib_tmp=`$NM "$func_to_tool_file_result" | eval "$global_symbol_pipe" | $EGREP ' (_head_[A-Za-z0-9_]+_[ad]l*|[A-Za-z0-9_]+_[ad]l*_iname)$'` test -n "$func_cygming_gnu_implib_tmp" } # func_cygming_ms_implib_p ARG # This predicate returns with zero status (TRUE) if # ARG is an MS-style import library. Returns # with nonzero status (FALSE) otherwise. func_cygming_ms_implib_p () { $debug_cmd func_to_tool_file "$1" func_convert_file_msys_to_w32 func_cygming_ms_implib_tmp=`$NM "$func_to_tool_file_result" | eval "$global_symbol_pipe" | $GREP '_NULL_IMPORT_DESCRIPTOR'` test -n "$func_cygming_ms_implib_tmp" } # func_win32_libid arg # return the library type of file 'arg' # # Need a lot of goo to handle *both* DLLs and import libs # Has to be a shell function in order to 'eat' the argument # that is supplied when $file_magic_command is called. # Despite the name, also deal with 64 bit binaries. func_win32_libid () { $debug_cmd win32_libid_type=unknown win32_fileres=`file -L $1 2>/dev/null` case $win32_fileres in *ar\ archive\ import\ library*) # definitely import win32_libid_type="x86 archive import" ;; *ar\ archive*) # could be an import, or static # Keep the egrep pattern in sync with the one in _LT_CHECK_MAGIC_METHOD. if eval $OBJDUMP -f $1 | $SED -e '10q' 2>/dev/null | $EGREP 'file format (pei*-i386(.*architecture: i386)?|pe-arm-wince|pe-x86-64)' >/dev/null; then case $nm_interface in "MS dumpbin") if func_cygming_ms_implib_p "$1" || func_cygming_gnu_implib_p "$1" then win32_nmres=import else win32_nmres= fi ;; *) func_to_tool_file "$1" func_convert_file_msys_to_w32 win32_nmres=`eval $NM -f posix -A \"$func_to_tool_file_result\" | $SED -n -e ' 1,100{ / I /{ s|.*|import| p q } }'` ;; esac case $win32_nmres in import*) win32_libid_type="x86 archive import";; *) win32_libid_type="x86 archive static";; esac fi ;; *DLL*) win32_libid_type="x86 DLL" ;; *executable*) # but shell scripts are "executable" too... case $win32_fileres in *MS\ Windows\ PE\ Intel*) win32_libid_type="x86 DLL" ;; esac ;; esac $ECHO "$win32_libid_type" } # func_cygming_dll_for_implib ARG # # Platform-specific function to extract the # name of the DLL associated with the specified # import library ARG. # Invoked by eval'ing the libtool variable # $sharedlib_from_linklib_cmd # Result is available in the variable # $sharedlib_from_linklib_result func_cygming_dll_for_implib () { $debug_cmd sharedlib_from_linklib_result=`$DLLTOOL --identify-strict --identify "$1"` } # func_cygming_dll_for_implib_fallback_core SECTION_NAME LIBNAMEs # # The is the core of a fallback implementation of a # platform-specific function to extract the name of the # DLL associated with the specified import library LIBNAME. # # SECTION_NAME is either .idata$6 or .idata$7, depending # on the platform and compiler that created the implib. # # Echos the name of the DLL associated with the # specified import library. func_cygming_dll_for_implib_fallback_core () { $debug_cmd match_literal=`$ECHO "$1" | $SED "$sed_make_literal_regex"` $OBJDUMP -s --section "$1" "$2" 2>/dev/null | $SED '/^Contents of section '"$match_literal"':/{ # Place marker at beginning of archive member dllname section s/.*/====MARK====/ p d } # These lines can sometimes be longer than 43 characters, but # are always uninteresting /:[ ]*file format pe[i]\{,1\}-/d /^In archive [^:]*:/d # Ensure marker is printed /^====MARK====/p # Remove all lines with less than 43 characters /^.\{43\}/!d # From remaining lines, remove first 43 characters s/^.\{43\}//' | $SED -n ' # Join marker and all lines until next marker into a single line /^====MARK====/ b para H $ b para b :para x s/\n//g # Remove the marker s/^====MARK====// # Remove trailing dots and whitespace s/[\. \t]*$// # Print /./p' | # we now have a list, one entry per line, of the stringified # contents of the appropriate section of all members of the # archive that possess that section. Heuristic: eliminate # all those that have a first or second character that is # a '.' (that is, objdump's representation of an unprintable # character.) This should work for all archives with less than # 0x302f exports -- but will fail for DLLs whose name actually # begins with a literal '.' or a single character followed by # a '.'. # # Of those that remain, print the first one. $SED -e '/^\./d;/^.\./d;q' } # func_cygming_dll_for_implib_fallback ARG # Platform-specific function to extract the # name of the DLL associated with the specified # import library ARG. # # This fallback implementation is for use when $DLLTOOL # does not support the --identify-strict option. # Invoked by eval'ing the libtool variable # $sharedlib_from_linklib_cmd # Result is available in the variable # $sharedlib_from_linklib_result func_cygming_dll_for_implib_fallback () { $debug_cmd if func_cygming_gnu_implib_p "$1"; then # binutils import library sharedlib_from_linklib_result=`func_cygming_dll_for_implib_fallback_core '.idata$7' "$1"` elif func_cygming_ms_implib_p "$1"; then # ms-generated import library sharedlib_from_linklib_result=`func_cygming_dll_for_implib_fallback_core '.idata$6' "$1"` else # unknown sharedlib_from_linklib_result= fi } # func_extract_an_archive dir oldlib func_extract_an_archive () { $debug_cmd f_ex_an_ar_dir=$1; shift f_ex_an_ar_oldlib=$1 if test yes = "$lock_old_archive_extraction"; then lockfile=$f_ex_an_ar_oldlib.lock until $opt_dry_run || ln "$progpath" "$lockfile" 2>/dev/null; do func_echo "Waiting for $lockfile to be removed" sleep 2 done fi func_show_eval "(cd \$f_ex_an_ar_dir && $AR x \"\$f_ex_an_ar_oldlib\")" \ 'stat=$?; rm -f "$lockfile"; exit $stat' if test yes = "$lock_old_archive_extraction"; then $opt_dry_run || rm -f "$lockfile" fi if ($AR t "$f_ex_an_ar_oldlib" | sort | sort -uc >/dev/null 2>&1); then : else func_fatal_error "object name conflicts in archive: $f_ex_an_ar_dir/$f_ex_an_ar_oldlib" fi } # func_extract_archives gentop oldlib ... func_extract_archives () { $debug_cmd my_gentop=$1; shift my_oldlibs=${1+"$@"} my_oldobjs= my_xlib= my_xabs= my_xdir= for my_xlib in $my_oldlibs; do # Extract the objects. case $my_xlib in [\\/]* | [A-Za-z]:[\\/]*) my_xabs=$my_xlib ;; *) my_xabs=`pwd`"/$my_xlib" ;; esac func_basename "$my_xlib" my_xlib=$func_basename_result my_xlib_u=$my_xlib while :; do case " $extracted_archives " in *" $my_xlib_u "*) func_arith $extracted_serial + 1 extracted_serial=$func_arith_result my_xlib_u=lt$extracted_serial-$my_xlib ;; *) break ;; esac done extracted_archives="$extracted_archives $my_xlib_u" my_xdir=$my_gentop/$my_xlib_u func_mkdir_p "$my_xdir" case $host in *-darwin*) func_verbose "Extracting $my_xabs" # Do not bother doing anything if just a dry run $opt_dry_run || { darwin_orig_dir=`pwd` cd $my_xdir || exit $? darwin_archive=$my_xabs darwin_curdir=`pwd` func_basename "$darwin_archive" darwin_base_archive=$func_basename_result darwin_arches=`$LIPO -info "$darwin_archive" 2>/dev/null | $GREP Architectures 2>/dev/null || true` if test -n "$darwin_arches"; then darwin_arches=`$ECHO "$darwin_arches" | $SED -e 's/.*are://'` darwin_arch= func_verbose "$darwin_base_archive has multiple architectures $darwin_arches" for darwin_arch in $darwin_arches; do func_mkdir_p "unfat-$$/$darwin_base_archive-$darwin_arch" $LIPO -thin $darwin_arch -output "unfat-$$/$darwin_base_archive-$darwin_arch/$darwin_base_archive" "$darwin_archive" cd "unfat-$$/$darwin_base_archive-$darwin_arch" func_extract_an_archive "`pwd`" "$darwin_base_archive" cd "$darwin_curdir" $RM "unfat-$$/$darwin_base_archive-$darwin_arch/$darwin_base_archive" done # $darwin_arches ## Okay now we've a bunch of thin objects, gotta fatten them up :) darwin_filelist=`find unfat-$$ -type f -name \*.o -print -o -name \*.lo -print | $SED -e "$sed_basename" | sort -u` darwin_file= darwin_files= for darwin_file in $darwin_filelist; do darwin_files=`find unfat-$$ -name $darwin_file -print | sort | $NL2SP` $LIPO -create -output "$darwin_file" $darwin_files done # $darwin_filelist $RM -rf unfat-$$ cd "$darwin_orig_dir" else cd $darwin_orig_dir func_extract_an_archive "$my_xdir" "$my_xabs" fi # $darwin_arches } # !$opt_dry_run ;; *) func_extract_an_archive "$my_xdir" "$my_xabs" ;; esac my_oldobjs="$my_oldobjs "`find $my_xdir -name \*.$objext -print -o -name \*.lo -print | sort | $NL2SP` done func_extract_archives_result=$my_oldobjs } # func_emit_wrapper [arg=no] # # Emit a libtool wrapper script on stdout. # Don't directly open a file because we may want to # incorporate the script contents within a cygwin/mingw # wrapper executable. Must ONLY be called from within # func_mode_link because it depends on a number of variables # set therein. # # ARG is the value that the WRAPPER_SCRIPT_BELONGS_IN_OBJDIR # variable will take. If 'yes', then the emitted script # will assume that the directory where it is stored is # the $objdir directory. This is a cygwin/mingw-specific # behavior. func_emit_wrapper () { func_emit_wrapper_arg1=${1-no} $ECHO "\ #! $SHELL # $output - temporary wrapper script for $objdir/$outputname # Generated by $PROGRAM (GNU $PACKAGE) $VERSION # # The $output program cannot be directly executed until all the libtool # libraries that it depends on are installed. # # This wrapper script should never be moved out of the build directory. # If it is, it will not operate correctly. # Sed substitution that helps us do robust quoting. It backslashifies # metacharacters that are still active within double-quoted strings. sed_quote_subst='$sed_quote_subst' # Be Bourne compatible if test -n \"\${ZSH_VERSION+set}\" && (emulate sh) >/dev/null 2>&1; then emulate sh NULLCMD=: # Zsh 3.x and 4.x performs word splitting on \${1+\"\$@\"}, which # is contrary to our usage. Disable this feature. alias -g '\${1+\"\$@\"}'='\"\$@\"' setopt NO_GLOB_SUBST else case \`(set -o) 2>/dev/null\` in *posix*) set -o posix;; esac fi BIN_SH=xpg4; export BIN_SH # for Tru64 DUALCASE=1; export DUALCASE # for MKS sh # The HP-UX ksh and POSIX shell print the target directory to stdout # if CDPATH is set. (unset CDPATH) >/dev/null 2>&1 && unset CDPATH relink_command=\"$relink_command\" # This environment variable determines our operation mode. if test \"\$libtool_install_magic\" = \"$magic\"; then # install mode needs the following variables: generated_by_libtool_version='$macro_version' notinst_deplibs='$notinst_deplibs' else # When we are sourced in execute mode, \$file and \$ECHO are already set. if test \"\$libtool_execute_magic\" != \"$magic\"; then file=\"\$0\"" qECHO=`$ECHO "$ECHO" | $SED "$sed_quote_subst"` $ECHO "\ # A function that is used when there is no print builtin or printf. func_fallback_echo () { eval 'cat <<_LTECHO_EOF \$1 _LTECHO_EOF' } ECHO=\"$qECHO\" fi # Very basic option parsing. These options are (a) specific to # the libtool wrapper, (b) are identical between the wrapper # /script/ and the wrapper /executable/ that is used only on # windows platforms, and (c) all begin with the string "--lt-" # (application programs are unlikely to have options that match # this pattern). # # There are only two supported options: --lt-debug and # --lt-dump-script. There is, deliberately, no --lt-help. # # The first argument to this parsing function should be the # script's $0 value, followed by "$@". lt_option_debug= func_parse_lt_options () { lt_script_arg0=\$0 shift for lt_opt do case \"\$lt_opt\" in --lt-debug) lt_option_debug=1 ;; --lt-dump-script) lt_dump_D=\`\$ECHO \"X\$lt_script_arg0\" | $SED -e 's/^X//' -e 's%/[^/]*$%%'\` test \"X\$lt_dump_D\" = \"X\$lt_script_arg0\" && lt_dump_D=. lt_dump_F=\`\$ECHO \"X\$lt_script_arg0\" | $SED -e 's/^X//' -e 's%^.*/%%'\` cat \"\$lt_dump_D/\$lt_dump_F\" exit 0 ;; --lt-*) \$ECHO \"Unrecognized --lt- option: '\$lt_opt'\" 1>&2 exit 1 ;; esac done # Print the debug banner immediately: if test -n \"\$lt_option_debug\"; then echo \"$outputname:$output:\$LINENO: libtool wrapper (GNU $PACKAGE) $VERSION\" 1>&2 fi } # Used when --lt-debug. Prints its arguments to stdout # (redirection is the responsibility of the caller) func_lt_dump_args () { lt_dump_args_N=1; for lt_arg do \$ECHO \"$outputname:$output:\$LINENO: newargv[\$lt_dump_args_N]: \$lt_arg\" lt_dump_args_N=\`expr \$lt_dump_args_N + 1\` done } # Core function for launching the target application func_exec_program_core () { " case $host in # Backslashes separate directories on plain windows *-*-mingw | *-*-os2* | *-cegcc*) $ECHO "\ if test -n \"\$lt_option_debug\"; then \$ECHO \"$outputname:$output:\$LINENO: newargv[0]: \$progdir\\\\\$program\" 1>&2 func_lt_dump_args \${1+\"\$@\"} 1>&2 fi exec \"\$progdir\\\\\$program\" \${1+\"\$@\"} " ;; *) $ECHO "\ if test -n \"\$lt_option_debug\"; then \$ECHO \"$outputname:$output:\$LINENO: newargv[0]: \$progdir/\$program\" 1>&2 func_lt_dump_args \${1+\"\$@\"} 1>&2 fi exec \"\$progdir/\$program\" \${1+\"\$@\"} " ;; esac $ECHO "\ \$ECHO \"\$0: cannot exec \$program \$*\" 1>&2 exit 1 } # A function to encapsulate launching the target application # Strips options in the --lt-* namespace from \$@ and # launches target application with the remaining arguments. func_exec_program () { case \" \$* \" in *\\ --lt-*) for lt_wr_arg do case \$lt_wr_arg in --lt-*) ;; *) set x \"\$@\" \"\$lt_wr_arg\"; shift;; esac shift done ;; esac func_exec_program_core \${1+\"\$@\"} } # Parse options func_parse_lt_options \"\$0\" \${1+\"\$@\"} # Find the directory that this script lives in. thisdir=\`\$ECHO \"\$file\" | $SED 's%/[^/]*$%%'\` test \"x\$thisdir\" = \"x\$file\" && thisdir=. # Follow symbolic links until we get to the real thisdir. file=\`ls -ld \"\$file\" | $SED -n 's/.*-> //p'\` while test -n \"\$file\"; do destdir=\`\$ECHO \"\$file\" | $SED 's%/[^/]*\$%%'\` # If there was a directory component, then change thisdir. if test \"x\$destdir\" != \"x\$file\"; then case \"\$destdir\" in [\\\\/]* | [A-Za-z]:[\\\\/]*) thisdir=\"\$destdir\" ;; *) thisdir=\"\$thisdir/\$destdir\" ;; esac fi file=\`\$ECHO \"\$file\" | $SED 's%^.*/%%'\` file=\`ls -ld \"\$thisdir/\$file\" | $SED -n 's/.*-> //p'\` done # Usually 'no', except on cygwin/mingw when embedded into # the cwrapper. WRAPPER_SCRIPT_BELONGS_IN_OBJDIR=$func_emit_wrapper_arg1 if test \"\$WRAPPER_SCRIPT_BELONGS_IN_OBJDIR\" = \"yes\"; then # special case for '.' if test \"\$thisdir\" = \".\"; then thisdir=\`pwd\` fi # remove .libs from thisdir case \"\$thisdir\" in *[\\\\/]$objdir ) thisdir=\`\$ECHO \"\$thisdir\" | $SED 's%[\\\\/][^\\\\/]*$%%'\` ;; $objdir ) thisdir=. ;; esac fi # Try to get the absolute directory name. absdir=\`cd \"\$thisdir\" && pwd\` test -n \"\$absdir\" && thisdir=\"\$absdir\" " if test yes = "$fast_install"; then $ECHO "\ program=lt-'$outputname'$exeext progdir=\"\$thisdir/$objdir\" if test ! -f \"\$progdir/\$program\" || { file=\`ls -1dt \"\$progdir/\$program\" \"\$progdir/../\$program\" 2>/dev/null | $SED 1q\`; \\ test \"X\$file\" != \"X\$progdir/\$program\"; }; then file=\"\$\$-\$program\" if test ! -d \"\$progdir\"; then $MKDIR \"\$progdir\" else $RM \"\$progdir/\$file\" fi" $ECHO "\ # relink executable if necessary if test -n \"\$relink_command\"; then if relink_command_output=\`eval \$relink_command 2>&1\`; then : else \$ECHO \"\$relink_command_output\" >&2 $RM \"\$progdir/\$file\" exit 1 fi fi $MV \"\$progdir/\$file\" \"\$progdir/\$program\" 2>/dev/null || { $RM \"\$progdir/\$program\"; $MV \"\$progdir/\$file\" \"\$progdir/\$program\"; } $RM \"\$progdir/\$file\" fi" else $ECHO "\ program='$outputname' progdir=\"\$thisdir/$objdir\" " fi $ECHO "\ if test -f \"\$progdir/\$program\"; then" # fixup the dll searchpath if we need to. # # Fix the DLL searchpath if we need to. Do this before prepending # to shlibpath, because on Windows, both are PATH and uninstalled # libraries must come first. if test -n "$dllsearchpath"; then $ECHO "\ # Add the dll search path components to the executable PATH PATH=$dllsearchpath:\$PATH " fi # Export our shlibpath_var if we have one. if test yes = "$shlibpath_overrides_runpath" && test -n "$shlibpath_var" && test -n "$temp_rpath"; then $ECHO "\ # Add our own library path to $shlibpath_var $shlibpath_var=\"$temp_rpath\$$shlibpath_var\" # Some systems cannot cope with colon-terminated $shlibpath_var # The second colon is a workaround for a bug in BeOS R4 sed $shlibpath_var=\`\$ECHO \"\$$shlibpath_var\" | $SED 's/::*\$//'\` export $shlibpath_var " fi $ECHO "\ if test \"\$libtool_execute_magic\" != \"$magic\"; then # Run the actual program with our arguments. func_exec_program \${1+\"\$@\"} fi else # The program doesn't exist. \$ECHO \"\$0: error: '\$progdir/\$program' does not exist\" 1>&2 \$ECHO \"This script is just a wrapper for \$program.\" 1>&2 \$ECHO \"See the $PACKAGE documentation for more information.\" 1>&2 exit 1 fi fi\ " } # func_emit_cwrapperexe_src # emit the source code for a wrapper executable on stdout # Must ONLY be called from within func_mode_link because # it depends on a number of variable set therein. func_emit_cwrapperexe_src () { cat < #include #ifdef _MSC_VER # include # include # include #else # include # include # ifdef __CYGWIN__ # include # endif #endif #include #include #include #include #include #include #include #include #define STREQ(s1, s2) (strcmp ((s1), (s2)) == 0) /* declarations of non-ANSI functions */ #if defined __MINGW32__ # ifdef __STRICT_ANSI__ int _putenv (const char *); # endif #elif defined __CYGWIN__ # ifdef __STRICT_ANSI__ char *realpath (const char *, char *); int putenv (char *); int setenv (const char *, const char *, int); # endif /* #elif defined other_platform || defined ... */ #endif /* portability defines, excluding path handling macros */ #if defined _MSC_VER # define setmode _setmode # define stat _stat # define chmod _chmod # define getcwd _getcwd # define putenv _putenv # define S_IXUSR _S_IEXEC #elif defined __MINGW32__ # define setmode _setmode # define stat _stat # define chmod _chmod # define getcwd _getcwd # define putenv _putenv #elif defined __CYGWIN__ # define HAVE_SETENV # define FOPEN_WB "wb" /* #elif defined other platforms ... */ #endif #if defined PATH_MAX # define LT_PATHMAX PATH_MAX #elif defined MAXPATHLEN # define LT_PATHMAX MAXPATHLEN #else # define LT_PATHMAX 1024 #endif #ifndef S_IXOTH # define S_IXOTH 0 #endif #ifndef S_IXGRP # define S_IXGRP 0 #endif /* path handling portability macros */ #ifndef DIR_SEPARATOR # define DIR_SEPARATOR '/' # define PATH_SEPARATOR ':' #endif #if defined _WIN32 || defined __MSDOS__ || defined __DJGPP__ || \ defined __OS2__ # define HAVE_DOS_BASED_FILE_SYSTEM # define FOPEN_WB "wb" # ifndef DIR_SEPARATOR_2 # define DIR_SEPARATOR_2 '\\' # endif # ifndef PATH_SEPARATOR_2 # define PATH_SEPARATOR_2 ';' # endif #endif #ifndef DIR_SEPARATOR_2 # define IS_DIR_SEPARATOR(ch) ((ch) == DIR_SEPARATOR) #else /* DIR_SEPARATOR_2 */ # define IS_DIR_SEPARATOR(ch) \ (((ch) == DIR_SEPARATOR) || ((ch) == DIR_SEPARATOR_2)) #endif /* DIR_SEPARATOR_2 */ #ifndef PATH_SEPARATOR_2 # define IS_PATH_SEPARATOR(ch) ((ch) == PATH_SEPARATOR) #else /* PATH_SEPARATOR_2 */ # define IS_PATH_SEPARATOR(ch) ((ch) == PATH_SEPARATOR_2) #endif /* PATH_SEPARATOR_2 */ #ifndef FOPEN_WB # define FOPEN_WB "w" #endif #ifndef _O_BINARY # define _O_BINARY 0 #endif #define XMALLOC(type, num) ((type *) xmalloc ((num) * sizeof(type))) #define XFREE(stale) do { \ if (stale) { free (stale); stale = 0; } \ } while (0) #if defined LT_DEBUGWRAPPER static int lt_debug = 1; #else static int lt_debug = 0; #endif const char *program_name = "libtool-wrapper"; /* in case xstrdup fails */ void *xmalloc (size_t num); char *xstrdup (const char *string); const char *base_name (const char *name); char *find_executable (const char *wrapper); char *chase_symlinks (const char *pathspec); int make_executable (const char *path); int check_executable (const char *path); char *strendzap (char *str, const char *pat); void lt_debugprintf (const char *file, int line, const char *fmt, ...); void lt_fatal (const char *file, int line, const char *message, ...); static const char *nonnull (const char *s); static const char *nonempty (const char *s); void lt_setenv (const char *name, const char *value); char *lt_extend_str (const char *orig_value, const char *add, int to_end); void lt_update_exe_path (const char *name, const char *value); void lt_update_lib_path (const char *name, const char *value); char **prepare_spawn (char **argv); void lt_dump_script (FILE *f); EOF cat <= 0) && (st.st_mode & (S_IXUSR | S_IXGRP | S_IXOTH))) return 1; else return 0; } int make_executable (const char *path) { int rval = 0; struct stat st; lt_debugprintf (__FILE__, __LINE__, "(make_executable): %s\n", nonempty (path)); if ((!path) || (!*path)) return 0; if (stat (path, &st) >= 0) { rval = chmod (path, st.st_mode | S_IXOTH | S_IXGRP | S_IXUSR); } return rval; } /* Searches for the full path of the wrapper. Returns newly allocated full path name if found, NULL otherwise Does not chase symlinks, even on platforms that support them. */ char * find_executable (const char *wrapper) { int has_slash = 0; const char *p; const char *p_next; /* static buffer for getcwd */ char tmp[LT_PATHMAX + 1]; size_t tmp_len; char *concat_name; lt_debugprintf (__FILE__, __LINE__, "(find_executable): %s\n", nonempty (wrapper)); if ((wrapper == NULL) || (*wrapper == '\0')) return NULL; /* Absolute path? */ #if defined HAVE_DOS_BASED_FILE_SYSTEM if (isalpha ((unsigned char) wrapper[0]) && wrapper[1] == ':') { concat_name = xstrdup (wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } else { #endif if (IS_DIR_SEPARATOR (wrapper[0])) { concat_name = xstrdup (wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } #if defined HAVE_DOS_BASED_FILE_SYSTEM } #endif for (p = wrapper; *p; p++) if (*p == '/') { has_slash = 1; break; } if (!has_slash) { /* no slashes; search PATH */ const char *path = getenv ("PATH"); if (path != NULL) { for (p = path; *p; p = p_next) { const char *q; size_t p_len; for (q = p; *q; q++) if (IS_PATH_SEPARATOR (*q)) break; p_len = (size_t) (q - p); p_next = (*q == '\0' ? q : q + 1); if (p_len == 0) { /* empty path: current directory */ if (getcwd (tmp, LT_PATHMAX) == NULL) lt_fatal (__FILE__, __LINE__, "getcwd failed: %s", nonnull (strerror (errno))); tmp_len = strlen (tmp); concat_name = XMALLOC (char, tmp_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, tmp, tmp_len); concat_name[tmp_len] = '/'; strcpy (concat_name + tmp_len + 1, wrapper); } else { concat_name = XMALLOC (char, p_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, p, p_len); concat_name[p_len] = '/'; strcpy (concat_name + p_len + 1, wrapper); } if (check_executable (concat_name)) return concat_name; XFREE (concat_name); } } /* not found in PATH; assume curdir */ } /* Relative path | not found in path: prepend cwd */ if (getcwd (tmp, LT_PATHMAX) == NULL) lt_fatal (__FILE__, __LINE__, "getcwd failed: %s", nonnull (strerror (errno))); tmp_len = strlen (tmp); concat_name = XMALLOC (char, tmp_len + 1 + strlen (wrapper) + 1); memcpy (concat_name, tmp, tmp_len); concat_name[tmp_len] = '/'; strcpy (concat_name + tmp_len + 1, wrapper); if (check_executable (concat_name)) return concat_name; XFREE (concat_name); return NULL; } char * chase_symlinks (const char *pathspec) { #ifndef S_ISLNK return xstrdup (pathspec); #else char buf[LT_PATHMAX]; struct stat s; char *tmp_pathspec = xstrdup (pathspec); char *p; int has_symlinks = 0; while (strlen (tmp_pathspec) && !has_symlinks) { lt_debugprintf (__FILE__, __LINE__, "checking path component for symlinks: %s\n", tmp_pathspec); if (lstat (tmp_pathspec, &s) == 0) { if (S_ISLNK (s.st_mode) != 0) { has_symlinks = 1; break; } /* search backwards for last DIR_SEPARATOR */ p = tmp_pathspec + strlen (tmp_pathspec) - 1; while ((p > tmp_pathspec) && (!IS_DIR_SEPARATOR (*p))) p--; if ((p == tmp_pathspec) && (!IS_DIR_SEPARATOR (*p))) { /* no more DIR_SEPARATORS left */ break; } *p = '\0'; } else { lt_fatal (__FILE__, __LINE__, "error accessing file \"%s\": %s", tmp_pathspec, nonnull (strerror (errno))); } } XFREE (tmp_pathspec); if (!has_symlinks) { return xstrdup (pathspec); } tmp_pathspec = realpath (pathspec, buf); if (tmp_pathspec == 0) { lt_fatal (__FILE__, __LINE__, "could not follow symlinks for %s", pathspec); } return xstrdup (tmp_pathspec); #endif } char * strendzap (char *str, const char *pat) { size_t len, patlen; assert (str != NULL); assert (pat != NULL); len = strlen (str); patlen = strlen (pat); if (patlen <= len) { str += len - patlen; if (STREQ (str, pat)) *str = '\0'; } return str; } void lt_debugprintf (const char *file, int line, const char *fmt, ...) { va_list args; if (lt_debug) { (void) fprintf (stderr, "%s:%s:%d: ", program_name, file, line); va_start (args, fmt); (void) vfprintf (stderr, fmt, args); va_end (args); } } static void lt_error_core (int exit_status, const char *file, int line, const char *mode, const char *message, va_list ap) { fprintf (stderr, "%s:%s:%d: %s: ", program_name, file, line, mode); vfprintf (stderr, message, ap); fprintf (stderr, ".\n"); if (exit_status >= 0) exit (exit_status); } void lt_fatal (const char *file, int line, const char *message, ...) { va_list ap; va_start (ap, message); lt_error_core (EXIT_FAILURE, file, line, "FATAL", message, ap); va_end (ap); } static const char * nonnull (const char *s) { return s ? s : "(null)"; } static const char * nonempty (const char *s) { return (s && !*s) ? "(empty)" : nonnull (s); } void lt_setenv (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_setenv) setting '%s' to '%s'\n", nonnull (name), nonnull (value)); { #ifdef HAVE_SETENV /* always make a copy, for consistency with !HAVE_SETENV */ char *str = xstrdup (value); setenv (name, str, 1); #else size_t len = strlen (name) + 1 + strlen (value) + 1; char *str = XMALLOC (char, len); sprintf (str, "%s=%s", name, value); if (putenv (str) != EXIT_SUCCESS) { XFREE (str); } #endif } } char * lt_extend_str (const char *orig_value, const char *add, int to_end) { char *new_value; if (orig_value && *orig_value) { size_t orig_value_len = strlen (orig_value); size_t add_len = strlen (add); new_value = XMALLOC (char, add_len + orig_value_len + 1); if (to_end) { strcpy (new_value, orig_value); strcpy (new_value + orig_value_len, add); } else { strcpy (new_value, add); strcpy (new_value + add_len, orig_value); } } else { new_value = xstrdup (add); } return new_value; } void lt_update_exe_path (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_update_exe_path) modifying '%s' by prepending '%s'\n", nonnull (name), nonnull (value)); if (name && *name && value && *value) { char *new_value = lt_extend_str (getenv (name), value, 0); /* some systems can't cope with a ':'-terminated path #' */ size_t len = strlen (new_value); while ((len > 0) && IS_PATH_SEPARATOR (new_value[len-1])) { new_value[--len] = '\0'; } lt_setenv (name, new_value); XFREE (new_value); } } void lt_update_lib_path (const char *name, const char *value) { lt_debugprintf (__FILE__, __LINE__, "(lt_update_lib_path) modifying '%s' by prepending '%s'\n", nonnull (name), nonnull (value)); if (name && *name && value && *value) { char *new_value = lt_extend_str (getenv (name), value, 0); lt_setenv (name, new_value); XFREE (new_value); } } EOF case $host_os in mingw*) cat <<"EOF" /* Prepares an argument vector before calling spawn(). Note that spawn() does not by itself call the command interpreter (getenv ("COMSPEC") != NULL ? getenv ("COMSPEC") : ({ OSVERSIONINFO v; v.dwOSVersionInfoSize = sizeof(OSVERSIONINFO); GetVersionEx(&v); v.dwPlatformId == VER_PLATFORM_WIN32_NT; }) ? "cmd.exe" : "command.com"). Instead it simply concatenates the arguments, separated by ' ', and calls CreateProcess(). We must quote the arguments since Win32 CreateProcess() interprets characters like ' ', '\t', '\\', '"' (but not '<' and '>') in a special way: - Space and tab are interpreted as delimiters. They are not treated as delimiters if they are surrounded by double quotes: "...". - Unescaped double quotes are removed from the input. Their only effect is that within double quotes, space and tab are treated like normal characters. - Backslashes not followed by double quotes are not special. - But 2*n+1 backslashes followed by a double quote become n backslashes followed by a double quote (n >= 0): \" -> " \\\" -> \" \\\\\" -> \\" */ #define SHELL_SPECIAL_CHARS "\"\\ \001\002\003\004\005\006\007\010\011\012\013\014\015\016\017\020\021\022\023\024\025\026\027\030\031\032\033\034\035\036\037" #define SHELL_SPACE_CHARS " \001\002\003\004\005\006\007\010\011\012\013\014\015\016\017\020\021\022\023\024\025\026\027\030\031\032\033\034\035\036\037" char ** prepare_spawn (char **argv) { size_t argc; char **new_argv; size_t i; /* Count number of arguments. */ for (argc = 0; argv[argc] != NULL; argc++) ; /* Allocate new argument vector. */ new_argv = XMALLOC (char *, argc + 1); /* Put quoted arguments into the new argument vector. */ for (i = 0; i < argc; i++) { const char *string = argv[i]; if (string[0] == '\0') new_argv[i] = xstrdup ("\"\""); else if (strpbrk (string, SHELL_SPECIAL_CHARS) != NULL) { int quote_around = (strpbrk (string, SHELL_SPACE_CHARS) != NULL); size_t length; unsigned int backslashes; const char *s; char *quoted_string; char *p; length = 0; backslashes = 0; if (quote_around) length++; for (s = string; *s != '\0'; s++) { char c = *s; if (c == '"') length += backslashes + 1; length++; if (c == '\\') backslashes++; else backslashes = 0; } if (quote_around) length += backslashes + 1; quoted_string = XMALLOC (char, length + 1); p = quoted_string; backslashes = 0; if (quote_around) *p++ = '"'; for (s = string; *s != '\0'; s++) { char c = *s; if (c == '"') { unsigned int j; for (j = backslashes + 1; j > 0; j--) *p++ = '\\'; } *p++ = c; if (c == '\\') backslashes++; else backslashes = 0; } if (quote_around) { unsigned int j; for (j = backslashes; j > 0; j--) *p++ = '\\'; *p++ = '"'; } *p = '\0'; new_argv[i] = quoted_string; } else new_argv[i] = (char *) string; } new_argv[argc] = NULL; return new_argv; } EOF ;; esac cat <<"EOF" void lt_dump_script (FILE* f) { EOF func_emit_wrapper yes | $SED -n -e ' s/^\(.\{79\}\)\(..*\)/\1\ \2/ h s/\([\\"]\)/\\\1/g s/$/\\n/ s/\([^\n]*\).*/ fputs ("\1", f);/p g D' cat <<"EOF" } EOF } # end: func_emit_cwrapperexe_src # func_win32_import_lib_p ARG # True if ARG is an import lib, as indicated by $file_magic_cmd func_win32_import_lib_p () { $debug_cmd case `eval $file_magic_cmd \"\$1\" 2>/dev/null | $SED -e 10q` in *import*) : ;; *) false ;; esac } # func_suncc_cstd_abi # !!ONLY CALL THIS FOR SUN CC AFTER $compile_command IS FULLY EXPANDED!! # Several compiler flags select an ABI that is incompatible with the # Cstd library. Avoid specifying it if any are in CXXFLAGS. func_suncc_cstd_abi () { $debug_cmd case " $compile_command " in *" -compat=g "*|*\ -std=c++[0-9][0-9]\ *|*" -library=stdcxx4 "*|*" -library=stlport4 "*) suncc_use_cstd_abi=no ;; *) suncc_use_cstd_abi=yes ;; esac } # func_mode_link arg... func_mode_link () { $debug_cmd case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) # It is impossible to link a dll without this setting, and # we shouldn't force the makefile maintainer to figure out # what system we are compiling for in order to pass an extra # flag for every libtool invocation. # allow_undefined=no # FIXME: Unfortunately, there are problems with the above when trying # to make a dll that has undefined symbols, in which case not # even a static library is built. For now, we need to specify # -no-undefined on the libtool link line when we can be certain # that all symbols are satisfied, otherwise we get a static library. allow_undefined=yes ;; *) allow_undefined=yes ;; esac libtool_args=$nonopt base_compile="$nonopt $@" compile_command=$nonopt finalize_command=$nonopt compile_rpath= finalize_rpath= compile_shlibpath= finalize_shlibpath= convenience= old_convenience= deplibs= old_deplibs= compiler_flags= linker_flags= dllsearchpath= lib_search_path=`pwd` inst_prefix_dir= new_inherited_linker_flags= avoid_version=no bindir= dlfiles= dlprefiles= dlself=no export_dynamic=no export_symbols= export_symbols_regex= generated= libobjs= ltlibs= module=no no_install=no objs= os2dllname= non_pic_objects= precious_files_regex= prefer_static_libs=no preload=false prev= prevarg= release= rpath= xrpath= perm_rpath= temp_rpath= thread_safe=no vinfo= vinfo_number=no weak_libs= single_module=$wl-single_module func_infer_tag $base_compile # We need to know -static, to get the right output filenames. for arg do case $arg in -shared) test yes != "$build_libtool_libs" \ && func_fatal_configuration "cannot build a shared library" build_old_libs=no break ;; -all-static | -static | -static-libtool-libs) case $arg in -all-static) if test yes = "$build_libtool_libs" && test -z "$link_static_flag"; then func_warning "complete static linking is impossible in this configuration" fi if test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=yes ;; -static) if test -z "$pic_flag" && test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=built ;; -static-libtool-libs) if test -z "$pic_flag" && test -n "$link_static_flag"; then dlopen_self=$dlopen_self_static fi prefer_static_libs=yes ;; esac build_libtool_libs=no build_old_libs=yes break ;; esac done # See if our shared archives depend on static archives. test -n "$old_archive_from_new_cmds" && build_old_libs=yes # Go through the arguments, transforming them on the way. while test "$#" -gt 0; do arg=$1 shift func_quote_for_eval "$arg" qarg=$func_quote_for_eval_unquoted_result func_append libtool_args " $func_quote_for_eval_result" # If the previous option needs an argument, assign it. if test -n "$prev"; then case $prev in output) func_append compile_command " @OUTPUT@" func_append finalize_command " @OUTPUT@" ;; esac case $prev in bindir) bindir=$arg prev= continue ;; dlfiles|dlprefiles) $preload || { # Add the symbol object into the linking commands. func_append compile_command " @SYMFILE@" func_append finalize_command " @SYMFILE@" preload=: } case $arg in *.la | *.lo) ;; # We handle these cases below. force) if test no = "$dlself"; then dlself=needless export_dynamic=yes fi prev= continue ;; self) if test dlprefiles = "$prev"; then dlself=yes elif test dlfiles = "$prev" && test yes != "$dlopen_self"; then dlself=yes else dlself=needless export_dynamic=yes fi prev= continue ;; *) if test dlfiles = "$prev"; then func_append dlfiles " $arg" else func_append dlprefiles " $arg" fi prev= continue ;; esac ;; expsyms) export_symbols=$arg test -f "$arg" \ || func_fatal_error "symbol file '$arg' does not exist" prev= continue ;; expsyms_regex) export_symbols_regex=$arg prev= continue ;; framework) case $host in *-*-darwin*) case "$deplibs " in *" $qarg.ltframework "*) ;; *) func_append deplibs " $qarg.ltframework" # this is fixed later ;; esac ;; esac prev= continue ;; inst_prefix) inst_prefix_dir=$arg prev= continue ;; mllvm) # Clang does not use LLVM to link, so we can simply discard any # '-mllvm $arg' options when doing the link step. prev= continue ;; objectlist) if test -f "$arg"; then save_arg=$arg moreargs= for fil in `cat "$save_arg"` do # func_append moreargs " $fil" arg=$fil # A libtool-controlled object. # Check to see that this really is a libtool object. if func_lalib_unsafe_p "$arg"; then pic_object= non_pic_object= # Read the .lo file func_source "$arg" if test -z "$pic_object" || test -z "$non_pic_object" || test none = "$pic_object" && test none = "$non_pic_object"; then func_fatal_error "cannot find name of object for '$arg'" fi # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result if test none != "$pic_object"; then # Prepend the subdirectory the object is found in. pic_object=$xdir$pic_object if test dlfiles = "$prev"; then if test yes = "$build_libtool_libs" && test yes = "$dlopen_support"; then func_append dlfiles " $pic_object" prev= continue else # If libtool objects are unsupported, then we need to preload. prev=dlprefiles fi fi # CHECK ME: I think I busted this. -Ossama if test dlprefiles = "$prev"; then # Preload the old-style object. func_append dlprefiles " $pic_object" prev= fi # A PIC object. func_append libobjs " $pic_object" arg=$pic_object fi # Non-PIC object. if test none != "$non_pic_object"; then # Prepend the subdirectory the object is found in. non_pic_object=$xdir$non_pic_object # A standard non-PIC object func_append non_pic_objects " $non_pic_object" if test -z "$pic_object" || test none = "$pic_object"; then arg=$non_pic_object fi else # If the PIC object exists, use it instead. # $xdir was prepended to $pic_object above. non_pic_object=$pic_object func_append non_pic_objects " $non_pic_object" fi else # Only an error if not doing a dry-run. if $opt_dry_run; then # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result func_lo2o "$arg" pic_object=$xdir$objdir/$func_lo2o_result non_pic_object=$xdir$func_lo2o_result func_append libobjs " $pic_object" func_append non_pic_objects " $non_pic_object" else func_fatal_error "'$arg' is not a valid libtool object" fi fi done else func_fatal_error "link input file '$arg' does not exist" fi arg=$save_arg prev= continue ;; os2dllname) os2dllname=$arg prev= continue ;; precious_regex) precious_files_regex=$arg prev= continue ;; release) release=-$arg prev= continue ;; rpath | xrpath) # We need an absolute path. case $arg in [\\/]* | [A-Za-z]:[\\/]*) ;; *) func_fatal_error "only absolute run-paths are allowed" ;; esac if test rpath = "$prev"; then case "$rpath " in *" $arg "*) ;; *) func_append rpath " $arg" ;; esac else case "$xrpath " in *" $arg "*) ;; *) func_append xrpath " $arg" ;; esac fi prev= continue ;; shrext) shrext_cmds=$arg prev= continue ;; weak) func_append weak_libs " $arg" prev= continue ;; xcclinker) func_append linker_flags " $qarg" func_append compiler_flags " $qarg" prev= func_append compile_command " $qarg" func_append finalize_command " $qarg" continue ;; xcompiler) func_append compiler_flags " $qarg" prev= func_append compile_command " $qarg" func_append finalize_command " $qarg" continue ;; xlinker) func_append linker_flags " $qarg" func_append compiler_flags " $wl$qarg" prev= func_append compile_command " $wl$qarg" func_append finalize_command " $wl$qarg" continue ;; *) eval "$prev=\"\$arg\"" prev= continue ;; esac fi # test -n "$prev" prevarg=$arg case $arg in -all-static) if test -n "$link_static_flag"; then # See comment for -static flag below, for more details. func_append compile_command " $link_static_flag" func_append finalize_command " $link_static_flag" fi continue ;; -allow-undefined) # FIXME: remove this flag sometime in the future. func_fatal_error "'-allow-undefined' must not be used because it is the default" ;; -avoid-version) avoid_version=yes continue ;; -bindir) prev=bindir continue ;; -dlopen) prev=dlfiles continue ;; -dlpreopen) prev=dlprefiles continue ;; -export-dynamic) export_dynamic=yes continue ;; -export-symbols | -export-symbols-regex) if test -n "$export_symbols" || test -n "$export_symbols_regex"; then func_fatal_error "more than one -exported-symbols argument is not allowed" fi if test X-export-symbols = "X$arg"; then prev=expsyms else prev=expsyms_regex fi continue ;; -framework) prev=framework continue ;; -inst-prefix-dir) prev=inst_prefix continue ;; # The native IRIX linker understands -LANG:*, -LIST:* and -LNO:* # so, if we see these flags be careful not to treat them like -L -L[A-Z][A-Z]*:*) case $with_gcc/$host in no/*-*-irix* | /*-*-irix*) func_append compile_command " $arg" func_append finalize_command " $arg" ;; esac continue ;; -L*) func_stripname "-L" '' "$arg" if test -z "$func_stripname_result"; then if test "$#" -gt 0; then func_fatal_error "require no space between '-L' and '$1'" else func_fatal_error "need path for '-L' option" fi fi func_resolve_sysroot "$func_stripname_result" dir=$func_resolve_sysroot_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) ;; *) absdir=`cd "$dir" && pwd` test -z "$absdir" && \ func_fatal_error "cannot determine absolute directory name of '$dir'" dir=$absdir ;; esac case "$deplibs " in *" -L$dir "* | *" $arg "*) # Will only happen for absolute or sysroot arguments ;; *) # Preserve sysroot, but never include relative directories case $dir in [\\/]* | [A-Za-z]:[\\/]* | =*) func_append deplibs " $arg" ;; *) func_append deplibs " -L$dir" ;; esac func_append lib_search_path " $dir" ;; esac case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) testbindir=`$ECHO "$dir" | $SED 's*/lib$*/bin*'` case :$dllsearchpath: in *":$dir:"*) ;; ::) dllsearchpath=$dir;; *) func_append dllsearchpath ":$dir";; esac case :$dllsearchpath: in *":$testbindir:"*) ;; ::) dllsearchpath=$testbindir;; *) func_append dllsearchpath ":$testbindir";; esac ;; esac continue ;; -l*) if test X-lc = "X$arg" || test X-lm = "X$arg"; then case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-beos* | *-cegcc* | *-*-haiku*) # These systems don't actually have a C or math library (as such) continue ;; *-*-os2*) # These systems don't actually have a C library (as such) test X-lc = "X$arg" && continue ;; *-*-openbsd* | *-*-freebsd* | *-*-dragonfly* | *-*-bitrig*) # Do not include libc due to us having libc/libc_r. test X-lc = "X$arg" && continue ;; *-*-rhapsody* | *-*-darwin1.[012]) # Rhapsody C and math libraries are in the System framework func_append deplibs " System.ltframework" continue ;; *-*-sco3.2v5* | *-*-sco5v6*) # Causes problems with __ctype test X-lc = "X$arg" && continue ;; *-*-sysv4.2uw2* | *-*-sysv5* | *-*-unixware* | *-*-OpenUNIX*) # Compiler inserts libc in the correct place for threads to work test X-lc = "X$arg" && continue ;; esac elif test X-lc_r = "X$arg"; then case $host in *-*-openbsd* | *-*-freebsd* | *-*-dragonfly* | *-*-bitrig*) # Do not include libc_r directly, use -pthread flag. continue ;; esac fi func_append deplibs " $arg" continue ;; -mllvm) prev=mllvm continue ;; -module) module=yes continue ;; # Tru64 UNIX uses -model [arg] to determine the layout of C++ # classes, name mangling, and exception handling. # Darwin uses the -arch flag to determine output architecture. -model|-arch|-isysroot|--sysroot) func_append compiler_flags " $arg" func_append compile_command " $arg" func_append finalize_command " $arg" prev=xcompiler continue ;; -mt|-mthreads|-kthread|-Kthread|-pthread|-pthreads|--thread-safe \ |-threads|-fopenmp|-openmp|-mp|-xopenmp|-omp|-qsmp=*) func_append compiler_flags " $arg" func_append compile_command " $arg" func_append finalize_command " $arg" case "$new_inherited_linker_flags " in *" $arg "*) ;; * ) func_append new_inherited_linker_flags " $arg" ;; esac continue ;; -multi_module) single_module=$wl-multi_module continue ;; -no-fast-install) fast_install=no continue ;; -no-install) case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-*-darwin* | *-cegcc*) # The PATH hackery in wrapper scripts is required on Windows # and Darwin in order for the loader to find any dlls it needs. func_warning "'-no-install' is ignored for $host" func_warning "assuming '-no-fast-install' instead" fast_install=no ;; *) no_install=yes ;; esac continue ;; -no-undefined) allow_undefined=no continue ;; -objectlist) prev=objectlist continue ;; -os2dllname) prev=os2dllname continue ;; -o) prev=output ;; -precious-files-regex) prev=precious_regex continue ;; -release) prev=release continue ;; -rpath) prev=rpath continue ;; -R) prev=xrpath continue ;; -R*) func_stripname '-R' '' "$arg" dir=$func_stripname_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) ;; =*) func_stripname '=' '' "$dir" dir=$lt_sysroot$func_stripname_result ;; *) func_fatal_error "only absolute run-paths are allowed" ;; esac case "$xrpath " in *" $dir "*) ;; *) func_append xrpath " $dir" ;; esac continue ;; -shared) # The effects of -shared are defined in a previous loop. continue ;; -shrext) prev=shrext continue ;; -static | -static-libtool-libs) # The effects of -static are defined in a previous loop. # We used to do the same as -all-static on platforms that # didn't have a PIC flag, but the assumption that the effects # would be equivalent was wrong. It would break on at least # Digital Unix and AIX. continue ;; -thread-safe) thread_safe=yes continue ;; -version-info) prev=vinfo continue ;; -version-number) prev=vinfo vinfo_number=yes continue ;; -weak) prev=weak continue ;; -Wc,*) func_stripname '-Wc,' '' "$arg" args=$func_stripname_result arg= save_ifs=$IFS; IFS=, for flag in $args; do IFS=$save_ifs func_quote_for_eval "$flag" func_append arg " $func_quote_for_eval_result" func_append compiler_flags " $func_quote_for_eval_result" done IFS=$save_ifs func_stripname ' ' '' "$arg" arg=$func_stripname_result ;; -Wl,*) func_stripname '-Wl,' '' "$arg" args=$func_stripname_result arg= save_ifs=$IFS; IFS=, for flag in $args; do IFS=$save_ifs func_quote_for_eval "$flag" func_append arg " $wl$func_quote_for_eval_result" func_append compiler_flags " $wl$func_quote_for_eval_result" func_append linker_flags " $func_quote_for_eval_result" done IFS=$save_ifs func_stripname ' ' '' "$arg" arg=$func_stripname_result ;; -Xcompiler) prev=xcompiler continue ;; -Xlinker) prev=xlinker continue ;; -XCClinker) prev=xcclinker continue ;; # -msg_* for osf cc -msg_*) func_quote_for_eval "$arg" arg=$func_quote_for_eval_result ;; # Flags to be passed through unchanged, with rationale: # -64, -mips[0-9] enable 64-bit mode for the SGI compiler # -r[0-9][0-9]* specify processor for the SGI compiler # -xarch=*, -xtarget=* enable 64-bit mode for the Sun compiler # +DA*, +DD* enable 64-bit mode for the HP compiler # -q* compiler args for the IBM compiler # -m*, -t[45]*, -txscale* architecture-specific flags for GCC # -F/path path to uninstalled frameworks, gcc on darwin # -p, -pg, --coverage, -fprofile-* profiling flags for GCC # -fstack-protector* stack protector flags for GCC # @file GCC response files # -tp=* Portland pgcc target processor selection # --sysroot=* for sysroot support # -O*, -g*, -flto*, -fwhopr*, -fuse-linker-plugin GCC link-time optimization # -specs=* GCC specs files # -stdlib=* select c++ std lib with clang -64|-mips[0-9]|-r[0-9][0-9]*|-xarch=*|-xtarget=*|+DA*|+DD*|-q*|-m*| \ -t[45]*|-txscale*|-p|-pg|--coverage|-fprofile-*|-F*|@*|-tp=*|--sysroot=*| \ -O*|-g*|-flto*|-fwhopr*|-fuse-linker-plugin|-fstack-protector*|-stdlib=*| \ -specs=*) func_quote_for_eval "$arg" arg=$func_quote_for_eval_result func_append compile_command " $arg" func_append finalize_command " $arg" func_append compiler_flags " $arg" continue ;; -Z*) if test os2 = "`expr $host : '.*\(os2\)'`"; then # OS/2 uses -Zxxx to specify OS/2-specific options compiler_flags="$compiler_flags $arg" func_append compile_command " $arg" func_append finalize_command " $arg" case $arg in -Zlinker | -Zstack) prev=xcompiler ;; esac continue else # Otherwise treat like 'Some other compiler flag' below func_quote_for_eval "$arg" arg=$func_quote_for_eval_result fi ;; # Some other compiler flag. -* | +*) func_quote_for_eval "$arg" arg=$func_quote_for_eval_result ;; *.$objext) # A standard object. func_append objs " $arg" ;; *.lo) # A libtool-controlled object. # Check to see that this really is a libtool object. if func_lalib_unsafe_p "$arg"; then pic_object= non_pic_object= # Read the .lo file func_source "$arg" if test -z "$pic_object" || test -z "$non_pic_object" || test none = "$pic_object" && test none = "$non_pic_object"; then func_fatal_error "cannot find name of object for '$arg'" fi # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result test none = "$pic_object" || { # Prepend the subdirectory the object is found in. pic_object=$xdir$pic_object if test dlfiles = "$prev"; then if test yes = "$build_libtool_libs" && test yes = "$dlopen_support"; then func_append dlfiles " $pic_object" prev= continue else # If libtool objects are unsupported, then we need to preload. prev=dlprefiles fi fi # CHECK ME: I think I busted this. -Ossama if test dlprefiles = "$prev"; then # Preload the old-style object. func_append dlprefiles " $pic_object" prev= fi # A PIC object. func_append libobjs " $pic_object" arg=$pic_object } # Non-PIC object. if test none != "$non_pic_object"; then # Prepend the subdirectory the object is found in. non_pic_object=$xdir$non_pic_object # A standard non-PIC object func_append non_pic_objects " $non_pic_object" if test -z "$pic_object" || test none = "$pic_object"; then arg=$non_pic_object fi else # If the PIC object exists, use it instead. # $xdir was prepended to $pic_object above. non_pic_object=$pic_object func_append non_pic_objects " $non_pic_object" fi else # Only an error if not doing a dry-run. if $opt_dry_run; then # Extract subdirectory from the argument. func_dirname "$arg" "/" "" xdir=$func_dirname_result func_lo2o "$arg" pic_object=$xdir$objdir/$func_lo2o_result non_pic_object=$xdir$func_lo2o_result func_append libobjs " $pic_object" func_append non_pic_objects " $non_pic_object" else func_fatal_error "'$arg' is not a valid libtool object" fi fi ;; *.$libext) # An archive. func_append deplibs " $arg" func_append old_deplibs " $arg" continue ;; *.la) # A libtool-controlled library. func_resolve_sysroot "$arg" if test dlfiles = "$prev"; then # This library was specified with -dlopen. func_append dlfiles " $func_resolve_sysroot_result" prev= elif test dlprefiles = "$prev"; then # The library was specified with -dlpreopen. func_append dlprefiles " $func_resolve_sysroot_result" prev= else func_append deplibs " $func_resolve_sysroot_result" fi continue ;; # Some other compiler argument. *) # Unknown arguments in both finalize_command and compile_command need # to be aesthetically quoted because they are evaled later. func_quote_for_eval "$arg" arg=$func_quote_for_eval_result ;; esac # arg # Now actually substitute the argument into the commands. if test -n "$arg"; then func_append compile_command " $arg" func_append finalize_command " $arg" fi done # argument parsing loop test -n "$prev" && \ func_fatal_help "the '$prevarg' option requires an argument" if test yes = "$export_dynamic" && test -n "$export_dynamic_flag_spec"; then eval arg=\"$export_dynamic_flag_spec\" func_append compile_command " $arg" func_append finalize_command " $arg" fi oldlibs= # calculate the name of the file, without its directory func_basename "$output" outputname=$func_basename_result libobjs_save=$libobjs if test -n "$shlibpath_var"; then # get the directories listed in $shlibpath_var eval shlib_search_path=\`\$ECHO \"\$$shlibpath_var\" \| \$SED \'s/:/ /g\'\` else shlib_search_path= fi eval sys_lib_search_path=\"$sys_lib_search_path_spec\" eval sys_lib_dlsearch_path=\"$sys_lib_dlsearch_path_spec\" # Definition is injected by LT_CONFIG during libtool generation. func_munge_path_list sys_lib_dlsearch_path "$LT_SYS_LIBRARY_PATH" func_dirname "$output" "/" "" output_objdir=$func_dirname_result$objdir func_to_tool_file "$output_objdir/" tool_output_objdir=$func_to_tool_file_result # Create the object directory. func_mkdir_p "$output_objdir" # Determine the type of output case $output in "") func_fatal_help "you must specify an output file" ;; *.$libext) linkmode=oldlib ;; *.lo | *.$objext) linkmode=obj ;; *.la) linkmode=lib ;; *) linkmode=prog ;; # Anything else should be a program. esac specialdeplibs= libs= # Find all interdependent deplibs by searching for libraries # that are linked more than once (e.g. -la -lb -la) for deplib in $deplibs; do if $opt_preserve_dup_deps; then case "$libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append libs " $deplib" done if test lib = "$linkmode"; then libs="$predeps $libs $compiler_lib_search_path $postdeps" # Compute libraries that are listed more than once in $predeps # $postdeps and mark them as special (i.e., whose duplicates are # not to be eliminated). pre_post_deps= if $opt_duplicate_compiler_generated_deps; then for pre_post_dep in $predeps $postdeps; do case "$pre_post_deps " in *" $pre_post_dep "*) func_append specialdeplibs " $pre_post_deps" ;; esac func_append pre_post_deps " $pre_post_dep" done fi pre_post_deps= fi deplibs= newdependency_libs= newlib_search_path= need_relink=no # whether we're linking any uninstalled libtool libraries notinst_deplibs= # not-installed libtool libraries notinst_path= # paths that contain not-installed libtool libraries case $linkmode in lib) passes="conv dlpreopen link" for file in $dlfiles $dlprefiles; do case $file in *.la) ;; *) func_fatal_help "libraries can '-dlopen' only libtool libraries: $file" ;; esac done ;; prog) compile_deplibs= finalize_deplibs= alldeplibs=false newdlfiles= newdlprefiles= passes="conv scan dlopen dlpreopen link" ;; *) passes="conv" ;; esac for pass in $passes; do # The preopen pass in lib mode reverses $deplibs; put it back here # so that -L comes before libs that need it for instance... if test lib,link = "$linkmode,$pass"; then ## FIXME: Find the place where the list is rebuilt in the wrong ## order, and fix it there properly tmp_deplibs= for deplib in $deplibs; do tmp_deplibs="$deplib $tmp_deplibs" done deplibs=$tmp_deplibs fi if test lib,link = "$linkmode,$pass" || test prog,scan = "$linkmode,$pass"; then libs=$deplibs deplibs= fi if test prog = "$linkmode"; then case $pass in dlopen) libs=$dlfiles ;; dlpreopen) libs=$dlprefiles ;; link) libs="$deplibs %DEPLIBS% $dependency_libs" ;; esac fi if test lib,dlpreopen = "$linkmode,$pass"; then # Collect and forward deplibs of preopened libtool libs for lib in $dlprefiles; do # Ignore non-libtool-libs dependency_libs= func_resolve_sysroot "$lib" case $lib in *.la) func_source "$func_resolve_sysroot_result" ;; esac # Collect preopened libtool deplibs, except any this library # has declared as weak libs for deplib in $dependency_libs; do func_basename "$deplib" deplib_base=$func_basename_result case " $weak_libs " in *" $deplib_base "*) ;; *) func_append deplibs " $deplib" ;; esac done done libs=$dlprefiles fi if test dlopen = "$pass"; then # Collect dlpreopened libraries save_deplibs=$deplibs deplibs= fi for deplib in $libs; do lib= found=false case $deplib in -mt|-mthreads|-kthread|-Kthread|-pthread|-pthreads|--thread-safe \ |-threads|-fopenmp|-openmp|-mp|-xopenmp|-omp|-qsmp=*) if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else func_append compiler_flags " $deplib" if test lib = "$linkmode"; then case "$new_inherited_linker_flags " in *" $deplib "*) ;; * ) func_append new_inherited_linker_flags " $deplib" ;; esac fi fi continue ;; -l*) if test lib != "$linkmode" && test prog != "$linkmode"; then func_warning "'-l' is ignored for archives/objects" continue fi func_stripname '-l' '' "$deplib" name=$func_stripname_result if test lib = "$linkmode"; then searchdirs="$newlib_search_path $lib_search_path $compiler_lib_search_dirs $sys_lib_search_path $shlib_search_path" else searchdirs="$newlib_search_path $lib_search_path $sys_lib_search_path $shlib_search_path" fi for searchdir in $searchdirs; do for search_ext in .la $std_shrext .so .a; do # Search the libtool library lib=$searchdir/lib$name$search_ext if test -f "$lib"; then if test .la = "$search_ext"; then found=: else found=false fi break 2 fi done done if $found; then # deplib is a libtool library # If $allow_libtool_libs_with_static_runtimes && $deplib is a stdlib, # We need to do some special things here, and not later. if test yes = "$allow_libtool_libs_with_static_runtimes"; then case " $predeps $postdeps " in *" $deplib "*) if func_lalib_p "$lib"; then library_names= old_library= func_source "$lib" for l in $old_library $library_names; do ll=$l done if test "X$ll" = "X$old_library"; then # only static version available found=false func_dirname "$lib" "" "." ladir=$func_dirname_result lib=$ladir/$old_library if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" test lib = "$linkmode" && newdependency_libs="$deplib $newdependency_libs" fi continue fi fi ;; *) ;; esac fi else # deplib doesn't seem to be a libtool library if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" test lib = "$linkmode" && newdependency_libs="$deplib $newdependency_libs" fi continue fi ;; # -l *.ltframework) if test prog,link = "$linkmode,$pass"; then compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else deplibs="$deplib $deplibs" if test lib = "$linkmode"; then case "$new_inherited_linker_flags " in *" $deplib "*) ;; * ) func_append new_inherited_linker_flags " $deplib" ;; esac fi fi continue ;; -L*) case $linkmode in lib) deplibs="$deplib $deplibs" test conv = "$pass" && continue newdependency_libs="$deplib $newdependency_libs" func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; prog) if test conv = "$pass"; then deplibs="$deplib $deplibs" continue fi if test scan = "$pass"; then deplibs="$deplib $deplibs" else compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" fi func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; *) func_warning "'-L' is ignored for archives/objects" ;; esac # linkmode continue ;; # -L -R*) if test link = "$pass"; then func_stripname '-R' '' "$deplib" func_resolve_sysroot "$func_stripname_result" dir=$func_resolve_sysroot_result # Make sure the xrpath contains only unique directories. case "$xrpath " in *" $dir "*) ;; *) func_append xrpath " $dir" ;; esac fi deplibs="$deplib $deplibs" continue ;; *.la) func_resolve_sysroot "$deplib" lib=$func_resolve_sysroot_result ;; *.$libext) if test conv = "$pass"; then deplibs="$deplib $deplibs" continue fi case $linkmode in lib) # Linking convenience modules into shared libraries is allowed, # but linking other static libraries is non-portable. case " $dlpreconveniencelibs " in *" $deplib "*) ;; *) valid_a_lib=false case $deplibs_check_method in match_pattern*) set dummy $deplibs_check_method; shift match_pattern_regex=`expr "$deplibs_check_method" : "$1 \(.*\)"` if eval "\$ECHO \"$deplib\"" 2>/dev/null | $SED 10q \ | $EGREP "$match_pattern_regex" > /dev/null; then valid_a_lib=: fi ;; pass_all) valid_a_lib=: ;; esac if $valid_a_lib; then echo $ECHO "*** Warning: Linking the shared library $output against the" $ECHO "*** static library $deplib is not portable!" deplibs="$deplib $deplibs" else echo $ECHO "*** Warning: Trying to link with static lib archive $deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because the file extensions .$libext of this argument makes me believe" echo "*** that it is just a static archive that I should not use here." fi ;; esac continue ;; prog) if test link != "$pass"; then deplibs="$deplib $deplibs" else compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" fi continue ;; esac # linkmode ;; # *.$libext *.lo | *.$objext) if test conv = "$pass"; then deplibs="$deplib $deplibs" elif test prog = "$linkmode"; then if test dlpreopen = "$pass" || test yes != "$dlopen_support" || test no = "$build_libtool_libs"; then # If there is no dlopen support or we're linking statically, # we need to preload. func_append newdlprefiles " $deplib" compile_deplibs="$deplib $compile_deplibs" finalize_deplibs="$deplib $finalize_deplibs" else func_append newdlfiles " $deplib" fi fi continue ;; %DEPLIBS%) alldeplibs=: continue ;; esac # case $deplib $found || test -f "$lib" \ || func_fatal_error "cannot find the library '$lib' or unhandled argument '$deplib'" # Check to see that this really is a libtool archive. func_lalib_unsafe_p "$lib" \ || func_fatal_error "'$lib' is not a valid libtool archive" func_dirname "$lib" "" "." ladir=$func_dirname_result dlname= dlopen= dlpreopen= libdir= library_names= old_library= inherited_linker_flags= # If the library was installed with an old release of libtool, # it will not redefine variables installed, or shouldnotlink installed=yes shouldnotlink=no avoidtemprpath= # Read the .la file func_source "$lib" # Convert "-framework foo" to "foo.ltframework" if test -n "$inherited_linker_flags"; then tmp_inherited_linker_flags=`$ECHO "$inherited_linker_flags" | $SED 's/-framework \([^ $]*\)/\1.ltframework/g'` for tmp_inherited_linker_flag in $tmp_inherited_linker_flags; do case " $new_inherited_linker_flags " in *" $tmp_inherited_linker_flag "*) ;; *) func_append new_inherited_linker_flags " $tmp_inherited_linker_flag";; esac done fi dependency_libs=`$ECHO " $dependency_libs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` if test lib,link = "$linkmode,$pass" || test prog,scan = "$linkmode,$pass" || { test prog != "$linkmode" && test lib != "$linkmode"; }; then test -n "$dlopen" && func_append dlfiles " $dlopen" test -n "$dlpreopen" && func_append dlprefiles " $dlpreopen" fi if test conv = "$pass"; then # Only check for convenience libraries deplibs="$lib $deplibs" if test -z "$libdir"; then if test -z "$old_library"; then func_fatal_error "cannot find name of link library for '$lib'" fi # It is a libtool convenience library, so add in its objects. func_append convenience " $ladir/$objdir/$old_library" func_append old_convenience " $ladir/$objdir/$old_library" elif test prog != "$linkmode" && test lib != "$linkmode"; then func_fatal_error "'$lib' is not a convenience library" fi tmp_libs= for deplib in $dependency_libs; do deplibs="$deplib $deplibs" if $opt_preserve_dup_deps; then case "$tmp_libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append tmp_libs " $deplib" done continue fi # $pass = conv # Get the name of the library we link against. linklib= if test -n "$old_library" && { test yes = "$prefer_static_libs" || test built,no = "$prefer_static_libs,$installed"; }; then linklib=$old_library else for l in $old_library $library_names; do linklib=$l done fi if test -z "$linklib"; then func_fatal_error "cannot find name of link library for '$lib'" fi # This library was specified with -dlopen. if test dlopen = "$pass"; then test -z "$libdir" \ && func_fatal_error "cannot -dlopen a convenience library: '$lib'" if test -z "$dlname" || test yes != "$dlopen_support" || test no = "$build_libtool_libs" then # If there is no dlname, no dlopen support or we're linking # statically, we need to preload. We also need to preload any # dependent libraries so libltdl's deplib preloader doesn't # bomb out in the load deplibs phase. func_append dlprefiles " $lib $dependency_libs" else func_append newdlfiles " $lib" fi continue fi # $pass = dlopen # We need an absolute path. case $ladir in [\\/]* | [A-Za-z]:[\\/]*) abs_ladir=$ladir ;; *) abs_ladir=`cd "$ladir" && pwd` if test -z "$abs_ladir"; then func_warning "cannot determine absolute directory name of '$ladir'" func_warning "passing it literally to the linker, although it might fail" abs_ladir=$ladir fi ;; esac func_basename "$lib" laname=$func_basename_result # Find the relevant object directory and library name. if test yes = "$installed"; then if test ! -f "$lt_sysroot$libdir/$linklib" && test -f "$abs_ladir/$linklib"; then func_warning "library '$lib' was moved." dir=$ladir absdir=$abs_ladir libdir=$abs_ladir else dir=$lt_sysroot$libdir absdir=$lt_sysroot$libdir fi test yes = "$hardcode_automatic" && avoidtemprpath=yes else if test ! -f "$ladir/$objdir/$linklib" && test -f "$abs_ladir/$linklib"; then dir=$ladir absdir=$abs_ladir # Remove this search path later func_append notinst_path " $abs_ladir" else dir=$ladir/$objdir absdir=$abs_ladir/$objdir # Remove this search path later func_append notinst_path " $abs_ladir" fi fi # $installed = yes func_stripname 'lib' '.la' "$laname" name=$func_stripname_result # This library was specified with -dlpreopen. if test dlpreopen = "$pass"; then if test -z "$libdir" && test prog = "$linkmode"; then func_fatal_error "only libraries may -dlpreopen a convenience library: '$lib'" fi case $host in # special handling for platforms with PE-DLLs. *cygwin* | *mingw* | *cegcc* ) # Linker will automatically link against shared library if both # static and shared are present. Therefore, ensure we extract # symbols from the import library if a shared library is present # (otherwise, the dlopen module name will be incorrect). We do # this by putting the import library name into $newdlprefiles. # We recover the dlopen module name by 'saving' the la file # name in a special purpose variable, and (later) extracting the # dlname from the la file. if test -n "$dlname"; then func_tr_sh "$dir/$linklib" eval "libfile_$func_tr_sh_result=\$abs_ladir/\$laname" func_append newdlprefiles " $dir/$linklib" else func_append newdlprefiles " $dir/$old_library" # Keep a list of preopened convenience libraries to check # that they are being used correctly in the link pass. test -z "$libdir" && \ func_append dlpreconveniencelibs " $dir/$old_library" fi ;; * ) # Prefer using a static library (so that no silly _DYNAMIC symbols # are required to link). if test -n "$old_library"; then func_append newdlprefiles " $dir/$old_library" # Keep a list of preopened convenience libraries to check # that they are being used correctly in the link pass. test -z "$libdir" && \ func_append dlpreconveniencelibs " $dir/$old_library" # Otherwise, use the dlname, so that lt_dlopen finds it. elif test -n "$dlname"; then func_append newdlprefiles " $dir/$dlname" else func_append newdlprefiles " $dir/$linklib" fi ;; esac fi # $pass = dlpreopen if test -z "$libdir"; then # Link the convenience library if test lib = "$linkmode"; then deplibs="$dir/$old_library $deplibs" elif test prog,link = "$linkmode,$pass"; then compile_deplibs="$dir/$old_library $compile_deplibs" finalize_deplibs="$dir/$old_library $finalize_deplibs" else deplibs="$lib $deplibs" # used for prog,scan pass fi continue fi if test prog = "$linkmode" && test link != "$pass"; then func_append newlib_search_path " $ladir" deplibs="$lib $deplibs" linkalldeplibs=false if test no != "$link_all_deplibs" || test -z "$library_names" || test no = "$build_libtool_libs"; then linkalldeplibs=: fi tmp_libs= for deplib in $dependency_libs; do case $deplib in -L*) func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result" func_append newlib_search_path " $func_resolve_sysroot_result" ;; esac # Need to link against all dependency_libs? if $linkalldeplibs; then deplibs="$deplib $deplibs" else # Need to hardcode shared library paths # or/and link against static libraries newdependency_libs="$deplib $newdependency_libs" fi if $opt_preserve_dup_deps; then case "$tmp_libs " in *" $deplib "*) func_append specialdeplibs " $deplib" ;; esac fi func_append tmp_libs " $deplib" done # for deplib continue fi # $linkmode = prog... if test prog,link = "$linkmode,$pass"; then if test -n "$library_names" && { { test no = "$prefer_static_libs" || test built,yes = "$prefer_static_libs,$installed"; } || test -z "$old_library"; }; then # We need to hardcode the library path if test -n "$shlibpath_var" && test -z "$avoidtemprpath"; then # Make sure the rpath contains only unique directories. case $temp_rpath: in *"$absdir:"*) ;; *) func_append temp_rpath "$absdir:" ;; esac fi # Hardcode the library path. # Skip directories that are in the system default run-time # search path. case " $sys_lib_dlsearch_path " in *" $absdir "*) ;; *) case "$compile_rpath " in *" $absdir "*) ;; *) func_append compile_rpath " $absdir" ;; esac ;; esac case " $sys_lib_dlsearch_path " in *" $libdir "*) ;; *) case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac ;; esac fi # $linkmode,$pass = prog,link... if $alldeplibs && { test pass_all = "$deplibs_check_method" || { test yes = "$build_libtool_libs" && test -n "$library_names"; }; }; then # We only need to search for static libraries continue fi fi link_static=no # Whether the deplib will be linked statically use_static_libs=$prefer_static_libs if test built = "$use_static_libs" && test yes = "$installed"; then use_static_libs=no fi if test -n "$library_names" && { test no = "$use_static_libs" || test -z "$old_library"; }; then case $host in *cygwin* | *mingw* | *cegcc* | *os2*) # No point in relinking DLLs because paths are not encoded func_append notinst_deplibs " $lib" need_relink=no ;; *) if test no = "$installed"; then func_append notinst_deplibs " $lib" need_relink=yes fi ;; esac # This is a shared library # Warn about portability, can't link against -module's on some # systems (darwin). Don't bleat about dlopened modules though! dlopenmodule= for dlpremoduletest in $dlprefiles; do if test "X$dlpremoduletest" = "X$lib"; then dlopenmodule=$dlpremoduletest break fi done if test -z "$dlopenmodule" && test yes = "$shouldnotlink" && test link = "$pass"; then echo if test prog = "$linkmode"; then $ECHO "*** Warning: Linking the executable $output against the loadable module" else $ECHO "*** Warning: Linking the shared library $output against the loadable module" fi $ECHO "*** $linklib is not portable!" fi if test lib = "$linkmode" && test yes = "$hardcode_into_libs"; then # Hardcode the library path. # Skip directories that are in the system default run-time # search path. case " $sys_lib_dlsearch_path " in *" $absdir "*) ;; *) case "$compile_rpath " in *" $absdir "*) ;; *) func_append compile_rpath " $absdir" ;; esac ;; esac case " $sys_lib_dlsearch_path " in *" $libdir "*) ;; *) case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac ;; esac fi if test -n "$old_archive_from_expsyms_cmds"; then # figure out the soname set dummy $library_names shift realname=$1 shift libname=`eval "\\$ECHO \"$libname_spec\""` # use dlname if we got it. it's perfectly good, no? if test -n "$dlname"; then soname=$dlname elif test -n "$soname_spec"; then # bleh windows case $host in *cygwin* | mingw* | *cegcc* | *os2*) func_arith $current - $age major=$func_arith_result versuffix=-$major ;; esac eval soname=\"$soname_spec\" else soname=$realname fi # Make a new name for the extract_expsyms_cmds to use soroot=$soname func_basename "$soroot" soname=$func_basename_result func_stripname 'lib' '.dll' "$soname" newlib=libimp-$func_stripname_result.a # If the library has no export list, then create one now if test -f "$output_objdir/$soname-def"; then : else func_verbose "extracting exported symbol list from '$soname'" func_execute_cmds "$extract_expsyms_cmds" 'exit $?' fi # Create $newlib if test -f "$output_objdir/$newlib"; then :; else func_verbose "generating import library for '$soname'" func_execute_cmds "$old_archive_from_expsyms_cmds" 'exit $?' fi # make sure the library variables are pointing to the new library dir=$output_objdir linklib=$newlib fi # test -n "$old_archive_from_expsyms_cmds" if test prog = "$linkmode" || test relink != "$opt_mode"; then add_shlibpath= add_dir= add= lib_linked=yes case $hardcode_action in immediate | unsupported) if test no = "$hardcode_direct"; then add=$dir/$linklib case $host in *-*-sco3.2v5.0.[024]*) add_dir=-L$dir ;; *-*-sysv4*uw2*) add_dir=-L$dir ;; *-*-sysv5OpenUNIX* | *-*-sysv5UnixWare7.[01].[10]* | \ *-*-unixware7*) add_dir=-L$dir ;; *-*-darwin* ) # if the lib is a (non-dlopened) module then we cannot # link against it, someone is ignoring the earlier warnings if /usr/bin/file -L $add 2> /dev/null | $GREP ": [^:]* bundle" >/dev/null; then if test "X$dlopenmodule" != "X$lib"; then $ECHO "*** Warning: lib $linklib is a module, not a shared library" if test -z "$old_library"; then echo echo "*** And there doesn't seem to be a static archive available" echo "*** The link will probably fail, sorry" else add=$dir/$old_library fi elif test -n "$old_library"; then add=$dir/$old_library fi fi esac elif test no = "$hardcode_minus_L"; then case $host in *-*-sunos*) add_shlibpath=$dir ;; esac add_dir=-L$dir add=-l$name elif test no = "$hardcode_shlibpath_var"; then add_shlibpath=$dir add=-l$name else lib_linked=no fi ;; relink) if test yes = "$hardcode_direct" && test no = "$hardcode_direct_absolute"; then add=$dir/$linklib elif test yes = "$hardcode_minus_L"; then add_dir=-L$absdir # Try looking first in the location we're being installed to. if test -n "$inst_prefix_dir"; then case $libdir in [\\/]*) func_append add_dir " -L$inst_prefix_dir$libdir" ;; esac fi add=-l$name elif test yes = "$hardcode_shlibpath_var"; then add_shlibpath=$dir add=-l$name else lib_linked=no fi ;; *) lib_linked=no ;; esac if test yes != "$lib_linked"; then func_fatal_configuration "unsupported hardcode properties" fi if test -n "$add_shlibpath"; then case :$compile_shlibpath: in *":$add_shlibpath:"*) ;; *) func_append compile_shlibpath "$add_shlibpath:" ;; esac fi if test prog = "$linkmode"; then test -n "$add_dir" && compile_deplibs="$add_dir $compile_deplibs" test -n "$add" && compile_deplibs="$add $compile_deplibs" else test -n "$add_dir" && deplibs="$add_dir $deplibs" test -n "$add" && deplibs="$add $deplibs" if test yes != "$hardcode_direct" && test yes != "$hardcode_minus_L" && test yes = "$hardcode_shlibpath_var"; then case :$finalize_shlibpath: in *":$libdir:"*) ;; *) func_append finalize_shlibpath "$libdir:" ;; esac fi fi fi if test prog = "$linkmode" || test relink = "$opt_mode"; then add_shlibpath= add_dir= add= # Finalize command for both is simple: just hardcode it. if test yes = "$hardcode_direct" && test no = "$hardcode_direct_absolute"; then add=$libdir/$linklib elif test yes = "$hardcode_minus_L"; then add_dir=-L$libdir add=-l$name elif test yes = "$hardcode_shlibpath_var"; then case :$finalize_shlibpath: in *":$libdir:"*) ;; *) func_append finalize_shlibpath "$libdir:" ;; esac add=-l$name elif test yes = "$hardcode_automatic"; then if test -n "$inst_prefix_dir" && test -f "$inst_prefix_dir$libdir/$linklib"; then add=$inst_prefix_dir$libdir/$linklib else add=$libdir/$linklib fi else # We cannot seem to hardcode it, guess we'll fake it. add_dir=-L$libdir # Try looking first in the location we're being installed to. if test -n "$inst_prefix_dir"; then case $libdir in [\\/]*) func_append add_dir " -L$inst_prefix_dir$libdir" ;; esac fi add=-l$name fi if test prog = "$linkmode"; then test -n "$add_dir" && finalize_deplibs="$add_dir $finalize_deplibs" test -n "$add" && finalize_deplibs="$add $finalize_deplibs" else test -n "$add_dir" && deplibs="$add_dir $deplibs" test -n "$add" && deplibs="$add $deplibs" fi fi elif test prog = "$linkmode"; then # Here we assume that one of hardcode_direct or hardcode_minus_L # is not unsupported. This is valid on all known static and # shared platforms. if test unsupported != "$hardcode_direct"; then test -n "$old_library" && linklib=$old_library compile_deplibs="$dir/$linklib $compile_deplibs" finalize_deplibs="$dir/$linklib $finalize_deplibs" else compile_deplibs="-l$name -L$dir $compile_deplibs" finalize_deplibs="-l$name -L$dir $finalize_deplibs" fi elif test yes = "$build_libtool_libs"; then # Not a shared library if test pass_all != "$deplibs_check_method"; then # We're trying link a shared library against a static one # but the system doesn't support it. # Just print a warning and add the library to dependency_libs so # that the program can be linked against the static library. echo $ECHO "*** Warning: This system cannot link to static lib archive $lib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have." if test yes = "$module"; then echo "*** But as you try to build a module library, libtool will still create " echo "*** a static module, that should work as long as the dlopening application" echo "*** is linked with the -dlopen flag to resolve symbols at runtime." if test -z "$global_symbol_pipe"; then echo echo "*** However, this would only work if libtool was able to extract symbol" echo "*** lists from a program, using 'nm' or equivalent, but libtool could" echo "*** not find such a program. So, this module is probably useless." echo "*** 'nm' from GNU binutils and a full rebuild may help." fi if test no = "$build_old_libs"; then build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi fi else deplibs="$dir/$old_library $deplibs" link_static=yes fi fi # link shared/static library? if test lib = "$linkmode"; then if test -n "$dependency_libs" && { test yes != "$hardcode_into_libs" || test yes = "$build_old_libs" || test yes = "$link_static"; }; then # Extract -R from dependency_libs temp_deplibs= for libdir in $dependency_libs; do case $libdir in -R*) func_stripname '-R' '' "$libdir" temp_xrpath=$func_stripname_result case " $xrpath " in *" $temp_xrpath "*) ;; *) func_append xrpath " $temp_xrpath";; esac;; *) func_append temp_deplibs " $libdir";; esac done dependency_libs=$temp_deplibs fi func_append newlib_search_path " $absdir" # Link against this library test no = "$link_static" && newdependency_libs="$abs_ladir/$laname $newdependency_libs" # ... and its dependency_libs tmp_libs= for deplib in $dependency_libs; do newdependency_libs="$deplib $newdependency_libs" case $deplib in -L*) func_stripname '-L' '' "$deplib" func_resolve_sysroot "$func_stripname_result";; *) func_resolve_sysroot "$deplib" ;; esac if $opt_preserve_dup_deps; then case "$tmp_libs " in *" $func_resolve_sysroot_result "*) func_append specialdeplibs " $func_resolve_sysroot_result" ;; esac fi func_append tmp_libs " $func_resolve_sysroot_result" done if test no != "$link_all_deplibs"; then # Add the search paths of all dependency libraries for deplib in $dependency_libs; do path= case $deplib in -L*) path=$deplib ;; *.la) func_resolve_sysroot "$deplib" deplib=$func_resolve_sysroot_result func_dirname "$deplib" "" "." dir=$func_dirname_result # We need an absolute path. case $dir in [\\/]* | [A-Za-z]:[\\/]*) absdir=$dir ;; *) absdir=`cd "$dir" && pwd` if test -z "$absdir"; then func_warning "cannot determine absolute directory name of '$dir'" absdir=$dir fi ;; esac if $GREP "^installed=no" $deplib > /dev/null; then case $host in *-*-darwin*) depdepl= eval deplibrary_names=`$SED -n -e 's/^library_names=\(.*\)$/\1/p' $deplib` if test -n "$deplibrary_names"; then for tmp in $deplibrary_names; do depdepl=$tmp done if test -f "$absdir/$objdir/$depdepl"; then depdepl=$absdir/$objdir/$depdepl darwin_install_name=`$OTOOL -L $depdepl | awk '{if (NR == 2) {print $1;exit}}'` if test -z "$darwin_install_name"; then darwin_install_name=`$OTOOL64 -L $depdepl | awk '{if (NR == 2) {print $1;exit}}'` fi func_append compiler_flags " $wl-dylib_file $wl$darwin_install_name:$depdepl" func_append linker_flags " -dylib_file $darwin_install_name:$depdepl" path= fi fi ;; *) path=-L$absdir/$objdir ;; esac else eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $deplib` test -z "$libdir" && \ func_fatal_error "'$deplib' is not a valid libtool archive" test "$absdir" != "$libdir" && \ func_warning "'$deplib' seems to be moved" path=-L$absdir fi ;; esac case " $deplibs " in *" $path "*) ;; *) deplibs="$path $deplibs" ;; esac done fi # link_all_deplibs != no fi # linkmode = lib done # for deplib in $libs if test link = "$pass"; then if test prog = "$linkmode"; then compile_deplibs="$new_inherited_linker_flags $compile_deplibs" finalize_deplibs="$new_inherited_linker_flags $finalize_deplibs" else compiler_flags="$compiler_flags "`$ECHO " $new_inherited_linker_flags" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` fi fi dependency_libs=$newdependency_libs if test dlpreopen = "$pass"; then # Link the dlpreopened libraries before other libraries for deplib in $save_deplibs; do deplibs="$deplib $deplibs" done fi if test dlopen != "$pass"; then test conv = "$pass" || { # Make sure lib_search_path contains only unique directories. lib_search_path= for dir in $newlib_search_path; do case "$lib_search_path " in *" $dir "*) ;; *) func_append lib_search_path " $dir" ;; esac done newlib_search_path= } if test prog,link = "$linkmode,$pass"; then vars="compile_deplibs finalize_deplibs" else vars=deplibs fi for var in $vars dependency_libs; do # Add libraries to $var in reverse order eval tmp_libs=\"\$$var\" new_libs= for deplib in $tmp_libs; do # FIXME: Pedantically, this is the right thing to do, so # that some nasty dependency loop isn't accidentally # broken: #new_libs="$deplib $new_libs" # Pragmatically, this seems to cause very few problems in # practice: case $deplib in -L*) new_libs="$deplib $new_libs" ;; -R*) ;; *) # And here is the reason: when a library appears more # than once as an explicit dependence of a library, or # is implicitly linked in more than once by the # compiler, it is considered special, and multiple # occurrences thereof are not removed. Compare this # with having the same library being listed as a # dependency of multiple other libraries: in this case, # we know (pedantically, we assume) the library does not # need to be listed more than once, so we keep only the # last copy. This is not always right, but it is rare # enough that we require users that really mean to play # such unportable linking tricks to link the library # using -Wl,-lname, so that libtool does not consider it # for duplicate removal. case " $specialdeplibs " in *" $deplib "*) new_libs="$deplib $new_libs" ;; *) case " $new_libs " in *" $deplib "*) ;; *) new_libs="$deplib $new_libs" ;; esac ;; esac ;; esac done tmp_libs= for deplib in $new_libs; do case $deplib in -L*) case " $tmp_libs " in *" $deplib "*) ;; *) func_append tmp_libs " $deplib" ;; esac ;; *) func_append tmp_libs " $deplib" ;; esac done eval $var=\"$tmp_libs\" done # for var fi # Add Sun CC postdeps if required: test CXX = "$tagname" && { case $host_os in linux*) case `$CC -V 2>&1 | sed 5q` in *Sun\ C*) # Sun C++ 5.9 func_suncc_cstd_abi if test no != "$suncc_use_cstd_abi"; then func_append postdeps ' -library=Cstd -library=Crun' fi ;; esac ;; solaris*) func_cc_basename "$CC" case $func_cc_basename_result in CC* | sunCC*) func_suncc_cstd_abi if test no != "$suncc_use_cstd_abi"; then func_append postdeps ' -library=Cstd -library=Crun' fi ;; esac ;; esac } # Last step: remove runtime libs from dependency_libs # (they stay in deplibs) tmp_libs= for i in $dependency_libs; do case " $predeps $postdeps $compiler_lib_search_path " in *" $i "*) i= ;; esac if test -n "$i"; then func_append tmp_libs " $i" fi done dependency_libs=$tmp_libs done # for pass if test prog = "$linkmode"; then dlfiles=$newdlfiles fi if test prog = "$linkmode" || test lib = "$linkmode"; then dlprefiles=$newdlprefiles fi case $linkmode in oldlib) if test -n "$dlfiles$dlprefiles" || test no != "$dlself"; then func_warning "'-dlopen' is ignored for archives" fi case " $deplibs" in *\ -l* | *\ -L*) func_warning "'-l' and '-L' are ignored for archives" ;; esac test -n "$rpath" && \ func_warning "'-rpath' is ignored for archives" test -n "$xrpath" && \ func_warning "'-R' is ignored for archives" test -n "$vinfo" && \ func_warning "'-version-info/-version-number' is ignored for archives" test -n "$release" && \ func_warning "'-release' is ignored for archives" test -n "$export_symbols$export_symbols_regex" && \ func_warning "'-export-symbols' is ignored for archives" # Now set the variables for building old libraries. build_libtool_libs=no oldlibs=$output func_append objs "$old_deplibs" ;; lib) # Make sure we only generate libraries of the form 'libNAME.la'. case $outputname in lib*) func_stripname 'lib' '.la' "$outputname" name=$func_stripname_result eval shared_ext=\"$shrext_cmds\" eval libname=\"$libname_spec\" ;; *) test no = "$module" \ && func_fatal_help "libtool library '$output' must begin with 'lib'" if test no != "$need_lib_prefix"; then # Add the "lib" prefix for modules if required func_stripname '' '.la' "$outputname" name=$func_stripname_result eval shared_ext=\"$shrext_cmds\" eval libname=\"$libname_spec\" else func_stripname '' '.la' "$outputname" libname=$func_stripname_result fi ;; esac if test -n "$objs"; then if test pass_all != "$deplibs_check_method"; then func_fatal_error "cannot build libtool library '$output' from non-libtool objects on this host:$objs" else echo $ECHO "*** Warning: Linking the shared library $output against the non-libtool" $ECHO "*** objects $objs is not portable!" func_append libobjs " $objs" fi fi test no = "$dlself" \ || func_warning "'-dlopen self' is ignored for libtool libraries" set dummy $rpath shift test 1 -lt "$#" \ && func_warning "ignoring multiple '-rpath's for a libtool library" install_libdir=$1 oldlibs= if test -z "$rpath"; then if test yes = "$build_libtool_libs"; then # Building a libtool convenience library. # Some compilers have problems with a '.al' extension so # convenience libraries should have the same extension an # archive normally would. oldlibs="$output_objdir/$libname.$libext $oldlibs" build_libtool_libs=convenience build_old_libs=yes fi test -n "$vinfo" && \ func_warning "'-version-info/-version-number' is ignored for convenience libraries" test -n "$release" && \ func_warning "'-release' is ignored for convenience libraries" else # Parse the version information argument. save_ifs=$IFS; IFS=: set dummy $vinfo 0 0 0 shift IFS=$save_ifs test -n "$7" && \ func_fatal_help "too many parameters to '-version-info'" # convert absolute version numbers to libtool ages # this retains compatibility with .la files and attempts # to make the code below a bit more comprehensible case $vinfo_number in yes) number_major=$1 number_minor=$2 number_revision=$3 # # There are really only two kinds -- those that # use the current revision as the major version # and those that subtract age and use age as # a minor version. But, then there is irix # that has an extra 1 added just for fun # case $version_type in # correct linux to gnu/linux during the next big refactor darwin|freebsd-elf|linux|osf|windows|none) func_arith $number_major + $number_minor current=$func_arith_result age=$number_minor revision=$number_revision ;; freebsd-aout|qnx|sunos) current=$number_major revision=$number_minor age=0 ;; irix|nonstopux) func_arith $number_major + $number_minor current=$func_arith_result age=$number_minor revision=$number_minor lt_irix_increment=no ;; esac ;; no) current=$1 revision=$2 age=$3 ;; esac # Check that each of the things are valid numbers. case $current in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "CURRENT '$current' must be a nonnegative integer" func_fatal_error "'$vinfo' is not valid version information" ;; esac case $revision in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "REVISION '$revision' must be a nonnegative integer" func_fatal_error "'$vinfo' is not valid version information" ;; esac case $age in 0|[1-9]|[1-9][0-9]|[1-9][0-9][0-9]|[1-9][0-9][0-9][0-9]|[1-9][0-9][0-9][0-9][0-9]) ;; *) func_error "AGE '$age' must be a nonnegative integer" func_fatal_error "'$vinfo' is not valid version information" ;; esac if test "$age" -gt "$current"; then func_error "AGE '$age' is greater than the current interface number '$current'" func_fatal_error "'$vinfo' is not valid version information" fi # Calculate the version variables. major= versuffix= verstring= case $version_type in none) ;; darwin) # Like Linux, but with the current version available in # verstring for coding it into the library header func_arith $current - $age major=.$func_arith_result versuffix=$major.$age.$revision # Darwin ld doesn't like 0 for these options... func_arith $current + 1 minor_current=$func_arith_result xlcverstring="$wl-compatibility_version $wl$minor_current $wl-current_version $wl$minor_current.$revision" verstring="-compatibility_version $minor_current -current_version $minor_current.$revision" # On Darwin other compilers case $CC in nagfor*) verstring="$wl-compatibility_version $wl$minor_current $wl-current_version $wl$minor_current.$revision" ;; *) verstring="-compatibility_version $minor_current -current_version $minor_current.$revision" ;; esac ;; freebsd-aout) major=.$current versuffix=.$current.$revision ;; freebsd-elf) func_arith $current - $age major=.$func_arith_result versuffix=$major.$age.$revision ;; irix | nonstopux) if test no = "$lt_irix_increment"; then func_arith $current - $age else func_arith $current - $age + 1 fi major=$func_arith_result case $version_type in nonstopux) verstring_prefix=nonstopux ;; *) verstring_prefix=sgi ;; esac verstring=$verstring_prefix$major.$revision # Add in all the interfaces that we are compatible with. loop=$revision while test 0 -ne "$loop"; do func_arith $revision - $loop iface=$func_arith_result func_arith $loop - 1 loop=$func_arith_result verstring=$verstring_prefix$major.$iface:$verstring done # Before this point, $major must not contain '.'. major=.$major versuffix=$major.$revision ;; linux) # correct to gnu/linux during the next big refactor func_arith $current - $age major=.$func_arith_result versuffix=$major.$age.$revision ;; osf) func_arith $current - $age major=.$func_arith_result versuffix=.$current.$age.$revision verstring=$current.$age.$revision # Add in all the interfaces that we are compatible with. loop=$age while test 0 -ne "$loop"; do func_arith $current - $loop iface=$func_arith_result func_arith $loop - 1 loop=$func_arith_result verstring=$verstring:$iface.0 done # Make executables depend on our current version. func_append verstring ":$current.0" ;; qnx) major=.$current versuffix=.$current ;; sco) major=.$current versuffix=.$current ;; sunos) major=.$current versuffix=.$current.$revision ;; windows) # Use '-' rather than '.', since we only want one # extension on DOS 8.3 file systems. func_arith $current - $age major=$func_arith_result versuffix=-$major ;; *) func_fatal_configuration "unknown library version type '$version_type'" ;; esac # Clear the version info if we defaulted, and they specified a release. if test -z "$vinfo" && test -n "$release"; then major= case $version_type in darwin) # we can't check for "0.0" in archive_cmds due to quoting # problems, so we reset it completely verstring= ;; *) verstring=0.0 ;; esac if test no = "$need_version"; then versuffix= else versuffix=.0.0 fi fi # Remove version info from name if versioning should be avoided if test yes,no = "$avoid_version,$need_version"; then major= versuffix= verstring= fi # Check to see if the archive will have undefined symbols. if test yes = "$allow_undefined"; then if test unsupported = "$allow_undefined_flag"; then if test yes = "$build_old_libs"; then func_warning "undefined symbols not allowed in $host shared libraries; building static only" build_libtool_libs=no else func_fatal_error "can't build $host shared library unless -no-undefined is specified" fi fi else # Don't allow undefined symbols. allow_undefined_flag=$no_undefined_flag fi fi func_generate_dlsyms "$libname" "$libname" : func_append libobjs " $symfileobj" test " " = "$libobjs" && libobjs= if test relink != "$opt_mode"; then # Remove our outputs, but don't remove object files since they # may have been created when compiling PIC objects. removelist= tempremovelist=`$ECHO "$output_objdir/*"` for p in $tempremovelist; do case $p in *.$objext | *.gcno) ;; $output_objdir/$outputname | $output_objdir/$libname.* | $output_objdir/$libname$release.*) if test -n "$precious_files_regex"; then if $ECHO "$p" | $EGREP -e "$precious_files_regex" >/dev/null 2>&1 then continue fi fi func_append removelist " $p" ;; *) ;; esac done test -n "$removelist" && \ func_show_eval "${RM}r \$removelist" fi # Now set the variables for building old libraries. if test yes = "$build_old_libs" && test convenience != "$build_libtool_libs"; then func_append oldlibs " $output_objdir/$libname.$libext" # Transform .lo files to .o files. oldobjs="$objs "`$ECHO "$libobjs" | $SP2NL | $SED "/\.$libext$/d; $lo2o" | $NL2SP` fi # Eliminate all temporary directories. #for path in $notinst_path; do # lib_search_path=`$ECHO "$lib_search_path " | $SED "s% $path % %g"` # deplibs=`$ECHO "$deplibs " | $SED "s% -L$path % %g"` # dependency_libs=`$ECHO "$dependency_libs " | $SED "s% -L$path % %g"` #done if test -n "$xrpath"; then # If the user specified any rpath flags, then add them. temp_xrpath= for libdir in $xrpath; do func_replace_sysroot "$libdir" func_append temp_xrpath " -R$func_replace_sysroot_result" case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac done if test yes != "$hardcode_into_libs" || test yes = "$build_old_libs"; then dependency_libs="$temp_xrpath $dependency_libs" fi fi # Make sure dlfiles contains only unique files that won't be dlpreopened old_dlfiles=$dlfiles dlfiles= for lib in $old_dlfiles; do case " $dlprefiles $dlfiles " in *" $lib "*) ;; *) func_append dlfiles " $lib" ;; esac done # Make sure dlprefiles contains only unique files old_dlprefiles=$dlprefiles dlprefiles= for lib in $old_dlprefiles; do case "$dlprefiles " in *" $lib "*) ;; *) func_append dlprefiles " $lib" ;; esac done if test yes = "$build_libtool_libs"; then if test -n "$rpath"; then case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-*-beos* | *-cegcc* | *-*-haiku*) # these systems don't actually have a c library (as such)! ;; *-*-rhapsody* | *-*-darwin1.[012]) # Rhapsody C library is in the System framework func_append deplibs " System.ltframework" ;; *-*-netbsd*) # Don't link with libc until the a.out ld.so is fixed. ;; *-*-openbsd* | *-*-freebsd* | *-*-dragonfly*) # Do not include libc due to us having libc/libc_r. ;; *-*-sco3.2v5* | *-*-sco5v6*) # Causes problems with __ctype ;; *-*-sysv4.2uw2* | *-*-sysv5* | *-*-unixware* | *-*-OpenUNIX*) # Compiler inserts libc in the correct place for threads to work ;; *) # Add libc to deplibs on all other systems if necessary. if test yes = "$build_libtool_need_lc"; then func_append deplibs " -lc" fi ;; esac fi # Transform deplibs into only deplibs that can be linked in shared. name_save=$name libname_save=$libname release_save=$release versuffix_save=$versuffix major_save=$major # I'm not sure if I'm treating the release correctly. I think # release should show up in the -l (ie -lgmp5) so we don't want to # add it in twice. Is that correct? release= versuffix= major= newdeplibs= droppeddeps=no case $deplibs_check_method in pass_all) # Don't check for shared/static. Everything works. # This might be a little naive. We might want to check # whether the library exists or not. But this is on # osf3 & osf4 and I'm not really sure... Just # implementing what was already the behavior. newdeplibs=$deplibs ;; test_compile) # This code stresses the "libraries are programs" paradigm to its # limits. Maybe even breaks it. We compile a program, linking it # against the deplibs as a proxy for the library. Then we can check # whether they linked in statically or dynamically with ldd. $opt_dry_run || $RM conftest.c cat > conftest.c </dev/null` $nocaseglob else potential_libs=`ls $i/$libnameglob[.-]* 2>/dev/null` fi for potent_lib in $potential_libs; do # Follow soft links. if ls -lLd "$potent_lib" 2>/dev/null | $GREP " -> " >/dev/null; then continue fi # The statement above tries to avoid entering an # endless loop below, in case of cyclic links. # We might still enter an endless loop, since a link # loop can be closed while we follow links, # but so what? potlib=$potent_lib while test -h "$potlib" 2>/dev/null; do potliblink=`ls -ld $potlib | $SED 's/.* -> //'` case $potliblink in [\\/]* | [A-Za-z]:[\\/]*) potlib=$potliblink;; *) potlib=`$ECHO "$potlib" | $SED 's|[^/]*$||'`"$potliblink";; esac done if eval $file_magic_cmd \"\$potlib\" 2>/dev/null | $SED -e 10q | $EGREP "$file_magic_regex" > /dev/null; then func_append newdeplibs " $a_deplib" a_deplib= break 2 fi done done fi if test -n "$a_deplib"; then droppeddeps=yes echo $ECHO "*** Warning: linker path does not have real file for library $a_deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because I did check the linker path looking for a file starting" if test -z "$potlib"; then $ECHO "*** with $libname but no candidates were found. (...for file magic test)" else $ECHO "*** with $libname and none of the candidates passed a file format test" $ECHO "*** using a file magic. Last file checked: $potlib" fi fi ;; *) # Add a -L argument. func_append newdeplibs " $a_deplib" ;; esac done # Gone through all deplibs. ;; match_pattern*) set dummy $deplibs_check_method; shift match_pattern_regex=`expr "$deplibs_check_method" : "$1 \(.*\)"` for a_deplib in $deplibs; do case $a_deplib in -l*) func_stripname -l '' "$a_deplib" name=$func_stripname_result if test yes = "$allow_libtool_libs_with_static_runtimes"; then case " $predeps $postdeps " in *" $a_deplib "*) func_append newdeplibs " $a_deplib" a_deplib= ;; esac fi if test -n "$a_deplib"; then libname=`eval "\\$ECHO \"$libname_spec\""` for i in $lib_search_path $sys_lib_search_path $shlib_search_path; do potential_libs=`ls $i/$libname[.-]* 2>/dev/null` for potent_lib in $potential_libs; do potlib=$potent_lib # see symlink-check above in file_magic test if eval "\$ECHO \"$potent_lib\"" 2>/dev/null | $SED 10q | \ $EGREP "$match_pattern_regex" > /dev/null; then func_append newdeplibs " $a_deplib" a_deplib= break 2 fi done done fi if test -n "$a_deplib"; then droppeddeps=yes echo $ECHO "*** Warning: linker path does not have real file for library $a_deplib." echo "*** I have the capability to make that library automatically link in when" echo "*** you link to this library. But I can only do this if you have a" echo "*** shared version of the library, which you do not appear to have" echo "*** because I did check the linker path looking for a file starting" if test -z "$potlib"; then $ECHO "*** with $libname but no candidates were found. (...for regex pattern test)" else $ECHO "*** with $libname and none of the candidates passed a file format test" $ECHO "*** using a regex pattern. Last file checked: $potlib" fi fi ;; *) # Add a -L argument. func_append newdeplibs " $a_deplib" ;; esac done # Gone through all deplibs. ;; none | unknown | *) newdeplibs= tmp_deplibs=`$ECHO " $deplibs" | $SED 's/ -lc$//; s/ -[LR][^ ]*//g'` if test yes = "$allow_libtool_libs_with_static_runtimes"; then for i in $predeps $postdeps; do # can't use Xsed below, because $i might contain '/' tmp_deplibs=`$ECHO " $tmp_deplibs" | $SED "s|$i||"` done fi case $tmp_deplibs in *[!\ \ ]*) echo if test none = "$deplibs_check_method"; then echo "*** Warning: inter-library dependencies are not supported in this platform." else echo "*** Warning: inter-library dependencies are not known to be supported." fi echo "*** All declared inter-library dependencies are being dropped." droppeddeps=yes ;; esac ;; esac versuffix=$versuffix_save major=$major_save release=$release_save libname=$libname_save name=$name_save case $host in *-*-rhapsody* | *-*-darwin1.[012]) # On Rhapsody replace the C library with the System framework newdeplibs=`$ECHO " $newdeplibs" | $SED 's/ -lc / System.ltframework /'` ;; esac if test yes = "$droppeddeps"; then if test yes = "$module"; then echo echo "*** Warning: libtool could not satisfy all declared inter-library" $ECHO "*** dependencies of module $libname. Therefore, libtool will create" echo "*** a static module, that should work as long as the dlopening" echo "*** application is linked with the -dlopen flag." if test -z "$global_symbol_pipe"; then echo echo "*** However, this would only work if libtool was able to extract symbol" echo "*** lists from a program, using 'nm' or equivalent, but libtool could" echo "*** not find such a program. So, this module is probably useless." echo "*** 'nm' from GNU binutils and a full rebuild may help." fi if test no = "$build_old_libs"; then oldlibs=$output_objdir/$libname.$libext build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi else echo "*** The inter-library dependencies that have been dropped here will be" echo "*** automatically added whenever a program is linked with this library" echo "*** or is declared to -dlopen it." if test no = "$allow_undefined"; then echo echo "*** Since this library must not contain undefined symbols," echo "*** because either the platform does not support them or" echo "*** it was explicitly requested with -no-undefined," echo "*** libtool will only create a static version of it." if test no = "$build_old_libs"; then oldlibs=$output_objdir/$libname.$libext build_libtool_libs=module build_old_libs=yes else build_libtool_libs=no fi fi fi fi # Done checking deplibs! deplibs=$newdeplibs fi # Time to change all our "foo.ltframework" stuff back to "-framework foo" case $host in *-*-darwin*) newdeplibs=`$ECHO " $newdeplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` new_inherited_linker_flags=`$ECHO " $new_inherited_linker_flags" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` deplibs=`$ECHO " $deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` ;; esac # move library search paths that coincide with paths to not yet # installed libraries to the beginning of the library search list new_libs= for path in $notinst_path; do case " $new_libs " in *" -L$path/$objdir "*) ;; *) case " $deplibs " in *" -L$path/$objdir "*) func_append new_libs " -L$path/$objdir" ;; esac ;; esac done for deplib in $deplibs; do case $deplib in -L*) case " $new_libs " in *" $deplib "*) ;; *) func_append new_libs " $deplib" ;; esac ;; *) func_append new_libs " $deplib" ;; esac done deplibs=$new_libs # All the library-specific variables (install_libdir is set above). library_names= old_library= dlname= # Test again, we may have decided not to build it any more if test yes = "$build_libtool_libs"; then # Remove $wl instances when linking with ld. # FIXME: should test the right _cmds variable. case $archive_cmds in *\$LD\ *) wl= ;; esac if test yes = "$hardcode_into_libs"; then # Hardcode the library paths hardcode_libdirs= dep_rpath= rpath=$finalize_rpath test relink = "$opt_mode" || rpath=$compile_rpath$rpath for libdir in $rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then func_replace_sysroot "$libdir" libdir=$func_replace_sysroot_result if test -z "$hardcode_libdirs"; then hardcode_libdirs=$libdir else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append dep_rpath " $flag" fi elif test -n "$runpath_var"; then case "$perm_rpath " in *" $libdir "*) ;; *) func_append perm_rpath " $libdir" ;; esac fi done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir=$hardcode_libdirs eval "dep_rpath=\"$hardcode_libdir_flag_spec\"" fi if test -n "$runpath_var" && test -n "$perm_rpath"; then # We should set the runpath_var. rpath= for dir in $perm_rpath; do func_append rpath "$dir:" done eval "$runpath_var='$rpath\$$runpath_var'; export $runpath_var" fi test -n "$dep_rpath" && deplibs="$dep_rpath $deplibs" fi shlibpath=$finalize_shlibpath test relink = "$opt_mode" || shlibpath=$compile_shlibpath$shlibpath if test -n "$shlibpath"; then eval "$shlibpath_var='$shlibpath\$$shlibpath_var'; export $shlibpath_var" fi # Get the real and link names of the library. eval shared_ext=\"$shrext_cmds\" eval library_names=\"$library_names_spec\" set dummy $library_names shift realname=$1 shift if test -n "$soname_spec"; then eval soname=\"$soname_spec\" else soname=$realname fi if test -z "$dlname"; then dlname=$soname fi lib=$output_objdir/$realname linknames= for link do func_append linknames " $link" done # Use standard objects if they are pic test -z "$pic_flag" && libobjs=`$ECHO "$libobjs" | $SP2NL | $SED "$lo2o" | $NL2SP` test "X$libobjs" = "X " && libobjs= delfiles= if test -n "$export_symbols" && test -n "$include_expsyms"; then $opt_dry_run || cp "$export_symbols" "$output_objdir/$libname.uexp" export_symbols=$output_objdir/$libname.uexp func_append delfiles " $export_symbols" fi orig_export_symbols= case $host_os in cygwin* | mingw* | cegcc*) if test -n "$export_symbols" && test -z "$export_symbols_regex"; then # exporting using user supplied symfile func_dll_def_p "$export_symbols" || { # and it's NOT already a .def file. Must figure out # which of the given symbols are data symbols and tag # them as such. So, trigger use of export_symbols_cmds. # export_symbols gets reassigned inside the "prepare # the list of exported symbols" if statement, so the # include_expsyms logic still works. orig_export_symbols=$export_symbols export_symbols= always_export_symbols=yes } fi ;; esac # Prepare the list of exported symbols if test -z "$export_symbols"; then if test yes = "$always_export_symbols" || test -n "$export_symbols_regex"; then func_verbose "generating symbol list for '$libname.la'" export_symbols=$output_objdir/$libname.exp $opt_dry_run || $RM $export_symbols cmds=$export_symbols_cmds save_ifs=$IFS; IFS='~' for cmd1 in $cmds; do IFS=$save_ifs # Take the normal branch if the nm_file_list_spec branch # doesn't work or if tool conversion is not needed. case $nm_file_list_spec~$to_tool_file_cmd in *~func_convert_file_noop | *~func_convert_file_msys_to_w32 | ~*) try_normal_branch=yes eval cmd=\"$cmd1\" func_len " $cmd" len=$func_len_result ;; *) try_normal_branch=no ;; esac if test yes = "$try_normal_branch" \ && { test "$len" -lt "$max_cmd_len" \ || test "$max_cmd_len" -le -1; } then func_show_eval "$cmd" 'exit $?' skipped_export=false elif test -n "$nm_file_list_spec"; then func_basename "$output" output_la=$func_basename_result save_libobjs=$libobjs save_output=$output output=$output_objdir/$output_la.nm func_to_tool_file "$output" libobjs=$nm_file_list_spec$func_to_tool_file_result func_append delfiles " $output" func_verbose "creating $NM input file list: $output" for obj in $save_libobjs; do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" done > "$output" eval cmd=\"$cmd1\" func_show_eval "$cmd" 'exit $?' output=$save_output libobjs=$save_libobjs skipped_export=false else # The command line is too long to execute in one step. func_verbose "using reloadable object file for export list..." skipped_export=: # Break out early, otherwise skipped_export may be # set to false by a later but shorter cmd. break fi done IFS=$save_ifs if test -n "$export_symbols_regex" && test : != "$skipped_export"; then func_show_eval '$EGREP -e "$export_symbols_regex" "$export_symbols" > "${export_symbols}T"' func_show_eval '$MV "${export_symbols}T" "$export_symbols"' fi fi fi if test -n "$export_symbols" && test -n "$include_expsyms"; then tmp_export_symbols=$export_symbols test -n "$orig_export_symbols" && tmp_export_symbols=$orig_export_symbols $opt_dry_run || eval '$ECHO "$include_expsyms" | $SP2NL >> "$tmp_export_symbols"' fi if test : != "$skipped_export" && test -n "$orig_export_symbols"; then # The given exports_symbols file has to be filtered, so filter it. func_verbose "filter symbol list for '$libname.la' to tag DATA exports" # FIXME: $output_objdir/$libname.filter potentially contains lots of # 's' commands, which not all seds can handle. GNU sed should be fine # though. Also, the filter scales superlinearly with the number of # global variables. join(1) would be nice here, but unfortunately # isn't a blessed tool. $opt_dry_run || $SED -e '/[ ,]DATA/!d;s,\(.*\)\([ \,].*\),s|^\1$|\1\2|,' < $export_symbols > $output_objdir/$libname.filter func_append delfiles " $export_symbols $output_objdir/$libname.filter" export_symbols=$output_objdir/$libname.def $opt_dry_run || $SED -f $output_objdir/$libname.filter < $orig_export_symbols > $export_symbols fi tmp_deplibs= for test_deplib in $deplibs; do case " $convenience " in *" $test_deplib "*) ;; *) func_append tmp_deplibs " $test_deplib" ;; esac done deplibs=$tmp_deplibs if test -n "$convenience"; then if test -n "$whole_archive_flag_spec" && test yes = "$compiler_needs_object" && test -z "$libobjs"; then # extract the archives, so we have objects to list. # TODO: could optimize this to just extract one archive. whole_archive_flag_spec= fi if test -n "$whole_archive_flag_spec"; then save_libobjs=$libobjs eval libobjs=\"\$libobjs $whole_archive_flag_spec\" test "X$libobjs" = "X " && libobjs= else gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $convenience func_append libobjs " $func_extract_archives_result" test "X$libobjs" = "X " && libobjs= fi fi if test yes = "$thread_safe" && test -n "$thread_safe_flag_spec"; then eval flag=\"$thread_safe_flag_spec\" func_append linker_flags " $flag" fi # Make a backup of the uninstalled library when relinking if test relink = "$opt_mode"; then $opt_dry_run || eval '(cd $output_objdir && $RM ${realname}U && $MV $realname ${realname}U)' || exit $? fi # Do each of the archive commands. if test yes = "$module" && test -n "$module_cmds"; then if test -n "$export_symbols" && test -n "$module_expsym_cmds"; then eval test_cmds=\"$module_expsym_cmds\" cmds=$module_expsym_cmds else eval test_cmds=\"$module_cmds\" cmds=$module_cmds fi else if test -n "$export_symbols" && test -n "$archive_expsym_cmds"; then eval test_cmds=\"$archive_expsym_cmds\" cmds=$archive_expsym_cmds else eval test_cmds=\"$archive_cmds\" cmds=$archive_cmds fi fi if test : != "$skipped_export" && func_len " $test_cmds" && len=$func_len_result && test "$len" -lt "$max_cmd_len" || test "$max_cmd_len" -le -1; then : else # The command line is too long to link in one step, link piecewise # or, if using GNU ld and skipped_export is not :, use a linker # script. # Save the value of $output and $libobjs because we want to # use them later. If we have whole_archive_flag_spec, we # want to use save_libobjs as it was before # whole_archive_flag_spec was expanded, because we can't # assume the linker understands whole_archive_flag_spec. # This may have to be revisited, in case too many # convenience libraries get linked in and end up exceeding # the spec. if test -z "$convenience" || test -z "$whole_archive_flag_spec"; then save_libobjs=$libobjs fi save_output=$output func_basename "$output" output_la=$func_basename_result # Clear the reloadable object creation command queue and # initialize k to one. test_cmds= concat_cmds= objlist= last_robj= k=1 if test -n "$save_libobjs" && test : != "$skipped_export" && test yes = "$with_gnu_ld"; then output=$output_objdir/$output_la.lnkscript func_verbose "creating GNU ld script: $output" echo 'INPUT (' > $output for obj in $save_libobjs do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" >> $output done echo ')' >> $output func_append delfiles " $output" func_to_tool_file "$output" output=$func_to_tool_file_result elif test -n "$save_libobjs" && test : != "$skipped_export" && test -n "$file_list_spec"; then output=$output_objdir/$output_la.lnk func_verbose "creating linker input file list: $output" : > $output set x $save_libobjs shift firstobj= if test yes = "$compiler_needs_object"; then firstobj="$1 " shift fi for obj do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" >> $output done func_append delfiles " $output" func_to_tool_file "$output" output=$firstobj\"$file_list_spec$func_to_tool_file_result\" else if test -n "$save_libobjs"; then func_verbose "creating reloadable object files..." output=$output_objdir/$output_la-$k.$objext eval test_cmds=\"$reload_cmds\" func_len " $test_cmds" len0=$func_len_result len=$len0 # Loop over the list of objects to be linked. for obj in $save_libobjs do func_len " $obj" func_arith $len + $func_len_result len=$func_arith_result if test -z "$objlist" || test "$len" -lt "$max_cmd_len"; then func_append objlist " $obj" else # The command $test_cmds is almost too long, add a # command to the queue. if test 1 -eq "$k"; then # The first file doesn't have a previous command to add. reload_objs=$objlist eval concat_cmds=\"$reload_cmds\" else # All subsequent reloadable object files will link in # the last one created. reload_objs="$objlist $last_robj" eval concat_cmds=\"\$concat_cmds~$reload_cmds~\$RM $last_robj\" fi last_robj=$output_objdir/$output_la-$k.$objext func_arith $k + 1 k=$func_arith_result output=$output_objdir/$output_la-$k.$objext objlist=" $obj" func_len " $last_robj" func_arith $len0 + $func_len_result len=$func_arith_result fi done # Handle the remaining objects by creating one last # reloadable object file. All subsequent reloadable object # files will link in the last one created. test -z "$concat_cmds" || concat_cmds=$concat_cmds~ reload_objs="$objlist $last_robj" eval concat_cmds=\"\$concat_cmds$reload_cmds\" if test -n "$last_robj"; then eval concat_cmds=\"\$concat_cmds~\$RM $last_robj\" fi func_append delfiles " $output" else output= fi ${skipped_export-false} && { func_verbose "generating symbol list for '$libname.la'" export_symbols=$output_objdir/$libname.exp $opt_dry_run || $RM $export_symbols libobjs=$output # Append the command to create the export file. test -z "$concat_cmds" || concat_cmds=$concat_cmds~ eval concat_cmds=\"\$concat_cmds$export_symbols_cmds\" if test -n "$last_robj"; then eval concat_cmds=\"\$concat_cmds~\$RM $last_robj\" fi } test -n "$save_libobjs" && func_verbose "creating a temporary reloadable object file: $output" # Loop through the commands generated above and execute them. save_ifs=$IFS; IFS='~' for cmd in $concat_cmds; do IFS=$save_ifs $opt_quiet || { func_quote_for_expand "$cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || eval "$cmd" || { lt_exit=$? # Restore the uninstalled library and exit if test relink = "$opt_mode"; then ( cd "$output_objdir" && \ $RM "${realname}T" && \ $MV "${realname}U" "$realname" ) fi exit $lt_exit } done IFS=$save_ifs if test -n "$export_symbols_regex" && ${skipped_export-false}; then func_show_eval '$EGREP -e "$export_symbols_regex" "$export_symbols" > "${export_symbols}T"' func_show_eval '$MV "${export_symbols}T" "$export_symbols"' fi fi ${skipped_export-false} && { if test -n "$export_symbols" && test -n "$include_expsyms"; then tmp_export_symbols=$export_symbols test -n "$orig_export_symbols" && tmp_export_symbols=$orig_export_symbols $opt_dry_run || eval '$ECHO "$include_expsyms" | $SP2NL >> "$tmp_export_symbols"' fi if test -n "$orig_export_symbols"; then # The given exports_symbols file has to be filtered, so filter it. func_verbose "filter symbol list for '$libname.la' to tag DATA exports" # FIXME: $output_objdir/$libname.filter potentially contains lots of # 's' commands, which not all seds can handle. GNU sed should be fine # though. Also, the filter scales superlinearly with the number of # global variables. join(1) would be nice here, but unfortunately # isn't a blessed tool. $opt_dry_run || $SED -e '/[ ,]DATA/!d;s,\(.*\)\([ \,].*\),s|^\1$|\1\2|,' < $export_symbols > $output_objdir/$libname.filter func_append delfiles " $export_symbols $output_objdir/$libname.filter" export_symbols=$output_objdir/$libname.def $opt_dry_run || $SED -f $output_objdir/$libname.filter < $orig_export_symbols > $export_symbols fi } libobjs=$output # Restore the value of output. output=$save_output if test -n "$convenience" && test -n "$whole_archive_flag_spec"; then eval libobjs=\"\$libobjs $whole_archive_flag_spec\" test "X$libobjs" = "X " && libobjs= fi # Expand the library linking commands again to reset the # value of $libobjs for piecewise linking. # Do each of the archive commands. if test yes = "$module" && test -n "$module_cmds"; then if test -n "$export_symbols" && test -n "$module_expsym_cmds"; then cmds=$module_expsym_cmds else cmds=$module_cmds fi else if test -n "$export_symbols" && test -n "$archive_expsym_cmds"; then cmds=$archive_expsym_cmds else cmds=$archive_cmds fi fi fi if test -n "$delfiles"; then # Append the command to remove temporary files to $cmds. eval cmds=\"\$cmds~\$RM $delfiles\" fi # Add any objects from preloaded convenience libraries if test -n "$dlprefiles"; then gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $dlprefiles func_append libobjs " $func_extract_archives_result" test "X$libobjs" = "X " && libobjs= fi save_ifs=$IFS; IFS='~' for cmd in $cmds; do IFS=$sp$nl eval cmd=\"$cmd\" IFS=$save_ifs $opt_quiet || { func_quote_for_expand "$cmd" eval "func_echo $func_quote_for_expand_result" } $opt_dry_run || eval "$cmd" || { lt_exit=$? # Restore the uninstalled library and exit if test relink = "$opt_mode"; then ( cd "$output_objdir" && \ $RM "${realname}T" && \ $MV "${realname}U" "$realname" ) fi exit $lt_exit } done IFS=$save_ifs # Restore the uninstalled library and exit if test relink = "$opt_mode"; then $opt_dry_run || eval '(cd $output_objdir && $RM ${realname}T && $MV $realname ${realname}T && $MV ${realname}U $realname)' || exit $? if test -n "$convenience"; then if test -z "$whole_archive_flag_spec"; then func_show_eval '${RM}r "$gentop"' fi fi exit $EXIT_SUCCESS fi # Create links to the real library. for linkname in $linknames; do if test "$realname" != "$linkname"; then func_show_eval '(cd "$output_objdir" && $RM "$linkname" && $LN_S "$realname" "$linkname")' 'exit $?' fi done # If -module or -export-dynamic was specified, set the dlname. if test yes = "$module" || test yes = "$export_dynamic"; then # On all known operating systems, these are identical. dlname=$soname fi fi ;; obj) if test -n "$dlfiles$dlprefiles" || test no != "$dlself"; then func_warning "'-dlopen' is ignored for objects" fi case " $deplibs" in *\ -l* | *\ -L*) func_warning "'-l' and '-L' are ignored for objects" ;; esac test -n "$rpath" && \ func_warning "'-rpath' is ignored for objects" test -n "$xrpath" && \ func_warning "'-R' is ignored for objects" test -n "$vinfo" && \ func_warning "'-version-info' is ignored for objects" test -n "$release" && \ func_warning "'-release' is ignored for objects" case $output in *.lo) test -n "$objs$old_deplibs" && \ func_fatal_error "cannot build library object '$output' from non-libtool objects" libobj=$output func_lo2o "$libobj" obj=$func_lo2o_result ;; *) libobj= obj=$output ;; esac # Delete the old objects. $opt_dry_run || $RM $obj $libobj # Objects from convenience libraries. This assumes # single-version convenience libraries. Whenever we create # different ones for PIC/non-PIC, this we'll have to duplicate # the extraction. reload_conv_objs= gentop= # if reload_cmds runs $LD directly, get rid of -Wl from # whole_archive_flag_spec and hope we can get by with turning comma # into space. case $reload_cmds in *\$LD[\ \$]*) wl= ;; esac if test -n "$convenience"; then if test -n "$whole_archive_flag_spec"; then eval tmp_whole_archive_flags=\"$whole_archive_flag_spec\" test -n "$wl" || tmp_whole_archive_flags=`$ECHO "$tmp_whole_archive_flags" | $SED 's|,| |g'` reload_conv_objs=$reload_objs\ $tmp_whole_archive_flags else gentop=$output_objdir/${obj}x func_append generated " $gentop" func_extract_archives $gentop $convenience reload_conv_objs="$reload_objs $func_extract_archives_result" fi fi # If we're not building shared, we need to use non_pic_objs test yes = "$build_libtool_libs" || libobjs=$non_pic_objects # Create the old-style object. reload_objs=$objs$old_deplibs' '`$ECHO "$libobjs" | $SP2NL | $SED "/\.$libext$/d; /\.lib$/d; $lo2o" | $NL2SP`' '$reload_conv_objs output=$obj func_execute_cmds "$reload_cmds" 'exit $?' # Exit if we aren't doing a library object file. if test -z "$libobj"; then if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi exit $EXIT_SUCCESS fi test yes = "$build_libtool_libs" || { if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi # Create an invalid libtool object if no PIC, so that we don't # accidentally link it into a program. # $show "echo timestamp > $libobj" # $opt_dry_run || eval "echo timestamp > $libobj" || exit $? exit $EXIT_SUCCESS } if test -n "$pic_flag" || test default != "$pic_mode"; then # Only do commands if we really have different PIC objects. reload_objs="$libobjs $reload_conv_objs" output=$libobj func_execute_cmds "$reload_cmds" 'exit $?' fi if test -n "$gentop"; then func_show_eval '${RM}r "$gentop"' fi exit $EXIT_SUCCESS ;; prog) case $host in *cygwin*) func_stripname '' '.exe' "$output" output=$func_stripname_result.exe;; esac test -n "$vinfo" && \ func_warning "'-version-info' is ignored for programs" test -n "$release" && \ func_warning "'-release' is ignored for programs" $preload \ && test unknown,unknown,unknown = "$dlopen_support,$dlopen_self,$dlopen_self_static" \ && func_warning "'LT_INIT([dlopen])' not used. Assuming no dlopen support." case $host in *-*-rhapsody* | *-*-darwin1.[012]) # On Rhapsody replace the C library is the System framework compile_deplibs=`$ECHO " $compile_deplibs" | $SED 's/ -lc / System.ltframework /'` finalize_deplibs=`$ECHO " $finalize_deplibs" | $SED 's/ -lc / System.ltframework /'` ;; esac case $host in *-*-darwin*) # Don't allow lazy linking, it breaks C++ global constructors # But is supposedly fixed on 10.4 or later (yay!). if test CXX = "$tagname"; then case ${MACOSX_DEPLOYMENT_TARGET-10.0} in 10.[0123]) func_append compile_command " $wl-bind_at_load" func_append finalize_command " $wl-bind_at_load" ;; esac fi # Time to change all our "foo.ltframework" stuff back to "-framework foo" compile_deplibs=`$ECHO " $compile_deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` finalize_deplibs=`$ECHO " $finalize_deplibs" | $SED 's% \([^ $]*\).ltframework% -framework \1%g'` ;; esac # move library search paths that coincide with paths to not yet # installed libraries to the beginning of the library search list new_libs= for path in $notinst_path; do case " $new_libs " in *" -L$path/$objdir "*) ;; *) case " $compile_deplibs " in *" -L$path/$objdir "*) func_append new_libs " -L$path/$objdir" ;; esac ;; esac done for deplib in $compile_deplibs; do case $deplib in -L*) case " $new_libs " in *" $deplib "*) ;; *) func_append new_libs " $deplib" ;; esac ;; *) func_append new_libs " $deplib" ;; esac done compile_deplibs=$new_libs func_append compile_command " $compile_deplibs" func_append finalize_command " $finalize_deplibs" if test -n "$rpath$xrpath"; then # If the user specified any rpath flags, then add them. for libdir in $rpath $xrpath; do # This is the magic to use -rpath. case "$finalize_rpath " in *" $libdir "*) ;; *) func_append finalize_rpath " $libdir" ;; esac done fi # Now hardcode the library paths rpath= hardcode_libdirs= for libdir in $compile_rpath $finalize_rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then if test -z "$hardcode_libdirs"; then hardcode_libdirs=$libdir else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append rpath " $flag" fi elif test -n "$runpath_var"; then case "$perm_rpath " in *" $libdir "*) ;; *) func_append perm_rpath " $libdir" ;; esac fi case $host in *-*-cygwin* | *-*-mingw* | *-*-pw32* | *-*-os2* | *-cegcc*) testbindir=`$ECHO "$libdir" | $SED -e 's*/lib$*/bin*'` case :$dllsearchpath: in *":$libdir:"*) ;; ::) dllsearchpath=$libdir;; *) func_append dllsearchpath ":$libdir";; esac case :$dllsearchpath: in *":$testbindir:"*) ;; ::) dllsearchpath=$testbindir;; *) func_append dllsearchpath ":$testbindir";; esac ;; esac done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir=$hardcode_libdirs eval rpath=\" $hardcode_libdir_flag_spec\" fi compile_rpath=$rpath rpath= hardcode_libdirs= for libdir in $finalize_rpath; do if test -n "$hardcode_libdir_flag_spec"; then if test -n "$hardcode_libdir_separator"; then if test -z "$hardcode_libdirs"; then hardcode_libdirs=$libdir else # Just accumulate the unique libdirs. case $hardcode_libdir_separator$hardcode_libdirs$hardcode_libdir_separator in *"$hardcode_libdir_separator$libdir$hardcode_libdir_separator"*) ;; *) func_append hardcode_libdirs "$hardcode_libdir_separator$libdir" ;; esac fi else eval flag=\"$hardcode_libdir_flag_spec\" func_append rpath " $flag" fi elif test -n "$runpath_var"; then case "$finalize_perm_rpath " in *" $libdir "*) ;; *) func_append finalize_perm_rpath " $libdir" ;; esac fi done # Substitute the hardcoded libdirs into the rpath. if test -n "$hardcode_libdir_separator" && test -n "$hardcode_libdirs"; then libdir=$hardcode_libdirs eval rpath=\" $hardcode_libdir_flag_spec\" fi finalize_rpath=$rpath if test -n "$libobjs" && test yes = "$build_old_libs"; then # Transform all the library objects into standard objects. compile_command=`$ECHO "$compile_command" | $SP2NL | $SED "$lo2o" | $NL2SP` finalize_command=`$ECHO "$finalize_command" | $SP2NL | $SED "$lo2o" | $NL2SP` fi func_generate_dlsyms "$outputname" "@PROGRAM@" false # template prelinking step if test -n "$prelink_cmds"; then func_execute_cmds "$prelink_cmds" 'exit $?' fi wrappers_required=: case $host in *cegcc* | *mingw32ce*) # Disable wrappers for cegcc and mingw32ce hosts, we are cross compiling anyway. wrappers_required=false ;; *cygwin* | *mingw* ) test yes = "$build_libtool_libs" || wrappers_required=false ;; *) if test no = "$need_relink" || test yes != "$build_libtool_libs"; then wrappers_required=false fi ;; esac $wrappers_required || { # Replace the output file specification. compile_command=`$ECHO "$compile_command" | $SED 's%@OUTPUT@%'"$output"'%g'` link_command=$compile_command$compile_rpath # We have no uninstalled library dependencies, so finalize right now. exit_status=0 func_show_eval "$link_command" 'exit_status=$?' if test -n "$postlink_cmds"; then func_to_tool_file "$output" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi # Delete the generated files. if test -f "$output_objdir/${outputname}S.$objext"; then func_show_eval '$RM "$output_objdir/${outputname}S.$objext"' fi exit $exit_status } if test -n "$compile_shlibpath$finalize_shlibpath"; then compile_command="$shlibpath_var=\"$compile_shlibpath$finalize_shlibpath\$$shlibpath_var\" $compile_command" fi if test -n "$finalize_shlibpath"; then finalize_command="$shlibpath_var=\"$finalize_shlibpath\$$shlibpath_var\" $finalize_command" fi compile_var= finalize_var= if test -n "$runpath_var"; then if test -n "$perm_rpath"; then # We should set the runpath_var. rpath= for dir in $perm_rpath; do func_append rpath "$dir:" done compile_var="$runpath_var=\"$rpath\$$runpath_var\" " fi if test -n "$finalize_perm_rpath"; then # We should set the runpath_var. rpath= for dir in $finalize_perm_rpath; do func_append rpath "$dir:" done finalize_var="$runpath_var=\"$rpath\$$runpath_var\" " fi fi if test yes = "$no_install"; then # We don't need to create a wrapper script. link_command=$compile_var$compile_command$compile_rpath # Replace the output file specification. link_command=`$ECHO "$link_command" | $SED 's%@OUTPUT@%'"$output"'%g'` # Delete the old output file. $opt_dry_run || $RM $output # Link the executable and exit func_show_eval "$link_command" 'exit $?' if test -n "$postlink_cmds"; then func_to_tool_file "$output" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi exit $EXIT_SUCCESS fi case $hardcode_action,$fast_install in relink,*) # Fast installation is not supported link_command=$compile_var$compile_command$compile_rpath relink_command=$finalize_var$finalize_command$finalize_rpath func_warning "this platform does not like uninstalled shared libraries" func_warning "'$output' will be relinked during installation" ;; *,yes) link_command=$finalize_var$compile_command$finalize_rpath relink_command=`$ECHO "$compile_var$compile_command$compile_rpath" | $SED 's%@OUTPUT@%\$progdir/\$file%g'` ;; *,no) link_command=$compile_var$compile_command$compile_rpath relink_command=$finalize_var$finalize_command$finalize_rpath ;; *,needless) link_command=$finalize_var$compile_command$finalize_rpath relink_command= ;; esac # Replace the output file specification. link_command=`$ECHO "$link_command" | $SED 's%@OUTPUT@%'"$output_objdir/$outputname"'%g'` # Delete the old output files. $opt_dry_run || $RM $output $output_objdir/$outputname $output_objdir/lt-$outputname func_show_eval "$link_command" 'exit $?' if test -n "$postlink_cmds"; then func_to_tool_file "$output_objdir/$outputname" postlink_cmds=`func_echo_all "$postlink_cmds" | $SED -e 's%@OUTPUT@%'"$output_objdir/$outputname"'%g' -e 's%@TOOL_OUTPUT@%'"$func_to_tool_file_result"'%g'` func_execute_cmds "$postlink_cmds" 'exit $?' fi # Now create the wrapper script. func_verbose "creating $output" # Quote the relink command for shipping. if test -n "$relink_command"; then # Preserve any variables that may affect compiler behavior for var in $variables_saved_for_relink; do if eval test -z \"\${$var+set}\"; then relink_command="{ test -z \"\${$var+set}\" || $lt_unset $var || { $var=; export $var; }; }; $relink_command" elif eval var_value=\$$var; test -z "$var_value"; then relink_command="$var=; export $var; $relink_command" else func_quote_for_eval "$var_value" relink_command="$var=$func_quote_for_eval_result; export $var; $relink_command" fi done relink_command="(cd `pwd`; $relink_command)" relink_command=`$ECHO "$relink_command" | $SED "$sed_quote_subst"` fi # Only actually do things if not in dry run mode. $opt_dry_run || { # win32 will think the script is a binary if it has # a .exe suffix, so we strip it off here. case $output in *.exe) func_stripname '' '.exe' "$output" output=$func_stripname_result ;; esac # test for cygwin because mv fails w/o .exe extensions case $host in *cygwin*) exeext=.exe func_stripname '' '.exe' "$outputname" outputname=$func_stripname_result ;; *) exeext= ;; esac case $host in *cygwin* | *mingw* ) func_dirname_and_basename "$output" "" "." output_name=$func_basename_result output_path=$func_dirname_result cwrappersource=$output_path/$objdir/lt-$output_name.c cwrapper=$output_path/$output_name.exe $RM $cwrappersource $cwrapper trap "$RM $cwrappersource $cwrapper; exit $EXIT_FAILURE" 1 2 15 func_emit_cwrapperexe_src > $cwrappersource # The wrapper executable is built using the $host compiler, # because it contains $host paths and files. If cross- # compiling, it, like the target executable, must be # executed on the $host or under an emulation environment. $opt_dry_run || { $LTCC $LTCFLAGS -o $cwrapper $cwrappersource $STRIP $cwrapper } # Now, create the wrapper script for func_source use: func_ltwrapper_scriptname $cwrapper $RM $func_ltwrapper_scriptname_result trap "$RM $func_ltwrapper_scriptname_result; exit $EXIT_FAILURE" 1 2 15 $opt_dry_run || { # note: this script will not be executed, so do not chmod. if test "x$build" = "x$host"; then $cwrapper --lt-dump-script > $func_ltwrapper_scriptname_result else func_emit_wrapper no > $func_ltwrapper_scriptname_result fi } ;; * ) $RM $output trap "$RM $output; exit $EXIT_FAILURE" 1 2 15 func_emit_wrapper no > $output chmod +x $output ;; esac } exit $EXIT_SUCCESS ;; esac # See if we need to build an old-fashioned archive. for oldlib in $oldlibs; do case $build_libtool_libs in convenience) oldobjs="$libobjs_save $symfileobj" addlibs=$convenience build_libtool_libs=no ;; module) oldobjs=$libobjs_save addlibs=$old_convenience build_libtool_libs=no ;; *) oldobjs="$old_deplibs $non_pic_objects" $preload && test -f "$symfileobj" \ && func_append oldobjs " $symfileobj" addlibs=$old_convenience ;; esac if test -n "$addlibs"; then gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $addlibs func_append oldobjs " $func_extract_archives_result" fi # Do each command in the archive commands. if test -n "$old_archive_from_new_cmds" && test yes = "$build_libtool_libs"; then cmds=$old_archive_from_new_cmds else # Add any objects from preloaded convenience libraries if test -n "$dlprefiles"; then gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_extract_archives $gentop $dlprefiles func_append oldobjs " $func_extract_archives_result" fi # POSIX demands no paths to be encoded in archives. We have # to avoid creating archives with duplicate basenames if we # might have to extract them afterwards, e.g., when creating a # static archive out of a convenience library, or when linking # the entirety of a libtool archive into another (currently # not supported by libtool). if (for obj in $oldobjs do func_basename "$obj" $ECHO "$func_basename_result" done | sort | sort -uc >/dev/null 2>&1); then : else echo "copying selected object files to avoid basename conflicts..." gentop=$output_objdir/${outputname}x func_append generated " $gentop" func_mkdir_p "$gentop" save_oldobjs=$oldobjs oldobjs= counter=1 for obj in $save_oldobjs do func_basename "$obj" objbase=$func_basename_result case " $oldobjs " in " ") oldobjs=$obj ;; *[\ /]"$objbase "*) while :; do # Make sure we don't pick an alternate name that also # overlaps. newobj=lt$counter-$objbase func_arith $counter + 1 counter=$func_arith_result case " $oldobjs " in *[\ /]"$newobj "*) ;; *) if test ! -f "$gentop/$newobj"; then break; fi ;; esac done func_show_eval "ln $obj $gentop/$newobj || cp $obj $gentop/$newobj" func_append oldobjs " $gentop/$newobj" ;; *) func_append oldobjs " $obj" ;; esac done fi func_to_tool_file "$oldlib" func_convert_file_msys_to_w32 tool_oldlib=$func_to_tool_file_result eval cmds=\"$old_archive_cmds\" func_len " $cmds" len=$func_len_result if test "$len" -lt "$max_cmd_len" || test "$max_cmd_len" -le -1; then cmds=$old_archive_cmds elif test -n "$archiver_list_spec"; then func_verbose "using command file archive linking..." for obj in $oldobjs do func_to_tool_file "$obj" $ECHO "$func_to_tool_file_result" done > $output_objdir/$libname.libcmd func_to_tool_file "$output_objdir/$libname.libcmd" oldobjs=" $archiver_list_spec$func_to_tool_file_result" cmds=$old_archive_cmds else # the command line is too long to link in one step, link in parts func_verbose "using piecewise archive linking..." save_RANLIB=$RANLIB RANLIB=: objlist= concat_cmds= save_oldobjs=$oldobjs oldobjs= # Is there a better way of finding the last object in the list? for obj in $save_oldobjs do last_oldobj=$obj done eval test_cmds=\"$old_archive_cmds\" func_len " $test_cmds" len0=$func_len_result len=$len0 for obj in $save_oldobjs do func_len " $obj" func_arith $len + $func_len_result len=$func_arith_result func_append objlist " $obj" if test "$len" -lt "$max_cmd_len"; then : else # the above command should be used before it gets too long oldobjs=$objlist if test "$obj" = "$last_oldobj"; then RANLIB=$save_RANLIB fi test -z "$concat_cmds" || concat_cmds=$concat_cmds~ eval concat_cmds=\"\$concat_cmds$old_archive_cmds\" objlist= len=$len0 fi done RANLIB=$save_RANLIB oldobjs=$objlist if test -z "$oldobjs"; then eval cmds=\"\$concat_cmds\" else eval cmds=\"\$concat_cmds~\$old_archive_cmds\" fi fi fi func_execute_cmds "$cmds" 'exit $?' done test -n "$generated" && \ func_show_eval "${RM}r$generated" # Now create the libtool archive. case $output in *.la) old_library= test yes = "$build_old_libs" && old_library=$libname.$libext func_verbose "creating $output" # Preserve any variables that may affect compiler behavior for var in $variables_saved_for_relink; do if eval test -z \"\${$var+set}\"; then relink_command="{ test -z \"\${$var+set}\" || $lt_unset $var || { $var=; export $var; }; }; $relink_command" elif eval var_value=\$$var; test -z "$var_value"; then relink_command="$var=; export $var; $relink_command" else func_quote_for_eval "$var_value" relink_command="$var=$func_quote_for_eval_result; export $var; $relink_command" fi done # Quote the link command for shipping. relink_command="(cd `pwd`; $SHELL \"$progpath\" $preserve_args --mode=relink $libtool_args @inst_prefix_dir@)" relink_command=`$ECHO "$relink_command" | $SED "$sed_quote_subst"` if test yes = "$hardcode_automatic"; then relink_command= fi # Only create the output if not a dry run. $opt_dry_run || { for installed in no yes; do if test yes = "$installed"; then if test -z "$install_libdir"; then break fi output=$output_objdir/${outputname}i # Replace all uninstalled libtool libraries with the installed ones newdependency_libs= for deplib in $dependency_libs; do case $deplib in *.la) func_basename "$deplib" name=$func_basename_result func_resolve_sysroot "$deplib" eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $func_resolve_sysroot_result` test -z "$libdir" && \ func_fatal_error "'$deplib' is not a valid libtool archive" func_append newdependency_libs " ${lt_sysroot:+=}$libdir/$name" ;; -L*) func_stripname -L '' "$deplib" func_replace_sysroot "$func_stripname_result" func_append newdependency_libs " -L$func_replace_sysroot_result" ;; -R*) func_stripname -R '' "$deplib" func_replace_sysroot "$func_stripname_result" func_append newdependency_libs " -R$func_replace_sysroot_result" ;; *) func_append newdependency_libs " $deplib" ;; esac done dependency_libs=$newdependency_libs newdlfiles= for lib in $dlfiles; do case $lib in *.la) func_basename "$lib" name=$func_basename_result eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $lib` test -z "$libdir" && \ func_fatal_error "'$lib' is not a valid libtool archive" func_append newdlfiles " ${lt_sysroot:+=}$libdir/$name" ;; *) func_append newdlfiles " $lib" ;; esac done dlfiles=$newdlfiles newdlprefiles= for lib in $dlprefiles; do case $lib in *.la) # Only pass preopened files to the pseudo-archive (for # eventual linking with the app. that links it) if we # didn't already link the preopened objects directly into # the library: func_basename "$lib" name=$func_basename_result eval libdir=`$SED -n -e 's/^libdir=\(.*\)$/\1/p' $lib` test -z "$libdir" && \ func_fatal_error "'$lib' is not a valid libtool archive" func_append newdlprefiles " ${lt_sysroot:+=}$libdir/$name" ;; esac done dlprefiles=$newdlprefiles else newdlfiles= for lib in $dlfiles; do case $lib in [\\/]* | [A-Za-z]:[\\/]*) abs=$lib ;; *) abs=`pwd`"/$lib" ;; esac func_append newdlfiles " $abs" done dlfiles=$newdlfiles newdlprefiles= for lib in $dlprefiles; do case $lib in [\\/]* | [A-Za-z]:[\\/]*) abs=$lib ;; *) abs=`pwd`"/$lib" ;; esac func_append newdlprefiles " $abs" done dlprefiles=$newdlprefiles fi $RM $output # place dlname in correct position for cygwin # In fact, it would be nice if we could use this code for all target # systems that can't hard-code library paths into their executables # and that have no shared library path variable independent of PATH, # but it turns out we can't easily determine that from inspecting # libtool variables, so we have to hard-code the OSs to which it # applies here; at the moment, that means platforms that use the PE # object format with DLL files. See the long comment at the top of # tests/bindir.at for full details. tdlname=$dlname case $host,$output,$installed,$module,$dlname in *cygwin*,*lai,yes,no,*.dll | *mingw*,*lai,yes,no,*.dll | *cegcc*,*lai,yes,no,*.dll) # If a -bindir argument was supplied, place the dll there. if test -n "$bindir"; then func_relative_path "$install_libdir" "$bindir" tdlname=$func_relative_path_result/$dlname else # Otherwise fall back on heuristic. tdlname=../bin/$dlname fi ;; esac $ECHO > $output "\ # $outputname - a libtool library file # Generated by $PROGRAM (GNU $PACKAGE) $VERSION # # Please DO NOT delete this file! # It is necessary for linking the library. # The name that we can dlopen(3). dlname='$tdlname' # Names of this library. library_names='$library_names' # The name of the static archive. old_library='$old_library' # Linker flags that cannot go in dependency_libs. inherited_linker_flags='$new_inherited_linker_flags' # Libraries that this one depends upon. dependency_libs='$dependency_libs' # Names of additional weak libraries provided by this library weak_library_names='$weak_libs' # Version information for $libname. current=$current age=$age revision=$revision # Is this an already installed library? installed=$installed # Should we warn about portability when linking against -modules? shouldnotlink=$module # Files to dlopen/dlpreopen dlopen='$dlfiles' dlpreopen='$dlprefiles' # Directory that this library needs to be installed in: libdir='$install_libdir'" if test no,yes = "$installed,$need_relink"; then $ECHO >> $output "\ relink_command=\"$relink_command\"" fi done } # Do a symbolic link so that the libtool archive can be found in # LD_LIBRARY_PATH before the program is installed. func_show_eval '( cd "$output_objdir" && $RM "$outputname" && $LN_S "../$outputname" "$outputname" )' 'exit $?' ;; esac exit $EXIT_SUCCESS } if test link = "$opt_mode" || test relink = "$opt_mode"; then func_mode_link ${1+"$@"} fi # func_mode_uninstall arg... func_mode_uninstall () { $debug_cmd RM=$nonopt files= rmforce=false exit_status=0 # This variable tells wrapper scripts just to set variables rather # than running their programs. libtool_install_magic=$magic for arg do case $arg in -f) func_append RM " $arg"; rmforce=: ;; -*) func_append RM " $arg" ;; *) func_append files " $arg" ;; esac done test -z "$RM" && \ func_fatal_help "you must specify an RM program" rmdirs= for file in $files; do func_dirname "$file" "" "." dir=$func_dirname_result if test . = "$dir"; then odir=$objdir else odir=$dir/$objdir fi func_basename "$file" name=$func_basename_result test uninstall = "$opt_mode" && odir=$dir # Remember odir for removal later, being careful to avoid duplicates if test clean = "$opt_mode"; then case " $rmdirs " in *" $odir "*) ;; *) func_append rmdirs " $odir" ;; esac fi # Don't error if the file doesn't exist and rm -f was used. if { test -L "$file"; } >/dev/null 2>&1 || { test -h "$file"; } >/dev/null 2>&1 || test -f "$file"; then : elif test -d "$file"; then exit_status=1 continue elif $rmforce; then continue fi rmfiles=$file case $name in *.la) # Possibly a libtool archive, so verify it. if func_lalib_p "$file"; then func_source $dir/$name # Delete the libtool libraries and symlinks. for n in $library_names; do func_append rmfiles " $odir/$n" done test -n "$old_library" && func_append rmfiles " $odir/$old_library" case $opt_mode in clean) case " $library_names " in *" $dlname "*) ;; *) test -n "$dlname" && func_append rmfiles " $odir/$dlname" ;; esac test -n "$libdir" && func_append rmfiles " $odir/$name $odir/${name}i" ;; uninstall) if test -n "$library_names"; then # Do each command in the postuninstall commands. func_execute_cmds "$postuninstall_cmds" '$rmforce || exit_status=1' fi if test -n "$old_library"; then # Do each command in the old_postuninstall commands. func_execute_cmds "$old_postuninstall_cmds" '$rmforce || exit_status=1' fi # FIXME: should reinstall the best remaining shared library. ;; esac fi ;; *.lo) # Possibly a libtool object, so verify it. if func_lalib_p "$file"; then # Read the .lo file func_source $dir/$name # Add PIC object to the list of files to remove. if test -n "$pic_object" && test none != "$pic_object"; then func_append rmfiles " $dir/$pic_object" fi # Add non-PIC object to the list of files to remove. if test -n "$non_pic_object" && test none != "$non_pic_object"; then func_append rmfiles " $dir/$non_pic_object" fi fi ;; *) if test clean = "$opt_mode"; then noexename=$name case $file in *.exe) func_stripname '' '.exe' "$file" file=$func_stripname_result func_stripname '' '.exe' "$name" noexename=$func_stripname_result # $file with .exe has already been added to rmfiles, # add $file without .exe func_append rmfiles " $file" ;; esac # Do a test to see if this is a libtool program. if func_ltwrapper_p "$file"; then if func_ltwrapper_executable_p "$file"; then func_ltwrapper_scriptname "$file" relink_command= func_source $func_ltwrapper_scriptname_result func_append rmfiles " $func_ltwrapper_scriptname_result" else relink_command= func_source $dir/$noexename fi # note $name still contains .exe if it was in $file originally # as does the version of $file that was added into $rmfiles func_append rmfiles " $odir/$name $odir/${name}S.$objext" if test yes = "$fast_install" && test -n "$relink_command"; then func_append rmfiles " $odir/lt-$name" fi if test "X$noexename" != "X$name"; then func_append rmfiles " $odir/lt-$noexename.c" fi fi fi ;; esac func_show_eval "$RM $rmfiles" 'exit_status=1' done # Try to remove the $objdir's in the directories where we deleted files for dir in $rmdirs; do if test -d "$dir"; then func_show_eval "rmdir $dir >/dev/null 2>&1" fi done exit $exit_status } if test uninstall = "$opt_mode" || test clean = "$opt_mode"; then func_mode_uninstall ${1+"$@"} fi test -z "$opt_mode" && { help=$generic_help func_fatal_help "you must specify a MODE" } test -z "$exec_cmd" && \ func_fatal_help "invalid operation mode '$opt_mode'" if test -n "$exec_cmd"; then eval exec "$exec_cmd" exit $EXIT_FAILURE fi exit $exit_status # The TAGs below are defined such that we never get into a situation # where we disable both kinds of libraries. Given conflicting # choices, we go for a static library, that is the most portable, # since we can't tell whether shared libraries were disabled because # the user asked for that or because the platform doesn't support # them. This is particularly important on AIX, because we don't # support having both static and shared libraries enabled at the same # time on that platform, so we default to a shared-only configuration. # If a disable-shared tag is given, we'll fallback to a static-only # configuration. But we'll never go from static-only to shared-only. # ### BEGIN LIBTOOL TAG CONFIG: disable-shared build_libtool_libs=no build_old_libs=yes # ### END LIBTOOL TAG CONFIG: disable-shared # ### BEGIN LIBTOOL TAG CONFIG: disable-static build_old_libs=`case $build_libtool_libs in yes) echo no;; *) echo yes;; esac` # ### END LIBTOOL TAG CONFIG: disable-static # Local Variables: # mode:shell-script # sh-indentation:2 # End: